Thursday, July 19, 2018

ISC StormCast for Thursday, July 19th 2018

Increase in scans for port 15454 https://isc.sans.edu/forums/diary/Request+for+Packets+Port+15454/23888/Oracle Quarterly Critical Patch

ISC StormCast for Wednesday, July 18th 2018

Searching for Geographically Improbably Login Attempts https://isc.sans.edu/forums/diary/Searching+for+Geographically+Improbable+Login+Attempts/23882/Typo3 CMS Update https://typo3.org/article/typo3-931-8717-and-7630-security-releases-published/GitHub

ISC StormCast for Tuesday, July 17th 2018

Encrypted SNI in TLS 1.3 https://tools.ietf.org/html/draft-rescorla-tls-esni-00Microsoft to Retire "Delta Updates"

ISC StormCast for Monday, July 16th 2018

Processing JSON https://isc.sans.edu/forums/diary/Video+Retrieving+and+processing+JSON+data+BTC+example/23874/Cryptocoin Mining Javascript (yet again) https://isc.sans.edu/forums/diary/Cryptominer+Delivered+Though+Compromized+JavaScript+File/23870/Dahua Passwords Leaked/Cached

ISC StormCast for Friday, July 13th 2018

Extortion Claims Include Leaked Passwords to Appear more Plausiable https://isc.sans.edu/forums/diary/New+Extortion+Tricks+Now+Including+Your+Password/23866/npm

ISC StormCast for Thursday, July 12th 2018

Hello Peppa Followup https://isc.sans.edu/forums/diary/Well+Hello+Again+Peppa/23860/Spectre 1.1 and 1.2 https://people.csail.mit.edu/vlk/spectre11.pdfInternet Exchanges Band

ISC StormCast for Wednesday, July 11th 2018

MSFT Patch Tuesday https://isc.sans.edu/forums/diary/Microsoft+Patch+Tuesday+July+2018+now+with+Dashboard/23858/ https://patchtuesdaydashboard.com/SettingContent-ms Files Blacklisted https://support.office.com/en-us/article/packager-activation-in-office-365-desktop-applications-52808039-4a7c-4550-be3a-869dd338d834?ui=en-US&rs=en-US&ad=USAdobe Patches https://helpx.adobe.com/security.htmlStolen

ISC StormCast for Tuesday, July 10th 2018

Reverse Shell via Weblogic Flaw https://isc.sans.edu/forums/diary/Criminals+Dont+Read+Instructions+or+Use+Strong+Passwords/23850/Apple Patches Everything Again https://isc.sans.edu/forums/diary/Apple+Patches+Everything+Again/23852/Microsoft

ISC StormCast for Monday, July 9th 2018

Trivial Exploit For HP iLO 4 (patched last August) https://airbus-seclab.github.io/ilo/SSTIC2018-Article-subverting_your_server_through_its_bmc_the_hpe_ilo4_case-gazet_perigaud_czarny.pdfFlexible

ISC StormCast for Friday, July 6th 2018

Gentoo GitHub Breach Post Morten https://wiki.gentoo.org/wiki/Github/2018-06-28Hamas Sets World Cup Trap

ISC StormCast for Thursday, July 5th 2018

Progress Indication For Scripts in Windowshttps://isc.sans.edu/forums/diary/Progress+indication+for+scripts+on+Windows/23830/Stylish Extension Steals Historyhttps://robertheaton.com/2018/07/02/stylish-browser-extension-steals-your-internet-history/Data Leaks

ISC StormCast for Tuesday, July 3rd 2018

Odd PHP Exploit Attempt https://isc.sans.edu/forums/diary/Hello+Peppa+PHP+Scans/23826/Diameter Security Report https://www.ptsecurity.com/ww-en/premium/diameter-2018/Attack Against Trezor

ISC StormCast for Monday, July 2nd 2018

MacOS Malware Targeting Slack/Dicord Crypto Comunities https://isc.sans.edu/forums/diary/Crypto+community+target+of+MacOS+malware/23816/New LTE Attacks Made

ISC StormCast for Friday, June 29th 2018

Less Greedy Cryptominers https://isc.sans.edu/forums/diary/New+and+Improved+Cryptominers+Now+with+50+less+Greed/23812/Disassemling Webassembly https://www.forcepoint.com/blog/security-labs/analyzing-webassembly-binariesSpectre Browser Mitigation Bypass https://alephsecurity.com/2018/06/26/spectre-browser-query-cache/Gentoo

ISC StormCast for Thursday, June 28th 2018

Secret Office 365 Activity Log API Unveiled (plus tool to

Why the Best Defense Is a Good Offensive Security Strategy

When many people think about offensive security, they picture a mysterious figure wearing a hoodie, sitting behind a black-and-green terminal, diligently typing away as he probes enterprise networks. But the cybersecurity world has evolved well beyond this Hollywood hacker...

Google hit with $5.1b fine in EU’s Android antitrust case

This could mean the end of free Android. In the meantime, Google plans to appeal.

Privacy Advocates Say Kelsey Smith Act Gives Police Too Much Power

This bill making its way through Congress would allow law enforcement to more easily uncover location data for cell phones from mobile carriers in an emergency.

IDG Contributor Network: Hack like a CISO

I have written several times over the last couple of years about how the role of today’s CISOs have changed and are now more tuned to support business activities and the management of enterprise risk. Serving an organization as...

Cisco patches critical vulnerabilities in Policy Suite

One of the worst security flaws permits attackers to act as root and execute arbitrary code.