Threat Level: green Handler on Duty: Johannes Ullrich

SANS ISC: AV Exclusion Abused by Targeted Attacks; Android Update; Firefox SVG XDomain Cookies - SANS Internet Storm Center AV Exclusion Abused by Targeted Attacks; Android Update; Firefox SVG XDomain Cookies


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
podcast logo

ISC StormCast for Thursday, December 8th 2016

A daily summary of network and system security news from the SANS Internet Storm Center
Author:Johannes B. Ullrich, Ph.D.
Created: Thursday, December 8th 2016
Length: 6:00 minutes
Today's Headline: AV Exclusion Abused by Targeted Attacks; Android Update; Firefox SVG XDomain Cookies

If you like this podcast, then please consider telling others about it. Use this button to Tweet about this episode: click here. Errors? Corrections? Complaints? Player Problems? Please let us know here: https://isc.sans.edu/contact.html

Plain HTML5 Player
JavaScript (with skip back/forward)
podcast logo

Show Notes

Attackers are using AV Exclusion Lists to Bypass AV
http://www.theregister.co.uk/2016/12/07/clever_crims_using_av_exclusion_lists_as_malware_safe_harbour/

Android Update Patches "Dirty Cow"
https://source.android.com/security/bulletin/2016-12-01.html

"Goldeneye" Ransomware May Use Stolen Data For Realistic E-Mails
https://www.heise.de/security/meldung/Goldeneye-nutzt-Informationen-vom-Arbeitsamt-fuer-aeusserst-gezielte-Angriffe-3564386.html

Firefox Cross Domain Cookie Vulnerability
https://insert-script.blogspot.ch/2016/12/firefox-svg-cross-domain-cookie.html

Discussion

Login here to join the discussion.