Diaries by Keyword - SANS Internet Storm Center

Handler on Duty: Johannes Ullrich

Threat Level: green

Date	Author	Title
REMOTE ACCESS
2020-09-29	Xavier Mertens	Managing Remote Access for Partners & Contractors
2011-11-19	Pedro Bueno	Dragon Research Group (DRG) announced the white paper entitled "VNC: Threats and Countermeasures" : https://dragonresearchgroup.org/insight/vnc-tac.html
2010-10-19	Rob VandenBrink	Cyber Security Awareness Month - Day 19 - Remote Access Tools
2010-10-19	Rob VandenBrink	Cyber Security Awareness Month - Day 19 - VPN and Remote Access Tools
REMOTE
2024-06-17/a>	Xavier Mertens	New NetSupport Campaign Delivered Through MSIX Packages
2022-10-07/a>	Xavier Mertens	Critical Fortinet Vulnerability Ahead
2021-05-14/a>	Xavier Mertens	"Open" Access to Industrial Systems Interface is Also Far From Zero
2021-02-13/a>	Guy Bruneau	vSphere Replication updates address a command injection vulnerability (CVE-2021-21976) - https://www.vmware.com/security/advisories/VMSA-2021-0001.html
2020-09-29/a>	Xavier Mertens	Managing Remote Access for Partners & Contractors
2020-08-22/a>	Guy Bruneau	Remote Desktop (TCP/3389) and Telnet (TCP/23), What might they have in Common?
2019-09-24/a>	Xavier Mertens	Huge Amount of remotewebaccess.com Sites Found in Certificate Transparency Logs
2017-11-25/a>	Guy Bruneau	Exim Remote Code Exploit
2015-10-12/a>	Guy Bruneau	Critical Vulnerability in Multiple Cisco Products - Apache Struts 2 Command Execution http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20131023-struts2
2013-09-18/a>	Rob VandenBrink	Cisco DCNM Update Released
2013-02-16/a>	Lorna Hutcheson	Fedora RedHat Vulnerabilty Released
2012-08-22/a>	Adrien de Beaupre	Apple Remote Desktop update fixes no encryption issue
2012-03-16/a>	Russ McRee	MS12-020 RDP vulnerabilities: Patch, Mitigate, Detect
2011-11-28/a>	Tom Liston	A Puzzlement...
2011-11-19/a>	Pedro Bueno	Dragon Research Group (DRG) announced the white paper entitled "VNC: Threats and Countermeasures" : https://dragonresearchgroup.org/insight/vnc-tac.html
2011-08-11/a>	Guy Bruneau	BlackBerry Enterprise Server Critical Update
2010-12-19/a>	Raul Siles	Intel's new processors have a remote kill switch (Anti-Theft 3.0)
2010-10-19/a>	Rob VandenBrink	Cyber Security Awareness Month - Day 19 - Remote Access Tools
2010-10-19/a>	Rob VandenBrink	Cyber Security Awareness Month - Day 19 - Remote User VPN Tunnels - to Split or not to Split?
2010-10-19/a>	Rob VandenBrink	Cyber Security Awareness Month - Day 19 - Remote User VPN Access – Are things getting too easy, or too hard?
2010-10-19/a>	Rob VandenBrink	Cyber Security Awareness Month - Day 19 - VPN and Remote Access Tools
2010-05-12/a>	Rob VandenBrink	Adobe Shockwave Update
2010-03-15/a>	Adrien de Beaupre	Spamassassin Milter Plugin Remote Root Attack
2010-03-10/a>	Rob VandenBrink	Microsoft Security Advisory 981374 - Remote Code Execution Vulnerability for IE6 and IE7
2010-02-02/a>	Guy Bruneau	Cisco Secure Desktop Remote XSS Vulnerability
2009-11-14/a>	Adrien de Beaupre	Microsoft advisory for Windows 7 / Windows Server 2008 R2 Remote SMB DoS Exploit released
2009-11-12/a>	Rob VandenBrink	Windows 7 / Windows Server 2008 Remote SMB Exploit
2008-05-06/a>	Marcus Sachs	Industrial Control Systems Vulnerability
2008-03-13/a>	Jason Lam	Remote File Include spoof!?
2006-11-20/a>	Joel Esler	MS06-070 Remote Exploit
ACCESS
2025-03-27/a>	Johannes Ullrich	Sitecore "thumbnailsaccesstoken" Deserialization Scans (and some new reports) CVE-2025-27218
2025-01-24/a>	Jesse La Grew	[Guest Diary] How Access Brokers Maintain Persistence
2024-12-17/a>	Xavier Mertens	Python Delivering AnyDesk Client as RAT
2020-09-29/a>	Xavier Mertens	Managing Remote Access for Partners & Contractors
2019-09-24/a>	Xavier Mertens	Huge Amount of remotewebaccess.com Sites Found in Certificate Transparency Logs
2018-06-06/a>	Xavier Mertens	Converting PCAP Web Traffic to Apache Log
2016-07-03/a>	Guy Bruneau	Is Data Privacy part of your Company's Culture?
2014-10-13/a>	Lorna Hutcheson	For or Against: Port Security for Network Access Control
2014-07-28/a>	Guy Bruneau	Management and Control of Mobile Device Security
2014-07-06/a>	Richard Porter	Physical Access, Point of Sale, Vegas
2013-10-16/a>	Adrien de Beaupre	Access denied and blockliss
2013-07-04/a>	Russ McRee	Celebrating 4th of July With a Malware PCAP Visualization
2013-06-20/a>	Guy Bruneau	HP iLO3/iLO4 Remote Unauthorized Access with Single-Sign-On
2013-05-20/a>	Guy Bruneau	Sysinternals Updates for Accesschk, Procdump, RAMMap and Strings http://blogs.technet.com/b/sysinternals/archive/2013/05/17/updates-accesschk-v5-11-procdump-v6-0-rammap-v1-22-strings-v2-51.aspx
2012-12-31/a>	Manuel Humberto Santander Pelaez	How to determine which NAC solutions fits best to your needs
2011-11-22/a>	Pedro Bueno	Updates on ZeroAccess and BlackHole front...
2011-11-19/a>	Pedro Bueno	Dragon Research Group (DRG) announced the white paper entitled "VNC: Threats and Countermeasures" : https://dragonresearchgroup.org/insight/vnc-tac.html
2011-08-24/a>	Rob VandenBrink	Citrix Access Gateway Cross Site Scripting vulnerability and fix ==> http://support.citrix.com/article/CTX129971
2010-11-18/a>	Chris Carboni	Stopping the ZeroAccess Rootkit
2010-10-19/a>	Rob VandenBrink	Cyber Security Awareness Month - Day 19 - Remote Access Tools
2010-10-19/a>	Rob VandenBrink	Cyber Security Awareness Month - Day 19 - Remote User VPN Access – Are things getting too easy, or too hard?
2010-10-19/a>	Rob VandenBrink	Cyber Security Awareness Month - Day 19 - VPN and Remote Access Tools
2010-08-13/a>	Tom Liston	The Strange Case of Doctor Jekyll and Mr. ED
2010-08-05/a>	Rob VandenBrink	Access Controls for Network Infrastructure
2008-10-09/a>	Bojan Zdrnja	Watch that .htaccess file on your web site
2008-07-07/a>	Scott Fendley	Microsoft Snapshot Viewer Security Advisory

REMOTE ACCESS

REMOTE

ACCESS