ISC StormCast for Friday, December 5th 2014...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleVMware new and updated security advisories, (Fri, Dec 5th)
Today VMware has released the following new and updated security advisories: 1-VMSA-2014-0012 Summary VMware vSphere product updates address a Cross Site Scripting issue, a certificate validation issue...
View ArticleGoogle App Engine Java Security Sandbox bypasses, (Sat, Dec 6th)
Adam Gowdiakfrom Polish vulnerability research company Security Explorations has issued an announcement concerningvulnerabilites in the Google App Engine. Details are still somewhat thin, but it...
View ArticleStop Admiring The Problem. Start Addressing The Problem., (Mon, Dec 8th)
How much energy do you spending admiring your problems? It does not matter what the problem is - asset inventory, vulnerability management or security awareness. You do have problems. What are you...
View ArticleISC StormCast for Monday, December 8th 2014...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticlePOODLE Strikes (Bites?) Again, (Tue, Dec 9th)
As Adam Langley notes in hisblog [1], the POODLE vulnerability may be found in some implementations of TLS, not just in SSLv3. The problem is an implementation issue, not so much a problem with the...
View ArticleISC StormCast for Tuesday, December 9th 2014...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleMicrosoft Patch Tuesday - December 2014, (Tue, Dec 9th)
Overview of the December 2014 Microsoft patches and their status. # Affected Contra Indications - KB Known Exploits Microsoft rating(**) ISC rating(*) clients servers MS14-075 Vulnerabilities in...
View ArticleAdobe December Patch Tuesday, (Wed, Dec 10th)
Adobe today released two new bulletins, and updaed the Reader/Acrobat bulletin that was published a week ago. ">This update fixes 6 vulnerabilities, some of which can lead to remote code execution....
View ArticleISC StormCast for Wednesday, December 10th 2014...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleMalware Signed With Valid SONY Certificate (Update: This was a Joke!), (Wed,...
Update: Turns out that the malware sample that Kaspersky was reporting on was not actual malware from a real incident. But the story isnt quite harmless and the certificate should still be considered...
View ArticleTwo VMWare Security Updates for vCloud Automation Center and Airwatch, (Wed,...
We got two security updates from VMWare this week: VMWare ID CVE Product Details VMSA-2014-0013 CVE-2014-8373 VMware vCloud Automation Center Remote privilegeescalation vulnerability. Authenticated...
View ArticleOdd new ssh scanning, possibly for D-Link devices, (Wed, Dec 10th)
I noticed it in my own logs overnight and also had a couple of readers (both named Peter) report some odd new ssh scanning overnight. The scanning involves many sites, likely a botnet, attempting to...
View ArticleISC StormCast for Thursday, December 11th 2014...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleGMail quirk used to subvert website spam tracking, (Wed, Dec 10th)
Yesterday while reviewing our logs here at the SANS Internet Storm Center I stumbled upon these: login failed for s.ervic.d.157.6@gmail.com login failed for se.rv.icd.15.76@gmail.com login failed for...
View ArticleISC StormCast for Friday, December 12th 2014...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleWorm Backdoors and Secures QNAP Network Storage Devices, (Sun, Dec 14th)
Shellshock is far from over, with many devices still not patched andout there ready for exploitation. One set of thedevices receiving a lot of attention recently are QNAP disk storage systems. QNAP...
View ArticleISC StormCast for Monday, December 15th 2014...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleClik here to view.
Customized Support Scam Supported by Typo Squatting, (Mon, Dec 15th)
This attack got it all, and shows how hard it can be for a non ISC reader to evade some of these tech support scams. The URL used, http://login.microsoftlonine.com is only one letter off from the legit...
View ArticleSafari 8.0.2 Still Supporting SSLv3 with Block Ciphers, (Mon, Dec 15th)
In October, Apple released Security Update 2014-005, specifically with the intend to address the POODLE issue [1]. The description with the update stated: There are known attacks on the confidentiality...
View Article