Article: DShield Data Analysis: Taking a Look at Port 45740 Activity, (Thu, Jun 3rd) - published over 3 years ago.
Content: At the SANS Internet Storm Center (ISC), handlers frequently analyze data submitted from DShield participants to determine activity trends and potential attacks. A few days ago on May 31st, I observed a small anomaly for %%port:45740%% and decided to monitor it for the next 3 days or so. There was a huge spike in number of sources/day and reports/day recorde...
https://isc.sans.edu/diary/rss/27492
Article: Russian Dolls VBS Obfuscation, (Fri, Jun 4th) - published over 3 years ago.
Content: We received an interesting sample from one of our readers (thanks Henry!) and we like this. If you find something interesting, we are always looking for fresh meat! Henry's sample was delivered in a password-protected ZIP archive and the file was a VBS script called "presentation_37142.vbs" (SHA256:2def8f350b1e7fc9a45669bc5f2c6e0679e901aac233eac6355026803494...
https://isc.sans.edu/diary/rss/27494
Article: Strange goings on with port 37, (Thu, Jun 3rd) - published over 3 years ago.
Content: Similar to Yee Ching's diary on Thursday, I noticed an oddity in the Dshield data last weekend (which I had hoped to discuss in a diary on Wednesday, but life got in the way) and thought it was worth asking around to see if anyone knows what is going on. As soon as I saw it, I reconfigured my honeypots to try to capture the traffic, but wasn't able to. I'm a...
https://isc.sans.edu/diary/rss/27496
Article: Persistent XSS bug discovered on eBay - published about 14 years ago.
Content:
http://www.xssed.com/news/125/Persistent_XSS_bug_discovered_on_eBay/
Article: Phone and email scammers impersonating the ACSC - published almost 3 years ago.
Content:
https://www.cyber.gov.au/acsc/view-all-content/alerts/phone-and-email-scammers-impersonating-acsc