Talk With an Expert

Internet Storm Center Tech Corner

Visual Examples of Code Injection

https://isc.sans.edu/diary/Visual+Examples+of+Code+Injection/30388

Example of a Phishing Campaign Project File

https://isc.sans.edu/diary/Example+of+Phishing+Campaign+Project+File/30384

What's Normal: New uses of DNS, Discovery of Designated Resolvers (DDR)

https://isc.sans.edu/diary/Whats+Normal+New+uses+of+DNS+Discovery+of+Designated+Resolvers+DDR/30380

SysAid Exploited by Cl0p Ransomware (CVE-2023-47246)

https://www.sysaid.com/blog/service-desk/on-premise-software-security-vulnerability-notification

WS_FTP Server Update CVE-2023-42659

https://community.progress.com/s/article/WS-FTP-Server-Service-Pack-November-2023

Malvertiser copies PC news site to delivery infostealer

https://www.malwarebytes.com/blog/threat-intelligence/2023/11/malvertiser-copies-pc-news-site-to-deliver-infostealer

pyArrow/Apache Arrow Vulnerability

https://lists.apache.org/thread/yhy7tdfjf9hrl9vfrtzo8p2cyjq87v7n

Cryptomining with Microsoft Azure Automation Services

https://www.safebreach.com/blog/cryptocurrency-miner-microsoft-azure

Windows 11 Insider Changing Firewall Behaviour

https://blogs.windows.com/windows-insider/2023/11/08/announcing-windows-11-insider-preview-build-25992-canary-channel/

CISA Adds SLP Vulnerability to Known Exploited Vulnerability List

https://www.cisa.gov/news-events/alerts/2023/11/08/cisa-adds-one-known-exploited-vulnerability-catalog

BlueNoroff macOS Malware

https://www.jamf.com/blog/bluenoroff-strikes-again-with-new-macos-malware/

Emphasizing Security by Default with Advanced Microsoft Authenticator Features

https://techcommunity.microsoft.com/t5/microsoft-entra-azure-ad-blog/emphasizing-security-by-default-with-advanced-microsoft/ba-p/3773130

View Older Issues

Catch up on recent editions of NewsBites or browse our full archive of expert-curated cybersecurity news.

Browse Archive