Menu

Internet Storm Center

Traffic

News Feeds (RSS) Internet Storm Center

Mon, 21 Aug 2017 11:12:02 -0600

ISC Stormcast For Monday, August 21st 2017 https://isc.sans.edu/podcastdetail.html?id=5634

Sun, 20 Aug 2017 23:20:02 -0600

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Sun, 20 Aug 2017 12:50:28 -0600

Jeff received an invoice via email, did not trust it and submitted it to us.

Sat, 19 Aug 2017 19:20:13 -0600

There is nothing new about Wireshark releasing an update; however, the new 2.4 branch has new feature that is quite useful that I have been waiting to be able to use for a while. In case you missed it, tshark now has the ability to Export Objects. I have tested the export using large pcap files with multiple objects and tshark does a good job "dumping" all the files in the specified directory (i.e. destdir).

Fri, 18 Aug 2017 15:43:26 -0600

1. Introduction

Fri, 18 Aug 2017 01:05:02 -0600

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Thu, 17 Aug 2017 06:45:48 -0600

Yesterday, while hunting, I found another malicious document that (ab)used a Microsoft Word feature: auto-update of links. This feature is enabled by default for any newly created document (that was the case for my Word 2016 version). If you add links to external resources like URLs, Word will automatically update them without any warning or prompt.

Thu, 17 Aug 2017 03:25:03 -0600

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Wed, 16 Aug 2017 06:48:38 -0600

They are plenty of phishing kits in the wild that try to lure victims to provide their credentials. Services like Paypal are nice targets and we can find new fake pages almost daily. Sometimes, the web server isn't properly configured and the source code is publicly available. A few days ago, I was lucky to find a ZIP archive containing a very nice phishing kit targeting Paypal. I took some time to have a look at it.

Wed, 16 Aug 2017 00:10:03 -0600

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Tue, 15 Aug 2017 17:46:46 -0600

Introduction