Internet Storm Center
Day 25: Finding and Removing Hidden Files and Directories, (Sat, Oct 25th)
Today is the last day on Eradication Phase. The topic is Finding and Removing Hidden Files and ...(more)...
MS08-067 RPC Vulnerability FAQ, (Sun, Oct 26th)
Our old friend Juha-Matti Laurio has created a FAQ on the MS08-067 RPC vulnerability. The FAQ goes a ...(more)...
Day 26: Restoring Systems from Backup, (Sat, Oct 25th)
You've identified the incident, contained the exposure, eradicated the problem, and now. ...(more)...
Yellow to Green : MS08-067, (Fri, Oct 24th)
You may have noticed that the ISC Infocon was raised from Green to Yellow. This was to highlight the ...(more)...
* Microsoft out-of-band patch - Severity Critical, (Thu, Oct 23rd)
Update #5 (updated):
As Sourcefire have their sigs available, i would recommend to use thes ...(more)...
Day - 24 : Cleaning Email Servers and Clients, (Fri, Oct 24th)
Welcome to Day 24 of the SANS ISC's participation in the Cyber Security Awareness Month. Today's top ...(more)...
Day 23 - Turning off Unused Services, (Wed, Oct 22nd)
If it's not installed, it can't be exploited. It's as simple as that ...(more)...
Day 12 - Containment: Gathering Evidence That Can be Used in Court, (Sun, Oct 12th)
Unfortunately we work events and incidents every day. Some are worse than others, but the one ...(more)...
Day 15 - Containing the Damage From a Lost or Stolen Laptop, (Wed, Oct 15th)
With disks becoming increasingly large and ridiculously cheap, data is becoming more and more mob ...(more)...
Oracle quarterly patches on black tuesday, (Tue, Oct 14th)
Oracle released it's quarterly accumulated patches today.
For those that do patch their databases, ...(more)...
October Black Tuesday Overview, (Tue, Oct 14th)
Overview of the October 2008 Microsoft patches and their status.
#
...(more)...
Day 13 - Containment: Containing on Production Systems Such as a Web Server , (Mon, Oct 13th)
The topic for today is how to perform containment on a 'mision critical' service or system that your ...(more)...
Cyber Security Awareness Month - Daily Topics, (Tue, Sep 30th)
October is Cyber Security Awareness Month and this year the SANS Internet Storm Center is going to ...(more)...
Day 8 - Global Incident Awareness, (Wed, Oct 8th)
Today, we will discuss Global Incident Awareness. I will split this topic into two parts ...(more)...
Day 5 - Identification: Events versus Incidents, (Sun, Oct 5th)
Welcome to day 5 of the Cyber Security Awareness Month and the first day of what is the second half ...(more)...
Day 4 - Preparation: What Goes Into a Response Kit, (Sat, Oct 4th)
For the fourth day of Cyber Security Awareness Month we will look at how to build a response kit.nb ...(more)...
OT: Happy Labo(u)r day!, (Mon, Sep 1st)
...(more)...
MX Records Disappearing?, (Mon, Sep 1st)
A reader wrote in telling use a few big domains (mostly .edu at this point) have had their MX record ...(more)...
The Number of Machines Controlled by Botnets Has Jumped 4x in Last 3 Months, (Mon, Sep 1st)
I was perusing some of the data put out by the Shadowserver Foundation that tracks botnets. On ...(more)...
Gustav Part IV - last list, (Mon, Sep 1st)
This will be the last list of domain names we publish related to hurricanes Gustav or Hanna. W ...(more)...
