Quantcast
Channel: SANS Internet Storm Center, InfoCON: green
Browsing all 8331 articles
Browse latest View live
↧

ISC StormCast for Tuesday, March 24th 2015...

:0
:0
March 23, 2015, 8:20 pm

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article
Search

Repurposing Logs, (Tue, Mar 24th)

:0
:0
March 24, 2015, 9:11 am

Keeping an eye on your logs is critical (really, its number 14 on the SANS critical list of controls: https://www.sans.org/critical-security-controls/control/14 .) Earlier Rob VandenBrink shared some...

View Article

ISC StormCast for Wednesday, March 25th 2015...

:0
:0
March 24, 2015, 8:19 pm

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

PHP 5.5.23 is available, (Wed, Mar 25th)

:0
:0
March 25, 2015, 7:55 am

From the fine folks at php.net: The PHP development team announces the immediate availability of PHP 5.5.23. Several bugs have been fixed as well as CVE-2015-0231, CVE-2015-2305 and CVE-2015-2331. All...

View Article

F-Secure: FSC-2015-2: PATH TRAVERSAL VULNERABILITY, (Wed, Mar 25th)

:0
:0
March 25, 2015, 8:20 am

F-Secure has announced a security vulnerability affecting their corporate and consumer protection products. The details are available here:https://www.f-secure.com/en/web/labs_global/fsc-2015-2 (c)...

View Article

Nmap/Google Summer of Code, (Wed, Mar 25th)

:0
:0
March 25, 2015, 9:06 am

The Nmap security scanner project is participating again in its 11th Google Summer of Code. We often get queries from students on how they can get into this field, and this is an excellent way to get...

View Article

Pin-up on your Smartphone!, (Thu, Mar 26th)

:0
:0
March 25, 2015, 5:59 pm

Yeah, okay, I admit that headline is cheap click bait. Originally, it said Certificate Pinning on Smartphones. If you are more interested in pin-ups on your smartphone, I fear youll have to look...

View Article

ISC StormCast for Thursday, March 26th 2015...

:0
:0
March 25, 2015, 8:16 pm

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article
Search

ISC StormCast for Friday, March 27th 2015...

:0
:0
March 26, 2015, 8:01 pm

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

Friday Digest - 27 MAR 2015, (Fri, Mar 27th)

:0
:0
March 27, 2015, 5:59 pm

JS Malware uptick Weve been seeing an uptick in JS malware (TrojanDownloader:JS/Nemucod.K) loosely disguised as .doc files. The JavaScript is reasonably obfuscated but if executed does result in a...

View Article
Image may be NSFW.
Clik here to view.

Malicious XML: Matryoshka Edition, (Sun, Mar 29th)

:0
:0
March 29, 2015, 3:23 am

A couple of days ago I received another malicious document (078409755.doc B28EF236D901A96CFEFF9A70562C9155). Unlike the XML file I wrote about before, this one does not contain VBA macros: But as you...

View Article

ISC StormCast for Monday, March 30th 2015...

:0
:0
March 29, 2015, 4:35 pm

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

YARA Rules For Shellcode, (Mon, Mar 30th)

:0
:0
March 30, 2015, 9:11 am

I had a guest diary entry about my XORSearch tool using shellcode detection rules from Frank Boldewins OfficeMalScanner. To detect malicious documents, Frank coded rules to detect shellcode and other...

View Article

Select Star from PCAP - Treating Packet Captures as Databases, (Tue, Mar 31st)

:0
:0
March 30, 2015, 6:29 pm

Have you ever had to work with a large packet capture, and after getting past the initial stage of being overwhelmed by a few million packets, find that are still a bit overwhelmed? I quite often work...

View Article

ISC StormCast for Tuesday, March 31st 2015...

:0
:0
March 30, 2015, 6:58 pm

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article
Search

Rig Exploit Kit Changes Traffic Patterns, (Wed, Apr 1st)

:0
:0
March 31, 2015, 5:34 pm

Sometime within the past month, Rig exploit kit (EK) changed URL structure." /> Notice the PHPSSESID and ?req= patterns in the above example." /> Now, we dont see the PHPSSESID and ?req=...

View Article

ISC StormCast for Wednesday, April 1st 2015...

:0
:0
March 31, 2015, 9:09 pm

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

Angler Exploit Kit - Recent Traffic Patterns, (Thu, Apr 2nd)

:0
:0
April 1, 2015, 6:40 pm

Angler exploit kit (EK) has changed URL patterns (again) during the past month. I infected a Windows host so we can take a closer look. Lets see what Angler has been up to." /> The domains and URLs...

View Article

ISC StormCast for Thursday, April 2nd 2015...

:0
:0
April 1, 2015, 7:11 pm

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

ISC StormCast for Friday, April 3rd 2015...

:0
:0
April 2, 2015, 5:35 pm

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article
Browsing all 8331 articles
Browse latest View live
Search