Go Back > News > RSS Newsfeeds > Categories

User login

Frontpage Sponsor


What version of Baan have you installed
Baan IV
10.2 (incl. 10.2.1)
Total votes: 23

Baanboard at LinkedIn

Reference Content


Securing SSH Services - Go Blue Team!!, (Wed, Nov 1st)

SANS Internet Storm Center - November 2, 2017 - 9:29pm
As the world of the attacker evolves and new attacks are developed (Red Team), people in the world of defense sees a matching evolution in recommendations for securing various platforms and services (Blue Team).  It struck me as odd that we don’t see a lot of “high profile” changes in advice for SSH, so I did some digging.
Categories: Security

Auditing SSH Settings (some Blue Team, some Red Team), (Thu, Nov 2nd)

SANS Internet Storm Center - November 2, 2017 - 4:08pm
Yesterday we discussed revisiting SSH configurations and updating settings.  Now that this is done across your organization (just kidding), how will you audit this.  In particular, what about hosts that you don’t know are there, or that you don’t know are running SSH?
Categories: Security

Some Powershell Malicious Code, (Tue, Oct 31st)

SANS Internet Storm Center - October 31, 2017 - 8:27am
Powershell is a great language that can interact at a low-level with Microsoft Windows. While hunting, I found a nice piece of Powershell code. After some deeper checks, it appeared that the code was not brand new but it remains interesting to learn how a malware infects (or not) a computer and tries to collect interesting data from the victim.
Categories: Security

PE files and debug info, (Mon, Oct 30th)

SANS Internet Storm Center - October 30, 2017 - 11:10pm
Windows executables (PE files) can contain debug information, like the absolute pathname of the PDB file. A PDB file (Program DataBase) contains debug information and is produced by the linker.
Categories: Security

Critical Patch For Oracle's Identity Manager, (Mon, Oct 30th)

SANS Internet Storm Center - October 30, 2017 - 9:27am
On Friday, Oracle released a critical patch for it's Identity Manager, which is part of Fusion Middleware. The vulnerability patched with this update does affect all current versions of the product, and has a CVSS score of 10. The patch comes just about two weeks after Oracle's regular Critical Patch Update (CPU). 
Categories: Security

Remember ACE files?, (Sun, Oct 29th)

SANS Internet Storm Center - October 29, 2017 - 6:34pm
A reader submitted a malicious attachment:
Categories: Security

Macro-less Code Execution in MS Word, (Wed, Oct 25th)

SANS Internet Storm Center - October 26, 2017 - 5:22am
Guest Diary: Etay Nir
Categories: Security

DUHK attack, continuing a week of named issues, (Wed, Oct 25th)

SANS Internet Storm Center - October 25, 2017 - 2:32am
DUHK (Don't Use Hard-coded Keys) is an attack that exploits devices that use the ANSI X9.31 Random Number Generator and have a hard-coded key. Turns out that hard-coded crypto keys are not that uncommon in products. 
Categories: Security

BadRabbit: New ransomware wave hitting RU & UA, (Tue, Oct 24th)

SANS Internet Storm Center - October 24, 2017 - 5:09pm
About 2 hours ago, reports started to come about a new ransomware wave hitting RU Media agency Interfax, but it is extending to others in both RU and UA
Categories: Security

Stop relying on file extensions, (Tue, Oct 24th)

SANS Internet Storm Center - October 24, 2017 - 8:05am
Yesterday, I found an interesting file in my spam trap. It was called '16509878451.XLAM’. To be honest, I was not aware of this extension and I found this on the web: "A file with the XLAM file extension is an Excel Macro-Enabled Add-In file that's used to add new functions to Excel. Similar to other spreadsheet file formats, XLAM files contain cells that are divided into rows and columns that can contain text, formulas, charts, images and… macros!” Indeed, the file contained some VBA code:
Categories: Security

All times are GMT +2. The time now is 09:04.

©2001-2017 - -