SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

The podcast dives into Microsoft's upcoming Windows 2025, highlighting the retirement of Windows Server Update Services and a new focus on cloud solutions. It introduces hot patching to reduce downtime during updates. Listeners also learn about Google's recommendations for enhancing TLS certificate security, moving away from WHOIS validation. The discussion wraps up with a look at critical vulnerabilities in the Versa Director and Apache Hugegraph, stressing the importance of timely updates in maintaining security.

Learn about the latest phishing tactics targeting developers, with a fake GitHub email spreading malware. Discover a newfound vulnerability in the Cloud Services Appliance that underscores the urgency for security updates. Explore law enforcement's advances in tracking Tor users, especially concerning child exploitation. The discussion also reveals the shutdown of a major service used for unlocking stolen iPhones, impacting illicit operations.

Malware is evolving, with InfoStealer targeting crypto wallets and recent vulnerabilities in ServiceNow's access control system causing concern. The discussion covers critical patches released by GitLab and Aruba, emphasizing the importance of active patch management. Listeners learn how to stay ahead of security threats and the pressing need for improved cyber defenses in today's digital landscape.

Explore the latest cyber threats, including a keystroke-capturing script reminiscent of the notorious I love you virus. Delve into critical vulnerabilities in VMware vCenter and a critical zero-click exploit in macOS that could have serious implications. Plus, discover how Google is enhancing Chrome’s security with the latest post-quantum encryption standard. This podcast highlights the critical need for vigilance in our rapidly evolving digital landscape.

Explore the intriguing world of managing PE files with overlays, designed to dodge security tools. Learn about recent Apple updates and their associated vulnerabilities, stressing why timely updates matter. Dive into the critical vulnerabilities affecting DLink devices and understand the urgency of upgrading to the latest firmware. Plus, discover Microsoft's latest guidance to counter zero day exploits and strengthen your cybersecurity defenses.

Discover the intriguing world of honeypots as a machine learning tool uncovers data clusters and command similarities. Learn about a novel credential theft technique linked to the StiLC Malvers toolset. Recent vulnerabilities in Ivanti appliances raise concerns, along with crucial updates for Docker Desktop. Stay informed on the ever-evolving threats in cybersecurity!

A recent compromise of an old .mobi whois server sheds light on the cybersecurity risks tied to forgotten domains. The podcast discusses Microsoft's new security innovations, including the implementation of post-quantum cryptography to safeguard Windows customers. Additionally, a critical update for GitLab is highlighted, addressing a severe remote code execution vulnerability. The necessity for vigilant data validation and management post-expiration is emphasized, showcasing the importance of proactive security measures in today's digital landscape.

The hosts dive into urgent cybersecurity vulnerabilities impacting Microsoft, highlighting risks of remote code execution. A critical issue in ColdFusion also gets attention. The importance of timely patching is stressed, especially with notable updates from Microsoft, Adobe, and Ivanti. Listeners are advised on best practices for vulnerability management, considering upcoming changes to the podcast schedule.

Explore critical cybersecurity vulnerabilities, including a high-risk flaw in Loadmaster with a CVSS score of 10. Urgent patches for HAProxy and SonicWall SSL VPN are highlighted. The discussion dives into Akira ransomware targeting specific accounts and a severe Kibana deserialization vulnerability. Additionally, it examines how Stately Taurus abuses Visual Studio Code for espionage, shedding light on the complexity of these attacks that exploit legitimate software features.

Discover the shocking energy consumption of password cracking using Hashcat and how a new Python plugin enhances Notepad++. Dive into the murky waters of fake LinkedIn job ads used by North Korea to distribute malware. Learn about a sneaky new Android malware that strips crypto wallet passphrases right from your device. Plus, be wary of a sneaky sextortion scam that leverages victims' spouses' names as bait, highlighting the critical need for vigilance in online security.