SANS Internet Storm Center

RSS Feed SANS Internet Storm Center
Updated: 8 hours 5 min ago

Quantum Insert Attack, (Sun, Apr 26th)

Sun, 04/26/2015 - 11:26am

The Dutch company Fox-IT has revealed a detailed information about Quantum Insert Attack. HTML Re ...(more)...

A Malicious Word Document Inside a PDF Document, (Sat, Apr 25th)

Sat, 04/25/2015 - 4:29am

Yesterday Steve Basford informed us of yet

Fileless Malware, (Fri, Apr 24th)

Fri, 04/24/2015 - 10:55am

In previous diaries we have talked about memory forensics and how important is it . Malware that ...(more)...

When automation does not help, (Thu, Apr 23rd)

Thu, 04/23/2015 - 1:04pm

In a lot of web application penetration tests that Ive done in last couple of years I noticed tha ...(more)...

Dridex Redirecting to Malicious Dropbox Hosted File Via Google, (Tue, Apr 21st)

Tue, 04/21/2015 - 9:57am

Thanks to Wayne for sending us in the latest Dridex sample. He observed them arriving this mornin ...(more)...

Logging Complete Requests in Apache 2.2 and 2.4, (Tue, Apr 21st)

Tue, 04/21/2015 - 9:15am

Apache has an interesting option to log complete requests, including the body of POST requests. T ...(more)...

Reminder: Secure Your Tomcat Admin Interface, (Mon, Apr 20th)

Mon, 04/20/2015 - 6:58am

In our web application honeypots, we do see continuing scans for /manager/html. While our honeypo ...(more)...

Handling Special PDF Compression Methods, (Sun, Apr 19th)

Sun, 04/19/2015 - 6:18am

Maarten Van Horenbeeck posted a

Memory Forensics Of Network Devices, (Fri, Apr 17th)

Fri, 04/17/2015 - 4:13am

Memory forensics of PCs has become a popular forensic method, and has made great progress the las ...(more)...

MS15-034: HTTP.sys (IIS) DoS And Possible Remote Code Execution. PATCH NOW, (Wed, Apr 15th)

Wed, 04/15/2015 - 9:27pm

Denial of Service (DoS) exploits are widely available to exploit CVE-2015-1635, a vulnerability i ...(more)...