You might be interested in …

Daily NCSC-FI news followup 2021-05-14

[The Irish Health Service Executive] shuts down IT systems amid significant cyber attack There has been a significant ransomware attack on the Health Service Executives (HSE) IT systems.. The HSE said it has taken the precaution of shutting down all its IT systems in order to protect them from this attack and to allow […]

Read More

[HackerNews] New TLS Attack Lets Attackers Launch Cross-Protocol Attacks Against Secure Sites

All posts, HackerNews

Researchers have disclosed a new type of attack that exploits misconfigurations in transport layer security (TLS) servers to redirect HTTPS traffic from a victim’s web browser to a different TLS service endpoint located on another IP address to steal sensitive information. The attacks have been dubbed ALPACA, short for “Application Layer Protocol Confusion – Analyzing and […]

Read More

[SANS ISC] An XML-Obfuscated Office Document (CVE-2021-40444), (Wed, Sep 22nd)

All posts, Sans-ISC

A Twitter follower sent me a link to an interesting maldoc on Malware Bazaar (thanks). It’s a Word document (OOXML) that exploits vulnerability %%CVE:2021-40444%%. If you follow the steps of my diary entry “Simple Analysis Of A CVE-2021-40444 .docx Document” you will not find an unusual URL. I’ll explain why in this diary entry. This […]

Read More

Leave a Reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.