SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) SANS Stormcast Tuesday, January 6th, 2026: IPKVM Risks; Tailsnitch; Net-SNMP Vuln;
4 snips
Jan 6, 2026 The podcast dives into the security risks posed by cheap IP KVM devices, highlighting their vulnerability when exposed to the internet. A new auditing tool, Tailsnitch, is introduced to help users review their Tailscale configurations for security flaws. The discussion also uncovers a critical vulnerability in Net-SNMP's snmptrapd, which could allow remote code execution, risking network monitoring systems. Essential tips for hardening these devices are shared, making the episode a must-listen for cybersecurity enthusiasts!
AI Snips
Chapters
Transcript
Episode notes
Cheap Nano KVM Adoption Story
- Johannes Ulrich described the rise of cheap nano KVMs and why people use them for remote physical-equivalent access.
- He warned that broad internet exposure of these devices recreates typical IoT trust risks and requires careful consideration.
Don't Expose KVMs Publicly
- Avoid exposing nano KVMs directly to the Internet and instead put them behind protective access.
- Use a secure remote-access solution like Tailscale to restrict and harden access to these devices.
Audit Tailscale With TailSnitch
- Do run TailSnitch to audit your Tailscale configuration for misconfigurations and risky settings.
- Check for router-mode hosts and the roughly 50 configuration issues TailSnitch scans for to reduce lateral access risk.