News

Issue #7 – Volume XXII – SANS Newsbites – January 24th, 2020

Published January 24, 2020

Reposted from SANS NewsBites. Click here to read the original posting.

Read more

Why Phishing Remains So Popular?, (Fri, Jan 24th)

Published January 23, 2020

… because it works! Probably, some phishing emails get delivered into your mailbox every day and you ask yourself: “Why do they continue to spam us with so many emails? We are aware of phishing and it will not affect my organization!” First of all, emails remain a very popular way to get in content with […]

Read more

ISC Stormcast For Friday, January 24th 2020 https://isc.sans.edu/podcastdetail.html?id=6838, (Fri, Jan 24th)

Published January 23, 2020

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. Reposted from SANS. View original.

Read more

Complex Obfuscation VS Simple Trick, (Thu, Jan 23rd)

Published January 23, 2020

Today, I would like to make a comparison between two techniques applied to malicious code to try to bypass AV detection. The Emotet malware family does not need to be presented. Very active for years, new waves of attacks are always fired using different infection techniques. Yesterday, an interesting sample was spotted at a customer. […]

Read more

ISC Stormcast For Thursday, January 23rd 2020 https://isc.sans.edu/podcastdetail.html?id=6836, (Thu, Jan 23rd)

Published January 22, 2020

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. Reposted from SANS. View original.

Read more

German language malspam pushes Ursnif, (Wed, Jan 22nd)

Published January 21, 2020

Introduction On Tuesday 2020-01-21, a wave of malicious spam (malspam) hit various recipients in Germany.  Messages from this German malspam were email chains associated with infected Windows hosts, and these emails all had password-protected zip archives as attachments.  A closer look revealed this malspam was pushing Ursnif. Today’s diary reviews this malspam and an Ursnif […]

Read more

ISC Stormcast For Wednesday, January 22nd 2020 https://isc.sans.edu/podcastdetail.html?id=6834, (Wed, Jan 22nd)

Published January 21, 2020

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. Reposted from SANS. View original.

Read more

Issue #6 – Volume XXII – SANS Newsbites – January 21st, 2020

Published January 21, 2020

Reposted from SANS NewsBites. Click here to read the original posting.

Read more

DeepBlueCLI: Powershell Threat Hunting, (Tue, Jan 21st)

Published January 20, 2020

Happy New Year! Those among you who participated in the SANS Holiday Hack Challenge, also known as Kringlecon 2, this holiday season may have found themselves exposed to new tools or the opportunity to utilize one or two that had not hit your radar prior. Such was the case for me with DeepBlueCLI, a PowerShell module for threat […]

Read more

ISC Stormcast For Tuesday, January 21st 2020 https://isc.sans.edu/podcastdetail.html?id=6832, (Tue, Jan 21st)

Published January 20, 2020

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. Reposted from SANS. View original.

Read more