SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
SANS Internet Stormcast Feb 10th 2025: Podcast Anniversary; SSL 2.0; Exposed Deepseek Installs; Crypto Scam costs
Feb 10, 2025
Celebrate 16 years of cybersecurity insights while discussing the age of SSL 2.0, which turns 30 but still has over 400k hosts exposed. Delve into alarming security flaws in the Chinese Deepseek AI model, highlighting various deficiencies. Learn about the intricacies of dual signature crypto scams, revealing that these wallets actually require financial investment to set up. Join in on a blend of nostalgia and critical reflections on current cybersecurity threats!
06:52
AI Summary
AI Chapters
Episode notes
Podcast summary created with Snipd AI
Quick takeaways
- Over 423,000 servers are still using the outdated SSL 2.0 protocol, highlighting the urgent need for updated security practices.
- The security risks associated with improperly managed AI models like Deepseek emphasize the importance of data privacy and trust in technology sources.
Deep dives
Widespread Use of Outdated SSL Protocols
The presence of SSL version 2 servers still active on the internet raises concerns about outdated technologies in use. As revealed, there are approximately 423,000 IP addresses still supporting this deprecated protocol; however, this number represents only a small fraction of all exposed HTTP servers. Administrators should take note that encountering a server with SSL version 2 often indicates that it is operating on significantly outdated software, which may not have received important updates for many years. Web servers still relying on such old protocols likely harbor additional vulnerabilities, underscoring the need for organizations to update their systems and protocols to enhance security.
Remember Everything You Learn from Podcasts
Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.
