meta_pixel
Tapesearch Logo
Log in
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

ISC StormCast for Friday, August 20th, 2021

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

SANS ISC Handlers

News, Tech News

4.9754 Ratings

🗓️ 20 August 2021

⏱️ 15 minutes

🔗️ Recording | iTunes | RSS

🧾️ Download transcript

Summary

Daily 5 min cyber security news summary. News, patches, vulnerabilities and trends in information and network security. Lightning Strike; Cisco Won't fix EoL Router Bugs; Blackberry QNX bug; @sans_edu student @markmorow

Transcript

Click on a timestamp to play from that location

0:00.0

Hello, welcome to the Friday, August 20th, 2021 edition of the Sandsenet Storm Center's Stormcast. My name is Johannes Ulrich and I'm recording from Stockholm, Germany.

0:13.5

Wrote a little diary today about, well, a lightning strike that hit my house or close to it a couple weeks ago and took out a bunch of network

0:23.5

equipment. So wanted to talk a little bit about what sort of worked, didn't work as far as

0:28.8

protecting my equipment from lightning. Short summary here, one of the things to consider is

0:35.2

that a lot of the search protecters that you commonly buy,

0:38.7

they protect pretty well against an over-waltage that's coming through the power lines.

0:44.9

What quite often happens with close lightning strikes is that the electric field that's coming with the lightning

0:52.8

does induce currents in wires like network cables.

0:58.4

The longer, of course, the more sensitive you may be here, and then causing overcurrents,

1:04.7

over voltages to actually hit network equipment through the network part, which of course is typically not

1:12.3

protected by any kind of search protector. One thing that helped here, of course, was fiber.

1:18.4

Fiber certainly prevents lightning strikes from taking effect this way and also from trawling

1:24.8

from one device to the next.

1:32.0

And it looks like power over Ethernet devices were more vulnerable,

1:37.0

or switches were more vulnerable than non-power over Ethernet switches with the effect that in one case a switch lost its power over Ethernet capability,

1:42.1

but was still able to switch packets just without power over Ethernet capability, but was still able to switch packets just

1:46.0

without power over Ethernet.

1:49.1

And Cisco released a bulletin informing of a critical vulnerability in several of its RV

1:55.8

series routers.

1:57.7

These are typically more small, medium-sized business routers, but the problem here is that while this is a critical vulnerability with a CVSS score of 9.8, no patch will be released for this vulnerability, at least for some of the affected routers, because, well, they're end of life,

2:20.6

so they are no longer supported. However, if you have one of these routers sitting around,

2:27.4

there's still something that you can do to protect yourself, and that's disabling universal

...

Please login to see the full transcript.

Disclaimer: The podcast and artwork embedded on this page are from SANS ISC Handlers, and are the property of its owner and not affiliated with or endorsed by Tapesearch.

Generated transcripts are the property of SANS ISC Handlers and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.

Copyright © Tapesearch 2026.