meta_pixel
Tapesearch Logo
Log in
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

ISC StormCast for Friday, March 8th 2019

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

SANS ISC Handlers

Tech News, News, Technology

4.9696 Ratings

🗓️ 8 March 2019

⏱️ 6 minutes

🔗️ Recording | iTunes | RSS

🧾️ Download transcript

Summary

Daily 5 min cyber security news summary. News, patches, vulnerabilities and trends in information and network security. RSA Panel; Disposable E-Mails; NetApp / Cisco Patches; Github/Slack as C&C;

Transcript

Click on a timestamp to play from that location

0:00.0

Hello, welcome to the Friday, March 8, 2019 edition of the Sandsenet Storm Center's Stormcast. My name is Johannes Ulrich,

0:09.4

and today I'm recording from San Francisco, California. Thanks, first of all, to everybody who showed up

0:16.8

to the RSA keynote panel today with Alan Hether and myself.

0:23.4

There is a full recording of the panel available on the RSA website.

0:28.4

It typically also release it to YouTube relatively soon after the conference.

0:35.1

Ed talked about some of the attacks against DNS management consoles,

0:39.3

also how DNS fronning is still used in particular in attacks within cloud providers

0:46.7

and from one cloud provider to another.

0:50.4

Heather talked about some of the risks that you're exposing yourself with all the personal information that's available about you from various cloud providers.

1:00.8

Now, my part was, first of all, about some of the issues with DNS over HTTP, and then also what I sort of tend to call peripheral hardware issues like for example how

1:13.3

BMCs are being used as a beachhead in breaches and also how there's a lot of attention being

1:19.8

spent now to actually create viable exploits against Wi-Fi controllers and also renewed interest in Thunderbolt issues.

1:30.1

So for the details, just refer to the RSA video and I'll link to it in the show notes.

1:39.2

But while I was here in San Francisco, Xavier actually posted a pretty nice diary about disposable email addresses.

1:48.0

Now, disposable email addresses do have a legitimate reason to exist in particular for privacy, but of course, often bad guys also like to use these email addresses for data infiltrations and for command and control.

2:04.6

So Xavier compiled a list of all of these disposable email providers that he came across and he published it on GitHub.

2:14.6

So you can use it to plug it into your SIM to figure out if any of the outbound

2:21.1

communication that you see to these email providers has suspicious content. And storage

2:29.0

system provider Netab is joining the crowd of companies that released devices with default accounts that were not documented.

2:40.1

Netab released updated firmware that will remove this particular account.

2:45.3

This was a default account that would allow arbitrary command execution,

2:49.3

and a large number of NetAps devices are affected by this problem.

...

Please login to see the full transcript.

Previous episode | Next episode

Disclaimer: The podcast and artwork embedded on this page are from SANS ISC Handlers, and are the property of its owner and not affiliated with or endorsed by Tapesearch.

Generated transcripts are the property of SANS ISC Handlers and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.

Copyright © Tapesearch 2025.