meta_pixel
Tapesearch Logo
Log in
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

ISC StormCast for Friday, September 17th, 2021

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

SANS ISC Handlers

Tech News, News, Technology

4.9696 Ratings

🗓️ 17 September 2021

⏱️ 7 minutes

🧾️ Download transcript

Summary

Daily 5 min cyber security news summary. News, patches, vulnerabilities and trends in information and network security. Brute Force Phishing; PrintNightmare Patch Stops Printing; Linux Malware on Windows ... and more

Transcript

Click on a timestamp to play from that location

0:00.0

Hello, welcome to the Friday, September 17th, 2021 edition of the Sandcent Storm Center's Stormcast. My name is Johannes Ulrich, and I'm quoting from Jacksonville, Florida.

0:14.1

Quick diary from Jan today about fishing and some of the fishing emails that we are getting at the handler's email address.

0:23.3

Now, fishing, of course, is essentially a numbers game.

0:28.1

And what Jan is going into here in this quick note is that, well,

0:33.2

attackers are going to just send the same phishing email with various subject lines,

0:39.8

various messages, trying to somehow convince you to either click on the link or, of course,

0:46.0

also trying to bypass various filter techniques.

0:49.7

This particular fish as so often these days was hosted on Firebase storage, the Google Cloud Service,

0:58.9

that has become sort of one of the favorite spots for hosting Fishing HTML.

1:05.3

And just as I'm recording this, I checked it out, and sure enough, the fishing page is still available showing how resilient

1:13.3

host fire base storage is.

1:17.9

Let me have an update to Microsoft's patch Tuesday, one of the war on abilities being patched

1:24.8

here.

1:25.5

CVE 2021-3695-8 was one of the last remaining Brent Nightmare WarnerBillies.

1:32.9

And if you remember, the nature of this warnability was that normal users were able to install

1:40.0

drivers.

1:41.5

And now this final patch does prevent all driver installs from users, which apparently

1:49.1

is now causing problems with some network printers.

1:53.9

Bleeping Computer has a good summary of this and the option you have is essentially

1:58.8

uninstall the patch or set a specific registry key.

2:04.8

There's a copy files policy key that you may set to one end.

2:10.5

This will enable copy files again, so users will be able to install their print drivers.

...

Please login to see the full transcript.

Disclaimer: The podcast and artwork embedded on this page are from SANS ISC Handlers, and are the property of its owner and not affiliated with or endorsed by Tapesearch.

Generated transcripts are the property of SANS ISC Handlers and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.

Copyright © Tapesearch 2025.