SANS Internet Storm Center

RSS Feed SANS Internet Storm Center
Updated: 16 hours 49 min ago

OpenSSL Releases OpenSSL 1.0.1j, 1.0.0o and 0.9.8zc, (Wed, Oct 15th)

Wed, 10/15/2014 - 10:25am

This update to the OpenSSL Library addresses 4 vulnerabilities. One of these is the POODLE vulner ...(more)...

SSLv3 POODLE Vulnerability Official Release, (Tue, Oct 14th)

Wed, 10/15/2014 - 8:03am

Finally we got an official announcement. For all the details, jump straight to the original annou ...(more)...

October 2014 Critical Patch Update Released, (Wed, Oct 15th)

Wed, 10/15/2014 - 2:17am

Oracle have released itscritical patch update for October 2014, this series of patches will provi ...(more)...

OpenSSL Vulnerability leaked via OpenBSD patch (NOT!)?, (Tue, Oct 14th)

Tue, 10/14/2014 - 4:05pm

Yesterday, a number of news sites published speculative reports about a possible OpenSSLbug to be ...(more)...

Updates for Firefox and Thunderbird., (Tue, Oct 14th)

Tue, 10/14/2014 - 2:13pm

Johannes B. Ullrich, Ph ...(more)...

Microsoft October 2014 Patch Tuesday, (Tue, Oct 14th)

Tue, 10/14/2014 - 2:08pm

Microsoft only published 8 instead of the promised 9 bulletins. Also, of particular interest is M ...(more)...

Adobe October 2014 Bulletins for Flash Player and Coldfusion, (Tue, Oct 14th)

Tue, 10/14/2014 - 12:55pm

Adobe published two security bulletins today:

APSB-22[1] : fixes 3 vulnerabilities in A ...(more)...

Infocon: green

Tue, 10/14/2014 - 11:04am
ISC StormCast for Tuesday, October 14th 2014

CSAM: Be Wary of False Beacons, (Mon, Oct 13th)

Mon, 10/13/2014 - 8:03am

[This is a guest diary published on behalf of Chris Sanders]

Hunting for evil in networ ...(more)...

For or Against: Port Security for Network Access Control, (Mon, Oct 13th)

Sun, 10/12/2014 - 10:49pm

I had an interesting discussion tonight with fellow handler Manuel on the pros and cons on port s ...(more)...

CSAM: Month of False Positives - Breach Emails?, (Fri, Oct 10th)

Sat, 10/11/2014 - 7:32am

With all the high profile breaches pretty much every one of us has received a breach notification ...(more)...