ISC Stormcast For Friday, January 14th, 2022 https://isc.sans.edu/podcastdetail.html?id=7836, (Fri, Jan 14th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Day: January 19, 2022
Use of Alternate Data Streams in Research Scans for index.jsp., (Fri, Jan 14th)
Our network of web application honeypots delivered some odd new URLs in the last 24…
10 Most Popular Targeted Ports in the Past 3 Weeks, (Sun, Jan 16th)
A review of all inbound connection over the past 3 weeks against my honeypot shows…
ISC Stormcast For Monday, January 17th, 2022 https://isc.sans.edu/podcastdetail.html?id=7838, (Mon, Jan 17th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Log4Shell Attacks Getting "Smarter", (Mon, Jan 17th)
Ever since news of the Log4Shell vulnerability broke, we saw a stream of attacks attempting…
ISC Stormcast For Tuesday, January 18th, 2022 https://isc.sans.edu/podcastdetail.html?id=7840, (Tue, Jan 18th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Phishing e-mail with…an advertisement?, (Tue, Jan 18th)
Authors of phishing and malspam messages like to use various techniques to make their creations…
ISC Stormcast For Wednesday, January 19th, 2022 https://isc.sans.edu/podcastdetail.html?id=7842, (Wed, Jan 19th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
0.0.0.0 in Emotet Spambot Traffic, (Wed, Jan 19th)
Introduction Emotet often uses information from emails and address books stolen from infected Windows hosts. …