In this episode of The Cyber Threat Perspective, Brad Causey, VP of Offensive Security at SecurIT360, shares real stories and lessons learned during offensive security engagements. From scheduled task vulnerabilities to social engineering engagements, this episode provides valuable insights on cybersecurity challenges and solutions.
In this episode, Brad covers:
– Vulnerabilities associated with scheduled tasks, including excessive privileges and network share access
– Exploiting security gaps in an application for recording blood donations through SQL injection
– Social engineering tactics used to bypass MFA and obtain full credentials
– Security measures for network engineers and the importance of internal discussions and testing processes
– Case studies involving compromised domain admin passwords and unauthorized access to student M365 accounts