SANS Internet Storm Center, InfoCON: green: Sysinternals 6.03 is out. Bug...
=============== Rob VandenBrink Metafore (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleClik here to view.
ArsTechnica: Security Content: Web host agrees to pay $1m after it’s hit by...
(credit: Aurich Lawson)A Web-hosting service recently agreed to pay $1 million to a ransomware operation that encrypted data stored on 153 Linux servers and 3,400 customer websites, the company said...
View ArticleSANS Internet Storm Center, InfoCON: green: As Your Admin Walks Out the Door...
One of our readers (thanks Gebhard) mailed us a link to an article on what the press is apparently now calling a Revenge Wipe - a system administrator who has left the organization, and as a last...
View ArticleSANS Internet Storm Center, InfoCON: green: ISC Stormcast For Tuesday, June...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleClik here to view.
Un informático en el lado del mal: Cómo saltarse AppLocker en Windows 10 con...
La semana pasada hablamos de un Bypass a AppLocker mediante el uso de la aplicación BgInfo. Hoy hablaremos de la configuración por defecto de AppLocker y los riesgos que esto proporcionan para la...
View ArticleSANS Internet Storm Center, InfoCON: green: Windows Error Reporting: DFIR...
This please let us know.IntroductionRecently, I was confronted with a scenario where a very suspicious Windows pop-up message was shown to a specific user on a corporate network. It was a kind of...
View ArticleClik here to view.
48Bits Blog: LaCon2k16 Call For Pulpos
We are proud to present the call for papers for Lacon 2016!, get your papers in now. We are accepting short talks of 30min and long talks of ~1h.[when]conf will be held from the 23rd to the 25th of...
View ArticleClik here to view.
Niels Provos: Support my videos on Patreon!
Add your support on Patreon to help me create more videos. Your support will help with materials, rent as well as other equipment, e.g. cameras, lights, software, etc. It is not required but...
View ArticleFortinet FortiGuard Blog: An Inside Look at CVE-2017-0199 – HTA and Scriptlet...
FortiGuard Labs recently came across a new strain of samples exploiting the CVE-2017-0199 vulnerability. This vulnerability was fixed by Microsoft and the patch was released in April 2017. Due to its...
View ArticleClik here to view.
ArsTechnica: Security Content: More Android apps from dangerous Ztorg family...
Enlarge (credit: Kaspersky Lab)For the second time this month, Google has removed Android apps from its Google Play marketplace. Google did so after a security researcher found the apps contained code...
View ArticleClik here to view.
Carnal0wnage Blog: NTP/SNMP amplification attacks
I needed to verify a SNMP and NTP amplification vulnerability was actually working. Metasploit has a few scanners for ntp vulns in the auxiliary/scanner/ntp/ntp_* and it will report hosts as being...
View ArticleSANS Internet Storm Center, InfoCON: green: ISC Stormcast For Wednesday, June...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleClik here to view.
Un informático en el lado del mal: Aprende a tener Redes más seguras con...
Esta semana ha tenido lugar el seminario dedicado a la consecución de "Redes más seguras con Machine Learning". Este seminario lo han realizado nuestros ingenieros de LUCA Data-Driven Decisions y...
View ArticleClik here to view.
Darknet - The Darkside: South Korean Webhost Nayana Pays USD1 Million Ransom
So far this Nayana payout is the biggest ransomware payment I’ve seen reported, there’s probably some bigger ones been paid but kept undercover. Certainly a good deal for the bad actors in this play,...
View ArticleSANS Internet Storm Center, InfoCON: green: It has been a month and a bit how...
Last months entertainment for many of us was of course the wannacray ms17-010 update. For some of you it was a relaxing time just like any other month. Unfortunately for the rest of us it was a rather...
View ArticleClik here to view.
Zero in a bit: 6 Tips for Transforming Technology to Achieve DevSecOps
The goal of DevSecOps is to build a bridge between fast and secure software development. Some in the DevOps and AppSec universe maintain that the primary foundations of a DevOps or DevSecOps initiative...
View ArticleClik here to view.
ArsTechnica: Security Content: Honda shuts down factory after finding...
Enlarge (credit: S-8500)The WCry ransomware worm has struck again, this time prompting Honda Company to halt production in one of its Japan-based factories after finding infections in a broad swath of...
View ArticleClik here to view.
Un informático en el lado del mal: Sesiones de Changing the Game with Big...
Ha sido hace nada, y ya están disponibles los vídeos del evento que realizaron los compañeros de LUCA en Madrid. Bajo el título de "Changing the Game with Big Data" presentaron algunos de los proyectos...
View ArticleSANS Internet Storm Center, InfoCON: green: Obfuscating without XOR, (Thu,...
Malicious files are generated and spread over the wild Internet daily (read: hourly). The goal of the attackers is to use files that are:not know by signature-based solutionsnot easy to read for the...
View ArticleClik here to view.
/dev/random: [SANS ISC] Obfuscating without XOR
I published the following diary on isc.sans.org: “Obfuscating without XOR“.Malicious files are generated and spread over the wild Internet daily (read: “hourly”). The goal of the attackers is to use...
View Article