Clik here to view.
ArsTechnica: Security Content: DC police surveillance cameras were infected...
(credit: ogglog)Networked digital video recorders have been harnessed for all sorts of ill intent over the past few months, including use in a botnet that disrupted large swaths of the Internet. But a...
View ArticleClik here to view.
Un informático en el lado del mal: Usar bots de Telegram para crear una...
Un día descubrí los bots de Telegram y empecé a probar los servicios que ofrecían. Me di cuenta que nos permiten hacer un montón de cosas, cosas que pueden ser buenas o que alguien podría tornar en...
View ArticleClik here to view.
Didier Stevens: Update: zipdump.py Version 0.0.5
A small feature in this new version: start the -E option value with # to count and group.Example:C:\Demo>zipdump.py -E “#%HEADASCII%;%HEADHEX%” Book1.xlsm 1: –…………..;d0cf11e0a1b11ae10000000000000000...
View ArticleClik here to view.
ArsTechnica: Security Content: Forgotten passwords are bane of the Internet....
Enlarge/ Account recovery programs like this one from United Airlines pose a significant threat to users. (credit: Dan Goodin)Facebook is unveiling a new service that remedies one of the biggest...
View ArticleFortinet FortiGuard Blog: Saudi Organizations Targeted by Resurfaced Shamoon...
FortiGuard is currently investigating a new wave of attacks targeting kingdom of Saudi Arabia organizations that use an updated version of the Shamoon malware (also known as DistTrack.) We described...
View ArticleSANS Internet Storm Center, InfoCON: green: ISC Stormcast For Tuesday,...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleSANS Internet Storm Center, InfoCON: green: VMWare Security Advisory for...
--- Johannes B. Ullrich, Ph.D.STI|Twitter|LinkedIn (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleClik here to view.
SANS Internet Storm Center, InfoCON: green: Malicious Office files using...
This is a Guest Diary submitted by Ismael Valenzuela and Marc Rivero. Interested in writing a guest diary? Let us know via our contact page.Macro based malware that hides in Microsoft Word or Excel...
View ArticleFortinet FortiGuard Blog: Innovation Insights: Defining and Securing IoT
Sometimes it’s helpful to characterize the IoT with some more precision; I like to place them in three categories. The first, Consumer IoT, which includes the connected devices we are most familiar...
View ArticleClik here to view.
Infosec Events: Information Security Events For February
Here are information security events in North America this month: BSides Huntsville 2017 : February 4 in Huntsville, AL, USA BSides Seattle 2017 : February 4 in Redmond, WA, USA BSides Tampa Bay 2017...
View ArticleClik here to view.
ArsTechnica: Security Content: In not-too-distant future, brain hackers could...
Enlarge/ A simplified diagram of a compromised brain-connected interface system. (credit: Bonaci et al.)OAKLAND, Calif.—In the beginning, people hacked phones. In the decades to follow, hackers turned...
View ArticleSANS Internet Storm Center, InfoCON: green: ISC Stormcast For Wednesday,...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleClik here to view.
Un informático en el lado del mal: Cómo saltarse el Control de Cuentas de...
Hace unos días veíamos como hacer un bypass del UAC de Windows 7 y Windows 10 aprovechándose de WinSxS y hoy hablaremos de un concepto similar, que se aprovecha de la posibilidad de hacer un hijacking...
View ArticleClik here to view.
SANS Internet Storm Center, InfoCON: green: Quick Analysis of Data Left...
While hunting for interesting cases, I found the following phishing email mimicking an UPS delivery notification:When you click on the link, you are redirected to the following URL:...
View ArticleClik here to view.
/dev/random: [SANS ISC Diary] Quick Analysis of Data Left Available by Attackers
I published the following diary on isc.sans.org: “Quick Analysis of Data Left Available by Attackers“.While hunting for interesting cases, I found the following phishing email mimicking an UPS delivery...
View ArticleSANS Internet Storm Center, InfoCON: green: Multiple Vulnerabilities in...
A Debian security update for tcpdump32 different vulnerabilities in tcpdump that are addressed by this update [1]. While there are not a lot of details available yet, some of the vulnerabilities can...
View ArticleClik here to view.
KPNC: vulnerability in… WinCalc (Win7, x64)
I will never go out of business in this country. thanks to Microsoft. who would have thought that wincalcis vulnerable? I have not checked all systems yet, so this is my configuration: Windows 7...
View ArticleClik here to view.
PandaLabs: PowerLocker
PowerLocker, also called PrisonLocker, is a new family of ransomware which in addition to encrypting files on the victim’s computer (as with other such malware) threatens to block users’ computers...
View ArticleSANS Internet Storm Center, InfoCON: green: OUCH newsletter: Staying Secure...
--- Johannes B. Ullrich, Ph.D.STI|Twitter|LinkedIn (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleClik here to view.
Darknet - The Darkside: Dark Web Paying Corporate Workers To Leak Info
This is not particularly new news, but the Dark Web paying corporate workers to leak info – especially pertaining to stock prices (earnings reports etc) is setting the mainstream news on fire at the...
View Article