meta_pixel
Tapesearch Logo
Log in
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

ISC StormCast for Wednesday, November 14th 2018

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

SANS ISC Handlers

Tech News, News, Technology

4.9696 Ratings

🗓️ 14 November 2018

⏱️ 5 minutes

🔗️ Recording | iTunes | RSS

🧾️ Download transcript

Summary

Daily 5 min cyber security news summary. News, patches, vulnerabilities and trends in information and network security. Microsoft Patch Tuesday; Adobe Patches

Transcript

Click on a timestamp to play from that location

0:00.0

Hello, welcome to the Wednesday, November 14th, 2018 edition of the Sansonet Storms on a Stormcast. My name is Johannes Ulrich and I'm recording from Jacksonville, Florida.

0:14.5

Microsoft's patched Tuesday, of course, is at the top of the news today and we got the patches for 63 different vulnerabilities,

0:25.6

12 of which are rated critical by Microsoft.

0:30.0

Now, two of the vulnerabilities had already been publicly disclosed.

0:34.3

The first one is the ALPC privilege escalation vulnerability that was released via

0:40.5

Twitter by Sandbox Escaper, very similar to a vulnerability that the same individual released a few

0:47.7

months prior, also via Twitter. Microsoft isn't aware of this vulnerability being used in any public exploits.

0:57.6

The second one we have talked about recently, and that's the problem with BitLocker on Windows.

1:05.4

And Microsoft published a patch for this as well as an advisory. There are two problems here. First one is that Bitlocker

1:15.8

does rely on hardware encryption in drives. And that sort of makes sense if you think about it.

1:22.0

There is really no need to spend extra CPU power in encrypting data that would be encrypted on the hard drive anyway.

1:29.8

So BitLocker ties in with these hard drive encryption technologies that have been popping up in various hard drives.

1:37.8

But recently we learned that some of these hard drive encryption technologies aren't really all that good and can easily

1:46.7

be bypassed. So the advisory that Microsoft released was that if you don't trust your hard

1:54.8

drive, you can always just force BitLocker to encrypt the drive using its software encryption.

2:02.6

Now the second issue and that's where the patch comes in, that's CVE 2018-8566,

2:09.6

is an unspecified condition where BitLocker just stops encrypting a particular drive

2:15.6

and this is being addressed with this patch.

2:20.5

So if you do want to play it safe, you can always just follow the Microsoft Advisory

2:26.4

and enable the software encryption in BitLocker, no matter whether or not your hard drive

2:32.6

does support hardware encryption. Probably doesn't hurt from a security point of view,

2:38.0

but you may get a little performance hit if you do enable this double encryption.

...

Please login to see the full transcript.

Previous episode | Next episode

Disclaimer: The podcast and artwork embedded on this page are from SANS ISC Handlers, and are the property of its owner and not affiliated with or endorsed by Tapesearch.

Generated transcripts are the property of SANS ISC Handlers and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.

Copyright © Tapesearch 2025.