Privilege escalation, why should I care?, (Wed, May 22nd)

Archive for the ‘Research & Alerts’ Category

Privilege escalation, why should I care?, (Wed, May 22nd)

By Perry Varanoid on Wednesday, May 22nd, 2013 | No Comments

In my day job I spend about 90% of my time on the red team, performing vulnerability assessment and penetration testing. The rest is spent on threat research, incident response, and digital forensics.

Google Releases Google Chrome 27.0.1453.93

By Perry Varanoid on Wednesday, May 22nd, 2013 | No Comments

Original release date: May 22, 2013 Google has released Google Chrome 27.0.1453.93 for Windows, Mac, Linux, and Chrome Frame to address multiple vulnerabilities.

ISC StormCast for Wednesday, May 22nd 2013 http://isc.sans.edu/podcastdetail.html?id=3323, (Wed, May 22nd)

By Perry Varanoid on Wednesday, May 22nd, 2013 | No Comments

Chrome 27 stable released http://googlechromereleases.blogspot.ca/ some security fixes, (Tue, May 21st)

By Perry Varanoid on Tuesday, May 21st, 2013 | No Comments

(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Moore, Oklahoma tornado charitable organization scams, malware, and phishing, (Tue, May 21st)

By Perry Varanoid on Tuesday, May 21st, 2013 | No Comments

I find it sad that in times when people are facing disaster, many have died, others missing, and the survivors facing having lost everything that there are scumbags who will try to take advantage. Be very wary of any charity that is raising funds for victims of any disaster, particularly one that has not been around for very long.

ISC StormCast for Tuesday, May 21st 2013 http://isc.sans.edu/podcastdetail.html?id=3320, (Tue, May 21st)

By Perry Varanoid on Tuesday, May 21st, 2013 | No Comments

Safe – Tools, Tactics and Techniques, (Mon, May 20th)

By Perry Varanoid on Monday, May 20th, 2013 | No Comments

Trend Micro published a report last week on a spear-phishing emails campaign that contain a malicious attachment exploiting a Microsoft Office vulnerability ( CVE-2012-0158 ).

TA13-141A: Washington, DC Radio Station Web Site Compromises

By Perry Varanoid on Monday, May 20th, 2013 | No Comments

Original release date: May 20, 2013 | Last revised: May 21, 2013 Systems Affected Microsoft Windows systems running Adobe Reader, Acrobat, or Oracle Java Overview On May 16, 2013, US-CERT was notified that both www.federalnewsradio[.]com and www.wtop[.]com had been compromised to redirect Internet Explorer users to an exploit kit. As of May 17, 2013, US-CERT analysis confirms that no malicious code remains on either site.

Technical Note on Foreign Involvement in Insider Intellectual Property Theft Released

By Perry Varanoid on Monday, May 20th, 2013 | No Comments

This entry in the Spotlight On series summarizes such cases and insiders and provides recommendations for mitigating these incidents.

Ubuntu Package available to submit firewall logs to DShield, (Mon, May 20th)

By Perry Varanoid on Monday, May 20th, 2013 | No Comments

I put together a simple .deb package to install our DShield iptables client on Ubuntu.

Archive for the ‘Research & Alerts’ Category