Common Information
Type | Value |
---|---|
Value |
Serverless - T1584.007 |
Category | Attack-Pattern |
Type | Mitre-Attack-Pattern |
Misp Type | Cluster |
Description | Adversaries may compromise serverless cloud infrastructure, such as Cloudflare Workers or AWS Lambda functions, that can be used during targeting. By utilizing serverless infrastructure, adversaries can make it more difficult to attribute infrastructure used during operations back to them. Once compromised, the serverless runtime environment can be leveraged to either respond directly to infected machines or to [Proxy](https://attack.mitre.org/techniques/T1090) traffic to an adversary-owned command and control server.(Citation: BlackWater Malware Cloudflare Workers)(Citation: AWS Lambda Redirector) As traffic generated by these functions will appear to come from subdomains of common cloud providers, it may be difficult to distinguish from ordinary traffic to these providers.(Citation: Detecting Command & Control in the Cloud)(Citation: BlackWater Malware Cloudflare Workers) |
Details | Published | Attributes | CTI | Title | ||
---|---|---|---|---|---|---|
Details | Website | 2023-09-28 | 2 | A Socket API that works across JavaScript runtimes — announcing a WinterCG spec and Node.js implementation of connect() | ||
Details | Website | 2023-09-28 | 1 | Cloudflare Integrations Marketplace introduces three new partners: Sentry, Momento and Turso | ||
Details | Website | 2023-09-28 | 3 | D1: open beta is here | ||
Details | Website | 2023-09-28 | 2 | New Workers pricing — never pay to wait on I/O again | ||
Details | Website | 2023-09-27 | 0 | The best place on Region: Earth for inference | ||
Details | Website | 2023-09-27 | 8 | Workers AI: serverless GPU-powered inference on Cloudflare’s global network | ||
Details | Website | 2023-09-27 | 1 | Partnering with Hugging Face to make deploying AI easier and more affordable than ever 🤗 | ||
Details | Website | 2023-09-27 | 7 | What AI companies are building with Cloudflare | ||
Details | Website | 2023-09-25 | 0 | Ease Your Search for Cloud Security Experts with CIRA - Cado Security | Cloud Forensics & Incident Response | ||
Details | Website | 2023-09-25 | 0 | Cloudflare Stream Low-Latency HLS support now in Open Beta | ||
Details | Website | 2023-09-21 | 0 | mWise 2023: Cado Security Shares the Spotlight with Tech Giants - Cado Security | Cloud Forensics & Incident Response | ||
Details | Website | 2023-09-20 | 6 | Cado Security Labs Researchers Witness a 600X Increase in P2Pinfect Traffic - Cado Security | Cloud Forensics & Incident Response | ||
Details | Website | 2023-09-20 | 0 | The art of security chaos engineering | ||
Details | Website | 2023-09-18 | 0 | 2022 Cloud (In)Security Report | ||
Details | Website | 2023-09-18 | 0 | So you’re a new CISO? Let’s navigate your first 90 days | ||
Details | Website | 2023-09-15 | 0 | Managing Escalating Risks in a Cloud Era With CIRA - Cado Security | Cloud Forensics & Incident Response | ||
Details | Website | 2023-08-31 | 0 | Cloud Detection and Response Needs To Break Down Boundaries | ||
Details | Website | 2023-08-30 | 4 | Accenture and Aqua Partner to Empower Cloud Security | ||
Details | Website | 2023-08-30 | 0 | Colocation Migration—How to On-Ramp to the Cloud Without Crashing | NETSCOUT | ||
Details | Website | 2023-08-23 | 1 | Innovating Cloud Security: Why Aqua Leads in Gigaom CSPM Radar | ||
Details | Website | 2023-08-09 | 0 | Cloud Security: Ensuring Data Protection in the Cloud | ||
Details | Website | 2023-08-09 | 6 | Asia Pacific Web Application Firewall (WAF) Solutions Report 2023-2027: AI and ML Enhancing Web Application Security Potential | ||
Details | Website | 2023-08-09 | 1 | Creating a Comprehensive Lesson Plan: Cybersecurity, Cloud Computing, and Backend Engineering with… | ||
Details | Website | 2023-08-09 | 0 | Supercharging Investigations With Cado’s New Timeline - Cado Security | Cloud Forensics & Incident Response | ||
Details | Website | 2023-08-09 | 0 | IoT Monitoring: Protecting & Maintaining IoT Devices in 2023 |