SANS Internet Storm Center | Office of Information Technology

SANS Internet Storm Center

RSS Feed SANS Internet Storm Center
Updated: 15 hours 16 min ago

Infocon: green

Wed, 05/25/2016 - 4:43pm
VMWare Security Advisories

VMWare Security Advisories, (Wed, May 25th)

Wed, 05/25/2016 - 2:23pm
VMware has released the following new and updated security advisories: ...(more)...

Stop Using "internal" Top Level Domain Names, (Wed, May 25th)

Tue, 05/24/2016 - 8:40pm this week warned again that internal top level domain names can be used against you, if ...(more)...

Technical Report about the RUAG attack, (Mon, May 23rd)

Mon, 05/23/2016 - 11:50am

RUAGis a Swiss based company that participatesin the aerospace, defense, and space industries. In ...(more)...

The strange case of WinZip MRU Registry key, (Sun, May 22nd)

Sun, 05/22/2016 - 7:38am

When we want to know if a document (.doc, ...(more)...

Python Malware - Part 2, (Sat, May 21st)

Sat, 05/21/2016 - 4:23pm

I would have liked to create a PEiD signature for

EITest campaign still going strong, (Fri, May 20th)

Thu, 05/19/2016 - 8:17pm


Originally reported by Malwarebytes in October 2 ...(more)...

TeslaCrypt closes down...Releases master decryption key, (Thu, May 19th)

Thu, 05/19/2016 - 2:12pm

In a surprising move. ...(more)...

Resources: Windows Auditing & Monitoring, Linux 2FA, (Wed, May 18th)

Wed, 05/18/2016 - 12:16pm

Some useful resources for your reading pleasure and implementation:

1) A recently publi ...(more)...

VMWare Security Advisories VMSA-2016-0005, (Tue, May 17th)

Tue, 05/17/2016 - 1:54pm

VMWare published today a security advisory about the following CVEs: ...(more)...

CVE-2016-2208 Symantec Antivirus Engine Malformed PE Header Parser Memory Access Violation, (Tue, May 17th)

Tue, 05/17/2016 - 1:23pm

More vulnerabilities! This time the Symantec Antivirus engine. There ...(more)...