EMAIL PASSWORD HACKS |
| 2018-08-22 | Deborah Hale | Email/password Frustration |
EMAIL |
| 2024-12-05/a> | Jesse La Grew | [Guest Diary] Business Email Compromise |
| 2024-02-05/a> | Jesse La Grew | Public Information and Email Spam |
| 2023-03-12/a> | Guy Bruneau | AsynRAT Trojan - Bill Payment (Pago de la factura) |
| 2023-02-18/a> | Guy Bruneau | Spear Phishing Handlers for Username/Password |
| 2023-01-05/a> | Brad Duncan | More Brazil malspam pushing Astaroth (Guildma) in January 2023 |
| 2022-12-30/a> | Jan Kopriva | SPF and DMARC use on GOV domains in different ccTLDs |
| 2022-08-13/a> | Guy Bruneau | Phishing HTML Attachment as Voicemail Audio Transcription |
| 2022-05-07/a> | Guy Bruneau | Phishing PDF Received in my ISC Mailbox |
| 2022-05-05/a> | Brad Duncan | Password-protected Excel spreadsheet pushes Remcos RAT |
| 2022-03-04/a> | Johannes Ullrich | Scam E-Mail Impersonating Red Cross |
| 2021-11-14/a> | Didier Stevens | External Email System FBI Compromised: Sending Out Fake Warnings |
| 2021-10-26/a> | Yee Ching Tok | Hunting for Phishing Sites Masquerading as Outlook Web Access |
| 2021-10-22/a> | Brad Duncan | October 2021 Contest: Forensic Challenge |
| 2021-05-22/a> | Xavier Mertens | "Serverless" Phishing Campaign |
| 2021-02-26/a> | Guy Bruneau | Pretending to be an Outlook Version Update |
| 2021-02-10/a> | Brad Duncan | Phishing message to the ISC handlers email distro |
| 2020-11-18/a> | Xavier Mertens | When Security Controls Lead to Security Issues |
| 2020-10-22/a> | Jan Kopriva | BazarLoader phishing lures: plan a Halloween party, get a bonus and be fired in the same afternoon |
| 2020-10-09/a> | Jan Kopriva | Phishing kits as far as the eye can see |
| 2020-09-21/a> | Jan Kopriva | Slightly broken overlay phishing |
| 2020-06-18/a> | Jan Kopriva | Broken phishing accidentally exploiting Outlook zero-day |
| 2020-05-27/a> | Jan Kopriva | Frankenstein's phishing using Google Cloud Storage |
| 2020-04-13/a> | Jan Kopriva | Look at the same phishing campaign 3 months apart |
| 2020-03-22/a> | Didier Stevens | More COVID-19 Themed Malware |
| 2020-02-10/a> | Jan Kopriva | Current PayPal phishing campaign or "give me all your personal information" |
| 2020-02-03/a> | Jan Kopriva | Analysis of a triple-encrypted AZORult downloader |
| 2020-01-16/a> | Jan Kopriva | Picks of 2019 malware - the large, the small and the one full of null bytes |
| 2019-12-15/a> | Didier Stevens | VirusTotal Email Submissions |
| 2019-12-06/a> | Jan Kopriva | Phishing with a self-contained credentials-stealing webpage |
| 2019-12-05/a> | Jan Kopriva | E-mail from Agent Tesla |
| 2019-12-04/a> | Jan Kopriva | Analysis of a strangely poetic malware |
| 2019-11-26/a> | Jan Kopriva | Lessons learned from playing a willing phish |
| 2019-10-31/a> | Jan Kopriva | EML attachments in O365 - a recipe for phishing |
| 2019-10-30/a> | Xavier Mertens | Keep an Eye on Remote Access to Mailboxes |
| 2019-10-17/a> | Jan Kopriva | Phishing e-mail spoofing SPF-enabled domain |
| 2019-04-13/a> | Johannes Ullrich | Configuring MTA-STS and TLS Reporting For Your Domain |
| 2019-04-07/a> | Guy Bruneau | Fake Office 365 Payment Information Update |
| 2019-03-21/a> | Xavier Mertens | New Wave of Extortion Emails: Central Intelligence Agency Case |
| 2019-03-06/a> | Xavier Mertens | Keep an Eye on Disposable Email Addresses |
| 2019-02-19/a> | Didier Stevens | Identifying Files: Failure Happens |
| 2019-02-11/a> | Didier Stevens | Have You Seen an Email Virus Recently? |
| 2018-12-21/a> | Lorna Hutcheson | Phishing Attempts That Bypass 2FA |
| 2018-08-23/a> | Xavier Mertens | Simple Phishing Through formcrafts.com |
| 2018-08-22/a> | Deborah Hale | Email/password Frustration |
| 2018-08-19/a> | Didier Stevens | Video: Peeking into msg files - revisited |
| 2018-08-11/a> | Didier Stevens | Peeking into msg files - revisited |
| 2018-07-23/a> | Didier Stevens | Analyzing MSG files |
| 2018-07-15/a> | Didier Stevens | Extracting BTC addresses from emails |
| 2018-06-22/a> | Lorna Hutcheson | XPS Attachment Used for Phishing |
| 2017-11-10/a> | Bojan Zdrnja | Battling e-mail phishing |
| 2017-10-15/a> | Didier Stevens | Peeking into .msg files |
| 2017-08-14/a> | Didier Stevens | Sometimes it's just SPAM |
| 2015-02-20/a> | Tom Webb | Fast analysis of a Tax Scam |
| 2014-07-09/a> | Daniel Wesemann | Who owns your typo? |
| 2014-01-31/a> | Chris Mohan | Attack on Yahoo mail accounts |
| 2014-01-24/a> | Johannes Ullrich | How to send mass e-mail the right way |
| 2014-01-08/a> | Kevin Shortt | Intercepted Email Attempts to Steal Payments |
| 2013-10-05/a> | Richard Porter | Adobe Breach Notification, Notifications? |
| 2013-03-29/a> | Chris Mohan | Fake Link removal requests |
| 2013-02-25/a> | Johannes Ullrich | Mass-Customized Malware Lures: Don't trust your cat! |
| 2012-06-15/a> | Johannes Ullrich | Authenticating E-Mail |
| 2012-02-07/a> | Johannes Ullrich | Secure E-Mail Access |
| 2011-05-01/a> | Deborah Hale | Another Potentially Malicious Email Making The Rounds |
| 2011-02-21/a> | Adrien de Beaupre | Winamp forums compromised |
| 2010-09-09/a> | Marcus Sachs | 'Here You Have' Email |
| 2010-08-29/a> | Swa Frantzen | Abandoned free email accounts |
| 2010-05-23/a> | Manuel Humberto Santander Pelaez | e-mail scam announcing Fidel Castro's funeral ... and nasty malware to your computer. |
| 2010-03-05/a> | Kyle Haugsness | False scare email proclaiming North Korea nuclear launch against Japan |
| 2009-10-15/a> | Deborah Hale | Cyber Security Awareness Month - Day 15 - Ports 995, 465, and 993 - Secure Email |
| 2009-10-09/a> | Rob VandenBrink | THAWTE to discontinue free Email Certificate Services and Web of Trust Service |
| 2009-10-08/a> | Johannes Ullrich | Cyber Security Awareness Month - Day 8 - Port 25 - SMTP |
| 2009-05-04/a> | Tom Liston | Facebook phishing malware |
| 2009-01-11/a> | Deborah Hale | The Frustration of Phishing Attacks |
| 2008-11-30/a> | Mari Nichols | Rejected Email Issues |
PASSWORD |
| 2025-01-13/a> | Johannes Ullrich | Hikvision Password Reset Brute Forcing |
| 2024-10-31/a> | Guy Bruneau | October 2024 Activity with Username chenzilong |
| 2024-10-16/a> | Johannes Ullrich | The Top 10 Not So Common SSH Usernames and Passwords |
| 2024-08-07/a> | Guy Bruneau | Same Scripts, Different Day: What My DShield Honeypot Taught Me About the Importance of Security Fundamentals [Guest Diary] |
| 2024-07-13/a> | Didier Stevens | 16-bit Hash Collisions in .xls Spreadsheets |
| 2024-06-26/a> | Guy Bruneau | What Setting Live Traps for Cybercriminals Taught Me About Security [Guest Diary] |
| 2024-02-28/a> | Johannes Ullrich | Exploit Attempts for Unknown Password Reset Vulnerability |
| 2024-01-17/a> | Jesse La Grew | Number Usage in Passwords |
| 2024-01-06/a> | Xavier Mertens | Are you sure of your password? |
| 2023-10-29/a> | Guy Bruneau | Spam or Phishing? Looking for Credentials & Passwords |
| 2023-10-15/a> | Guy Bruneau | Domain Name Used as Password Captured by DShield Sensor |
| 2023-09-29/a> | Xavier Mertens | Are You Still Storing Passwords In Plain Text Files? |
| 2023-09-05/a> | Jesse La Grew | Common usernames submitted to honeypots |
| 2023-09-02/a> | Jesse La Grew | What is the origin of passwords submitted to honeypots? |
| 2023-08-10/a> | Bojan Zdrnja | Some things never change ? such as SQL Authentication ?encryption? |
| 2023-08-04/a> | Xavier Mertens | Are Leaked Credentials Dumps Used by Attackers? |
| 2023-06-05/a> | Johannes Ullrich | Brute Forcing Simple Archive Passwords |
| 2023-04-19/a> | Rob VandenBrink | Taking a Bite Out of Password Expiry Helpdesk Calls |
| 2023-02-18/a> | Guy Bruneau | Spear Phishing Handlers for Username/Password |
| 2022-08-13/a> | Guy Bruneau | Phishing HTML Attachment as Voicemail Audio Transcription |
| 2022-05-17/a> | Xavier Mertens | Use Your Browser Internal Password Vault... or Not? |
| 2022-03-10/a> | Xavier Mertens | Credentials Leaks on VirusTotal |
| 2022-02-13/a> | Guy Bruneau | DHL Spear Phishing to Capture Username/Password |
| 2021-11-15/a> | Rob VandenBrink | Changing your AD Password Using the Clipboard - Not as Easy as You'd Think! |
| 2021-05-14/a> | Xavier Mertens | "Open" Access to Industrial Systems Interface is Also Far From Zero |
| 2021-04-24/a> | Guy Bruneau | Base64 Hashes Used in Web Scanning |
| 2021-01-06/a> | Johannes Ullrich | Scans for Zyxel Backdoors are Commencing. |
| 2020-07-26/a> | Didier Stevens | Cracking Maldoc VBA Project Passwords |
| 2020-07-13/a> | Didier Stevens | VBA Project Passwords |
| 2020-06-10/a> | Brad Duncan | Job application-themed malspam pushes ZLoader |
| 2020-04-06/a> | Didier Stevens | Password Protected Malicious Excel Files |
| 2019-11-01/a> | Didier Stevens | Tip: Password Managers and 2FA |
| 2018-12-17/a> | Didier Stevens | Password Protected ZIP with Maldoc |
| 2018-08-22/a> | Deborah Hale | Email/password Frustration |
| 2018-07-12/a> | Johannes Ullrich | New Extortion Tricks: Now Including Your Password! |
| 2017-11-28/a> | Xavier Mertens | Apple High Sierra Uses a Passwordless Root Account |
| 2017-05-17/a> | Richard Porter | Wait What? We don?t have to change passwords every 90 days? |
| 2017-04-26/a> | Johannes Ullrich | If there are some unexploited MSSQL Servers With Weak Passwords Left: They got you now (again) |
| 2017-04-10/a> | Didier Stevens | Password History: Insights Shared by a Reader |
| 2017-02-07/a> | Johannes Ullrich | My Password is [taco] Using Emojis for Stronger Passwords |
| 2016-12-07/a> | Xavier Mertens | The Passwords You Should Never Use |
| 2016-09-15/a> | Xavier Mertens | In Need of a OTP Manager Soon? |
| 2016-07-21/a> | Didier Stevens | Practice ntds.dit File |
| 2016-06-20/a> | Xavier Mertens | Using Your Password Manager to Monitor Data Leaks |
| 2015-06-26/a> | Daniel Wesemann | Cisco default credentials - again! |
| 2014-09-19/a> | Guy Bruneau | Added today in oclhashcat 131 Django [Default Auth] (PBKDF2 SHA256 Rounds Salt) Support - http://hashcat.net/hashcat/ |
| 2014-08-22/a> | Richard Porter | OCLHashCat 1.30 Released |
| 2014-08-06/a> | Johannes Ullrich | All Passwords have been lost: What's next? |
| 2014-05-22/a> | Rob VandenBrink | Another Site Breached - Time to Change your Passwords! (If you can that is) |
| 2013-11-22/a> | Rick Wanner | Tales of Password Reuse |
| 2013-07-21/a> | Guy Bruneau | Ubuntu Forums Security Breach |
| 2013-06-11/a> | Swa Frantzen | Store passwords the right way in your application |
| 2013-05-14/a> | Jim Clausing | So what passwords are those ssh scanners trying? |
| 2013-03-18/a> | Kevin Shortt | Cisco IOS Type 4 Password Issue: http://tools.cisco.com/security/center/content/CiscoSecurityResponse/cisco-sr-20130318-type4 |
| 2013-01-18/a> | Russ McRee | Interesting reads for Friday 18 JAN 2013 |
| 2013-01-04/a> | Daniel Wesemann | Blue for Reset? |
| 2012-11-15/a> | Jim Clausing | Another month another password disclosure breach |
| 2012-07-16/a> | Jim Clausing | An analysis of the Yahoo! passwords |
| 2012-06-06/a> | Jim Clausing | Potential leak of 6.5+ million LinkedIn password hashes |
| 2012-05-22/a> | Johannes Ullrich | nmap 6 released |
| 2012-01-03/a> | Rick Wanner | Analysis of the Stratfor Password List |
| 2011-10-10/a> | Tom Liston | What's In A Name? |
| 2011-08-10/a> | Johannes Ullrich | Theoretical and Practical Password Entropy |
| 2011-06-28/a> | Johannes Ullrich | Hashing Passwords |
| 2011-05-30/a> | Johannes Ullrich | Allied Telesis Passwords Leaked |
| 2010-12-28/a> | John Bambenek | Mozilla Notifies of Relatively Minor Security Breach |
| 2010-12-15/a> | Manuel Humberto Santander Pelaez | HP StorageWorks P2000 G3 MSA hardcoded user |
| 2010-12-13/a> | Deborah Hale | Gawker Media Breach of Security |
| 2010-11-26/a> | Mark Hofman | Using password cracking as metric/indicator for the organisation's security posture |
| 2010-08-27/a> | Mark Hofman | FTP Brute Password guessing attacks |
| 2010-02-25/a> | Chris Carboni | Pass The Hash |
| 2010-02-02/a> | Johannes Ullrich | Twitter Mass Password Reset due to Phishing |
| 2009-12-04/a> | Daniel Wesemann | The economics of security advice (MSFT research paper) |
| 2009-11-02/a> | Daniel Wesemann | Password rules: Change them every 25 years |
| 2009-10-23/a> | Johannes Ullrich | Little new tool: reversing md5/sha1 hashes http://isc.sans.org/tools/reversehash.html |
| 2008-09-22/a> | Jim Clausing | Lessons learned from the Palin (and other) account hijacks |
HACKS |
| 2018-08-22/a> | Deborah Hale | Email/password Frustration |
| 2008-05-08/a> | Joel Esler | COMPROMISED FILE IN VIETNAMESE LANGUAGE PACK FOR FIREFOX 2 |
| 2008-03-12/a> | Joel Esler | Adobe security updates |
| 2006-10-17/a> | Arrigo Triulzi | Hacking Tor, the anonymity onion routing network |
