Internet Storm Center

Handler on Duty: Didier Stevens

Threat Level: green

Podcast Detail

Another Word Maldoc; Snatch Ransomware; Ryuk Decryptor Fail; Sysmon DNS Rules @swiftonsecurity

If you are not able to play the podcast using the player below: Use this direct link to the audio file: https://traffic.libsyn.com/securitypodcast/6782.mp3

SANS Daily Network Security Podcast (Stormcast) for Tuesday, December 10th 2019

00:00

My Next Class

Application Security: Securing Web Apps, APIs, and Microservices

Online | US Central

Feb 20th - Feb 25th 2023

… more classes

Interested in Internet Storm Center stickers? Check here if there are still some available for today.

Another Word Maldoc
https://isc.sans.edu/forums/diary/Lazy+Sunday+Maldoc+Analysis/25586/

Snatch Ransomware Reboots System Into Safe Mode To Disable Anti Virus
https://news.sophos.com/en-us/2019/12/09/snatch-ransomware-reboots-pcs-into-safe-mode-to-bypass-protection/

Ryuk Ransomware Decryptor May No Longer Work / Corrupt Documents
https://blog.emsisoft.com/en/35023/bug-in-latest-ryuk-decryptor-may-cause-data-loss/

Extending Windows 7 Security Updates
https://www.ghacks.net/2019/12/07/someone-found-a-way-to-bypass-windows-7-extended-security-updates-checks/

Swift on Security Updates Sysmon Rules
https://github.com/SwiftOnSecurity/sysmon-config

RSA Webcast
https://www.rsaconference.com/industry-topics/webcast/36-five-most-dangerous-attacks-evolving

iTunes

MP3 Download

RSS Feed

Google

Listen on Google Podcasts

Stitcher

Podbean

Amazon Echo

YouTube

Spreaker

iOS App

Spotify

Discussion

New Discussions closed for all Podcasts older than two(2) weeks
Please send your comments to our Contact Form

Application Security: Securing Web Apps, APIs, and Microservices

Online | US Central

Feb 20th - Feb 25th 2023