meta_pixel
Tapesearch Logo
Log in
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

SANS Stormcast Thursday, May 14th, 2026: Flexbile Windows Proxy; News from Nightmare Eclipse; Adobe Patches

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

SANS ISC Handlers

News, Tech News

4.9754 Ratings

🗓️ 14 May 2026

⏱️ 5 minutes

🔗️ Recording | iTunes | RSS

🧾️ Download transcript

Summary

Daily 5 min cyber security news summary. News, patches, vulnerabilities and trends in information and network security. SANS Stormcast Thursday, May 14th, 2026: Flexbile Windows Proxy; News from Nightmare Eclipse; Adobe Patches

Transcript

Click on a timestamp to play from that location

0:00.0

Hello and welcome to the Thursday, May 14th, 2026 edition of the Sands Internet Stormsiders.

0:12.0

Stormcast, my name is Johannes Ulrich, recording day from San Diego, California.

0:18.1

And this episode is brought you by the sands.edu,

0:27.3

credit certificate program in cyber security engineering. In diaries today, we do have an interesting tool recommendation from Rob. Rob experiment with a tool called proxy fire.

0:34.7

Now, what proxy fire is good at is if you have a Windows system and you're

0:38.4

trying to proxy the HTTP traffic from specific binaries. Now with network

0:45.3

rules and such you're often able to direct traffic to particular destinations to

0:51.3

a proxy but what this tool allows you is to essentially isolate the traffic

0:56.0

from a specific application that you're trying to test. And in the case of Rob, well, he directed

1:02.6

a traffic to Burbsweet in order to better explore an API that a particular application was using.

1:11.1

This approach is really kind of neat in order to cut down on the noise that you often get if you are just sending all traffic to a proxy.

1:21.0

And it can be sometimes challenging to figure out what traffic is actually originating from a specific binary this makes

1:29.6

the entire process so much easier and then you have two new vulnerabilities

1:35.3

being disclosed by Nightmare Eclipse the researcher who will

1:39.7

made a name for themselves by releasing for example Blue Hammer after their bug report was rejected by Microsoft's bug bounty program.

1:50.6

The first vulnerability being released, and I think that's the more serious one, is called Yellow Key.

1:56.8

This particular vulnerability attacks BitLocker in a rather effective way.

2:01.6

So BitLocker, of course, well respected, disc encryption by Microsoft,

2:06.6

but it relies on BitLocker actually locking the disk as the system is being shut down.

2:12.6

And that's the part where Yellow Key comes into place by attaching a USB stick to a Windows system,

2:21.1

and that USB stick must contain very specific files.

2:27.0

The disk is not locked as the system is shut down, and then a user may be able to reboot the system into rescue mode

...

Transcript will be available on the free plan in 7 days. Upgrade to see the full transcript now.

Disclaimer: The podcast and artwork embedded on this page are from SANS ISC Handlers, and are the property of its owner and not affiliated with or endorsed by Tapesearch.

Generated transcripts are the property of SANS ISC Handlers and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.

Copyright © Tapesearch 2026.