Quantcast
Channel: SANS Internet Storm Center, InfoCON: green
Browsing all 8244 articles
Browse latest View live
↧

Challenge: What can you do with Funky Directory Names (Part 2), (Mon, Apr 16th)

:0
:0
April 16, 2012, 6:11 am

Following up on last weeks challenge I'd like to add a new element to the challenge, then review some of the EXCELLENT comments we received from our readers. First lets add a new element to the...

View Article
Search

McAfee DAT troubles , (Mon, Apr 16th)

:0
:0
April 16, 2012, 2:11 pm

Thanks to reader Dan for sharing the following information: McAfee has confirmed that incremental DAT 6682 may trigger message scan failures and a system crash in GroupShield Exchange (MSME),...

View Article

Sysinternals Updates - 2012 Apr 17, (Wed, Apr 18th)

:0
:0
April 17, 2012, 10:37 pm

In case you have not seen or heard, some of our readers pointed us to Monday's posting on the Sysinternals Site Discussion panel about a number of updates that are now available. Among the release are...

View Article

Oracle Critical Patch Update Advisory - April 2012:...

:0
:0
April 18, 2012, 8:52 am

(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

ISC Feature of the Week: Suspicious Domains, (Wed, Apr 18th)

:0
:0
April 18, 2012, 9:39 am

Overview After some maintenance downtime, the Suspicious Domains lists at https://isc.sans.edu/tools/suspicious_domains.html have been re-launched. This project was developed by handler Jason Lam and...

View Article

ISC StormCast for Thursday, April 19th 2012...

:0
:0
April 18, 2012, 5:21 pm

(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

OpenSSL Security Advisory - CVE-2012-2110, (Thu, Apr 19th)

:0
:0
April 19, 2012, 12:41 pm

Earlier today, the OpenSSL team released a fix for a recently discovered vulnerability that exposes applications, that use certain features of OpenSSL, to a heap overflow. Since OpenSSL is used...

View Article

ISC StormCast for Friday, April 20th 2012...

:0
:0
April 19, 2012, 2:03 pm

(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article
Search

WordPress Release Security Update, (Sat, Apr 21st)

:0
:0
April 21, 2012, 6:55 am

WordPress released a security update (version 3.3.2) that fixes 3 external libraries (Plupload, SWFUpload and SWFObject) as well as privilege escalation and cross-site script (XSS) issues as well as 5...

View Article

ISC StormCast for Monday, April 23rd 2012...

:0
:0
April 22, 2012, 5:59 pm

(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

Comments open for NIST-proposed updates to Digital Signature Standard, (Mon,...

:0
:0
April 23, 2012, 10:11 am

The comment period forNational Institute of Standards and Technology (NIST) proposed changes to the Digital Signature Standard (FIPS 186-3) is open until May 25, 2012. Submit comments...

View Article

Continued interest in Nikjju mass SQL injection campaign, (Mon, Apr 23rd)

:0
:0
April 23, 2012, 5:17 pm

Readers continue to write in conveying updates from sources regarding theNikjju mass SQL injection campaign. Like the Lilupophilupop campaign from December,ASP/ASP.net sites are target and scripts...

View Article

ISC StormCast for Tuesday, April 24th 2012...

:0
:0
April 23, 2012, 7:06 pm

(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

Emergency Operations Centers & Security Incident Management: A Correlation,...

:0
:0
April 23, 2012, 7:36 pm

I spent last Tuesday (17APR2012) taking orientation training at the State Emergency Operations Center (SEOC), a facility operated by the Washington State Military Department, Emergency Management...

View Article

OpenSSL reissues fix for ASN1 BIO vulnerability, (Tue, Apr 24th)

:0
:0
April 24, 2012, 8:45 am

OpenSSL has posted an updated advisory today indicating the fix for CVE-2012-2110 released on 19APR2012 was not sufficient to correct the ASN1 BIO vulnerability issue for OpenSSL version 0.9.8. Please...

View Article
Search

Mozilla Firefox and Thunderbird 12 now available , (Tue, Apr 24th)

:0
:0
April 24, 2012, 2:24 pm

(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

ISC StormCast for Wednesday, April 25th 2012...

:0
:0
April 24, 2012, 6:27 pm

(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

Blacole's obfuscated JavaScript, (Wed, Apr 25th)

:0
:0
April 25, 2012, 4:44 am

Looking back on how we used to analyze malicious JavaScript five years ago, it is quite amazing to see the evolution of code obfuscation that the bad guys went through. Most of the current obfuscation...

View Article

Microsoft Security Intelligence Report (SIR) Volume #12:...

:0
:0
April 25, 2012, 10:35 am

(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

Blacole's shell code, (Wed, Apr 25th)

:0
:0
April 25, 2012, 1:41 pm

Let's assume you finished the analysis of Blacole's obfuscated Javascript (see my earlier diary today), and you are still left with a code block like this and you wonder what it does. The first step...

View Article
Browsing all 8244 articles
Browse latest View live
Search