Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: InfoSec Diary Blog Archive - SANS Internet Storm Center InfoSec Diary Blog Archive

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Search Diaries:

Archive Matrix

2003JanFebMarApr MayJunJulAugSepOctNovDec

Archive Diary List


2010-07-30Johannes UllrichMicrosoft LNK vulnerability fix coming on Monday (0 Comments)
2010-07-30Guy BruneauCisco Internet Streamer: Web Server Directory Traversal Vulnerability (oneliner) (0 Comments)
2010-07-30Guy BruneauWireshark 1.2.10 released (0 Comments)
2010-07-30Guy BruneauWeb Traffic Analysis with httpry (9 Comments)
2010-07-29Rob VandenBrinkFBI, Slovenian and Spanish Police announce more arrests of Mariposa Botnet Creator, Operators (0 Comments)
2010-07-29Rob VandenBrinkSnort and Snort 2.9 Beta Released (0 Comments)
2010-07-29Rob VandenBrinkNoScript 2.0 released (2 Comments)
2010-07-29Rob VandenBrinkThe 2010 Verizon Data Breach Report is Out (0 Comments)
2010-07-28donald smithApple Releases Safari 4.1.1 and 5.0.1 addressing several vulnerabilities. (oneliner) (0 Comments)
2010-07-28donald smithOracle announced GNOME Display Manager password disclosure weakness (1 Comments)
2010-07-27John BambenekResponsible Disclosure or Full Disclosure? (20 Comments)
2010-07-27John BambenekGoogle releases Chrome 5.0.375.125 to fix security bugs, more at (oneliner) (0 Comments)
2010-07-26Guy BruneauSophosLabs Released Free Tool to Validate Microsoft Shortcut (2 Comments)
2010-07-25Rick WannerUpdated version of Mandiant's Web Historian (0 Comments)
2010-07-25Rick WannerMozilla advisory for Firefox...Upgrade to 3.6.8. (oneliner) (0 Comments)
2010-07-25Rick WannerNew Firefox Version, 3.6.8 (oneliner) (0 Comments)
2010-07-24Manuel Humberto Santander PelaezTransmiting logon information unsecured in the network (5 Comments)
2010-07-24Manuel Humberto Santander PelaezGnuPG gpgsm bug (0 Comments)
2010-07-24Manuel Humberto Santander PelaezTypes of diary: One liners vs full diary (5 Comments)
2010-07-23Mark HofmanSome of our favourite sysinternals tools have been updated. TCPview, Autoruns, ProcDump and Disk2vhd have changed. More here (oneliner) (0 Comments)
2010-07-23Mark HofmanFirefox 3.6.8 is out. Yes it only seems like yesterday when you installed FF 3.6.7 (it was for me). The release notes say a stability issue has been fixed in this release. (oneliner) (0 Comments)
2010-07-23Mark HofmanLNK by any other name (0 Comments)
2010-07-23Mark HofmanvBulletin vB 3.8.6 vulnerability (0 Comments)
2010-07-23Mark HofmanA bit old, however CISCO has updated the November 2009 TLS renegotiation vulnerability with additional vulnerable products and patch information. More details here (oneliner) (0 Comments)
2010-07-22Joel EslerCommon sense in Spam identification (4 Comments)
2010-07-21Adrien de Beaupreautorun.inf and .lnk Malware (NOT 'Vulnerability in Windows Shell Could Allow Remote Code Execution' 2286198) (1 Comments)
2010-07-21Adrien de BeaupreCisco Security Advisory: CDS Internet Streamer: Web Server Directory Traversal Vulnerability (oneliner) (0 Comments)
2010-07-21Adrien de BeaupreDell PowerEdge R410 replacement motherboard firmware contains malware (1 Comments)
2010-07-21Adrien de BeaupreAdobe Reader Protected Mode (0 Comments)
2010-07-21Adrien de BeaupreUpdate on .LNK vulnerability (2 Comments)
2010-07-20Manuel Humberto Santander PelaezFirefox 3.6.7 is out!! (4 Comments)
2010-07-20Manuel Humberto Santander PelaezLowering infocon back to green (1 Comments)
2010-07-20Manuel Humberto Santander PelaezTruecrypt 7.0 released (2 Comments)
2010-07-20Manuel Humberto Santander PelaeziTunes buffer overflow vulnerability (0 Comments)
2010-07-20Manuel Humberto Santander PelaezLNK vulnerability now with Metasploit module implementing the WebDAV method (0 Comments)
2010-07-19Lenny ZeltserVMware vCenter Update Manager security patch for Jetty Web server: (oneliner) (0 Comments)
2010-07-19Lenny ZeltserTargeting VoIP: Increase in SIP Connections on UDP port 5060 (3 Comments)
2010-07-19Lenny ZeltserPreempting a Major Issue Due to the LNK Vulnerability - Raising Infocon to Yellow (9 Comments)
2010-07-18Manuel Humberto Santander PelaezNew metasploit GUI written in Java (0 Comments)
2010-07-18Manuel Humberto Santander PelaezSAGAN: An open-source event correlation system - Part 1: Installation (3 Comments)
2010-07-16Joel EslerVulnerability in Windows "LNK" files? (17 Comments)
2010-07-16Joel EslerBind 9.7.1-P2 is now available (0 Comments)
2010-07-15Deborah HaleBe on the Alert (9 Comments)
2010-07-14Deborah HaleSecunia Half Year Report for 2010 shows interesting trends (3 Comments)
2010-07-13Jim ClausingVMware Studio Security Update (0 Comments)
2010-07-13Jim ClausingJuly 2010 Microsoft Black Tuesday Summary (4 Comments)
2010-07-13Jim ClausingForensic challenge results (0 Comments)
2010-07-12Chris CarboniThoughts on Malware for Mobile Devices - Part 2 (11 Comments)
2010-07-10Tony CarothersOracle July 2010 Pre-Release Announcement (0 Comments)
2010-07-10Tony CarothersSoftware Update for Cisco IE 3000 Series Switches (0 Comments)
2010-07-08Kyle HaugsnessUbuntu privilege escalation via PAM (0 Comments)
2010-07-08Kyle HaugsnessPirate Bay account database compromised (1 Comments)
2010-07-08Kyle HaugsnessNew poll on MSRC (0 Comments)
2010-07-07Kevin ShorttFacebook, Facebook, What Do YOU See? (4 Comments)
2010-07-06Rob VandenBrinkBogus Support Organizations use Live Operators to Install Malware (1 Comments)
2010-07-05Manuel Humberto Santander PelaezApple ITunes account security compromised (9 Comments)
2010-07-04Manuel Humberto Santander PelaezInteresting analysis of the PHP SplObjectStorage Vulnerability (0 Comments)
2010-07-04Bojan ZdrnjaStored XSS vulnerability on YouTube actively abused? (7 Comments)
2010-07-04Manuel Humberto Santander PelaezMalware inside PDF Files (3 Comments)
2010-07-04Manuel Humberto Santander PelaezNew Winpcap Version (0 Comments)
2010-07-03Deborah HaleHappy Independence Day (0 Comments)
2010-07-03Deborah HaleDelivery Status Failure Notice That Packed A Wallop (1 Comments)
2010-07-02Johannes UllrichOISF released version 1.0.0 of Suricata, the open source IDS/IPS engine (oneliner) (0 Comments)
2010-07-02Johannes UllrichAdobe PDF Reader "Launch" vulnerability still exploitable (3 Comments)
2010-07-01Bojan ZdrnjaNew Opera 10.6 that includes AVG's Web Threat Data Feed has been released. More at (oneliner) (0 Comments)
2010-07-01Adrien de Beaupre[OT] Happy Birthday Canada! (oneliner) (1 Comments)
2010-07-01Bojan ZdrnjaDown the RogueAV and Blackhat SEO rabbit hole (part 2) (3 Comments)