Feed aggregator | Office of Information Technology

Feed aggregator

SSMA Usage, (Thu, Mar 23rd)

SANS Internet Storm Center - Wed, 03/22/2017 - 7:06pm

SSMA is handy tool for quickly getting an idea if a file is maliciou ...

"Blank Slate" malspam still pushing Cerber ransomware, (Wed, Mar 22nd)

SANS Internet Storm Center - Wed, 03/22/2017 - 9:33am

2017-03-22 Update: This diary was posted earlier, but we had some technical issues, and the p ...

Malspam with password-protected Word documents, (Tue, Mar 21st)

SANS Internet Storm Center - Mon, 03/20/2017 - 8:46pm


On Monday 2017-03-20, the ISC received a notific ...

What is really being proxied?, (Wed, Mar 8th)

SANS Internet Storm Center - Mon, 03/20/2017 - 5:57am

An observation from the road, was with a client recently and the discussion of proxy entered into ...

Searching for Base64-encoded PE Files, (Sun, Mar 19th)

SANS Internet Storm Center - Sun, 03/19/2017 - 2:57pm

When hunting for suspicious activity, its always a good idea to search for Microsoft Executables. ...

Example of Multiple Stages Dropper, (Sat, Mar 18th)

SANS Internet Storm Center - Sat, 03/18/2017 - 12:42am
If some malware samples remain simple padding:5px 10px"> From: admintmseals@telkomsa.net To: ...

Retro Hunting!, (Wed, Mar 15th)

SANS Internet Storm Center - Wed, 03/15/2017 - 1:36am

For a while, one of the securitytrends is to integrate information from 3rd-party feeds to improv ...

February and March Microsoft Patch Tuesday, (Tue, Mar 14th)

SANS Internet Storm Center - Tue, 03/14/2017 - 11:54am

Today, Microsoft released its monthly security bulletins. Februarys delayed release was combined ...

New tool: sigs.py, (Mon, Mar 13th)

SANS Internet Storm Center - Mon, 03/13/2017 - 9:58am

Back in 2005, I wrote a perl script to calculate multiple cryptographic hashes for me. We had md5 ...


RSS Feed