Cyber Security Podcasts

Daily Information Security Podcast ("StormCast")

Stormcasts are daily 5-10 minute information security threat updates. The podcast is produced each work day, and typically released late in the day to be ready for your morning commute.

To subscribe, use one of the following URLs:
RSS feed: https://isc.sans.edu/dailypodcast.xml (any podcast player should support this in some way)

Recent Episodes

ISC StormCast for Monday, March 30th 2020
Domain Classifier; Malicious Teddy Bears; iOS Malware on HK News Sites
ISC StormCast for Friday, March 27th 2020
Obfuscation via Size; iOS VPN Bypass; Free Covid19 Domain List; Detecting Bad Keyboards
ISC StormCast for Thursday, March 26th 2020
Dridex Update; Covid-19 Ransom; HPE 40,000 hrs; Fake Google Updates; Trickbot
ISC StormCast for Wednesday, March 25th 2020
Type 1 Font Parsing Update; memcached dos; Adobe Patches; Apple Patches; OpenWRT
ISC StormCast for Tuesday, March 24th 2020
Windows Font Parsing 0-Day; Covid-19 Malware Summary; Firefox Turning TLS 1.0 Back on
ISC StormCast for Monday, March 23rd 2020
More Covid19 Malware; Kr00k Exploit; Pwn2Own Results
ISC StormCast for Friday, March 20th 2020
More COVID-19 Malware; Cisco Patches; LDAPFragger
ISC StormCast for Thursday, March 19th 2020
TrendMicro Update; More VMWare Updates; Ransomware Trends; EnigmaSpark
ISC StormCast for Wednesday, March 18th 2020
DDoS Summary; Trickbot Update; Is Cryptojacking Dead? Adobe Patches
ISC StormCast for Tuesday, March 17th 2020
Desktop.ini Tricks; VMWare Update; tcpdump bug PoC; Slack account takeover
ISC StormCast for Monday, March 16th 2020
Incremental Malicious PDFs; VPN Limits; Capturing Runts; Cooiethief; SANS Woring from Home Deployment Kit
ISC StormCast for Friday, March 13th 2020
Windows SMBv3 Patch; Coronavirus Hancitor; Avast ditches JS; Checkra1n vs T2
ISC StormCast for Thursday, March 12th 2020
Mystery SMB3 Flaw Update; COVID19 Malware; Agent Tesla Canon EOS Malware
ISC StormCast for Wednesday, March 11th 2020
Microsoft Patch Tuesday and SMB3 Mystery Vulnerability
ISC StormCast for Tuesday, March 10th 2020
Self Modifying Excel 4 Macro; AMD Take a Way (or not); Google Play Protect Fail
ISC StormCast for Monday, March 9th 2020
Excel Very Hidden; Wireshark; Linux PPP; NordVPN; Android Unpatched
ISC StormCast for Friday, March 6th 2020
Survey Phish; Not a Corona Phish; Loss of Trust; Revocation Stop @certifygiac
ISC StormCast for Thursday, March 5th 2020
MSFT Subdomain Takeover; Not 0-Day Homoglyphs; Cornavirus Phish @JCyberSec
ISC StormCast for Wednesday, March 4th 2020
Event Explorer; Letsencrypt CAA Flaw; Smart Devices; Ransomware and Cloud
ISC StormCast for Tuesday, March 3rd 2020
TLS vs Clear Distribution; Evasion Encyclopedia; Threat Dragon; Free SANS Stuff
ISC StormCast for Monday, March 2nd 2020
Clipboard Leaks; Hazelcast; Microsoft Exchange; Tomcat
ISC StormCast for Friday, February 28th 2020
Ultrasonic Assistance; Browser Data Leakage; Cloud Snooper
ISC StormCast for Thursday, February 27th 2020
Kr00k WiFi Attack; Impersonating LTE USers; Zyxel RCE
ISC StormCast for Wednesday, February 26th 2020
Fraudulant Paypal Charges; New Chrome Release; FIDO2 for Hybrid Azure AD
ISC StormCast for Tuesday, February 25th 2020
ScrollToTextFragment Google Chrome; WhatsApp Invite Links @JordanWildon; OpenSMTPD again;
ISC StormCast for Monday, February 24th 2020
Excel Macros; VBScript Obfuscation; Letsencrypt; Google Play Malware; Google Warns of Edge
ISC StormCast for Friday, February 21st 2020
Whodat? Adobe/Cisco Patches; Apple Cert Validity; Finding Pythong re DoS @r2cdev
ISC StormCast for Thursday, February 20th 2020
Sonicwall Vulns; SQL Server Exploit; Ransomware in CH; Unsigned Firmware @plopz0r
ISC StormCast for Wednesday, February 19th 2020
Discovering Files in Windows; Ring 2FA (and Nest); VPN Vulns; WordPress @hyp3rlinx
ISC StormCast for Tuesday, February 18th 2020
More Curl on Win; WHO Phishing; Malicious Chrome Extensions @bumblebreaches @crxpert
ISC StormCast for Monday, February 17th 2020
Windows Command Line Browsers; KBOT Old Virus Tricks; OpenSSH Now With FIDO/U2F
ISC StormCast for Friday, February 14th 2020
LDAP/AD Changes; SweynTooth BLE; Symantec EP Vuln; DNSSEC Key Signing Delay
ISC StormCast for Thursday, February 13th 2020
Latest ursniff sightings; Safe Documents; Wordpress GDPR Cookie Again; Apple Joins FIDO2 @fidoalliance
ISC StormCast for Wednesday, February 12th 2020
Microsoft/Adobe Patches; Ransomware Abuses Vulnerable Driver
ISC StormCast for Tuesday, February 11th 2020
Greedy Paypal Phish; SupportAssist Vuln; Lock My PC Scam; Docker Registries @unit42_intel
ISC StormCast for Monday, February 10th 2020
Sandbox Detection; Emotet Wifi Spreader; Sudo Exploit; HiSilicon Vuln @censysio
ISC StormCast for Friday, February 7th 2020
Android Bluetooth Vulnerability; Wacom Privacy Issues; Bitbucket Malware; Realtek Driver Vuln
ISC StormCast for Thursday, February 6th 2020
Fake Browser Updates; Android Update; Cisco CDP Vulnerabilities
ISC StormCast for Wednesday, February 5th 2020
Google Chrome 80; Whats App File Read Vuln; HiSilicon DVR
ISC StormCast for Tuesday, February 4th 2020
AZORult Triple Crypt; Sudo pwfeedback; Teamviewer Password Storage
ISC StormCast for Monday, February 3rd 2020
Stego & Cryptominers; Cornavirus Scams; Google OpenSK
ISC StormCast for Friday, January 31st 2020
Chrome Same-Site Cookie Change; Avast Apology; Magento Update
ISC StormCast for Thursday, January 30th 2020
Impeachment Malware; Coronavirus Malware; I Got Phished; OpenSMTPD Patch
ISC StormCast for Wednesday, January 29th 2020
Emotet Update; Apple Update; Zoom; Intel Cacheout; Avast Sells Data
ISC StormCast for Tuesday, January 28th 2020
Coronavirus Preparedness; RD Gateway; Mitsubishi Compromise
ISC StormCast for Monday, January 27th 2020
Citrix ADC Updates; Windows Fix Breaks Printer; GE Medical Devices
ISC StormCast for Friday, January 24th 2020
Simple vs Complex Obfuscation; RD Gateway PoC; Citrix Scanner; LastPass
ISC StormCast for Thursday, January 23rd 2020
German Malspam; Safari Tracking; Muhstik vs. Tomato; Cisco Firepower
ISC StormCast for Wednesday, January 22nd 2020
Blue ; EFS Ransomware; Fake Data Leak Compensation; Fake Job Site Scam
ISC StormCast for Tuesday, January 21st 2020
Twist on Sextortion; Emotet Extortion Ruse; Lastpass Outage; Netgear Leaks Priv Key
ISC StormCast for Monday, January 20th 2020
MSFT Browser 0Day; Curveball and Citrix ADC Update #CitrixADC #Curveball
ISC StormCast for Friday, January 17th 2020
CVE-2020-0601 Update; Citrix ADC Update; Cablehaunt; SecDevOps
ISC StormCast for Thursday, January 16th 2020
CVE-2020-0601 Exploit Released; Oracle Patches
ISC StormCast for Wednesday, January 15th 2020
Microsoft January 2020 Patch Tuesday and #CryptoAPI Flaw
ISC StormCast for Tuesday, January 14th 2020
Upcoming Critical MSFT Patch; SIM Swaping is Easy; wombat dressing room
ISC StormCast for Monday, January 13th 2020
Citrix ADC Vulnerability Actively Exploited #CitrixADC #Netscaler #cve201919781 #citrix
ISC StormCast for Friday, January 10th 2020
Another Word Maldoc; SHA1 Update; Cisco Update; Girls Go Cyberstart @GGCyberStart
ISC StormCast for Thursday, January 9th 2020
Firefox Bug; Zero-Day in Play Store; Tails 4.2; TikTok Vulnerabilities
ISC StormCast for Wednesday, January 8th 2020
Citrix ADC Update; Pulse Secure SSLVPN Exploited; Project Zero Disclosure Policy; Android Update
ISC StormCast for Tuesday, January 7th 2020
Spoofed Scans from 103/8; Iran Terror Threat; BusKill
ISC StormCast for Monday, January 6th 2020
CCPA Intro; Cisco Patches; XiaoMi Camera Bug;
ISC StormCast for Friday, January 3rd 2020
Ransomware written in JavaScript/Node.js; Landry Breach; Holiday Hack Challenge
ISC StormCast for Tuesday, December 31st 2019
ISC API Update; 36C3
ISC StormCast for Monday, December 30th 2019
Breaking 2FA Soft Tokens; Pihole Dashbaord; Corrupt Office Docs; Enumerating O365 Users;
ISC StormCast for Friday, December 27th 2019
Citrix Application Delivery Controller (Netscaler ADC) Critical Vulnerability
ISC StormCast for Monday, December 23rd 2019
Extracting Macros from AutoCAD Files; Cisco PKI Expiration; AFRINIC IP Heist
ISC StormCast for Friday, December 20th 2019
More DNS over HTTPS Details; Ransomware Going Public; Google Chrome Update
ISC StormCast for Thursday, December 19th 2019
Emotet update; Joomla Patches; Unicode Problems
ISC StormCast for Wednesday, December 18th 2019
Discovering DNS over HTTPS; Ring Camera Weaknesses; WhatsApp Bug;
ISC StormCast for Tuesday, December 17th 2019
Slack "Unshare" Vuln; Google Enforces OAUTH; TPLink Auth Bypass; Factoring IoT RSA Keys
ISC StormCast for Monday, December 16th 2019
Malicious Autocad Files; OpenBSD Priv. Escalation; NPM Path Traversal
ISC StormCast for Friday, December 13th 2019
Shared Data in Malware; WebKit Tracking Protection; SMS Verification; @sans_edu
ISC StormCast for Thursday, December 12th 2019
German Malspam / Trickbot; KeyWe Locks; Chrome Update; iOS Spam Filter
ISC StormCast for Wednesday, December 11th 2019
Microsoft, Adobe, Intel and Apple Updates
ISC StormCast for Tuesday, December 10th 2019
Another Word Maldoc; Snatch Ransomware; Ryuk Decryptor Fail; Sysmon DNS Rules @swiftonsecurity
ISC StormCast for Monday, December 9th 2019
HTML Phishing Email; Great (Red) Canon Activated Against HK
ISC StormCast for Friday, December 6th 2019
OpenBSD Vuln; Linux/BSD VPN Connection Hijack; STI Paper: RASP vs. WAF
ISC StormCast for Thursday, December 5th 2019
Atlasian Companion App IBM Aspera Cloud; Python Libraries; GoAhead
ISC StormCast for Wednesday, December 4th 2019
Avast Blocked from Firefox; Android Patches; Strandhogg; Firefox 71
ISC StormCast for Tuesday, December 3rd 2019
Port 26 Scans; Ursnif/Dridex; Windows 7 ESU; QNAP Patches
ISC StormCast for Monday, December 2nd 2019
Agent Tesla; SauronEye; Splunk Y2k20 Bug; Google Threat Analysis Group Summary
ISC StormCast for Wednesday, November 27th 2019
Playing With Phishing; HPE SSD Update; Malicious Android SDK; Kaspersky Update
ISC StormCast for Tuesday, November 26th 2019
DoH In SOHO Networks; Fortinet Weak Crypto; Tracking via DNS
ISC StormCast for Monday, November 25th 2019
Web Filter Recon; Malice for Local Malware Analysis; VNC Flaws
ISC StormCast for Friday, November 22nd 2019
Memory Encryption Issues; Memory Encryption Issues; RIPlace; OFfcie Preview Issue
ISC StormCast for Thursday, November 21st 2019
Latest Hancitor Update; Oracle Payday Vuln; Chrome Update; Unbound Patch
ISC StormCast for Wednesday, November 20th 2019
JAWS DVR Bot; Tianfu Cup; Access Hotfix; Win10 DoH; Android Camera Permission Mixup
ISC StormCast for Tuesday, November 19th 2019
SMS Woes; Intel Removing EOL BIOS Downloads; Agressive Outlook 365 Phishing
ISC StormCast for Monday, November 18th 2019
TPM-Fail Update; Office Update Breaks Access; WhatsApp Update
ISC StormCast for Friday, November 15th 2019
LokiBot Update; Zeek Packet-Fu; TPM Leaks; Zombieload 2.0
ISC StormCast for Wednesday, November 13th 2019
Microsoft Patch Tuesday; Adobe Updates; Facebook Camera "Bug"; McAfee Update
ISC StormCast for Tuesday, November 12th 2019
TheMoon Still Here; Apply Magento Update; CSS Injection in Slack
ISC StormCast for Monday, November 11th 2019
Misused MSFT Apps; Pwn2Own Summary; State of Javascript Security; Honeypot Update
ISC StormCast for Friday, November 8th 2019
Adobe Mobile SDK; QNAP Advice; Double ZIP Files; Ring Video Doorbell
ISC StormCast for Thursday, November 7th 2019
Google PlayStore Security; Xen and npcap Patches; TrendMicro Insider Issue; SANS Ouch Newsletter
ISC StormCast for Wednesday, November 6th 2019
Formbook Malspam; Honeypot Update; Office on Mac Macros; libarchive bug
ISC StormCast for Tuesday, November 5th 2019
Bluekeep Exploit Update; ClamAV Vuln; XCode Patch; MikroTik DNS Cache Poison
ISC StormCast for Monday, November 4th 2019
Chrome Update; BlueKeep Mass Exploit; Unpached rConfig RCE (exploited, but maybe not a big deal)
ISC StormCast for Friday, November 1st 2019
EML O365 Phishing; MSFT TLS Timeouts; MESSAGETAP; Amazon 3rd Party Device Auth Issues
ISC StormCast for Thursday, October 31st 2019
Apple Updates; Untitled Goose; Pagers in Medicine; Kibana Vuln

This podcast is also available via various podcast sites. Please let us know if we forgot one.

iTunes

MP3 Download

RSS Feed

Google Play

Stitcher

Podbean

Amazon Echo

YouTube

Spreaker

iOS App

Spotify

Top of page