ISC Stormcast For Friday, May 16th, 2025 https://isc.sans.edu/podcastdetail/9454, (Fri, May 16th) 该页面显示值班人员信息（Guy Bruneau）、绿色威胁级别以及即将举行的“Application Security”课程（华盛顿特区7月14日至19日）。还包括播客链接、数据资源（如端口活动、威胁feeds）及工具（如DShield传感器）。... 2025-5-16 02:0:3 | 阅读: 14 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu jul feeds security 19th

ISC Stormcast For Thursday, May 15th, 2025 https://isc.sans.edu/podcastdetail/9452, (Thu, May 15th) ISC Stormcast播客讨论了值班情况及威胁级别为绿色，并提供了课程安排及相关资源链接。... 2025-5-15 02:0:2 | 阅读: 14 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu feeds isc papers jul 14th

Web Scanning SonicWall for CVE-2021-20016 - Update, (Wed, May 14th) 作者记录了针对 SonicWall 的扫描活动增长情况，并指出过去14天内多个IP地址进行了探测，其中三个活跃IP来自同一子网。... 2025-5-15 01:23:29 | 阅读: 16 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu isc diary weblogs security urlhistory

Another day, another phishing campaign abusing google.com open redirects, (Wed, May 14th) read file error: read notes: is a directory... 2025-5-14 10:26:57 | 阅读: 21 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu travel clk phishing security redirectors

ISC Stormcast For Wednesday, May 14th, 2025 https://isc.sans.edu/podcastdetail/9450, (Wed, May 14th) 文章描述了网络威胁监控与安全相关内容，包括值班人员信息、威胁级别状态、播客内容及安全课程安排，并提供了多种安全工具和服务链接。... 2025-5-14 02:0:2 | 阅读: 13 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu 14th feeds 19th isc papers

Microsoft Patch Tuesday: May 2025, (Tue, May 13th) read file error: read notes: is a directory... 2025-5-13 17:57:17 | 阅读: 169 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu remote microsoft windows elevation

ISC Stormcast For Tuesday, May 13th, 2025 https://isc.sans.edu/podcastdetail/9448, (Tue, May 13th) read file error: read notes: is a directory... 2025-5-13 02:0:2 | 阅读: 12 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu jul isc security 19th 14th

Apple Updates Everything: May 2025 Edition, (Mon, May 12th) Apple发布了针对其所有操作系统的更新，修复了65个漏洞，包括已被利用的CVE-2025-31200，并为旧版本操作系统提供了补丁。... 2025-5-12 20:30:6 | 阅读: 137 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu affects maliciously memory termination webkit

It Is 2025, And We Are Still Dealing With Default IoT Passwords And Stupid 2013 Router Vulnerabilities, (Mon, May 12th) Unipi Technologies开发用于家庭自动化、楼宇管理和工业控制的可编程逻辑控制器模块，基于定制Linux平台Marvis。近期发现攻击者利用默认凭据及Netgear旧漏洞尝试入侵其设备，并部署Mirai恶意软件。... 2025-5-12 13:49:21 | 阅读: 20 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu ssh unipi netgear ancient maintained

ISC Stormcast For Monday, May 12th, 2025 https://isc.sans.edu/podcastdetail/9446, (Mon, May 12th) read file error: read notes: is a directory... 2025-5-12 01:42:54 | 阅读: 11 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu security 19th isc papers

Steganography Challenge: My Solution, (Sat, May 10th) 作者在解决隐写术挑战时无法恢复消息，分析后发现需转置图像数据并编写工具完成解码过程，成功提取隐藏信息。... 2025-5-10 10:33:58 | 阅读: 15 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu transpose 1195 pngdump translate 642

ISC Stormcast For Friday, May 9th, 2025 https://isc.sans.edu/podcastdetail/9444, (Fri, May 9th) Xavier Mertens值班，威胁级别为绿色；提供应用安全课程、播客及数据工具资源。... 2025-5-9 03:35:13 | 阅读: 12 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu jul 14th isc 19th

No Internet Access? SSH to the Rescue!, (Thu, May 8th) 文章介绍了一种通过SSH隧道和动态端口转发技术，在受限Linux虚拟机上实现互联网访问的方法。利用两台设备的SSH连接创建反向隧道，并配置代理环境变量后，成功通过工作站访问互联网。... 2025-5-8 13:8:13 | 阅读: 17 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu ssh client security 65022 1080

ISC Stormcast For Thursday, May 8th, 2025 https://isc.sans.edu/podcastdetail/9442, (Thu, May 8th) read file error: read notes: is a directory... 2025-5-8 03:25:14 | 阅读: 11 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu security feeds papers 14th 19th

Example of "Modular" Malware, (Wed, May 7th) 文章介绍了恶意软件如何通过动态链接库（DLL）实现模块化功能扩展。攻击者利用按需加载DLL的方式，在运行时从C2服务器获取特定模块（如密码窃取器或 webcam 模块），从而减少恶意软件体积并降低被检测的风险。... 2025-5-7 05:55:35 | 阅读: 12 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu webcam holder channelid activator loaded

ISC Stormcast For Wednesday, May 7th, 2025 https://isc.sans.edu/podcastdetail/9440, (Wed, May 7th) read file error: read notes: is a directory... 2025-5-7 03:35:15 | 阅读: 15 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu 14th security jul feeds

Python InfoStealer with Embedded Phishing Webserver, (Tue, May 6th) 这篇文章介绍了一种信息窃取恶意软件（Infostealer），其功能包括反调试、持久化、数据扫描和外泄。该恶意软件通过Python脚本实现，并嵌入了Flask服务器用于伪装钓鱼网站以窃取用户凭证。所有数据均加密后发送至Telegram频道。该脚本由土耳其威胁行为者开发，检测率较低。... 2025-5-6 06:2:58 | 阅读: 30 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu threading flask braljavm placeholder

ISC Stormcast For Tuesday, May 6th, 2025 https://isc.sans.edu/podcastdetail/9438, (Tue, May 6th) 该网页显示值班人员Xavier Mertens及绿色威胁级别，包含应用安全课程安排（华盛顿2025年7月14日至19日）、播客链接及导航栏功能（如首页、日记、播客等）。... 2025-5-6 03:20:14 | 阅读: 13 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu security 19th jul 14th

"Mirai" Now Exploits Samsung MaginINFO CMS (CVE-2024-7399), (Mon, May 5th) read file error: read notes: is a directory... 2025-5-5 20:52:4 | 阅读: 38 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu boatnet ohshit magicinfo hiddenbin wtf

ISC Stormcast For Monday, May 5th, 2025 https://isc.sans.edu/podcastdetail/9436, (Mon, May 5th) ISC Stormcast播客于2025年5月5日发布，值班处理员为Didier Stevens，当前威胁级别为绿色。... 2025-5-5 03:50:16 | 阅读: 16 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu jul 14th security 19th papers