Sans News Feed
- YARA-X 1.14.0 Release, (Sat, Mar 7th) March 7, 2026YARA-X's 1.14.0 release brings 4 improvements and 2 bugfixes.
- ISC Stormcast For Friday, March 6th, 2026 https://isc.sans.edu/podcastdetail/9838, (Fri, Mar 6th) March 6, 2026
- ISC Stormcast For Thursday, March 5th, 2026 https://isc.sans.edu/podcastdetail/9836, (Thu, Mar 5th) March 5, 2026
- Differentiating Between a Targeted Intrusion and an Automated Opportunistic Scanning [Guest Diary], (Wed, Mar 4th) March 5, 2026[This is a Guest Diary by Joseph Gruen, an ISC intern as part of the SANS.edu BACS program]
- Want More XWorm?, (Wed, Mar 4th) March 4, 2026And another XWorm[1] wave in the wild! This malware family is not new and heavily spread but delivery techniques always evolve and deserve to be described to show you how threat actors can be imaginative! This time, we are facing another piece of multi-technology malware.
- ISC Stormcast For Wednesday, March 4th, 2026 https://isc.sans.edu/podcastdetail/9834, (Wed, Mar 4th) March 4, 2026
- Bruteforce Scans for CrushFTP , (Tue, Mar 3rd) March 3, 2026CrushFTP is a Java-based open source file transfer system. It is offered for multiple operating systems. If you run a CrushFTP instance, you may remember that the software has had some serious vulnerabilities: CVE-2024-4040 (the template-injection flaw that let unauthenticated attackers escape the VFS sandbox and achieve RCE), CVE-2025-31161 (the auth-bypass that handed over the […]
- ISC Stormcast For Tuesday, March 3rd, 2026 https://isc.sans.edu/podcastdetail/9832, (Tue, Mar 3rd) March 3, 2026
- Quick Howto: ZIP Files Inside RTF, (Mon, Mar 2nd) March 2, 2026In diary entry "Quick Howto: Extract URLs from RTF files" I mentioned ZIP files.
- Wireshark 4.6.4 Released, (Mon, Mar 2nd) March 2, 2026Wireshark release 4.6.4 fixes 3 vulnerabilities and 15 bugs.