NoiseLetter May 2024

This May, Storm ⚡️ Watch celebrated its 1-year anniversary and some of the GreyNoise team met up with folks at RSA + FS-ISAC EMEA. Our remarkable crew also analyzed the latest Verizon DBIR report, which we were mentioned in for the 6th year in a row. Check it all out in this month's NoiseLetter! 

The AI for Cybersecurity Webinar is starting soon...well...depending on when you opened this email, and there *might still be* time to catch it live!  👀

‍

Andrew Unfiltered

GreyNoise Founder Andrew Morris gives his thoughts, hot-takes, and whatever else he feels like.

‍

Featured

STORM ⚡️ WATCH CELEBRATES IT'S 1 YEAR ANNIVERSARY

On May 21st, we celebrated 1 whole year of the Storm ⚡️ Watch Podcast! Whether you have been with us from the beginning or just started tuning in, we cannot thank you enough for supporting this venture and listening to us blather on about anything and everything cybersecurity. Check out the special ONE YEAR ANNIVERSARY show here and tune in every Tuesday at 9:30 CT / 1030 ET live on our YouTube channel!

‍

Where to find us

• AI for Cybersecurity: Sifting the Noise Webinar (Virtual | May 30 2:00pm ET) Discover which AI approaches in cybersecurity truly work with insights from top experts in our AI webinar.

• Potomac Officers Club 2024 Cyber Summit (In-Person) | Arlington, Virginia | June 6) We are very excited to be participating in this years 2024 Cyber Summit. If you want to meet up with the team for a demo or a beer hit up abigail@greynoise.io.

• runZero Hour, Episode 7 (Virtual | June 12) Get GreyNoise + the runZero research team's latest insights on securing your attack surface in their upcoming webinar.

• TechNetCyber (In-Person | Baltimore, Maryland | June 25-27) We are proud to be  sponsoring TechNetCyber again this year! You can find us at booth 2218, for a demo and some swag.

‍

Fresh Content

• Article: Dark Reading // Addressing the Cybersecurity Vendor Ecosystem Disconnect
• Podcast: The Microsoft Threat Intelligence Podcast // Andrew Morris + Lauren Proehl on Infosec
• Podcast: Strategic Cyber Ventures // Security Leaders Series Ep 2
• Blog: 2024 Verizon DBIR: Surviving the Year of the Vuln
• Blog: NetNoiseCon - Recapping our Debut Event
• Blog: Honeypots Are Back: The Movie: The Blog
• Blog: Cybersecurity in the Age of AI: What Experts are Saying
• Video: Storm Watch Highlight Reel

‍

Recent Tags and Vulnerabilities

GreyNoise Labs released 19 tags during the month of May:

• Citrix ADC Netscaler CVE-2023-6549 Information Disclosure Attempt
• Confluence Data Center and Server RCE CVE-2024-21683 Attempt
• D-Link DIR-605 Information Disclosure Attempt
• F5 BIG-IP CVE-2024-21793 OData Injection Attempt
• F5 BIG-IP CVE-2024-26026 SQLi Attempt
• Fluent Bit CVE-2024-4323 Memory Corruption Attempt
• Generic Path Traversal Attempt
• JetBrains TeamCity Auth Bypass CVE-2024-23917 Attempt
• JetBrains TeamCity Path Traversal CVE-2024-24942 Attempt
• Jira CVE-2008-0885 XXS Check
• Linksys EA7500 CVE-2023-46012 Buffer Overflow RCE Attempt
• Microsoft RDP Web Client Login Enumeration Check
• Nagios XI Scanner
• QNAP CVE-2024-27130 Buffer Overflow Attempt
• TOTOLINK NR1800 CVE-2022-41518 Command injection RCE Attempt
• Tinyproxy Use-After-Free CVE-2023-49606 Attempt
• WordPress ValvePress CVE-2024-27956 SQLi Attempt
• Zabbix CVE-2024-22120 SQLi Attempt
• alfacgiapi WordPress Plugin Sensitive Directory Scanner

‍

Community

• Request a New GreyNoise Tag - We've just published a new page to allow our amazing community to submit tag requests to the GreyNoise team. 
• ‍Try our Free Account - Quickly identify noisy scanners and trending attacks with our free plan.
• ‍Join our Community Slack and Discord- We share intel, give real time updates, and the occasional Dad joke. 

‍

Meme of the Month

*Have a joke you want included in the next NoiseLetter? Submit Your Joke >>

‍

Not subscribed to our NoiseLetter? Subscribe here.

‍

‍

‍

‍