SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
ISC StormCast for Friday, February 16th, 2024
Feb 16, 2024
Jennifer Walker, an expert in detecting rogue Ethernet switches, shares her insights on innovative Layer 1 techniques for identifying hidden devices in network infrastructures. The conversation dives into the challenges posed by undocumented rogue switches and explores detection methods beyond traditional approaches. Walker discusses the role of Time Domain Reflectometry in diagnosing issues and highlights the importance of robust network monitoring strategies amidst increasing complexity. They also touch on the latest cyber threats, including rising smishing campaigns.
13:11
Episode guests
AI Summary
AI Chapters
Episode notes
Podcast summary created with Snipd AI
Quick takeaways
- Scammers are increasingly using Amazon Web Services' SNS to deliver fraudulent SMS messages impersonating the USPS, highlighting the need for user vigilance.
- The Linux kernel's new role as a CVE numbering authority aims to improve vulnerability documentation, promising clearer information and increased transparency in security practices.
Deep dives
New Tactics in SMS Scams
Recent developments indicate that scammers are now targeting Amazon Web Services' Simple Notification Service (SNS) to send fraudulent SMS messages impersonating the United States Postal Service. This shift in tactics comes as companies like Twilio have implemented stricter regulations on mass messaging, making compromised accounts less valuable. The transition to AWS SNS suggests a strategic move by malicious actors to exploit alternative platforms for delivering deceptive messages. Users should remain vigilant to these unsolicited messages, as they frequently attempt to trick recipients into revealing personal information.
Remember Everything You Learn from Podcasts
Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.
