Security Advisories

ISC StormCast for Monday, September 26th, 2022

ISC StormCast for Monday, September 26th, 2022

Kids Like Cookies and Malware Likes them Too https://isc.sans.edu/forums/diary/Kids+Like+Cookies+Malware+Too/29082 Downloading Files from Removed Domains https://isc.sans.edu/forums/diary/Downloading%...

ISC StormCast for Friday, September 23rd, 2022

ISC StormCast for Friday, September 23rd, 2022

RAT Delivered Through FODHelper https://isc.sans.edu/forums/diary/RAT+Delivered+Through+FODHelper/29078 Microsoft Endpoint Configuration Manager Spoofing Vulnerability https://msrc.microsoft.com/updat...

ISC StormCast for Thursday, September 22nd, 2022

ISC StormCast for Thursday, September 22nd, 2022

Phishing Campaigns Use Free Only Resources https://isc.sans.edu/forums/diary/Phishing%20Campaigns%20Use%20Free%20Online%20Resources/29074/ Insecure use of tarfile.extract in Python https://bugs.python...

ISC StormCast for Wednesday, September 21st, 2022

ISC StormCast for Wednesday, September 21st, 2022

Chainsaw: Hunt, search and extract event log records https://isc.sans.edu/diary/Chainsaw%3A+Hunt%2C+search%2C+and+extract+event+log+records/29066 PDU Exploits past NAT https://claroty.com/team82/resea...

Medtronic NGP 600 Series Insulin Pumps

Medtronic NGP 600 Series Insulin Pumps

This advisory contains mitigations for a Protection Mechanism Failure vulnerability in versions of Medtronic NGP 600 Series Insulin Pumps and accessory components. Read More

ISC StormCast for Tuesday, September 20th, 2022

ISC StormCast for Tuesday, September 20th, 2022

Preventing ISO Malware https://isc.sans.edu/diary/Preventing+ISO+Malware+/29062 State of Emotet https://www.advintel.io/post/advintel-s-state-of-emotet-aka-spmtools-displays-over-million-compromised-m...

ISC StormCast for Monday, September 19th, 2022

ISC StormCast for Monday, September 19th, 2022

Word Maldoc With CustomXML and Renamed VBAProject.bin https://isc.sans.edu/diary/Word+Maldoc+With+CustomXML+and+Renamed+VBAProject.bin/29056 2FA on Lock Screens https://www.bbc.com/news/uk-england-lon...

ISC StormCast for Friday, September 16th, 2022

ISC StormCast for Friday, September 16th, 2022

Malicous Word Document With a Frameset https://isc.sans.edu/diary/Malicious+Word+Document+with+a+Frameset/29052 CVE-2022-34721 Exploit https://github.com/78ResearchLab/PoC/tree/main/CVE-2022-34721 Tro...

ISC StormCast for Thursday, September 15th, 2022

ISC StormCast for Thursday, September 15th, 2022

Easy Process Injection within Python https://isc.sans.edu/diary/Easy+Process+Injection+within+Python/29048 Queen Elizabeth Related Phishing https://twitter.com/threatinsight/status/1570092339984584705...

Generated by Feedzy