Threat Level: green Handler on Duty: Rob VandenBrink

SANS ISC InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

2004 - A Look Back - Your Choice for Diary of the Year - Happy New Years

Published: 2004-12-31
Last Updated: 2005-01-01 18:10:08 UTC
by Deborah Hale (Version: 1)
0 comment(s)


2004 - What a year this has been.

We have seen everything from soup to nuts and then some. We have seen a rapid rise in phishing schemes. Paypal and eBay are no longer the only targets. Most banks have been targeted as well as BestBuy. (It is hard to believe that people are still falling for these).

We have seen a rise in botnet activity. I can personally attest to them. I have cleaned many a computer that has been the victim of a botnet attack. (I can't wait to see what is instore for us in 2005).

We have seen an increase in Rootkits, worms, viruses and malware. All with their own little nasty after affects.

I for one vote that we lobotimize the script kiddies, malware authors and the marketing people using their software.
Your Choice for Diary of the Year

In November I asked our faithful readers to tell us what they thought the best diary of the year was. The Tom (I Love Orange) Liston fan club (or Tom and all of his aliases) registered in loud and clear. He without a doubt received the most votes for his Follow the Bouncing Malware Series. I have to admit, I too thought it was great. I just wish I had his writing style and flair. Tom you do deserve the honor of Handler of the Year.

Second runner up was Cory Altheide with his story of Halloween Terror. Again I have to agree with the readers. Great job Corey.

We also received several emails from our readers stating that all of the diaries were great. That all should be voted the best. Thanks to all of you who voted. And thanks to all of you who gave such positive feedback. I think that I speak for all of the volunteers at the Storm Center when I say that we enjoy doing what we do. We enjoy hearing from all of you.

Happy New Year
I would like to personnally wish each and everyone of you a healthly, happy and secure 2005.

I especially want to extend my greetings and my thanks to all of my fellow handlers around the globe. All volunteer time and talents to anyone who is interested and wants to learn more. We receive no monetary pay for what we do, however we receive something much more valuable, friendship and camaraderie. I have learned so much from each of them. So to each of you my fellow Handlers, Happy New Year and May You Thrive in 2005.

Handler On Duty

Deb Hale
haled@pionet.net

For those of you that are interested - here is a sample of the 2004 Diaries.


January:

New SoBig Wave

http://isc.sans.org/diary.php?date=2004-01-15

MyDoom.A

http://isc.sans.org/diary.php?date=2004-01-27

February:

Microsoft ASN.1 vulnerability (MS04-007)

http://isc.sans.org/diary.php?date=2004-02-10


Netsky virus

http://isc.sans.org/diary.php?date=2004-02-18

March:

Virus writers declare war

http://isc.sans.org/diary.php?date=2004-03-03

BJs Alerts of Possible Credit Card Theft

http://isc.sans.org/diary.php?date=2004-03-12

April:

Major Microsoft vulnerabilities

http://isc.sans.org/diary.php?date=2004-04-13
Cisco Vulnerabilites and Metasploit 2.0


http://isc.sans.org/diary.php?date=2004-04-07


May:

Sasser and Phatbot authors caught


http://isc.sans.org/diary.php?date=2004-05-08

Symantec Firewall Vulnerabilities

http://isc.sans.org/diary.php?date=2004-05-13

CVS Vulnerability

http://isc.sans.org/diary.php?date=2004-05-19


June:

Cisco BGP DoS

http://isc.sans.org/diary.php?date=2004-06-16

ISCAlert and sober.h

http://isc.sans.org/diary.php?date=2004-06-17

Russian Hacks/download.ject


http://isc.sans.org/diary.php?date=2004-06-24

July:

Bagle Source Code Release

http://isc.sans.org/diary.php?date=2004-07-07

Distributed Brute Force FTP Scans

http://isc.sans.org/diary.php?date=2004-07-09

Follow the Bouncing Malware I

http://isc.sans.org/diary.php?date=2004-07-23

August:

XPSP2 released

http://isc.sans.org/diary.php?date=2004-08-09

Follow the Bouncing Malware II

http://isc.sans.org/diary.php?date=2004-08-23

September:

MS .jpg vulnerability (MS04-028)

http://isc.sans.org/diary.php?date=2004-09-14

GDIScanner

http://isc.sans.org/diary.php?date=2004-09-23

Botnets

http://isc.sans.org/diary.php?date=2004-09-25


October:

Ten bulletins (7 critical) released by MS

http://isc.sans.org/diary.php?date=2004-10-12

Multiple Browser Vulnerabilities

http://isc.sans.org/diary.php?date=2004-10-20

November:

A Terrifying Tale of TCP ... Terror

http://isc.sans.org/diary.php?date=2004-11-01


IFRAME

http://isc.sans.org/diary.php?date=2004-11-02

Follow The Bouncing Malware (Part III)

http://isc.sans.org/diary.php?date=2004-11-04

Sun JVM Vulnerability

http://isc.sans.org/diary.php?date=2004-11-23

Follow The Bouncing Malware (Part IV)

http://isc.sans.org/diary.php?date=2004-11-24
December:

Santy worm

http://isc.sans.org/diary.php?date=2004-12-21

PHP Include Worm

http://isc.sans.org/diary.php?date=2004-12-27
Time is running out for *you* to write your diary!

We are planning a diary for the first week of the New Year that is exclusively a "Reader's Diary". This will be a diary of inputs from you, our readers, to the rest of the world. We are looking for inputs that pertain to ISC, the Internet, New Year Predictions, suggestions, 'thank you' notes, almost anything (within reason). We will try to get all of the inputs posted, and they will be available for reading on January 2nd/3rd. Please include your name and valid email address. Names will be posted, however email addresses will be kept private.


Please submit entries to newyear@isc.sans.org by Jan. 2nd 1200hrs GMT to be added to the diary.




Keywords:
0 comment(s)
Diary Archives