SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
SANS Stormcast Friday, April 18th: Remnux Cloud Environment; Erlang/OTP SSH Vuln; Brickstorm Backdoor Analysis; GPT 4.1 Safety Controversy
Apr 18, 2025
Discover how to set up a malware analysis environment in the cloud with Remnux. Dive into a critical vulnerability in the Erlang/OTP SSH library that opens doors to remote code execution. Uncover the resurgence of the Brickstorm backdoor affecting both Linux and Windows systems. Lastly, explore the controversy surrounding OpenAI's GPT 4.1 release, which stirred concerns due to the absence of safety measures against potential malware creation.
06:18
AI Summary
AI Chapters
Episode notes
Podcast summary created with Snipd AI
Quick takeaways
- The podcast highlights a beginner-friendly method for malware analysis using a cloud-based Remnux setup that ensures security and isolation for novice users.
- A critical vulnerability in the Erlang/OTP SSH library is discussed, highlighting the urgent need for users to upgrade systems due to its potential for remote code execution without authentication.
Deep dives
Getting Started with Malware Analysis
A beginner-friendly approach to malware analysis is presented, emphasizing the use of cloud-based systems. An intern shares insights on using AWS and Chasm Workspace to create a remote desktop environment that runs Remnux, a Linux-based analysis tool. This containerized setup not only ensures ease of resetting but also provides isolation from personal networks, making it a secure option for novices. The episode includes a step-by-step guide on how to analyze specific malware samples within this environment, allowing listeners to gain practical experience in the field.
Remember Everything You Learn from Podcasts
Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.
