ISC StormCast for Friday, October 13th 2017
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
SANS ISC Handlers
4.9 • 754 Ratings
🗓️ 12 October 2017
⏱️ 6 minutes
🧾️ Download transcript
Summary
Transcript
Click on a timestamp to play from that location
| 0:00.0 | Hello, welcome to the Friday, October 13th, 2017 edition of the Sands and the Storm Center's Stormcast. My name is Johannes Ulrich, |
| 0:09.5 | and the time recording from Singapore. When we're talking about version control tools like Git, we usually talk about |
| 0:17.0 | software development, but Xavier today has a quick diary reminding us that these tools |
| 0:23.5 | are also very useful to control versioning on configuration files and the like. For example, |
| 0:31.0 | he's also sharing a quick script here that he threw together in order to manage blacklists and other things that he's extracting |
| 0:39.8 | from MISP. Now, for certain configurations, you also have some more specialized tools. For example, |
| 0:47.5 | one of our readers reminded us of Rancid, which is a real nice tool to manage configurations on routers and the like, |
| 0:56.0 | and it will also monitor these devices for any unauthorized changes. |
| 1:01.0 | Just from personal experience, I think this really goes way beyond sort of security in |
| 1:08.0 | that a lot of these changes unauthorized or not are often not properly documented |
| 1:14.7 | if you don't make it easy and tools like it do just that they make it really easy to document |
| 1:21.4 | what changes you made so in case there is a problem it's much easier to figure out what particular change caused the issue. |
| 1:30.6 | And the coin hive cryptocurrency miner, of course, is not going away. The latest sighting comes |
| 1:37.2 | from Pirate Bay. Now, Pirate Bay isn't exactly known for playing by the rules, So no big surprise there. They had a preliminary |
| 1:46.6 | allowancement a while ago that they may use a crypto coin miner in order to fund their |
| 1:53.8 | operation instead of ads. It's not clear if this coin hive miner was actually deployed by Pirate Bay or if it was actually loaded |
| 2:06.2 | via malicious advertisements. And there's also some competition for coinhive, Cryptolute.com |
| 2:14.2 | is also offering a similar JavaScript that can be deployed in browsers. |
| 2:21.2 | Both Cryptolute and Coin Hive actually do offer a little UI widget that you can load |
| 2:27.5 | in your page that does give the user control over how much resources they would like to use for coin mining, |
| 2:36.1 | but so far all the instances I have seen really are using it more or less maliciously |
| 2:41.7 | without asking the user for permission. |
... |
Please login to see the full transcript.
Disclaimer: The podcast and artwork embedded on this page are from SANS ISC Handlers, and are the property of its owner and not affiliated with or endorsed by Tapesearch.
Generated transcripts are the property of SANS ISC Handlers and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.
Copyright © Tapesearch 2026.