SANS Internet Storm Center; Cooperative Network Security Community

Diary Archive Jun 2007

Search Diaries:

2003	Jan	Feb	Mar	Apr	May	Jun	Jul	Aug	Sep	Oct	Nov	Dec
2004	Jan	Feb	Mar	Apr	May	Jun	Jul	Aug	Sep	Oct	Nov	Dec
2005	Jan	Feb	Mar	Apr	May	Jun	Jul	Aug	Sep	Oct	Nov	Dec
2006	Jan	Feb	Mar	Apr	May	Jun	Jul	Aug	Sep	Oct	Nov	Dec
2007	Jan	Feb	Mar	Apr	May	Jun	Jul	Aug	Sep	Oct	Nov	Dec
2008	Jan	Feb	Mar	Apr	May	Jun	Jul	Aug	Sep	Oct	Nov	Dec
2009	Jan	Feb	Mar	Apr	May	Jun	Jul	Aug	Sep	Oct	Nov

Date	Author	Title
2007-06-01	Swa Frantzen	PHP 5.2.3 released
2007-06-01	Johannes Ullrich	Stupid XSS mistake, and why its so hard to write good code
2007-06-01	Johannes Ullrich	Attributing Attacks
2007-06-01	Johannes Ullrich	Massive list of compromised sites
2007-06-02	Bojan Zdrnja	p0f, spam detection and OOF e-mails
2007-06-03	Swa Frantzen	IIS 5.0 authentication bypass exploit -- CVE-2007-2815
2007-06-03	Swa Frantzen	Invalid ssl certs ...
2007-06-04	Robert Danford	New Malware SPAM
2007-06-04	Robert Danford	Firefox and IE Zero Days
2007-06-05	Adrien de Beaupre	Iframe > malicious javascript > trojan
2007-06-06	Chris Carboni	More PHP Phun
2007-06-06	Chris Carboni	Sun JRE Vulnerabilities
2007-06-07	Bojan Zdrnja	Analyzing (malicious) SWF file actions
2007-06-07	Bojan Zdrnja	A Java exploit
2007-06-07	Bojan Zdrnja	DDoS on anti-spam groups
2007-06-08	Bojan Zdrnja	2 Yahoo! Messenger vulnerabilities (with PoCs)
2007-06-08	Lenny Zeltser	Fake Microsoft Security Bulletin -> Malicious Browser Add-On
2007-06-08	Lenny Zeltser	Possible FAA computer glitches?
2007-06-10	Bojan Zdrnja	Yahoo! Messenger exploits seen in the wild
2007-06-10	Pedro Bueno	Malware Analysis - handling base64
2007-06-11	Mark Hofman	Internal Audits, many of us hate them, but....
2007-06-12	Johannes Ullrich	Beta Software (Safari for Windows)
2007-06-12	Johannes Ullrich	June 2007, Microsoft Patch Tuesday Overview.
2007-06-13	Maarten Van Horenbeeck	Investigating and responding to suspicious Office files
2007-06-13	Maarten Van Horenbeeck	FBI's Operation Bot Roast
2007-06-13	Maarten Van Horenbeeck	IRS goes FTC
2007-06-14	William Stearns	Office of Cyber Public Health?
2007-06-15	donald smith	BBB=>IRS=>FTC=>Proforma \| don't open that invoice!
2007-06-15	donald smith	safari update
2007-06-16	Maarten Van Horenbeeck	Attack involving .hk domains
2007-06-16	Mark Hofman	New Hacker Challenge for you all
2007-06-18	Lorna Hutcheson	Massive MPACK Compromise
2007-06-18	Marcus Sachs	Vulnerability in Trillian
2007-06-19	Lorna Hutcheson	PHP Exploit Code in a GIF
2007-06-19	Kyle Haugsness	PHP code in GIF (Part 2)
2007-06-20	Jim Clausing	Apple TV security update
2007-06-20	Jim Clausing	Other miscellaneous stuff I've come across recently
2007-06-20	Maarten Van Horenbeeck	Pump and dump scams now in PDF
2007-06-20	Marcus Sachs	MPack Analysis
2007-06-21	William Stearns	Summary of TCP services on your network
2007-06-22	Bojan Zdrnja	Fake Adobe Shockwave Player download page
2007-06-22	Marcus Sachs	Hacking Harry
2007-06-22	Marcus Sachs	Active Banner Ads
2007-06-23	Marcus Sachs	More Hostile Advertisement Filtering
2007-06-23	Kyle Haugsness	Exploit against MS07-033 being used in the wild
2007-06-24	Tony Carothers	Apple Releases Patch for Cross-Site Scripting Vulnerability
2007-06-24	Tony Carothers	Blacklists & Politics
2007-06-26	Johannes Ullrich	Preventing spoofed internal e-mail
2007-06-26	Johannes Ullrich	Spam volume
2007-06-25	Adrien de Beaupre	Blocking spoofed internal email from external sources
2007-06-26	donald smith	FAKE Microsoft patch email -> Fake Spyware Doctor!
2007-06-26	Scott Fendley	Microsoft Re-Releases MS07-022
2007-06-26	Johannes Ullrich	MySpace Flux Malware
2007-06-28	Lorna Hutcheson	Riding out yet Another Storm Wave
2007-06-29	Scott Fendley	Bootable USB Security Distro on USB Key
2007-06-29	Scott Fendley	ReAssure Project
2007-06-30	Brian Granier	The wave continues - Subject line variation
2007-06-30	Brian Granier	Tick tock - where has the time gone

Handler's Diary: IE6 and IE7 0-Day Reported;

Diary Archive Jun 2007