SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

Discover the latest exploits of the evolving Mirai botnet, now featuring enhanced brute force capabilities and a DNS-Sec vulnerability. Dive into the complexities of DNS manipulation and the challenges of identifying file types, with Google launching the AI-powered Magika system to tackle these issues. The discussion also touches on the risks posed by unsynchronized clocks, highlighting the intricate nature of cybersecurity threats that continue to emerge.

Discover the latest security advisories from SolarWinds and their implications for users. Learn about new private network checks in Google Chrome, enhancing web safety. Uncover the threat posed by the Gold Factory iOS Trojan, which cleverly manipulates user authentication through social engineering. This discussion dives into pressing cybersecurity vulnerabilities and essential updates to keep you informed and protected.

Jennifer Walker, an expert in detecting rogue Ethernet switches, shares her insights on innovative Layer 1 techniques for identifying hidden devices in network infrastructures. The conversation dives into the challenges posed by undocumented rogue switches and explores detection methods beyond traditional approaches. Walker discusses the role of Time Domain Reflectometry in diagnosing issues and highlights the importance of robust network monitoring strategies amidst increasing complexity. They also touch on the latest cyber threats, including rising smishing campaigns.

An intern shares their hands-on journey troubleshooting a honeypot system, highlighting the importance of practical skills. The discussion dives into security risks in Ubuntu's package suggestion system, shedding light on potential exploits through snap names. Meanwhile, vulnerabilities in Microsoft Outlook's Monikerlink bug are unveiled, along with urgent patch updates from Adobe and AMD. Stay informed and vigilant against these evolving threats!

February's Patch Tuesday reveals critical vulnerabilities in Microsoft products, particularly affecting Exchange Server and Outlook. DNS servers face alarming risks of denial-of-service attacks due to significant flaws. Meanwhile, a privilege escalation vulnerability in Zoom is making waves, and QNAP's network storage devices are under scrutiny for serious security issues. The urgency for timely updates has never been more pressing!

Discover the latest on a Mirai bot variant exploiting vulnerabilities in ByteValue routers, raising alarms about the importance of security measures. The episode also highlights ongoing phishing attacks targeting senior executives, emphasizing the need for two-factor authentication. Additionally, it covers a partnership aimed at securing software repositories alongside vulnerabilities found in PostgreSQL and Microsoft Defender, shedding light on the risks of malicious packages and coding errors.

Dive into the mysterious world of an obfuscated PowerShell script bundled in an MSI X package. Discover the challenges researchers face when distinguishing authentic servers from honeypots. The podcast also unveils a serious vulnerability in ClamAV that could allow arbitrary code execution. Plus, learn how ExpressVPN is addressing DNS leak issues, urging users to streamline their VPN usage for heightened security. It's a thrilling ride through the latest in cyber vulnerabilities and security measures!

This edition highlights a Python MP3 player equipped with a keylogger, sparking concerns about security. It brings attention to a fraudulent LastPass app recently spotted in the Apple App Store. The episode also discusses serious vulnerabilities in Ivanti and Fortinet software, stressing the importance of vigilance and mitigation strategies. Celebrating its 15th anniversary, the show reflects on listener feedback as crucial for improvements while tackling these pressing cybersecurity threats.

Unraveling the mystery of a suspicious IoT URL linked to device management, experts dissect its potential vulnerabilities. A critical shim vulnerability in Linux systems raises alarm bells, prompting immediate attention. Lessons from a botnet incident shed light on security risks, emphasizing the dangers posed by malicious tactics. Insights into the complexities of IoT landscape and a retrospective on botnet shutdowns make for a riveting discussion.

Computer viruses are turning 40, showcasing their long legacy in cybersecurity. From ancient malware to today’s unique threats, like smart toothbrushes forming a DDoS botnet in Switzerland, the landscape has changed dramatically. The discussion highlights a critical vulnerability in TeamCity that allows unauthorized access. Additionally, trends like 'resume looters' and misleading Facebook ads pose risks for job seekers. Stay informed to combat these evolving threats in our digital age!