ISC Stormcast For Monday, December 4th 2017...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleClik here to view.
IR using the Hive Project., (Tue, Dec 5th)
Request Tracker Incident Response (RTIR) is one of the most popular IR ticketing systems. Its a open source project based on perl and MySQL. While it meets all your typical ticket tracking items, it...
View ArticleISC Stormcast For Tuesday, December 5th 2017...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleISC Stormcast For Wednesday, December 6th 2017...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticlePSA: Do not Trust Reverse DNS (and why does an address resolve to...
Odd reverse DNS entries keep coming up from time to time. So I think we are due for a quick public service announcement about reverse DNS. Reverse DNS can be a valuable to find out more about an IP...
View ArticleApple Updates Everything. Again. , (Wed, Dec 6th)
After a rushed release of iOS 11.2 over the weekend to fix a "December 2nd Crash" bug, and last weeks special update to fix the passwordless root authentication bypass in macOS, Apple today released...
View ArticleISC Stormcast For Thursday, December 7th 2017...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleISC Stormcast For Friday, December 8th 2017...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleUsing Our API To Adjust iptables Rules, (Fri, Dec 8th)
We are offering a simple (IMHO) API to allow you to script various queries against our databases. One dataset we offer is a list of IP addresses that are scanning the internet for exposed services. The...
View ArticleClik here to view.
Sometimes it's a dud, (Sat, Dec 9th)
A reader submitted a malicious RTF file, experiencing difficulty to find the malicious code. It was delivered via email, we analyze the file with emldump.py: I've seen such emails before: They...
View ArticleISC Stormcast For Monday, December 11th 2017...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleClik here to view.
Pornographic malspam pushes coin miner malware, (Mon, Dec 11th)
Introduction On Saturday 2017-12-09 and Sunday 2017-12-10, I came across a wave of malicious spam (malspam) with links to a Bitcoin miner disguised as pornographic material. The emails all had the...
View ArticleISC Stormcast For Tuesday, December 12th 2017...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleDecember Microsoft Patch Tuesday Summary, (Tue, Dec 12th)
Microsoft today patched 36 different vulnerabilities (+ Flash). Luckily, none of the vulnerabilities have been exploited in the wild of have been disclosed prior to today. The list includes the malware...
View ArticleISC Stormcast For Wednesday, December 13th 2017...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleTracking Newly Registered Domains, (Wed, Dec 13th)
Here is the next step in my series of diaries related to domain names. After tracking suspicious domains with a dashboard[1] and proactively searching for malicious domains[2], let’s focus on newly...
View ArticleISC Stormcast For Thursday, December 14th 2017...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleSecurity Planner: Improve your online safety, (Thu, Dec 14th)
Just in time for holiday visits with your familes and friends, soon you will face the inevitable questions, particularly if you're a security practitioner of any sort. "There are always questions about...
View ArticleOpenSSH client now built in to Windows 10. Here's how to enable:...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleISC Stormcast For Friday, December 15th 2017...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View Article