Diaries by Keyword - SANS Internet Storm Center

Handler on Duty: Jan Kopriva

Threat Level: green

Date	Author	Title
OOB ACCESS
2026-01-05	Johannes Ullrich	Risks of OOB Access via IP KVM Devices
OOB
2026-01-05/a>	Johannes Ullrich	Risks of OOB Access via IP KVM Devices
2018-12-19/a>	Xavier Mertens	Microsoft OOB Patch for Internet Explorer: Scripting Engine Memory Corruption Vulnerability
2015-08-18/a>	Russ McRee	Microsoft Security Bulletin MS15-093 - Critical OOB - Internet Explorer RCE
2010-09-27/a>	Adrien de Beaupre	MS OOB patch tomorrow for Security Advisory 2416728
2010-03-29/a>	Pedro Bueno	Microsoft to release out-of-band security bulletin tomorrow for IE6/IE7 with cumulative fix.
2010-03-29/a>	Adrien de Beaupre	OOB Update for Internet Explorer MS10-018
2009-07-28/a>	Adrien de Beaupre	MS released two OOB bulletins and an advisory
2008-12-16/a>	donald smith	Microsoft announces an out of band patch for IE zero day
ACCESS
2026-01-05/a>	Johannes Ullrich	Risks of OOB Access via IP KVM Devices
2025-06-05/a>	Xavier Mertens	Be Careful With Fake Zoom Client Downloads
2025-05-08/a>	Xavier Mertens	No Internet Access? SSH to the Rescue!
2025-03-27/a>	Johannes Ullrich	Sitecore "thumbnailsaccesstoken" Deserialization Scans (and some new reports) CVE-2025-27218
2025-01-24/a>	Jesse La Grew	[Guest Diary] How Access Brokers Maintain Persistence
2024-12-17/a>	Xavier Mertens	Python Delivering AnyDesk Client as RAT
2020-09-29/a>	Xavier Mertens	Managing Remote Access for Partners & Contractors
2019-09-24/a>	Xavier Mertens	Huge Amount of remotewebaccess.com Sites Found in Certificate Transparency Logs
2018-06-06/a>	Xavier Mertens	Converting PCAP Web Traffic to Apache Log
2016-07-03/a>	Guy Bruneau	Is Data Privacy part of your Company's Culture?
2014-10-13/a>	Lorna Hutcheson	For or Against: Port Security for Network Access Control
2014-07-28/a>	Guy Bruneau	Management and Control of Mobile Device Security
2014-07-06/a>	Richard Porter	Physical Access, Point of Sale, Vegas
2013-10-16/a>	Adrien de Beaupre	Access denied and blockliss
2013-07-04/a>	Russ McRee	Celebrating 4th of July With a Malware PCAP Visualization
2013-06-20/a>	Guy Bruneau	HP iLO3/iLO4 Remote Unauthorized Access with Single-Sign-On
2013-05-20/a>	Guy Bruneau	Sysinternals Updates for Accesschk, Procdump, RAMMap and Strings http://blogs.technet.com/b/sysinternals/archive/2013/05/17/updates-accesschk-v5-11-procdump-v6-0-rammap-v1-22-strings-v2-51.aspx
2012-12-31/a>	Manuel Humberto Santander Pelaez	How to determine which NAC solutions fits best to your needs
2011-11-22/a>	Pedro Bueno	Updates on ZeroAccess and BlackHole front...
2011-11-19/a>	Pedro Bueno	Dragon Research Group (DRG) announced the white paper entitled "VNC: Threats and Countermeasures" : https://dragonresearchgroup.org/insight/vnc-tac.html
2011-08-24/a>	Rob VandenBrink	Citrix Access Gateway Cross Site Scripting vulnerability and fix ==> http://support.citrix.com/article/CTX129971
2010-11-18/a>	Chris Carboni	Stopping the ZeroAccess Rootkit
2010-10-19/a>	Rob VandenBrink	Cyber Security Awareness Month - Day 19 - Remote Access Tools
2010-10-19/a>	Rob VandenBrink	Cyber Security Awareness Month - Day 19 - Remote User VPN Access – Are things getting too easy, or too hard?
2010-10-19/a>	Rob VandenBrink	Cyber Security Awareness Month - Day 19 - VPN and Remote Access Tools
2010-08-13/a>	Tom Liston	The Strange Case of Doctor Jekyll and Mr. ED
2010-08-05/a>	Rob VandenBrink	Access Controls for Network Infrastructure
2008-10-09/a>	Bojan Zdrnja	Watch that .htaccess file on your web site
2008-07-07/a>	Scott Fendley	Microsoft Snapshot Viewer Security Advisory

OOB ACCESS

OOB

ACCESS