Tuesday, February 18, 2020
SANS ISC

ISC StormCast for Tuesday, February 18th 2020

More about Curl on Windowshttps://isc.sans.edu/forums/diary/curl+and+SSPI/25812/ WHO Warns of Coronavirus Phishinghttps://www.who.int/about/communications/cyber-security
SANS ISC

ISC StormCast for Monday, February 17th 2020

Keep an Eye on Command-Line Browsershttps://isc.sans.edu/forums/diary/Keep+an+Eye+on+CommandLine+Browsers/25804/ Old Tricks in New
SANS ISC

ISC StormCast for Friday, February 14th 2020

Changes to Microsoft LDAP/AD And How to Cope with themhttps://isc.sans.edu/forums/diary/Authmageddon+deferred+but+not+averted+Microsoft+LDAP+Changes+now+slated+for+Q3Q4+2020/25800/https://isc.sans.edu/forums/diary/March+Patch+Tuesday+is+Coming+the+LDAP+Changes+will+Change+Your+Life/25796/
SANS ISC

ISC StormCast for Thursday, February 13th 2020

Malspam Pushes Ursnifhttps://isc.sans.edu/forums/diary/Malpsam+pushes+Ursnif+through+Italian+language+Word+docs/25792/ Safe Documents in Office 365 Advanced Threat
SANS ISC

ISC StormCast for Wednesday, February 12th 2020

Microsoft Patch Tuesdayhttps://isc.sans.edu/forums/diary/Microsoft+Patch+Tuesday+for+February+2020/25790/ Adobe Patcheshttps://helpx.adobe.com/security.html Ransomware Abuses Out of Date
SANS ISC

ISC StormCast for Tuesday, February 11th 2020

Paypal Phish is Asking for Everythinghttps://isc.sans.edu/forums/diary/Current+PayPal+phishing+campaign+or+give+me+all+your+personal+information/25786/ Dell SupportAssist Client Uncontrolled
SANS ISC

ISC StormCast for Monday, February 10th 2020

Sandbox Detection Tricks and Nice Obfuscation in a Single VBScripthttps://isc.sans.edu/forums/diary/Sandbox+Detection+Tricks+Nice+Obfuscation+in+a+Single+VBScript/25780/
SANS ISC

ISC StormCast for Friday, February 7th 2020

Criticial Bluetooth Vulnerability in Android (CVE-2020-0022)https://insinuator.net/2020/02/critical-bluetooth-vulnerability-in-android-cve-2020-0022/ Wacom Tablets Reports Application
SANS ISC

ISC StormCast for Thursday, February 6th 2020

Fake Browser Updates installing NetSupport RAThttps://isc.sans.edu/forums/diary/Fake+browser+update+pages+are+still+a+thing/25774/ Google Android Updatehttps://source.android.com/security/bulletin/2020-02-01#Google-Play-system-updates 5
SANS ISC

ISC StormCast for Wednesday, February 5th 2020

Google Chrome 80 Releasedhttps://www.chromium.org/updates/same-sitehttps://chromereleases.googleblog.com/2020/02/stable-channel-update-for-desktop.html File Read Vulnerablity in WhatsApphttps://chromereleases.googleblog.com/2020/02/stable-channel-update-for-desktop.html HiSilicon
SANS ISC

ISC StormCast for Tuesday, February 4th 2020

Triple Encrypted AZORult Installerhttps://isc.sans.edu/forums/diary/Analysis+of+a+tripleencrypted+AZORult+downloader/25768/ New sudo Vulnerability (pwfeedback) https://www.sudo.ws/alerts/pwfeedback.html Teamviewer
SANS ISC

ISC StormCast for Monday, February 3rd 2020

Stego and Cryptominers (with video)https://isc.sans.edu/forums/diary/Video+Stego+Cryptominers/25764/ Corona Virus Phishing / Scamshttps://blog.knowbe4.com/heads-up-scam-of-the-week-coronavirus-phishing-attacks-in-the-wild?nCOV-2019-bc-indexhttps://twitter.com/briankrebs/status/1223959185764896768
SANS ISC

ISC StormCast for Friday, January 31st 2020

Chrome Same-Site Cookie Changehttps://www.chromestatus.com/feature/5088147346030592https://docs.microsoft.com/en-us/office365/troubleshoot/miscellaneous/chrome-behavior-affects-applicationshttps://caniuse.com/#feat=same-site-cookie-attribute Avast Apologyhttps://blog.avast.com/a-message-from-ceo-ondrej-vlcek Magento Updatehttps://helpx.adobe.com/security/products/magento/apsb20-02.html
SANS ISC

ISC StormCast for Thursday, January 30th 2020

Malware Using Text from Impeachment News Coveragehttps://www.bleepingcomputer.com/news/security/malware-tries-to-trump-security-software-with-potus-impeachment/ Coronavirus Themed Malware
SANS ISC

ISC StormCast for Wednesday, January 29th 2020

Recent Emotet Infection installs Trickbothttps://isc.sans.edu/forums/diary/Emotet+epoch+1+infection+with+Trickbot+gtag+mor84/25752/ Apple Updateshttps://support.apple.com/en-us/HT201222 Zoom Fixes Video

Sensitive plastic surgery images exposed online

Researchers at VPN advisory company vpnMentor have found yet another online data exposure caused by a misconfigured cloud database.

Lenovo, HP, Dell Peripherals Face Unpatched Firmware Bugs

A lack of proper code-signing verification and authentication for firmware updates opens the door to information disclosure, remote code execution, denial of service and more.

12 hottest new cybersecurity startups at RSA 2020

Starting on February 24, the RSA Conference (RSAC) 2020 gives security vendors old and new a chance to demonstrate their capabilities. The event has become an attractive venue for startups to make their debut. This year’s crop will be...

Hundreds of Millions of PC Components Still Have Hackable Firmware

The lax security of supply chain firmware has been a known concern for years—with precious little progress being made.

Remote Wipe Plugin Bug Hits 200,000+ WordPress Sites

Remote Wipe Plugin Bug Hits 200,000+ WordPress SitesSecurity researchers are warning of a new plugin vulnerability which is exposing over 200,000 WordPress sites to the risk of being remotely wiped by an attacker. The problem lies with versions 1.3.4 and...