Adobe Flash Player Update -...
-Kevin -- ISC Handler on Duty (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleISC StormCast for Wednesday, June 24th 2015...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleThe Powershell Diaries - Finding Problem User Accounts in AD, (Wed, Jun 24th)
Powershell has gotten a lot of attention lately as a pentesters tool of choice, since it has access to pretty much every low-level system function in the Microsoft ecosystem, and the AV industry isnt...
View ArticleISC StormCast for Thursday, June 25th 2015...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleWeb security subtleties and exploitation of combined vulnerabilities, (Thu,...
The goal of a penetration test is to report all identified vulnerabilities to the customer. Of course, every penetration tester puts most of his effort into finding critical security vulnerabilities:...
View ArticleCisco default credentials - again!, (Fri, Jun 26th)
Cisco today released a security advisory announcing that some of Ciscos IronPort virtual appliance products contain multiple default SSH keys. To quote: A vulnerability in the remote support...
View ArticleISC StormCast for Friday, June 26th 2015...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleIs Windows XP still around in your Network a year after Support Ended?, (Sat,...
This week Computerworld [1] published a story about the US Navy still paying Microsoft millions to support Windows XP when support ended April 8, 2014 [2] and soon Windows server 2003 will follow suit...
View ArticleThe EICAR Test File, (Sun, Jun 28th)
Im sure most of you are familiar with the EICAR (European Institute for Computer Antivirus Research) test file. Your anti-virus application should detect the EICAR test file the same way it detects...
View ArticleISC StormCast for Monday, June 29th 2015...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleThe Powershell Diaries 2 - Software Inventory, (Mon, Jun 29th)
After last weeks story, hopefully youve got your problem users accounts identified. With that worked out, lets see about finding problem applications. We all need a handle on what applications are...
View ArticleISC StormCast for Tuesday, June 30th 2015...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleHow Malware Campaigns Employ Google Redirects and Analytics, (Tue, Jun 30th)
The email message sent to the bank employee claimed that the sender received a wire transfer from the recipients organization and that the sender wanted to confirm that the payment went through without...
View ArticleISC StormCast for Wednesday, July 1st 2015...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleApple "Patch Tuesday", (Wed, Jul 1st)
Yesterday, Apple released patches for OS X, iOS, Safari, Mac EFI, iTunesand Quicktime (Windows) [1]. Here some of the highlights: EFI Update EFI is the firmware running your Mac. This update will only...
View ArticleJuly OUCH Newsletter - Social Media: http://www.securingthehuman.org/ouch,...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticlePatch for Default Account Credentials in Cisco Unified Communications Domain...
--- Johannes B. Ullrich, Ph.D. STI|Twitter|LinkedIn (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleAnother example of Angler exploit kit pushing CryptoWall 3.0, (Thu, Jul 2nd)
Introduction Angler exploit kit (EK) has been evolving quite a bit lately. Recently, this EK hasbeen altering its URL patterns on a near-daily basis. Thechanges accumulate, and you might not recognize...
View ArticleISC StormCast for Thursday, July 2nd 2015...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleAnalyzing Quarantine Files, (Fri, Jul 3rd)
Quarantine files are produced by anti-virus programs. When an anti-virus detects a file (a positive), it will take action. A possible action is to put the detected file in quarantine: remove it from...
View Article