Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Diaries by Keyword Diaries by Keyword

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Date Author Title

MAC ADDRESS

2019-09-26Rob VandenBrinkMining MAC Address and OUI Information

MAC

2019-12-04/a>Jan KoprivaAnalysis of a strangely poetic malware
2019-10-02/a>Brad DuncanA recent example of Emotet malspam
2019-09-26/a>Rob VandenBrinkMining MAC Address and OUI Information
2019-09-18/a>Brad DuncanEmotet malspam is back
2019-07-08/a>Didier StevensMachine Code? No!
2019-07-04/a>Didier StevensMachine Code?
2019-06-18/a>Brad DuncanMalspam with password-protected Word docs pushing Dridex
2019-03-17/a>Didier StevensVideo: Maldoc Analysis: Excel 4.0 Macro
2019-03-16/a>Didier StevensMaldoc: Excel 4.0 Macros
2019-03-13/a>Brad DuncanMalspam pushes Emotet with Qakbot as the follow-up malware
2019-01-24/a>Brad DuncanMalspam with Word docs uses macro to run Powershell script and steal system data
2018-12-18/a>Brad DuncanMalspam links to password-protected Word docs that push IcedID (Bokbot)
2018-11-27/a>Xavier MertensMore obfuscated shell scripts: Fake MacOS Flash update
2018-11-15/a>Brad DuncanEmotet infection with IcedID banking Trojan
2018-11-04/a>Pasquale StirparoBeyond good ol' LaunchAgent - part 1
2018-10-21/a>Pasquale StirparoBeyond good ol’ LaunchAgent - part 0
2018-08-24/a>Xavier MertensMicrosoft Publisher Files Delivering Malware
2018-06-29/a>Remco VerhoefCrypto community target of MacOS malware
2018-05-25/a>Xavier MertensAntivirus Evasion? Easy as 1,2,3
2018-05-23/a>Remco VerhoefTrack naughty and nice binaries with Google Santa
2018-05-01/a>Xavier MertensDiving into a Simple Maldoc Generator
2017-12-19/a>Xavier MertensExample of 'MouseOver' Link in a Powerpoint File
2017-12-16/a>Xavier MertensMicrosoft Office VBA Macro Obfuscation via Metadata
2017-11-15/a>Xavier MertensIf you want something done right, do it yourself!
2017-09-19/a>Jim ClausingNew tool: mac-robber.py
2017-02-26/a>Guy BruneauIt is Tax Season - Watch out for Suspicious Attachment
2016-09-30/a>Xavier MertensAnother Day, Another Malicious Behaviour
2015-02-19/a>Daniel WesemannMacros? Really?!
2014-01-24/a>Chris MohanSecurity Update for OS X for CVE-2014-1252 http://support.apple.com/kb/HT6117
2013-12-17/a>Adrien de BeaupreApple security updates Mac OS X and Safari
2013-10-22/a>Richard PorterGreenbone and OpenVAS Scanner
2013-10-02/a>John BambenekObamacare related domain registration spike, Government shutdown domain registration beginning
2013-09-10/a>Swa FrantzenMacs need to patch too!
2013-08-09/a>Kevin ShorttCopy Machines - Changing Scanned Content
2013-03-02/a>Scott FendleyApple Blocks Older Insecure Versions of Flash Player
2012-07-05/a>Adrien de BeaupreNew OS X trojan backdoor MaControl variant reported
2012-05-05/a>Tony CarothersVulnerability Exploit for Snow Leopard
2012-04-12/a>Guy BruneauApple Java Updates for Mac OS X
2012-02-24/a>Guy BruneauFlashback Trojan in the Wild
2012-02-04/a>Scott FendleyApple Security Advisory 2012-001 v1.1
2011-08-05/a>donald smithNew Mac Trojan: BASH/QHost.WB
2011-06-23/a>Jim ClausingApple Security Updates 2011-004
2011-06-15/a>Pedro BuenoHit by MacDefender, Apple Web Security (name your Mac FakeAV here)...
2011-05-26/a>Swa FrantzenMacDefender ups the ante with removing the password need for installation
2011-05-06/a>Richard PorterUnpatched Exploit: Skype for MAC
2010-11-16/a>Guy BruneauMac OS X Server v10.6.5 (10H575) Security Update: http://support.apple.com/kb/HT4452
2010-06-17/a>Deborah HaleDigital Copy Machines - Security Risk?
2010-06-15/a>Manuel Humberto Santander PelaezApple releases advisory for Mac OS X - Multiple vulnerabilities discovered
2010-03-29/a>Adrien de BeaupreAPPLE-SA-2010-03-29-1 Security Update 2010-002 / Mac OS X v10.6.3
2010-02-05/a>Jim ClausingMemory Analysis - time to move beyond XP
2010-01-12/a>Adrien de BeauprePoC for CVE-2009-0689 MacOS X 10.5/10.6 vulnerability
2009-12-07/a>Rob VandenBrinkLayer 2 Network Protections – reloaded!
2009-11-09/a>Guy BruneauApple Security Update 2009-006 for Mac OS X v10.6.2
2009-01-24/a>Pedro BuenoIdentifying and Removing the iWork09 Trojan
2008-07-17/a>Mari NicholsFirefox Releases 3.0.1 and fixes 3 security vulnerabilities
2008-04-30/a>Bojan Zdrnja(Minor) evolution in Mac DNS changer malware
2008-04-02/a>Adrien de BeaupreWhen is a DMG file not a DMG file
2006-12-12/a>Swa FrantzenMicrosoft Office 2004 - Mac OS X updated
2006-11-29/a>Toby KohlenbergNew Vulnerability Announcement and patches from Apple

ADDRESS

2019-09-26/a>Rob VandenBrinkMining MAC Address and OUI Information
2013-03-04/a>Johannes UllrichIPv6 Focus Month: Addresses
2011-06-01/a>Johannes UllrichEnabling Privacy Enhanced Addresses for IPv6
2011-04-25/a>Rob VandenBrinkWhat's Your (IP) Address Worth?