SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) ISC StormCast for Monday, January 6th, 2025
9 snips
Jan 6, 2025 Discover the latest cybersecurity threats, including malware delivered via Python scripts. Learn about critical vulnerabilities affecting ASUS routers and important updates in SSL/TLS protocols. Explore goodware hash sets and their role in enhancing security. The discussion highlights the need for vigilance in defense strategies as hackers continue to evolve their tactics. Stay informed to safeguard your systems!
AI Snips
Chapters
Transcript
Episode notes
Monitor Python Execution
- Monitor Python execution on Windows systems, as attackers increasingly use it for malware.
- Treat Python similar to PowerShell, as both offer similar capabilities and potential risks.
Goodware Hash Sets and Malware Analysis
- Goodware hash sets can refine malware analysis tool results by identifying legitimate files.
- Services like circle.lu provide APIs for automating goodware hash set integration.
SSL/TLS Protocol Updates and Legacy Systems
- TLS 1.3 adoption increased in 2024, but older protocols like SSLv3/v2 persist.
- Legacy systems and IoT devices likely contribute to the continued use of outdated protocols.