SANS Stormcast Monday, September 22nd, 2025: Odd HTTP Reuqest; GoAnywhere MFT Bug; EDR Freeze
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
00:00
Odd HTTP Header, GoAnywhere RCE, and EDR Freeze
Covers unusual x-forwarded-app HTTP requests seen in honeypots, Fortra's critical unauthenticated deserialization (RCE) in GoAnywhere MFT, and the user-space EDR Freeze technique that suspends protected EDR processes — with mitigation and monitoring suggestions.
Play episode from 00:26
Transcript
