• 0 Posts
  • 11 Comments
Joined 1 year ago
cake
Cake day: June 14th, 2023

help-circle










  • Honestly depends on what he’s hosting… Services like shodan are constantly scanning the web and are trying to see what is actually running in the machine.

    If he’s serving something that’s vulnerable and has rce it won’t take too long for him to get automatically pwned.

    We’ve seen this with the hafnium Echange vulnerability and all known vulnerable public facing web apps that used log4j.

    Regarding the LastPass breach, the second part of the breach was using a very outdated version of Plex. Chances are high that his home machine was already hacked by other malicious actors.