Securely Access Your Desktop By NOT VPN’ing.

I have been thinking lately on how I can access my home desktop (don’t ask me why I wan’t to do this) or my router/firewall config (which is not directly accessible to internet.

On this article, let’s explore some ideas on how we can accomplish this without running a VPN server or subscribing to any third-party remote access services.

… stay tuned

 

ISC StormCast for Tuesday, February 20th 2018

By Johannes B. Ullrich, Ph.D. Apple Releases Fix for Unicode Messaging DoS Flaw in All Operating Systems
https://support.apple.com/en-us/HT208534
Flight Simulator Mod Company Uses Password Stealer to “Fight Back”
https://www.reddit.com/r/flightsim/comments/7yh4zu/fslabs_a320_installer_seems_to_include_a_chrome/
https://forums.flightsimlabs.com/index.php?/announcement/10-a320-x-drm-clarification/
Bypassing Microsoft’s Anti Malware Scan Interface
http://standa-note.blogspot.com/2018/02/amsi-bypass-with-null-character.html
More Here      

ISC StormCast for Monday, February 19th 2018

By Johannes B. Ullrich, Ph.D. Inspecting Malicious MSI Files
https://isc.sans.edu/forums/diary/Malware+Delivered+via+Windows+Installer+Files/23349/
Monero Miner Injected via Jenkins Flaw
https://research.checkpoint.com/jenkins-miner-one-biggest-mining-operations-ever-discovered/
Microsoft Edge Arbitrary Code Guard Bypass
https://bugs.chromium.org/p/project-zero/issues/detail?id=1435
macOS APFS May Lose Data
https://bombich.com/blog/2018/02/15/macos-may-lose-data-on-apfs-formatted-disk-images
More Here      

ISC StormCast for Friday, February 16th 2018

By Johannes B. Ullrich, Ph.D. Skype Update Vulnerability Fixed in October
https://answers.microsoft.com/en-us/skype/forum/skype_newsms/update-on-installer-for-skype-for-windows-desktop/242f1415-1399-42e1-a6a2-cd535c8b7ff8?tm=1518635969608&auth=1
iOS Indian Character DoS
http://www.openradar.me/37458268
Executing Code in Word Without Macros
https://www.trustwave.com/Resources/SpiderLabs-Blog/Multi-Stage-Email-Word-Attack-without-Macros/
Phishing Via Google Ads Against Blockchain.info
http://blog.talosintelligence.com/2018/02/coinhoarder.html
More Here      

ISC StormCast for Thursday, February 15th 2018

By Johannes B. Ullrich, Ph.D. Meltdown Prime and SpectrePrime: More CPU Exploits Coming
https://arxiv.org/abs/1802.03802
Winter Olympics Attack Launched via IT Provider
https://www.cyberscoop.com/atos-olympics-hack-olympic-destroyer-malware-peyongchang/
OpenSSL Releases TLS 1.3 Alpha as Part of OpenSSL 1.1.1 pre release 1
https://www.openssl.org/news/openssl-1.1.1-notes.html
Double Door Botnet
https://blog.newskysecurity.com/doubledoor-iot-botnet-bypasses-firewall-as-well-as-modem-security-using-two-backdoor-exploits-88457627306d
More Here