Daily Information Security Podcast ("StormCast")
Stormcasts are daily 5-10 minute information security threat updates. The podcast is produced each work day, and typically released late in the day to be ready for your morning commute.
To subscribe, use one of the following URLs:
RSS feed: https://isc.sans.edu/dailypodcast.xml (any podcast
player should support this in some way)
Recent Episodes
- ISC StormCast for Thursday, March 21st 2019Google Photo xsleaks; Fake CDC Emails; Atlassian Sourcetree Vulnerability; Microsoft Defender for MacOS
- ISC StormCast for Wednesday, March 20th 2019Using AD to Find Hosts Outside of AD; MSFT Anti Malware Crashing Windows; Less DDoS
- ISC StormCast for Wednesday, March 20th 2019Cloudflare Proxy Detection Tools; BEC Moving to SMS; IPv6 and UPNP
- ISC StormCast for Monday, March 18th 2019Putty Updates; Fijitsu Keyboards; Signed Malware; Ubuntu 14.04 Support Ends; Mirai News
- ISC StormCast for Sunday, March 17th 2019Jupyter and radare2; IMAP Brute Fording; GSuites SMS Disable; Bitlocker/TPM
- ISC StormCast for Friday, March 15th 2019Analyzing ZIP Files in Ghydra; 64 Bit Cert Serial Number; Cisco Patch; Intel Patches
- ISC StormCast for Wednesday, March 13th 2019MSFT/Adobe Patch Tuesday; PSMiner; ACME RFC8555
- ISC StormCast for Tuesday, March 12th 2019StackStorm Vulnerability; Secure Coding Study; Game Developer Supply Chain Attack
- ISC StormCast for Monday, March 11th 2019Reversing HTA; Apache SOLR Patch; Vulnerable Car Alarms; Win7+Chrome Exploit
- ISC StormCast for Friday, March 8th 2019RSA Panel; Disposable E-Mails; NetApp / Cisco Patches; Github/Slack as C&C;
- ISC StormCast for Thursday, March 7th 2019More Resume Malspam; Cloudflare Protects Drupal; Cisco Exploit; Monitorkit
- ISC StormCast for Wednesday, March 6th 2019Comcast Mobile Phone PIN; NSA Releases Ghidra; Google Chrome Vuln Exploited
- ISC StormCast for Tuesday, March 5th 2019MacOS Unpatches Priv. Esclation; Windows Exploit Suggester; GPS Jamming
- ISC StormCast for Monday, March 4th 2019Cisco Router Patch; Coldfusion Patch, Protonmail Ransomware, eBay Phish hosted on eBay
- ISC StormCast for Friday, March 1st 2019Emotet Backend Analysis; Kaspersky vs. Chromecast; Wireshark 3.0; MageCart Update
- ISC StormCast for Thursday, February 28th 2019Coinhive Shutting Down; Azure Blob Phishing; Old Elastic Exploit User; Drupal Vuln Exploited
- ISC StormCast for Wednesday, February 27th 2019Thunderbolt Vulnerabilities; Alterting Signed PDFs; NVidia Patches
- ISC StormCast for Tuesday, February 26th 2019WinRAR ACE Exploited; QR Code Sextortion; Android FIDO2 Compliant; ICANN Pushing DNSSEC
- ISC StormCast for Monday, February 25th 2019B0r0nt0k Ransomware; DLink NAS Ransomware; Linkedin Job Offer Ruse
- ISC StormCast for Friday, February 22nd 2019Adobe Reader/Acrobat Patch; MSFT IIS DoS; Drupal Fix; Linux Kernel RCE; MikroTik Open Proxy
- ISC StormCast for Thursday, February 21st 2019Edge Flash Whitelist; Bank App Screenshot Grab; Password Manager Weaknesses
- ISC StormCast for Wednesday, February 20th 2019Russian Malspam; GandCrab Decrypter; Phishing From Banks; SHA-2 Patch for Win7/2008
- ISC StormCast for Tuesday, February 19th 2019What Do You Log; Spectre Followup; VMWare Fixes runc; Exposed Phonecall Recordings
- ISC StormCast for Monday, February 18th 2019Snap Patches; Properties in Office Docs, Bro-Sysmon, Cryptojacking
- ISC StormCast for Friday, February 15th 2019PDF includes SMB Link; QNAP Malware; Bomb Threat Spammers Arrested; MSP as Gateway
- ISC StormCast for Thursday, February 14th 2019Fake Updates; Shlayer vs. Gatekeeper; Cisco Def. Passwd Patch; VFEMail
- ISC StormCast for Wednesday, February 13th 2019Microsoft Updates; Adobe Updates; Ubuntu snapd dirty_sock
- ISC StormCast for Tuesday, February 12th 2019Docker runc Vulnerability; MacOS Privacy Flaw; Android Crypto Clipper Malware; Not an E-Mail Virus
- ISC StormCast for Monday, February 11th 2019JavaScript Phishing; Translated Phishing; iPhone Screen Record
- ISC StormCast for Friday, February 8th 2019Value of UAC; Apple Releases Facetime Patch; Skype Blured Background; 2nd MSFT Exchange Advisory
- ISC StormCast for Thursday, February 7th 2019PNG Android Vulnerability; Skia Graphics Library Vuln; Google Chrome Password Check;
- ISC StormCast for Wednesday, February 6th 2019Mimikatz Defenses; LibreOffice Vulnerability; Firefox 65 And HTTPS AV Scanning
- ISC StormCast for Tuesday, February 5th 2019Exploiting Struts in vCenter; Wikipedia Tech Support Scam; Stealing MacOS Keychain; Spy Beauty Cameras
- ISC StormCast for Monday, February 4th 2019Sextortion Update; Ubiquity Discovery DDoS; Google Typodomain Warnings; Youtube Extortion
- ISC StormCast for Friday, February 1st 2019Tracking DNS Changes; Systemd Exploit; Windows Defender Boot Issues; MacOS Malware
- ISC StormCast for Thursday, January 31st 2019Chrome Update; Firefox Update; Facbook/Google iOS Spy VPN; Samsung Store RCE
- ISC StormCast for Wednesday, January 30th 2019Phishing IPv6 Miss; Facetime Bug Update; Outlook 365 Error
- ISC StormCast for Tuesday, January 29th 2019Exchange Server Priv. Escalation; Facetime Spy Bug; AZORult
- ISC StormCast for Monday, January 28th 2019Cisco RV320/5 Vuln Exploited; Signed HTTP Exchanges; BGP Research Affects Routers
- ISC StormCast for Friday, January 25th 2019Ghostscript RCE; Exchange Priv Escalation; iOS Remote Jailbreak
- ISC StormCast for Thursday, January 24th 2019DHS Suggests Checking DNS; Azure Domain Abuse; Twitter Tech Support Scam
- ISC StormCast for Wednesday, January 23rd 2019Turning MISP Data into RPZs; APT Vulnerability; PEAR compromise; Apple Updates
- ISC StormCast for Tuesday, January 22nd 2019Suspect GET Requests (need help!); DNS Flag Day
- ISC StormCast for Monday, January 21st 2019Drupal Patch; WPML Hack; Google Drive for C&C; Packet Challenge Solution
- ISC StormCast for Friday, January 18th 2019Android Malware Motion Evasion; Twitter for Android Bug; WebAuthn/FIDO2; Iranian RaaS
- ISC StormCast for Thursday, January 17th 2019Emotet Update; Magecart Advertising; Premisys Vulnerabilities; ES File Explorer https://isc.sans.edu/podcastdetail.html?podcastid=6332
- ISC StormCast for Wednesday, January 16th 2019MSFT Skype/Team Foundation Server Patch; SCP Client Vulnerabilites; Hosting Vulnerabilites; Industri
- ISC StormCast for Tuesday, January 15th 2019Microsoft LAPS; Intel SGX Update; Godaddy Injecting JavaScript; Play with Docker
- ISC StormCast for Monday, January 14th 2019.gov TLS Failures; Firefox Flash EOL; Fake Movie Malware; MSFT Patch Breaks Access 97
- ISC StormCast for Friday, January 11th 2019I Love You Again; Juniper got Love for you; Systemd doesn't love you; Iran Love DNS;
- ISC StormCast for Thursday, January 10th 2019Face Recog. Test; Google DNS-over-TLS; Malwarebytes vs Win7
- ISC StormCast for Wednesday, January 9th 2019Microsoft Patch Tuesday; Adobe Updates; Google Play Store Adware; ETC 51% Attack
- ISC StormCast for Tuesday, January 8th 2019Encrypted Word Doc; iOS Apps and Malware C&C; NCSC Offers Help; Page Cache Side Channel
- ISC StormCast for Monday, January 7th 2019TAR Malware; ReiKey Protects Macs from Keystroke Loggers; Substition Cipher Font Phishing
- ISC StormCast for Friday, January 4th 2019Malware Leaks Data Via FTP; Hijacking Dormant Twitter Accounts; Critical Adobe Update
- ISC StormCast for Thursday, January 3rd 2019Gift Card Scams; Wifi Chipset Exploit
- ISC StormCast for Wednesday, January 2nd 2019Vein Scanner Bypass; Lightbulb Bots; EU Open Source Bug Bounty
- ISC StormCast for Friday, December 28th 2018Phish with Click Counter; Insecure IPMI Ransomware; MS Edge RCE Exploit;
- ISC StormCast for Thursday, December 27th 2018Problems with IE Emergency Patch; Bitcoin Blacklists; D-Link Password Overflow;
- ISC StormCast for Friday, December 21st 2018Windows 0-Day PoC; Targeted 2FA Attacks; Booter Services Shut Down; Intel VISA
- ISC StormCast for Thursday, December 20th 2018Emergency MSFT IE Patch; Restricting PowerShell; BMC Server Bricking
- ISC StormCast for Wednesday, December 19th 2018ASUS/Gigabyte Vulns; Apple Phishing; Kibana Exploit; SANS Holiday Hack Challenge #kringlecon
- ISC StormCast for Tuesday, December 18th 2018ZIPed Maldoc; Memes Covert Channel; Shamoon is Back
- ISC StormCast for Monday, December 17th 2018Magellan Sqlite Vulnerability; Logitech Options Vuln; Intel NUC;
- ISC StormCast for Friday, December 14th 2018Fake E-Mail Bomb Threats; Phishing Via Non-Delivery Notices;
- ISC StormCast for Thursday, December 13th 2018DOSFuscation Leads to Emotet; OpenSSH Backdoors; Android Malware 2FA Bypass;
- ISC StormCast for Wednesday, December 12th 2018#MSFT Patch Tuesday; #Adbode Patch; Certificate Authority DNS Spoofing Weakness
- ISC StormCast for Tuesday, December 11th 2018Kubernetes 2nd PoC; WebAssembly Creates Client Side Buffer Overflow; Etherum scans
- ISC StormCast for Monday, December 10th 2018Analyzing Malicious Docker Images; Sextortion Ransomware; WebKit Exploit;
- ISC StormCast for Friday, December 7th 2018Adobe Vuln. PoC; WatchOS Update; Data Exfiltration; Marketing 2FA @sans_edu
- ISC StormCast for Thursday, December 6th 2018Flash Update; Apple Patches; 3-5G Network Vulnerability
- ISC StormCast for Wednesday, December 5th 2018Lokibot Update; Fake Ransomware Decrypt Service; Chrome 71 Released
- ISC StormCast for Tuesday, December 4th 2018Hiding in Plain Doc; Kubernets Patch; US-Cert SamSam Alert; Tricky iOS App
- ISC StormCast for Monday, December 3rd 2018KingMiner; Siglent Osciloscope Vuln; Autocad Malware;
- ISC StormCast for Friday, November 30th 2018Ancient Ransomware Family Still Active; Scamclub; Blocking Shodan @sans_edu
- ISC StormCast for Thursday, November 29th 2018Fake Flash Obfuscated Shell Script; Sennheiser Headsdown; MSFT Patches; 3ve Botnet
- ISC StormCast for Wednesday, November 28th 2018QNAP bash Malware; HTTPS Phishing Sites; Wildfire Scams; FTP Going Away
- ISC StormCast for Tuesday, November 27th 2018ViperMonkey; More Malicious NPM Libraries; BMC Lateral Movement;
- ISC StormCast for Monday, November 26th 2018Attacks Against #Docker API; Mirai vs. Hadoop; #Rohammer for ECC
- ISC StormCast for Wednesday, November 21st 2018Critical Flash Update; Emotet Adds Thanksgiving Lure
- ISC StormCast for Tuesday, November 20th 2018Google Play Malware; ATM Vulnerabilities; Nagios XI Update
- ISC StormCast for Monday, November 19th 2018PCAP Analysis Tool; Lookyloo; Spoofing From in GMAIL
- ISC StormCast for Friday, November 16th 2018Emotet Spreads IcedID; Miners Go Docker; GPS Watches; Firefox Breach Notification; Auditd @sans_edu
- ISC StormCast for Thursday, November 15th 2018Win32k Exploit Details (CVE-2018-8589); Pwn2OWn; More Spectre/Meltdown
- ISC StormCast for Wednesday, November 14th 2018Microsoft Patch Tuesday; Adobe Patches
- ISC StormCast for Tuesday, November 13th 2018Google BPG Hijack via Russia; Bootable USB Microcode Loader; Wordpress GDPR Vuln.
- ISC StormCast for Monday, November 12th 20181.1.1.1 DNS For Mobile; CryotMiner Rootkits; Google Play Protect Success
- ISC StormCast for Friday, November 9th 2018Cisco Updates; Ruby Deserialization; Ouch Newsletter; Blockchain Botnets @sans_edu
- ISC StormCast for Thursday, November 8th 2018VirtualBox 0 Day; WooCommerce RCE #wordpress; Bing Notepad2 Malware; @Bsidesjax
- ISC StormCast for Wednesday, November 7th 2018Chinese Routing Leak; Android Update; Facetime PoC; U-Boot Vuln
- ISC StormCast for Tuesday, November 6th 2018Struts 2.3 RCE; Fake Elon Musk Site Steals BTC; Bypassing SSD Encryption
- ISC StormCast for Monday, November 5th 2018MacOS IR Beyond LaunchAgents; Dissecting CVE-2017-11882 Exploit; Portsmash, Edge Vuln
- ISC StormCast for Friday, November 2nd 2018Windows Defender Sandboxing Bug; BLE Vulnerability;
- ISC StormCast for Thursday, November 1st 2018Encrypted Word Maldocs; iOS/macOS ICMP Error RCE; iOS lock bypass;
- ISC StormCast for Wednesday, October 31st 2018Hancitor Update; Apple Updates; Telegram Clear Text Messages
- ISC StormCast for Tuesday, October 30th 2018PowerShell Cloning Maldoc; Unusual Malicious File Types; Crypto Tracker Backdoor
- ISC StormCast for Monday, October 29th 2018Office Docs and Linux; Anaylzing Crompressed RTF; DHCPv6 systemd; Docker; Hadoop
- ISC StormCast for Friday, October 26th 2018Scam Calls Targeting Chinese; X.org Priv. Elevation Flaw; MS Office Videos
- ISC StormCast for Thursday, October 25th 2018Reversing AutoIT; Arcserve Vulnerabilities; WebEx Vuln;
- ISC StormCast for Wednesday, October 24th 2018Malware Uses Decoy Picture; DoH Push Back; Signal Encryption Bug; Firefox 63
This podcast is also available via various podcast sites. Please let us know if we forgot one.
iTunes
MP3 Download
RSS Feed
Google Play
Stitcher
Podbean
Amazon Echo
YouTube
Spreaker
iOS App
Spotify
