SANS Internet Storm Center | Office of Information Technology

SANS Internet Storm Center

RSS Feed SANS Internet Storm Center
Updated: 20 hours 47 min ago

Superfish 2.0: Dell Windows Systems Pre-Installed TLS Root CA, (Tue, Nov 24th)

Mon, 11/23/2015 - 8:19pm

Recently shipped Dell systems have been found to include a special Root CA Certificate and privat ...(more)...

BizCN gate actor sends CryptoWall 4.0, (Tue, Nov 24th)

Mon, 11/23/2015 - 5:00pm


Earlier this month, the BizCN gate actor switche ...(more)...

OpenDNS Research Used to Predict Threat, (Sun, Nov 22nd)

Sun, 11/22/2015 - 2:40pm

Two researchers (Dhia Mahjoub Thomas Mathew) have recently presented at BruCON on how they have ...(more)...

Nmap 7.00 is out!, (Sat, Nov 21st)

Sat, 11/21/2015 - 5:36am

After 3.5 years, Fyodor has just released Nmap 7 ...(more)...

SIEM is not a product, its a process..., (Fri, Nov 20th)

Fri, 11/20/2015 - 4:19am

Thisfamous Bruces quote is so true that we can re-use it to focus on specific topics l ...(more)...

When Hunting BeEF, Yara rules., (Fri, Nov 20th)

Thu, 11/19/2015 - 6:31pm

This is a Guest Di ...(more)...

Actors using exploit kits - How they change tactics, (Thu, Nov 19th)

Wed, 11/18/2015 - 7:20pm


Exploit kits (EKs) are used by criminals to infe ...(more)...

Help Wanted: Please help test our experimental PFSense Client, (Wed, Nov 18th)

Wed, 11/18/2015 - 11:41am

We do have a *very* experimental client script to submit logs from PFSense firewalls. Supporting ...(more)...

Automatic MIME attachments triage, (Tue, Nov 17th)

Tue, 11/17/2015 - 2:00am

Today, we are all receiving a huge amount of spam containing multiple malicious documents (cfr my ...(more)...

Scanning tricks with scapy, (Mon, Nov 16th)

Mon, 11/16/2015 - 11:50am

Sometimes, nmap can be quite noisy an trigger host IPS or network IPS alarms. When doing recon, o ...(more)...

Analyze of a malicious Word document with an embedded payload, (Sat, Nov 14th)

Sat, 11/14/2015 - 12:45am

This week, I was busy withan incidentwhich involved an interesting malicious Word document. OLE d ...(more)...

Google Reconnaissance, Sprinter-style, (Fri, Nov 13th)

Fri, 11/13/2015 - 7:01am

When doing security assessments or penetration tests, theres a significant amount of findings tha ...(more)...