Hello, welcome to the Wednesday, August 2, 2017 edition of the Santernet Storm Center's Stormcast.

My name is Johannes Ulrich, and the I'm recording from Nashville, Tennessee.

Of course, SMB is still on everybody's mind with the recent denial of service attack, adding yet another current exploit to the tool chest

that an attacker may use against hosts running SMB. Now one thing that was mentioned often

when you talked about the Wanna Cry and such was disabling some of the old Smbb versions, in particular Smbb version 1.

This isn't too hard to do in a pure Windows network where you have active directory control

over all hosts, but in smaller networks without active directory and also when having other

systems like, for example, Samba servers on Linux systems,

this can be quite challenging.

So today we have a diary by Rob telling you how to use NMAP with some recently related

Nassel scripts in order to detect S&B versions in use on your network. Make sure you're

using the very latest and created version of NMAP, which is 7.6 and was released on Monday.

And I'm teaching here today at the Security Awareness Summit, and of course fishing is on everybody's mind here.

Now, fishing is often seen as an attack that affects more non-technical users,

but yes, more technical savvy users like developers are sometimes subject to fishing attacks and fall for it.

The latest example here are the authors of Copyfish.

Copyfish is a Google Chrome extension, also available for other browsers,

that allows you to extract text from images.

So essentially, it does OCR.

Now, the developers for this extension fell

for a phishing attack stealing their Google developer credentials and as a result

and their extension was taken over by an adware campaign so if you installed a

...