Threat Level: green Handler on Duty: Jim Clausing

SANS ISC: InfoSec Diary Blog Archive InfoSec Diary Blog Archive


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Search Diaries:


Archive Matrix

2003JanFebMarApr MayJunJulAugSepOctNovDec
2004JanFebMarAprMayJunJulAugSepOctNovDec
2005JanFebMarAprMayJunJulAugSepOctNovDec
2006JanFebMarAprMayJunJulAugSepOctNovDec
2007JanFebMarAprMayJunJulAugSepOctNovDec
2008JanFebMarAprMayJunJulAugSepOctNovDec
2009JanFebMarAprMayJunJulAugSepOctNovDec
2010JanFebMarAprMayJunJulAugSepOctNovDec
2011JanFebMarAprMayJunJulAugSepOctNovDec
2012JanFebMarAprMayJunJulAugSepOctNovDec
2013JanFebMarAprMayJunJulAugSepOctNovDec
2014JanFebMarAprMayJunJulAugSepOctNovDec
2015JanFebMarAprMayJunJulAugSepOctNovDec
2016JanFebMarAprMayJunJulAugSepOctNovDec
2017JanFebMarAprMayJunJulAugSepOctNovDec
2018JanFebMarAprMayJunJulAugSepOctNovDec
2019JanFebMarAprMayJunJulAugSepOctNovDec
2020JanFebMarAprMayJunJulAugSepOctNovDec
2021JanFebMarAprMayJun

Archive Diary List

2021-2-01

DateAuthorTitle
2021-02-28Didier StevensMaldocs: Protection Passwords (0 Comments)
2021-02-26Guy BruneauPretending to be an Outlook Version Update (0 Comments)
2021-02-26Johannes UllrichISC Stormcast For Friday, February 26th, 2021 (oneliner) (0 Comments)
2021-02-25Jim ClausingSo where did those Satori attacks come from? (0 Comments)
2021-02-25Johannes UllrichISC Stormcast For Thursday, February 25th, 2021 (oneliner) (0 Comments)
2021-02-25Daniel WesemannForensicating Azure VMs (1 Comments)
2021-02-24Johannes UllrichISC Stormcast For Wednesday, February 24th, 2021 (oneliner) (0 Comments)
2021-02-24Brad DuncanMalspam pushes GuLoader for Remcos RAT (1 Comments)
2021-02-23Jan KoprivaQakbot in a response to Full Disclosure post (0 Comments)
2021-02-23Johannes UllrichISC Stormcast For Tuesday, February 23rd, 2021 (oneliner) (0 Comments)
2021-02-22Didier StevensUnprotecting Malicious Documents For Inspection (0 Comments)
2021-02-22Johannes UllrichISC Stormcast For Monday, February 22nd, 2021 (oneliner) (0 Comments)
2021-02-21Didier StevensDDE and oledump (0 Comments)
2021-02-20Didier StevensQuickie: Extracting HTTP URLs With tshark (0 Comments)
2021-02-19Johannes UllrichISC Stormcast For Friday, February 19th, 2021 (oneliner) (0 Comments)
2021-02-19Xavier MertensDynamic Data Exchange (DDE) is Back in the Wild? (0 Comments)
2021-02-18Johannes UllrichISC Stormcast For Thursday, February 18th, 2021 (oneliner) (0 Comments)
2021-02-17Brad DuncanMalspam pushing Trickbot gtag rob13 (0 Comments)
2021-02-17Xavier MertensThe new "LinkedInSecureMessage" ? (0 Comments)
2021-02-17Johannes UllrichISC Stormcast For Wednesday, February 17th, 2021 (oneliner) (0 Comments)
2021-02-16Jim ClausingMore weirdness on TCP port 26 (2 Comments)
2021-02-16Johannes UllrichISC Stormcast For Tuesday, February 16th, 2021 (oneliner) (0 Comments)
2021-02-15Johannes UllrichSecuring and Optimizing Networks: Using pfSense Traffic Shaper Limiters to Combat Bufferbloat (5 Comments)
2021-02-15Johannes UllrichISC Stormcast For Monday, February 15th, 2021 (oneliner) (0 Comments)
2021-02-14Didier StevensVideo: tshark & Malware Analysis (0 Comments)
2021-02-13Guy BruneauUsing Logstash to Parse IPtables Firewall Logs (0 Comments)
2021-02-13Guy BruneauvSphere Replication updates address a command injection vulnerability (CVE-2021-21976) - (oneliner) (0 Comments)
2021-02-12Xavier MertensAgentTesla Dropped Through Automatic Click in Microsoft Help File (1 Comments)
2021-02-12Johannes UllrichISC Stormcast For Friday, February 12th, 2021 (oneliner) (0 Comments)
2021-02-11Jan KoprivaAgent Tesla hidden in a historical anti-malware tool (1 Comments)
2021-02-11Johannes UllrichISC Stormcast For Thursday, February 11th, 2021 (oneliner) (0 Comments)
2021-02-10Johannes UllrichISC Stormcast For Wednesday, February 10th, 2021 (oneliner) (0 Comments)
2021-02-10Brad DuncanPhishing message to the ISC handlers email distro (2 Comments)
2021-02-09Renato MarinhoMicrosoft February 2021 Patch Tuesday (0 Comments)
2021-02-09Johannes UllrichISC Stormcast For Tuesday, February 9th, 2021 (oneliner) (0 Comments)
2021-02-08Didier StevensQuickie: tshark & Malware Analysis (0 Comments)
2021-02-08Johannes UllrichISC Stormcast For Monday, February 8th, 2021 (oneliner) (0 Comments)
2021-02-06Didier StevensYARA v4.0.5 (0 Comments)
2021-02-05Johannes UllrichISC Stormcast For Friday, February 5th, 2021 (oneliner) (0 Comments)
2021-02-05Xavier MertensVBA Macro Trying to Alter the Application Menus (0 Comments)
2021-02-04Bojan ZdrnjaAbusing Google Chrome extension syncing for data exfiltration and C&C (7 Comments)
2021-02-04Johannes UllrichISC Stormcast For Thursday, February 4th, 2021 (oneliner) (0 Comments)
2021-02-03Johannes UllrichISC Stormcast For Wednesday, February 3rd, 2021 (oneliner) (0 Comments)
2021-02-03Brad DuncanExcel spreadsheets push SystemBC malware (2 Comments)
2021-02-02Johannes UllrichISC Stormcast For Tuesday, February 2nd, 2021 (oneliner) (0 Comments)
2021-02-02Xavier MertensNew Example of XSL Script Processing aka "Mitre T1220" (0 Comments)
2021-02-01Rob VandenBrinkTaking a Shot at Reverse Shell Attacks, CNC Phone Home and Data Exfil from Servers (0 Comments)
2021-02-01Johannes UllrichISC Stormcast For Monday, February 1st, 2021 (oneliner) (0 Comments)