SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) SANS Stormcast Monday, October 20th, 2025: Malicious Tiktok; More Google Ad Problems; Satellite Insecurity
Oct 19, 2025
Discover the dark side of TikTok where videos masquerade as free software downloads but actually lead users to malware. Learn about malicious Google ads that lure macOS developers with enticing fake tools, only to spread harmful software. On top of that, delve into the alarming reality of unencrypted satellite transmissions, leaving sensitive data vulnerable to eavesdropping. Stay informed and protect yourself from these digital threats!
AI Snips
Chapters
Transcript
Episode notes
TikTok Free-Software Trick Leads To Malware
- Johannes Ulrich describes a TikTok video that promised free Photoshop but instructed users to run PowerShell code as admin.
- The paste-or-download PowerShell trick then fetched additional malware and left victims with infostealers instead of software.
PowerShell Download-And-Execute Is Stealthy
- Ulrich explains the attack often downloads a file via PowerShell and executes it, making the action less obvious to victims.
- The technique's stealth plus users' belief they're installing legitimate software helps these scams remain effective.
Google Ads Pushed Malware To macOS Developers
- Ulrich references Hunt.io's discovery of Google ads pushing fake Homebrew and password manager installers to macOS developers.
- Victims who follow those ads end up with infostealers rather than legitimate developer tools.