Multi Perimeter Device Exploit Mirai Version Hunting For Sonicwall, DLink, Cisco and more, (Tue, Jun 15th)
Vulnerable perimeter devices remain a popular target, and we do see consistent exploit attempts...
Read More
Category: SANS ISC Bulletins
Update: mac-robber.py, (Sun, Jun 13th)
Almost 4 years ago, I wrote a python version of mac-robber. I use it fairly regularly at $dayjob....
Read More
Fortinet Targeted for Unpatched SSL VPN Discovery Activity, (Sat, Jun 12th)
Over the past 60 days, I have observed scanning activity to discover FortiGate SSL VPN unpatched...
Read MoreSonicwall SRA 4600 Targeted By an Old Vulnerability, (Fri, Jun 11th)
Devices and applications used to provide remote access are juicy targets. I’ve already been involved in many ransomware cases and most of the time, the open door was an unpatched VPN device/remote access solution or weak...
Read More
Keeping an Eye on Dangerous Python Modules, (Fri, Jun 11th)
With Python getting more and more popular, especially on Microsoft Operating systems, it’s...
Read More
Are Cookie Banners a Waste of Time or a Complete Waste of Time?, (Thu, May 20th)
Legislation, in particular in the European Union, has led to a proliferation of “Cookie...
Read More
Architecture, compilers and black magic, or “what else affects the ability of AVs to detect malicious files”, (Wed, Jun 9th)
In my last diary, we went over the impact of different Base encodings on the ability of...
Read MoreMicrosoft June 2021 Patch Tuesday, (Tue, Jun 8th)
This month we got patches for 50 vulnerabilities. Of these, 5 are critical, 2 were previously disclosed and 6 is already being exploited according to Microsoft. The highlight this time, of course, goes to the 6 zero-days: an...
Read More
Amazon Sidewalk: Cutting Through the Hype, (Mon, Jun 7th)
Later this week (tomorrow?), Amazon will enable its new Sidewalk feature. The feature has already...
Read More
Strange goings on with port 37, (Thu, Jun 3rd)
Similar to Yee Ching’s diary on Thursday, I noticed an oddity in the Dshield data last...
Read More
Russian Dolls VBS Obfuscation, (Fri, Jun 4th)
We received an interesting sample from one of our readers (thanks Henry!) and we like this. If you...
Read More
DShield Data Analysis: Taking a Look at Port 45740 Activity, (Thu, Jun 3rd)
At the SANS Internet Storm Center (ISC), handlers frequently analyze data submitted from DShield...
Read More
- 1
- ...
- 2
- 3
- 4
- 5
- 6
- 7
- 8
- 9
- 10
- 11
- 12
- 13
- 14
- 15
- 16
- 17
- 18
- 19
- 20
- 21
- 22
- 23
- 24
- 25
- 26
- 27
- 28
- 29
- 30
- 31
- 32
- 33
- 34
- 35
- 36
- 37
- 38
- 39
- 40
- 41
- 42
- 43
- 44
- 45
- 46
- 47
- 48
- 49
- 50
- 51
- 52
- 53
- 54
- 55
- 56
- 57
- 58
- 59
- 60
- 61
- 62
- 63
- 64
- 65
- 66
- 67
- 68
- 69
- 70
- 71
- 72
- 73
- 74
- 75
- 76
- 77
- 78
- 79
- 80
- 81
- 82
- 83
- 84
- 85
- 86
- 87
- 88
- 89
- 90
- 91
- 92
- 93
- 94
- 95
- 96
- 97
- 98
- 99
- 100
- 101
- ...
- 102