Select Page

Soc in a Box

Well not really, but I’m going to write a series of posts that will all tie together, which can be a very useful tool for anyone interested in having a security home lab, or even in a new or established security operations centre. I am going to be using open...

Backdoor in M.E.Doc Application

I came across an interesting article today, with regards to the Petya / NotPetya cyber attack from last week.  This is a very good write up and analysis of how the organisation M.E.Doc appears to have been compromised and used to spread the malware in a series of...

UIWIX Ransomware

It was just a matter of time until other organisations or individuals followed the path set by WannaCry last weekend. Seems there is another variant of ransomware doing the rounds which is exploiting the same loop hole as WannaCry is using port 445 to enumerate and...

WannaCrypt Ransomware

In what has been big news over the past 24 hours.  Especially here in the UK is that the NHS has been hit with a large ransomware attack. http://www.bbc.co.uk/news/technology-39901382 http://blog.talosintelligence.com/2017/05/wannacry.html?m=1 This is a pretty good...

Infected Webpage

hxxp://petroffpianostudio[.]com/ (This may now be cleaned up at the time of posting) It looks like the the aforementioned webpage is infected with a redirect to download suspect files Traffic observed after the infection suggests that it will attempt to download...