Microsoft released a Fix-it for the Internet Explorer 8 Vulnerability...
------ Johannes B. Ullrich, Ph.D. SANS Technology Institute Twitter (c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleAdobe Releases 0-day Security Advisory for Coldfusion, Exploit Code...
-- John Bambenek bambenek \at\ gmail /dot/ com Bambenek Consulting (c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleISC StormCast for Friday, May 10th 2013...
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleMicrosoft and Adobe Patch Tuesday Pre-Release, (Fri, May 10th)
Both Adobe and Microsoft released pre-anouncements for next week's patch Tuesday. Microsoft is working on having a patch available for the Internet Explorer 8 0-day vulnerability. [1] There are two...
View ArticleClik here to view.
Extracting Digital Signatures from Signed Malware, (Sat, May 11th)
Sometimes attackers digitally sign their malicious software. Examining properties of the signature helps malware analysts understand the context of the incident. Moreover, analysts could use the...
View ArticleISC StormCast for Monday, May 13th 2013...
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleSo what passwords are those ssh scanners trying?, (Tue, May 14th)
If you run an ssh server (especially if you still run it on the default port), you've no doubt had plenty of folks scan your machine and do password guessing attacks against it. BTW, you'll never get...
View ArticleISC StormCast for Tuesday, May 14th 2013...
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleAdobe May 2013 Black Tuesday Overview, (Tue, May 14th)
Adobe released their May 2013 Black Tueday bulletins: # Affected CVE Adobe rating APSB13-13 ColdFusion CVE-2013-1387 CVE-2013-1388 Critical APSB13-14 Flash Player and AIR CVE-2013-2728 CVE-2013-3324...
View ArticleFirefox & Thunderbird released, (Tue, May 14th)
Mozilla decided to join the mayhem on Black Tuesday this month and released Firefox and Thunderbird. This updates to: Firefox 21.0 Firefox ESR 17.0.6 Thunderbird 17.0.6 Thunderbird ESR 17.0.6 Release...
View ArticleCVE-2013-2094: Linux privilege escalation, (Tue, May 14th)
A vulnerability was discovered using fuzzing in linux kernels 2.6.37 till 3.8.9. The vulenrability requires the kernel to be compiled with PERF_EVENTS, but unfortunately that seems the case for quite...
View ArticleMicrosoft Security Advisory overview, (Tue, May 14th)
Malware Protection Engine Microsoft released security advisory 2846338 indicating that they have update their Malware Protection Engine (used in a varierty of their anti malware products) to fix a...
View ArticleMicrosoft May 2013 Black Tuesday Overview, (Tue, May 14th)
Overview of the May 2013 Microsoft patches and their status. # Affected Contra Indications - KB Known Exploits Microsoft rating(**) ISC rating(*) clients servers MS13-037 The usual monthly MSIE...
View ArticleISC StormCast for Wednesday, May 15th 2013...
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleCall for Papers - 4th annual Forensics and Incident Response Summit EU,...
http://computer-forensics.sans.org/blog/2013/05/15/sans-eu-dfir-summit-in-prague-call-for-speakers-now-open/ The 4th annual Forensics and Incident Response Summit EU will take place on October 6-13 in...
View ArticleISC StormCast for Thursday, May 16th 2013...
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleCisco TelePresence Supervisor MSE 8050 Denial of Service Vulnerability, (Thu,...
Cisco TelePresence Supervisor MSE 8050 contains a vulnerability that may allow an unauthenticated, remote attacker to cause high CPU utilization and a reload of the affected system. Cisco has released...
View ArticleExtracting signatures from Apple .apps, (Thu, May 16th)
As an add-on to ISC Handler Lenny Zeltser's earlier diary on extracting certificates from signed Windows binaries, here's how to do the same on a Mac. Given that today's blog over at F-Secure...
View Articlee-netprotections.su ?, (Fri, May 17th)
Like with .biz, I sometimes have the impression that .su and .cc could be sinkholed in their entirety, because the bad domains seem to vastly outnumber whatever (if any) good is running under these...
View ArticleISC StormCast for Friday, May 17th 2013...
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View Article