Daily Information Security Podcast ("StormCast")
Stormcasts are daily 5-10 minute information security threat updates. The podcast is produced each work day, and typically released late in the day to be ready for your morning commute.
To subscribe, use one of the following URLs:
RSS feed: https://isc.sans.edu/dailypodcast.xml (any podcast
player should support this in some way)
Recent Episodes
- ISC StormCast for Wednesday, December 11th 2019Microsoft, Adobe, Intel and Apple Updates
- ISC StormCast for Tuesday, December 10th 2019Another Word Maldoc; Snatch Ransomware; Ryuk Decryptor Fail; Sysmon DNS Rules @swiftonsecurity
- ISC StormCast for Monday, December 9th 2019HTML Phishing Email; Great (Red) Canon Activated Against HK
- ISC StormCast for Friday, December 6th 2019OpenBSD Vuln; Linux/BSD VPN Connection Hijack; STI Paper: RASP vs. WAF
- ISC StormCast for Thursday, December 5th 2019Atlasian Companion App IBM Aspera Cloud; Python Libraries; GoAhead
- ISC StormCast for Wednesday, December 4th 2019Avast Blocked from Firefox; Android Patches; Strandhogg; Firefox 71
- ISC StormCast for Tuesday, December 3rd 2019Port 26 Scans; Ursnif/Dridex; Windows 7 ESU; QNAP Patches
- ISC StormCast for Monday, December 2nd 2019Agent Tesla; SauronEye; Splunk Y2k20 Bug; Google Threat Analysis Group Summary
- ISC StormCast for Wednesday, November 27th 2019Playing With Phishing; HPE SSD Update; Malicious Android SDK; Kaspersky Update
- ISC StormCast for Tuesday, November 26th 2019DoH In SOHO Networks; Fortinet Weak Crypto; Tracking via DNS
- ISC StormCast for Monday, November 25th 2019Web Filter Recon; Malice for Local Malware Analysis; VNC Flaws
- ISC StormCast for Friday, November 22nd 2019Memory Encryption Issues; Memory Encryption Issues; RIPlace; OFfcie Preview Issue
- ISC StormCast for Thursday, November 21st 2019Latest Hancitor Update; Oracle Payday Vuln; Chrome Update; Unbound Patch
- ISC StormCast for Wednesday, November 20th 2019JAWS DVR Bot; Tianfu Cup; Access Hotfix; Win10 DoH; Android Camera Permission Mixup
- ISC StormCast for Tuesday, November 19th 2019SMS Woes; Intel Removing EOL BIOS Downloads; Agressive Outlook 365 Phishing
- ISC StormCast for Monday, November 18th 2019TPM-Fail Update; Office Update Breaks Access; WhatsApp Update
- ISC StormCast for Friday, November 15th 2019LokiBot Update; Zeek Packet-Fu; TPM Leaks; Zombieload 2.0
- ISC StormCast for Wednesday, November 13th 2019Microsoft Patch Tuesday; Adobe Updates; Facebook Camera "Bug"; McAfee Update
- ISC StormCast for Tuesday, November 12th 2019TheMoon Still Here; Apply Magento Update; CSS Injection in Slack
- ISC StormCast for Monday, November 11th 2019Misused MSFT Apps; Pwn2Own Summary; State of Javascript Security; Honeypot Update
- ISC StormCast for Friday, November 8th 2019Adobe Mobile SDK; QNAP Advice; Double ZIP Files; Ring Video Doorbell
- ISC StormCast for Thursday, November 7th 2019Google PlayStore Security; Xen and npcap Patches; TrendMicro Insider Issue; SANS Ouch Newsletter
- ISC StormCast for Wednesday, November 6th 2019Formbook Malspam; Honeypot Update; Office on Mac Macros; libarchive bug
- ISC StormCast for Tuesday, November 5th 2019Bluekeep Exploit Update; ClamAV Vuln; XCode Patch; MikroTik DNS Cache Poison
- ISC StormCast for Monday, November 4th 2019Chrome Update; BlueKeep Mass Exploit; Unpached rConfig RCE (exploited, but maybe not a big deal)
- ISC StormCast for Friday, November 1st 2019EML O365 Phishing; MSFT TLS Timeouts; MESSAGETAP; Amazon 3rd Party Device Auth Issues
- ISC StormCast for Thursday, October 31st 2019Apple Updates; Untitled Goose; Pagers in Medicine; Kibana Vuln
- ISC StormCast for Wednesday, October 30th 2019xHelper Update; Counterstrike Money Laundry; PCAPs from YAML
- ISC StormCast for Tuesday, October 29th 2019PHP 7 RCE Exploited; Finding Shellcode; iOS/tvOS/Safari Updates; Sextortion Blogs
- ISC StormCast for Monday, October 28th 2019Odd Double Base64 Header; Parsing DNS Logs in PS; iOS Malware
- ISC StormCast for Friday, October 25th 2019XXE Vuln in LSP4XML (VS Code); Google Chrome SameSite Changes; Gigamon Leftovers
- ISC StormCast for Thursday, October 24th 2019SIM Swapping; Discord Infostealer; Cisco Exploit Code; Tails 4.0 Released
- ISC StormCast for Wednesday, October 23rd 2019Testing TLS 1.3; Firefox/Chrome Updates; Cache Poisoning DoS
- ISC StormCast for Tuesday, October 22nd 2019DNS over TLS Scans; North/Thor/Viking/VPN Compromises;
- ISC StormCast for Monday, October 21st 2019Attacks Against NVMS-9000 DVR; Pixel 4 / Galaxy S10 Biometrics; Home Speaker Phishing
- ISC StormCast for Friday, October 18th 2019Bypassing SPF Records; Old Domain Paypal Accounts; Typosquatting 2020 Election; @sans_edu interview
- ISC StormCast for Thursday, October 17th 2019Oracle CPU; jackson-databind vulnerability; VMWare; Wordpress
- ISC StormCast for Wednesday, October 16th 2019Adobe Updates; Symantec BSDO; OSX Shlayer/Tarmac; Fake iOS Jailbreak
- ISC StormCast for Tuesday, October 15th 2019Sudo Vulnerablity; Apple Safebrowsing; Streaming Privacy
- ISC StormCast for Monday, October 14th 2019YARA Update; Hacking Back Against Ransomware; Fake Crypto Trading Software
- ISC StormCast for Friday, October 11th 2019OUI Mining; iTerm2 Vuln; Apple Updater Exploited
- ISC StormCast for Thursday, October 10th 2019Vidar Malware Analysis; NTLM MIC Bypass; Threats on Google Play Store
- ISC StormCast for Wednesday, October 9th 2019MSFT Patches; Android Patches; vBulletin Patches
- ISC StormCast for Tuesday, October 8th 20192xVPN=0VPN; WhatsApp GIF Bug; MacOS Catalina; Magecart Update
- ISC StormCast for Monday, October 7th 2019R and visNetwork; Android Priv. Escalation Exploited; Signal Evesdropping
- ISC StormCast for Friday, October 4th 2019Lost Files Ransomware; tcpdump vulnerabilities; Reductor Malware; Pass The Hash @sans_edu
- ISC StormCast for Thursday, October 3rd 2019Latest Emotet News; Ouch! Newsletter; XPdf/Foxit Updates; eFax Malspam
- ISC StormCast for Wednesday, October 2nd 2019PDF Encryption Flaw; Windows 7 Security Extended Updates; ODT Malware
- ISC StormCast for Tuesday, October 1st 2019Maldoc, Powershell and BITS; Cisco Patch Cycle; Exim Flaw
- ISC StormCast for Monday, September 30th 2019Polycom Scans; Apple Security Details; iOS Jail Break
- ISC StormCast for Friday, September 27th 2019vBulletin Botnet; Cisco Patches; Sniffle BT Sniffer; OWA Blocking Extensions
- ISC StormCast for Thursday, September 26th 2019Malspam Pushing Quasar; vBulletin Patch; Fake Veteran Employment Site
- ISC StormCast for Wednesday, September 25th 2019Remotewebaccess CT Logs; Coldfusion Patch; Apple Updates; vBulletin 0Day RCE
- ISC StormCast for Tuesday, September 24th 2019MSFT releases IE Patch; Cloudflare Blocking Bots; iOS Bluetooth Restriction; Forcepoint VPN
- ISC StormCast for Monday, September 23rd 2019Android Adware; Wireshark Update; Harbor Priv. Escalation Bug
- ISC StormCast for Friday, September 20th 2019Agent Tesla; Apple Updates; SAMBA disables SMB1; GitHub Updates
- ISC StormCast for Thursday, September 19th 2019Emotet Sample; Windows Defender Bug; QEMU/VMWare VM Escape; CWE Top 25
- ISC StormCast for Wednesday, September 18th 2019Find Windows Log Gaps; SOHOpelesly Broken; HP Printer Privacy
- ISC StormCast for Tuesday, September 17th 2019Encrypted Sextortion; Simjacker; LassPass Fix
- ISC StormCast for Monday, September 16th 2019#RigEK -> VBScript; Pentesters Arrested; iOS 13 Unlock Trick
- ISC StormCast for Friday, September 13th 2019Blocking DoH for Firefox; PSD2 Confusion;
- ISC StormCast for Thursday, September 12th 2019Chrome DoH; Chrome 77 and EV/Cookies; Virtual Disk Files vs. AntiVirus
- ISC StormCast for Wednesday, September 11th 2019Microsoft Patch Tuesday; Adobe Patches; SSH Side Channel
- ISC StormCast for Tuesday, September 10th 2019Firefox Making DoH Default; Telegram Fixes Privacy Bug; PsiXBot uses DoH
- ISC StormCast for Monday, September 9th 2019Mirai Updates; Bluekeep in Metasploit; Gmail Spam Response; Exim TLS SNI Exploit
- ISC StormCast for Friday, September 6th 2019Private IPs and VT; Samba/Exim/Android Patches; Twitter Suspends SMS; Scams via Social Media
- ISC StormCast for Thursday, September 5th 2019Encrypted Resume Malspam; Android SMS Carrier Settings; Cisco IR Guides; Simulated Voice Fraud
- ISC StormCast for Wednesday, September 4th 2019LNK File Trickbot; Supermicro Vritual USB BMC Vuln; Facebook Free Basics Key
- ISC StormCast for Tuesday, September 3rd 2019Malware Installs Node.js; Dovecot Vulnerability; Cloudflare Workers Spreading Malware
- ISC StormCast for Monday, September 2nd 2019iOS Exploits in the Wild; Twitter CEO Account Hijack
- ISC StormCast for Friday, August 30th 2019Malware Compiling Itself; Notifying Vulnerable Home Automation Owners; Botnet Takedown
- ISC StormCast for Thursday, August 29th 2019Open Redirects; ADB Botnet; Android CamScanner Malware; Cisco REST API Auth Bypass
- ISC StormCast for Wednesday, August 28th 2019TLS 1.2 For Email; xHelper Android Trojan; LYCEUM Threat Group
- ISC StormCast for Tuesday, August 27th 2019iOS/macOS Patch; Pulse Secure VPN Scans; Emotet
- ISC StormCast for Monday, August 26th 2019Mimikatz/RDPWrapper Dropper; IRS Impersonation; Instagraph Phish; GitHub WebAuthn
- ISC StormCast for Friday, August 23rd 2019Steam Double 0; Malicious npm Packages; Branded Outlook 365 Phishing Pages
- ISC StormCast for Thursday, August 22nd 2019KAPE vs. Commando; Sphinx Servers; Cisco Patches; Newly Registered Domains
- ISC StormCast for Wednesday, August 21st 2019Guildma Malware using Facebook/YouTube C&C; rest-client ruby gem backdoored
- ISC StormCast for Tuesday, August 20th 2019iOS 12.4 Jailbreak; SHA2-Signed Updates vs. Symantec AV; Attacking Bluetooth
- ISC StormCast for Monday, August 19th 2019VoIP Vulnerabilities; AV Sandbox Leaks; Trend Micro Password Manager; Firefox Password Manager;
- ISC StormCast for Friday, August 16th 2019Spearphishing Maldoc Analysis; No News IoT Security; Kaspersky Insecurity
- ISC StormCast for Thursday, August 15th 2019MedusaHTTP Malware; DuckDNS C&C; HTTP/2 Vulnerabilities; Intel NUC
- ISC StormCast for Wednesday, August 14th 2019MSFT/Adobe Patch Tuesday; Windwos Text Services (CTF) Vulnerabilities
- ISC StormCast for Tuesday, August 13th 2019DAA Files; Exploiting SQLLite; Printer Vulnerabilities
- ISC StormCast for Monday, August 12th 2019Phishing With JavaScript; Camera Vulnerabilities; Tesla Surveilance; Electron Weaknesses
- ISC StormCast for Friday, August 9th 2019Kubernetes Security Audit; Apple Bug Bounty; Steam Vuln; Actual Sextortion
- ISC StormCast for Thursday, August 8th 2019AT&T Insider Attack; RDP/HyperV Vulnerability; Cisco Patches; Firefox Android WebAuthn
- ISC StormCast for Wednesday, August 7th 2019Corporate IoT Attack; SWAPGS Spectre Attacks; WPA-3 Weaknesses
- ISC StormCast for Tuesday, August 6th 2019Sexploitation Money Summary; VMWare Update; Android Qualcom Bug
- ISC StormCast for Monday, August 5th 2019Misconfigured JIRA; Voice Assistant Listening Policies Change; NVidia Updates; Detecting Chrome 76 Incognito Mode
- ISC StormCast for Friday, August 2nd 2019Investigating Port 9527; Rocke Cryptojacking; PowerShel Empire EOL
- ISC StormCast for Thursday, August 1st 2019Targeted Phish; Enterprise Software Phoning Home; Bypassing Contactless Limits
- ISC StormCast for Wednesday, July 31st 2019Luno Phish and Pseudo 2FA; Chrome Update; Disabling Siri Server Side Logging;
- ISC StormCast for Tuesday, July 30th 2019VxWorks TCP/IP Flaws; iOS iMessage File Disclosure (patched)
- ISC StormCast for Monday, July 29th 2019Port 34567 Uptick; LibreOffice Macro Code Exec; Extracting Private Keys from Amazon Music
- ISC StormCast for Friday, July 26th 2019When Users Attack; BlueKeep in Canvas; Darkmatter Cert Nixed; Johannesburg Ransomware
- ISC StormCast for Thursday, July 25th 2019VLC Non-Vulnerabilty; Crytominer with BlueKeep Scanner; Elastic; People as IOCs
- ISC StormCast for Wednesday, July 24th 2019TLS Configuration; #Apple Updates; #QNAP/#Synology Advice; New #Bluekeep Writeup @0xeb-bp
- ISC StormCast for Tuesday, July 23rd 2019Compressed PowerShell; GlobalProtect RCE; FortiOS RCE; ProFTPD Permission Issue
- ISC StormCast for Monday, July 22nd 2019php malware; iNSYNC breached by Ransomware
This podcast is also available via various podcast sites. Please let us know if we forgot one.
iTunes
MP3 Download
RSS Feed
Google Play
Stitcher
Podbean
Amazon Echo
YouTube
Spreaker
iOS App
Spotify
