SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

SANS Stormcast Wednesday, January 7th, 2026: Tailsnitch Review; D-Link DSL EoL Vuln; TOTOLINK Unpatched Vuln

4 snips

Jan 7, 2026

Discover the powerful Tailsnitch tool that audits Tailscale configurations and offers automatic fixes. Learn about a critical command injection vulnerability in outdated D-Link DSL modems that's currently being exploited. Find out how TOTOLINK firmware issues could lead to unauthorized access via an unprotected telnet server after failed updates. The show dives into the importance of replacing old devices and offers risk mitigation strategies to keep your network secure.

Ask episode

AI Snips

Chapters

Transcript

Episode notes

ANECDOTE

Host Found Old Tailscale Versions

Johannes Ulrich ran Tailsnitch and it found two systems running an old Tailscale version due to misconfigured auto-update.
It also flagged non-expiring access tokens that he intentionally left as-is.

INSIGHT

Balanced Risk Scoring And Fix Options

Tailsnitch assigns reasonable severity levels and avoids overhyping configuration issues.
The tool offers detection-only and an automatic-fix mode, letting you choose caution or convenience.

ADVICE

Audit Tailscale With Tailsnitch

Run Tailsnitch periodically to audit your Tailscale configuration and detect misconfigurations.
Fix issues like disabled auto-update and long-lived access tokens to reduce exposure.

Get the Snipd Podcast app to discover more snips from this episode

Get the app