CVE-2013-2251 Apache Struts 2.X OGNL Vulnerability, (Fri, Aug 16th)
On July 16th, 2013 Apache announced a vulnerability affecting Struts 2.0.0 through 2.3.15 (http://struts.apache.org/release/2.3.x/docs/s2-016.html) and recommended upgrading to 2.3.15.1...
View ArticleClik here to view.
Filtering Signal From Noise, (Fri, Aug 16th)
We have used the term "internet background radiation" more than once to describe things like SSH scans. Like cosmic background radiation, it's easy to consider it noise, but one can find signals...
View ArticleISC StormCast for Sunday, August 18th 2013...
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleClik here to view.
Running Snort on ESXi using the Distributed Switch, (Mon, Aug 19th)
This is a guest diary contributed by Basil Alawi In a previous diary I wrote about running snort on Vmware ESXi[1] . While that setup might be suitable for small setup with one ESXi host, it might be...
View ArticleBusiness Risks and Cyber Attacks, (Mon, Aug 19th)
According to LLoyd's (An insurance market company) latest survey, it ranks Cyber Risk as the number three overall risks amongst 500 senior business leaders it surveyed. "It appears that businesses...
View ArticleZMAP 1.02 released, (Mon, Aug 19th)
The folks at ZMAP have released version 1.02 of their scanning tool ( https://zmap.io/ ) ZMAP's claim to fame is it's speed - the developers indicate that with a 1Gbps uplink, the entire IPv4 space...
View ArticleISC StormCast for Tuesday, August 20th 2013...
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleMicrosoft re-releases MS13-066:...
------ Johannes B. Ullrich, Ph.D. SANS Technology Institute Twitter (c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleNMAP 6.40 Released (www.nmap.org), Release Notes at...
=============== Rob VandenBrink Metafore (c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleISC StormCast for Wednesday, August 21st 2013...
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleClik here to view.
Psst. Your Browser Knows All Your Secrets., (Wed, Aug 21st)
This is a "guest diary" submitted by Sally Vandeven. We will gladly forward any responses or please use our comment/forum section to comment publically. Sally is currently enrolled in the SANS...
View ArticleISC StormCast for Thursday, August 22nd 2013...
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleFibre Channel Reconnaissance - Reloaded, (Wed, Aug 21st)
At SANSFIRE this year I had a fun presentation on Fibre Channel (FC) recon and attack (which I promise to post as soon as I get a chance to update it!). In that talk we went through various methods...
View ArticleRead of the Week: A Fuzzy Future in Malware Research, (Thu, Aug 22nd)
The August 2013 ISSA Journal includes an excellent read from Ken Dunham: A Fuzzy Future in Malware Research. Ken is a SANS veteran (GCFA Gold, GREM Gold, GCIH Gold, GSEC, GCIA) who spends a good bit...
View ArticleChrome 29.0.1547.57 released http://goo.gl/mUJYdH, (Thu, Aug 22nd)
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticlePHP and VMWare Updates, (Fri, Aug 23rd)
PHP 5.4.19 and PHP 5.5.3 The PHP development team announces the immediate availability of PHP 5.4.19 and PHP 5.5.3. These releases fix a bug in the patch for CVE-2013-4248 in OpenSSL module and...
View ArticleWhen does your browser send a "Referer" header (or not)?, (Sun, Aug 25th)
(note: per RFC, we spell the Referer header with one 'r', well aware that in proper English, one would spell the word referrer with double r). The "Referer" header is frequently considered a privacy...
View ArticleISC StormCast for Monday, August 26th 2013...
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleClik here to view.
Stop, Drop and File Carve, (Mon, Aug 26th)
This is a "guest diary" submitted by Tom Webb. We will gladly forward any responses or please use our comment/forum section to comment publically. Tom is currently enrolled in the SANS Masters...
View ArticleISC StormCast for Tuesday, August 27th 2013...
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View Article