ISC StormCast for Tuesday, May 19th 2015

By Johannes Ullrich Safari URL Bar Spoofing Vulnerability
https://isc.sans.edu/forums/diary/Address+spoofing+vulnerability+in+Safari+Web+Browser/19705/
Social Engineering Used to Compromise Oil Companies
http://www.pandasecurity.com/mediacenter/src/uploads/2015/05/oil-tanker-en.pdf
ProFTP Vulnerability Exploited
http://bugs.proftpd.org/show_bug.cgi?id=4169
USIS Breached via SAP Vulnerability
http://seclists.org/fulldisclosure/2015/May/64
IEEE Releases Guidelines to Build Security Code for Medical Devices
http://cybersecurity.ieee.org/images/files/images/pdf/building-code-for-medica-device-software-security.pdf
SANS Web Application Security Checklist
https://www.sans.org/security-resources/posters/securing-web-application-technologies-swat-2014-60 More Here