SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

A serious vulnerability has been found in the Veeam backup system, enabling authentication bypass. The podcast highlights the recent shutdown of the Sorbs Anti-Spam list, which could affect spam management strategies. It also covers alarming reports about rogue cell towers in London sending out smishing texts, leading to arrests. Additionally, there’s a discussion about malicious Comfyui modules posing risks in software development. Cybersecurity is more critical than ever with these emerging threats!

Discover the latest vulnerabilities in PHP and PyTorch, including a concerning code injection flaw. Learn how malicious Visual Studio Code extensions pose risks to users, even with millions of installs. The discussion emphasizes the importance of staying updated and cautious with software choices to maintain cybersecurity.

A novel Python malware with a unique 'best before date' raises questions about its effectiveness in targeted attacks. The FBI’s recent recovery of 7,000 LockBit ransomware keys showcases ongoing efforts in cybercrime enforcement. Meanwhile, Apple’s commitment to five years of security updates highlights their focus on user safety. The FCC proposes new rules to enhance Internet routing security, addressing vulnerabilities in the ever-expanding IoT landscape. It's a fascinating dive into contemporary cyber threats and protective measures!

Brute force attacks on WatchGuard VPNs are on the rise, raising alarms about cybersecurity. There's a spotlight on the risks associated with Microsoft's Windows Co-Pilot Plus Recall feature. Additionally, a serious vulnerability in WebEx has come to light, allowing unauthorized access to meetings. The discussion emphasizes the importance of robust security measures in the face of these threats.

Discover the complex world of anti-malware tools and the conflicts that can arise when they coexist on a system. Uncover the dangers lurking in fake job ads that lead to stolen cryptocurrency, as highlighted by the FBI. Learn about critical vulnerabilities in Zyxel NAS devices and the swift action taken for better protection. Stay informed about these pressing cybersecurity issues that could affect you!

Dive into the world of cybersecurity with discussions on custom packet analysis using Wireshark and Lua. Discover a vulnerability in Cox's cable modem admin API that opens the door to potential exploits. Learn about harmful Stack Overflow posts masquerading as helpful advice, pushing malware to unsuspecting users. Also, explore recent vulnerabilities in Atlassian Confluence that highlight the critical need for timely patches. Stay informed on how these threats could impact your digital safety!

Discover the rise of the K1w1 info-stealer, a sneaky new malware targeting Windows users. Learn about a free Kaspersky tool designed to enhance Linux security. Dive into the troubling security breaches at Snowflake and HuggingFace, highlighting the risks tied to AI services. The discussion emphasizes the dire need for protective measures against credential leaks and the fallout from customer negligence. Stay informed and safeguard your digital assets!

Michael Dunking, an expert in detecting cypher injection using open-source network intrusion detection, dives deep into the world of cybersecurity. He unpacks the nuances of cypher injection attacks, drawing parallels with SQL injection vulnerabilities. The conversation highlights strategies for improving detection and prevention, emphasizing the need for better coding practices. Additionally, Dunking shares insights on developing Snort rules to balance detection accuracy while minimizing false positives, critical for robust network security.

Discover the intriguing correlations between honeypot logs and PCAPs to unearth hidden threats! Learn about a serious VPN vulnerability that demands attention and integration with SIEM systems for robust cybersecurity. Dive into the alarming world of credential stuffing with Okta's Identity Cloud and why multifactor authentication is no longer optional. Plus, hear about the challenges of brute forcing old Bitcoin wallet passwords. This insightful discussion sheds light on essential strategies to bolster your cybersecurity defenses.

Discover the world of SQL injection prevention with Python techniques. Delve into a new PoC exploit in Fortinet's systems that raises concerns about OS command injections. Learn about ShrinkLocker, a ransomware variant abusing BitLocker. Uncover critical vulnerabilities, including a privilege escalation bug identified by Apple and a glib C function flaw. The podcast emphasizes the pressing need for timely software updates and effective input validation to fend off evolving cyber threats.