Talk With an Expert

Internet Storm Center Tech Corner

Quick Tip for Artificially Inflated PE Files

https://isc.sans.edu/diary/Quick+Tip+For+Artificially+Inflated+PE+Files/30370

Malware Dropped Through a ZPAQ Archive

https://isc.sans.edu/diary/Malware+Dropped+Through+a+ZPAQ+Archive/30366

Multiple Layers of Anti-Sandboxing Techniques

https://isc.sans.edu/diary/Multiple+Layers+of+AntiSandboxing+Techniques/30362

Apache ActiveMQ Flaw Exploited

https://activemq.apache.org/security-advisories.data/CVE-2023-46604-announcement.txt

https://www.rapid7.com/blog/post/2023/11/01/etr-suspected-exploitation-of-apache-activemq-cve-2023-46604/

Critical Firepower Vulnerability

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-cmd-inj-29MP49hN

Dozens of npm Packages Caught Attempting to Deploy Reverse Shell

https://blog.phylum.io/dozens-of-npm-packages-caught-attempting-to-deploy-reverse-shell/

CVSS 4.0 Now Official

https://www.first.org/cvss/v4-0/index.html

MOZI Botnet Kill Switch

https://www.welivesecurity.com/en/eset-research/who-killed-mozi-finally-putting-the-iot-zombie-botnet-in-its-grave/

URL Shorteners in .us

https://securityonline.info/infoblox-uncovers-malicious-wave-in-us-domain-registrations/

Impersonating Slack Users

https://falconspy.org/redteam/tradecraft/2023/10/05/2023-10-05-Slack-Impersonation.html

CVE-2023-22518 Improper Authorization Vulnerability in Confluence Data Center and Server

https://confluence.atlassian.com/security/cve-2023-22518-improper-authorization-vulnerability-in-confluence-data-center-and-server-1311473907.html

Malvertisement Promotes Malicious PyCharm Version

https://www.malwarebytes.com/blog/threat-intelligence/2023/10/malvertising-via-dynamic-search-ads-delivers-malware-bonanza

Thorn SFTP Gateway Java Deserialization RCE CVE-2016-1000027 CVE-2023-47174

https://help.thorntech.com/docs/sftp-gateway-gcp-3.0/gcp-java-deserialization-rce/

View Older Issues

Catch up on recent editions of NewsBites or browse our full archive of expert-curated cybersecurity news.

Browse Archive