Cyber Security Podcasts

Daily Information Security Podcast ("StormCast")

Stormcasts are daily 5-10 minute information security threat updates. The podcast is produced each work day, and typically released late in the day to be ready for your morning commute.

To subscribe, use one of the following URLs:
RSS feed: https://isc.sans.edu/dailypodcast.xml (any podcast player should support this in some way)

Recent Episodes

ISC StormCast for Tuesday, September 22nd 2020
Overlay Phishing; MacOS Code Injection; Snort/ClamAV and Cobalt Strike
ISC StormCast for Monday, September 21st 2020
Python in Word Docs; Salesforce Phish; Google Appspot Phish; Sysmon Clipboard monitor
ISC StormCast for Friday, September 18th 2020
OSSEC Active Response; MSFT Mac Office Patch; VMWare Patch; Secure Boot; End of Flash
ISC StormCast for Thursday, September 17th 2020
Mirai vs Amanda; Apple Updates iOS/iPadOS/WatchOS and Safari
ISC StormCast for Wednesday, September 16th 2020
Malware Quiz; Magento 1 Attacks; Adobe Media Enc. Patch; Zerologin/Finger Reminders
ISC StormCast for Tuesday, September 15th 2020
.well-known; BLE Lock Replay Vulnerability; Mobile Iron MDM Exploit
ISC StormCast for Monday, September 14th 2020
Pillaging the Clipboard; PANOS Patch; Softswitch VoIP Malware; Zerologon
ISC StormCast for Friday, September 11th 2020
Dridex Update; Zoom 2FA; AMD CPU Lock; BLURtooth
ISC StormCast for Thursday, September 10th 2020
MacOS 11 Network Traffic; Azure Auto Patching Windows; WeaveScope Used for Docker Attack
ISC StormCast for Wednesday, September 9th 2020
Patch Tuesday: Microsoft, Adobe, Intel
ISC StormCast for Tuesday, September 8th 2020
XXE/VB 6.0 Malware; OLE and ZIP; Golang XSS; "Baka" Skimmer
ISC StormCast for Friday, September 4th 2020
Anti-Sandbox via NTP; Android DoH; DDoS Extortion; Cisco Jabber Followup
ISC StormCast for Thursday, September 3rd 2020
Evil Windows Python; iOS 13.7; Cisco Jabber Patch; MoFi Vulnerabilities
ISC StormCast for Wednesday, September 2nd 2020
Exposed DC Used for DDoS Attacks; Edge Reviving SHA1; Trend Micro Patch; Is isn't a Breach if the data is public
ISC StormCast for Tuesday, September 1st 2020
Finding Original Maldocs; Slack Vuln; Apple Approved Malware; Cisco DoS Bug Exploited
ISC StormCast for Monday, August 31st 2020
CenturyLink Outage; NZX DDoS; Pulse Connect Secure Patch
ISC StormCast for Friday, August 28th 2020
security.txt; DNS Queries; MSFT Extends Win10 1803 Deadline; LemonDuck Tricks
ISC StormCast for Thursday, August 27th 2020
Twists and Turns of Excel; Autodesk Plugins; Firefox Update; Insider Bribe
ISC StormCast for Wednesday, August 26th 2020
LOLBins; Malicous iOS Ads; Apache Update; Google Chrome Update
ISC StormCast for Tuesday, August 25th 2020
VT Threat Hunting; Secure RDP! Zoom Outage; MSFT Application Guard; Safari Bug
ISC StormCast for Monday, August 24th 2020
Helping Cyber Stalking Victims; RDP/Telnet Probes; Cinterion Java Vuln; Google Drive Extension Spoofing
ISC StormCast for Friday, August 21st 2020
Enumerating O365 Rules; Gmail Spoofing; Disable DisableAntiSpyware; Acoustic Key Picking
ISC StormCast for Thursday, August 20th 2020
Obfuscated Qakbot URLs; Encrypted Email Bugs; Win8.1/2012 Patch; Fileless Worm
ISC StormCast for Wednesday, August 19th 2020
Dropbox Exfil; Jenkins Advisory; Chrome 86 Insecure Forms; Crypto Worm Hitting Docker/Kubernetes/Jenkins
ISC StormCast for Tuesday, August 18th 2020
Apache Struts; Emotet Bug;
ISC StormCast for Monday, August 17th 2020
SANS Incident IOCs; Obfuscation by Size; Mac XCode Malware; Citrix Flase Positive
ISC StormCast for Friday, August 14th 2020
ReVoLTE Attack; Alexa Patch; Drovorub Linux Malware
ISC StormCast for Thursday, August 13th 2020
Mordor & Brim; Tor Exit Nodes Steal Bitcoin; SAP/Intel Patches; SANS Incident
ISC StormCast for Wednesday, August 12th 2020
vBulletin 0 Day; MSFT Patches; Adobe Patches; Citrix Endpoint Mgmt Update
ISC StormCast for Tuesday, August 11th 2020
Word Maldoc Solution; Pentest Scoping; Chrome Extensions; PDF Mayhem; Teamviewer update
ISC StormCast for Monday, August 10th 2020
WIFICAM nc Exploits; Snapdragon Vulns; Chinese Firewall ESNI Blocking
ISC StormCast for Friday, August 7th 2020
FTCODE Ransomware Resurfaces; MSFT Defender vs hosts file; MSFT Print Spool Vulnerabilities
ISC StormCast for Thursday, August 6th 2020
Malware Analysis Quiz; MacOS PoC Exploit; iOS OAuth2 Vuln; NSA Location Privacy Guide
ISC StormCast for Wednesday, August 5th 2020
CVE-2020-3452 (Cisco ASA/FTD) Updates; DNS Concentration; Android Patches; iOS Jailbreak
ISC StormCast for Tuesday, August 4th 2020
Multi C2 Macro; Boothole Patch Problem; Disable MacOS TCC; TAIDOOR Malware
ISC StormCast for Monday, August 3rd 2020
Bad Bots; KeePassRCP Update; QNAP Malware Remover; Android Phone Updates
ISC StormCast for Friday, July 31st 2020
SQLi and Python; Google Allowing Office 365 Phishing; Netgear/Zoom Vulns; OPNsense Update
ISC StormCast for Thursday, July 30th 2020
Consumer VPNs; Tails 4.9; Browser Updates; GRUB2 Vuln; Facial Recognition and Masks
ISC StormCast for Wednesday, July 29th 2020
New Datafeeds; Emotet Tricks; Magento Update; Docker Attacks;
ISC StormCast for Tuesday, July 28th 2020
In Memory of Donald Smith; Decoding Metasploit Payloads; Emotet Vigilante; QNAP Advisory
ISC StormCast for Monday, July 27th 2020
Desktop Apps Using Web Tech; VBA Passwords; Cisco Treck IP Update; Ubiquity
ISC StormCast for Friday, July 24th 2020
Blocking with MISP; ISC Intel Feed; ASUS Vuln; DLink Lost Key; Cisco Vuln
ISC StormCast for Thursday, July 23rd 2020
F5 IoCs; Insecure PDF Signatures; Sharepoint PoC; Twilio Compromise
ISC StormCast for Wednesday, July 22nd 2020
Covid19 Network Exposures; Adobe Patch; Citrix Workspace Vuln; Procmon 4 Linux
ISC StormCast for Tuesday, July 21st 2020
Sextortion Wrapup; "BadPower" USB-C Firmware Weakness; Zoom Phishing
ISC StormCast for Monday, July 20th 2020
#SigRed Update; Cloutflare Outage; ZeroShell; Zone.Identifier; Forgotten tcpdump
ISC StormCast for Friday, July 17th 2020
Twitter Compromise; SIGRed PoC; Apple Updates; SAP PoC; @sans_edu : Aaron Elyard
ISC StormCast for Thursday, July 16th 2020
MSFT DNS Server Vulnerability #sigred; Outlook Patch Crashes; Oracle CPU; Cisco Backdoors
ISC StormCast for Wednesday, July 15th 2020
MSFT Patch Tuesday; Adobe Patches
ISC StormCast for Tuesday, July 14th 2020
VBA Details; Apple mount_apfs TCC Bypass
ISC StormCast for Monday, July 13th 2020
Excel Starts Formbook; Zoom Update; Digicert Mass Revoke; OAUTH Consent Phishing
ISC StormCast for Friday, July 10th 2020
Citrix Scanning; Juniper Patches; Google Releases Tsunami Scanner; @sans_edu student Billy Wilson: Securing Super Computers
ISC StormCast for Thursday, July 9th 2020
Obfuscated Malware; PAN-OS Vulnerability; Citrix Vuln Details; Mozilla Suspends Send
ISC StormCast for Wednesday, July 8th 2020
F5 BigIP Wrapup / New Exploit Bypassing Workaround (HT @nccgroupinfosec); Citrix ADC Patches; Microsoft Freta;
ISC StormCast for Tuesday, July 7th 2020
More BigIP Exploits; MSFT ATP Web Content Filtering; Ransomware; More Research IPs; #DShield20Years
ISC StormCast for Monday, July 6th 2020
F5 BigIP Critical RCE; Guacamole RDP Gateway Vuln; Barclays vs Archive.org
ISC StormCast for Thursday, July 2nd 2020
DNS Exfil in PoS Malware; EvilQuest Update; More Tools - Less Security
ISC StormCast for Wednesday, July 1st 2020
Special Windows Patch (Code Exec Vuln); MacOS Ransomware; VPN Priv Escalation; DNSSEC Phish
ISC StormCast for Tuesday, June 30th 2020
Sysmon and ADS; PAN-OS SAML Issues; Old Telnet Issue in Cisco IOS XE
ISC StormCast for Monday, June 29th 2020
MacOS 11 Security Changes; Changes to Cert Expiration September 1st
ISC StormCast for Friday, June 26th 2020
Tech Tuesday Recording; Favicon Hides Code; GeoVision Vulns; Docker Vulns; Karim Lalji about #Cyberbunker; @sans_edu
ISC StormCast for Thursday, June 25th 2020
Shell Link No-Touch Download; Updates: Chrome, QNAP, Magento; Exchange Attacks
ISC StormCast for Wednesday, June 24th 2020
CyberBunker; Microsoft offering Linux/Android and Safe Documents
ISC StormCast for Tuesday, June 23rd 2020
WinMerge; VMWare/Office Patches for MacOS; RCE Bitdefender; Google Analytcs Data Exfil
ISC StormCast for Monday, June 22nd 2020
Sigma Rules; Pi 0 Honeypot; Ransomware Post Infection; Discord Malware
ISC StormCast for Friday, June 19th 2020
Outlook Link Re-Write Bug; Cisco Updates; Netgear Bug;
ISC StormCast for Thursday, June 18th 2020
Odd Protest Spam; Zoom E2EE; Linux ACPI Bug; ISC Tech Tuesday Workshop
ISC StormCast for Wednesday, June 17th 2020
Fake Dating Profile Extortion; TMobile Postmortem; Docker Image Vulns; IOT Ripple
ISC StormCast for Tuesday, June 16th 2020
HTML Phishing; TMobile Outage; LTE/5G GTP Issues; #SANSFIRE HAndler Talks
ISC StormCast for Monday, June 15th 2020
Fileless Excel Malware; Win Update Issues; Privnote Phish; #SANSFIRE
ISC StormCast for Friday, June 12th 2020
JavaScript Anti-Debugging; Facebook Messanger Bug; Outlook Macros; Network Flows in AWS @sans_edu
ISC StormCast for Thursday, June 11th 2020
ZLoader Update; More Expiring CAs; BLM Themed Malware
ISC StormCast for Wednesday, June 10th 2020
Microsoft Patch Day; SMBleed; Adobe Patches; Intel Patches
ISC StormCast for Tuesday, June 9th 2020
Translating BASE64; Fake Ransomware Decrypt; GNUTLS Vuln; CallStranger
ISC StormCast for Monday, June 8th 2020
PHP FastCGI Attacks; Protest Cybersecurity; QNAP Vuln; Blocking Loopback Portscans
ISC StormCast for Friday, June 5th 2020
Anti-Debugging; Feed Update; Bank Transaction Spam;
ISC StormCast for Thursday, June 4th 2020
Polish ZLoader Malspam; Cisco IP-in-IP Flaw; Zoom Flaws; Firefox Disables DoH
ISC StormCast for Wednesday, June 3rd 2020
Stackstrings; More AddTrust Woes; VMWare Cloud Director Exploit @__agwa
ISC StormCast for Tuesday, June 2nd 2020
Apple Patches Unc0ver; Office 365 Details; Security Researchers
ISC StormCast for Monday, June 1st 2020
Sectigo CA; Sign in With Apple Flaw; DABANGG; FIDO @fidoalliance
ISC StormCast for Friday, May 29th 2020
USBFuzz; Saltstack vs. Cisco; SHA1 Even Deader; @sans_edu : Threat Actor Assessments
ISC StormCast for Thursday, May 28th 2020
Google Cloud Phish; Trend Micro Cheats; Netgear Nighthawk Evilgrade
ISC StormCast for Wednesday, May 27th 2020
SHA3? MacOS Update; Windows 0Day Vuln; Phish Detection @CurtBraz
ISC StormCast for Tuesday, May 26th 2020
PowerPoint Add-Ins and VM Malware; iOS Patch Analysis; eBay Scanner; iPhone Jailbreak
ISC StormCast for Friday, May 22nd 2020
Malware Triage; Verizon DBIR; Apple Updates; Sophos XG Firewall
ISC StormCast for Thursday, May 21st 2020
IceID Update; NXNSAttack; Adobe Updates
ISC StormCast for Wednesday, May 20th 2020
Port 62234; Cisco Patches; Google Chrome 83; QNAP @Happyholic1203
ISC StormCast for Tuesday, May 19th 2020
Multi Detection Confusion; O365 Mixes up Users; Apple BT Issues; #BIAS Bluetooth Vuln;
ISC StormCast for Monday, May 18th 2020
OWA Scans; Edison Email Mixup; COMpfun Udpate; PAN OS Patches
ISC StormCast for Friday, May 15th 2020
rethinking severity; top exploited vulns; iOS Vulnerability Glut; BigIP
ISC StormCast for Thursday, May 14th 2020
Dridex Update; Ramsay "Airgap" Malware; Windows 10 DoH Preview; #SANSFIRE Handler Series
ISC StormCast for Wednesday, May 13th 2020
MSFT / Adobe Patches; Exposed Firebase; Magecart Sightings; Glitter vs #thunderspy; @LibraAnalysis
ISC StormCast for Tuesday, May 12th 2020
XLMMacroDeobfuscator; LinkedIn Phish; ThunderSpy; Patch vBulletin @DissectMalware
ISC StormCast for Monday, May 11th 2020
YARA 4 Released; vRealize Salt; Samsung Android MMS RCE; MacOS 2FA Trojan
ISC StormCast for Friday, May 8th 2020
NMAP NSE Scripts; iOS Psychic Paper; #WorldPasswordDay; #Cisco Kerberos Bypass
ISC StormCast for Thursday, May 7th 2020
Malware Age; Fake Wallets; Favicon Hides JS; WebEx Phish @malwarebytes
ISC StormCast for Wednesday, May 6th 2020
Built in Cloud Security; Citrix Sharefile; Android/Fiefox/Dell/Wordpress Update
ISC StormCast for Tuesday, May 5th 2020
Exploring Sysmon 11 Delete Protection; Digicert CT Compromise
ISC StormCast for Monday, May 4th 2020
ZIP and AES; Saltstack Exploited; MDM Compromise
ISC StormCast for Friday, May 1st 2020
IOCs from IMAP; Zyxel 0Day Bot; Salt Vuln; Mac Sandbox Escape

This podcast is also available via various podcast sites. Please let us know if we forgot one.

iTunes

MP3 Download

RSS Feed

Google Play

Stitcher

Podbean

Amazon Echo

YouTube

Spreaker

iOS App

Spotify

Top of page