SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) SANS Stormcast Thursday July 31st, 2025: Firebase Security; WebKit Vuln Exploited; Scattered Spider Update
Jul 31, 2025
Discover key lessons from a recent breach of the Tea app, highlighting Firebase security pitfalls. Learn how a newly patched WebKit vulnerability was quickly exploited in Google Chrome, raising eyebrows in the tech community. The update on Scattered Spider reveals their evolving tactics, including impersonating helpdesks, making them a formidable adversary. Tune in for essential strategies to manage cybersecurity crises and combat social engineering threats.
AI Snips
Chapters
Transcript
Episode notes
Simple Firebase Mistake Causes Breach
- The Tea app breach happened due to a simple Firebase security mistake repeated many times before.
- Brandon Evans created a video explaining how to secure Firebase and avoid the same exploit.
Shared WebKit Causes Cross-Browser Risks
- Google Chrome and Apple Safari share vulnerabilities due to using the same WebKit rendering engine.
- Exploits patched in Apple were already exploited and fixed earlier by Google in Chrome.
Protect Help Desk from Social Engineering
- Implement strict procedures and train help desk to handle social engineering calls impersonating users.
- Alert help desk to emergencies and enforce secure escalation without revealing sensitive information.