SANS Internet Storm Center, InfoCON: green

↧

Dragon Research Group (DRG) announced an updated VNC probe insight report:...

November 18, 2011, 1:54 pm

(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

Dragon Research Group (DRG) announced the white paper entitled "VNC: Threats...

November 18, 2011, 6:17 pm

Pedro Bueno (pbueno /%%/ isc. sans. org) Twitter: http://twitter.com/besecure (c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

Monitoring your Log Monitoring Process, (Sat, Nov 19th)

November 19, 2011, 2:30 pm

A review of this year's diaries on Log Monitoring We Write a lot about Log Monitoring and Analysis. Some recent entries that focus on log analysis: Why you should monitor your logs:...

View Article

ISC StormCast for Monday, November 21st 2011...

November 20, 2011, 6:25 pm

(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

ISC StormCast for Tuesday, November 22nd 2011...

November 21, 2011, 7:58 pm

(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

RealPlayer update addresses 19 CVEs. Patch it! Remember that Exploit kits...

November 22, 2011, 9:05 am

Pedro Bueno (pbueno /%%/ isc. sans. org) Twitter: http://twitter.com/besecure (c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

Updates on ZeroAccess and BlackHole front..., (Tue, Nov 22nd)

November 22, 2011, 2:41 pm

Mpack, IcePack, Eleonore, Phoenix, BlackHole...from time to time we see a new exploit kit being prevalent due the advances it brings. These names are all very well known exploit kits that were/are...

View Article

ISC StormCast for Wednesday, November 23rd 2011...

November 22, 2011, 6:05 pm

(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

SCADA hacks published on Pastebin, (Wed, Nov 23rd)

November 23, 2011, 7:50 am

pastebin.com has become a simple platform to publish evidence of various attacks. Lenny a few months back already noted that it may be useful for organizations to occasionally search pastebin for data...

View Article

Quick Tip: Pastebin Monitoring & Recon, (Thu, Nov 24th)

November 24, 2011, 8:56 am

Happy Thanksgiving! On the heels of Dr. Ullrich's diary regardingSCADA hacks published on Pastebin I thought I'd mention some Pastebin monitoring and recon resources that you may find useful. One...

View Article

ISC StormCast for Tuesday, December 6th 2011...

December 5, 2011, 2:42 pm

(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

ISC describe DNS crash bug analysis, (Mon, Dec 5th)

December 5, 2011, 3:44 pm

You may recall in mid November that it was reported that DNS resolvers across the Internet were crashing. This was classified as CVE-2011-4313. Well, the developers of BIND at the Internet Systems...

View Article

The RedRet connection..., (Tue, Dec 6th)

December 5, 2011, 7:04 pm

Have you ever wondered why we are on this security chaos these days? Well, I have one simple explanation, besides Stuxnets and DuQus oneof's , most of the current malware is simple, easy to understand...

View Article

C|Net download.com serving malware with nmap software, (Tue, Dec 6th)

December 5, 2011, 10:40 pm

Fyodor from insecure.org and the creator of nmap has issued the following statement on the nmap-hackers mailing list today. http://seclists.org/nmap-hackers/2011/5 nmap is one the most respected...

View Article

Cain & Abel v4.9.43 Released - http://www.oxid.it/, (Tue, Dec 6th)

December 6, 2011, 7:23 am

(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

ISC StormCast for Tuesday, December 7th 2011...

December 6, 2011, 1:36 pm

(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

SQL Injection Attack happening ATM, (Thu, Dec 1st)

December 7, 2011, 5:46 am

We've had several reports (thanks guys) of sites being injected with the following string: /titlescript src=hXXp://lilupophilupop.com/sl.php/script Typically it is inserted into several tables. From...

View Article

V8 as an Alternative to SpiderMonkey for JavaScript Deobfuscation, (Wed, Dec...

December 7, 2011, 9:06 am

A popular approach to obfuscating malicious browser scripts involves using JavaScript itself to decode the original script when the browser processes the malicious web page. Malware analysts can often...

View Article

Adobe Acrobat Latest Zero-Day Vulnerability Fix Coming to All Platforms by...

December 7, 2011, 9:07 am

Adobe announced a currently-unpatched vulnerability (CVE-2011-2462) that seems to affect all versions ofAdobe Reader and Acrobat. The issue is most relevant to the users of Adobe Reader and Acrobat 9...

View Article

ISC StormCast for Thursday, December 8th 2011...

December 7, 2011, 1:52 pm

(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article