Diaries by Keyword - SANS Internet Storm Center

Handler on Duty: Didier Stevens

Threat Level: green

Date	Author	Title
USB KEY
2008-04-07	John Bambenek	HP USB Keys Shipped with Malware for your Proliant Server
USB
2017-10-06/a>	Johannes Ullrich	What's in a cable? The dangers of unauthorized cables
2016-09-09/a>	Xavier Mertens	Collecting Users Credentials from Locked Devices
2016-07-03/a>	Guy Bruneau	Is Data Privacy part of your Company's Culture?
2015-12-09/a>	Xavier Mertens	Enforcing USB Storage Policy with PowerShell
2015-04-06/a>	Guy Bruneau	'Dead Drops' Hidden USB Sticks Around the World
2013-08-26/a>	Alex Stanford	Stop, Drop and File Carve
2013-05-20/a>	Guy Bruneau	Safe - Tools, Tactics and Techniques
2010-01-06/a>	Guy Bruneau	Secure USB Flaw Exposed
2009-08-13/a>	Jim Clausing	New and updated cheat sheets
2009-01-30/a>	Mark Hofman	We all "Love" USB drives
2008-12-25/a>	Maarten Van Horenbeeck	Merry Christmas, and beware of digital hitchhikers!
2008-11-21/a>	Mark Hofman	To USB or not to USB, well not in the DoD - what do you do?
2008-04-07/a>	John Bambenek	HP USB Keys Shipped with Malware for your Proliant Server
KEY
2024-09-17/a>	Xavier Mertens	23:59, Time to Exfiltrate!
2024-07-24/a>	Xavier Mertens	"Mouse Logger" Malicious Python Script
2024-03-10/a>	Guy Bruneau	What happens when you accidentally leak your AWS API keys? [Guest Diary]
2024-02-08/a>	Xavier Mertens	A Python MP3 Player with Builtin Keylogger Capability
2023-12-23/a>	Xavier Mertens	Python Keylogger Using Mailtrap.io
2022-07-20/a>	Xavier Mertens	Malicious Python Script Behaving Like a Rubber Ducky
2022-04-25/a>	Xavier Mertens	Simple PDF Linking to Malicious Content
2021-06-11/a>	Xavier Mertens	Keeping an Eye on Dangerous Python Modules
2021-03-18/a>	Xavier Mertens	Simple Python Keylogger
2020-08-14/a>	Jan Kopriva	Definition of 'overkill' - using 130 MB executable to hide 24 kB malware
2019-02-21/a>	Xavier Mertens	Simple Powershell Keyloggers are Back
2019-02-07/a>	Xavier Mertens	Phishing Kit with JavaScript Keylogger
2018-11-26/a>	Russ McRee	ViperMonkey: VBA maldoc deobfuscation
2017-08-10/a>	Didier Stevens	Maldoc Analysis with ViperMonkey
2017-01-31/a>	Johannes Ullrich	Malicious Office files using fileless UAC bypass to drop KEYBASE malware
2014-06-11/a>	Daniel Wesemann	Gimme your keys!
2013-12-20/a>	Daniel Wesemann	authorized key lime pie
2013-09-23/a>	Rob VandenBrink	How do you spell "PSK"?
2013-08-21/a>	Alex Stanford	Psst. Your Browser Knows All Your Secrets.
2013-06-22/a>	Guy Bruneau	.biz DNSSEC DNSKEY is Invalid
2012-12-27/a>	John Bambenek	It's 3pm 2 days after Christmas, do you know where your unmanaged SSH keys are?
2012-08-21/a>	Adrien de Beaupre	RuggedCom fails key management 101 on Rugged Operating System (ROS)
2012-03-20/a>	Johannes Ullrich	A Reminder: Private Key Security
2011-12-07/a>	Lenny Zeltser	V8 as an Alternative to SpiderMonkey for JavaScript Deobfuscation
2011-10-01/a>	Mark Hofman	Hot on the heels fo FF, Thunderbird v 7.0.1 and SeaMonkey v 2.4.1 have been updated.
2011-04-29/a>	Guy Bruneau	Firefox, Thunderbird and SeaMonkey Security Updates
2011-03-04/a>	Mark Hofman	A new version of Seamonkey is available, includes security fixes. More details here http://www.seamonkey-project.org/news#2011-03-02
2010-09-28/a>	Daniel Wesemann	Supporting the economy (in Russia and Ukraine)
2010-06-18/a>	Tom Liston	IMPORTANT INFORMATION: Distributed SSH Brute Force Attacks
2009-12-16/a>	Rob VandenBrink	Seamonkey Update to 2.0.1, find the release notes here ==> http://www.seamonkey-project.org/releases/seamonkey2.0.1
2009-09-04/a>	Adrien de Beaupre	SeaMonkey Security Update
2009-05-25/a>	Jim Clausing	NTPD autokey vulnerability
2009-04-10/a>	Stephen Hall	Firefox 3 updates now in Seamonkey
2009-04-09/a>	Johannes Ullrich	Conficker update with payload
2008-11-05/a>	donald smith	If you missed President Elect Obamas speech have some malware instead
2008-07-14/a>	Daniel Wesemann	Obfuscated JavaScript Redux
2008-04-07/a>	John Bambenek	HP USB Keys Shipped with Malware for your Proliant Server

USB KEY

USB

KEY