SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

Discover the escalating threat of a critical vulnerability in Ivanti's VPN and its global exploitation. Learn about urgent patches for Citrix and vulnerabilities in Atlassian Confluence, alongside a concerning rise in undetected macOS malware. The urgency of ongoing Google Chrome 0-day vulnerabilities is also highlighted, along with GitHub's key rotation strategy to counter credential leaks. This episode serves as a must-listen for anyone invested in cybersecurity, showcasing the latest in critical updates and emerging threats.

Dive into the intriguing world of malware that creatively employs PowerShell for dynamic string assembly. Delve into the ongoing vulnerabilities plaguing Ivanti’s products and their lack of transparency. Explore the latest updates on NVIDIA's graphics cards and critical vulnerabilities in GitLab affecting email handling. This discussion highlights essential workarounds and encryption processes to keep your systems secure.

In this episode, experts discuss the critical timeline for removing DSA support in OpenSSH and recent vulnerabilities patched by Juniper. They highlight a significant flaw in ManageEngine's AD Self-Service and introduce an updated version of the Atomic Stealer malware, which is increasingly targeting Mac systems. The conversation emphasizes the importance of staying vigilant against evolving malware threats while exploring new infosec tools through an engaging YouTube series.

Dive into the world of cyber threats with discussions on a spike in Jenkins brute force scans. Learn about alarming vulnerabilities in Ivanti’s VPN, allowing hackers to slip through security measures. The team also highlights a privilege escalation issue in Zoom that users need to know about. Plus, stay informed on stealthy attackers targeting Apache applications. Don't miss practical cybersecurity updates and best practices to bolster your defenses.

The latest security patches from Microsoft address 48 critical vulnerabilities, covering issues in Windows Hyper-V and Kerberos. Adobe also has newly identified vulnerabilities that need attention. A noteworthy authentication coercion vulnerability in Kyocera Device Manager raises alarms. Additionally, the podcast reveals how network-connected tools like wrenches used in factories can be hacked, highlighting potential sabotage and ransomware risks. Tune in for essential insights on current cyber threats!

Dive into the fascinating world of user agents as the hosts analyze their authenticity and parsing techniques. Explore the KyberSlash vulnerability and its implications for cybersecurity. Learn about the alarming Netfilter DoS vulnerability (CVE-2024-0193) affecting the Linux kernel. The discussion also sheds light on security concerns regarding the Cacti system. Stay informed on the latest threats and trends in security!

Discover the power of PowerShell as a tool for network security while diving into alarming new phishing tactics that exploit users' trust. Uncover the latest threats from a Mac malware linked to North Korea and discuss the ongoing issues surrounding persistent login credentials in Chrome. The discussion sheds light on the broader implications of these cyber security challenges, emphasizing the evolving landscape of digital threats.

Explore the latest software patches addressing critical vulnerabilities in Wireshark and Android, including urgent updates for Ivanti's software. Discover the dark side of the internet with malicious PyPi packages that deploy crypto miners, cleverly evading detection. Plus, learn about a prank in the NPM ecosystem with the 'everything' package that wreaks havoc by installing all available packages, causing chaos for developers and their systems!

Dive into the intriguing world of malspam as various attachment types and trends from 2023 are discussed. Discover the chaos caused by a compromise in Orange Spain's RIPE account, leading to significant BGP security vulnerabilities. Learn about the Bitwarden heist and the critical exploits affecting Apple iOS. This episode delivers a compelling look into the evolving landscape of cybersecurity threats.

Discover how SSH banners play a crucial role in network security and identify potential vulnerabilities in server configurations. Delve into alarming issues surrounding Google’s OAuth 2.0 system, where malware exploits persistent cookies to hijack user sessions. Learn about new and innovative DNS amplification attacks backed by research from Tsinghua University, and gain insights into protective measures for securing DNS servers against these evolving threats.