18°C
ciel dégagé
Google is suing more than two dozen unnamed individuals allegedly involved in peddling a popular China-based mobile phishing service that helps scammers impersonate hundreds of trusted brands, blast out text message lures, and convert phished...
The Business of Secrets: Adventures in Selling Encryption Around the World by Fred Kinch (May 24, 2004) From the vantage point of today, itâs surreal reading about the commercial cryptography business in the 1970s. Nobody knew anything. The...
When Iâm teachning FOR610[1], I always say to my students that reverse engineering does not only apply to âexecutable filesâ (read: PE or ELF files). Most of the time, the infection path involves many stages to defeat the Security Analyst or...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Introduction This diary describes a NetSupport RAT infection I generated in my lab from the SmartApeSG campaign that used a ClickFix-style fake CAPTCHA page. Known as ZPHP or HANEYMANEY, SmartApeSG is a campaign reported as early as June 2024....
Former DoJ attorney John Carlin writes about hackback, which he defines thus: âA hack back is a type of cyber response that incorporates a counterattack designed to proactively engage with, disable, or collect evidence about an attacker. Although...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Today's Microsoft Patch Tuesday offers fixes for 80 different vulnerabilities. One of the vulnerabilities is already being exploited, and five are rated as critical. Notable Vulnerabilities: %%cve:2025-62215%%: This vulnerability is already being...
This is why AIs are not ready to be personal assistants: A new attack called âCometJackingâ exploits URL parameters to pass to Perplexityâs Comet AI browser hidden instructions that allow access to sensitive data from connected services, like...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Today, I noticed scans using the username "FTP_3cx" showing up in our logs. 3CX is a well-known maker of business phone system software [1]. My first guess was that this was a default user for one of their systems. But Google came up empty for...
Un expert judiciaire en informatique se doit de disposer de logiciels (parfois forts onéreux !) permettant de récupérer les fichiers effacés sur les disques durs saisis. Cela demande la trÚs bonne maßtrise de ces logiciels, mais aussi la...
Jâai de moins en moins dâĂ©nergie pour Ă©crire sur ce blog, entre les navettes Province/Paris, mon travail de RSSI, mes bidouilles diverses, ma vie privĂ©e⊠Mais que les abonnĂ©s au flux RSS du blog se rassurent, il me reste dans mes archives un...
Encryption can protect data at rest and data in transit, but does nothing for data in use. What we have are secure enclaves. Iâve written about this before: Almost all cloud services have to perform some computation on our data. Even the simplest...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
The U.S. government is reportedly preparing to ban the sale of wireless routers and other networking gear from TP-Link Systems, a tech company that currently enjoys an estimated 50% market share among home users and small businesses. Experts say...
RustyKey starts as an assume breach Windows AD box, with initial creds provided for a low privilege account. Iâll collect BloodHound data and find some interesting computer accounts. Iâll Timeroast and crack the password for one of these computer...
This is just a quick diary entry to report that I saw requests on my honeypot for (code) repositories: /.git/logs/refs/remotes/origin/main /.git/objects/info /.github /.github/dependabot.yml /.github/funding.yml /.github/ISSUE_TEMPLATE...
The second season of the Netflix reality competition show Squid Game: The Challenge has dropped. (Too many links to pick a fewâsearch for it.) As usual, you can also use this squid post to talk about the security stories in the news that I...
Over the past few decades, itâs become easier and easier to create fake receipts. Decades ago, it required special paper and printersâI remember a company in the UK advertising its services to people trying to cover up their affairs. Then,...
Aucun article de sécurité disponible