SANS Stormcast – infosecintel

Exploit Attempts for Dassault DELMIA Apriso. CVE-2025-5086, (Wed, Sep 3rd)
September 3, 2025
When I am thinking about the security of manufacturing environments, I am usually focusing on IoT devices integrated into production lines. All the little sensors and actuators are often very difficult to secure. On the other hand, there is also "big software" that is used to manage manufacturing. One example is DELMIA Apriso by Dassault […]
ISC Stormcast For Wednesday, September 3rd, 2025 https://isc.sans.edu/podcastdetail/9596, (Wed, Sep 3rd)
September 3, 2025
A quick look at sextortion at scale: 1,900 messages and 205 Bitcoin addresses spanning four years, (Tue, Sep 2nd)
September 2, 2025
What can almost 2,000 sextortion messages tell us about how threat actors operate and whether they are successful? Let&#x27s find out.
ISC Stormcast For Tuesday, September 2nd, 2025 https://isc.sans.edu/podcastdetail/9594, (Tue, Sep 2nd)
September 2, 2025
pdf-parser: All Streams, (Sun, Aug 31st)
August 31, 2025
A user reported a bug in pdf-parser: when dumping all filtered streams, an error would occur:
Wireshark 4.4.9 Released, (Sun, Aug 31st)
August 31, 2025
Wireshark release 4.4.9 fixes 5 bugs.
ISC Stormcast For Friday, August 29th, 2025 https://isc.sans.edu/podcastdetail/9592, (Fri, Aug 29th)
August 29, 2025
Increasing Searches for ZIP Files, (Thu, Aug 28th)
August 28, 2025
I noticed recently that we have more and more requests for ZIP files in our web honeypot logs. Over the last year, we have had a substantial increase in these requests.
ISC Stormcast For Thursday, August 28th, 2025 https://isc.sans.edu/podcastdetail/9590, (Thu, Aug 28th)
August 28, 2025
Interesting Technique to Launch a Shellcode, (Wed, Aug 27th)
August 27, 2025
In most attack scenarios, attackers have to perform a crucial operation: to load a shellcode in memory and execute it. This is often performed in a three-step process: