Go Back > News > RSS Newsfeeds > Categories

User login

Frontpage Sponsor


Google search

For ERP LN feature pack upgrade, what method of install are you using?
Installation Wizard into existing VRC
Installation Wizard into new VRC
Manual into existing VRC
Manual into new VRC
Total votes: 39

Baanboard at LinkedIn

Reference Content


Microsoft March 2018 Patch Tuesday, (Tue, Mar 13th)

SANS Internet Storm Center - March 13, 2018 - 7:32pm
March 2018 Security Updates (Preliminary. Work in Progress)
Categories: Security

How did it all start? Early Memcached DDoS Attack Precursors and Ransom Notes, (Tue, Mar 13th)

SANS Internet Storm Center - March 13, 2018 - 2:30pm
This is a guest diary written by Remco Verhoef . Remco is the founder of Dutchsec
Categories: Security

Payload delivery via SMB, (Mon, Mar 12th)

SANS Internet Storm Center - March 12, 2018 - 8:10am
This weekend, while reviewing the collected data for the last days, I found an interesting way to drop a payload to the victim. This is not brand new and the attack surface is (in my humble opinion) very restricted but it may be catastrophic. Let's see why.
Categories: Security

Apache SOLR: the new target for cryptominers, (Thu, Mar 8th)

SANS Internet Storm Center - March 9, 2018 - 1:13am
Earlier this year, I wrote about a campaign targeting vulnerable Oracle WebLogic installations to deploy cryptocurrency miners [1] . Based on some of the mining pool statistics associated with these installs, criminals were quite successful. Now that most Oracle WebLogic servers are fixed, miscreants had to move to another target. Based on an incident I responded to on Thursday, vulnerable Apache SOLR servers may now be “it”.
Categories: Security

CRIMEB4NK IRC Bot, (Thu, Mar 8th)

SANS Internet Storm Center - March 8, 2018 - 8:34am
Yesterday, I got my hands on the source code of an IRC bot written in Perl. Yes, IRC ("Internet Relay Chat") is still alive! If the chat protocol is less used today to handle communications between malware and their C2 servers, it remains an easy way to interact with malicious bots that provide interesting services to attackers. I had a quick look at the source code (poorly written) and found some interesting information:
Categories: Security

The joys of changing Privacy Laws, (Tue, Mar 6th)

SANS Internet Storm Center - March 6, 2018 - 7:12am
There are a few privacy changes that have occured and will occur. You may be affected, so I've summarised it here. Please keep in mind I'm not your legal counsil so as always, check yours. 
Categories: Security

Malicious Bash Script with Multiple Features, (Mon, Mar 5th)

SANS Internet Storm Center - March 5, 2018 - 11:22am
It’s not common to find a complex malicious bash script. Usually, bash scripts are used to download a malicious executable and start it. This one has been spotted by @michalmalik[1] who twitted about it. I had a quick look at it. The script has currently a score of 13/50 on VT[2]. First of all, the script installs some tools and dependencies. 'apt-get' and 'yum'  are used, this means that multiple Linux distributions are targeted. The following packages are installed: wget, git, make, python, redis-tools, gcc, build-essentials. Some Python packages are installed via PIP.
Categories: Security

The Crypto Miners Fight For CPU Cycles, (Sun, Mar 4th)

SANS Internet Storm Center - March 4, 2018 - 11:07am
I found an interesting piece of Powershell code yesterday. The purpose is to download and execute a crypto miner but the code also implements a detection mechanism to find other miners, security tools or greedy processes (in terms of CPU cycles). Indeed, crypto miners make intensive use of your CPUs and more CPU resources they can (ab)use, more money will be generated. When a computer is infected, it looks legit to search for already running miners and simply kill them: The fight for CPU cycles started!
Categories: Security

All times are GMT +2. The time now is 12:47.

©2001-2017 - -