Full Disclosure list shuts down, (Wed, Mar 19th)

 SANS Internet Storm Center, Security Alerts  Comments Off on Full Disclosure list shuts down, (Wed, Mar 19th)
Mar 192014
 

The Full Disclosure mailing list which is at times an interesting source of information, other times entertainment and sometimes a source of frustration is shutting down.  John Cartwright posted a message announcing the closure on the site (http://seclists.org/fulldisclosure/2014/Mar/332).  

I for one thank John and Len for the list.  It is a shame to see it go.  I'll miss the technical components.  I won't miss the reasons for taking this decision. 

M

(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Mozilla released updates for Firefox ( v 28.0), Thunderbird (v 24.4) and Firefox Extended Support Release (ESR) updates to 24.4.0 (Fixes include the issues highlighted at the pwn2own contest.), (Wed, Mar 19th)

 SANS Internet Storm Center, Security Alerts  Comments Off on Mozilla released updates for Firefox ( v 28.0), Thunderbird (v 24.4) and Firefox Extended Support Release (ESR) updates to 24.4.0 (Fixes include the issues highlighted at the pwn2own contest.), (Wed, Mar 19th)
Mar 182014
 

(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Call for packets dest 5000 or source 6000, (Tue, Mar 18th)

 SANS Internet Storm Center, Security Alerts  Comments Off on Call for packets dest 5000 or source 6000, (Tue, Mar 18th)
Mar 182014
 

There are two events I'm interested in following up at the moment.  A few reports mentioned that scans to destination port 5000 seem to be popular at the moment. (https://isc.sans.edu/port.html?port=5000).  So if you have a few spare packets that would be great.  In this instance I'm not looking for log records only pcaps.  

Another reader mentioned scans from source port 6000 going to numerous ports on their infrastructure, but from different IP addresses. eg.  IP address A  scanning target 1089-1099.  IP address B scanning target 1100-1110, etc.  If you have log records or packets for trafic from source port 6000 to multiple ports or IP addresses in your environment I'd be interested in taking a look.  

We've seen both of these previously, but certainly like to see if it is the same or something different.  

Thanks

Mark H 

(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

ISC StormCast for Friday, March 14th 2014 http://isc.sans.edu/podcastdetail.html?id=3891, (Fri, Mar 14th)

 SANS Internet Storm Center, Security Alerts  Comments Off on ISC StormCast for Friday, March 14th 2014 http://isc.sans.edu/podcastdetail.html?id=3891, (Fri, Mar 14th)
Mar 132014
 

(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Adobe Updates: Flash Player, (Tue, Mar 11th)

 SANS Internet Storm Center, Security Alerts  Comments Off on Adobe Updates: Flash Player, (Tue, Mar 11th)
Mar 112014
 

Adobe released a new version of Flash Player as part of today's patch Tuesday. No details are available yet. We will update this diary once the details become available. Note that this will also affect browsers like Chrome that include an embeded version of Flash.

 

——
Johannes B. Ullrich, Ph.D.
SANS Technology Institute
Twitter

(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

%d bloggers like this: