4.9 • 696 Ratings
🗓️ 4 April 2023
⏱️ 8 minutes
🧾️ Download transcript
Click on a timestamp to play from that location
0:00.0 | Hello and welcome to the Tuesday, April 4, 2020, |
0:04.0 | 3,000, 3 edition of the Sansanet Storm Center's Stormcast. |
0:08.0 | My name is Johannes Ulrich, and today I'm recording from Jacksonville, Florida. |
0:14.8 | Well, who would have thought we got another sort of supply chain issue today? |
0:20.7 | Now, the day started with a fairly straightforward, |
0:24.7 | simple blog post. It's beginning of April here in the United States, April 15th. This is the big |
0:30.4 | tax deadline. So I figured it may be a good idea to remind people about some of the security |
0:37.2 | issues around filing your taxes. |
0:40.3 | But this weekend, we also got a note from one of our readers through about eFile.com, |
0:48.3 | kind of behaving oddly, displaying pop-ups and offering browser updates to download. |
0:53.8 | So after posting my initial diary, I spend a little bit time on eFile.com. |
1:00.3 | And, well, a big surprise, I discovered what looks like a possible supply chain issue again. |
1:08.0 | So just a little bit about eFile.com. |
1:10.4 | This website is apparently authorized by the IRS to offer |
1:15.5 | e-filing services so you can fill out your tax information on the site and they'll transmit the |
1:21.2 | information to the IRS. This would make you believe that they are very worried about security, but apparently what I'm describing started around March 17th, so about two weeks ago. |
1:36.7 | The root cause is that one of the JavaScript files on this site apparently got compromised. |
1:47.2 | The name of the file is Popper.js. |
1:54.9 | It's Serbia-Condeliver network, but one that's apparently used and set up for e-file.com. |
1:57.3 | Popper.J.S. |
2:02.6 | is often used with the Bootstrap framework or library. |
2:08.0 | And as the name implies, it's sort of for pop-up notices in order to display them on the site. |
... |
Please login to see the full transcript.
Disclaimer: The podcast and artwork embedded on this page are from SANS ISC Handlers, and are the property of its owner and not affiliated with or endorsed by Tapesearch.
Generated transcripts are the property of SANS ISC Handlers and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.
Copyright © Tapesearch 2025.