SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
SANS Internet Stormcast Feb 6th 2025: com- prefix domain phishing; Win 10 ESU pricing; Firefox CT Policy; Veeam and Netgear patches
Feb 6, 2025
Learn how scammers are exploiting com- prefix domains to launch convincing phishing attacks, targeting victims with toll fee scams. Microsoft updates pricing for Windows 10 Extended Security Updates, setting a fee for continued protection. Mozilla pushes for better internet security by enforcing certificate transparency measures. Additionally, discover serious vulnerabilities in Veeam's backup process and Netgear's WiFi routers, highlighting the need for rapid updates in cybersecurity.
07:03
AI Summary
AI Chapters
Episode notes
Podcast summary created with Snipd AI
Quick takeaways
- The rise in toll-smishing attacks demonstrates the sophistication of phishing techniques using deceptive 'com-' prefix domains, emphasizing the need for vigilant DNS monitoring.
- Mozilla's enforcement of certificate transparency requirements shows a shift towards greater security in browser policies, which may affect internal certificate management for organizations.
Deep dives
Toll-Smishing Attacks Overview
Toll-smishing attacks are becoming increasingly prevalent, where attackers send text messages claiming that users are overdue on toll payments. These messages often include a link for immediate payment and are carefully tailored to target specific regions, such as using local toll system references like Florida's SunPass. Victims may be misled by domains that closely mimic legitimate websites, making it challenging for them to recognize the scam. To mitigate risks, monitoring DNS lookups and identifying patterns can help prevent users from falling victim to these deceptive messages.
Remember Everything You Learn from Podcasts
Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.
