Cyber Security Podcasts - SANS Internet Storm Center

Daily Information Security Podcast ("StormCast")

Stormcasts are daily 5-10 minute information security threat updates. The podcast is produced each work day, and typically released late in the day to be ready for your morning commute.

To subscribe, use one of the following URLs:
RSS feed: https://isc.sans.edu/dailypodcast.xml (any podcast player should support this in some way)

Recent Episodes

ISC StormCast for Wednesday, June 19th 2019
SACK Panic Update; Critical Firefox Update; Google Site Reporter and Deceptive Site Protection
ISC StormCast for Tuesday, June 18th 2019
TCP SACK Panic; Logitech Pointer Recall, Rig Exploit Kit
ISC StormCast for Monday, June 17th 2019
Whats App Phishing; Encrypted Email Phishing; Android Apps Link to Fake Sites
ISC StormCast for Friday, June 14th 2019
#Exim Flaw Exploited; @YubiCo Recall; #Telegram Vuln; #Ghidra; VoWifi @sans_edu @0xAmit
ISC StormCast for Thursday, June 13th 2019
More SandboxEscaper; Bypassing NTML Message Signing; macOS Keysteal Details @simakov_marina @LinusHenze
ISC StormCast for Wednesday, June 12th 2019
Microsoft, Adobe, Intel, SAP Patches; GPS Woes; RAMBleed
ISC StormCast for Tuesday, June 11th 2019
JavaScript Deobfuscation; Spam Using DNS over HTTPS; BGP Leaks; VLC update
ISC StormCast for Monday, June 10th 2019
WMI Logs; DNS Logs and Sysmon; Komodo Wallet Highjack; MSFT SOC Lessons #MSFT #DNS
ISC StormCast for Friday, June 7th 2019
GoldBrute Botnet; Exim Vulnerability; iOS Apps Disabling TLS @wandera @renato_marinho @bojanz
ISC StormCast for Thursday, June 6th 2019
Android Updates; Chrome Updates; Bing Injecting Mac Malware @AiroSecurity @Akamai
ISC StormCast for Wednesday, June 5th 2019
Notepad Bug; vim bug; New RDP Vulnerability; @rawsec @taviso
ISC StormCast for Tuesday, June 4th 2019
macOS Synthetic Clicks; Intel Microcode for Old Win 10; Fake AV in Games; GandGrab
ISC StormCast for Monday, June 3rd 2019
Google Outage; Siemens LOGO 8! BM Vulnerablity; Exposing tor users; nginx njs vulnerability; #google #siemens #nginx #tor
ISC StormCast for Friday, May 31st 2019
scdbg Shellcode Analysis; GitHub Auto Patching; Docker Malware and Shodan; Web Packaging
ISC StormCast for Thursday, May 30th 2019
MSFT ASA Malware Analysis; Docker Symlink Race Attack; Nanshu Campaign; #MSFT #docker
ISC StormCast for Wednesday, May 29th 2019
BASE64 Encoded Powershell; #BlueKeep Census; MSFT DHCP Client Vuln Analysis; @sensepost @ErrataRob @0xdf_
ISC StormCast for Tuesday, May 28th 2019
GateKeeper Bypass; FortiOS SSL VPN Vulnerablities; Customizing NMAP
ISC StormCast for Friday, May 24th 2019
Custom URL Schemes; Skimming Trends; #Apple T2 Chip Update; #MSFT APT for MacOS @IntelAdvanced @zer0pwn
ISC StormCast for Thursday, May 23rd 2019
Yet Another BlueKeep Update; SanboxExcaper; Signed Malware
ISC StormCast for Wednesday, May 22nd 2019
Shodan Monitoring; Smartphone Fingerprinting; Docker Password Issues; #bluekeep #suricata sigs;
ISC StormCast for Tuesday, May 21st 2019
MSFT RDP Vuln (#BlueKeep) Update; Sharepoint Exploited; JWT Risks; MuddyWater
ISC StormCast for Monday, May 20th 2019
Google 0-Day Response Analysis; #ASUS WebStorage Exploited; #Apple Air Drop Vuln
ISC StormCast for Friday, May 17th 2019
Vulnerability Scanner NTLM Relay; ARIN Revokes Malicious IPs; Cisco Patches; ILS Hacks
ISC StormCast for Thursday, May 16th 2019
Forbes vs Magecart; TLS Tampering; Titan Key Update; Samba Patch; SAP Patch
ISC StormCast for Wednesday, May 15th 2019
More #Intel CPU Issues; #MSFT Patches (watch out #RDP!); #Apple/#Adobe Updates; Broken Trust Seal Logs Keystrokes
ISC StormCast for Tuesday, May 14th 2019
Linux rds_tcp_kill_sock RCE; WhatsApp; Cisco Vuln; Linksys JNAP Exposure
ISC StormCast for Monday, May 13th 2019
#DSSuite; #Sqlite Vuln; #NVidia Patch; Windows 10 #FIDO2 Cert; #Google ADB Backup
ISC StormCast for Friday, May 10th 2019
ELECTRICFISH; Fake Keepass Site; Android Updates; AV Company Breah
ISC StormCast for Thursday, May 9th 2019
EMail Roulette; Lightneuron Exchange Compromise; Alpine Linux Docker; Wordpress Secures Updates
ISC StormCast for Wednesday, May 8th 2019
Jenkins Exploit Mines Crypto; Confluence Miners; Cisco ESC REST Vuln;
ISC StormCast for Tuesday, May 7th 2019
UTF-16 in UDF Files; VMWare Fusion RCE; Bad Bad Guy Passwords; Amazon S3 Path Style Access
ISC StormCast for Monday, May 6th 2019
Git Ransomware; DLink Ransomware Patch; Jenkins Plugins; Malicious WPAD
ISC StormCast for Friday, May 3rd 2019
SAP Targeted; Cisco Nexus 9000; CryptoJacking Update; DLink; Securepairs; #righttorepair
ISC StormCast for Thursday, May 2nd 2019
RCE in Dell SupportAssist; Creston Vuln; More JS Skimmers; S/Mime and PGP Vuln
ISC StormCast for Wednesday, May 1st 2019
WebLogic Ransom Ware; Facebook Location Leak, AutoMacTC, KAPE
ISC StormCast for Tuesday, April 30th 2019
iLnkP2P Weakness; iFrame Tech Support Scam; Window 10 Users Avoiding October 2018 Update
ISC StormCast for Monday, April 29th 2019
WebLogic Update; Docker Hub Breach;
ISC StormCast for Friday, April 26th 2019
Windows Service Acccounts; Weblogic Flaw; Confluence Exploited; New Windows 10/Server Security Baseline
ISC StormCast for Thursday, April 25th 2019
Finding Domain Admins; X-Protect Covering PE Files; Hotspot Password Leak; Github Hosting Phishing Pages
ISC StormCast for Wednesday, April 24th 2019
VBA Macro Wtihout Source Code; More Shadowhammer Victims; Malicous Google Sites
ISC StormCast for Tuesday, April 23rd 2019
ACE Exploit; Younger Malware Senders; McAfee vs. Windows Update; Blocking Azure Blob Phishing
ISC StormCast for Monday, April 22nd 2019
Analyzing UDF Files; HTML Link Ping; Edge User Agents; French Govt Chat User Managment
ISC StormCast for Friday, April 19th 2019
Malicious UDF Files; Facebook Clear Text Passwords; Iranian Hackers Hacked; Win8 Live Tiles Takeover
ISC StormCast for Thursday, April 18th 2019
Sea Turtle; Broadcom Drivers; NamPoHyu, Confluence Attacks
ISC StormCast for Wednesday, April 17th 2019
CVE-2019-0726 (Win DHCP Client) PoC; Oracle CPU; WiPro Hacked; GHydra Tips
ISC StormCast for Tuesday, April 16th 2019
DNS False Positives; Adblock Code Injection; Executables in DICOM Images; Misleading VPN Ads
ISC StormCast for Monday, April 15th 2019
MTA-STA; AirBNB Cameras; VPN Credentials; MSIE XXE Vulnerability
ISC StormCast for Friday, April 12th 2019
GMail Supporting MTA-STS; Juniper Patch; Uniden IP Camera Site Hosting Malware
ISC StormCast for Thursday, April 11th 2019
WPA3 Dragonblood Vulnerablity; HOPLIGHT Trojan; SneakyPastes
ISC StormCast for Wednesday, April 10th 2019
Microsoft/Adobe Patches; Food Poisoning Malspam; Axis Vulnerability; Golang Vuln
ISC StormCast for Tuesday, April 9th 2019
TrendMicro Patch; Dovecot Patch; Apache Exploit; Using Javascript in Exploits; Ghidra vs. IDA
ISC StormCast for Monday, April 8th 2019
Fake Office365 Invoices; "well-known" hiding place; Altering CT Data; QT Framework Bug
ISC StormCast for Friday, April 5th 2019
Old Rule Triggers on New Exploit; Xiaomi Guardapp; Xwo Scanner; SmartWatches Pwned
ISC StormCast for Thursday, April 4th 2019
Ghidra vs. IDA; IRS Phishing; Large Facebook Data Leak; PostgreSQL "COPY" Command
ISC StormCast for Wednesday, April 3rd 2019
LaCie Drives Spread Fake AV; Unpatched IE/Edge SOP Bug; Apache Patch; Verzion Phish
ISC StormCast for Tuesday, April 2nd 2019
OpenOffice PDFs; Android Updates; Android Malware Redirects Phonecalls; Google Extends WebAuthn Support
ISC StormCast for Monday, April 1st 2019
Reversing Golang; Kubernetes Vulnerability; VMWare Patches; ASUS MACs
ISC StormCast for Friday, March 29th 2019
Passive DNS; Incomplete Cisco RV320 Patch; TPLink Debug Port
ISC StormCast for Thursday, March 28th 2019
MSFT Application Guard for FF/Chrome; LTE Vulnerabilities; NVidia Vuln;
ISC StormCast for Wednesday, March 27th 2019
Apple Updates; ASUS Response; Firefox Cert Issues; UC Browser MITM Vuln
ISC StormCast for Tuesday, March 26th 2019
ShadowHammer ASUS Backdoor; Telegram Unsend Feature; F5 BigIP Update
ISC StormCast for Monday, March 25th 2019
Reversing Golang; Reading QR Codes; Pwn2Own; Java Card Vulnerabilities
ISC StormCast for Thursday, March 21st 2019
Google Photo xsleaks; Fake CDC Emails; Atlassian Sourcetree Vulnerability; Microsoft Defender for MacOS
ISC StormCast for Wednesday, March 20th 2019
Using AD to Find Hosts Outside of AD; MSFT Anti Malware Crashing Windows; Less DDoS
ISC StormCast for Wednesday, March 20th 2019
Cloudflare Proxy Detection Tools; BEC Moving to SMS; IPv6 and UPNP
ISC StormCast for Monday, March 18th 2019
Putty Updates; Fijitsu Keyboards; Signed Malware; Ubuntu 14.04 Support Ends; Mirai News
ISC StormCast for Sunday, March 17th 2019
Jupyter and radare2; IMAP Brute Fording; GSuites SMS Disable; Bitlocker/TPM
ISC StormCast for Friday, March 15th 2019
Analyzing ZIP Files in Ghydra; 64 Bit Cert Serial Number; Cisco Patch; Intel Patches
ISC StormCast for Wednesday, March 13th 2019
MSFT/Adobe Patch Tuesday; PSMiner; ACME RFC8555
ISC StormCast for Tuesday, March 12th 2019
StackStorm Vulnerability; Secure Coding Study; Game Developer Supply Chain Attack
ISC StormCast for Monday, March 11th 2019
Reversing HTA; Apache SOLR Patch; Vulnerable Car Alarms; Win7+Chrome Exploit
ISC StormCast for Friday, March 8th 2019
RSA Panel; Disposable E-Mails; NetApp / Cisco Patches; Github/Slack as C&C;
ISC StormCast for Thursday, March 7th 2019
More Resume Malspam; Cloudflare Protects Drupal; Cisco Exploit; Monitorkit
ISC StormCast for Wednesday, March 6th 2019
Comcast Mobile Phone PIN; NSA Releases Ghidra; Google Chrome Vuln Exploited
ISC StormCast for Tuesday, March 5th 2019
MacOS Unpatches Priv. Esclation; Windows Exploit Suggester; GPS Jamming
ISC StormCast for Monday, March 4th 2019
Cisco Router Patch; Coldfusion Patch, Protonmail Ransomware, eBay Phish hosted on eBay
ISC StormCast for Friday, March 1st 2019
Emotet Backend Analysis; Kaspersky vs. Chromecast; Wireshark 3.0; MageCart Update
ISC StormCast for Thursday, February 28th 2019
Coinhive Shutting Down; Azure Blob Phishing; Old Elastic Exploit User; Drupal Vuln Exploited
ISC StormCast for Wednesday, February 27th 2019
Thunderbolt Vulnerabilities; Alterting Signed PDFs; NVidia Patches
ISC StormCast for Tuesday, February 26th 2019
WinRAR ACE Exploited; QR Code Sextortion; Android FIDO2 Compliant; ICANN Pushing DNSSEC
ISC StormCast for Monday, February 25th 2019
B0r0nt0k Ransomware; DLink NAS Ransomware; Linkedin Job Offer Ruse
ISC StormCast for Friday, February 22nd 2019
Adobe Reader/Acrobat Patch; MSFT IIS DoS; Drupal Fix; Linux Kernel RCE; MikroTik Open Proxy
ISC StormCast for Thursday, February 21st 2019
Edge Flash Whitelist; Bank App Screenshot Grab; Password Manager Weaknesses
ISC StormCast for Wednesday, February 20th 2019
Russian Malspam; GandCrab Decrypter; Phishing From Banks; SHA-2 Patch for Win7/2008
ISC StormCast for Tuesday, February 19th 2019
What Do You Log; Spectre Followup; VMWare Fixes runc; Exposed Phonecall Recordings
ISC StormCast for Monday, February 18th 2019
Snap Patches; Properties in Office Docs, Bro-Sysmon, Cryptojacking
ISC StormCast for Friday, February 15th 2019
PDF includes SMB Link; QNAP Malware; Bomb Threat Spammers Arrested; MSP as Gateway
ISC StormCast for Thursday, February 14th 2019
Fake Updates; Shlayer vs. Gatekeeper; Cisco Def. Passwd Patch; VFEMail
ISC StormCast for Wednesday, February 13th 2019
Microsoft Updates; Adobe Updates; Ubuntu snapd dirty_sock
ISC StormCast for Tuesday, February 12th 2019
Docker runc Vulnerability; MacOS Privacy Flaw; Android Crypto Clipper Malware; Not an E-Mail Virus
ISC StormCast for Monday, February 11th 2019
JavaScript Phishing; Translated Phishing; iPhone Screen Record
ISC StormCast for Friday, February 8th 2019
Value of UAC; Apple Releases Facetime Patch; Skype Blured Background; 2nd MSFT Exchange Advisory
ISC StormCast for Thursday, February 7th 2019
PNG Android Vulnerability; Skia Graphics Library Vuln; Google Chrome Password Check;
ISC StormCast for Wednesday, February 6th 2019
Mimikatz Defenses; LibreOffice Vulnerability; Firefox 65 And HTTPS AV Scanning
ISC StormCast for Tuesday, February 5th 2019
Exploiting Struts in vCenter; Wikipedia Tech Support Scam; Stealing MacOS Keychain; Spy Beauty Cameras
ISC StormCast for Monday, February 4th 2019
Sextortion Update; Ubiquity Discovery DDoS; Google Typodomain Warnings; Youtube Extortion
ISC StormCast for Friday, February 1st 2019
Tracking DNS Changes; Systemd Exploit; Windows Defender Boot Issues; MacOS Malware
ISC StormCast for Thursday, January 31st 2019
Chrome Update; Firefox Update; Facbook/Google iOS Spy VPN; Samsung Store RCE
ISC StormCast for Wednesday, January 30th 2019
Phishing IPv6 Miss; Facetime Bug Update; Outlook 365 Error
ISC StormCast for Tuesday, January 29th 2019
Exchange Server Priv. Escalation; Facetime Spy Bug; AZORult

This podcast is also available via various podcast sites. Please let us know if we forgot one.

iTunes

MP3 Download

RSS Feed

Google Play

Stitcher

Podbean

Amazon Echo

YouTube

Spreaker

iOS App

Spotify

Top of page