SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) SANS Stormcast Friday Mar 7th: Chrome vs Extensions; Kibana Update; PrePw0n3d Android TV Sticks; Identifying APTs (@sans_edu, Eric LeBlanc)
Mar 7, 2025
Eric LeBlanc, a Senior cybersecurity engineer at the U.S. Strategic Petroleum Reserve, shares insights into the ever-evolving world of cybersecurity. He discusses the controversial Chrome update that disrupts ad blockers and the critical Kibana vulnerability posing security risks. LeBlanc also delves into the alarming discovery of pre-infected Android TV sticks filled with adware. His innovative meta detection strategies highlight the complexities of identifying Advanced Persistent Threats and managing log data effectively in federal environments.
AI Snips
Chapters
Transcript
Episode notes
Browser Updates and Extensions
- Keep your browsers updated, but be aware of automatic extension deactivation.
- Double-check your extensions after updates to re-enable important ones like ad blockers.
Critical Kibana Update
- Update Kibana immediately to patch a critical vulnerability.
- This vulnerability allows arbitrary code execution for users with "Viewer" access.
Pre-Infected Android TV Sticks
- Be cautious when buying cheap Android TV sticks from no-name suppliers.
- Many pre-installed backdoors and adware have been found on these devices.