SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) SANS Stormcast Thursday, November 13th, 2025: OWASP Top 10 Update; Cisco/Citrix Exploits; Test post quantum readiness
Nov 13, 2025
A new release candidate for the OWASP Top 10 list is changing the game, adding critical focus on supply-chain vulnerabilities. Learn how advanced threats exploited zero-day vulnerabilities in Citrix and Cisco to deploy web shells. Plus, there’s a spotlight on tools for assessing your readiness for post-quantum cryptography, ensuring your services can withstand future computing threats. Don't miss these essential updates that could shape your cybersecurity strategies!
AI Snips
Chapters
Transcript
Episode notes
OWASP 2025 Keeps Core Risks, Expands Supply Chain
- OWASP's 2025 release candidate largely retains classic web vulnerabilities like injection, cryptographic failure, and broken access control.
- It renames and broadens vulnerable components to 'software supply chain failures' and adds 'mishandling of exceptional conditions' as a new item.
Amazon Saw Early Exploit Attempts
- Amazon detected exploit attempts against Citrix and Cisco zero-days and only one honeypot was hit.
- That limited exposure made the incident much smaller for Amazon than it could have been.
Firewalls And VPNs Are Primary Attack Vectors
- Secure network devices are now a primary attacker entry vector, rivaling phishing.
- Web shells are a common payload and detecting them is essential to spotting compromises.