SANS Stormcast Thursday July 31st, 2025: Firebase Security; WebKit Vuln Exploited; Scattered Spider Update
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
SANS ISC Handlers
4.9 • 696 Ratings
🗓️ 31 July 2025
⏱️ 7 minutes
🧾️ Download transcript
Summary
Securing Firebase: Lessons Re-Learned from the Tea Breach
Inspried by the breach of the Tea app, Brendon Evans recorded a video to inform of Firebase security issues
https://isc.sans.edu/diary/Securing%20Firebase%3A%20Lessons%20Re-Learned%20from%20the%20Tea%20Breach/32158
WebKit Vulnerability Exploited before Apple Patch
A WebKit vulnerablity patched by Apple yesterday has already been exploited in Google Chrome. Google noted the exploit with its patch for the same vulnerability in Chrome.
https://nvd.nist.gov/vuln/detail/CVE-2025-6558
Scattered Spider Update
CISA released an update for its report on Scattered Spider, noting that the group also calls helpdesks impersonating users, not just the other way around.
https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-320a
Transcript
Click on a timestamp to play from that location
| 0:00.0 | Hello and welcome to the Thursday, July 31st, 2025 edition of the Sands Internet Storm Center's |
| 0:07.0 | Stormcast. My name is Johannes Ulrich, recording today from Jacksonville, Florida. And this episode |
| 0:13.3 | is brought you by the Sands.edu graduate certificate program in industrial control systems security. |
| 0:21.1 | And today on the Internet Storm Center website and our diary, we are trying something a little |
| 0:25.1 | bit different. |
| 0:26.0 | Now, we had guest diaries in the past from not our usual group of handlers, but this time |
| 0:32.9 | we actually tried a little bit of video. |
| 0:34.8 | And the reason behind this is that, well, last week we had this |
| 0:39.5 | huge breach in the T application. The breach itself, I think, was a little bit stupid in the sense |
| 0:47.5 | how simple it was, but of course it had a big impact for some of the victims affected by |
| 0:53.7 | the breach. |
| 0:54.6 | However, when I'm talking about breaches here also in a podcast, |
| 0:58.1 | I don't like to do it because I don't like the victim shaming, |
| 1:02.3 | even if some of them may deserve it. |
| 1:04.7 | I usually try to focus on what are the lessons we can all learn from a particular breach. |
| 1:10.5 | So we don't end up in the same situation as the victim here. |
| 1:15.6 | And of course, one of the victims here was T. |
| 1:18.6 | And they made really sort of a very crucial, simple mistake with Firebase, |
| 1:23.9 | a mistake that has been made many times before, |
| 1:27.0 | but has been sort of brought to everybody's attention here in this latest preach. |
| 1:33.8 | Brandon focuses on that technical lesson here in his video. |
| 1:40.0 | Essentially, how do you secure Firebase if you have to use it at all? And how do you make sure |
... |
Transcript will be available on the free plan in 9 days. Upgrade to see the full transcript now.
Disclaimer: The podcast and artwork embedded on this page are from SANS ISC Handlers, and are the property of its owner and not affiliated with or endorsed by Tapesearch.
Generated transcripts are the property of SANS ISC Handlers and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.
Copyright © Tapesearch 2025.