ISC StormCast for Monday, April 20th 2015

By Johannes Ullrich RSA Panel
https://www.rsaconference.com/events/us15/agenda/sessions/1731/the-six-most-dangerous-new-attack-techniques-and
Extracting Compressed Streams From PDFs
https://isc.sans.edu/forums/diary/Handling+Special+PDF+Compression+Methods/19597/
Minecraft Server DoS Vulnerability
http://blog.ammaraskar.com/minecraft-vulnerability-advisory/
BeEf used to Exploit iNotes Flaw
http://blog.beefproject.com/2015/04/the-email-thats-watching-you.html
Malware Memory Footprint Analysis
https://github.com/aim4r/VolDiff More Here      

ISC StormCast for Friday, April 17th 2015

By Johannes Ullrich HTTP.sys Vulnerability Update
https://isc.sans.edu/forums/diary/MS15034+HTTPsys+IIS+DoS+And+Possible+Remote+Code+Execution+PATCH+NOW/19583/
HTTP.sys Webcast
https://www.sans.org/webcasts/isc-threat-update-20150416-100152
Teslacrypt Ransom Ware
https://isc.sans.edu/forums/diary/Exploit+kits+still+pushing+Teslacrypt+ransomware/19581/
FAA Report Warns of Cyber Threats Against Aviation
http://www.gao.gov/products/GAO-15-370
Virginia Disqualifies Vulnerable Voting Machines
https://threatpost.com/virginia-voting-machines-exposed-to-simple-potentially-election-altering-hacks-since-2004/112297
More Here      

ISC StormCast for Thursday, April 16th 2015

By Johannes Ullrich HTTP.sys Vulnerability
https://isc.sans.edu/forums/diary/MS15034+HTTPsys+IIS+DoS+And+Possible+Remote+Code+Execution+PATCH+NOW/19583
Cisco Desktop Cache Cleaner Remote Execution Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150415-csd
Oracle Critical Patch Update
http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html More Here      

ISC StormCast for Tuesday, April 14th 2015

By Johannes Ullrich Ruby SSL Wildcard Certificate Validation Bug
https://www.ruby-lang.org/en/news/2015/04/13/ruby-openssl-hostname-matching-vulnerability/
Simda Botnet Takedown
http://blog.trendmicro.com/trendlabs-security-intelligence/simda-a-botnet-takedown/
Simda Check: https://checkip.kaspersky.com
Amazon Web Services Worried About Careless Customers
http://www.theregister.co.uk/2015/04/13/aws_security_sleepless_nights/ More Here