Diaries by Keyword - SANS Internet Storm Center

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Handler on Duty: Jesse La Grew

Threat Level: green

Date	Author	Title
NAME SERVER
2011-09-04	Lorna Hutcheson	Several Sites Defaced
2008-05-19	Maarten Van Horenbeeck	Route filtering and its impact on the DNS fabric
NAME
2023-12-31/a>	Tom Webb	Pi-Hole Pi4 Docker Deployment
2023-10-15/a>	Guy Bruneau	Domain Name Used as Password Captured by DShield Sensor
2023-09-05/a>	Jesse La Grew	Common usernames submitted to honeypots
2022-06-03/a>	Xavier Mertens	Sandbox Evasion... With Just a Filename!
2022-02-24/a>	Xavier Mertens	Ukraine & Russia Situation From a Domain Names Perspective
2021-04-24/a>	Guy Bruneau	Base64 Hashes Used in Web Scanning
2020-12-05/a>	Guy Bruneau	Is IP 91.199.118.137 testing Access to aahwwx.52host.xyz?
2020-03-21/a>	Guy Bruneau	Honeypot - Scanning and Targeting Devices & Services
2015-01-27/a>	Johannes Ullrich	New Critical GLibc Vulnerability CVE-2015-0235 (aka GHOST)
2014-07-09/a>	Daniel Wesemann	Who owns your typo?
2013-12-21/a>	Guy Bruneau	Strange DNS Queries - Request for Packets
2012-03-13/a>	Lenny Zeltser	Please transfer this email to your CEO or appropriate person, thanks
2011-09-04/a>	Lorna Hutcheson	Several Sites Defaced
2008-05-19/a>	Maarten Van Horenbeeck	Route filtering and its impact on the DNS fabric
SERVER
2024-04-22/a>	Jan Kopriva	It appears that the number of industrial devices accessible from the internet has risen by 30 thousand over the past three years
2022-12-19/a>	Xavier Mertens	Hunting for Mastodon Servers
2022-06-17/a>	Bojan Zdrnja	Critical vulnerability in Splunk Enterprise?s deployment server functionality
2021-05-22/a>	Xavier Mertens	"Serverless" Phishing Campaign
2020-05-29/a>	Johannes Ullrich	The Impact of Researchers on Our Data
2017-09-16/a>	Guy Bruneau	VMware ESXi, vCenter Server, Fusion and Workstation updates resolve multiple security vulnerabilities - https://www.vmware.com/security/advisories/VMSA-2017-0015.html
2015-05-20/a>	Brad Duncan	Logjam - vulnerabilities in Diffie-Hellman key exchange affect browsers and servers using TLS
2013-07-27/a>	Scott Fendley	Defending Against Web Server Denial of Service Attacks
2013-03-26/a>	Daniel Wesemann	How your Webhosting Account is Getting Abused
2011-12-28/a>	Daniel Wesemann	Hash collisions vulnerability in web servers
2011-09-04/a>	Lorna Hutcheson	Several Sites Defaced
2011-06-30/a>	Rob VandenBrink	Update for RSA Authentication Manager
2010-10-03/a>	Adrien de Beaupre	H went down.
2010-09-16/a>	Johannes Ullrich	OpenX Ad-Server Vulnerability
2010-03-24/a>	Johannes Ullrich	".sys" Directories Delivering Driveby Downloads
2009-11-14/a>	Adrien de Beaupre	Microsoft advisory for Windows 7 / Windows Server 2008 R2 Remote SMB DoS Exploit released
2009-11-12/a>	Rob VandenBrink	Windows 7 / Windows Server 2008 Remote SMB Exploit
2009-04-07/a>	Johannes Ullrich	SSH scanning from compromised mail servers
2008-12-15/a>	Toby Kohlenberg	New MS SQL Server vulnerability
2008-05-19/a>	Maarten Van Horenbeeck	Route filtering and its impact on the DNS fabric
2006-10-03/a>	Swa Frantzen	Detecting attacks against servers

NAME SERVER

NAME

SERVER