SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
ISC StormCast for Friday, December 6th, 2024
Dec 6, 2024
Explore the intricate web of business email compromise, highlighting prevention strategies and the urgency of proactive management. Dive into alarming vulnerabilities in Mitel's MyCollab platform, featuring authentication bypass risks and the need for quick patches. The conversation also celebrates Alan Paller's induction into the Cybersecurity Hall of Fame, underscoring his impact on the field. Plus, discover insights on the Lorex 2K Indoor Wi-Fi Security Camera and HPE Aruba vulnerabilities, keeping you updated on the latest in cybersecurity developments.
05:27
AI Summary
AI Chapters
Episode notes
Podcast summary created with Snipd AI
Quick takeaways
- Business email compromise tactics, such as manipulating inbox rules, can lead to significant financial losses if not prevented.
- Recent vulnerabilities in systems like Mitel MyCollab and HPE Aruba highlight the critical need for timely updates and security patches.
Deep dives
Understanding Business Email Compromise
Business email compromise is a prevalent threat that can lead to significant financial losses for organizations. In a recent incident, the attack unfolded over three days, starting with an email that linked to a specific inbox rule, which filtered important communications away from primary inboxes. This tactic allowed the attacker to manipulate email filters rather than forwarding information to external addresses, evading common security measures. The detection came from observing the overall behavioral patterns of the attack, highlighting the importance of implementing restrictions on inbox rules to enhance organizational defenses.
Remember Everything You Learn from Podcasts
Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.
