Diaries by Keyword - SANS Internet Storm Center

Handler on Duty: Didier Stevens

Threat Level: green

Date	Author	Title
2024-10-09	Xavier Mertens	From Perfctl to InfoStealer
2024-01-22	Johannes Ullrich	Apple Updates Everything - New 0 Day in WebKit
2022-09-21	Xavier Mertens	Phishing Campaigns Use Free Online Resources
2022-08-17	Johannes Ullrich	Apple Patches Two Exploited Vulnerabilities
2022-01-25	Bojan Zdrnja	Local privilege escalation vulnerability in polkit's pkexec (CVE-2021-4034)
2021-01-15	Brad Duncan	Throwback Friday: An Example of Rig Exploit Kit
2020-10-09	Jan Kopriva	Phishing kits as far as the eye can see
2020-10-02	Xavier Mertens	Analysis of a Phishing Kit
2019-06-25	Brad Duncan	Rig Exploit Kit sends Pitou.B Trojan
2019-06-17	Brad Duncan	An infection from Rig exploit kit
2019-01-16	Brad Duncan	Emotet infections and follow-up malware
2016-04-21	Daniel Wesemann	Decoding Pseudo-Darkleech (#1)
2016-02-26	Xavier Mertens	Quick Audit of *NIX Systems
2015-07-27	Daniel Wesemann	Angler's best friends
2015-03-10	Brad Duncan	Threatglass has pcap files with exploit kit activity
2015-02-04	Alex Stanford	Exploit Kit Evolution - Neutrino
2014-07-22	Daniel Wesemann	Ivan's Order of Magnitude
2014-04-24	Rob VandenBrink	Apple IOS updates to 7.1.1, OSX Security update 2014-002, Airport Updates - http://support.apple.com/kb/HT1222, http://support.apple.com/kb/HT6208, http://support.apple.com/kb/HT6207, http://support.apple.com/kb/HT6203
2014-02-28	Daniel Wesemann	Fiesta!
2013-02-21	Pedro Bueno	NBC site redirecting to Exploit kit
2013-02-21	Bojan Zdrnja	SSHD rootkit in the wild
2012-12-10	Johannes Ullrich	Your CPA License has not been revoked
2012-03-11	Johannes Ullrich	An Analysis of Jester's QR Code Attack. (Guest Diary)
2011-12-06	Pedro Bueno	The RedRet connection...
2011-11-22	Pedro Bueno	Updates on ZeroAccess and BlackHole front...
2011-07-02	Pedro Bueno	Bootkits, they are back at full speed...
2011-02-14	Richard Porter	Anonymous Damage Control Anybody?
2010-11-18	Chris Carboni	Stopping the ZeroAccess Rootkit
2010-05-04	Rick Wanner	SIFT review in the ISSA Toolsmith
2010-02-19	Mark Hofman	MS10-015 may cause Windows XP to blue screen (but only if you have malware on it)
2009-12-23	Johannes Ullrich	Tell us about your Christmas Family Emergency Kit
2009-11-02	Rob VandenBrink	Microsoft releases v1.02 of Enhanced Mitigation Evaluation Toolkit (EMET)
2008-05-25	Stephen Hall	Cisco's Response to Rootkit presentation
2008-05-23	Mike Poor	Cisco IOS Rootkit thoughts