Recent trends in Nuclear Exploit Kit activity, (Thu, Oct 1st)
Introduction Since mid-September 2015, Ive generated a great deal of Nuclear exploit kit (EK) traffic after checking compromised websites. This summer, I usually foundAngler EK. Now Im seeing more...
View ArticleISC StormCast for Thursday, October 1st 2015...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleISC StormCast for Friday, October 2nd 2015...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleBizCN gate actor update, (Fri, Oct 2nd)
Introduction The actor using gates registered through BizCN(alwayswith privacy protection) continues using the Nuclear exploit kit (EK) to deliver malware. My previous diary on this actor documented...
View ArticleGnuPG (GPG) 2.1.9 release announced, (Sun, Oct 11th)
The GnuPG group has announced the release of GPG version 2.1.9, which addresses a number of technical issues within the components of the code. The update of any encryption component should be...
View ArticleISC StormCast for Monday, October 12th 2015...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleData Visualization,What is your Tool of Choice?, (Mon, Oct 12th)
Over the years, I have used several types of graphing tools to visualize data, some free some commercial and haven either in real-time or consume that data later during an incident. Some of the more...
View ArticleCritical Vulnerability in Multiple Cisco Products - Apache Struts 2 Command...
----------- Guy Bruneau IPSS Inc. Twitter: GuyBruneau gbruneau at isc dot sans dot edu (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States...
View ArticleISC StormCast for Tuesday, October 13th 2015...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleAdobe Updates Acrobat and Adobe Reader, (Tue, Oct 13th)
Adobe has released APSB15-24 which addresses 56 vulnerabilities: CVE-2015-5583, CVE-2015-5586, CVE-2015-6683, CVE-2015-6684, CVE-2015-6685, CVE-2015-6686, CVE-2015-6687, CVE-2015-6688, CVE-2015-6689,...
View ArticleOctober 2015 Microsoft Patch Tuesday, (Tue, Oct 13th)
Overview of the October 2015 Microsoft patches and their status. # Affected Contra Indications - KB Known Exploits Microsoft rating(**) ISC rating(*) clients servers MS15-106 Cumulative Security Update...
View ArticleISC StormCast for Wednesday, October 14th 2015...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleAV Phone Scan via Fake BSOD Web Pages, (Tue, Oct 13th)
A few days ago, I found a malicious website which triesto lure the visitor by simulating a Microsoft Windows Blue Screen of Death(BSOD) and popping up error messages within their browser. This is not a...
View ArticleWould you like use to encrypt e-mail (or not)? Take our E-mail crypto survey...
--- Johannes B. Ullrich, Ph.D. STI|Twitter|LinkedIn (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleExploit kit roundup: Less Angler, more Nuclear, (Thu, Oct 15th)
Introduction Earlier this month, Ciscos Talos team published an in-depth report on the Angler exploit kit (EK) [1]. The report also documentedCiscos coordination with hosting providers to shut down...
View ArticleISC StormCast for Thursday, October 15th 2015...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleOngoing Flash Vulnerabilities, (Thu, Oct 15th)
We got a number readers asking about the ongoing issues with Flash. Adobe released its regularly monthly update for Flash on Tuesday. With this update, you should be running Flash 19.0.0.207. However,...
View ArticleISC StormCast for Friday, October 16th 2015...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleAdobe Flash Update, (Fri, Oct 16th)
Adobe released a new Flash Player update to fix the latest 0-day vulnerabilities. Flash Player v 19.0.0.226 Flash Player ESR v 18.0.0.255 To update, visit https://get.adobe.com/flashplayer/ -- Alex...
View ArticleCIS Critical Security Controls - Version 6.0, (Sat, Oct 17th)
Right in the middle of Cyber Security Awareness Month (CSAM), the Center for Internet Security (CIS) releasedVersion 6.0of theCISCriticalSecurityControlsforEffectiveCyberDefense.This...
View Article