Podcast Episodes
Back to SearchSANS Stormcast Tuesday, May 12th: Apple Patches; Unipi Technologies Scans;
Episode 9448
Apple Updates Everything
Apple patched all of its operating systems. This update ports a patch for a recently exploited vulnerability to older vers…
10 months, 2 weeks ago
SANS Stormcast Monday, May 11th: Steganography Challenge; End-of-Life Routers; ASUS Driverhub; RV-Tools SEO Poisoning
Episode 9446
Steganography Challenge
Didier revealed the solution to last weekend s cryptography challenge. The image used the same encoding scheme as Didier de…
10 months, 2 weeks ago
SANS Stormcast Friday, May 9th: SSH Exfil Tricks; magicINFO still vulnerable; SentinelOne Vulnerability; Commvault insufficient patch
Episode 9444
No Internet Access: SSH to the Rescue
If faced with restrictive outbound network access policies, a single inbound SSH connection can quickly be tu…
10 months, 2 weeks ago
SANS Stormcast Thursday, May 8th: Modular Malware; Sysaid Vuln; Cisco Wireless Controller Patch; Unifi Protect Camera Patch
Episode 9442
Example of Modular Malware
Xavier analyzes modular malware that downloads DLLs from GitHub if specific features are required. In particular, the we…
10 months, 2 weeks ago
SANS Stormcast Wednesday, May 7th: Infostealer with Webserver; Android Update; CISA Warning
Episode 9440
Python InfoStealer with Embedded Phishing Webserver
Didier found an interesting infostealer that, in addition to implementing typical infostealer f…
10 months, 3 weeks ago
SANS Stormcast Tuesday, May 6th: Mirai Exploiting Samsung magicInfo 9; Kali Signing Key Lost;
Episode 9438
Mirai Now Exploits Samsung MagicINFO CMS CVE-2024-7399
The Mirai botnet added a new vulnerability to its arsenal. This vulnerability, a file upload…
10 months, 3 weeks ago
SANS Stormcast Monday, May 5th: Steganography Challenge; Microsoft Makes Passkeys Default and Moves Away from Authenticator as Password Manager; Magento Components Backdoored.
Episode 9436
Steganography Challenge
Didier published a fun steganography challenge. A solution will be offered on Saturday.
https://isc.sans.edu/diary/Steganog…
10 months, 3 weeks ago
SANS Stormcast Thursday, May 1st: More Steganography; Malicious Python Packages GMail C2; BEC to Steal Rent Payments
Episode 9434
Steganography Analysis With pngdump.py: Bitstreams
More details from Didiear as to how to extract binary content hidden inside images
https://isc.s…
10 months, 3 weeks ago
SANS Stormcast Thursday, May 1st: Sonicwall Attacks; Cached Windows RDP Credentials
Episode 9432
Web Scanning for Sonicwall Vulnerabilities CVE-2021-20016
For the last week, scans for Sonicwall API login and domain endpoints have skyrockete…
10 months, 3 weeks ago
SANS Stormcast Wednesday, April 30th: SMS Attacks; Apple Airplay Vulnerabilities
Episode 9430
More Scans for SMS Gateways and APIs
Attackers are not just looking for SMS Gateways like the scans we reported on last week, but they are also act…
10 months, 4 weeks ago