

SANS Stormcast Friday April 11th: Network Infraxploit; Windows Hello Broken; Dell Update; Langflow Exploit
9 snips Apr 11, 2025
Delve into the persistent threat of an older Cisco vulnerability still being exploited today. Hear about Microsoft's recent update woes, including troubles with Windows Hello and critical fixes for Office 2016. Learn about Dell's urgent updates addressing security flaws in their Powerscale One FS product. The discussion wraps up with insights on a critical vulnerability in Langflow that could be exploited, featuring real-time hits in honeypot logs. Cybersecurity keeps evolving, and staying updated is crucial!
AI Snips
Chapters
Transcript
Episode notes
Patch Older Vulnerabilities
- Consider vulnerabilities like CVE 2018-0171.
- These older issues are actively exploited by actors like VOLT TYPHOON.
Fix Windows Hello
- Re-enroll devices experiencing Windows Hello login issues after updates.
- This fix addresses problems with PIN or facial recognition login.
Update Dell PowerScale
- Update Dell PowerScale 1FS systems immediately.
- This critical update addresses a severe default password vulnerability.