SANS Stormcast – infosecintel

From YARA Offsets to Virtual Addresses, (Fri, Sep 5th)
September 5, 2025
YARA is an excellent tool that most of you probably already know and use daily. If you don&#39;t, search on isc.sans.edu, we have a bunch of diaries about it[1]. YARA is very powerful because you can search for arrays of bytes that represent executable code. In this case, you provide the hexadecimal representation of the […]
ISC Stormcast For Friday, September 5th, 2025 https://isc.sans.edu/podcastdetail/9600, (Fri, Sep 5th)
September 5, 2025
ISC Stormcast For Thursday, September 4th, 2025 https://isc.sans.edu/podcastdetail/9598, (Thu, Sep 4th)
September 4, 2025
Exploit Attempts for Dassault DELMIA Apriso. CVE-2025-5086, (Wed, Sep 3rd)
September 3, 2025
When I am thinking about the security of manufacturing environments, I am usually focusing on IoT devices integrated into production lines. All the little sensors and actuators are often very difficult to secure. On the other hand, there is also "big software" that is used to manage manufacturing. One example is DELMIA Apriso by Dassault […]
ISC Stormcast For Wednesday, September 3rd, 2025 https://isc.sans.edu/podcastdetail/9596, (Wed, Sep 3rd)
September 3, 2025
A quick look at sextortion at scale: 1,900 messages and 205 Bitcoin addresses spanning four years, (Tue, Sep 2nd)
September 2, 2025
What can almost 2,000 sextortion messages tell us about how threat actors operate and whether they are successful? Let&#x27s find out.
ISC Stormcast For Tuesday, September 2nd, 2025 https://isc.sans.edu/podcastdetail/9594, (Tue, Sep 2nd)
September 2, 2025
pdf-parser: All Streams, (Sun, Aug 31st)
August 31, 2025
A user reported a bug in pdf-parser: when dumping all filtered streams, an error would occur:
Wireshark 4.4.9 Released, (Sun, Aug 31st)
August 31, 2025
Wireshark release 4.4.9 fixes 5 bugs.
ISC Stormcast For Friday, August 29th, 2025 https://isc.sans.edu/podcastdetail/9592, (Fri, Aug 29th)
August 29, 2025