meta_pixel
Tapesearch Logo
Log in
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

ISC StormCast for Friday, March 24th, 2023

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

SANS ISC Handlers

Tech News, News, Technology

4.9696 Ratings

🗓️ 24 March 2023

⏱️ 6 minutes

🔗️ Recording | iTunes | RSS

🧾️ Download transcript

Summary

Daily 5 min cyber security news summary. News, patches, vulnerabilities and trends in information and network security. Safe Redactions; Untitled Goose; Veeam Vulnerability; Python Unicode Evasion;

Transcript

Click on a timestamp to play from that location

0:00.0

Hello and welcome to the Friday, March 24th, 2023 edition of the Sands and its Stormtters Stormcast. My name is Johannes Ulrich and today I'm recording from Augusta, Georgia.

0:15.4

With all the news lately about the snipping and redacting tools that do leave some of the original

0:23.3

information that users attempted to remove life in the image files. I did today publish a quick

0:31.8

diary post about how to safely redact images. Buggy Tools has been a big issue here, so this diary entry is a little bit with that in mind,

0:44.3

with buggy tools that may not necessarily do what you think they're doing,

0:49.3

and what you can do in addition to just using a simple tool to override parts of the image

0:56.9

to make sure that the image that you, for example, post on social media

1:01.7

does not contain any additional content.

1:06.1

A couple quick tricks here is, again, converting images to different image formats or maybe taking

1:13.7

screenshot of images after they have been redacted. Some caveats here where of course you have to be

1:21.0

careful that the rest of your screen when you're taking a screenshot is clean. Also another little

1:26.7

trick here and it's maybe a little bit extreme but probably effective where you're just taking a screenshot is clean. Also another little trick here that's maybe a little bit extreme,

1:28.5

but probably effective, where you're just taking a snapshot with a camera of your screen after you

1:34.1

redacted the image. Some caveats here, of course, is that a camera may add its own metadata

1:39.4

and that you may have to look for things like, for example, screen reflections that may be visible in the camera.

1:47.6

And apparently Microsoft is already working on a fix for the snipping tool in Windows 11.

1:56.0

And Sisa, the cybersecurity infrastructure security agency has released a new tool,

2:02.4

entitled Goose Tool, is what they're calling it,

2:06.1

with a focus on auditing your Microsoft Cloud Logs.

2:12.0

It does work with Microsoft 365, Unified Audit Logs, Azure Activity Logs, Microsoft Defender for IOT alerts, and more.

2:23.1

And basically, what it does is it extracts all of these different logs and then looks for anomalies and alerts you of possible events that you may want to investigate further.

2:37.0

Looks like a pretty interesting tool, in particular with the big focus on things like Azure,

...

Please login to see the full transcript.

Previous episode | Next episode

Disclaimer: The podcast and artwork embedded on this page are from SANS ISC Handlers, and are the property of its owner and not affiliated with or endorsed by Tapesearch.

Generated transcripts are the property of SANS ISC Handlers and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.

Copyright © Tapesearch 2025.