News
Issue #7 – Volume XXII – SANS Newsbites – January 24th, 2020
Reposted from SANS NewsBites. Click here to read the original posting.
Read moreWhy Phishing Remains So Popular?, (Fri, Jan 24th)
… because it works! Probably, some phishing emails get delivered into your mailbox every day and you ask yourself: “Why do they continue to spam us with so many emails? We are aware of phishing and it will not affect my organization!” First of all, emails remain a very popular way to get in content with […]
Read moreISC Stormcast For Friday, January 24th 2020 https://isc.sans.edu/podcastdetail.html?id=6838, (Fri, Jan 24th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. Reposted from SANS. View original.
Read moreComplex Obfuscation VS Simple Trick, (Thu, Jan 23rd)
Today, I would like to make a comparison between two techniques applied to malicious code to try to bypass AV detection. The Emotet malware family does not need to be presented. Very active for years, new waves of attacks are always fired using different infection techniques. Yesterday, an interesting sample was spotted at a customer. […]
Read moreISC Stormcast For Thursday, January 23rd 2020 https://isc.sans.edu/podcastdetail.html?id=6836, (Thu, Jan 23rd)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. Reposted from SANS. View original.
Read moreGerman language malspam pushes Ursnif, (Wed, Jan 22nd)
Introduction On Tuesday 2020-01-21, a wave of malicious spam (malspam) hit various recipients in Germany. Messages from this German malspam were email chains associated with infected Windows hosts, and these emails all had password-protected zip archives as attachments. A closer look revealed this malspam was pushing Ursnif. Today’s diary reviews this malspam and an Ursnif […]
Read moreISC Stormcast For Wednesday, January 22nd 2020 https://isc.sans.edu/podcastdetail.html?id=6834, (Wed, Jan 22nd)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. Reposted from SANS. View original.
Read moreIssue #6 – Volume XXII – SANS Newsbites – January 21st, 2020
Reposted from SANS NewsBites. Click here to read the original posting.
Read moreDeepBlueCLI: Powershell Threat Hunting, (Tue, Jan 21st)
Happy New Year! Those among you who participated in the SANS Holiday Hack Challenge, also known as Kringlecon 2, this holiday season may have found themselves exposed to new tools or the opportunity to utilize one or two that had not hit your radar prior. Such was the case for me with DeepBlueCLI, a PowerShell module for threat […]
Read moreISC Stormcast For Tuesday, January 21st 2020 https://isc.sans.edu/podcastdetail.html?id=6832, (Tue, Jan 21st)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. Reposted from SANS. View original.
Read more
