I reviewed a filename I see regularly uploaded to my DShield sensor eyshcjdmzg that have been seeing since the 1 October 2023 which has multiple hashes and has been labeled as trojan.xorddos/ddos...
Yesterday, I talked about attacks against a relatively recent D-Link NAS vulnerability. Today, scanning my honeypot logs, I found an odd URL that I didnx26;#;39;t recognize. The vulnerability ...
SANS Internet Storm Center - Cooperative Cyber Security Monitor
End of March, NetworkSecurityFish disclosed a vulnerability in various D-Link NAS devices . The vulnerability allows access to the device using the user "messagebus" without credentials. The samp...
SANS Internet Storm Center - Cooperative Cyber Security Monitor
SANS Internet Storm Center - Cooperative Cyber Security Monitor
SANS Internet Storm Center - Cooperative Cyber Security Monitor
Ix26;#;39;ve been working on comparing data from different DShield honeypots to understand differences when the honeypots reside on different networks. One point of comparison is malware subm...
SANS Internet Storm Center - Cooperative Cyber Security Monitor
A while back I got an email from Perry, one of our readers who was having a problem using my cvescan script, which I covered in a 3 part story back in 2021: