Lost In Security: Españoles por la BlackHat
Siguiendo con la estela del artículo publicado 'Españoles por la Phrack', vuelvo a la carga con un artículo parecido, pero en este caso sobre una de las conferencias de seguridad que más conoce la...
View ArticleLost In Security: El último superviviente (II) - iOS
En el pasado artículo estuvimos revisando los puntos débiles que tiene un malware a la hora de sobrevivir un reinicio del sistema, y nos centramos en OSX. Ahora toca el turno a iOS, que al ser una...
View ArticleClik here to view.
KPNC: vulnerability in… WinCalc (Win7, x64)
I will never go out of business in this country. thanks to Microsoft. who would have thought that wincalcis vulnerable? I have not checked all systems yet, so this is my configuration: Windows 7...
View ArticleClik here to view.
PandaLabs: PowerLocker
PowerLocker, also called PrisonLocker, is a new family of ransomware which in addition to encrypting files on the victim’s computer (as with other such malware) threatens to block users’ computers...
View ArticleClik here to view.
Un informático en el lado del mal: Becas Talentum en Seguridad: Hoy última...
Desde el área de Operaciones y Gestión de Seguridad de la Información, hemos abierto unas becas Talentum para seleccionar a un grupo de jóvenes que quieran venirse a pasar unos meses aprendiendo y...
View ArticleSANS Internet Storm Center, InfoCON: green: ISC Stormcast For Monday,...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleClik here to view.
Un informático en el lado del mal: Desconexión Invernal
Hoy es el día que he decidido comenzar mis vacaciones. Ha sido un año intenso en todos los sentidos, y desde que comenzó no he dejado de trabajar ni una semana. No he tenido vacaciones ni he descansado...
View ArticleClik here to view.
Infosec Events: Week 49 In Review – 2016
Events RelatedBSidesLV– youtube.com Recordings of Security BSides Las Vegas sessions, selected sessions of sister conferences and other Information Security related educational materials.BotConf 2016...
View ArticleClik here to view.
Darknet - The Darkside: Minion – Mozilla Security Testing Framework
Minion is a security testing framework built by Mozilla to bridge the gap between developers and security testers. To do so, it enables developers to scan with a wide variety of security tools, using a...
View ArticleFortinet FortiGuard Blog: Q&A: How Fortinet’s Security Fabric Creates New...
Joe Sykora, Fortinet Vice President of Americas Channels and Sales Operations, gives his perspective on how an integrated security architecture like Fortinet’s Security Fabric creates new opportunities...
View ArticleSANS Internet Storm Center, InfoCON: green: Hancitor Maldoc Videos, (Mon, Dec...
I produced videos for the Hancitor maldoc mentioned in this diary.Hancitor Maldoc: Shellcode Dynamic AnalysisHancitor maldoc: Extracting URLsEMET vs Hancitor MaldocVBA Shellcode To Test EMETDidier...
View ArticleClik here to view.
ArsTechnica: Security Content: Thieves can guess your secret Visa card...
Enlarge/ A website bot as it distributes CVV guesses over multiple sites. (credit: Ali, et al.)Thieves can guess your secret Visa payment card data in as little as six seconds, according to researchers...
View ArticleClik here to view.
Didier Stevens: Overview of Content Published In November
Here is an overview of content I published in November:Blog posts:Maldoc With Process Hollowing ShellcodeQuickpost: Zone.IdentifierUpdate: shellcode2vba.py Version 0.5Update: byte_stats.py Version...
View ArticleSANS Internet Storm Center, InfoCON: green: ISC Stormcast For Tuesday,...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleFortinet FortiGuard Blog: A Closer Look at the Mamba Ransomware that Struck...
Recently, the San Francisco Municipal Transportation Agency, also known as MUNI, was attacked by a new variant of Mamba (a.k.a HDDCryptor) – a disk-encypting ransomware. The incident left their...
View ArticleLost In Security: El último superviviente (II) - iOS
En el pasado artículo estuvimos revisando los puntos débiles que tiene un malware a la hora de sobrevivir un reinicio del sistema, y nos centramos en OSX. Ahora toca el turno a iOS, que al ser una...
View ArticleClik here to view.
Sunbelt Blog: GFI OneGuard (Beta) introduces a new view on system administration
Today we are launching a beta version of our newest product, a platform that will provide a complete and centralized protection of your IT infrastructure from viruses, malware, vulnerabilities and...
View ArticleFortinet FortiGuard Blog: LinkedIn and Baidu Redirecting to Fat-Loss and...
We recently received a URL through Skype that caught our attention. It was a link belonging to LinkedIn, with our Skype ID as a parameter at the end of the URL....
View ArticleSANS Internet Storm Center, InfoCON: green: Attacking NoSQL applications,...
In last couple of years, the MEAN stack (MongoDB, Express.js, Angular.js and Node.js) became the stack of choice for many web application developers. The main reason for this popularity is the fact...
View ArticleClik here to view.
ArsTechnica: Security Content: Millions exposed to malvertising that hid...
Millions of people visiting mainstream websites over the past two months have been exposed to a novel form of malicious ads that embed attack code in individual pixels of the banners.Researchers from...
View Article
