| 2021-11-14 | Didier Stevens | External Email System FBI Compromised: Sending Out Fake Warnings |
| 2020-09-17 | Xavier Mertens | Suspicious Endpoint Containment with OSSEC |
| 2019-07-18 | Xavier Mertens | Malicious PHP Script Back on Stage? |
| 2018-06-22 | Lorna Hutcheson | XPS Attachment Used for Phishing |
| 2016-08-29 | Russ McRee | Recommended Reading: Intrusion Detection Using Indicators of Compromise Based on Best Practices and Windows Event Logs |
| 2015-03-07 | Guy Bruneau | Should it be Mandatory to have an Independent Security Audit after a Breach? |
| 2014-07-19 | Russ McRee | Keeping the RATs out: the trap is sprung - Part 3 |
| 2014-07-18 | Russ McRee | Keeping the RATs out: **it happens - Part 2 |
| 2014-07-16 | Russ McRee | Keeping the RATs out: an exercise in building IOCs - Part 1 |
| 2014-03-22 | Guy Bruneau | How the Compromise of a User Account Lead to a Spam Incident |
| 2011-09-26 | Jason Lam | MySQL.com compromised spreading malware |
| 2011-06-19 | Guy Bruneau | Sega Pass Compromised - 1.29 Million Customers Data Leaked |
| 2011-04-18 | John Bambenek | Wordpress.com Security Breach |
| 2011-04-02 | Rick Wanner | RSA/EMC: Anatomy of a compromise |
| 2011-02-21 | Adrien de Beaupre | Winamp forums compromised |
| 2010-12-13 | Deborah Hale | Gawker Media Breach of Security |
| 2010-01-26 | Jason Lam | e107 CMS system website compromised |
| 2009-10-05 | Adrien de Beaupre | Time to change your hotmail/gmail/yahoo password |
| 2009-08-28 | Adrien de Beaupre | apache.org compromised |
| 2009-07-29 | Bojan Zdrnja | Increasing number of attacks on security sites |
| 2008-11-16 | Maarten Van Horenbeeck | Detection of Trojan control channels |
| 2008-08-25 | John Bambenek | Thoughts on the Best Western Compromise |
https://www.sans.edu
