Loading video...
Video Failed to Load
The MOVEit Transfer exploitation is not just SQL injection(๐) We uncovered the very last stage of the attack chain to drop human2.aspx ultimately ends up gaining remote code execution โผ We fully recreated the attack chain with a demo achieving a reverse shell & ransomware!
236,679 views โข 3 years ago โขvia X (Twitter)
9 Comments

Check out all that we've been digging into:

Awesome work. If you can share, approximately how many research hours were required to recreate this? I think it's important for people to understand that an attack chain like this really requires a lot of time to understand even though a blog post/video seems "easy".

Very well-done folks!! ๐

John Hammond does it again.

The remote code execution is scary but why is SQL injection still a thing in 2023? We know how to prevent it and have done for years.

I think the targets got so wide they decided their focus on stealing data rather than ransom

Thanks for all the outstanding work!

Congratulations, excellent work! ๐๐๐๐ Thank you

So you are behind Cl0p then this whole time!!..

