Daily Information Security Podcast ("StormCast")
Stormcasts are daily 5-10 minute information security threat updates. The podcast is produced each work day, and typically released late in the day to be ready for your morning commute.
To subscribe, use one of the following URLs:
RSS feed: https://isc.sans.edu/dailypodcast.xml (any podcast
player should support this in some way)
Recent Episodes
- ISC StormCast for Tuesday, October 22nd 2019DNS over TLS Scans; North/Thor/Viking/VPN Compromises;
- ISC StormCast for Monday, October 21st 2019Attacks Against NVMS-9000 DVR; Pixel 4 / Galaxy S10 Biometrics; Home Speaker Phishing
- ISC StormCast for Friday, October 18th 2019Bypassing SPF Records; Old Domain Paypal Accounts; Typosquatting 2020 Election; @sans_edu interview
- ISC StormCast for Thursday, October 17th 2019Oracle CPU; jackson-databind vulnerability; VMWare; Wordpress
- ISC StormCast for Wednesday, October 16th 2019Adobe Updates; Symantec BSDO; OSX Shlayer/Tarmac; Fake iOS Jailbreak
- ISC StormCast for Tuesday, October 15th 2019Sudo Vulnerablity; Apple Safebrowsing; Streaming Privacy
- ISC StormCast for Monday, October 14th 2019YARA Update; Hacking Back Against Ransomware; Fake Crypto Trading Software
- ISC StormCast for Friday, October 11th 2019OUI Mining; iTerm2 Vuln; Apple Updater Exploited
- ISC StormCast for Thursday, October 10th 2019Vidar Malware Analysis; NTLM MIC Bypass; Threats on Google Play Store
- ISC StormCast for Wednesday, October 9th 2019MSFT Patches; Android Patches; vBulletin Patches
- ISC StormCast for Tuesday, October 8th 20192xVPN=0VPN; WhatsApp GIF Bug; MacOS Catalina; Magecart Update
- ISC StormCast for Monday, October 7th 2019R and visNetwork; Android Priv. Escalation Exploited; Signal Evesdropping
- ISC StormCast for Friday, October 4th 2019Lost Files Ransomware; tcpdump vulnerabilities; Reductor Malware; Pass The Hash @sans_edu
- ISC StormCast for Thursday, October 3rd 2019Latest Emotet News; Ouch! Newsletter; XPdf/Foxit Updates; eFax Malspam
- ISC StormCast for Wednesday, October 2nd 2019PDF Encryption Flaw; Windows 7 Security Extended Updates; ODT Malware
- ISC StormCast for Tuesday, October 1st 2019Maldoc, Powershell and BITS; Cisco Patch Cycle; Exim Flaw
- ISC StormCast for Monday, September 30th 2019Polycom Scans; Apple Security Details; iOS Jail Break
- ISC StormCast for Friday, September 27th 2019vBulletin Botnet; Cisco Patches; Sniffle BT Sniffer; OWA Blocking Extensions
- ISC StormCast for Thursday, September 26th 2019Malspam Pushing Quasar; vBulletin Patch; Fake Veteran Employment Site
- ISC StormCast for Wednesday, September 25th 2019Remotewebaccess CT Logs; Coldfusion Patch; Apple Updates; vBulletin 0Day RCE
- ISC StormCast for Tuesday, September 24th 2019MSFT releases IE Patch; Cloudflare Blocking Bots; iOS Bluetooth Restriction; Forcepoint VPN
- ISC StormCast for Monday, September 23rd 2019Android Adware; Wireshark Update; Harbor Priv. Escalation Bug
- ISC StormCast for Friday, September 20th 2019Agent Tesla; Apple Updates; SAMBA disables SMB1; GitHub Updates
- ISC StormCast for Thursday, September 19th 2019Emotet Sample; Windows Defender Bug; QEMU/VMWare VM Escape; CWE Top 25
- ISC StormCast for Wednesday, September 18th 2019Find Windows Log Gaps; SOHOpelesly Broken; HP Printer Privacy
- ISC StormCast for Tuesday, September 17th 2019Encrypted Sextortion; Simjacker; LassPass Fix
- ISC StormCast for Monday, September 16th 2019#RigEK -> VBScript; Pentesters Arrested; iOS 13 Unlock Trick
- ISC StormCast for Friday, September 13th 2019Blocking DoH for Firefox; PSD2 Confusion;
- ISC StormCast for Thursday, September 12th 2019Chrome DoH; Chrome 77 and EV/Cookies; Virtual Disk Files vs. AntiVirus
- ISC StormCast for Wednesday, September 11th 2019Microsoft Patch Tuesday; Adobe Patches; SSH Side Channel
- ISC StormCast for Tuesday, September 10th 2019Firefox Making DoH Default; Telegram Fixes Privacy Bug; PsiXBot uses DoH
- ISC StormCast for Monday, September 9th 2019Mirai Updates; Bluekeep in Metasploit; Gmail Spam Response; Exim TLS SNI Exploit
- ISC StormCast for Friday, September 6th 2019Private IPs and VT; Samba/Exim/Android Patches; Twitter Suspends SMS; Scams via Social Media
- ISC StormCast for Thursday, September 5th 2019Encrypted Resume Malspam; Android SMS Carrier Settings; Cisco IR Guides; Simulated Voice Fraud
- ISC StormCast for Wednesday, September 4th 2019LNK File Trickbot; Supermicro Vritual USB BMC Vuln; Facebook Free Basics Key
- ISC StormCast for Tuesday, September 3rd 2019Malware Installs Node.js; Dovecot Vulnerability; Cloudflare Workers Spreading Malware
- ISC StormCast for Monday, September 2nd 2019iOS Exploits in the Wild; Twitter CEO Account Hijack
- ISC StormCast for Friday, August 30th 2019Malware Compiling Itself; Notifying Vulnerable Home Automation Owners; Botnet Takedown
- ISC StormCast for Thursday, August 29th 2019Open Redirects; ADB Botnet; Android CamScanner Malware; Cisco REST API Auth Bypass
- ISC StormCast for Wednesday, August 28th 2019TLS 1.2 For Email; xHelper Android Trojan; LYCEUM Threat Group
- ISC StormCast for Tuesday, August 27th 2019iOS/macOS Patch; Pulse Secure VPN Scans; Emotet
- ISC StormCast for Monday, August 26th 2019Mimikatz/RDPWrapper Dropper; IRS Impersonation; Instagraph Phish; GitHub WebAuthn
- ISC StormCast for Friday, August 23rd 2019Steam Double 0; Malicious npm Packages; Branded Outlook 365 Phishing Pages
- ISC StormCast for Thursday, August 22nd 2019KAPE vs. Commando; Sphinx Servers; Cisco Patches; Newly Registered Domains
- ISC StormCast for Wednesday, August 21st 2019Guildma Malware using Facebook/YouTube C&C; rest-client ruby gem backdoored
- ISC StormCast for Tuesday, August 20th 2019iOS 12.4 Jailbreak; SHA2-Signed Updates vs. Symantec AV; Attacking Bluetooth
- ISC StormCast for Monday, August 19th 2019VoIP Vulnerabilities; AV Sandbox Leaks; Trend Micro Password Manager; Firefox Password Manager;
- ISC StormCast for Friday, August 16th 2019Spearphishing Maldoc Analysis; No News IoT Security; Kaspersky Insecurity
- ISC StormCast for Thursday, August 15th 2019MedusaHTTP Malware; DuckDNS C&C; HTTP/2 Vulnerabilities; Intel NUC
- ISC StormCast for Wednesday, August 14th 2019MSFT/Adobe Patch Tuesday; Windwos Text Services (CTF) Vulnerabilities
- ISC StormCast for Tuesday, August 13th 2019DAA Files; Exploiting SQLLite; Printer Vulnerabilities
- ISC StormCast for Monday, August 12th 2019Phishing With JavaScript; Camera Vulnerabilities; Tesla Surveilance; Electron Weaknesses
- ISC StormCast for Friday, August 9th 2019Kubernetes Security Audit; Apple Bug Bounty; Steam Vuln; Actual Sextortion
- ISC StormCast for Thursday, August 8th 2019AT&T Insider Attack; RDP/HyperV Vulnerability; Cisco Patches; Firefox Android WebAuthn
- ISC StormCast for Wednesday, August 7th 2019Corporate IoT Attack; SWAPGS Spectre Attacks; WPA-3 Weaknesses
- ISC StormCast for Tuesday, August 6th 2019Sexploitation Money Summary; VMWare Update; Android Qualcom Bug
- ISC StormCast for Monday, August 5th 2019Misconfigured JIRA; Voice Assistant Listening Policies Change; NVidia Updates; Detecting Chrome 76 Incognito Mode
- ISC StormCast for Friday, August 2nd 2019Investigating Port 9527; Rocke Cryptojacking; PowerShel Empire EOL
- ISC StormCast for Thursday, August 1st 2019Targeted Phish; Enterprise Software Phoning Home; Bypassing Contactless Limits
- ISC StormCast for Wednesday, July 31st 2019Luno Phish and Pseudo 2FA; Chrome Update; Disabling Siri Server Side Logging;
- ISC StormCast for Tuesday, July 30th 2019VxWorks TCP/IP Flaws; iOS iMessage File Disclosure (patched)
- ISC StormCast for Monday, July 29th 2019Port 34567 Uptick; LibreOffice Macro Code Exec; Extracting Private Keys from Amazon Music
- ISC StormCast for Friday, July 26th 2019When Users Attack; BlueKeep in Canvas; Darkmatter Cert Nixed; Johannesburg Ransomware
- ISC StormCast for Thursday, July 25th 2019VLC Non-Vulnerabilty; Crytominer with BlueKeep Scanner; Elastic; People as IOCs
- ISC StormCast for Wednesday, July 24th 2019TLS Configuration; #Apple Updates; #QNAP/#Synology Advice; New #Bluekeep Writeup @0xeb-bp
- ISC StormCast for Tuesday, July 23rd 2019Compressed PowerShell; GlobalProtect RCE; FortiOS RCE; ProFTPD Permission Issue
- ISC StormCast for Monday, July 22nd 2019php malware; iNSYNC breached by Ransomware
- ISC StormCast for Friday, July 19th 2019802.1x Tips; Kazachstan TLS Interception; Cylance Weakness; BEC Trends
- ISC StormCast for Thursday, July 18th 2019DNS TXT Records; Evilgnome Linux Malware; Interesting AMEX Phish
- ISC StormCast for Wednesday, July 17th 2019More Zoom Patches; Boarding Pass Hack; Android File Jacking
- ISC StormCast for Tuesday, July 16th 2019isodump.py released; Scrapy Vuln; Atlassian Crowd; iOS URL Schemes
- ISC StormCast for Monday, July 15th 2019Magecart Targets S3; Atlassian Jira; Tracking Anonymized BLE Devices
- ISC StormCast for Friday, July 12th 2019AZORult Sample; Zoom Followup; Apple Watch eavesdropping; PXE Windows Bug; @sans_edu
- ISC StormCast for Thursday, July 11th 2019Samba Disabling SMBv1; GnuPG Keyserver Update; eChoOraix Ransomware
- ISC StormCast for Wednesday, July 10th 2019MSFT Patch Tuesday; Adobe Updates; Critical Zoom Video Conferencing Bug
- ISC StormCast for Tuesday, July 9th 2019Canonical Hack; New Magecart Wave; Facebook Libra/Calibra Scams
- ISC StormCast for Monday, July 8th 2019DoH Or Not? Cisco Exploit, Magento Exploit, Malicious XSL Files
- ISC StormCast for Wednesday, July 3rd 2019Zipato SmartHub; Blocking DoH; Cloudflare Outage; Android Update; Powershell Killswitch
- ISC StormCast for Tuesday, July 2nd 2019Maldoc Payloads; Zyxel Patches; AMD Secure Memory Patch; Card Encrollment
- ISC StormCast for Sunday, June 30th 2019Domain Wide Virustotal Search; Mozilla TLS Guide; SKS Attack; QR Code Phishing
- ISC StormCast for Friday, June 28th 2019New Brickerbot; Telco Service Provider Attachs; Malwaretising; Automating Phish Reporting Response @sans_edu
- ISC StormCast for Wednesday, June 26th 2019Pitou.B Trojan; AWS VPC Traffic Mirroring; Elastic SIEM App; Spoofed Emergency Alerts
- ISC StormCast for Tuesday, June 25th 2019Cloudflare Outage; WeTransfer Leak; Jenkins Pillage @cloudflare @dolosgroup
- ISC StormCast for Monday, June 24th 2019SSH Keys in Memory; #Bluekeep Patching; Android ADB/SSH Botnet @damientmiller @notninjacat
- ISC StormCast for Friday, June 21st 2019Dell Support Assistant Update; Cisco RVxxxW RCE Vuln; STI Research: Biometrics @sans_edu #dell #cisco #biometrics
- ISC StormCast for Thursday, June 20th 2019WebLogic Critical Patch; Exim Exploits against Other Mail servers
- ISC StormCast for Wednesday, June 19th 2019SACK Panic Update; Critical Firefox Update; Google Site Reporter and Deceptive Site Protection
- ISC StormCast for Tuesday, June 18th 2019TCP SACK Panic; Logitech Pointer Recall, Rig Exploit Kit
- ISC StormCast for Monday, June 17th 2019Whats App Phishing; Encrypted Email Phishing; Android Apps Link to Fake Sites
- ISC StormCast for Friday, June 14th 2019#Exim Flaw Exploited; @YubiCo Recall; #Telegram Vuln; #Ghidra; VoWifi @sans_edu @0xAmit
- ISC StormCast for Thursday, June 13th 2019More SandboxEscaper; Bypassing NTML Message Signing; macOS Keysteal Details @simakov_marina @LinusHenze
- ISC StormCast for Wednesday, June 12th 2019Microsoft, Adobe, Intel, SAP Patches; GPS Woes; RAMBleed
- ISC StormCast for Tuesday, June 11th 2019JavaScript Deobfuscation; Spam Using DNS over HTTPS; BGP Leaks; VLC update
- ISC StormCast for Monday, June 10th 2019WMI Logs; DNS Logs and Sysmon; Komodo Wallet Highjack; MSFT SOC Lessons #MSFT #DNS
- ISC StormCast for Friday, June 7th 2019GoldBrute Botnet; Exim Vulnerability; iOS Apps Disabling TLS @wandera @renato_marinho @bojanz
- ISC StormCast for Thursday, June 6th 2019Android Updates; Chrome Updates; Bing Injecting Mac Malware @AiroSecurity @Akamai
- ISC StormCast for Wednesday, June 5th 2019Notepad Bug; vim bug; New RDP Vulnerability; @rawsec @taviso
- ISC StormCast for Tuesday, June 4th 2019macOS Synthetic Clicks; Intel Microcode for Old Win 10; Fake AV in Games; GandGrab
- ISC StormCast for Monday, June 3rd 2019Google Outage; Siemens LOGO 8! BM Vulnerablity; Exposing tor users; nginx njs vulnerability; #google #siemens #nginx #tor
- ISC StormCast for Friday, May 31st 2019scdbg Shellcode Analysis; GitHub Auto Patching; Docker Malware and Shodan; Web Packaging
This podcast is also available via various podcast sites. Please let us know if we forgot one.
iTunes
MP3 Download
RSS Feed
Google Play
Stitcher
Podbean
Amazon Echo
YouTube
Spreaker
iOS App
Spotify
