SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) SANS Stormcast Friday Mar 21st: New Data Feeds; SEO Spam; Veeam Deserialization; IBM AIX RCE;
6 snips
Mar 21, 2025 Discover the latest on data feeds and the impact of a recent SEO scam targeting bloggers. Learn about Veeam's alarming deserialization vulnerability and the insufficient patch that remains a concern. Dive into the critical security risks surrounding IBM's AIX operating system, where an unauthenticated remote code execution vulnerability poses serious threats. Stay informed and boost your cyber vigilance with these essential updates!
AI Snips
Chapters
Transcript
Episode notes
New SANS Data Feeds
- SANS Internet Storm Center reorganized their data feeds for efficiency.
- Download threat intel feeds instead of querying the API for individual IPs.
SEO Spam Incident
- An SEO spammer emailed SANS, claiming a podcast link was dead and offering a replacement.
- The original link worked, and the new one was an ad-driven essay site.
Veeam Deserialization Vulnerability
- Veeam's deserialization vulnerability stems from an incomplete block list approach.
- Allow lists are safer, though potentially harder to implement.