Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Extortion With Password; npm Package Malware; CIRCL IMAP Proxy; Banking Malware - Internet Security | DShield Extortion With Password; npm Package Malware; CIRCL IMAP Proxy; Banking Malware


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
podcast logo

ISC StormCast for Friday, July 13th 2018

A daily summary of cyber security news from the SANS Internet Stormcenter
Author:Johannes B. Ullrich, Ph.D.
See below for a schedule of classes I teach.
Created: Friday, July 13th 2018
Length: 5:54 minutes
Today's Headline: Extortion With Password; npm Package Malware; CIRCL IMAP Proxy; Banking Malware

If you like this podcast, then please consider telling others about it. Use this button to Tweet about this episode: click here. Errors? Corrections? Complaints? Player Problems? Please let us know here: https://isc.sans.edu/contact.html

Plain HTML5 Player
Fancy Player (with skip back/forward)

Show Notes

Extortion Claims Include Leaked Passwords to Appear more Plausiable
https://isc.sans.edu/forums/diary/New+Extortion+Tricks+Now+Including+Your+Password/23866/

npm Package Compromised and Used To Steal Credentials
https://github.com/eslint/eslint-scope/issues/39#issuecomment-404533026

CIRCL IMAP Proxy
https://github.com/CIRCL/IMAP-Proxy

Checkpoint Names "Dorkbot" As A Top Threat (Signup required)
https://research.checkpoint.com/cyber-attack-trends-2018-mid-year-report/

Discussion

deep link to Cisco "Cyber Attack Trends: 2018 Mid-Year Report":
https://research.checkpoint.com/wp-content/uploads/2018/07/Cyber-Attack-Trends-2018-Mid-Year-Report.pdf
Posted by gebhard on Fri Jul 13 2018, 05:06
Post mortem for npm package compromization:
https://eslint.org/blog/2018/07/postmortem-for-malicious-package-publishes
Posted by gebhard on Fri Jul 13 2018, 05:08

Login here to join the discussion.

Interested in attending one of my classes? See below for my current schedule.

Intrusion Detection In-DepthSan AntonioAug 6th - Aug 11th 2018
Defending Web Applications Security EssentialsAmsterdamSep 3rd - Sep 8th 2018
Defending Web Applications Security EssentialsLas VegasSep 23rd - Sep 28th 2018
Intrusion Detection In-DepthTysonsOct 15th - Oct 20th 2018
Defending Web Applications Security EssentialsDenverOct 24th - Oct 29th 2018
Intrusion Detection In-DepthWashingtonDec 13th - Dec 18th 2018