meta_pixel
Tapesearch Logo
Log in
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

ISC StormCast for Thursday, June 2nd 2016

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

SANS ISC Handlers

Tech News, News, Technology

4.9696 Ratings

🗓️ 2 June 2016

⏱️ 5 minutes

🔗️ Recording | iTunes | RSS

🧾️ Download transcript

Summary

Daily 5 min infosec news summary. News, patches, vulnerabilities and trends in information security. KeePass Insecure Update; Claims of Teamviewer Breach

Transcript

Click on a timestamp to play from that location

0:00.0

Hello, welcome to the Thursday, June 2nd, 2016 edition of the Sandcent Storm Center's Stormcast. My name is Johannes Ulrich and I'm recording from Jacksonville, Florida.

0:13.3

Yesterday I mentioned how a lot of bloatware that comes pre-installed on systems suffers from insecure updates now with

0:21.7

bloatware like this we didn't really expect any better but sadly security

0:27.9

software sometimes makes the same mistake the latest one here is key pass

0:33.9

key pass is a free password safe that you can install to manage your password and

0:40.3

it checks for new updates via HTTP and then also downloads the actual software via HTTP.

0:48.3

That's pretty sad also the fact that they will not fix it, according to the individual that found this problem.

0:57.0

According to a response that this individual published from KeyPass, one reason why they are not going to fix this is that they would be losing out on ad revenue and also the cost of implementing HDPS is too much for them.

1:15.7

Well, certificates, you can get them for free and really the overhead involved in HDPS is not

1:21.2

really all that bad.

1:22.7

In particular, if they would implement it just for this download, they could still keep most of the remainder of their page via HTTP, I guess, if they insist in doing so.

1:35.3

Another solution, of course, would be to sign the binary itself and sign these update checks that notify the user that there is a new update available to prevent

1:47.2

tampering with the traffic in transit, but apparently that isn't implemented either.

1:52.8

And this would really not require any changes to their web hosting infrastructure if that

1:59.5

is too complex for them.

2:01.6

And there is quite a bit of talk about a possible compromise of Team Viewer.

2:06.6

Team Viewer is a system that you can use to share your desktop.

2:09.6

A lot of users keep it enabled on their desktop to allow for remote access.

2:15.6

Now over the last few days, several users reported that they had, for

2:21.2

example, money stolen from their banking accounts by having a user log into the system via

2:28.8

team viewer and then use pre-stored logins in their browser to log in their browser to log into various accounts like banking and

2:37.1

PayPal and the like. Now around the same time when this happened, Team Viewer did experience

...

Please login to see the full transcript.

Previous episode | Next episode

Disclaimer: The podcast and artwork embedded on this page are from SANS ISC Handlers, and are the property of its owner and not affiliated with or endorsed by Tapesearch.

Generated transcripts are the property of SANS ISC Handlers and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.

Copyright © Tapesearch 2025.