Tag: scans

Continuing Scans for swagger.json https://isc.sans.edu/diary/Continuing+Scans+for+swaggerjson/33044/#comments Fake call detection on Android https://blog.google/security/android-fake-call-detection/ Anthropic’s coordinated vulnerability disclosure dashboard https://red.anthropic.com/2026/cvd/ My Upcoming Classes https://www.sans.org/profiles/dr-johannes-ullrich

Enterprise applications often still use complex standards like SOAP for web services. The big advantage of SOAP is its tight and extensive standards, which enable interoperability across an enterprise governed by web services. The disadvantage of SOAP: First, while it is de facto usually used over HTTP, it does not leverage HTTP, leading to unnecessary […]

Comments

Comments

Comments

A compromised developer’s repository serves as a worm-like infection vector to spread remote access Trojans (RATs) and other malware.

Comments

Last week, I wrote about attackers scanning for various webshells, hoping to find some that do not require authentication or others that use well-known credentials. But some attackers are paying attention and are deploying webshells with more difficult-to-guess credentials. Today, I noticed some scans for what appears to be the „EncystPHP“ web shell. Fortinet wrote […]

Scammers are sending fake „Notice of Default“ traffic violation text messages impersonating state courts across the U.S., pressuring recipients to scan a QR code that leads to a phishing site demanding a $6.99 payment while stealing personal and financial information. […]

Mit einer Wiederholungsabstimmung wollten konservative Abgeordnete doch noch die bisherige Überwachung im Kampf gegen Kindesmissbrauch fortsetzen. (Chatkontrolle, Instant Messenger)