SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

The discussion dives into the implications of recent takedowns and their real-world impacts. A spotlight is on the Department of Justice's crackdown on a Russian-linked botnet targeting home routers. The ongoing threats in the cloud space are explored, hinting at vulnerabilities ripe for exploitation. Additionally, there's a chilling look at how data scientists are becoming targets of malicious machine learning models, concealed with silent backdoors. Stay informed about the evolving tactics of cyber adversaries!

Dive into the fascinating world of malware analysis using the Cowrie honeypot and VirusTotal for dynamic file scrutiny. Recent Wi-Fi authentication vulnerabilities in WPA2 and WPA3 raise significant security concerns, particularly for Linux systems. Moreover, discover the alarming rise of malicious spam tactics targeting trusted brand subdomains, highlighting the importance of vigilant domain security. Stay informed and prepared as cyber threats evolve!

Discover a breakthrough in tracking the MGLNDD scan string using advanced network analysis techniques. Learn about a new info-stealer malware that cleverly evades sandbox detection. The discussion dives into recent vulnerabilities in Salesforce's Apex code and highlights significant risks tied to the Linux kernel. Emphasis is placed on the urgent need for upgrades to address these security threats, ensuring cybersecurity measures are proactive and effective.

Explore the complex world of cybersecurity as researchers probe the grey areas of security practices. Discover how a massive AT&T network outage underscores the need for solid backup systems. Learn about the LockBit ransomware group exploiting ConnectWise's Screenconnect software. Plus, hear about the emerging SSH Snake vulnerability and the rising concerns it brings. Stay informed on current scanning activities and the importance of securing SSH keys to prevent system breaches.

Discover how phishing scams are using archive.org to host malicious pages with crafty HTML and JavaScript. Dive into a dangerous vulnerability in Screen Connect that’s actively being exploited. The conversation gets technical with a critique of current quantum encryption protocols in iMessage, raising concerns about rushing into new technologies. This discussion emphasizes the ever-present security threats and the need for robust protective measures in our digital interactions.

Discover the evolving tactics of malware developers who use evasion techniques to dodge detection while exploiting software vulnerabilities. Uncover the recently revealed weaknesses in ConnectWise's Screen Connect and VMware's authentication plugin. Dive into the alarming potential threats of wireless charging, including methods to defend against them. Lastly, explore a fascinating study on manipulating wireless chargers using voltage noise, opening up a new frontier in cybersecurity challenges.

Discover the latest exploits of the evolving Mirai botnet, now featuring enhanced brute force capabilities and a DNS-Sec vulnerability. Dive into the complexities of DNS manipulation and the challenges of identifying file types, with Google launching the AI-powered Magika system to tackle these issues. The discussion also touches on the risks posed by unsynchronized clocks, highlighting the intricate nature of cybersecurity threats that continue to emerge.

Discover the latest security advisories from SolarWinds and their implications for users. Learn about new private network checks in Google Chrome, enhancing web safety. Uncover the threat posed by the Gold Factory iOS Trojan, which cleverly manipulates user authentication through social engineering. This discussion dives into pressing cybersecurity vulnerabilities and essential updates to keep you informed and protected.

Jennifer Walker, an expert in detecting rogue Ethernet switches, shares her insights on innovative Layer 1 techniques for identifying hidden devices in network infrastructures. The conversation dives into the challenges posed by undocumented rogue switches and explores detection methods beyond traditional approaches. Walker discusses the role of Time Domain Reflectometry in diagnosing issues and highlights the importance of robust network monitoring strategies amidst increasing complexity. They also touch on the latest cyber threats, including rising smishing campaigns.

An intern shares their hands-on journey troubleshooting a honeypot system, highlighting the importance of practical skills. The discussion dives into security risks in Ubuntu's package suggestion system, shedding light on potential exploits through snap names. Meanwhile, vulnerabilities in Microsoft Outlook's Monikerlink bug are unveiled, along with urgent patch updates from Adobe and AMD. Stay informed and vigilant against these evolving threats!