SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) SANS Stormcast Monday, March 9th, 2026: YARA-X Update; IP Camera Targeting; Node.js Upgrades; nginx UI Vuln
9 snips
Mar 9, 2026 A rundown of a YARA-X release and a new debugging command for rule dependencies. Discussion of a spike in attacks against IP cameras and links to regional physical conflict. Overview of a Node.js LTS upgrade and modernization assistance program and why LTS matters. Explanation of nginx UI flaws including backup API and exposed encryption headers, plus mitigation reminders.
AI Snips
Chapters
Transcript
Episode notes
YARA-X Adds Depths Command For Debugging
- YARA-X 1.14.0 added a 'depths' command to visualize rule dependencies for debugging.
- Johannes Ulrich explains it draws a quick graph to show how rule files and dependencies relate during debugging.
IP Cameras Are Perennially High-Risk Targets
- IP cameras remain among the most attacked internet-exposed devices and are frequently targeted in conflicts.
- Johannes Ulrich ties recent increases reported by Check Point to long-standing exposure and past conflict use cases like Ukraine and Panama Canal camera incidents.
Checkpoint Reported Camera Attacks Focused On Israel
- Check Point reported increased attacks on IP cameras, with focus on Israeli IP space given their origin.
- Johannes Ulrich references prior incidents like Hikvision camera attacks and Ukraine usage to contextualize the report.