security.didici.cc
ISC StormCast for Wednesday, June 23rd, 2021
21 hours agoPhishing asking recipients not to report abusehttps://isc.sans.edu
/forums/diary/Phishing+as
king+recipients+not+to+re
port+abuse/27556/
PyPi Cryptomining Malwarehttps://blog.sonat
ype.com/sonatype-catches-
new-pypi-cryptomining-mal
ware-via-automated-detect
ion ...
SN 824: Avaddon Ransonomics - Chrome 0-Day, Big Spinrite Update, iOS Wi-Fi Bug, Economics of Ransomware
23 hours agoPicture of the Week.
Another day, another Chrome 0-day.
Ransomware perpetrators are increasingly purchasing access.
A weird bug in iOS Wi-Fi.
An Early Preview of Windows 11.
The Security Now! Podcast has found a new purpose...
SpinRite.
Avad
don Ransonomic ...
Ransomware: What REALLY happens if you pay the crooks?
1 day agoFree talk! Join us online for as much fun as you can ethically have while talking about ransomware. (And learn some useful stuff too!)
ISC StormCast for Tuesday, June 22nd, 2021
1 day agoAttack and Defend: Distributed Web Applications (free Webcast)https://www.sans.
org/webcasts/attack-defen
d-modern-distributed-appl
ications-119610
Darkside Impersonatorshttps://www.
helpnetsecurity.com/2021/
06/21/impersonating-darks
ide/
Tesla RAT COVID-19 Va ...
ISC StormCast for Monday, June 21st, 2021
2 days agoNetwork Forensics on Azure VMs (Part #2)https://isc.sans.edu/f
orums/diary/Network+Foren
sics+on+Azure+VMs+Part+2/
27538/
Google Open Redirect Being Abusedhttps://isc.sans.ed
u/forums/diary/Open+redir
ects+and+why+Phishers+lov
e+them/27542/
Easy Access to the N ...
Can *YOU* blow a PC speaker using only a Linux kernel driver?
5 days agoCan you help? There's a hidden meaning here, and it's time to find it!
ISC StormCast for Friday, June 18th, 2021
5 days agoNetwork Forensics on Azure VMshttps://isc.sans.edu/f
orums/diary/Network+Foren
sics+on+Azure+VMs+Part+1/
27536/
Fake Ledger Hardware Walletshttps://www.ledger
.com/phishing-campaigns-s
tatus#phishing-campaignsh
ttps://www.reddit.com/r/l
edgerwallet/comments/o154 ...
S3 Ep37: Quantum crypto, refunding Bitcoins, and Alpaca problems [Podcast]
6 days agoLatest episode - listen now!
ISC StormCast for Thursday, June 17th, 2021
6 days agoJune 2021 Forensic Quizhttps://isc.sans.edu/
forums/diary/June+2021+Fo
rensic+Contest/27532/
Thr
oughTek IP Camera SDK Vulnerabilityhttps://www.
nozominetworks.com/blog/n
ew-iot-security-risk-thro
ughtek-p2p-supply-chain-v
ulnerability/
Peleoton Insecure Boot Vu ...
How to hack a bicycle – Peloton Bike+ rooting bug patched
6 days agoIt's a bike, Jim, but not as we know it.
Ep. 148 - Security Awareness Series - Three Degrees of Separation from Neil Fallon with Rockie Brockway
1 week agoIn this episode, Chris Hadnagy and Ryan MacDougall are joined by Rockie Brockway.
Rockie is currently the Practice Lead for the Office of the CSO for TrustedSec. With over 28 years' experience in information security and business risk, Rockie s ...
Clop ransomware suspects busted in Ukraine, money and motors seized
1 week agoVictims in South Korea and the USA, suspects busted in Ukraine.
ISC StormCast for Wednesday, June 16th, 2021
1 week agoMulti Perimeter Device Exploit Mirai Version Hunting For Sonicwall, DLink, Cisco and morehttps://isc.sans.edu/
forums/diary/Multi+Perime
ter+Device+Exploit+Mirai+
Version+Hunting+For+Sonic
wall+DLink+Cisco+and+more
/27528/
Google Open Sourcing Homomorphic Encr ...
SN 823: TLS Confusion Attacks - TikTok Privacy, iOS 14.5 Tracking Permission, Industry-Wide Patch Tuesday
1 week agoPicture of the week. Being #1 is a mixed blessing. Industry wide patch Tuesday. TikTok Quietly Updated Its Privacy Policy to Collect Users' Biometric Data. iOS 14.5 requires apps to obtain explicit tracking permission. The ANOM sting operation. "Windows 1 ...
The Backup Paradigm Shift: Moving Toward Attack Response Systems
1 week agoBlack Hawk Down I’m guessing a lot of us in the IT and Security space have experienced the gut wrenching feeling of not receiving that ICMP ping reply you were expecting from a production system, be it a firewall, switch, or server. Was there a recen ...
“Face of Anonymous” suspect deported from Mexico to face US hacking charges
1 week agoAfter nearly a decade as a US expat dubbed "The Face of Anoynmous", he's back in the US facing cybercrime charges from almost a decade ago.
ISC StormCast for Tuesday, June 15th, 2021
1 week agoApple iOS 12.5.4 Security Updatehttps://support.app
le.com/en-us/HT212548
NIS
T.gov DNS Issueshttps://puck.nether
.net/pipermail/outages/20
21-June/013670.html
Akkad
ian Provisioning Manager Multiple Vulnerabilitieshttps://ww
w.rapid7.com/blog/post/20
21/06/08/a ...
Ep. 147 - Human Element Series - Becoming Ben Franklin with Joe Navarro
1 week agoIn this episode, Chris Hadnagy and Maxie Reynolds are joined by one of our greatest friends and mentors, Joe Navarro. After serving as an FBI agent for 25 years, Joe has become a nonverbal and behavioral expert. Since retiring, he has authored 14 book ...
ISC StormCast for Monday, June 14th, 2021
1 week agoEoL SonicWall SRA 4600 VPN Gateways Exploited in Current Attackshttps://isc.sans.e
du/forums/diary/Sonicwall
+SRA+4600+Targeted+By+an+
Old+Vulnerability/27518/
Older Fortinet Vulnerability Still Exploitedhttps://isc.sans
.edu/forums/diary/Fortine
t+Targeted+fo ...
ALPACA – the wacky TLS security vulnerability with a funky name
1 week agoDon't panic - this isn't another Heartbleed. But it's a fascinating reminder of why doing things the easy way isn't always the best way.
ISC StormCast for Friday, June 11th, 2021
1 week agoAre Cookie Banners a Waste of Time or a Complete Waste of Time?https://isc.sans.edu
/forums/diary/Are+Cookie+
Banners+a+Waste+of+Time+o
r+a+Complete+Waste+of+Tim
e/27436/
Citrix Application Delivery Controller Vulnerabilityhttps://supp
ort.citrix.com/article/C ...
S3 Ep36: Trickbot coder busted, passwords cracked, and breaches judged [Podcast]
1 week agoLatest episode - listen now!
Chrome zero-day, hot on the heels of Microsoft’s IE zero-day. Patch now!
1 week agoPatch early. Patch often. Patch now!
ISC StormCast for Thursday, June 10th, 2021
1 week agoArchitecture, Compilers and Black Magichttps://isc.sans.edu
/forums/diary/Architectur
e+compilers+and+black+mag
ic+or+what+else+affects+t
he+ability+of+AVs+to+dete
ct+malicious+files/27510/
ALPACA TLS Attackhttps://alpaca-atta
ck.com/ALPACA.pdf
Google Chrome Up ...
Risky Biz Soap Box: Banks to embrace Yubikeys for customers
2 weeks agoAs regular listeners know, the soap box podcasts we publish here at Risky.Biz are wholly sponsored. That means everyone you hear in one of these podcasts, paid to be here. And this edition of Soap Box has become an annual thing – it’s our once-yearly ...
How could the FBI recover BTC from Colonial’s ransomware payment?
2 weeks agoBut Bitcoins are anonymous! However could they get refunded?
ISC StormCast for Wednesday, June 9th, 2021
2 weeks agoMicrosoft Patch Tuesdayhttps://isc.sans.e
du/forums/diary/Microsoft
+June+2021+Patch+Tuesday/
27506/
PuzzleMaker Attacks With Chrome Zero-Day Exploit Chainhttps://securelist.c
om/puzzlemaker-chrome-zer
o-day-exploit-chain/10277
1/
Intel Patcheshttps://www.intel ...
SN 822: Extrinsic Password Managers - Great CyberSecurity Awakening of 2021, NAT vs IPv6, Tavis Ormandy
2 weeks agoPicture of the week. The Great CyberSecurity Awakening of 2021. Firefox will soon auto-update on Windows even when it's not running. Edge takes its own approach to HTTPS switching. Three new ransomware victims. We believe we know how Colonial Pipeline was ...
Risky Business #627 -- USG claws back Colonial pipeline ransom money
2 weeks agoOn this week’s show Patrick Gray and Adam Boileau discuss the week’s security news, including: US Government claws back Colonial ransom bitcoin. We don’t think the FBI acted alone. Meet an0m, the cute little app for planning crimes that drinks mi ...
ISC StormCast for Tuesday, June 8th, 2021
2 weeks agoAmazon Sidewalkhttps://isc.sans.
edu/forums/diary/Amazon+S
idewalk+Cutting+Through+t
he+Hype/27502/
Windows Container Malwarehttps://unit42.pal
oaltonetworks.com/silosca
pe/
Darkside Ransom Confiscatedhttps://www.do
cumentcloud.org/documents
/20799023-affidavit- ...
Latvian woman charged with writing malware for the Trickbot Group
2 weeks agoLooking for contract programming work? You might be surprised at what's on offer out there.
ISC StormCast for Monday, June 7th, 2021
2 weeks agoStrange Goings on With Port 37https://isc.sans.edu/fo
rums/diary/Strange+goings
+on+with+port+37/27496/
Q
NAP Video Station RCE Vulnerabilityhttps://www.
qnap.com/de-de/security-a
dvisory/qsa-21-21
Updated GitHub Policyhttps://github.blog
/2021-06-04-updates-to ...
How to hack into 5500 accounts… just using “credential stuffing”
2 weeks agoPasswords - don't just pay them lip service.
ISC StormCast for Friday, June 4th, 2021
2 weeks agoScript to Test CIS Zoom Benchmark https://github.com/turbot
/steampipe-mod-zoom-compl
iance
F5 BIG-IP Edge Client for Windows Vulnerability https://support.f5.com/cs
p/article/K20346072
Fancy Product Designer Wordpress Plugin Vulnerabilityhttps://www.
welives ...
Real or Fake? When Your Fraud Notice Looks Like a Phish
2 weeks agoSo I Received a Phishing Email… I recently received an email indicating my credit card number had potentially been stolen and used for fraud. At this point, I am used to both having my credit card number stolen and receiving messages telling me it’ ...
S3 Ep35: Apple chip flaw, Have I Been Pwned, and Covid tracker trouble [Podcast]
2 weeks agoLatest episode - listen now!
ISC StormCast for Thursday, June 3rd, 2021
2 weeks agoRealtek RTL8170C Vulnerabilitieshttps://ww
w.vdoo.com/blog/realtek-w
ifi-vulnerabilities-zero-
day
Huawei LTE USB Stick E3372 Vulnerablityhttps://www.t
heregister.com/2021/06/02
/huawei_lte_usb_stick_vul
nerability/
NortonLifeLoc
k Cryptohttps://investor.no
rtonl ...
ISC StormCast for Wednesday, June 2nd, 2021
3 weeks agoGuildma is now using Finger and Signed Binary Proxy Execution to Evade Defenseshttps://isc.sans.
edu/forums/diary/Guildma+
is+now+using+Finger+and+S
igned+Binary+Proxy+Execut
ion+to+evade+defenses/274
82/
Bypassing Protected Folders Protectionshttps://dl.acm
.o ...
SN 821: Epsilon Red - Chrome 91, Emsisoft's Ransomware Decryption Tool, Revisiting Amazon Sidewalk
3 weeks agoPhoto of the Week. Chrome advances to 91. Emsisoft has created their own ransomware decryption tool. Stepping off the Sidewalk. Just another phishing attack. The Great Encryption Struggle. Hail Mary. Epsilon Red. We invite you to read our show notes at ht ...
Risky Business #626 -- Russian ransomware beef simmers
3 weeks agoOn this week’s show Patrick Gray and Adam Boileau discuss the week’s security news, including: Ransomware attack threatens Australian and US beef supply Talos dubs Russian ransomware crews “privateers” NYTimes writes another bad story More ...
“Have I Been Pwned” breach site partners with… the FBI!
3 weeks agoIf your password gets stolen as part of a data breach, you'll probably be told. But what if your password gets pwned some other way?
ISC StormCast for Tuesday, June 1st, 2021
3 weeks agoMalicious PowerShell Hosted on script.google.comhttps://
isc.sans.edu/forums/diary
/Malicious+PowerShell+Hos
ted+on+scriptgooglecom/27
468/
Sonicwall Advisoryhttps://www.sonic
wall.com/support/product-
notification/security-adv
isory-on-prem-sonicwall-n
etwork-se ...
ISC StormCast for Friday, May 28th, 2021
3 weeks agoAV evasion with 64-bit Executableshttps://isc.sa
ns.edu/forums/diary/All+y
our+Base+arenearly+equal+
when+it+comes+to+AV+evasi
on+but+64bit+executables+
are+not/27466/
Unpatches WebKit Vulnerablity in iOS/macOShttps://blog.the
ori.io/research/webkit-ty
pe-confus ...
“Unpatchable” vuln in Apple’s new Mac chip – what you need to know
3 weeks agoIt's all over the news! The bug you can't fix! Fortunately, you don't need to. We explain why.
ISC StormCast for Thursday, May 27th, 2021
3 weeks agoA Survey of Bluetooth Vulnerabilitieshttps://is
c.sans.edu/forums/diary/A
+Survey+of+Bluetooth+Vuln
erabilities+Trends/27460/
Google Chrome Updatehttps://chromerelea
ses.googleblog.com/2021/0
5/stable-channel-update-f
or-desktop_25.html
Attack
s on PDF Certifica ...
S3 Ep34: Apple bugs, scammers busted, and how crooks bypass 2FA [Podcast]
4 weeks agoLatest episode - listen now. (And please leave us a review if you like what you hear!)
ISC StormCast for Wednesday, May 26th, 2021
4 weeks agoUncovering Shenenigans in an IP Address Block via Hurricane Electic's BGP Toolkithttps://isc.sans.e
du/forums/diary/Uncoverin
g+Shenanigans+in+an+IP+Ad
dress+Block+via+Hurricane
+Electrics+BGP+Toolkit/27
456/
VMware Advisoryhttps://www.vmwar
e.com/security/advi ...
SN 820: The Dark Escrow - Firefox Fission, Doom CAPTCHA, Conti and CNA Financial Ransomware
4 weeks agoPicture of the Week.
Firefox finally achieves sustained "Fission".
Cont
i ransomware.
CNA Financial pays up big.
When they say IoT do they mean us?
"Mean Time to Inventory"
The "Doom" CAPTCHA.
The "Helios" screensaver.
Closing the Loop.
The Dark Escrow.
We ...
Risky Business #625 -- Iranians wipe some machines, Israelis kaboom some
4 weeks agoOn this week’s show Patrick Gray and Adam Boileau discuss the week’s security news, including: The latest news on the health system ransomware crisis in Ireland TSA to force pipeline operators to disclose attacks they probably aren’t detecting an ...
A Career in IT: Where Do I Start?
4 weeks agoIt is, by far, the most frequent question I get asked: How do I get started in IT/InfoSec? So many seem interested in the field of computers, system administration, networking, or information security but have no idea where to start, which can be a frustr ...
Apple patches dangerous security holes, one in active use – update now!
4 weeks agoIt's three weeks since last time. Now it's this time, so patch now!
ISC StormCast for Tuesday, May 25th, 2021
4 weeks agoApple Patches 0-Dayshttps://www.jamf.co
m/blog/zero-day-tcc-bypas
s-discovered-in-xcsset-ma
lware/https://support.app
le.com/en-us/HT201222
Blu
etooth Vulnerabilitieshttps://kb
.cert.org/vuls/id/799380h
ttps://francozappa.github
.io/about-bias/publicatio
n/antonio ...
Eight suspects busted in raid on “home delivery” scamming operation
4 weeks agoSome victims of home delivery scams end up with their entire bank accounts drained. Don't get caught out!
Naked Security Live – Jacked and hacked: how safe are tracking tags?
1 month agoNew episode - watch now! (And please tell your friends about our channel.)
ISC StormCast for Monday, May 24th, 2021
1 month agoServerless Phishing Campaignhttps://isc.sans.
edu/forums/diary/Serverle
ss+Phishing+Campaign/2744
6/
Locking Kernel32.dll As Anti-Debugging Techniquehttps://isc.sans
.edu/forums/diary/Locking
+Kernel32dll+As+AntiDebug
ging+Technique/27444/
Win
RM Vulnerable to h ...
Risky Biz Feature Podcast: The politics of cybersecurity
1 month agoIn this podcast we’ll be hearing from an Australian politician, Tim Watts. He’s a member of our federal parliament and serves as our shadow minister for communications and cybersecurity. For our overseas listeners, the “shadow” part of his title i ...
ISC StormCast for Friday, May 21st, 2021
1 month agoNew YouTube Video Series: Everything you ever watned to know about DNS and morehttps://isc.sans.edu/
forums/diary/New+YouTube+
Video+Series+Everything+y
ou+ever+wanted+to+know+ab
out+DNS+and+more/27440/
A
nd Ransomware Just Got a Bit Meanerhttps://isc.sans.ed
u ...
S3 Ep33: Eufy camera leak, Afterburner crisis, and AirTags (again) [Podcast]
1 month agoLatest episode - listen now (and tell your friends)!
ISC StormCast for Thursday, May 20th, 2021
1 month agoMay 2021 Forensic Contest: Answers and Analysishttps://isc.sans.
edu/forums/diary/May+2021
+Forensic+Contest+Answers
+and+Analysis/27430/
CIS Controls V8https://www.cisecurity.
org/controls/v8/
Dell iDRAC 9 Security Updatehttps://www.dell.co
m/support/kbdoc/en ...
Regulator fines COVID-19 tracker for turning contact data into sales leads
1 month agoWould you like marketing material with your track-and-trace?
ISC StormCast for Wednesday, May 19th, 2021
1 month agoFrom RunDLL32 to JavaScript then PowerShellhttps://isc.san
s.edu/forums/diary/From+R
unDLL32+to+JavaScript+the
n+PowerShell/27428/
New Pulse Secure VPN Advisoryhttps://kb.pulses
ecure.net/articles/Pulse_
Security_Advisories/SA448
00/
Android Stalkerware Vulnera ...
SN 819: The WiFi Frag Attacks - DarkSide Follow-Up, DarkTracer, Patch Tuesday, The Frontiers Saga
1 month agoPicture of the week. DarkSide Follow-Up. Follow The Money. Toshiba Attacked by DarkSide. Ransomware topics off-limits here. "DarkTracer: DarkWeb Criminal Intelligence" Please Leak our Stolen Data! Patch Tuesday Review. A review of the first book of "The F ...
Risky Business #624 -- Ransomware farce continues
1 month agoOn this week’s show Patrick Gray and Adam Boileau discuss the week’s security news, including: The aftermath of the Colonial ransomware attack Biden signs cybersecurity EO DarkSide crew hounded off the Internet. For now. Ransomware campaigns co ...
ISC StormCast for Tuesday, May 18th, 2021
1 month agoRansomware Defenseshttps://isc.sans.
edu/forums/diary/Ransomwa
re+Defenses/27420/
AXA Stops Ransomware Paymentshttps://www.insur
ancejournal.com/news/inte
rnational/2021/05/09/6132
55.htm
http.sys Proof of Concepthttps://github.com
/0vercl0k/CVE-2021-31166
Goog ...
“Those aren’t my kids!” – Eufy camera owners report video mixups
1 month agoHey, that's not my kitchen! Those aren't my kids! And that dreadful wallpaper's certainly not mine!
Ep. 146 - Demand Transparency with a blue shirt with Jason Frank
1 month agoIn this episode, Chris Hadnagy and Ryan MacDougall are joined by Jason Frank. Jason has an extensive background in helping both government and Fortune 100 organizations, and has served a course instructor for the Black Hat security conference. Jason ...
ISC StormCast for Monday, May 17th, 2021
1 month ago"Open" Access to Industrial Systems Interfaces is Also Far From Zerohttps://isc.sans.edu/
forums/diary/Open+Access+
to+Industrial+Systems+Int
erface+is+Also+Far+From+Z
ero/27418/
Malicious Rust Macro for VSCodehttps://github.com/
lucky/bad_actor_poc
Exim PoC R ...
Crypto-Gram May 15, 2021
1 month agoIn this issue: When AIs Start Hacking Security Vulnerabilities in Cellebrite Ransomware Is Getting Ugly from the May 15, 2021 Crypto-Gram Newsletter by Bruce Schneier read by Dan Henage
Apple AirTag hacked again – free internet with no mobile data plan!
1 month agoMore phun with Apple AirTags! Free internet, no data plan required... but it's s-l-o-o-o-w.
ISC StormCast for Friday, May 14th, 2021
1 month agoCross Browser Tracking with Schemefloodhttps://finger
printjs.com/blog/external
-protocol-flooding/
Cisco AnyConnect Secure Mobility Client Patchhttps://tools.cisco.
com/security/center/conte
nt/CiscoSecurityAdvisory/
cisco-sa-anyconnect-ipc-K
fQO9QhK
MSBuild A ...
Gamers beware! Crooks take advantage of MSI download outage…
1 month agoVendor's site offline? Can't wait for your download? Tempted to go trawling through the underweb to find an "unofficial" version?
S3 Ep32: AirTag jailbreak, Dell vulns, and a never-ending scam [Podcast]
1 month agoLatest episode - listen now!
ISC StormCast for Thursday, May 13th, 2021
1 month agoNumber of industrial control systems on the internet is lower then in 2020...but still far from zerohttps://isc.sans.edu/
forums/diary/Number+of+in
dustrial+control+systems+
on+the+internet+is+lower+
then+in+2020but+still+far
+from+zero/27412/
Webcast
: Ransomi ...
Tempted by cryptocoins? Fake trading apps get personal…
1 month agoAll that glisters is not gold/Often have you heard that told/Gilded tombs do worms enfold
ISC StormCast for Wednesday, May 12th, 2021
1 month agoMicrosoft Patch Tuesdayhttps://isc.sans.e
du/forums/diary/Microsoft
+May+2021+Patch+Tuesday/2
7408
WiFi Fragmentation Attackshttps://www.fragat
tacks.com
SN 818: News From the Darkside - Exim Email Server, Tor's Exit Nodes, TsuNAME, Project Hail Mary
1 month agoPicture of the week. TsuNAME - "DNS Configuration Flaw Lets Attackers Take Down DNS Servers" Huh Google? Tor's Exit Nodes. 21 Nails in Exim's coffin. Project Hail Mary: A Novel. Closing the loop. SpinRite update. News from the Darkside. We invite you to r ...
Risky Business #623 -- Ransomware threatens US energy security
1 month agoOn this week’s show Patrick Gray, Adam Boileau and Chris Krebs discuss the week’s security news, including: An analysis of the Colonial pipeline ransomware attack More ransomware news UK and US expose APT29’s preferred exploits (again) Intrus ...
Simple Data Exfiltration Through XSS
1 month agoDuring a recent engagement, I found a cross-site scripting (XSS) vulnerability in a legal document management application and created a quick and dirty document exfiltration payload. Unfortunately, this discovery and coding happened on the final day of th ...
Apple AirTag jailbroken already – hacked in rickroll attack
1 month agoOoooh, look! A shiny button-like object!
ISC StormCast for Tuesday, May 11th, 2021
1 month agoValidating IP Addresses: Why Encoding Mattershttps://isc.sans.e
du/forums/diary/Correctly
+Validating+IP+Addresses+
Why+encoding+matters+for+
input+validation/27404/
J
ail Breaking AirTagshttps://twitter.co
m/ghidraninja/status/1391
148503196438529
Malicious Tor ...
Never say never! Warren Buffett caught up in integer overflow error…
1 month ago640Kbytes of RAM should be enough for anyone...
Ep. 145 - Baking a Human Behavior Cake with Jack Schafer
1 month agoIn this episode, Chris Hadnagy and Maxie Reynolds are joined by industry professional Jack Schafer, PhD. Dr. Schafer is a psychologist, professor, intelligence consultant, and former FBI Special Agent. Dr. Schafer spent fifteen years conducting co ...
ISC StormCast for Monday, May 10th, 2021
1 month agoWho is Probing the Internet for Research Purposeshttps://isc.sans.
edu/forums/diary/Who+is+P
robing+the+Internet+for+R
esearch+Purposes/27400/
C
ycle Hunter and tsuNAME DDoS Attackhttps://github.com/
SIDN/CycleHunterhttps://t
suname.io/tech_report.pdf
Foxit Rea ...
Risky Biz Snake Oilers: Google pitches BeyondCorp for Enterprise
1 month agoAs regular listeners would know, Snake OIlers is a wholly sponsored podcast series we do here at Risky Biz HQ where vendors give us money so they can come on and pitch their products to you, our dear, dear listeners. And we have three vendors along today ...
ISC StormCast for Friday, May 7th, 2021
1 month agoScans for Exposed Azure Storage Containershttps://isc.san
s.edu/forums/diary/Expose
d+Azure+Storage+Container
s/27396/
Qualcomm MSM Vulnerabilityhttps://rese
arch.checkpoint.com/2021/
security-probe-of-qualcom
m-msm/
Google to Automatically enroll users in 2SFh ...
S3 Ep31: Apple zero-days, Flubot scammers and PHP supply chain bug [Podcast]
1 month agoLatest episode - listen now! (And please share with your friends.)
Firefox for Android gets critical update to block cookie-stealing hole
1 month agoThis browser update is for everyone, but it's for Android users particularly.
ISC StormCast for Thursday, May 6th, 2021
1 month agoMay 2021 Forensic Contesthttps://isc.sans.e
du/forums/diary/May+2021+
Forensic+Contest/27386/
W
indows Defender Bug Fills Windows 10 Boot Drive with thousands of fileshttps://www.bleeping
computer.com/news/microso
ft/windows-defender-bug-f
ills-windows-10-boot- ...
Dell fixes exploitable holes its own firmware update driver – patch now!
1 month agoThese bugs date back to 2009, and they could give crooks who are already in your network access to sysadmin superpowers.
ISC StormCast for Wednesday, May 5th, 2021
1 month agoAndroid Updatehttps://source.andr
oid.com/security/bulletin
/2021-05-01?hl=en
Dell Privilege Escalation Vulnerabilityhttps://www.
dell.com/support/kbdoc/en
-us/000186019/dsa-2021-08
8-dell-client-platform-se
curity-update-for-dell-dr
iver-insufficient-access-
con ...
SN 817: The Ransomware Task Force - Scripps Health, REvil Hacks Quanta Computer, Emotet Botnet, QNAP
1 month agoPicture of the Week.
REvil hacks Apple supplier Quanta Computer.
World-famous Scripps Health taken down.
The Big Emotet Botnet Takedown.
Emotet's 4,324,770 eMail addresses.
Have I Been Pwned domain-wide notifications.
QNAP.
Grav
ity NNTP Newsreader updated ...
Risky Business #622 -- GitHub weighs exploit ban
1 month agoOn this week’s show Patrick Gray and Adam Boileau discuss the week’s security news, including: GitHub weighs banning exploits Ransomware galore Belgian government crippled in DDoS attack Intrusion Truth Twitter account suspended More Pulsesec ...
Apple products hit by fourfecta of zero-day exploits – patch now!
1 month agoDon't delay. Get these updates today.
ISC StormCast for Tuesday, May 4th, 2021
1 month agoApple Patches 2 0-Day Flaws in WebKit affecting iOS/MacOS/WatchOShttps://
support.apple.com/en-us/H
T201222
PoC Exploit for CVE-2021-28482 (Microsoft Exchange)https://gist.git
hub.com/testanull/9ebbd68
30f7a501e35e67f2fcaa57bda
https://testbnull.medium.
com/mic ...
Naked Security Live – Beware ‘Flubot’: the home delivery scam with a difference
1 month agoHere's the latest Naked Security talk - watch now!
ISC StormCast for Monday, May 3rd, 2021
1 month agoQiling: A true instrumentable binary emulation frameworkhttps://isc.sans
.edu/forums/diary/Qiling+
A+true+instrumentable+bin
ary+emulation+framework/2
7372/
Python "ipaddress" improper input validationhttps://sick.co
des/sick-2021-014/
EXIF Tool Vulnerabilitie ...
PHP community sidesteps its third supply chain attack in three years
1 month agoThird time lucky! (The first two times were lucky, too, luckily.)
ISC StormCast for Friday, April 30th, 2021
1 month agoFrom Python to .Nethttps://isc.sans.edu/
forums/diary/From+Python+
to+Net/27366/
PHP Composer Vulnerabilityhttps://blog
.sonarsource.com/php-supp
ly-chain-attack-on-compos
er
Microsoft Identifies Several Integer Overflow Vulnerablitieshttps://us-
cert.cisa.gov/ ...
PCI Specialist Art “Coop” Cooper Joins TrustedSec Team
1 month agoWhen I founded TrustedSec in 2012, I knew exactly the type of person that I wanted to work alongside: talented, passionate about their corner of the security industry, and genuinely interested in helping anyone with the desire to learn more. After near ...
S3 Ep30: AirDrop worries, Linux pests and ransomware truths [Podcast]
1 month agoListen now - latest episode - lots of fun but with a serious (and educational!) side.