Clik here to view.
PandaLabs: PowerLocker
PowerLocker, also called PrisonLocker, is a new family of ransomware which in addition to encrypting files on the victim’s computer (as with other such malware) threatens to block users’ computers...
View ArticleClik here to view.
ArsTechnica: Security Content: What can you do with a billion Yahoo...
An image sent by DNC staffer Alexandra Chalupa shows a warning message she received from Yahoo Mail. She may have been targeted using data from one of the Yahoo breaches or a forged cookie based on...
View ArticleClik here to view.
ArsTechnica: Security Content: 0-days hitting Fedora and Ubuntu open desktops...
EnlargeIf you run a mainstream distribution of Linux on a desktop computer, there's a good chance security researcher Chris Evans can hijack it when you do nothing more than open or even browse a...
View ArticleClik here to view.
Didier Stevens: Hancitor Maldoc Videos
I produced 4 videos covering the process hollowing maldoc “Maldoc With Process Hollowing Shellcode“.
View ArticleSANS Internet Storm Center, InfoCON: green: ISC Stormcast For Friday,...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleSANS Internet Storm Center, InfoCON: green: One, if by email, and two, if by...
IntroductionOne, if by land, and two, if by sea is a phrase used by American poet Henry Wadsworth Longfellow in his poem Paul Reveres Ride first published in 1861. Longfellows poem tells a somewhat...
View ArticleFortinet FortiGuard Blog: WooCommerce Tax Rates Cross-Site Scripting...
WooCommerce is a free eCommerce plugin for WordPress. It has been downloaded over 1 million times and over 30% of all online stores are now powered by WooCommerce. I recently discovered that...
View ArticleFortinet FortiGuard Blog: Malicious Macro Bypasses UAC to Elevate Privilege...
To survive, Macro downloaders have to constantly develop new techniques for evading sandbox environments and anti-virus applications. Recently, Fortinet spotted a malicious document macro designed to...
View ArticleFortinet FortiGuard Blog: WooCommerce Tax Rates Cross-Site Scripting...
WooCommerce is a free eCommerce plugin for WordPress. It has been downloaded over 1 million times and over 30% of all online stores are now powered by WooCommerce. I recently discovered that...
View ArticleClik here to view.
ArsTechnica: Security Content: Hackers behind anti-doping leaks: Please write...
Russia-based hackers are apparently not happy with the attention they've been getting for their Olympic anti-doping agency "conspiracy" leaks. This morning, Ars received an odd ask by Twitter direct...
View ArticleClik here to view.
ArsTechnica: Security Content: Home routers under attack in ongoing...
(credit: Gionnico)As you read these words, malicious ads on legitimate websites are targeting visitors with malware. But that malware doesn't infect their computers, researchers said. Instead, it...
View ArticleClik here to view.
McAfee Avert Labs: Taking a Look at W32/Ramnit
Today we’re going to take a look at an interesting file-infector virus. W32/Ramnit infects EXE, DLL and HTML files. That last one is right; W32/Ramnit also infects HTML files to replicate itself.Let’s...
View Articlehoneyblog: 2011 Honeynet Project Security Workshop Slides + Videos
The slides and videos from the 2011 Honeynet Project Security Workshop (Paris) are now available! You can get the material from http://www.honeynet.org/SecurityWorkshops/2011_Paris. About the...
View ArticleLost In Security: Españoles por la BlackHat
Siguiendo con la estela del artículo publicado 'Españoles por la Phrack', vuelvo a la carga con un artículo parecido, pero en este caso sobre una de las conferencias de seguridad que más conoce la...
View ArticleSANS Internet Storm Center, InfoCON: green: Holiday Safe Computing Tips,...
It is that time of year again. It is the holiday season with presents under the tree. Some of those presents are bound to be electronic. Whether they are PCs, Macs, cellular phones, gaming systems or...
View ArticleSANS Internet Storm Center, InfoCON: green: Blocking Powershell Connection...
In my last post, I mapped controls to stop a malicious doc calling out via Powershell. Im now going to cover how using the Windows firewall can stop the attack chain.">Windows firewall can be used...
View ArticleClik here to view.
Darknet - The Darkside: PowerShellArsenal – PowerShell For Reverse Engineering
PowerShellArsenal is basically PowerShell for reverse engineering in a module format. The module can be used to disassemble managed and unmanaged code, perform .NET malware analysis, analyse/scrape...
View ArticleNiels Provos: Blacksmithing and Youtube HDR
Blacksmithing usually happens in a dark shop with very hot metal. A dark shop helps the blacksmith see the color of the steel better and thus know when it's ready to work or when it is too cold....
View ArticleSANS Internet Storm Center, InfoCON: green: ISC Stormcast For Monday,...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View Article
