1000 third parties could have stolen RIPE NCC session tokens - by design
ATT&CK techniques detected
T1190Exploit Public-Facing Application
76%
“ripe. net was fixed within approximately 10 days. anchors. atlas. ripe. net was fixed sometime before may 2025. i was not notified and discovered it independently. these issues were part of intigriti report ripencc - mmp7zvef, which paid € 1100 ( tier 1, critical ) covering both …”
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
T1552.004Private Keys
52%
“resources ( which i think might be read - only ), and more importantly, rpki. - adding new users, including admins, to the lir account, i. e. full access to any ripe ncc service. neither of these requires re - authentication, and neither notifies the original user or the company …”
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
T1649Steal or Forge Authentication Certificates
51%
“resources ( which i think might be read - only ), and more importantly, rpki. - adding new users, including admins, to the lir account, i. e. full access to any ripe ncc service. neither of these requires re - authentication, and neither notifies the original user or the company …”
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…