Latest posts
-
ISC Stormcast For Wednesday, August 20th, 2025 https://ift.tt/R3bsV52, (Wed, Aug 20th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. from SANS Internet Storm Center, InfoCON: green https://ift.tt/8G5dQTp via IFTTT
-
Increased Elasticsearch Recognizance Scans, (Tue, Aug 19th)
I noticed an increase in scans that appear to try to identify Elasticsearch instances. Elasticsearch is not a new target. Its ability to easily store and manage JSON data, combined with a simple HTTP API, makes it a convenient tool to store data that is directly accessible from the browser via JavaScript. Elasticsearch has, in…
-
ISC Stormcast For Tuesday, August 19th, 2025 https://ift.tt/ke6OlTC, (Tue, Aug 19th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. from SANS Internet Storm Center, InfoCON: green https://ift.tt/Im01Fuo via IFTTT
-
Keeping an Eye on MFA-Bombing Attacks, (Mon, Aug 18th)
I recently woke up (as one does each day, hopefully) and saw a few Microsoft MFA prompts had pinged me overnight. Since I had just awakened, I just deleted them, then two minutes later clued in – this means that one of my passwords was compromised, and I had no idea which site the compromised…
-
ISC Stormcast For Monday, August 18th, 2025 https://ift.tt/XtLdy9i, (Mon, Aug 18th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. from SANS Internet Storm Center, InfoCON: green https://ift.tt/CjYZlqw via IFTTT
-
ISC Stormcast For Friday, August 15th, 2025 https://ift.tt/3pREPdl, (Fri, Aug 15th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. from SANS Internet Storm Center, InfoCON: green https://ift.tt/OvNjPts via IFTTT
-
SNI5GECT: Sniffing and Injecting 5G Traffic Without Rogue Base Stations, (Thu, Aug 14th)
As the world gradually adopts and transitions to using 5G for mobile, operational technology (OT), automation and Internet-of-Things (IoT) devices, a secure 5G network infrastructure remains critical. Recently, the Automated Systems SEcuriTy (ASSET) Research Group have released a new framework named SNI5GECT [pronounced as Sni-f-Gect (sniff + 5G + inject)] that enables users of the…
-
ISC Stormcast For Monday, August 11th, 2025 https://ift.tt/pNSUlnE, (Mon, Aug 11th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. from SANS Internet Storm Center, InfoCON: green https://ift.tt/wtOWN8H via IFTTT
-
Google Paid Ads for Fake Tesla Websites, (Sun, Aug 10th)
In recent media events, Tesla has demoed progressively more sophisticated versions of its Optimus robots. The sales pitch is pretty simple: "Current AI" is fun, but what we really need is not something to create more funny kitten pictures. We need AI to load and empty dishwashers, fold laundry, and mow lawns. But the robot…
-
ISC Stormcast For Friday, August 8th, 2025 https://ift.tt/69OxfPI, (Fri, Aug 8th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. from SANS Internet Storm Center, InfoCON: green https://ift.tt/LIEea2j via IFTTT