SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

SANS Stormcast Wednesday Apr 16th: File Upload Service Abuse; OpenSSH 10.0 Released; Apache Roller Vuln; Possible CVE Changes

Apr 16, 2025
Data exfiltration is on the rise as attackers exploit free online services like gofile.io and pastebin. Meanwhile, OpenSSH 10.0 has been released, introducing quantum-safe ciphers and improved security by separating authentication services. Apache Roller has a newly addressed vulnerability with a notable CVSS score, while ongoing discussions about CVE funding may lead to temporary disruptions, though diverse support might see it through.
Ask episode
AI Snips
Chapters
Transcript
Episode notes
ADVICE

Monitor File Transfer Services

  • Monitor free file transfer services like gofile.io and anonfiles.com for data exfiltration.
  • Implement DNS rules or detections for these services, including defunct ones like anonfile.
INSIGHT

OpenSSH 10.0 Security Improvements

  • OpenSSH 10.0 adds quantum-safe ciphers and separates authentication services.
  • This separation reduces the attack surface of the SSH daemon.
ADVICE

Patch Apache Roller

  • Apache Roller's vulnerability allows persistent sessions even after password changes.
  • Patch Apache Roller, but the CVSS score of 10 might be inflated.
Get the Snipd Podcast app to discover more snips from this episode
Get the app