SANS Internet Storm Center Daily Network Security News-logo

SANS Internet Storm Center Daily Network Security News

Technology Podcasts >

The podcast is published every weekday and typically 5-10 minutes long. It covers current network security news.

The podcast is published every weekday and typically 5-10 minutes long. It covers current network security news.
More Information

Location:

United States

Description:

The podcast is published every weekday and typically 5-10 minutes long. It covers current network security news.

Twitter:

@sans_isc

Language:

English

Contact:

904 805 3116


Episodes

ISC StormCast for Tuesday, August 20th 2019

8/20/2019
More
iOS 12.4 Jailbreak Released after Reindruced Vulnerability form 12.2 https://github.com/pwn20wndstuff/Undecimus/releases SHA2-Signed Updates for Windows Not Available with Symantec Endpoint Protection https://support.symantec.com/us/en/article.tech255857.html Attacking and Downgrading Bluetooth Key Negotiation https://knobattack.com

Duration:00:05:32

ISC StormCast for Monday, August 19th 2019

8/19/2019
More
Large Number of VoIP System Vulnerabilities Released https://www.sit.fraunhofer.de/en/cve/ Confidential Company Documents Leaked in Public Sandboxes https://blog.cylab.co/2019/08/16/confidential-company-documents-exposed-in-public-sandboxes/ https://www.sit.fraunhofer.de/en/news-events/latest/press-releases/details/news-article/show/gefahr-uebers-telefon/ Trend Micro Password Manager DLL Hijacking https://esupport.trendmicro.com/en-us/home/pages/technical-support/1123396.aspx Firefox...

Duration:00:05:04

ISC StormCast for Friday, August 16th 2019

8/16/2019
More
Analysis of a Spearphishing Maldoc https://isc.sans.edu/forums/diary/Analysis+of+a+Spearphishing+Maldoc/25242/ IoT Security Stagnation https://securityledger.com/2019/08/huge-survey-of-firmware-finds-no-security-gains-in-15-years/ Kaspersky Insecurity https://www.heise.de/ct/artikel/Kasper-Spy-Kaspersky-Anti-Virus-puts-users-at-risk-4496138.html

Duration:00:06:21

ISC StormCast for Thursday, August 15th 2019

8/15/2019
More
MedusaHTTP Malware https://isc.sans.edu/forums/diary/Recent+example+of+MedusaHTTP+malware/25234/ Cryptominer uses DuckDNS for C&C https://www.varonis.com/blog/monero-cryptominer/ Intel NUC Vulnerabilities https://www.intel.com/content/www/us/en/security-center/default.html HTTP/2 Vulnerabilities https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md

Duration:00:06:03

ISC StormCast for Wednesday, August 14th 2019

8/14/2019
More
Microsoft Patch Tuesday https://isc.sans.edu/forums/diary/August+2019+Microsoft+Patch+Tuesday/25236/ Adobe Patches https://helpx.adobe.com/security.html Windows Text Services Vulnerabilities https://googleprojectzero.blogspot.com/2019/08/down-rabbit-hole.html#ftnt2

Duration:00:05:23

ISC StormCast for Tuesday, August 13th 2019

8/13/2019
More
Malicious DAA Attachments https://isc.sans.edu/forums/diary/Malicious+DAA+Attachments/25230/ SQLLite Exploits https://research.checkpoint.com/select-code_execution-from-using-sqlite/ Printer Vulnerabilities https://www.defcon.org/html/defcon-27/dc-27-speakers.html#Romero https://www.nccgroup.trust/us/our-research/technical-advisory-multiple-vulnerabilities-in-xerox-printers/?research=Technical+advisories

Duration:00:05:42

ISC StormCast for Monday, August 12th 2019

8/12/2019
More
100% JavaScript Phishing Page https://isc.sans.edu/forums/diary/100+JavaScript+Phishing+Page/25220/ Vulnerabilities in DSLR Cameras https://research.checkpoint.com/say-cheese-ransomware-ing-a-dslr-camera/ https://global.canon/en/support/security/d-camera.html Turning Tesla into Surveilance Platform https://github.com/tevora-threat/scout Basic Electron Framework Exploitation https://www.contextis.com/en/blog/basic-electron-framework-exploitation

Duration:00:05:28

ISC StormCast for Friday, August 9th 2019

8/9/2019
More
Kubernetes Security Audit Published https://github.com/kubernetes/community/blob/master/wg-security-audit/findings/Kubernetes%20Final%20Report.pdf https://www.cncf.io/blog/2019/08/06/open-sourcing-the-kubernetes-security-audit/ Apple Expands Bug...

Duration:00:06:27

ISC StormCast for Thursday, August 8th 2019

8/8/2019
More
AT&T Insiders Bribed to Obtain Unlock Codes https://www.justice.gov/usao-wdwa/press-release/file/1191031/download Older RDP Vulnerability Can be Used for HyperV VM Escape https://www.microsoft.com/security/blog/2019/08/07/a-case-study-in-industry-collaboration-poisoned-rdp-vulnerability-disclosure-and-response/ Cisco Patches Smart Switch 220 Vulnerabilities https://tools.cisco.com/security/center/publicationListing.x Firefox for Android Supporting...

Duration:00:06:30

ISC StormCast for Wednesday, August 7th 2019

8/7/2019
More
Corporate IoT Used in Intrusion https://msrc-blog.microsoft.com/2019/08/05/corporate-iot-a-path-to-intrusion/ New Spectre Variant: SWAPGS https://www.bitdefender.com/business/swapgs-attack.html New WPA3 Weaknesses https://wpa3.mathyvanhoef.com/#new

Duration:00:06:14

ISC StormCast for Tuesday, August 6th 2019

8/6/2019
More
Sexploitation E-Mail: Where did the winnings go https://isc.sans.edu/forums/diary/Sextortion+Follow+the+Money+The+Final+Chapter/25204/ VMWare Update https://www.vmware.com/security/advisories/VMSA-2019-0012.html Android Update Fixes Qualcom Bug https://source.android.com/security/bulletin/2019-08-01.html https://blade.tencent.com/en/advisories/qualpwn/

Duration:00:05:39

ISC StormCast for Monday, August 5th 2019

8/5/2019
More
Misconfigured JIRA Leaks User Details https://medium.com/@logicbomb_1/one-misconfig-jira-to-leak-them-all-including-nasa-and-hundreds-of-fortune-500-companies-a70957ef03c7 Google, Amazon, Apple modify policy on listening in on Assistant...

Duration:00:05:51

ISC StormCast for Friday, August 2nd 2019

8/2/2019
More
What Is Listening On Port 9527/TCP https://isc.sans.edu/forums/diary/What+is+Listening+On+Port+9527TCP/25194/ PowerShell Empire Abandonded https://github.com/EmpireProject/Empire https://twitter.com/xorrior/status/1156626182978383874 Cryptomining via GitHub/PasteBin C&C https://unit42.paloaltonetworks.com/rockein-the-netflow/

Duration:00:05:31

ISC StormCast for Thursday, August 1st 2019

8/1/2019
More
Phishing Attack Targeting Financial Sector https://isc.sans.edu/forums/diary/Targeted+Phishing+Attacks+in+the+Financial+Industry+Fire3+Phishing+Kit/25188/ Enterprise Software Phoneing Home https://www.extrahop.com/company/press-releases/2019/extrahop-issues-warning-about-phoning-home/ Google Stripping www and https again https://bugs.chromium.org/p/chromium/issues/detail?id=883038#c114 Bypassing VISA Contactless...

Duration:00:06:27

ISC StormCast for Wednesday, July 31st 2019

7/31/2019
More
Luno Phishing E-Mail and Badly Implemented 2FA https://isc.sans.edu/forums/diary/Can+You+Spell+2FA+A+Luno+Phish+Example/25186/ Google Chrome Update https://w3c.github.io/webappsec-fetch-metadata/ https://chromereleases.googleblog.com/2019/07/stable-channel-update-for-desktop_30.html Apple Re-Releases 2019-004 Security Update for Sierra/High Sierra https://support.apple.com/en-us/HT210348 Disabling Server Side Recording of Apple Siri...

Duration:00:05:49

ISC StormCast for Tuesday, July 30th 2019

7/30/2019
More
11 Flaws in VxWorks IPNet TCP/IP Stack https://go.armis.com/urgent11 iOS iMessage File Disclosure Vulnerability https://bugs.chromium.org/p/project-zero/issues/detail?id=1858

Duration:00:06:34

ISC StormCast for Monday, July 29th 2019

7/29/2019
More
DVRIP Port 34567 Uptick https://isc.sans.edu/forums/diary/DVRIP+Port+34567+Uptick/25174/ LibreOffice LibreLogo Macro Python Code Injection https://insinuator.net/2019/07/libreoffice-a-python-interpreter-code-execution-vulnerability-cve-2019-9848/ Extracting Private Key From Amazon Music Application https://koen.io/2019/07/26/underscoring-the-private-in-private-key/

Duration:00:07:13