SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

SANS Stormcast Wednesday, April 30th: SMS Attacks; Apple Airplay Vulnerabilities

Apr 30, 2025
Ask episode
AI Snips
Chapters
Transcript
Episode notes
INSIGHT

Attack Techniques on SMS Gateways

  • Attackers scan for WordPress sites with SMS plugins to exploit them.
  • They also scan for SMS API configuration files like ENV files to steal credentials.
ADVICE

Protect SMS API Credentials

  • Protect your SMS API credentials to avoid unauthorized use and costly bills.
  • Losing credentials can harm your sender number's reputation, forcing you to get a new one.
INSIGHT

AirPlay Assumes Trusted Network

  • AirPlay protocol assumes local network security, which exposes pre-authentication attack surface.
  • Vulnerabilities include zero-click remote code execution and denial-of-service attacks on affected devices.
Get the Snipd Podcast app to discover more snips from this episode
Get the app