Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Signed Dridex Malware; Browsealoud Plugin Breach; BitGrail Insolvent After Breach - SANS Internet Storm Center Signed Dridex Malware; Browsealoud Plugin Breach; BitGrail Insolvent After Breach


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
podcast logo

ISC StormCast for Monday, February 12th 2018

A daily summary of cyber security news from the SANS Internet Storm Center
Author:Johannes B. Ullrich, Ph.D.
See below for a schedule of classes I teach.
Created: Monday, February 12th 2018
Length: 5:40 minutes
Today's Headline: Signed Dridex Malware; Browsealoud Plugin Breach; BitGrail Insolvent After Breach

If you like this podcast, then please consider telling others about it. Use this button to Tweet about this episode: click here. Errors? Corrections? Complaints? Player Problems? Please let us know here: https://isc.sans.edu/contact.html

Plain HTML5 Player
Fancy Player (with skip back/forward)

Show Notes

Signed Dridex Malware and Identifying Signed Word Macros
https://isc.sans.edu/forums/diary/An+autograph+from+the+Dridex+gang/23331/
https://isc.sans.edu/forums/diary/Finding+VBA+signatures+in+Word+documents/23333/

Browsealoud Plugin Used to Compromise High Profile Sites
http://www.theregister.co.uk/2018/02/11/browsealoud_compromised_coinhive/
https://www.texthelp.com/en-gb/company/corporate-blog/february-2018/data-security-investigation-underway-at-texthelp/

BitGrail Insolvent After Breach
https://bitgrail.com/news

Sandboxed Mac Apps Can Use Screen Shots to Leak Information
https://krausefx.com/blog/mac-privacy-sandboxed-mac-apps-can-take-screenshots

Discussion

Login here to join the discussion.

Interested in attending one of my classes? See below for my current schedule.

Defending Web Applications Security EssentialsSan FranciscoMar 12th - Mar 17th 2018
Defending Web Applications Security EssentialsRestonMay 20th - May 25th 2018
Intrusion Detection In-DepthSan AntonioAug 6th - Aug 11th 2018
Defending Web Applications Security EssentialsAmsterdamSep 3rd - Sep 8th 2018
Defending Web Applications Security EssentialsLas VegasSep 23rd - Sep 28th 2018