XDocCrypt/Dorifel – Document encrypting and network spreading virus

Another day, another malware, and today it was an unknown Delphi application which encrypts your office documents on your non-root and non-CD/DVD drives and prepends it with a copy of itself, turning a document into an executable. Great, everybody loves these kinds of things as your entire IT dependant organization will grind to a complete halt … Continue reading XDocCrypt/Dorifel – Document encrypting and network spreading virus →

MIME Sniffing: feature or vulnerability?

In this blog post I will describe how we turned uploading a .zip file into a Cross-Site Scripting (XSS) attack during a penetration test on a customer’s web application, by leveraging a feature of Internet Explorer (IE) called MIME Sniffing. Before I go into the details of this attack, let’s start by looking at the … Continue reading MIME Sniffing: feature or vulnerability? →

Onze visie op de eigen slagkracht van de overheid

Na operatie Black Tulip (Diginotar) en Lektober staat ICT beveiliging volop in de aandacht. Het is inmiddels algemeen bekend hoezeer onze maatschappij van ICT afhankelijk is geworden en hoe relatief kwetsbaar we zijn voor cyberbedreigingen. De rol van de Nederlandse overheid is hierbij een onderwerp van discussie. De vraag is of zij voldoende in … Continue reading Onze visie op de eigen slagkracht van de overheid →

Forbes: Bert Hubert explains the DNS issue with China

Sucked Into China's Internet It began with a jovial "Hi there!" on a fairly obscure listserv for discussing DNS operational issues. DNS denotes Domain Name System, a process that converts typed Web addresses into a series of phone-number like IP numbers which, in turn, enable you to "call up" a Web site from any of … Continue reading Forbes: Bert Hubert explains the DNS issue with China →