Podcast Detail

Apple Updates Safari; Paypal fixes interesting CSRF; Decoding F5 Cookies; CAPTCHAS are dead and rebo

If you are not able to play the podcast using the player below: Use this direct link to the audio file: https://chrt.fm/track/2748D7/https://traffic.libsyn.com/securitypodcast/4261.mp3

Podcast Logo
SANS Daily Network Security Podcast (Stormcast) for Thursday, December 4th 2014
00:00

Interested in Internet Storm Center stickers? Check here if there are still some available for today.

Apple Updates Safari; Paypal fixes interesting CSRF; Decoding F5 Cookies; CAPTCHAS are dead and reborn

Safari (OS X) Update
http://lists.apple.com/archives/security-announce/2014/Dec/msg00000.html

PayPal Vulnerable CSRF Implementation
http://yasserali.com/hacking-paypal-accounts-with-one-click/

Abusing F5 Load Balancer Cookies
http://blog.ptsecurity.com/2014/12/ddos-attack-over-load-balancer-secure.html

Google rolls outnew CAPTCHA
http://googleonlinesecurity.blogspot.com.es/2014/12/are-you-robot-introducing-no-captcha.html