SANS Internet Storm Center, InfoCON: green - RSS Feed

Latest articles

Using NMAP to Assess Hosts in Load Balanced Clusters, (Wed, May 25th)

Recently I've been seeing more clients using DNS load balancing (GSLB) to load-balance traditional web, API and other services - it's an easy way to load balance between datacenters for instance.  What I've noticed lately, especially with servers that use cloud "as a service" offerings, is that:

ISC Stormcast For Wednesday, May 25th, 2022 https://isc.sans.edu/podcastdetail.html?id=8022, (Wed, May 25th)

ctx Python Library Updated with "Extra" Features, (Tue, May 24th)

Python is a prevalent programming language and has a vast collection of packages on Python Package Index (pypi.org) that allow developers to build their code conveniently. Many of these packages can be installed and updated by the well-known “pip install” command. However, many developers may take the updating and installation process for granted and...

ISC Stormcast For Tuesday, May 24th, 2022 https://isc.sans.edu/podcastdetail.html?id=8020, (Tue, May 24th)

Attacker Scanning for jQuery-File-Upload, (Mon, May 23rd)

Recently, I noticed some requests hitting our honeypots that appear to attempt to exploit jQuery-File-Upload. jQuery-File-Upload is a popular tool for implementing file uploads. It has been around for a while and has had a few vulnerabilities in the past, but nothing recent as far as I can tell [1]. Allowing users to upload files securely is tricky....

ISC Stormcast For Monday, May 23rd, 2022 https://isc.sans.edu/podcastdetail.html?id=8018, (Mon, May 23rd)


A 'Zip Bomb' to Bypass Security Controls & Sandboxes, (Fri, May 20th)

Yesterday, I analyzed a malicious archive for a customer. It was delivered to the mailbox of a user who, hopefully, was security-aware and reported it. The payload passed through the different security layers based on big players on the market!

A 'Zip Bomb' to Bypass Security Controls & Sandboxes, (Fri, May 20th)

Yesterday, I analyzed a malicious archive for a customer. It was delivered to the mailbox of a user who, hopefully, was security-aware and reported it. The payload passed through the different security layers based on big players on the market!

ISC Stormcast For Friday, May 20th, 2022 https://isc.sans.edu/podcastdetail.html?id=8016, (Fri, May 20th)

Bumblebee Malware from TransferXL URLs, (Thu, May 19th)

Introduction

Discover, share and read the best on the web

Follow RSS Feeds, Blogs, Podcasts, Twitter searches, Facebook pages, even Email Newsletters! Get unfiltered news feeds or filter them to your liking.

Get Inoreader
Inoreader - Follow RSS Feeds, Blogs, Podcasts, Twitter searches, Facebook pages, even Email Newsletters!