Hello, welcome to the Monday, March 1st, 2021 edition of the Sandcent Storm Center's Stormcast.

My name is Johannes Ulrich.

And today I'm recording from Jacksonville, Florida.

Let's first take a look at what we got in Darius this weekend.

Guy rode up a fishing attack that he observed in which the attacker

is claiming that you're using a classic version of Outlook and you need to essentially

click on a link and log in order to retain access to your email. So typical create urgency and of course with

vendors all the time updating software and no longer supporting old access methods, user may

very well find this to be important enough to click on and then to log in.

Outlook credentials always a thing that attackers like to collect,

because once they have access to your email,

they often then leverage that access for business email compromise.

And then we got a quick update from Jim about the Satori botnet that he wrote about a couple weeks ago that the scan port 26.

He did a quick geolocation on the attackers that he saw scanning here.

Well, a heavy concentration in South Korea, which we often

have for these type of botnets. Nothing really that's sort of terribly in common to the sources

of these attacks. And researchers at the Rue University, Bohum,

and North Carolina State University took a closer look

at the Alexa skill ecosystem and various security issues

within that ecosystem.

If you are publishing a skill with Amazon for use with Alexa, essentially,

Amazon is doing sort of the voice recognition part for you and then sending a request back to an

...