SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) SANS ISC Stormcast, Jan 13, 2025: Defender Updates, Ivanti RCE, Apple USB-C Hack and more
10 snips
Jan 13, 2025 In the latest discussions, Windows Defender enhances its ability to detect malicious Chrome extensions, bolstering enterprise security. Attackers are using embedded OLE files in Office documents to evade detection, prompting new combat tools. A serious vulnerability in Ivanti's software raises concerns, while researchers reveal a hack of Apple's USB-C controller, exposing hardware security issues. With tax season approaching, there's a push for taxpayers to secure their IP PIN to prevent identity theft.
AI Snips
Chapters
Transcript
Episode notes
Check Chrome Extensions with Defender
- Use Defender to check browser extensions.
- Search for malicious extension IDs to enhance enterprise security.
OLE Files in Office Documents
- Attackers hide OLE files inside OXML Office documents to evade detection.
- Tools like oledump.py and zipdump.py can help analyze and identify these malicious macros.
Patch Ivanti Products
- Patch Ivanti Connect Secure immediately due to an actively exploited RCE vulnerability.
- Patches for other affected products like Policy Secure, Neurons, and CTA will be available January 21st.