SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

Discover the power of PowerShell as a tool for network security while diving into alarming new phishing tactics that exploit users' trust. Uncover the latest threats from a Mac malware linked to North Korea and discuss the ongoing issues surrounding persistent login credentials in Chrome. The discussion sheds light on the broader implications of these cyber security challenges, emphasizing the evolving landscape of digital threats.

Explore the latest software patches addressing critical vulnerabilities in Wireshark and Android, including urgent updates for Ivanti's software. Discover the dark side of the internet with malicious PyPi packages that deploy crypto miners, cleverly evading detection. Plus, learn about a prank in the NPM ecosystem with the 'everything' package that wreaks havoc by installing all available packages, causing chaos for developers and their systems!

Dive into the intriguing world of malspam as various attachment types and trends from 2023 are discussed. Discover the chaos caused by a compromise in Orange Spain's RIPE account, leading to significant BGP security vulnerabilities. Learn about the Bitwarden heist and the critical exploits affecting Apple iOS. This episode delivers a compelling look into the evolving landscape of cybersecurity threats.

Discover how SSH banners play a crucial role in network security and identify potential vulnerabilities in server configurations. Delve into alarming issues surrounding Google’s OAuth 2.0 system, where malware exploits persistent cookies to hijack user sessions. Learn about new and innovative DNS amplification attacks backed by research from Tsinghua University, and gain insights into protective measures for securing DNS servers against these evolving threats.

In a recent guest diary, insights into DShield honeypot activity are shared, shedding light on recent cybersecurity threats. The discussion highlights disguised Python scripts used for data exfiltration and the evolving Mirai botnet. Critical vulnerabilities affecting Barracuda and Apache software are also analyzed, providing crucial security tips. This engaging recap ensures listeners are equipped to understand the latest in the cybersecurity landscape.

Discover essential strategies for securing web servers and protecting against directory enumeration attacks. Learn about the importance of monitoring vulnerabilities, particularly during the busy holiday season, and why honey pots can be a key tool in your defense. Get practical tips for securing your devices and family networks to stay safe during holidays. Plus, a look back at the year's highlights and a sneak peek into upcoming educational content for the new year!

Adrien de Beaupre, a respected figure in cybersecurity, is remembered for his significant contributions to the field. The discussion highlights the alarming rise in exploit attempts targeting Atlassian Confluence servers due to a recently discovered vulnerability. Listeners learn about the dangers of fake F5 BigIP update emails that could compromise systems. Additionally, the conversation touches on the potential risks posed by flaws in Google OAuth, emphasizing the necessity for robust security measures to safeguard sensitive data.

Explore the vulnerabilities in OpenID configurations and their exploitation, including a notable incident involving a honeypot. Discover a troubling attack against the SSH protocol that leverages cipher weaknesses. Also, get the latest on the disruption of the notorious Black Cat ransomware, providing hope for its victims.

Discover how SMTP smuggling is reshaping email security, making spoofing easier than ever. Learn about recent vulnerabilities linked to incorrect SPF and DKIM checks, which led to a significant phishing attack on Ledger. Plus, don't miss the trouble caused by the December Windows 11 patch, which broke Wi-Fi connectivity for many users. This discussion uncovers the ever-evolving landscape of cybersecurity threats and the real-world implications they have on everyday technology.

Discover the latest in cybersecurity vulnerabilities, including the RocketMQ exploit scanner and SQL injection issues in 3CX. Delve into a zero-day vulnerability affecting QNAP devices, along with PFSense vulnerabilities. The discussion also highlights a unique AI-driven gaming challenge, showcasing voice modeling and prompting some lighthearted takes on AI quirks. Plus, there's an exciting AI-generated fish challenge for cybersecurity enthusiasts, offering a chance to win prizes and encouraging community participation!