Select Page

Soc in a Box

Well not really, but I’m going to write a series of posts that will all tie together, which can be a very useful tool for anyone interested in having a security home lab, or even in a new or established security operations centre. I am going to be using open...

Talos Update on M.E.Doc

http://blog.talosintelligence.com/2017/07/the-medoc-connection.html?m=1 Summary The Nyetya attack was a destructive ransomware variant that affected many organizations inside of Ukraine and multinational corporations with operations in Ukraine. In cooperation with...

UIWIX Ransomware

It was just a matter of time until other organisations or individuals followed the path set by WannaCry last weekend. Seems there is another variant of ransomware doing the rounds which is exploiting the same loop hole as WannaCry is using port 445 to enumerate and...

Infected Webpage

hxxp://petroffpianostudio[.]com/ (This may now be cleaned up at the time of posting) It looks like the the aforementioned webpage is infected with a redirect to download suspect files Traffic observed after the infection suggests that it will attempt to download...