ISC Stormcast For Wednesday, February 1st 2017...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleClik here to view.
Quick Analysis of Data Left Available by Attackers, (Wed, Feb 1st)
While hunting for interesting cases, I found the following phishing email mimicking an UPS delivery notification: When you click on the link, you are redirected to the following URL:...
View ArticleMultiple Vulnerabilities in tcpdump, (Tue, Jan 31st)
A Debian security update for tcpdump32 different vulnerabilities in tcpdump that are addressed by this update [1]. While there are not a lot of details available yet, some of the vulnerabilities can...
View ArticleOUCH newsletter: Staying Secure on the Road...
--- Johannes B. Ullrich, Ph.D. STI|Twitter|LinkedIn (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleMultiple vulnerabilities discovered in popular printer models, (Thu, Feb 2nd)
Researchers from University Alliance Ruhr have announced that they have discovered vulnerabilities in popular laser printers including models from HP, Lexmark, Dell, Brother, Konica and Samsung. The...
View ArticleISC Stormcast For Thursday, February 2nd 2017...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleNew tcpdump release -> 4.9.0 http://www.tcpdump.org/#latest-release,...
-- Rick Wanner MSISE - rwanner at isc dot sans dot edu - http://namedeplume.blogspot.com/ - Twitter:namedeplume (Protected) (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons...
View ArticleClik here to view.
Windows SMBv3 Denial of Service Proof of Concept (0 Day Exploit), (Thu, Feb...
The tweet originally announcing this issue stated that Windows 2012 and 2016 is vulnerable. I tested it with a fully patched Windows 10, and got an immediate blue screen of death (see below for...
View ArticleISC Stormcast For Friday, February 3rd 2017...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleCisco - Issue with Clock Signal Component, (Fri, Feb 3rd)
One of our readers, Dalibor Cerar, sent us an email about an issue impacting Cisco...at this point. While its a hardware issue, the result if it occurs is a self inflicted Denial of Service. Cisco...
View ArticleDetecting Undisclosed Vulnerabilities with Security Tools & Features,...
Im a big fan of OSSEC[1]. This tools is an open source HIDS and log management tool.Although often considered asthe SIEM of the poor, it integrates a lot of interesting features and is fully...
View ArticleMany Malware Samples Found on Pastebin, (Sun, Feb 5th)
pastebin.com is a wonderful website. Im scrapping all posted pasties (not only from pastebin.com) and pass them to a bunch of regular expressions. As I said in a previous diary[1], it is a good way to...
View ArticleISC Stormcast For Monday, February 6th 2017...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleWhat Are These Odd POP3 (Port 110/tcp) Scans About?, (Mon, Feb 6th)
I am seeing a steady trickle of scans for %%port:110%% against my honeypot. Initially, I believed that the goal was brute forcing e-mail passwords. But instead, when setting up a quick netcat listener,...
View ArticleClik here to view.
Malicious Or Not? You decide..., (Mon, Feb 6th)
On of the hardest tasks in security, and probably fundamentally an impossible task is to figure out if something is not malicious. Even the code you wrote yourself, once it exceeds a certain...
View ArticleISC Stormcast For Tuesday, February 7th 2017...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleMy Password is [taco] Using Emojis for Stronger Passwords, (Tue, Feb 7th)
When I tried to include the [taco] Unicode characters in the headline to this post, it cut off the headline. Supporting Unicode isnt easy, and often, to avoid security issues arising from Unicode, it...
View ArticleISC Stormcast For Wednesday, February 8th 2017...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleCloud Metadata Urls, (Wed, Feb 8th)
This is a guest diary contributed by Remco Verhoef. Interested in publishing a guest diary? Sent us your idea via our contact form. Most cloud providers offer metadata using private urls. Those urls...
View ArticleISC Stormcast For Thursday, February 9th 2017...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View Article