[SANS ISC] Video: Phishing ZIP With Malformed Filename, (Sun, Oct 31st)

This is a video for my diary entry “Phishing ZIP With Malformed Filename“, where I show how to use my zipdump.py tool to visualize the special characters inside malformed filenames.

Here is the output of my zipdump tool:

Didier Stevens
Senior handler
Microsoft MVP
blog.DidierStevens.com

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Source: Read More (SANS Internet Storm Center, InfoCON: green)

You might be interested in …

[SecurityWeek] Attackers Encrypt VMware ESXi Server With Python Ransomware

All posts, Security Week

A recently observed attack employed a Python-based ransomware variant to target an organization’s VMware ESXi server and encrypt all virtual disks, Sophos reports. read more Source: Read More (SecurityWeek RSS Feed)

Read More

Daily NCSC-FI news followup 2021-04-17

Major BGP leak disrupts thousands of networks globally www.bleepingcomputer.com/news/security/major-bgp-leak-disrupts-thousands-of-networks-globally/ A large BGP routing leak that occurred last night disrupted the connectivity for thousands of major networks and websites around the world. Although the BGP routing leak occurred in Vodafone’s autonomous network (AS55410) based in India, it has impacted U.S. companies, including Google, according to sources. […]

Read More

[TheRecord] Apple sues spyware maker NSO Group

Apple announced earlier today that it filed a lawsuit against NSO Group, the Israeli company behind Pegasus, a powerful spyware and surveillance platform capable of infecting and taking over even the most secure and up-to-date iPhones. Apple cited the repeated abuse of this tool to breach and spy on innocent victims by oppressive regimes. “Researchers […]

Read More