Posts
SANS ISC Diary - A new spin on the ZeroFont phishing technique
SANS ISC Diary - A new spin on the ZeroFont phishing technique
· β˜• 1 min read
A new Diary of mine was published today on the SANS Internet Storm Center website. In this one, we’ll take a look at a novel phishing technique, in which text written in zero-size font is used in order to make messages appear more trustworthy…
SANS ISC Diary - The low, low cost of (committing) cybercrime
SANS ISC Diary - The low, low cost of (committing) cybercrime
· β˜• 1 min read
A new Diary of mine was published today on the SANS Internet Storm Center website. In this one, we’ll take a look at a simple phishing which demonstrates quite well that the cost of committing cybercrime can unfortunately be extremely low…
SANS ISC Diary - From small LNK to large malicious BAT file with zero VT score
SANS ISC Diary - From small LNK to large malicious BAT file with zero VT score
· β˜• 1 min read
A new Diary of mine was published today on the SANS Internet Storm Center website. In this one, we’ll take a look at a malicious BAT file which was used in a phishing campaign last week and according to VirusTotal is still being detected as benign by all anti-virus engines it has access to…
SSL version 2.0 support on web servers in the Czech Republic
SSL version 2.0 support on web servers in the Czech Republic
· β˜• 1 min read
Last week, I published an article discussing the weakening support for SSLv2 on web servers on the global internet. While I was writing it, it occurred to me that it might also be interesting to look specifically at the situation as it relates to web servers in the Czech Republic...
SANS ISC Diary - 'Passive' analysis of a phishing attachment
SANS ISC Diary - 'Passive' analysis of a phishing attachment
· β˜• 1 min read
A new Diary of mine was published today on the SANS Internet Storm Center website. In this one, we’ll take a look at a “passive”, OPSEC-friendly approach to the analysis of HTML phishing attachments…