Internet Storm Center
Sign In
Sign Up
SANS Network Security: Las Vegas Sept 4-9.
Handler on Duty:
Xavier Mertens
Threat Level:
green
Date
Author
Title
MONTHLY THREAT UPDATE
2013-01-09
Johannes Ullrich
New Format for Monthly Threat Update
MONTHLY
2013-02-14/a>
Adam Swanger
ISC Monthly Threat Update - February 2013 http://isc.sans.edu/podcastdetail.html?id=3121
2013-02-04/a>
Adam Swanger
SAN Securing The Human Monthly Awareness Video - Advanced Persistent Threat (APT) http://www.securingthehuman.org/resources/ncsam
2013-01-10/a>
Adam Swanger
ISC Monthly Threat Update New Format
2013-01-09/a>
Johannes Ullrich
New Format for Monthly Threat Update
THREAT
2024-10-03/a>
Guy Bruneau
Kickstart Your DShield Honeypot [Guest Diary]
2024-09-25/a>
Guy Bruneau
OSINT - Image Analysis or More Where, When, and Metadata [Guest Diary]
2024-09-11/a>
Guy Bruneau
Hygiene, Hygiene, Hygiene! [Guest Diary]
2024-09-04/a>
Guy Bruneau
Attack Surface [Guest Diary]
2024-08-27/a>
Guy Bruneau
Vega-Lite with Kibana to Parse and Display IP Activity over Time
2024-08-20/a>
Guy Bruneau
Mapping Threats with DNSTwist and the Internet Storm Center [Guest Diary]
2024-08-07/a>
Guy Bruneau
Same Scripts, Different Day: What My DShield Honeypot Taught Me About the Importance of Security Fundamentals [Guest Diary]
2024-07-16/a>
Guy Bruneau
Who You Gonna Call? AndroxGh0st Busters! [Guest Diary]
2024-06-26/a>
Guy Bruneau
What Setting Live Traps for Cybercriminals Taught Me About Security [Guest Diary]
2024-06-13/a>
Guy Bruneau
The Art of JQ and Command-line Fu [Guest Diary]
2024-05-30/a>
Xavier Mertens
Feeding MISP with OSSEC
2024-05-28/a>
Guy Bruneau
Is that It? Finding the Unknown: Correlations Between Honeypot Logs & PCAPs [Guest Diary]
2024-05-22/a>
Guy Bruneau
Analysis of ?redtail? File Uploads to ICS Honeypot, a Multi-Architecture Coin Miner [Guest Diary]
2024-04-29/a>
Guy Bruneau
Linux Trojan - Xorddos with Filename eyshcjdmzg
2024-04-07/a>
Guy Bruneau
A Use Case for Adding Threat Hunting to Your Security Operations Team. Detecting Adversaries Abusing Legitimate Tools in A Customer Environment. [Guest Diary]
2023-02-04/a>
Guy Bruneau
Assemblyline as a Malware Analysis Sandbox
2022-11-10/a>
Xavier Mertens
Do you collect "Observables" or "IOCs"?
2022-01-29/a>
Guy Bruneau
SIEM In this Decade, Are They Better than the Last?
2021-09-09/a>
Johannes Ullrich
Updates to Our Datafeeds/API
2021-01-02/a>
Guy Bruneau
Protecting Home Office and Enterprise in 2021
2020-12-05/a>
Guy Bruneau
Is IP 91.199.118.137 testing Access to aahwwx.52host.xyz?
2020-12-04/a>
Guy Bruneau
Detecting Actors Activity with Threat Intel
2020-01-25/a>
Guy Bruneau
Is Threat Hunting the new Fad?
2019-07-24/a>
Xavier Mertens
May People Be Considered as IOC?
2018-11-20/a>
Xavier Mertens
Querying DShield from Cortex
2018-11-14/a>
Brad Duncan
Day in the life of a researcher: Finding a wave of Trickbot malspam
2018-10-17/a>
Russ McRee
RedHunt Linux - Adversary Emulation, Threat Hunting & Intelligence
2018-07-29/a>
Guy Bruneau
Using RITA for Threat Analysis
2017-05-31/a>
Pasquale Stirparo
Analysis of Competing Hypotheses, WCry and Lazarus (ACH part 2)
2017-05-28/a>
Pasquale Stirparo
Analysis of Competing Hypotheses (ACH part 1)
2016-09-25/a>
Pasquale Stirparo
Defining Threat Intelligence Requirements
2016-07-31/a>
Pasquale Stirparo
Sharing (intel) is caring... or not?
2016-05-16/a>
Rick Wanner
An oldie but a goodie - 419 Death Scam
2016-04-25/a>
Guy Bruneau
Highlights from the 2016 HPE Annual Cyber Threat Report
2014-12-23/a>
John Bambenek
How I learned to stop worrying and love malware DGAs....
2014-08-05/a>
Johannes Ullrich
Legal Threat Spam: Sometimes it Gets Personal
2014-08-04/a>
Russ McRee
Threats & Indicators: A Security Intelligence Lifecycle
2014-02-19/a>
Russ McRee
Threat modeling in the name of security
2013-02-14/a>
Adam Swanger
ISC Monthly Threat Update - February 2013 http://isc.sans.edu/podcastdetail.html?id=3121
2013-02-04/a>
Adam Swanger
SAN Securing The Human Monthly Awareness Video - Advanced Persistent Threat (APT) http://www.securingthehuman.org/resources/ncsam
2013-01-10/a>
Adam Swanger
ISC Monthly Threat Update New Format
2013-01-09/a>
Johannes Ullrich
New Format for Monthly Threat Update
2012-12-03/a>
John Bambenek
John McAfee Exposes His Location in Photo About His Being on Run
2012-11-29/a>
Kevin Shortt
New Apple Security Update: APPLE-SA-2012-11-29-1 Apple TV 5.1.1
2012-11-28/a>
Mark Hofman
McAfee releases extraDAT for W32/Autorun.worm.aaeb-h
2012-11-28/a>
Mark Hofman
New version of wireshark is available (1.8.4), some security fixes included.
2012-11-27/a>
Chris Mohan
Can users' phish emails be a security admin's catch of the day?
2012-11-26/a>
John Bambenek
Online Shopping for the Holidays? Tips, News and a Fair Warning
2012-11-20/a>
John Bambenek
Firefox v 17.0 just released, more here: http://www.mozilla.org/en-US/firefox/17.0/releasenotes/
2012-11-20/a>
John Bambenek
Behind the Random NTP Bizarreness of Incorrect Year Being Set
2012-11-19/a>
John Bambenek
MoneyGram fined $100 million for aiding wire fraud - http://krebsonsecurity.com/2012/11/moneygram-fined-100-million-for-wire-fraud/
2012-11-19/a>
John Bambenek
New Poll: Top 5 Unresolved Security Problems of 2012
2012-11-17/a>
Manuel Humberto Santander Pelaez
New Sysinternal Updates: AdExplorer v1.44, Contig v1.7, Coreinfo v3.2, Procdump v5.1. See http://blogs.technet.com/b/sysinternals/archive/2012/11/16/updates-adexplorer-v1-44-contig-v1-7-coreinfo-v3-2-procdump-v5-1.aspx?Redirected=true
2012-11-12/a>
John Bambenek
Request for info: Robocall Phishing Against Local/Regional Banks
2012-11-09/a>
Mark Baggett
Remote Diagnostics with PSR
2012-11-09/a>
Mark Baggett
Fresh batch of Microsoft patches next week
2012-11-07/a>
Mark Baggett
Help eliminate unquoted path vulnerabilities
2012-11-07/a>
Mark Baggett
Multiple 0-Days Reported!
2012-11-07/a>
Mark Baggett
Cisco TACACS+ Authentication Bypass
2012-11-05/a>
Johannes Ullrich
Reminder: Ongoing SMTP Brute Forcing Attacks
2012-11-05/a>
Johannes Ullrich
Possible Fake-AV Ads from Doubleclick Servers
2012-11-04/a>
Lorna Hutcheson
What's important on your network?
2012-10-31/a>
Johannes Ullrich
Cyber Security Awareness Month - Day 31 - Business Continuity and Disaster Recovery
2012-10-30/a>
Johannes Ullrich
Hurricane Sandy Update
2012-10-30/a>
Richard Porter
Splunk 5.0 SP-CAAAHB4 http://www.splunk.com/view/SP-CAAAHB4
2012-10-28/a>
Tony Carothers
Firefox 16.02 Released
2012-10-26/a>
Russ McRee
Cyber Security Awareness Month - Day 26 - Attackers use trusted domain to propagate Citadel Zeus variant
2012-10-25/a>
Richard Porter
Cyber Security Awareness Month - Day 25 - Pro Audio & Video Packets on the Wire
2012-10-24/a>
Russ McRee
Ongoing Windstream outage in the midwest - https://twitter.com/search?q=windstream
2012-10-21/a>
Johannes Ullrich
Cyber Security Awareness Month - Day 22: Connectors
2012-10-21/a>
Lorna Hutcheson
Potential Phish for Regular Webmail Accounts
2012-10-19/a>
Johannes Ullrich
Cyber Security Awareness Month - Day 19: Standard log formats and CEE.
2012-10-18/a>
Rob VandenBrink
Cyber Security Awareness Month - Day 18 - Vendor Standards: The vSphere Hardening Guide
2012-10-17/a>
Mark Hofman
New Acrobat release (including reader) available. Version 11. Some security improvements more here -->http://blogs.adobe.com/adobereader/
2012-10-16/a>
Richard Porter
CyberAwareness Month - Day 15, Standards Body Soup (pt2), Same Soup Different Cook.
2012-10-16/a>
Johannes Ullrich
Cyber Security Awareness Month - Day 16: W3C and HTML
2012-10-14/a>
Pedro Bueno
Cyber Security Awareness Month - Day 14 - Poor Man's File Analysis System - Part 1
2012-10-09/a>
Johannes Ullrich
Microsoft October 2012 Black Tuesday Update - Overview
2012-10-07/a>
Tony Carothers
Cyber Security Awareness Month - Day 7 - Rollup Review of CSAM Week 1
2012-10-05/a>
Johannes Ullrich
Cyber Security Awareness Month - Day 5: Standards Body Soup, So many Flavors in the bowl.
2012-10-05/a>
Richard Porter
Reports of a Distributed Injection Scan
2012-10-05/a>
Richard Porter
VMWare Security Advisory: VMSA-2012-0014 - http://www.vmware.com/security/advisories/VMSA-2012-0014.html
2012-10-04/a>
Mark Hofman
And the SHA-3 title goes to .....Keccak
2012-10-02/a>
Russ McRee
Cyber Security Awareness Month - Day 2 - PCI Security Standard: Mobile Payment Acceptance Security Guidelines
2012-10-01/a>
Johannes Ullrich
Cyber Security Awareness Month
2012-09-28/a>
Joel Esler
Adobe certification revocation for October 4th
2012-09-26/a>
Johannes Ullrich
Some Android phones can be reset to factory default by clicking on links
2012-09-26/a>
Johannes Ullrich
More Java Woes
2012-09-21/a>
Johannes Ullrich
iOS 6 Security Roundup
2012-09-20/a>
Russ McRee
Flash Player update but no announcement, check your version http://www.adobe.com/software/flash/about/
2012-09-20/a>
Russ McRee
Apple and Cisco Security Advisories 19 SEP 2012
2012-09-20/a>
Russ McRee
Financial sector advisory: attacks and threats against financial institutions
2012-09-19/a>
Russ McRee
Script kiddie scavenging with Shellbot.S
2012-09-17/a>
Rob VandenBrink
What's on your iPad?
2012-09-14/a>
Lenny Zeltser
Scam Report - Fake Voice Mail Email Notification Redirects to Malicious Site
2012-09-13/a>
Mark Baggett
Microsoft disrupts traffic associated with the Nitol botnet
2012-09-13/a>
Mark Baggett
More SSL trouble
2012-09-13/a>
Mark Baggett
TCP Fuzzing with Scapy
2012-09-10/a>
Johannes Ullrich
Microsoft Patch Tuesday Pre-Release
2012-09-10/a>
Johannes Ullrich
Godaddy DDoS Attack
2012-09-10/a>
donald smith
Blue Toad publishing co compromise lead to UDID release. http://redtape.nbcnews.com/_news/2012/09/10/13781440-exclusive-the-real-source-of-apple-device-ids-leaked-by-anonymous-last-week?lite
2012-09-06/a>
Johannes Ullrich
SSL Requests sent to port 80 (request for help/input)
2012-09-04/a>
Johannes Ullrich
Another round of "Spot the Exploit E-Mail"
2012-09-02/a>
Lorna Hutcheson
Demonstrating the value of your Intrusion Detection Program and Analysts
2012-09-01/a>
Russ McRee
Blackhole targeting Java vulnerability via fake Microsoft Services Agreement email phish
2012-08-31/a>
Russ McRee
Not so fast: Java 7 Update 7 critical vulnerability discovered in less than 24 hours
2012-08-30/a>
Johannes Ullrich
Editorial: The Slumlord Approach to Network Security http://isc.sans.edu/j/editorial
2012-08-29/a>
Johannes Ullrich
"Data" URLs used for in-URL phishing
2012-08-27/a>
Johannes Ullrich
The Good, Bad and Ugly about Assigning IPv6 Addresses
2012-08-27/a>
Johannes Ullrich
Malware Spam harvesting Facebook Information
2012-08-26/a>
Lorna Hutcheson
Who ya gonna contact?
2012-08-22/a>
Adrien de Beaupre
Apple Remote Desktop update fixes no encryption issue
2012-08-22/a>
Adrien de Beaupre
Phishing/spam via SMS
2012-08-21/a>
Adrien de Beaupre
YYABCAFU - Yes Yet Another Bleeping Critical Adobe Flash Update
2012-08-21/a>
Adrien de Beaupre
RuggedCom fails key management 101 on Rugged Operating System (ROS)
2012-08-20/a>
Manuel Humberto Santander Pelaez
Do we need test procedures in our companies before implementing Antivirus signatures?
2012-08-19/a>
Manuel Humberto Santander Pelaez
Authentication Issues between entities during protocol message exchange in SCADA Systems
2012-08-12/a>
Tony Carothers
Layers of the Defense-in-Depth Onion
2012-08-12/a>
Tony Carothers
Oracle Security Alert for CVE-2012-3132
2012-08-09/a>
Mark Hofman
Zeus/Citadel variant causing issues in the Netherlands
2012-08-09/a>
Mark Hofman
SQL Injection Lilupophilupop style, Part 2
2012-08-07/a>
Adrien de Beaupre
Who protects small business?
2012-08-04/a>
Kevin Liston
Vendors: More Patch-Release Options Please
2012-07-27/a>
Daniel Wesemann
Cuckoo 0.4 is out - cool new features for malware analysis http://www.cuckoosandbox.org/
2012-07-24/a>
Richard Porter
Wireshark 1.8.1 Released http://www.wireshark.org/
2012-07-24/a>
Richard Porter
Report of spike in DNS Queries gd21.net
2012-07-20/a>
Mark Baggett
Syria Internet connection cut?
2012-07-19/a>
Mark Baggett
Diagnosing Malware with Resource Monitor
2012-07-19/a>
Mark Baggett
A Heap of Overflows?
2012-07-16/a>
Richard Porter
Sysinternals Update @ http://blogs.technet.com/b/sysinternals/archive/2012/07/16/updates-handle-v3-5-process-explorer-v15-22-process-monitor-v3-03-rammap-v1-21-zoomit-v4-3.aspx
2012-07-13/a>
Richard Porter
Yesterday (not as on the ball as Rob) at SANSFire
2012-07-13/a>
Russ McRee
2 for 1: SANSFIRE & MSRA presentations
2012-07-13/a>
Russ McRee
VMWare Security Advisory 12 JUL 2012
2012-07-13/a>
Russ McRee
Yahoo service SQL injection vuln leads to account exposure
2012-07-12/a>
Rick Wanner
Cisco Security Advisory: Multiple Vulnerabilities in Cisco TelePresence Multipoint Switch - http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-ctms
2012-07-12/a>
Rick Wanner
Cisco Security Advisory: Multiple Vulnerabilities in Cisco TelePresence Recording Server - http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-ctrs
2012-07-12/a>
Rick Wanner
Cisco Security Advisory: Multiple Vulnerabilities in Cisco TelePresence Immersive Endpoint Devices - http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-cts
2012-07-12/a>
Rick Wanner
Cisco Security Advisory: Multiple Vulnerabilities in Cisco TelePresence Manager - http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-ctsman
2012-07-09/a>
Johannes Ullrich
The FBI will turn off the Internet on Monday (or not)
2012-07-09/a>
Manuel Humberto Santander Pelaez
Internet Storm Center panel tonight at SANSFIRE 2012!
2012-07-05/a>
Adrien de Beaupre
New OS X trojan backdoor MaControl variant reported
2012-07-02/a>
Joel Esler
A rough guide to keeping your website up
2012-07-02/a>
Joel Esler
Linux & Java leap second bug
2012-06-29/a>
Jim Clausing
Updated SysInternals tools - Autoruns, Process Explorer, Process Monitor, PSKill -- http://blogs.technet.com/b/sysinternals/archive/2012/06/28/updates-autoruns-v11-32-process-explorer-v15-21-process-monitor-v3-02-pskill-v1-15-rammap-v1-2.aspx
2012-06-28/a>
Chris Mohan
Massive spike in BGP traffic - Possible BGP poisoning?
2012-06-21/a>
Russ McRee
Analysis of drive-by attack sample set
2012-06-21/a>
Russ McRee
Wireshark 1.8.0 released 21 JUN 2012 http://www.wireshark.org/download.html
2012-06-19/a>
Daniel Wesemann
Vulnerabilityqueerprocessbrittleness
2011-11-19/a>
Pedro Bueno
Dragon Research Group (DRG) announced the white paper entitled "VNC: Threats and Countermeasures" : https://dragonresearchgroup.org/insight/vnc-tac.html
2011-04-26/a>
John Bambenek
Is the Insider Threat Really Over?
2010-07-07/a>
Kevin Shortt
Facebook, Facebook, What Do YOU See?
2010-05-22/a>
Rick Wanner
SANS 2010 Digital Forensics Summit - APT Based Forensic Challenge
2009-11-05/a>
Swa Frantzen
Insider threat: The snapnames case
2009-09-27/a>
Stephen Hall
Use Emerging Threats signatures? READ THIS!
2009-09-20/a>
Mari Nichols
Insider Threat and Security Awareness
2009-01-25/a>
Rick Wanner
Twam?? Twammers?
2008-12-25/a>
Maarten Van Horenbeeck
Christmas Ecard Malware
2008-11-25/a>
Andre Ludwig
The beginnings of a collaborative approach to IDS
2008-06-02/a>
Jim Clausing
Emergingthreats.net and ThePlanet
UPDATE
2023-04-22/a>
Didier Stevens
YARA v4.3.1 Release
2023-04-02/a>
Didier Stevens
YARA v4.3.0 Release
2023-01-07/a>
Didier Stevens
YARA v4.3.0-rc1 --skip-larger
2022-12-05/a>
Didier Stevens
VLC's Check For Updates: No Updates?
2022-08-20/a>
Didier Stevens
YARA 4.2.3 Released
2022-07-02/a>
Didier Stevens
YARA 4.2.2 Released
2022-04-30/a>
Didier Stevens
YARA 4.2.1 Released
2022-03-14/a>
Johannes Ullrich
Apple Updates Everything: MacOS 12.3, XCode 13.3, tvOS 15.4, watchOS 8.5, iPadOS 15.4 and more
2021-11-29/a>
Didier Stevens
Wireshark 3.6.0 Released
2021-10-31/a>
Didier Stevens
Sysinternals: Autoruns and Sysmon updates
2021-10-28/a>
Yee Ching Tok
Multiple Apple Patches for October 2021
2021-10-10/a>
Didier Stevens
Wireshark 3.4.9 Released
2021-08-21/a>
Didier Stevens
New Versions Of Sysinternals Tools
2021-07-25/a>
Didier Stevens
Wireshark 3.4.7 Released
2021-04-25/a>
Didier Stevens
Wireshark 3.4.5 Released
2021-03-14/a>
Didier Stevens
Wireshark 3.4.4 Released
2021-02-06/a>
Didier Stevens
YARA v4.0.5
2021-01-31/a>
Didier Stevens
YARA v4.0.4
2020-12-20/a>
Didier Stevens
Wireshark 3.4.2 Released
2020-12-13/a>
Didier Stevens
Wireshark 3.4.1 Released
2020-09-27/a>
Didier Stevens
Wireshark 3.2.7 Released
2020-08-15/a>
Didier Stevens
Wireshark 3.2.6 Released
2020-05-24/a>
Didier Stevens
Wireshark 3.2.4 Released
2020-04-11/a>
Didier Stevens
Wireshark 3.2.3 Released: Mac Users Pay Attention Please
2020-03-14/a>
Didier Stevens
Phishing PDF With Incremental Updates.
2020-03-07/a>
Didier Stevens
Wireshark 3.2.2 Released: Windows' Users Pay Attention Please
2020-02-05/a>
Brad Duncan
Fake browser update pages are "still a thing"
2020-02-01/a>
Didier Stevens
Wireshark 3.2.1 Released
2019-12-21/a>
Didier Stevens
Wireshark 3.2.0 Released
2019-12-08/a>
Didier Stevens
Wireshark 3.0.7 Released
2019-10-27/a>
Didier Stevens
Wireshark 3.0.6 Released
2019-09-21/a>
Didier Stevens
Wireshark 3.0.5 Release: Potential Windows Crash when Updating
2019-07-09/a>
John Bambenek
MSFT July 2019 Patch Tuesday
2017-07-30/a>
Guy Bruneau
Re-release of MS Oulook Security Patches https://portal.msrc.microsoft.com/en-us/security-guidance/summary
2016-09-13/a>
Rob VandenBrink
Apple iOS 10 and 10.0.1 Released
2016-02-27/a>
Guy Bruneau
OpenSSL Security Update Planned for 1 March Release
2015-10-09/a>
Guy Bruneau
Adobe Acrobat and Reader Pre-Announcement
2015-04-04/a>
Didier Stevens
VMware Product Updates Address Critical Information Disclosure Issue In JRE
2014-08-22/a>
Richard Porter
PHP 5.4.32 Released http://www.php.net/ChangeLog-5.php#5.4.32
2014-08-22/a>
Richard Porter
PHP 5.5.16 is available http://www.php.net/ChangeLog-5.php#5.5.16
2014-08-12/a>
Adrien de Beaupre
Adobe updates for 2014/08
2014-08-01/a>
Chris Mohan
WireShark 1.10.9 and 1.12.0 has been released
2014-07-11/a>
Rob VandenBrink
Metasploit Update Alert
2014-06-12/a>
Guy Bruneau
BIND Security Update for CVE-2014-3859
2014-04-24/a>
Rob VandenBrink
Apple IOS updates to 7.1.1, OSX Security update 2014-002, Airport Updates - http://support.apple.com/kb/HT1222, http://support.apple.com/kb/HT6208, http://support.apple.com/kb/HT6207, http://support.apple.com/kb/HT6203
2014-04-12/a>
Guy Bruneau
Critical Security Update for JetPack WordPress Plugin. Bug has existed since Jetpack 1.9, released in October 2012. - http://jetpack.me/2014/04/10/jetpack-security-update/
2014-04-02/a>
Kevin Shortt
Apple Security Update for Safari 6.1.3/7.0.3: http://support.apple.com/kb/HT6181
2014-03-06/a>
Mark Baggett
Port 5000 traffic and snort signature
2014-02-14/a>
Chris Mohan
SYM14-004 Symantec Endpoint Protection Management Vulnerabilities - http://www.symantec.com/business/support/index?page=content&id=TECH214866
2013-12-18/a>
Adrien de Beaupre
Wireshark 1.10.4 and 1.8.12 are available
2013-12-17/a>
Adrien de Beaupre
Apple security updates Mac OS X and Safari
2013-10-17/a>
Adrien de Beaupre
Chrome updated http://googlechromereleases.blogspot.ca/2013/10/stable-channel-update_15.html
2013-10-15/a>
Rob VandenBrink
Java Quarterly Updates
2013-07-28/a>
Guy Bruneau
Wireshark 1.8.9 and 1.10.1 Security Update
2013-07-03/a>
Kevin Shortt
Apple Security Update 2013-003
2013-06-05/a>
Richard Porter
Windows Sysinternals Updated http://technet.microsoft.com/en-us/sysinternals/default.aspx
2013-05-22/a>
Adrien de Beaupre
Apple QuickTime 7.7.4 for Windows updated, MANY security vulnerabilities: http://support.apple.com/kb/HT1222
2013-05-22/a>
Adrien de Beaupre
Chrome 24.0.1312.52 has been updated for Windows, Mac, Linux, and Chrome Frame
2013-04-19/a>
Russ McRee
Java 8 release schedule delayed for renewed focus on security
2013-04-03/a>
Mark Hofman
Firefox 20 and Thunderbird 17.0.5 updates
2013-03-07/a>
Guy Bruneau
Wireshark Security Updates
2013-02-27/a>
Adam Swanger
Adobe Flash Player Security Update - http://www.adobe.com/support/security/bulletins/apsb13-08.html
2013-02-22/a>
Chris Mohan
PHP 5.4.12 and PHP 5.3.22 released http://www.php.net/ChangeLog-5.php
2013-02-22/a>
Chris Mohan
Chrome 25.0.1364.87 addresses multiple vulnerabilities http://googlechromereleases.blogspot.com.au/2013/02/stable-channel-update_21.html
2013-02-12/a>
Adam Swanger
Microsoft February 2013 Black Tuesday Update - Overview
2013-02-01/a>
Jim Clausing
Oracle quitely releases Java 7u13 early
2013-01-17/a>
Russ McRee
PHP 5.4.11 and PHP 5.3.21 released
2013-01-09/a>
Rob VandenBrink
SQL Injection Flaw in Ruby on Rails
2013-01-09/a>
Rob VandenBrink
Firefox and Thunderbird Updates
2013-01-09/a>
Rob VandenBrink
Security Updates for Adobe Flash - http://www.adobe.com/support/security/bulletins/apsb13-01.html
2013-01-09/a>
Johannes Ullrich
New Format for Monthly Threat Update
2013-01-08/a>
Richard Porter
Firefox 18 Released, Security Fixes http://www.mozilla.org/security/known-vulnerabilities/firefox.html
2012-12-11/a>
John Bambenek
Microsoft December 2012 Black Tuesday Update - Overview
2012-11-13/a>
Jim Clausing
Microsoft November 2012 Black Tuesday Update - Overview
2012-10-28/a>
Tony Carothers
Firefox 16.02 Released
2012-09-21/a>
Guy Bruneau
Update for Vulnerabilities in Adobe Flash Player in Internet Explorer 10 (2755801)
2012-09-20/a>
Russ McRee
Apple and Cisco Security Advisories 19 SEP 2012
2012-08-22/a>
Adrien de Beaupre
Apple Remote Desktop update fixes no encryption issue
2012-08-21/a>
Adrien de Beaupre
YYABCAFU - Yes Yet Another Bleeping Critical Adobe Flash Update
2012-08-15/a>
Guy Bruneau
Wireshark Security Update
2012-08-02/a>
Guy Bruneau
Opera Security Update
2012-07-18/a>
Rob VandenBrink
Snort Updated today
2012-06-25/a>
Guy Bruneau
Issues with Windows Update Agent
2012-06-20/a>
Raul Siles
Firefox 13.0.1 Update
2012-06-06/a>
Jim Clausing
Firefox, Thunderbird, and Seamonkey Security Updates
2012-05-04/a>
Guy Bruneau
Adobe Security Flash Update
2012-03-06/a>
Mark Hofman
Websense posted a small article relating to mass injection into wordpress sites (thanks Chris) More info Here --> http://community.websense.com/blogs/securitylabs/archive/2012/03/05/mass-injection-of-wordpress-sites.aspx
2012-02-04/a>
Scott Fendley
Apple Security Advisory 2012-001 v1.1
2011-11-02/a>
Russ McRee
Wireshark updates: 1.6.3 and 1.4.10 released
2011-10-22/a>
Guy Bruneau
Oracle Java SE Critical Patch Update
2011-10-01/a>
Mark Hofman
Hot on the heels fo FF, Thunderbird v 7.0.1 and SeaMonkey v 2.4.1 have been updated.
2011-09-18/a>
Guy Bruneau
Google Chrome Security Updates
2011-09-06/a>
Guy Bruneau
Firefox 6.0.2 released to removed trust to DigiNotar certificate authority http://www.mozilla.org/en-US/firefox/6.0.2/releasenotes/
2011-09-05/a>
Raul Siles
Java 7 Officially Released
2011-07-15/a>
Deborah Hale
Apple Software Updates
2011-06-28/a>
Johannes Ullrich
Update: Thunderbird 5.0 released. https://www.mozilla.org/en-US/thunderbird/
2011-06-23/a>
Jim Clausing
Apple Security Updates 2011-004
2011-06-09/a>
Richard Porter
Chrome Version 12.0.742.91 Released
2011-06-01/a>
Adrien de Beaupre
Wireshark 1.4.7 and 1.2.17 Released - http://www.wireshark.org/news/20110531.html
2011-05-20/a>
Guy Bruneau
Sysinternals Updates, Analyzing Stuxnet Infection with Sysinternals Tools Part 3
2011-05-16/a>
Jason Lam
Firefox 3.5 forced upgrade coming soon
2011-05-04/a>
Richard Porter
Microsoft Sysinterals Update
2011-05-01/a>
Deborah Hale
Java 6.25 Is Now Available
2011-04-14/a>
Adrien de Beaupre
Sysinternals updates, a new blog post, and webcast
2011-03-21/a>
Kevin Shortt
APPLE-SA-2011-03-21-1 Mac OS X v10.6.7 and Security Update 2011-001
2011-03-09/a>
Chris Mohan
Possible Issue with Forefront Update KB2508823
2011-03-02/a>
Chris Mohan
Microsoft’s Autorun update v2.1 now automatically deployed from Windows Update
2011-02-21/a>
Adrien de Beaupre
Kaspersky update servers unreachable
2011-01-27/a>
Chris Carboni
Opera Updates
2010-12-03/a>
Mark Hofman
AVG Update Bricking windows 7 64 bit
2010-11-30/a>
Joel Esler
VMWare Security Advisory
2010-11-16/a>
Guy Bruneau
Mac OS X Server v10.6.5 (10H575) Security Update: http://support.apple.com/kb/HT4452
2010-08-25/a>
Pedro Bueno
Adobe released security update for Shockwave player that fix several CVEs: APSB1020
2010-08-19/a>
Rob VandenBrink
Don points us to multiple Adobe updates (Reader and Acrobat 9.3.4 among them) ==> http://www.adobe.com/support/downloads/new.jsp
2010-08-10/a>
Jason Lam
Adobe critical security updates
2010-08-10/a>
Daniel Wesemann
New Apple security updates for iPad/Pod/Phone. See http://support.apple.com/kb/ht1222
2010-07-21/a>
Adrien de Beaupre
Update on .LNK vulnerability
2010-06-29/a>
donald smith
Adobe Reader 9.3.3/8.2.3 addressing CVE-2010-1297
2010-05-12/a>
Rob VandenBrink
Adobe Shockwave Update
2010-04-13/a>
Adrien de Beaupre
Security update available for Adobe Reader and Acrobat
2010-04-02/a>
Guy Bruneau
Foxit Reader Security Update
2010-03-29/a>
Adrien de Beaupre
APPLE-SA-2010-03-29-1 Security Update 2010-002 / Mac OS X v10.6.3
2010-03-29/a>
Adrien de Beaupre
OOB Update for Internet Explorer MS10-018
2010-03-22/a>
Guy Bruneau
New Opera 10.51 available with security fixes. More information available at: http://www.opera.com/docs/changelogs/windows/1051/
2010-03-12/a>
Mark Hofman
Firefox 3.6 is being pushed out to users. http://www.mozilla.com/en-US/firefox/3.6/releasenotes/
2010-03-11/a>
Mark Hofman
A new version of Safari is out. Looks like for Mac and Windows. Plenty of security fixes (mostly for Windows Safari users http://support.apple.com/kb/HT4070 )
2010-03-10/a>
Rob VandenBrink
Microsoft re-release of KB973811 - attacks on Extended Protection for Authentication
2010-03-08/a>
Raul Siles
Microsoft announced two important bulletins (fixing multiple vulns. affecting Windows and Office) for tomorrow: http://www.microsoft.com/technet/security/Bulletin/MS10-mar.mspx
2010-03-01/a>
Mark Hofman
Microsoft will drop support for Vista (without any Service Packs) on April 13 and support for XP SP2 ends July 13. (i.e. no more security updates). If you are still running these, it it time to update.
2010-02-27/a>
Guy Bruneau
PHP 5.2.13 Security Update
2010-02-11/a>
Deborah Hale
The Mysterious Blue Screen
2010-01-06/a>
Guy Bruneau
Firefox security and stability update for version 3.5.7 and 3.0.17 available for download
2009-12-16/a>
Rob VandenBrink
Seamonkey Update to 2.0.1, find the release notes here ==> http://www.seamonkey-project.org/releases/seamonkey2.0.1
2009-12-03/a>
Mark Hofman
Apple released some Java updates today APPLE-SA-2009-12-03-1 & 2 (for 10.5 and 10.6). Fixes a number of security issues so updating is a good idea.
2009-12-02/a>
Rob VandenBrink
Microsoft Black Screen of Death - Fact of Fiction?
2009-11-25/a>
Jim Clausing
Tool updates
2009-11-25/a>
Jim Clausing
Microsoft Updates requiring reboot
2009-11-11/a>
Rob VandenBrink
Apple Safari 4.0.4 Released
2009-11-09/a>
Guy Bruneau
Apple Security Update 2009-006 for Mac OS X v10.6.2
2009-11-06/a>
Mark Hofman
A new version of Firefox (3.5.5) just became available. According to the release notes they are stability improvements.
2009-10-22/a>
Adrien de Beaupre
Sysinternals updates: Disk2vhd v1.1, ZoomIt v4.1, Coreinfo v2.0, VMMap v2.4
2009-09-24/a>
Jim Clausing
A couple more tools
2009-09-04/a>
Adrien de Beaupre
SeaMonkey Security Update
2009-08-05/a>
donald smith
Security Update 2009-003 / Mac OS X v10.5.8
2009-08-04/a>
donald smith
Java Security Update
2009-07-18/a>
Patrick Nolan
Chrome update contains Security fixes
2009-06-10/a>
Swa Frantzen
Java 6 update 14 released
2009-06-02/a>
Deborah Hale
Another Quicktime Update
2009-05-26/a>
Jason Lam
Vista & Win2K8 SP2 available
2009-02-10/a>
Swa Frantzen
Java up to date ?
2008-11-29/a>
Pedro Bueno
Ubuntu users: Time to update!
2008-11-13/a>
Jim Clausing
Some recently updated tools
2008-10-10/a>
Marcus Sachs
Fake Microsoft Update Email
2008-09-10/a>
Adrien de Beaupre
Apple updates iPod Touch + Bonjour for Windows
2008-07-11/a>
Jim Clausing
Updates to some of our favorite tools
2008-04-20/a>
Joel Esler
Software Update -- Did Apple Do Enough?
2008-03-20/a>
Joel Esler
APPLE-SA-2008-03-19 AirPort Extreme Base Station Firmware 7.3.1
2008-03-20/a>
Joel Esler
Potential Vulnerability in Flash CS3 Professional, Flash Professional 8 and Flash Basic 8?
Homepage
Diaries
Podcasts
Jobs
Data
TCP/UDP Port Activity
Port Trends
SSH/Telnet Scanning Activity
Weblogs
Threat Feeds Activity
Threat Feeds Map
Useful InfoSec Links
Presentations & Papers
Research Papers
API
Tools
DShield Sensor
DNS Looking Glass
Honeypot (RPi/AWS)
InfoSec Glossary
Contact Us
Contact Us
About Us
Handlers
About Us
Slack Channel
Mastodon
Bluesky
X
Integrate
our data
into your projects