SANS Internet Storm Center | Office of Information Technology

SANS Internet Storm Center

RSS Feed SANS Internet Storm Center
Updated: 11 hours 53 min ago

PDF + maldoc1 = maldoc2, (Wed, Aug 26th)

Thu, 08/27/2015 - 3:02am

I received another example of a

Actor that tried Neutrino exploit kit now back to Angler, (Wed, Aug 26th)

Tue, 08/25/2015 - 8:40pm


Last week, we saw the group behind a significant ...(more)...

Dropbox Phishing via Compromised Wordpress Site, (Tue, Aug 25th)

Tue, 08/25/2015 - 11:49am

I got a couple of emails today notifying me of a Compulsory Email Account Update for my Dropbox a ...(more)...

Are You Protecting your Backdoor ?, (Mon, Aug 24th)

Mon, 08/24/2015 - 12:01pm

Hardly anybody has physical access to critical public facing servers. Usually, they are located i ...(more)...

A recent decline in traffic associated with Operation Windigo, (Fri, Aug 21st)

Fri, 08/21/2015 - 7:15am


According to a 2014 report by ESET, Windigo is t ...(more)...

Actor using Angler exploit kit switched to Neutrino, (Thu, Aug 20th)

Wed, 08/19/2015 - 6:57pm


Ive often had a hard time finding compromised we ...(more)...

Outsourcing critical infrastructure (such as DNS), (Wed, Aug 19th)

Wed, 08/19/2015 - 9:19am

Migrating everything to cloud or various online services is becoming increasingly popular in last ...(more)...

Microsoft Security Bulletin MS15-093 - Critical OOB - Internet Explorer RCE, (Tue, Aug 18th)

Tue, 08/18/2015 - 11:41pm

Security Update for Internet Explorer (3088903)

Tool Tip: Kansa Stafford released, PowerShell for DFIR, (Mon, Aug 17th)

Mon, 08/17/2015 - 12:35pm

In his most recent post, Guy asked

Are you a "Hunter"?, (Sun, Aug 16th)

Sun, 08/16/2015 - 6:04pm

It sound like an interesting question, isnt it? But what Im referring to is us analyst that searc ...(more)...