Month: September 2016

We are just hackers helping hackers. That’s what we do. via /r/netsec

We are just hackers helping hackers. That’s what we do. http://ift.tt/2dqIk0A Submitted September 28, 2016 at 02:32AM by phsf via reddit http://ift.tt/2cUaUTd

September 28, 2016
Effective DarkComet RAT Analysis in 10 Minutes and 3 Clicks

Key Takeaways DarkComet RAT controller identified via a Recorded Future and Shodan alert. 10 minutes and three Recorded Future Intel Cards (including embedded Farsight Security and ReversingLabs insight) produced a substantial lead toward probable cause and a successful criminal investigation. IP Address: 73.77.225.59:1604 (Comcast Cable, Texas) Associated Domain: shadows.sytes[.]net (No-IP Dynamic DNS) Malware: b5462c4312a587171c400953f8fd79f0 (MD5)…

September 28, 2016
MS IE/Edge Script Error Leak on Workers (SOP bypass) via /r/netsec

MS IE/Edge Script Error Leak on Workers (SOP bypass) http://ift.tt/2ddojaP Submitted September 27, 2016 at 09:40PM by magicmac via reddit http://ift.tt/2dpthET

September 27, 2016
Windows network security now easier with osquery via /r/netsec

Windows network security now easier with osquery http://ift.tt/2dwaraU Submitted September 27, 2016 at 07:01PM by ryan0rz via reddit http://ift.tt/2dpGPQ7

September 27, 2016
XSSing Your Router via /r/netsec

XSSing Your Router http://ift.tt/2d5YryR Submitted September 27, 2016 at 07:21PM by ZephrX112 via reddit http://ift.tt/2dpajhv

September 27, 2016
CVE-2016-2776: Remote BIND9 Denial of Service via /r/netsec

CVE-2016-2776: Remote BIND9 Denial of Service http://ift.tt/2cIJVMP Submitted September 27, 2016 at 06:50PM by justaguy240 via reddit http://ift.tt/2dx2WRe

September 27, 2016
“Ultimate Security Bundle Engineered for PC Gamers” appears on Steam, it’s just a simple whitelist. via /r/netsec

“Ultimate Security Bundle Engineered for PC Gamers” appears on Steam, it’s just a simple whitelist. http://ift.tt/2cPtT6M Submitted September 27, 2016 at 04:55PM by Ackis via reddit http://ift.tt/2cSUDxG

September 27, 2016
Adobe Flash local-with-filesystem sandbox bypass: end of the love story between Flash and local files via /r/netsec

Adobe Flash local-with-filesystem sandbox bypass: end of the love story between Flash and local files http://ift.tt/2cSWqD7 Submitted September 27, 2016 at 04:50PM by TRUELIT via reddit http://ift.tt/2dhlnvA

September 27, 2016
Fancy Bear Hackers use a new Mac Trojan against aerospace industry

Fancy Bear Hackers use a new Mac Trojan against aerospace industry http://ift.tt/2dobvxf Researchers at Palo Alto spotted a new campaign of the Russian Fancy Bear APT using a new Mac OS X Trojan against companies in the aerospace industry. In the last weeks, we have discussed a lot about a string of attacks that targeted the US Democratic…

September 27, 2016
Talos ShadowGate Take Down: Global Malvertising Campaign Thwarted

Talos ShadowGate Take Down: Global Malvertising Campaign Thwarted http://ift.tt/2czXEqJ Cisco’s research team Talos posted a interesting article on their recently work with GoDaddy to take down large malvertising campaign. The original post can be found HERE. This article includes a fantastic explanation of exploit kits and gates. Exploit kits are a class of threat that…

September 27, 2016