Clik here to view.
Cisco Talos: My Little FormBook
This blog post is authored by Warren Mercer and Paul Rascagneres.SummaryCisco Talos has been tracking a new campaign involving the FormBook malware since May 2018 that utilizes four different malicious...
View ArticleClik here to view.
Darknet - The Darkside: SCADA Hacking – Industrial Systems Woefully Insecure
It seems like SCADA hacking is still a topic in hacker conferences, and it should be with SCADA systems still driving power stations, manufacturing plants, refineries and all kinds of other powerful...
View ArticleClik here to view.
Didier Stevens: Validating Your Downloads
Occasionally, a comment is posted on my blog to report that the posted hash of a file doesn’t match the hash of the downloaded file. Often, it’s because the reader calculated the hash of my program,...
View ArticleClik here to view.
Un informático en el lado del mal: ElevenPaths Professional Services: 40...
Hace ya un tiempo, dentro de Telefónica se creó el grupo de ElevenPaths Professional Services. Una unidad que es parte del crecimiento que están teniendo lo servicios de ciberseguridad en el grupo....
View ArticleClik here to view.
/dev/random: [SANS ISC] Are Your Hunting Rules Still Working?
I published the following diary on isc.sans.org: “Are Your Hunting Rules Still Working?“:You are working in an organization which implemented good security practices: log events are collected then...
View ArticleClik here to view.
AlienVault Blogs: Common Scams
The risks organizations face from cyber threats are at epidemic levels. The threats are sophisticated, attack your weakest links (your employees) and are continuing to evolve at an alarming rate....
View ArticleClik here to view.
Didier Stevens: Update: jpegdump.py Version 0.0.6
A small update to indicate a file was decompressed:jpegdump_V0_0_6.zip (https) MD5: 14FFB9016A9181DB3A59370B2E0DAFF2 SHA256: 13B610A9BDE68CDB64E482AADBC522DDAABD6F6D746AA032C6FEDDAF6BF4169B
View ArticleClik here to view.
Un informático en el lado del mal: Cómo las WebApps inseguras afectan al...
Hace ya un tiempo que vengo hablando del escándalo de Cambridge Analytica y el mundo en el que vivimos. Vengo contando en charlas lo fácil que es encontrar resquicios en los sistemas para extraer datos...
View ArticleClik here to view.
Cisco Talos: Beers with Talos EP31 - Live from Cisco Live! - VPNFilter and...
Beers with Talos (BWT) Podcast Episode 31 is now available. Download this episode and subscribe to Beers with Talos:If iTunes and Google Play aren't your thing: www.talosintelligence.com/podcastEP31...
View ArticleClik here to view.
AlienVault Blogs: Things I Hearted this Week, 22nd June 2018
The Tesla InsiderElon Musk sent out an email stating an employee had stabbed the company in the back like Brutus, changing production code, and leaking inside information. I'll admit that like many...
View ArticleClik here to view.
AlienVault Blogs: Malicious Documents from Lazarus Group Targeting South Korea
By Chris Doman, Fernando Martinez and Jaime BlascoWe took a brief look at some documents recently discussed and reviewed by researchers in South Korea over the past week. The malware is linked to...
View ArticleClik here to view.
Cisco Talos: Threat Roundup for June 16-22
As usual, we are bringing you the weekly Threat Roundup to highlight the most prevalent threats we've seen between June 15 and 22. As with previous roundups, this post isn't meant to be an in-depth...
View ArticleClik here to view.
Un informático en el lado del mal: El Red Team de la empresa. Nuevo libro de...
Hoy sábado está ya por fin disponible el último libro de nuestra pequeña editorial 0xWord, que ha escrito Eduardo Arriols y que abre una línea de títulos que se centrarán en los equipos que se ocupan...
View ArticleClik here to view.
Un informático en el lado del mal: La agenda para la última de Junio
El hito más importante durante la semana pasada fue sin duda el poder llevar el número de libros publicados en 0xWord hasta el número 55 con el título de "El Red Team de la empresa", además de...
View ArticleClik here to view.
Darknet - The Darkside: Powershell-RAT – Gmail Exfiltration RAT
Powershell-RAT is a Python-based Gmail exfiltration RAT that can be used a Windows backdoor to send screenshots or other data as an e-mail attachment.This RAT will help you during red team engagements...
View ArticleClik here to view.
Un informático en el lado del mal: Nuevas conferencias y charlas en el Canal...
He estado recopilando algunas de las charlas y vídeos que hemos estado haciendo estos meses atrás para mantener mi Canal Youtube actualizado. En él voy subiendo todo el trabajo que hacemos en...
View ArticleClik here to view.
AlienVault Blogs: Safety Measures for Protecting Your Business from Cyber...
All sizes of businesses are now targets for cyber criminals. Per the Verizon 2018 DBIR, 58% of data breach victims are small businesses. Furthermore, it is shocking to see that 60% of small businesses...
View ArticleClik here to view.
Zero in a bit: Can DevSecOps Boost Your Bottom Line?
One of the sad truths about security is that it has typically been viewed by enterprise C-level executives as akin to an insurance policy – necessary, but would never produce profits, boost revenue, or...
View ArticleClik here to view.
ArsTechnica: Security Content: Hyperthreading under scrutiny with new TLBleed...
Enlarge/ A shiny wafer full of Kaby Lake refresh parts. (credit: Intel)Last week, developers on OpenBSD—the open source operating system that prioritizes security—disabled hyperthreading on Intel...
View ArticleClik here to view.
Didier Stevens: Update: zipdump.py Version 0.0.12
This new version adds option -t (translate), like some of my other tools. This option can be used to specify a codec when dumping the content of a file.Here I used it to dump a Unicode file for a page...
View Article