Threat Level: green Handler on Duty: Renato Marinho

SANS ISC: InfoSec Handlers Diary Blog - Internet Storm Center Diary 2010-01-30 InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Got PushDo SSL packets?

Published: 2010-01-30
Last Updated: 2010-01-30 11:09:16 UTC
by Stephen Hall (Version: 1)
2 comment(s)

Steven Adair over at ShadowServer has posted a blog entry about the strange going's on with the PushDo botnet. There has been a large rise in the detection of SSL packets hitting a number of domains, www.sans.org included.

If you are the admin of one of these 315 sites and you can grab some of these packets in a pcap and your willing to share, can you upload them via our contact form so that we can compare with what we are seeing.

Have a good weekend.

Steve Hall
ISC Handler of the day

Keywords: PushDo
2 comment(s)

New and updated VMWare advisories

Published: 2010-01-30
Last Updated: 2010-01-30 11:04:17 UTC
by Stephen Hall (Version: 1)
0 comment(s)

Today VMware has released the following new and updated security advisories:

New - VMSA-2010-0002

This is described as - VMware vCenter update release addresses multiple security issues in Java JRE. The JRE is updated to version 1.5.0_22 and this covers a *lot* of CVE's.

Updated - VMSA-2009-0016.2

 

Keywords: jre vmware
0 comment(s)
Diary Archives