Another Universal Linux Local Privilege Escalation (LPE) Vulnerability: Dirty Frag, (Fri, May 8th) Less than two weeks after the public disclosure of the Copy Fail vulnerability (CVE-2026-31431), an... 2026-5-8 07:50:1 | 阅读: 45 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu frag dirty rxrpc 2026

ISC Stormcast For Friday, May 8th, 2026 https://isc.sans.edu/podcastdetail/9924, (Fri, May 8th) 2026-5-8 02:0:3 | 阅读: 32 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu teaching johannes isc duty

ISC Stormcast For Thursday, May 7th, 2026 https://isc.sans.edu/podcastdetail/9922, (Thu, May 7th) 2026-5-7 02:0:2 | 阅读: 41 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu teaching isc johannes 7th

An Adaptive Cyber Analytics UI for Web Honeypot Logs [Guest Diary], (Wed, May 6th) [This is a Guest Diary by Eric Roldan, an ISC intern as part of the SANS.edu BACS program]Through... 2026-5-7 01:8:0 | 阅读: 41 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu llm bespoke claude shout recognizing

ISC Stormcast For Wednesday, May 6th, 2026 https://isc.sans.edu/podcastdetail/9920, (Wed, May 6th) 2026-5-6 02:0:3 | 阅读: 30 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu teaching 2026 johannes feeds papers

SSL.com rotates their root certificate today, (Tue, May 5th) I just got an email from SSL.com last night, they are rotating  out their root certificate today (M... 2026-5-5 11:39:45 | 阅读: 31 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu client anchors transition usual

Cleartext Passwords in MS Edge? In 2026?, (Mon, May 4th) Yup, that is for real.For me, this started with a post in X at hxxps://x.com/intcyberdigest/statu... 2026-5-5 11:38:3 | 阅读: 44 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu security comhttps passwords memory

ISC Stormcast For Tuesday, May 5th, 2026 https://isc.sans.edu/podcastdetail/9918, (Tue, May 5th) 2026-5-5 02:0:2 | 阅读: 26 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu papers teaching johannes isc feeds

TeamPCP Weekly Analysis: 2026-W18 (2026-04-27 through 2026-05-03), (Mon, May 4th) SummaryThe most significant development of the week was the April 29 to 30 Mini Shai-Hulud worm,... 2026-5-4 17:12:18 | 阅读: 53 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu teampcp vect shai hulud 2026

DShield Honeypot Update, (Mon, May 4th) This week, I will release a few updates to our DShield honeypot. The update should happen automatic... 2026-5-4 14:23:33 | 阅读: 31 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu cowrie raspberry reinstall scratch dshield

ISC Stormcast For Monday, May 4th, 2026 https://isc.sans.edu/podcastdetail/9916, (Mon, May 4th) 2026-5-4 02:0:3 | 阅读: 28 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu teaching isc papers feeds 2026

Wireshark 4.6.5 Released, (Sun, May 3rd) Published: 2026-05-03. Last Updated: 2026-05-03 16:49:04 UTCby Didier Stevens (Version: 1)Wiresh... 2026-5-3 16:49:4 | 阅读: 30 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu 2026 didier stevens cves

Malicious Ad for Homebrew Leads to MacSync Stealer, (Fri, May 1st) IntroductionAs macbooks and mac minis become more popular, we're seeing more campaigns targeting... 2026-5-1 19:1:21 | 阅读: 25 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu homebrew malicious c2 macsync popup

ISC Stormcast For Friday, May 1st, 2026 https://isc.sans.edu/podcastdetail/9914, (Fri, May 1st) 2026-5-1 02:0:3 | 阅读: 31 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu isc teaching johannes duty

ISC Stormcast For Thursday, April 30th, 2026 https://isc.sans.edu/podcastdetail/9912, (Thu, Apr 30th) 2026-4-30 02:0:2 | 阅读: 29 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu teaching johannes isc guy

Danger of Libredtail [Guest Diary], (Wed, Apr 29th) [This is a Guest Diary by James Roberts, an ISC intern as part of the SANS.edu BACS program]Over... 2026-4-30 00:7:3 | 阅读: 33 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu ssh redtail php honeypot 4577

Today's Odd Web Requests, (Wed, Apr 29th) Today, two different "new" requests hit our honeypots. Both appear to be recon requests and not ass... 2026-4-29 13:11:41 | 阅读: 29 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu esps broadcom ph windows honeypots

ISC Stormcast For Wednesday, April 29th, 2026 https://isc.sans.edu/podcastdetail/9910, (Wed, Apr 29th) 嗯，用户让我总结一篇文章，控制在一百个字以内，而且不需要特定的开头。我先看看文章内容。 文章提到了值班处理员Johannes Ullrich，威胁级别是绿色。还有ISC Stormcast播客，日期是2026年4月29日，星期三。还有链接到Johannes的教学课程和一些工具、联系信息。 用户可能需要一个简洁明了的摘要，重点突出关键人物和主要内容。所以我要包括值班员、威胁级别、播客信息以及相关链接。 确保不超过100字，直接描述内容，不使用“文章总结”之类的开头。这样用户就能快速了解文章的主要信息了。 </think> 值班处理员Johannes Ullrich负责ISC Stormcast播客，威胁级别为绿色。播客于2026年4月29日发布，提供网络安全相关信息及教学课程链接。... 2026-4-29 02:0:2 | 阅读: 31 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu johannes 2026 isc feeds papers

HTTP Requests with X-Vercel-Set-Bypass-Cookie Header, (Tue, Apr 28th) 嗯，用户让我帮忙总结一下这篇文章的内容，控制在100个字以内，而且不需要用“文章内容总结”或者“这篇文章”这样的开头。直接写描述就行。首先，我得仔细阅读文章内容，理解主要信息。 文章讲的是最近在honeypot上发现了一些请求，这些请求里带有“X-Vercel-Set-Bypass-Cookie”这个头。看起来这是Vercel用来绕过某些安全保护的机制。用户可能想知道这个头的作用和潜在风险。 然后，作者提到Vercel文档中提到了类似的头，但没有详细说明这个特定的头。特别是这个头的值是“samesite-none-secure”，这在文档中没有记录。作者怀疑这可能是为了放松安全设置，甚至可能被用来窃取秘密。 此外，请求还通过了开放代理，可能是为了隐藏攻击者的身份，但最后失败了。作者建议如果有更多关于这个头的信息可以提供的话会更好。 总结一下，文章主要讨论了Vercel的一个安全绕过机制被用于潜在攻击的情况。我需要把这些关键点浓缩到100字以内，并且保持语言简洁明了。 </think> 这篇文章描述了最近发现的针对Vercel平台的潜在安全测试或攻击行为，涉及使用未公开的"X-Vercel-Set-Bypass-Cookie"头来绕过安全保护机制，并可能通过代理隐藏攻击者身份。... 2026-4-28 13:28:45 | 阅读: 38 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu vercel bypass proxy samesite 235

ISC Stormcast For Tuesday, April 28th, 2026 https://isc.sans.edu/podcastdetail/9908, (Tue, Apr 28th) 好的，我现在需要帮用户总结一篇中文文章，控制在100字以内。首先，我仔细阅读了用户提供的文章内容。这篇文章看起来像是一个网络日志或者安全中心的页面内容，里面提到了值班人员Jesse La Grew，威胁级别为绿色，还有ISC Stormcast播客的链接以及关于Johannes教学课程的信息。 接下来，我需要提取关键信息。值班人员和威胁级别是主要内容，威胁级别为绿色通常表示情况正常或安全状况良好。播客链接和课程信息可能是次要内容，但可能需要简要提及以保持全面性。 然后，我要将这些信息浓缩到100字以内。首先提到值班人员和威胁级别，接着简要说明播客内容和教学课程的信息。这样既涵盖了主要部分，又没有遗漏重要细节。 最后，检查语言是否简洁明了，确保没有使用任何复杂的术语，并且符合用户的要求：不需要特定的开头语句，直接描述文章内容即可。 </think> 文章介绍了 ISC Stormcast 播客内容及 Johannes 的教学课程信息，并显示当前值班人员为 Jesse La Grew，威胁级别为绿色。... 2026-4-28 02:0:3 | 阅读: 28 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu 2026 feeds isc johannes papers