ISC Feature of the Week: 404Project Reports, (Wed, Feb 29th)
Overview Previously we featured the 404Project https://isc.sans.edu/diary/ISC+Feature+of+the+Week+The+404Project/12415 As we mentioned, the main purpose of this project is to trend the web pages...
View ArticleCisco Security Advisories - 29FEB2011, (Wed, Feb 29th)
Cisco has issued five security advisories today, including: Cisco Cius Denial of Service Vulnerability Cisco Unified Communications Manager Skinny Client Control Protocol Vulnerabilities Multiple...
View ArticleISC StormCast for Thursday, March 1st 2012...
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleMonitoring Remote Desktop Services logs ... or not?, (Thu, Mar 1st)
Remote Desktop Services (or RDP, as most people call this service) is undoubtedly one of the most useful services that Windows administrators depend on. Introduced all the way back with Windows NT,...
View ArticleISC StormCast for Friday, March 2nd 2012...
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticlePhishing with obfuscated javascript, shellcode and malware, (Fri, Mar 2nd)
Be careful with the links showed in this diary because they are live and could infect your computer if not handled properly Phishing e-mail artwork is becoming more effective everyday. Users are...
View ArticleNew automated sandbox for Android malware, (Sat, Mar 3rd)
One of the things that I've been working on lately is building an automated malware analysis environment to handle Android malware similar to the one I built for Windows malware. I'm not quite there...
View ArticleISC StormCast for Sunday, March 4th 2012...
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleFlashback Malware now with Twitter C&C, (Mon, Mar 5th)
The OS X malware family Flashback is making news again. This time around, antivirus vendor Intego uncovered a new version of Flashback that will use Twitter as a command and control channel [1]. The...
View ArticleAdobe Flash Player Security Update, (Mon, Mar 5th)
Adobe today released bulletin with details regarding two new vulnerabilities in Adobe Flash Player [1]. The vulnerabilities can lead to arbitrary code execution and affects all platforms (don't forget...
View ArticleISC StormCast for Tuesday, March 6th 2012...
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleWebsense posted a small article relating to mass injection into wordpress...
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleAdobe released a tool that may help with looking SWF issues. The tool is...
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleISC Feature of the Week: Follow us on Twitter, (Tue, Mar 6th)
Overview This week we feature Twitter accounts! ISCand the Handlers post on Twitter regularly. This is a great way to keep up with dairy posts, current security information, Handler activities and...
View ArticleISC StormCast for Tuesday, March 6th 2012...
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleWhat happened to RFI attacks?, (Wed, Mar 7th)
Recently, I noticed a remarkable decrease in remote file inclusion attacks against my web servers. Usually, I easily detected 100+ attacks per day using a simple regular expression match. These days, I...
View ArticleReflected XSS in Splunk Web Affecting Version 4.0 to 4.3, (Wed, Mar 7th)
A vulnerability has be found in Splunk 4.0 - 4.3 that allows partial confidentiality and integrity violation, when a user click on a specifically crafted link that can disclose sensitive information to...
View ArticleMarch 2012 OUCH! - The Dos and Don'ts of Email http://bit.ly/ja6TMH, (Thu,...
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleApple Patches, (Thu, Mar 8th)
Apple's new mobile operating system, iOS 5.1, not only includes a number of new features, but also a large list of security relavant patches. Eventually, a link to the patches will be listed on Apple's...
View ArticleMicrosoft March Patch Tuesday Pre-Anouncement out. 6 patches, 1 critical:...
------ Johannes B. Ullrich, Ph.D. SANS Technology Institute Twitter (c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View Article