ISC Stormcast For Thursday, January 27th, 2022 https://isc.sans.edu/podcastdetail.html?id=7854, (Thu, Jan 27th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Month: January 2022
Apple Patches Everything, (Thu, Jan 27th)
Trying something a bit new here. Please let me know if this works for you.…
RedLine Stealer Delivered Through FTP, (Thu, Jan 20th)
Here is a piece of malicious Python script that injects a RedLine[1] stealer into its…
ISC Stormcast For Friday, January 21st, 2022 https://isc.sans.edu/podcastdetail.html?id=7846, (Fri, Jan 21st)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Obscure Wininet.dll Feature? , (Fri, Jan 21st)
The Internet Storm Center relies on a group of Handlers[1] who are volunteers and offer some…

Mixed VBA & Excel4 Macro In a Targeted Excel Sheet, (Sat, Jan 22nd)
Yesterday, Nick, one of our readers, shared with us a very interesting Excel sheet and…
ISC Stormcast For Monday, January 24th, 2022 https://isc.sans.edu/podcastdetail.html?id=7848, (Mon, Jan 24th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
ISC Stormcast For Tuesday, January 25th, 2022 https://isc.sans.edu/podcastdetail.html?id=7850, (Tue, Jan 25th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Emotet Stops Using 0.0.0.0 in Spambot Traffic, (Tue, Jan 25th)
Introduction Last week, I wrote a diary about Emotet using 0.0.0.0 in its spambot traffic…
Local privilege escalation vulnerability in polkit's pkexec (CVE-2021-4034), (Tue, Jan 25th)
Researchers from Qualys today published an advisory about a local privilege escalation vulnerability in the…