SANS Internet Storm Center, InfoCON: green: ICMP Unreachable DoS Attacks (aka...
Thanks to our reader Mikael for pointing out a new branded vulnerability with domain name, logo and catchy name: BlackNurse. (no jingle though). [1]The problem pointed out by this announcement is that...
View ArticleClik here to view.
ArsTechnica: Security Content: Russian hackers throw Trump victory party with...
As Trump was giving his victory speech, a new wave of spear phishing attacks from Russian hackers was already on its way using his win as click-bait. (credit: Gage Skidmore)Less than six hours after...
View ArticleSANS Internet Storm Center, InfoCON: green: ISC Stormcast For Friday,...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleSANS Internet Storm Center, InfoCON: green: Benevolent malware?...
In the new to me department. It looks like this one has been around for more thanthree years.Today I was doing some banner grabbing looking for a Mirainodethat had gotten away from me, and came across...
View ArticleClik here to view.
McAfee Avert Labs: Taking a Look at W32/Ramnit
Today we’re going to take a look at an interesting file-infector virus. W32/Ramnit infects EXE, DLL and HTML files. That last one is right; W32/Ramnit also infects HTML files to replicate itself.Let’s...
View Articlehoneyblog: 2011 Honeynet Project Security Workshop Slides + Videos
The slides and videos from the 2011 Honeynet Project Security Workshop (Paris) are now available! You can get the material from http://www.honeynet.org/SecurityWorkshops/2011_Paris. About the...
View ArticleLost In Security: Españoles por la BlackHat
Siguiendo con la estela del artículo publicado 'Españoles por la Phrack', vuelvo a la carga con un artículo parecido, pero en este caso sobre una de las conferencias de seguridad que más conoce la...
View ArticleLost In Security: El último superviviente (II) - iOS
En el pasado artículo estuvimos revisando los puntos débiles que tiene un malware a la hora de sobrevivir un reinicio del sistema, y nos centramos en OSX. Ahora toca el turno a iOS, que al ser una...
View ArticleClik here to view.
KPNC: vulnerability in… WinCalc (Win7, x64)
I will never go out of business in this country. thanks to Microsoft. who would have thought that wincalcis vulnerable? I have not checked all systems yet, so this is my configuration: Windows 7...
View ArticleClik here to view.
PandaLabs: PowerLocker
PowerLocker, also called PrisonLocker, is a new family of ransomware which in addition to encrypting files on the victim’s computer (as with other such malware) threatens to block users’ computers...
View ArticleClik here to view.
Un informático en el lado del mal: Cómo proteger tu cuenta de Microsoft Live...
Recientemente ha sido implementada una nueva funcionalidad en Latch para que los usuarios puedan proteger también las cuentas en servicos populares de Internet utilizando el concepto de Cloud TOTP....
View ArticleClik here to view.
Un informático en el lado del mal: La Inteligencia Artificial y la Ética del...
Hoy sábado me he levantado con una de esas diatribas que me acompañan a lo largo de mis días desde hace años. Pensando en cómo sería sí, cómo sería si no sobre las cosas. Qué pasaría si y qué pasaría...
View ArticleClik here to view.
SANS Internet Storm Center, InfoCON: green: VBA Shellcode and EMET, (Sat, Nov...
Someone asked me if EMET would stop the malicious document I analyzed in my diary entry Hancitor Maldoc Bypasses Application Whitelisting.In its default configuration, EMET will stop the shellcode from...
View ArticleClik here to view.
ArsTechnica: Security Content: New attack reportedly lets 1 modest laptop...
(credit: Bonnie Natko)Researchers said they have discovered a simple way lone attackers with limited resources can knock large servers offline when they're protected by certain firewalls made by Cisco...
View ArticleClik here to view.
Un informático en el lado del mal: SecAdmin: Una CON de "lujo" en Sevilla...
Hace unos días os dejé la lista de eventos, charlas y cursos que hay por delante en Noviembre, pero hoy quería hacer especial hincapié a uno de ellos, la SECADMIN en Sevilla, que tendrá lugar los días...
View ArticleSANS Internet Storm Center, InfoCON: green: Bitcoin Miner File Upload via...
I wrote a diary six months ago about using INetSim as a honeypot. Over the past few weeks I have captured only one package type uploaded through the FTP service to my honeypot, Bitcoin Miner. As for...
View ArticleClik here to view.
Didier Stevens: Overview of Content Published In October
Here is an overview of content I published in October:Blog posts:rtfdump VideosAnalyzing Office Maldocs With Decoder.xlsUpdate: oledump.py Version 0.0.25Update: cut-bytes.py Version 0.0.4Update:...
View ArticleSANS Internet Storm Center, InfoCON: green: ISC Stormcast For Monday,...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleClik here to view.
Un informático en el lado del mal: Configurar WebApps con MS SQL Server in...
Hace unos meses Chema Alonso y yo nos pusimos manos a la obra con una nuestras ideas locas para Configurar Wordpress in Paranoid Mode, dónde fuimos lo bastante locos para controlar con Latch las...
View Article