SANS Internet Storm Center, InfoCON: green

↧

Blue Coat: SSL Visibility Appliance web based vulnerabilities, (Sun, May 31st)

May 31, 2015, 3:47 am

Blue Coat has released a security advisory for SSL Visibility Appliance. The SSL Visibility Appliance is susceptible to multiple web-based vulnerabilities in the administration console. A remote...

View Article

ISC StormCast for Monday, June 1st 2015...

May 31, 2015, 6:37 pm

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

Submit Dshield ASA Logs, (Mon, Jun 1st)

June 1, 2015, 4:34 am

Recently I made some small modifications to the Dshield Linux Cisco PIX submission perl script (https://www.dshield.org/clients/framework/cisco.tar.gz). This allows anyone with an ASA or Cisco Security...

View Article

ISC StormCast for Tuesday, June 2nd 2015...

June 1, 2015, 6:13 pm

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

Guest Diary: Xavier Mertens - Playing with IP Reputation with Dshield &...

June 2, 2015, 6:00 am

[Guest Diary: Xavier Mertens] [Playing with IP Reputation with Dshield ">] When investigating incidents or searching for malicious activity in your logs, IP reputation is a nice way to increasethe...

View Article

Myfax malspam wave with links to malware and Neutrino exploit kit, (Wed, Jun...

June 2, 2015, 5:13 pm

Introduction As early as Wednesday2015-05-27, there have been more waves of malicious spam (malspam) spoofing myfax.com. On Tuesday 2015-06-02, the messages contained links to a zip archive ofa Pony...

View Article

ISC StormCast for Wednesday, June 3rd 2015...

June 2, 2015, 6:36 pm

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

Exploit kit roundup - early June 2015, (Thu, Jun 4th)

June 3, 2015, 7:04 pm

Introduction Security Operation Center (SOC) analysts investigate alerts on suspicious network activity. However, these analysts might not run across exploit kit (EK) traffic that often. An...

View Article

ISC StormCast for Thursday, June 4th 2015...

June 3, 2015, 7:04 pm

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

ISC StormCast for Friday, June 5th 2015...

June 4, 2015, 6:35 pm

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

Nmap 6.49BETA1 released, (Fri, Jun 5th)

June 5, 2015, 10:39 am

Fyodor has announced the release of Nmap 6.49BETA1.This version will have hundreds of improvement, including: Integrated all of the latest OS detection and version/service detection submissions...

View Article

Checking for BACNet devices inside corporate networks, (Sun, Jun 7th)

June 7, 2015, 1:43 pm

Building automation Networks are very common today for intelligent buildings. They interconnect several type of devices like escalators, elevators, power circuits, heating, ventilating and air...

View Article

ISC StormCast for Monday, June 8th 2015...

June 7, 2015, 6:34 pm

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

NoScript as a staple in the toolbox, (Mon, Jun 8th)

June 7, 2015, 9:13 pm

I know weve talked about NoScript here before, however it is something worth discussing on a regular basis, as it is a simple, solid product that works. Whenever I build a new desktop or laptop, one of...

View Article

ISC StormCast for Tuesday, June 9th 2015...

June 8, 2015, 6:31 pm

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

Web Application Security: It doesn't stop with the application, (Tue, Jun 9th)

June 9, 2015, 7:46 am

Most of the time, if a web application gets compromised, we hear about vulnerabilities like cross site scripting or SQL injection being used to gain access. However, many high profile web application...

View Article

Microsoft Patch Tuesday Summary for June 2015, (Tue, Jun 9th)

June 9, 2015, 11:12 am

Overview of the June 2015 Microsoft Patches and their status. # Affected Contra Indications - KB Known Exploits Microsoft rating(**) ISC rating(*) clients servers MS15-056 Cumulative Security Update...

View Article

ISC StormCast for Wednesday, June 10th 2015...

June 9, 2015, 5:50 pm

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

VMWare Workstation Guest Escape via Shared Printers on COM1, (Wed, Jun 10th)

June 10, 2015, 10:29 am

Shared hardware has always been a weakness of virtualization products. In some cases side channel attacks can be exploited to collect information from other virtual machines, or bugs in drivers can be...

View Article

How much is your IPv4 Space Worth, (Wed, Jun 10th)

June 10, 2015, 10:52 am

Thanks to Rob for reminding me of IPv4auction websites again. I looked at them a couple years ago, but there was very little real activity at the time. Looks like that has changed now. ARIN is...

View Article