Cyber Security Podcasts

Daily Information Security Podcast ("StormCast")

Stormcasts are daily 5-10 minute information security threat updates. The podcast is produced each work day, and typically released late in the day to be ready for your morning commute.

To subscribe, use one of the following URLs:
RSS feed: https://isc.sans.edu/dailypodcast.xml (any podcast player should support this in some way)

Recent Episodes

ISC StormCast for Monday, January 20th 2020
MSFT Browser 0Day; Curveball and Citrix ADC Update #CitrixADC #Curveball
ISC StormCast for Friday, January 17th 2020
CVE-2020-0601 Update; Citrix ADC Update; Cablehaunt; SecDevOps
ISC StormCast for Thursday, January 16th 2020
CVE-2020-0601 Exploit Released; Oracle Patches
ISC StormCast for Wednesday, January 15th 2020
Microsoft January 2020 Patch Tuesday and #CryptoAPI Flaw
ISC StormCast for Tuesday, January 14th 2020
Upcoming Critical MSFT Patch; SIM Swaping is Easy; wombat dressing room
ISC StormCast for Monday, January 13th 2020
Citrix ADC Vulnerability Actively Exploited #CitrixADC #Netscaler #cve201919781 #citrix
ISC StormCast for Friday, January 10th 2020
Another Word Maldoc; SHA1 Update; Cisco Update; Girls Go Cyberstart @GGCyberStart
ISC StormCast for Thursday, January 9th 2020
Firefox Bug; Zero-Day in Play Store; Tails 4.2; TikTok Vulnerabilities
ISC StormCast for Wednesday, January 8th 2020
Citrix ADC Update; Pulse Secure SSLVPN Exploited; Project Zero Disclosure Policy; Android Update
ISC StormCast for Tuesday, January 7th 2020
Spoofed Scans from 103/8; Iran Terror Threat; BusKill
ISC StormCast for Monday, January 6th 2020
CCPA Intro; Cisco Patches; XiaoMi Camera Bug;
ISC StormCast for Friday, January 3rd 2020
Ransomware written in JavaScript/Node.js; Landry Breach; Holiday Hack Challenge
ISC StormCast for Tuesday, December 31st 2019
ISC API Update; 36C3
ISC StormCast for Monday, December 30th 2019
Breaking 2FA Soft Tokens; Pihole Dashbaord; Corrupt Office Docs; Enumerating O365 Users;
ISC StormCast for Friday, December 27th 2019
Citrix Application Delivery Controller (Netscaler ADC) Critical Vulnerability
ISC StormCast for Monday, December 23rd 2019
Extracting Macros from AutoCAD Files; Cisco PKI Expiration; AFRINIC IP Heist
ISC StormCast for Friday, December 20th 2019
More DNS over HTTPS Details; Ransomware Going Public; Google Chrome Update
ISC StormCast for Thursday, December 19th 2019
Emotet update; Joomla Patches; Unicode Problems
ISC StormCast for Wednesday, December 18th 2019
Discovering DNS over HTTPS; Ring Camera Weaknesses; WhatsApp Bug;
ISC StormCast for Tuesday, December 17th 2019
Slack "Unshare" Vuln; Google Enforces OAUTH; TPLink Auth Bypass; Factoring IoT RSA Keys
ISC StormCast for Monday, December 16th 2019
Malicious Autocad Files; OpenBSD Priv. Escalation; NPM Path Traversal
ISC StormCast for Friday, December 13th 2019
Shared Data in Malware; WebKit Tracking Protection; SMS Verification; @sans_edu
ISC StormCast for Thursday, December 12th 2019
German Malspam / Trickbot; KeyWe Locks; Chrome Update; iOS Spam Filter
ISC StormCast for Wednesday, December 11th 2019
Microsoft, Adobe, Intel and Apple Updates
ISC StormCast for Tuesday, December 10th 2019
Another Word Maldoc; Snatch Ransomware; Ryuk Decryptor Fail; Sysmon DNS Rules @swiftonsecurity
ISC StormCast for Monday, December 9th 2019
HTML Phishing Email; Great (Red) Canon Activated Against HK
ISC StormCast for Friday, December 6th 2019
OpenBSD Vuln; Linux/BSD VPN Connection Hijack; STI Paper: RASP vs. WAF
ISC StormCast for Thursday, December 5th 2019
Atlasian Companion App IBM Aspera Cloud; Python Libraries; GoAhead
ISC StormCast for Wednesday, December 4th 2019
Avast Blocked from Firefox; Android Patches; Strandhogg; Firefox 71
ISC StormCast for Tuesday, December 3rd 2019
Port 26 Scans; Ursnif/Dridex; Windows 7 ESU; QNAP Patches
ISC StormCast for Monday, December 2nd 2019
Agent Tesla; SauronEye; Splunk Y2k20 Bug; Google Threat Analysis Group Summary
ISC StormCast for Wednesday, November 27th 2019
Playing With Phishing; HPE SSD Update; Malicious Android SDK; Kaspersky Update
ISC StormCast for Tuesday, November 26th 2019
DoH In SOHO Networks; Fortinet Weak Crypto; Tracking via DNS
ISC StormCast for Monday, November 25th 2019
Web Filter Recon; Malice for Local Malware Analysis; VNC Flaws
ISC StormCast for Friday, November 22nd 2019
Memory Encryption Issues; Memory Encryption Issues; RIPlace; OFfcie Preview Issue
ISC StormCast for Thursday, November 21st 2019
Latest Hancitor Update; Oracle Payday Vuln; Chrome Update; Unbound Patch
ISC StormCast for Wednesday, November 20th 2019
JAWS DVR Bot; Tianfu Cup; Access Hotfix; Win10 DoH; Android Camera Permission Mixup
ISC StormCast for Tuesday, November 19th 2019
SMS Woes; Intel Removing EOL BIOS Downloads; Agressive Outlook 365 Phishing
ISC StormCast for Monday, November 18th 2019
TPM-Fail Update; Office Update Breaks Access; WhatsApp Update
ISC StormCast for Friday, November 15th 2019
LokiBot Update; Zeek Packet-Fu; TPM Leaks; Zombieload 2.0
ISC StormCast for Wednesday, November 13th 2019
Microsoft Patch Tuesday; Adobe Updates; Facebook Camera "Bug"; McAfee Update
ISC StormCast for Tuesday, November 12th 2019
TheMoon Still Here; Apply Magento Update; CSS Injection in Slack
ISC StormCast for Monday, November 11th 2019
Misused MSFT Apps; Pwn2Own Summary; State of Javascript Security; Honeypot Update
ISC StormCast for Friday, November 8th 2019
Adobe Mobile SDK; QNAP Advice; Double ZIP Files; Ring Video Doorbell
ISC StormCast for Thursday, November 7th 2019
Google PlayStore Security; Xen and npcap Patches; TrendMicro Insider Issue; SANS Ouch Newsletter
ISC StormCast for Wednesday, November 6th 2019
Formbook Malspam; Honeypot Update; Office on Mac Macros; libarchive bug
ISC StormCast for Tuesday, November 5th 2019
Bluekeep Exploit Update; ClamAV Vuln; XCode Patch; MikroTik DNS Cache Poison
ISC StormCast for Monday, November 4th 2019
Chrome Update; BlueKeep Mass Exploit; Unpached rConfig RCE (exploited, but maybe not a big deal)
ISC StormCast for Friday, November 1st 2019
EML O365 Phishing; MSFT TLS Timeouts; MESSAGETAP; Amazon 3rd Party Device Auth Issues
ISC StormCast for Thursday, October 31st 2019
Apple Updates; Untitled Goose; Pagers in Medicine; Kibana Vuln
ISC StormCast for Wednesday, October 30th 2019
xHelper Update; Counterstrike Money Laundry; PCAPs from YAML
ISC StormCast for Tuesday, October 29th 2019
PHP 7 RCE Exploited; Finding Shellcode; iOS/tvOS/Safari Updates; Sextortion Blogs
ISC StormCast for Monday, October 28th 2019
Odd Double Base64 Header; Parsing DNS Logs in PS; iOS Malware
ISC StormCast for Friday, October 25th 2019
XXE Vuln in LSP4XML (VS Code); Google Chrome SameSite Changes; Gigamon Leftovers
ISC StormCast for Thursday, October 24th 2019
SIM Swapping; Discord Infostealer; Cisco Exploit Code; Tails 4.0 Released
ISC StormCast for Wednesday, October 23rd 2019
Testing TLS 1.3; Firefox/Chrome Updates; Cache Poisoning DoS
ISC StormCast for Tuesday, October 22nd 2019
DNS over TLS Scans; North/Thor/Viking/VPN Compromises;
ISC StormCast for Monday, October 21st 2019
Attacks Against NVMS-9000 DVR; Pixel 4 / Galaxy S10 Biometrics; Home Speaker Phishing
ISC StormCast for Friday, October 18th 2019
Bypassing SPF Records; Old Domain Paypal Accounts; Typosquatting 2020 Election; @sans_edu interview
ISC StormCast for Thursday, October 17th 2019
Oracle CPU; jackson-databind vulnerability; VMWare; Wordpress
ISC StormCast for Wednesday, October 16th 2019
Adobe Updates; Symantec BSDO; OSX Shlayer/Tarmac; Fake iOS Jailbreak
ISC StormCast for Tuesday, October 15th 2019
Sudo Vulnerablity; Apple Safebrowsing; Streaming Privacy
ISC StormCast for Monday, October 14th 2019
YARA Update; Hacking Back Against Ransomware; Fake Crypto Trading Software
ISC StormCast for Friday, October 11th 2019
OUI Mining; iTerm2 Vuln; Apple Updater Exploited
ISC StormCast for Thursday, October 10th 2019
Vidar Malware Analysis; NTLM MIC Bypass; Threats on Google Play Store
ISC StormCast for Wednesday, October 9th 2019
MSFT Patches; Android Patches; vBulletin Patches
ISC StormCast for Tuesday, October 8th 2019
2xVPN=0VPN; WhatsApp GIF Bug; MacOS Catalina; Magecart Update
ISC StormCast for Monday, October 7th 2019
R and visNetwork; Android Priv. Escalation Exploited; Signal Evesdropping
ISC StormCast for Friday, October 4th 2019
Lost Files Ransomware; tcpdump vulnerabilities; Reductor Malware; Pass The Hash @sans_edu
ISC StormCast for Thursday, October 3rd 2019
Latest Emotet News; Ouch! Newsletter; XPdf/Foxit Updates; eFax Malspam
ISC StormCast for Wednesday, October 2nd 2019
PDF Encryption Flaw; Windows 7 Security Extended Updates; ODT Malware
ISC StormCast for Tuesday, October 1st 2019
Maldoc, Powershell and BITS; Cisco Patch Cycle; Exim Flaw
ISC StormCast for Monday, September 30th 2019
Polycom Scans; Apple Security Details; iOS Jail Break
ISC StormCast for Friday, September 27th 2019
vBulletin Botnet; Cisco Patches; Sniffle BT Sniffer; OWA Blocking Extensions
ISC StormCast for Thursday, September 26th 2019
Malspam Pushing Quasar; vBulletin Patch; Fake Veteran Employment Site
ISC StormCast for Wednesday, September 25th 2019
Remotewebaccess CT Logs; Coldfusion Patch; Apple Updates; vBulletin 0Day RCE
ISC StormCast for Tuesday, September 24th 2019
MSFT releases IE Patch; Cloudflare Blocking Bots; iOS Bluetooth Restriction; Forcepoint VPN
ISC StormCast for Monday, September 23rd 2019
Android Adware; Wireshark Update; Harbor Priv. Escalation Bug
ISC StormCast for Friday, September 20th 2019
Agent Tesla; Apple Updates; SAMBA disables SMB1; GitHub Updates
ISC StormCast for Thursday, September 19th 2019
Emotet Sample; Windows Defender Bug; QEMU/VMWare VM Escape; CWE Top 25
ISC StormCast for Wednesday, September 18th 2019
Find Windows Log Gaps; SOHOpelesly Broken; HP Printer Privacy
ISC StormCast for Tuesday, September 17th 2019
Encrypted Sextortion; Simjacker; LassPass Fix
ISC StormCast for Monday, September 16th 2019
#RigEK -> VBScript; Pentesters Arrested; iOS 13 Unlock Trick
ISC StormCast for Friday, September 13th 2019
Blocking DoH for Firefox; PSD2 Confusion;
ISC StormCast for Thursday, September 12th 2019
Chrome DoH; Chrome 77 and EV/Cookies; Virtual Disk Files vs. AntiVirus
ISC StormCast for Wednesday, September 11th 2019
Microsoft Patch Tuesday; Adobe Patches; SSH Side Channel
ISC StormCast for Tuesday, September 10th 2019
Firefox Making DoH Default; Telegram Fixes Privacy Bug; PsiXBot uses DoH
ISC StormCast for Monday, September 9th 2019
Mirai Updates; Bluekeep in Metasploit; Gmail Spam Response; Exim TLS SNI Exploit
ISC StormCast for Friday, September 6th 2019
Private IPs and VT; Samba/Exim/Android Patches; Twitter Suspends SMS; Scams via Social Media
ISC StormCast for Thursday, September 5th 2019
Encrypted Resume Malspam; Android SMS Carrier Settings; Cisco IR Guides; Simulated Voice Fraud
ISC StormCast for Wednesday, September 4th 2019
LNK File Trickbot; Supermicro Vritual USB BMC Vuln; Facebook Free Basics Key
ISC StormCast for Tuesday, September 3rd 2019
Malware Installs Node.js; Dovecot Vulnerability; Cloudflare Workers Spreading Malware
ISC StormCast for Monday, September 2nd 2019
iOS Exploits in the Wild; Twitter CEO Account Hijack
ISC StormCast for Friday, August 30th 2019
Malware Compiling Itself; Notifying Vulnerable Home Automation Owners; Botnet Takedown
ISC StormCast for Thursday, August 29th 2019
Open Redirects; ADB Botnet; Android CamScanner Malware; Cisco REST API Auth Bypass
ISC StormCast for Wednesday, August 28th 2019
TLS 1.2 For Email; xHelper Android Trojan; LYCEUM Threat Group
ISC StormCast for Tuesday, August 27th 2019
iOS/macOS Patch; Pulse Secure VPN Scans; Emotet
ISC StormCast for Monday, August 26th 2019
Mimikatz/RDPWrapper Dropper; IRS Impersonation; Instagraph Phish; GitHub WebAuthn
ISC StormCast for Friday, August 23rd 2019
Steam Double 0; Malicious npm Packages; Branded Outlook 365 Phishing Pages
ISC StormCast for Thursday, August 22nd 2019
KAPE vs. Commando; Sphinx Servers; Cisco Patches; Newly Registered Domains

This podcast is also available via various podcast sites. Please let us know if we forgot one.

iTunes

MP3 Download

RSS Feed

Google Play

Stitcher

Podbean

Amazon Echo

YouTube

Spreaker

iOS App

Spotify

Top of page