Date Author Title
2024-10-15Johannes UllrichAngular-base64-update Demo Script Exploited (CVE-2024-42640)
2024-08-30Jesse La GrewSimulating Traffic With Scapy
2024-07-30Johannes UllrichApple Patches Everything. July 2024 Edition
2024-06-06Xavier MertensMalicious Python Script with a "Best Before" Date
2024-05-27Jan KoprivaFiles with TXZ extension used as malspam attachments
2024-05-08Xavier MertensAnalyzing Synology Disks on Linux
2024-04-22Jan KoprivaIt appears that the number of industrial devices accessible from the internet has risen by 30 thousand over the past three years
2024-03-05Johannes UllrichApple Releases iOS/iPadOS Updates with Zero Day Fixes.
2024-01-25Xavier MertensFacebook AdsManager Targeted by a Python Infostealer
2024-01-22Johannes UllrichApple Updates Everything - New 0 Day in WebKit
2024-01-12Xavier MertensOne File, Two Payloads
2023-12-22Xavier MertensShall We Play a Game?
2023-12-15Xavier MertensCSharp Payload Phoning to a CobaltStrike Server
2023-12-11Johannes UllrichApple Patches Everything
2023-11-18Xavier MertensQuasar RAT Delivered Through Updated SharpLoader
2023-11-08Xavier MertensExample of Phishing Campaign Project File
2023-10-28Xavier MertensSize Matters for Many Security Controls
2023-10-25Johannes UllrichApple Patches Everything. Releases iOS 17.1, MacOS 14.1 and updates for older versions fixing exploited vulnerability
2023-10-20Yee Ching TokVMware Releases Security Patches for Fusion, Workstation and Aria Operations for Logs
2023-08-23Xavier MertensMore Exotic Excel Files Dropping AgentTesla
2023-07-26Xavier MertensSuspicious IP Addresses Avoided by Malware Samples
2023-07-12Brad DuncanLoader activity for Formbook "QM18"
2023-06-29Brad DuncanGuLoader- or DBatLoader/ModiLoader-style infection for Remcos RAT
2023-06-24Guy BruneauEmail Spam with Attachment Modiloader
2023-06-22Johannes UllrichApple Patches Exploited Vulnerabilities in iOS/iPadOS, macOS, watchOS and Safari
2023-06-17Brad DuncanFormbook from Possible ModiLoader (DBatLoader)
2023-05-30Brad DuncanMalspam pushes ModiLoader (DBatLoader) infection for Remcos RAT
2023-05-20Xavier MertensPhishing Kit Collecting Victim's IP Address
2023-05-16Jesse La GrewSignals Defense With Faraday Bags & Flipper Zero
2023-03-27Johannes UllrichApple Updates Everything (including Studio Display)
2023-03-11Xavier MertensOverview of a Mirai Payload Generator
2023-02-06Johannes UllrichAPIs Used by Bots to Detect Public IP address
2023-02-03Jim ClausingVMware workstation 17.0.1 fixes arbitrary file deletion issue - https://www.vmware.com/security/advisories/VMSA-2023-0003.html
2023-01-24Johannes UllrichApple Updates (almost) Everything: Patch Overview
2023-01-17Johannes UllrichPacket Tuesday: IPv6 Router Advertisements https://www.youtube.com/watch?v=uRWpB_lYIZ8
2023-01-16Johannes UllrichPSA: Why you must run an ad blocker when using Google
2022-11-04Xavier MertensRemcos Downloader with Unicode Obfuscation
2022-11-02Brad DuncanWho put the "Dark" in DarkVNC?
2022-09-25Didier StevensDownloading Samples From Takendown Domains
2022-09-18Didier StevensVideo: Grep & Tail -f With Notepad++
2022-09-18Tom WebbPreventing ISO Malware
2022-09-05Didier StevensQuickie: Grep & Tail -f With Notepad++
2022-07-25Xavier MertensPowerShell Script with Fileless Capability
2022-07-20Johannes UllrichApple Patches Everything Day
2022-06-28Johannes UllrichPossible Scans for HiByMusic Devices
2022-06-26Didier StevensMore Decoding Analysis
2022-06-02Johannes UllrichQuick Answers in Incident Response: RECmd.exe
2022-05-25Rob VandenBrinkUsing NMAP to Assess Hosts in Load Balanced Clusters
2022-05-23Johannes UllrichAttacker Scanning for jQuery-File-Upload
2022-03-31Johannes UllrichApple Patches Actively Exploited Vulnerability in macOS, iOS and iPadOS,
2022-03-24Xavier MertensMalware Delivered Through Free Sharing Tool
2022-03-14Johannes UllrichApple Updates Everything: MacOS 12.3, XCode 13.3, tvOS 15.4, watchOS 8.5, iPadOS 15.4 and more
2022-02-11Xavier MertensCinaRAT Delivered Through HTML ID Attributes
2022-02-10Johannes UllrichiOS/iPadOS and MacOS Update: Single WebKit 0-Day Vulnerability Patched
2022-01-27Johannes UllrichApple Patches Everything
2022-01-05Xavier MertensCode Reuse In the Malware Landscape
2021-12-28Russ McReeLotL Classifier tests for shells, exfil, and miners
2021-11-26Guy BruneauSearching for Exposed ASUS Routers Vulnerable to CVE-2021-20090
2021-11-19Xavier MertensDownloader Disguised as Excel Add-In (XLL)
2021-11-15Rob VandenBrinkChanging your AD Password Using the Clipboard - Not as Easy as You'd Think!
2021-11-10Xavier MertensShadow IT Makes People More Vulnerable to Phishing
2021-11-04Brad DuncanOctober 2021 Forensic Contest: Answers and Analysis
2021-09-08Brad Duncan"Stolen Images Evidence" Campaign Continues Pushing BazarLoader Malware
2021-08-11Brad DuncanTA551 (Shathak) continues pushing BazarLoader, infections lead to Cobalt Strike
2021-07-29Xavier MertensMalicious Content Delivered Through archive.org
2021-07-24Bojan ZdrnjaActive Directory Certificate Services (ADCS - PKI) domain admin vulnerability
2021-07-04Didier StevensDIY CD/DVD Destruction - Follow Up
2021-06-27Didier StevensDIY CD/DVD Destruction
2021-05-18Xavier MertensFrom RunDLL32 to JavaScript then PowerShell
2021-05-12Jan KoprivaNumber of industrial control systems on the internet is lower then in 2020...but still far from zero
2021-05-10Johannes UllrichCorrectly Validating IP Addresses: Why encoding matters for input validation.
2021-04-26Didier StevensCAD: .DGN and .MVBA Files
2021-04-23Xavier MertensMalicious PowerPoint Add-On: "Small Is Beautiful"
2021-03-02Russ McReeAdversary Simulation with Sim
2021-02-24Brad DuncanMalspam pushes GuLoader for Remcos RAT
2020-10-22Jan KoprivaBazarLoader phishing lures: plan a Halloween party, get a bonus and be fired in the same afternoon
2020-09-01Johannes UllrichExposed Windows Domain Controllers Used in CLDAP DDoS Attacks
2020-07-08Xavier MertensIf You Want Something Done Right, You Have To Do It Yourself... Malware Too!
2020-06-29Didier StevensSysmon and Alternate Data Streams
2020-06-10Brad DuncanJob application-themed malspam pushes ZLoader
2020-05-29Johannes UllrichThe Impact of Researchers on Our Data
2020-05-24Didier StevensZloader Maldoc Analysis With xlm-deobfuscator
2020-05-23Xavier MertensAgentTesla Delivered via a Malicious PowerPoint Add-In
2020-04-10Xavier MertensPowerShell Sample Extracting Payload From SSL
2020-04-10Scott FendleyCritical Vuln in vCenter vmdir (CVE-2020-3952)
2020-04-08Brad DuncanGerman malspam pushes ZLoader malware
2020-03-14Didier StevensPhishing PDF With Incremental Updates.
2019-12-22Didier StevensExtracting VBA Macros From .DWG Files
2019-12-16Didier StevensMalicious .DWG Files?
2019-12-05Jan KoprivaE-mail from Agent Tesla
2019-11-08Xavier MertensMicrosoft Apps Diverted from Their Main Use
2019-09-26Rob VandenBrinkMining MAC Address and OUI Information
2019-07-25Rob VandenBrinkWhen Users Attack! Users (and Admins) Thwarting Security Controls
2019-07-05Didier StevensA "Stream O" Maldoc
2019-07-02Xavier MertensMalicious Script With Multiple Payloads
2019-07-01Didier StevensMaldoc: Payloads in User Forms
2019-05-19Guy BruneauIs Metadata Only Approach, Good Enough for Network Traffic Analysis?
2019-04-24Rob VandenBrinkWhere have all the Domain Admins gone? Rooting out Unwanted Domain Administrators
2019-03-31Didier StevensMaldoc Analysis of the Weekend by a Reader
2019-03-29Remco VerhoefAnnotating Golang binaries with Cutter and Jupyter
2019-03-17Didier StevensVideo: Maldoc Analysis: Excel 4.0 Macro
2019-03-16Didier StevensMaldoc: Excel 4.0 Macros
2019-03-15Remco VerhoefBinary Analysis with Jupyter and Radare2
2019-02-27Didier StevensMaldoc Analysis by a Reader
2019-02-20Brad DuncanMore Russian language malspam pushing Shade (Troldesh) ransomware
2019-01-30Russ McReeCR19-010: The United States vs. Huawei
2018-11-29Brad DuncanRussian language malspam pushing Shade (Troldesh) ransomware
2018-11-21Johannes UllrichCritical Vulnerability in Flash Player
2018-11-18Guy BruneauMultipurpose PCAP Analysis Tool
2018-11-05Johannes UllrichStruts 2.3 Vulnerable to Two Year old File Upload Flaw
2018-10-18Russ McReeCisco Security Advisories 17 OCT 2018
2018-10-17Russ McReeVMSA-2018-0026 VMware ESXi, Workstation & Fusion updates address out-of-bounds read vulnerability https://www.vmware.com/security/advisories/VMSA-2018-0026.html
2018-10-17Russ McReeRedHunt Linux - Adversary Emulation, Threat Hunting & Intelligence
2018-09-13Xavier MertensMalware Delivered Through MHT Files
2018-09-07Xavier MertensCrypto Mining in a Windows Headless Browser
2018-08-31Jim ClausingQuickie: Using radare2 to disassemble shellcode
2018-08-01Johannes UllrichWhen Cameras and Routers attack Phones. Spike in CVE-2014-8361 Exploits Against Port 52869
2018-07-04Didier StevensXPS Metadata
2018-06-27Renato MarinhoSilently Profiling Unknown Malware Samples
2018-06-16Russ McReeAnomaly Detection & Threat Hunting with Anomalize
2018-06-01Remco VerhoefBinary analysis with Radare2
2018-03-12Xavier MertensPayload delivery via SMB
2018-02-25Guy BruneauBlackhole Advertising Sites with Pi-hole
2018-01-26Xavier MertensInvestigating Microsoft BITS Activity
2017-12-20Richard PorterVMWare Security Advisory: VMSA-2017-0021: https://www.vmware.com/security/advisories/VMSA-2017-0021.html
2017-12-16Xavier MertensMicrosoft Office VBA Macro Obfuscation via Metadata
2017-10-24Xavier MertensBadRabbit: New ransomware wave hitting RU & UA
2017-08-07Xavier MertensIncrease of phpMyAdmin scans
2017-06-07Johannes UllrichDeceptive Advertisements: What they do and where they come from
2017-05-30Johannes UllrichFreeRadius Authentication Bypass
2017-05-05Xavier MertensHTTP Headers... the Achilles' heel of many applications
2017-02-10Brad DuncanHancitor/Pony malspam
2017-02-03Lorna HutchesonCisco - Issue with Clock Signal Component
2016-10-26Johannes UllrichCritical Flash Player Update APSB16-36
2016-10-10Didier StevensRadare2: rahash2
2016-09-13Rob VandenBrinkApple iOS 10 and 10.0.1 Released
2016-09-09Xavier MertensCollecting Users Credentials from Locked Devices
2016-08-31Deborah HaleCisco Security Advisories Issued
2016-06-17Johannes UllrichCritical Adobe Flash Update. Patch Now
2016-05-12Xavier MertensAdobe Released Updates to Fix Critical Vulnerability
2016-05-05Xavier MertensMicrosoft BITS Used to Download Payloads
2016-03-08Rick WannerCritical Adobe Updates - March 2016
2016-02-09Johannes UllrichAdobe Patch Tuesday - February 2016
2016-01-10Jim ClausingVMware security update
2015-12-28Rick WannerAdobe Flash and Adobe AIR Updates - https://helpx.adobe.com/security/products/flash-player/apsb16-01.html
2015-12-19Russell EubanksVMWare Security Advisory
2015-10-16Alex StanfordAdobe Flash Update
2015-10-13Alex StanfordAdobe Updates Acrobat and Adobe Reader
2015-10-09Guy BruneauAdobe Acrobat and Reader Pre-Announcement
2015-09-28Johannes Ullrich"Transport of London" Malicious E-Mail
2015-09-19Didier StevensDon't launch that file Adobe Reader!
2015-07-27Daniel WesemannAngler's best friends
2015-07-14Johannes UllrichAdobe Updates Flash Player, Shockwave and PDF Reader
2015-07-12Rick WannerAnother Adobe Flash Zero Day http://www.kb.cert.org/vuls/id/338736
2015-06-23Kevin ShorttAdobe Flash Player Update - https://helpx.adobe.com/security/products/flash-player/apsb15-14.html
2015-04-06Guy Bruneau'Dead Drops' Hidden USB Sticks Around the World
2015-02-05Johannes UllrichAdobe Flash Player Update Released, Fixing CVE 2015-0313
2015-02-02Stephen HallNew Adobe Flash Vulnerability - CVE-2015-0313
2015-01-26Russ McReeAdobe updates Security Advisory for Adobe Flash Player, Infocon returns to green
2015-01-23Adrien de BeaupreInfocon change to yellow for Adobe Flash issues
2014-11-11Johannes UllrichAdobe Flash Update
2014-10-14Johannes UllrichAdobe October 2014 Bulletins for Flash Player and Coldfusion
2014-10-02Johannes UllrichWhy is your Mac all for sudden using Bing as a search engine?
2014-10-01Russ McReeVMware security advisory: VMSA-2014-0010 http://www.vmware.com/security/advisories/VMSA-2014-0010.html
2014-09-12Chris MohanVMware NSX and vCNS product updates address a critical information disclosure vulnerability http://www.vmware.com/security/advisories/VMSA-2014-0009.html
2014-08-12Adrien de BeaupreAdobe updates for 2014/08
2014-06-17Rob VandenBrinkCanada's Anti-Spam Legislation (CASL) 2014
2014-06-17Rob VandenBrinkNew Security Advisories / Updates from Microsoft - Heads up for Next Patch Tuesday!
2014-05-18Russ McReesed and awk will always rock
2014-04-30Russ McReeUltraDNS DDOS
2014-04-28Russ McReeAdobe Security Bulletin: Security updates available for Adobe Flash Player http://adobe.ly/QVjO72
2014-04-26Guy BruneauAndroid Users - Beware of Bitcoin Mining Malware
2014-04-17Manuel Humberto Santander PelaezLooking for malicious traffic in electrical SCADA networks - part 2 - solving problems with DNP3 Secure Authentication Version 5
2014-04-15Manuel Humberto Santander PelaezLooking for malicious traffic in electrical SCADA networks - part 1
2014-04-11Rob VandenBrinkVMware Security Advisories / Patches released for 2 issues (NOT Heartbleed) - http://www.vmware.com/security/advisories/VMSA-2014-0003.html and http://www.vmware.com/security/advisories/VMSA-2014-0002.html
2014-04-08Rick WannerSecurity Updates available for Adobe Flash Player - http://helpx.adobe.com/security/products/flash-player/apsb14-09.html
2014-03-13Daniel WesemannAdobe Shockwave Player critical update: http://helpx.adobe.com/security/products/shockwave/apsb14-10.html
2014-03-11Johannes UllrichAdobe Updates: Flash Player
2014-03-02Stephen HallSunday Reading
2014-02-21Johannes UllrichUPS Malware Spam Using Fake SPF Headers
2014-02-20Stephen HallAbobe out of band patch announcement (APSB14-07)
2014-02-11Johannes UllrichAdobe February 2014 Patch Tuesday
2014-02-05Johannes UllrichTo Merrillville or Sochi: How Dangerous is it to travel?
2014-02-04Johannes UllrichAdobe Flash Player Emergency Patch
2014-01-24Chris MohanSecurity Update for OS X for CVE-2014-1252 http://support.apple.com/kb/HT6117
2014-01-14Johannes UllrichAdobe Patch Tuesday January 2014
2013-12-23Scott FendleyVMWare ESX/ESXi Security Advisory
2013-12-21Daniel WesemannAdobe phishing underway
2013-12-10Rob VandenBrinkAdobe Updates today as well.
2013-12-04Adrien de BeaupreVMware Security Advisory VMSA-2013-0014
2013-11-22Rick WannerTales of Password Reuse
2013-11-02Rick WannerProtecting Your Family's Computers
2013-10-09Johannes UllrichOther Patch Tuesday Updates (Adobe, Apple)
2013-10-05Richard PorterAdobe Breach Notification, Notifications?
2013-10-04Johannes UllrichThe Adobe Breach FAQ
2013-10-03Johannes UllrichOctober Patch Tuesday Preview (CVE-2013-3893 patch coming!)
2013-09-17John BambenekMicrosoft Releases Out-of-Band Advisory for all Versions of Internet Explorer
2013-09-10Swa FrantzenAdobe September 2013 Black Tuesday Overview
2013-08-29Russ McReeSuspect Sendori software
2013-08-25Johannes UllrichWhen does your browser send a "Referer" header (or not)?
2013-08-13Swa FrantzenMicrosoft security advisories: RDP and MD5 deprecation in Microsoft root certificates
2013-08-02Chris MohanVMware Security Advisory VMSA-2013-0009 - http://www.vmware.com/security/advisories/VMSA-2013-0009.html
2013-08-02Chris MohanCisco Security Advisory: OSPF LSA Manipulation Vulnerability in Multiple Cisco Products http://tools.cisco.com/security/center/viewAlert.x?alertId=30210
2013-07-09Swa FrantzenAdobe July 2013 Black Tuesday Overview
2013-07-06Guy BruneauIs Metadata the Magic in Modern Network Security?
2013-07-01Manuel Humberto Santander PelaezUsing nmap scripts to enhance vulnerability asessment results
2013-06-18Russ McReeVolatility rules...any questions?
2013-06-11Swa FrantzenAdobe June 2013 Black Tuesday Overview
2013-06-11Swa FrantzenOther Microsoft Black Tuesday News
2013-05-31Chris MohanVMware releases new and updated security advisories
2013-05-21Adrien de BeaupreMoore, Oklahoma tornado charitable organization scams, malware, and phishing
2013-05-14Swa FrantzenAdobe May 2013 Black Tuesday Overview
2013-05-14Swa FrantzenMicrosoft Security Advisory 2846338
2013-05-10Johannes UllrichMicrosoft and Adobe Patch Tuesday Pre-Release
2013-05-09John BambenekAdobe Releases 0-day Security Advisory for Coldfusion, Exploit Code Available. Advisory here: http://www.adobe.com/support/security/advisories/apsa13-03.html
2013-05-08Johannes Ullrich"De Flashing" the ISC Web Site and Flash XSS issues
2013-04-09Swa FrantzenAdobe April 2013 Black Tuesday Overview
2013-04-04Johannes UllrichMicrosoft April Patch Tuesday Advance Notification
2013-03-12Swa FrantzenAdobe March 2013 Black Tueday
2013-03-04Johannes UllrichIPv6 Focus Month: Addresses
2013-02-27Adam SwangerAdobe Flash Player Security Update - http://www.adobe.com/support/security/bulletins/apsb13-08.html
2013-02-22Chris MohanVMware releases new and updated security advisories
2013-02-21Pedro BuenoNBC site redirecting to Exploit kit
2013-02-20Manuel Humberto Santander PelaezSANS SCADA Summit at Orlando - Bigger problems and so far from getting them solved
2013-02-20Johannes UllrichUpdate Palooza
2013-02-17Guy BruneauAdobe Acrobat and Reader Security Update Planned this Week
2013-02-13Swa FrantzenMore adobe reader and acrobat (PDF) trouble
2013-02-12Adam SwangerMicrosoft February 2013 Black Tuesday Update - Overview
2013-02-07John BambenekAdobe Releases Patches for 0-day Vulnerability in Flash Player for Windows and Mac, Upgrade now: http://www.adobe.com/support/security/bulletins/apsb13-04.html
2013-02-04Adam SwangerSAN Securing The Human Monthly Awareness Video - Advanced Persistent Threat (APT) http://www.securingthehuman.org/resources/ncsam
2013-02-01Jim ClausingVMware vSphere security updates for the authentication service and third party libraries (see http://www.vmware.com/security/advisories/VMSA-2013-0001.html)
2013-01-18Russ McReeInteresting reads for Friday 18 JAN 2013
2013-01-15Russ McReeCisco introducing Cisco Security Notices 16 JAN 2013
2013-01-09Rob VandenBrinkSecurity Updates for Adobe Reader / Acrobat - http://www.adobe.com/support/security/bulletins/apsb13-02.html
2013-01-09Rob VandenBrinkSecurity Updates for Adobe Flash - http://www.adobe.com/support/security/bulletins/apsb13-01.html
2013-01-09Rob VandenBrinkSecurity Update - Cisco Prime LMS (cisco-sa-20130109-lms - remote execution as root vulnerability) - advisory at: http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130109-lms
2013-01-09Rob VandenBrinkSecurity Update - Cisco 7900 Phones - cisco-sa-20130109-uipphone privilege escallation issue - advisory at: http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130109-uipphone
2013-01-08Richard PorterAdobe Security Bulletins http://blogs.adobe.com/psirt/2013/01/adobe-security-bulletins-posted-4.html
2013-01-04Daniel WesemannPatch pre-notification from Adobe and Microsoft
2012-12-11John BambenekMicrosoft December 2012 Black Tuesday Update - Overview
2012-12-03John BambenekJohn McAfee Exposes His Location in Photo About His Being on Run
2012-11-30Daniel WesemannSnipping Leaks
2012-11-13Jim ClausingMicrosoft November 2012 Black Tuesday Update - Overview
2012-11-08Daniel WesemannAdobe Patches
2012-10-26Russ McReeCyber Security Awareness Month - Day 26 - Attackers use trusted domain to propagate Citadel Zeus variant
2012-10-09Johannes UllrichAdobe Flash Player update http://www.adobe.com/support/security/bulletins/apsb12-22.html
2012-10-06Manuel Humberto Santander PelaezCyber Security Awareness Month - Day 6 - NERC: The standard that enforces security on power SCADA
2012-10-05Richard PorterVMWare Security Advisory: VMSA-2012-0014 - http://www.vmware.com/security/advisories/VMSA-2012-0014.html
2012-09-27Kevin ShorttCisco IOS Security Advisory Bundle - http://www.cisco.com/web/about/security/intelligence/Cisco_ERP_sep12.html
2012-09-20Russ McReeApple and Cisco Security Advisories 19 SEP 2012
2012-08-31Johannes UllrichVMware Updates
2012-08-21Adrien de BeaupreYYABCAFU - Yes Yet Another Bleeping Critical Adobe Flash Update
2012-08-14Rick WannerAdobe Security Bulletins - http://blogs.adobe.com/psirt/2012/08/adobe-security-bulletins-posted-2.html
2012-07-13Russ McReeVMWare Security Advisory 12 JUL 2012
2012-07-10Swa FrantzenMicrosoft fix-it to disable gadgets - SA 2719662
2012-07-10Swa FrantzenMicrosoft revoking trust in Microsoft certificates - SA 2728973
2012-07-05Adrien de BeaupreMicrosoft advanced notification for July 2012 patch Tuesday
2012-06-21Russ McReeCisco Security Advisories 20 JUN 2012
2012-06-14Johannes UllrichVMWare Security Advisories
2012-06-12Swa FrantzenAdobe June 2012 Black Tuesday patches
2012-05-31Johannes UllrichSCADA@Home: Your health is no secret no more!
2012-05-25Guy BruneauTechnical Analysis of Flash Player CVE-2012-0779
2012-05-25Guy BruneauVMware vMA Security Advisory VMSA-2012-0010 - http://www.vmware.com/security/advisories/VMSA-2012-0010.html
2012-05-17Johannes UllrichNew IPv6 Video: IPv6 Router Advertisements https://isc.sans.edu/ipv6videos
2012-05-12Tony CarothersAdobe Update to Vulnerabilities
2012-05-07Guy BruneauiOS 5.1.1 Software Update for iPod, iPhone, iPad
2012-05-04Guy BruneauAdobe Security Flash Update
2012-05-03Guy BruneauVMware Critical Security Issues Advisory - http://www.vmware.com/security/advisories/VMSA-2012-0009.html
2012-04-10Swa FrantzenAdobe April 2012 Black Tuesday Update
2012-04-06Johannes UllrichAdobe Patch Tuesday Prerelease (Reader/Acrobat) http://www.adobe.com/support/security/bulletins/apsb12-08.html
2012-03-28Kevin ShorttAdobe Flash Player APSB12-07 - 28 March 2012
2012-03-12Guy BruneauOpenSSL Security Update
2012-03-09Guy BruneauVMware New and Updated Advisories
2012-03-05Johannes UllrichAdobe Flash Player Security Update
2012-02-29Russ McReeCisco Security Advisories - 29FEB2011
2012-02-16Johannes UllrichAdobe Flash Player Update
2012-02-14Johannes UllrichAdobe Shockwave Player and RoboHelp for Word Patches
2012-01-31Russ McReeFirefox 10 and VMWare advisories and updates
2012-01-10Adrien de BeaupreAdobe January 2012 Black Tuesday overview
2011-12-26Deborah HaleBadware 2011
2011-12-13Johannes UllrichDecember 2011 Adobe Black Tuesday
2011-12-12Daniel WesemannYou won 100$ or a free iPad!
2011-12-08Adrien de BeaupreNewest Adobe Flash 11.1.102.55 and Previous 0 Day Exploit
2011-12-08Adrien de BeaupreMicrosoft Security Bulletin Advance Notification for December 2011
2011-12-07Lenny ZeltserAdobe Acrobat Latest Zero-Day Vulnerability Fix Coming to All Platforms by January 10
2011-11-23Johannes UllrichSCADA hacks published on Pastebin
2011-11-18Kevin ListonRecent VMWare security advisories
2011-11-11Rick WannerAdobe Air updated to 3.1.0.4880
2011-11-08Swa FrantzenAbobe November 2011 Black Tuesday Overview
2011-10-19Pedro BuenoThe old new Stuxnet...DuQu?
2011-10-19Johannes UllrichHouse for rent! Observing an Overpayment Scam
2011-10-05Johannes UllrichAdobe SSL Certificate Problem (fixed)
2011-10-05Jim ClausingVMware Advisory - UDF file system handling
2011-10-01Mark HofmanAdobe Photoshop for Windows Vulnerability (CVE-2011-2443)
2011-09-21Swa FrantzenEmergency patch expected for Flash Player
2011-09-21Guy BruneauAdobe Release Flash Player 10.3.183.10 available at http://get.adobe.com/flashplayer/
2011-09-09Guy BruneauAdobe plan to release critical security updates next Tuesday for Acrobat and Reader http://www.adobe.com/support/security/bulletins/apsb11-24.html
2011-09-09Guy BruneauAdobe Publish its List of Trusted Root Certificate - http://www.adobe.com/security/approved-trust-list.html
2011-08-30Scott FendleyCisco Security Advisory - Apache HTTPd DoS
2011-08-26Daniel WesemannAdobe Flash stability update to 10.3.183.7. See http://forums.adobe.com/message/3883150
2011-08-09Swa FrantzenAdobe August 2011 Black Tuesday Overview
2011-07-21Mark HofmanLion Released
2011-07-10Raul SilesSecurity Testing SSL/TLS (HTTPS) Implementations
2011-06-30Guy BruneauAdobe Release Flash Player 10.3.181.34 available at http://get.adobe.com/flashplayer/
2011-06-14Swa FrantzenAdobe releases patches
2011-06-09Richard PorterOne Browser to Rule them All?
2011-06-06Johannes UllrichAdobe releases Flash Player patch on a Sunday to combat latest 0day http://www.adobe.com/support/security/bulletins/apsb11-13.html
2011-06-01Adrien de BeaupreCisco Security Advisory: Multiple Vulnerabilities in Cisco Unified IP Phones 7900 Series - http://www.cisco.com/warp/public/707/cisco-sa-20110601-phone.shtml
2011-06-01Adrien de BeaupreCisco Security Advisory: Default Credentials Vulnerability in Cisco Network Registrar - http://www.cisco.com/warp/public/707/cisco-sa-20110601-cnr.shtml
2011-06-01Adrien de BeaupreCisco Security Advisory: Default Credentials for root Account on the Cisco Media Experience Engine 5600 - http://www.cisco.com/warp/public/707/cisco-sa-20110601-mxe.shtml
2011-06-01Johannes UllrichEnabling Privacy Enhanced Addresses for IPv6
2011-06-01Adrien de BeaupreCisco Security Advisory: Multiple Vulnerabilities in Cisco AnyConnect Secure Mobility Client - http://www.cisco.com/warp/public/707/cisco-sa-20110601-ac.shtml
2011-05-25Daniel WesemannFive new Cisco security advisories released. See http://www.cisco.com/go/psirt
2011-05-12Johannes UllrichActiveX Flaw Affecting SCADA systems
2011-05-12Chris MohanSecurity updates available for Flash Player, RoboHelp, Audition, and Flash Media Server
2011-05-03Johannes UllrichUpdate on Osama Bin Laden themed Malware
2011-05-02Johannes UllrichBin Laden Death Related Malware
2011-04-28Chris MohanCisco Security Advisories
2011-04-25Rob VandenBrinkWhat's Your (IP) Address Worth?
2011-04-21Guy BruneauAdobe Reader and Acrobat Security Updates
2011-04-14Johannes UllrichUpdate to Adobe Flash 0-day: Patch will be out soon
2011-04-11Johannes UllrichYet another Adobe Flash/Reader/Acrobat 0 day
2011-03-30Adrien de BeaupreTwo Cisco advisories: cisco-sa-20110330-nac and cisco-sa-20110330-acs
2011-03-22Kevin ShorttAdobe Reader/Acrobat Security Update - http://www.adobe.com/support/security/bulletins/apsb11-06.html
2011-03-14Bojan ZdrnjaAdobe Flash 0-day being used in targeted attacks
2011-03-07Bojan ZdrnjaOracle padding attacks (Codegate crypto 400 writeup)
2011-03-02Chris MohanUpdates: Firefox 3.6.14/3.5.17, Thunderbird 3.1.8, Adobe Flash v10.2.152.32 & WireShark 1.4.4
2011-02-15Jason LamHTTP headers fun
2011-02-10Chris MohanLinksys WAP610N has Unauthenticated Root Console issue
2011-02-09Mark HofmanAdobe Patches (shockwave, Flash, Reader & Coldfusion)
2011-02-08Chris MohanVMWare Security Advisory
2011-02-02Chris MohanDefault Credentials for Root Account on Cisco Personal Video units
2011-01-25Chris MohanReviewing our preconceptions
2011-01-06Johannes UllrichFlash Local-with-filesystem Sandbox Bypass
2010-11-22Lenny ZeltserAdobe Acrobat Spam Going Strong - More to Come?
2010-11-19Jason LamAdobe Reader X - Sandbox
2010-11-17Guy BruneauConficker B++ Activated on Nov 15
2010-11-16Guy BruneauAcrobat and Adobe Reader Security Update
2010-11-04Johannes UllrichToday's Adobe Patches and Vulnerablities
2010-10-28Manuel Humberto Santander PelaezCVE-2010-3654 - New dangerous 0-day authplay library adobe products vulnerability
2010-10-11Adrien de BeaupreOT: Happy Thanksgiving Day Canada
2010-10-06Robert DanfordAdobe updates: http://www.adobe.com/support/security/bulletins/apsb10-21.html
2010-10-03Adrien de BeaupreCanada's Cyber Security Strategy released today
2010-09-18Rick WannerMicrosoft Security Advisory for ASP.NET
2010-09-16Johannes UllrichOpenX Ad-Server Vulnerability
2010-09-14Adrien de BeaupreAdobe Flash v10.1.82.76 and earlier vulnerability in-the-wild
2010-09-13Manuel Humberto Santander Pelaez Enhanced Mitigation Experience Toolkit can block Adobe 0-day exploit
2010-09-13Manuel Humberto Santander PelaezAdobe SING table parsing exploit (CVE-2010-2883) in the wild
2010-09-12Manuel Humberto Santander PelaezAdobe Acrobat pushstring Memory Corruption paper
2010-09-08John BambenekAdobe Acrobat/Reader 0-day in Wild, Adobe Issues Advisory
2010-08-25Pedro BuenoAdobe released security update for Shockwave player that fix several CVEs: APSB1020
2010-08-22Manuel Humberto Santander PelaezSCADA: A big challenge for information security professionals
2010-08-19Rob VandenBrinkDon points us to multiple Adobe updates (Reader and Acrobat 9.3.4 among them) ==> http://www.adobe.com/support/downloads/new.jsp
2010-08-18Guy BruneauAdobe out-of-cycle Updates
2010-08-10Jason LamAdobe critical security updates
2010-08-10Daniel WesemannSSH - new brute force tool?
2010-08-07Stephen HallDnsMadeEasy under a "quite large and unique" ddos.
2010-08-05Manuel Humberto Santander PelaezAdobe Acrobat Font Parsing Integer Overflow Vulnerability
2010-08-04Adrien de BeaupreMultiple Cisco Advisories
2010-07-21Adrien de BeaupreUpdate on .LNK vulnerability
2010-07-21Adrien de BeaupreAdobe Reader Protected Mode
2010-06-29donald smithAdobe Reader 9.3.3/8.2.3 addressing CVE-2010-1297
2010-06-21Adrien de BeaupreGoDaddy Scam/Phish/Spam
2010-06-20Marcus SachsFather's Day Tips
2010-06-17Deborah HaleFYI - Another bogus site
2010-06-16Kevin ShorttAdobe Flash Player 10.1 - Security Update Available
2010-06-15Manuel Humberto Santander PelaezApple releases advisory for Mac OS X - Multiple vulnerabilities discovered
2010-06-10Deborah HaleiPad Owners Exposed
2010-06-10Deborah HaleMicrosoft Security Advisory 2219475
2010-06-09Deborah HaleAdobe POC in the Wild
2010-06-09Deborah HaleBest Practice to Prevent PDF Attacks
2010-06-05Guy BruneauSecurity Advisory for Flash Player, Adobe Reader and Acrobat
2010-05-30Kevin ListonVMware ESX/ESXi Updates
2010-05-22Rick WannerSANS 2010 Digital Forensics Summit - APT Based Forensic Challenge
2010-05-12Rob VandenBrinkAdobe Shockwave Update
2010-04-13Adrien de BeaupreSecurity update available for Adobe Reader and Acrobat
2010-04-09Mark HofmanAdobe launch issue response/work around.
2010-03-31Johannes UllrichPDF Arbitrary Code Execution - vulnerable by design.
2010-03-24Johannes Ullrich".sys" Directories Delivering Driveby Downloads
2010-03-10Rob VandenBrinkMicrosoft Security Advisory 981374 - Remote Code Execution Vulnerability for IE6 and IE7
2010-02-17Rob VandenBrinkCisco ASA5500 Security Updates - cisco-sa-20100217-asa
2010-02-17Rob VandenBrinkCisco Security Agent Security Updates: cisco-sa-20100217-csa
2010-02-16Robert DanfordAdobe Updates: http://www.adobe.com/support/security/bulletins/apsb10-07.html http://www.adobe.com/support/security/bulletins/apsb10-06.html
2010-02-12G. N. WhiteAdobe Flash Player 10.0.45.2 and AIR 1.5.3.9130 released to correct vulnerability CVE-2010-0186 Details: http://www.adobe.com/support/security/bulletins/apsb10-06.html
2010-02-03Johannes UllrichInformation Disclosure Vulnerability in Internet Explorer
2010-02-02Guy BruneauAdobe ColdFusion Information Disclosure
2010-01-21Johannes UllrichNew Microsoft Advisory: Vulnerability in Windows Kernel Privilege Escalation (CVE-2010-0232)
2010-01-21Chris CarboniSecurity Update Available for Shockwave Player
2010-01-14Bojan ZdrnjaPDF Babushka
2010-01-12Johannes UllrichMicrosoft Advices XP Users to Uninstall Flash Player 6
2010-01-12Johannes UllrichPre-Announced Adobe Reader and Acrobat Patch Found!
2010-01-07Daniel WesemannStatic analysis of malicious PDFs
2010-01-07Daniel WesemannStatic analysis of malicous PDFs (Part #2)
2009-12-28Johannes Ullrich8 Basic Rules to Implement Secure File Uploads http://jbu.me/48 (inspired by IIS ; bug)
2009-12-15Johannes UllrichAdobe 0-day in the wild - again
2009-12-09Swa FrantzenAdobe flash player and air patched
2009-12-09Swa FrantzenOSSEC 2.3 released
2009-12-07Rob VandenBrinkLayer 2 Network Protections – reloaded!
2009-12-03Mark HofmanNext week will be a big patch week - Adobe is also releasing patches "Adobe is planning to release an update for Adobe Flash Player 10.0.32.18 and earlier versions, and an update to Adobe AIR 1.5.2 and earlier versions, to resolve critical security issues
2009-11-14Adrien de BeaupreMicrosoft advisory for Windows 7 / Windows Server 2008 R2 Remote SMB DoS Exploit released
2009-11-13Adrien de BeaupreFlash Origin Policy Attack
2009-11-03Bojan ZdrnjaAdobe released Shockwave Player 11.5.2.602 which fixes several critical security vulnerabilities
2009-10-22Adrien de BeaupreCyber Security Awareness Month - Day 22 port 502 TCP - Modbus
2009-10-13Daniel WesemannAdobe Reader and Acrobat - Black Tuesday continues
2009-10-08Johannes UllrichNew Adobe Vulnerability Exploited in Targeted Attacks
2009-09-25Deborah HaleMalware delivered over Google and Yahoo Ad's?
2009-09-10Guy BruneauFirefox 3.5.3 and 3.0.14 has been released
2009-08-18Deborah HaleSecurity Bulletin for ColdFusion and JRun
2009-07-31Deborah HaleDon't forget to tell your SysAdmin Thanks
2009-07-31Deborah HaleAdobe Patch is out
2009-07-22Bojan ZdrnjaYA0D (Yet Another 0-Day) in Adobe Flash player
2009-06-26Mark HofmanPHPMYADMIN scans
2009-06-24Kyle HaugsnessAdobe Shockwave Player Update
2009-06-24Kyle HaugsnessExploit tools are publicly available for phpMyAdmin
2009-06-21Scott FendleyphpMyAdmin Scans
2009-06-15Daniel WesemannDrive-by Blackouting ?
2009-06-12Adrien de BeaupreGoogle updates for Chrome
2009-06-09Swa FrantzenAdobe June Black Tuesday upgrades
2009-05-28Stephen HallMicrosoft DirectShow vulnerability
2009-05-24Raul SilesAnalyzing malicious PDF documents
2009-05-22Mark HofmanPatching and Adobe
2009-05-12Swa FrantzenApple patches and updates
2009-05-12Swa FrantzenAdobe Acrobat (reader) patches released
2009-05-04Tom ListonAdobe Reader/Acrobat Critical Vulnerability
2009-05-01Adrien de BeaupreAdobe Flash Media Server privilege escalation security bulletin
2009-04-29Jason LamTwo Adobe 0-day vulnerabilities
2009-04-20Jason LamDigital Content on TV
2009-04-09Johannes UllrichConficker update with payload
2009-04-07Johannes UllrichCommon Apache Misconception
2009-04-02Handlers A view from the CWG Trenches
2009-03-18Adrien de BeaupreAdobe Security Bulletin Adobe Reader and Acrobat
2009-03-17Johannes UllrichIdentifying applications using UDP payload
2009-03-10Swa FrantzenAdobe Acrobat 9.1 released
2009-02-25Andre LudwigAdobe Acrobat pdf 0-day exploit, No JavaScript needed!
2009-02-25Andre LudwigAdobe flash player patch
2009-02-25Andre LudwigPreview/Iphone/Linux pdf issues
2009-02-13Andre LudwigThird party information on conficker
2009-01-16G. N. WhiteConficker.B/Downadup.B/Kido: F-Secure publishes details pertaining to their counting methodology of compromised machines
2009-01-15Bojan ZdrnjaConficker's autorun and social engineering
2009-01-12William SaluskyDownadup / Conficker - MS08-067 exploit and Windows domain account lockout
2008-12-12Swa FrantzenBrowser Security Handbook
2008-12-05Daniel WesemannBeen updatin' your Flash player lately?
2008-11-17Jim ClausingCritical update to Adobe AIR
2008-11-11Swa FrantzenAcrobat continued activity in the wild
2008-11-11Swa FrantzenPhishing for Google adwords
2008-11-06Joel EslerMore Adobe Updates
2008-10-15Mari NicholsAdobe Flash 10 Released
2008-10-08Johannes UllrichDomaincontrol (GoDaddy) Nameservers DNS Poisoning
2008-09-29Daniel WesemannPatchbag: WinZip / MPlayer / RealWin SCADA vuln
2008-09-24Deborah HaleFlurry of Security Advisories from CISCO
2008-09-08Raul SilesCitectSCADA ODBC service exploit published
2008-07-17Mari NicholsAdobe Reader 9 Released
2008-07-11Raul SilesHow to Determine if Adobe Acrobat or Reader 8.1.2 Security Update 1 is Installed?
2008-07-11Jim ClausingHandling the load
2008-06-11John BambenekCitectSCADA Buffer Overflow Vulnerability
2008-06-01Mari NicholsUpdates to VMware resolve critical security issues
2008-05-27Adrien de BeaupreAdobe flash player vuln
2008-05-12Scott FendleyAdobe Releases Security Updates
2008-05-06Marcus SachsIndustrial Control Systems Vulnerability
2008-04-11John BambenekADSL Router / Cable Modem / Home Wireless AP Hardening in 5 Steps
2008-04-09Raul SilesCritical vulnerabilities in Adobe Flash Player
2008-04-06Tony CarothersHappenings in the Northeast US
2008-03-20Joel EslerPotential Vulnerability in Flash CS3 Professional, Flash Professional 8 and Flash Basic 8?
2008-03-12Joel EslerAdobe security updates
2006-11-29Toby KohlenbergNew Adobe vulnerability
2006-11-14Jim ClausingMS06-069: Adobe Flash Player
2006-11-14Swa FrantzenAdobe Flash update available
2006-09-12Swa FrantzenAdobe Flash player upgrade time