Clik here to view.
ArsTechnica: Security Content: Some beers, anger at former employer, and root...
(credit: Alan Stanton)The Internet of Things'"security through obscurity" has been proven once again to not be terribly secure thanks to an angry and possibly inebriated ex-employee. Adam Flanagan, a...
View ArticleClik here to view.
Darknet - The Darkside: Winpayloads – Undetectable Windows Payload Generation
Winpayloads is a tool to provide undetectable Windows payload generation with some extras running on Python 2.7. It provides persistence, privilege escalation, shellcode invocation and much more. The...
View ArticleClik here to view.
ArsTechnica: Security Content: This Windows Defender bug was so gaping its...
(credit: Microsoft)Microsoft recently patched a critical vulnerability in its ubiquitous built-in antivirus engine. The vulnerability could have allowed attackers to execute malicious code by luring...
View ArticleSANS Internet Storm Center, InfoCON: green: ISC Stormcast For Tuesday, June...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleSANS Internet Storm Center, InfoCON: green: A Tale of Two Phishies, (Tue, Jun...
IntroductionHas anyone read A Tale of Two Cities, the 1859 novel by Charles Dickens? Or maybe seen one of the movie adaptations of it? Its set during the French Revolution, including the Reign of...
View ArticleClik here to view.
Un informático en el lado del mal: Script PowerShell WinRM para descubrir...
Hace tiempo nuestro compañero Chema Alonso habló en un artículo de las Hidden Networks que se crean en las organizaciones gracias al - o por culpa del - uso de los dispositivos de almacenamiento USB....
View ArticleClik here to view.
Infosec Events: Week 26 In Review – 2017
Events RelatedNDSS 2017– www.youtube.com NDSS SymposiumToolsWeb Security Dojo– sourceforge.net Various web application security testing tools and vulnerable web applications were added to a clean...
View ArticleSANS Internet Storm Center, InfoCON: green: Wide-scale Petya variant...
Sent from a reader earlier today:Hearing some rumors that the company Merck is having a major virus outbreak with something new and their Europe networks are affected more than their US offices. Have...
View ArticleClik here to view.
ArsTechnica: Security Content: A new ransomware outbreak similar to WCry is...
Enlarge/ This is the note that's left on computers infected by PetyaWrap. (credit: Eset)A new ransomware attack similar to last month's self-replicating WCry outbreak is sweeping the world with at...
View ArticleSANS Internet Storm Center, InfoCON: green: Checking out the new Petya...
This is a follow-up from our previous diary about todays ransomware attacks using the new Petya variant. So far, weve noted:Several hundred more tweets about todays attack can be found on Twitter using...
View ArticleClik here to view.
48Bits Blog: LaCon2k16 Call For Pulpos
We are proud to present the call for papers for Lacon 2016!, get your papers in now. We are accepting short talks of 30min and long talks of ~1h.[when]conf will be held from the 23rd to the 25th of...
View ArticleClik here to view.
Niels Provos: Support my videos on Patreon!
Add your support on Patreon to help me create more videos. Your support will help with materials, rent as well as other equipment, e.g. cameras, lights, software, etc. It is not required but...
View ArticleFortinet FortiGuard Blog: An Inside Look at CVE-2017-0199 – HTA and Scriptlet...
FortiGuard Labs recently came across a new strain of samples exploiting the CVE-2017-0199 vulnerability. This vulnerability was fixed by Microsoft and the patch was released in April 2017. Due to its...
View ArticleClik here to view.
ArsTechnica: Security Content: Ohio Gov. Kasich’s website, dozens of others...
EnlargeThe official website of Ohio Governor John Kasich and the site of Ohio First Lady Karen Kasich were defaced on June 25 by a group calling itself Team System DZ. The group is a known pro-Islamic...
View ArticleClik here to view.
ArsTechnica: Security Content: Microsoft bringing EMET back as a built-in...
Enlarge/ The new security analytics dashboard. (credit: Microsoft)The Windows 10 Fall Creators Update will include EMET-like capabilities managed through a new feature called Windows Defender Exploit...
View ArticleSANS Internet Storm Center, InfoCON: green: ISC Stormcast For Wednesday, June...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleClik here to view.
Un informático en el lado del mal: Petya con Eternalblue, el miedo a un nuevo...
Ayer un nuevo ataque de ransomware ha comenzado a copar las portadas de todos los medios de comunicación, y también las redes sociales. No es nada nuevo, y son "solo" dos viejos amigos que se han...
View ArticleClik here to view.
Zero in a bit: The Next Petya Will Be Worse – Why Software Development Must...
Another major cyberattack hit computer networks around the globe on Tuesday, beginning in the Ukraine, when a paralyzing ransomware struck websites of government agencies, banks, transportation, and...
View ArticleSANS Internet Storm Center, InfoCON: green: Petya? I hardly know ya! - an ISC...
This is a follow-up the our previous diary on the ransomware outbreak that happened yesterday on Tuesday 2017-06-27.IntroductionBy now, it seems almost everyone has written something about yesterdays...
View ArticleClik here to view.
Darknet - The Darkside: NotPetya Ransomeware Wreaking Havoc
The latest splash has been made by the Petya or NotPetya Ransomware that exploded in Ukraine and is infecting companies all over the World. It’s getting some people in deep trouble as there’s no way to...
View Article