Phishing 101: why depend on one suspicious message subject when you can use many?, (Thu, Sep 16th)
There are many e-mail subjects that people tend to associate with phishing due to their overuse in...
Read More
Category: SANS ISC Bulletins
Hancitor campaign abusing Microsoft’s OneDrive, (Wed, Sep 15th)
Introduction Malicious spam (malspam) pushing Hancitor malware (AKA: Chanitor, MAN1, Moskalvzapoe,...
Read MoreMicrosoft September 2021 Patch Tuesday, (Tue, Sep 14th)
This month we got patches for vulnerabilities. Of these, are critical, were previously disclosed and is being exploited according to Microsoft. As expected, Microsoft released the patch for the zero-day affecting MSHTML that...
Read More
Shipping to Elasticsearch Microsoft DNS Logs, (Sat, Sep 11th)
This parser takes the logs from a Windows 2012R2 and/or 2019 server (C:DNSLogswindns.log) and...
Read More
Updates to Our Datafeeds/API, (Thu, Sep 9th)
Most of the data we are collecting is freely available via our API. For quick documentation, see...
Read MoreMicrosoft Offers Workaround for 0-Day Office Vulnerability (CVE-2021-40444), (Wed, Sep 8th)
Microsoft today published an advisory with a workaround to mitigate an unpatched vulnerability in Microsoft Office. This vulnerability is currently used in targeted attacks. CVE-2021-40444 is a code execution vulnerability in...
Read More
“Stolen Images Evidence” Campaign Continues Pushing BazarLoader Malware, (Wed, Sep 8th)
Introduction Another day, another wave of malware. Although there’s plenty to find,...
Read More
Why I Gave Up on IPv6. And no, it is not because of security issues., (Tue, Sep 7th)
IPv6 adoption is growing. Around 30% of the Alexa Top 1000 websites support IPv6. Comcast, the ISP...
Read More
Attackers Will Always Abuse Major Events in our Lifes, (Thu, Sep 2nd)
All major events in our daily life are potential sources of revenue for attackers. When elections...
Read More
There may be (many) more SPF records than we might expect, (Wed, Aug 25th)
The Sender Policy Framework (SPF[1]) is a simple but fairly powerful mechanism that may be used...
Read More
Filter JSON Data by Value with Linux jq, (Sun, Aug 29th)
Since JSON has become more prevalent as a data service, unfortunately, it isn’t at all BASH...
Read MoreCryptocurrency Clipboard Swapper Delivered With Love , (Mon, Aug 30th)
Be careful if you’re a user of cryptocurrencies. My goal is not to re-open a debate about them and their associated financial risks. No, I’m talking here about technical risk. Wallet addresses are long strings of...
Read More
- 1
- ...
- 2
- 3
- 4
- 5
- 6
- 7
- 8
- 9
- 10
- 11
- 12
- 13
- 14
- 15
- 16
- 17
- 18
- 19
- 20
- 21
- 22
- 23
- 24
- 25
- 26
- 27
- 28
- 29
- 30
- 31
- 32
- 33
- 34
- 35
- 36
- 37
- 38
- 39
- 40
- 41
- 42
- 43
- 44
- 45
- 46
- 47
- 48
- 49
- 50
- 51
- 52
- 53
- 54
- 55
- 56
- 57
- 58
- 59
- 60
- 61
- 62
- 63
- 64
- 65
- 66
- 67
- 68
- 69
- 70
- 71
- 72
- 73
- 74
- 75
- 76
- 77
- 78
- 79
- 80
- 81
- 82
- 83
- 84
- 85
- 86
- 87
- 88
- 89
- 90
- 91
- 92
- 93
- 94
- 95
- 96
- 97
- 98
- 99
- 100
- 101
- 102
- 103
- 104
- 105
- 106
- 107
- 108
- ...
- 109