Cyber Security Podcasts

Daily Information Security Podcast ("StormCast")

Stormcasts are daily 5-10 minute information security threat updates. The podcast is produced each work day, and typically released late in the day to be ready for your morning commute.

To subscribe, use one of the following URLs:
RSS feed: https://isc.sans.edu/dailypodcast.xml (any podcast player should support this in some way)

Recent Episodes

ISC StormCast for Tuesday, February 25th 2020
ScrollToTextFragment Google Chrome; WhatsApp Invite Links @JordanWildon; OpenSMTPD again;
ISC StormCast for Monday, February 24th 2020
Excel Macros; VBScript Obfuscation; Letsencrypt; Google Play Malware; Google Warns of Edge
ISC StormCast for Friday, February 21st 2020
Whodat? Adobe/Cisco Patches; Apple Cert Validity; Finding Pythong re DoS @r2cdev
ISC StormCast for Thursday, February 20th 2020
Sonicwall Vulns; SQL Server Exploit; Ransomware in CH; Unsigned Firmware @plopz0r
ISC StormCast for Wednesday, February 19th 2020
Discovering Files in Windows; Ring 2FA (and Nest); VPN Vulns; WordPress @hyp3rlinx
ISC StormCast for Tuesday, February 18th 2020
More Curl on Win; WHO Phishing; Malicious Chrome Extensions @bumblebreaches @crxpert
ISC StormCast for Monday, February 17th 2020
Windows Command Line Browsers; KBOT Old Virus Tricks; OpenSSH Now With FIDO/U2F
ISC StormCast for Friday, February 14th 2020
LDAP/AD Changes; SweynTooth BLE; Symantec EP Vuln; DNSSEC Key Signing Delay
ISC StormCast for Thursday, February 13th 2020
Latest ursniff sightings; Safe Documents; Wordpress GDPR Cookie Again; Apple Joins FIDO2 @fidoalliance
ISC StormCast for Wednesday, February 12th 2020
Microsoft/Adobe Patches; Ransomware Abuses Vulnerable Driver
ISC StormCast for Tuesday, February 11th 2020
Greedy Paypal Phish; SupportAssist Vuln; Lock My PC Scam; Docker Registries @unit42_intel
ISC StormCast for Monday, February 10th 2020
Sandbox Detection; Emotet Wifi Spreader; Sudo Exploit; HiSilicon Vuln @censysio
ISC StormCast for Friday, February 7th 2020
Android Bluetooth Vulnerability; Wacom Privacy Issues; Bitbucket Malware; Realtek Driver Vuln
ISC StormCast for Thursday, February 6th 2020
Fake Browser Updates; Android Update; Cisco CDP Vulnerabilities
ISC StormCast for Wednesday, February 5th 2020
Google Chrome 80; Whats App File Read Vuln; HiSilicon DVR
ISC StormCast for Tuesday, February 4th 2020
AZORult Triple Crypt; Sudo pwfeedback; Teamviewer Password Storage
ISC StormCast for Monday, February 3rd 2020
Stego & Cryptominers; Cornavirus Scams; Google OpenSK
ISC StormCast for Friday, January 31st 2020
Chrome Same-Site Cookie Change; Avast Apology; Magento Update
ISC StormCast for Thursday, January 30th 2020
Impeachment Malware; Coronavirus Malware; I Got Phished; OpenSMTPD Patch
ISC StormCast for Wednesday, January 29th 2020
Emotet Update; Apple Update; Zoom; Intel Cacheout; Avast Sells Data
ISC StormCast for Tuesday, January 28th 2020
Coronavirus Preparedness; RD Gateway; Mitsubishi Compromise
ISC StormCast for Monday, January 27th 2020
Citrix ADC Updates; Windows Fix Breaks Printer; GE Medical Devices
ISC StormCast for Friday, January 24th 2020
Simple vs Complex Obfuscation; RD Gateway PoC; Citrix Scanner; LastPass
ISC StormCast for Thursday, January 23rd 2020
German Malspam; Safari Tracking; Muhstik vs. Tomato; Cisco Firepower
ISC StormCast for Wednesday, January 22nd 2020
Blue ; EFS Ransomware; Fake Data Leak Compensation; Fake Job Site Scam
ISC StormCast for Tuesday, January 21st 2020
Twist on Sextortion; Emotet Extortion Ruse; Lastpass Outage; Netgear Leaks Priv Key
ISC StormCast for Monday, January 20th 2020
MSFT Browser 0Day; Curveball and Citrix ADC Update #CitrixADC #Curveball
ISC StormCast for Friday, January 17th 2020
CVE-2020-0601 Update; Citrix ADC Update; Cablehaunt; SecDevOps
ISC StormCast for Thursday, January 16th 2020
CVE-2020-0601 Exploit Released; Oracle Patches
ISC StormCast for Wednesday, January 15th 2020
Microsoft January 2020 Patch Tuesday and #CryptoAPI Flaw
ISC StormCast for Tuesday, January 14th 2020
Upcoming Critical MSFT Patch; SIM Swaping is Easy; wombat dressing room
ISC StormCast for Monday, January 13th 2020
Citrix ADC Vulnerability Actively Exploited #CitrixADC #Netscaler #cve201919781 #citrix
ISC StormCast for Friday, January 10th 2020
Another Word Maldoc; SHA1 Update; Cisco Update; Girls Go Cyberstart @GGCyberStart
ISC StormCast for Thursday, January 9th 2020
Firefox Bug; Zero-Day in Play Store; Tails 4.2; TikTok Vulnerabilities
ISC StormCast for Wednesday, January 8th 2020
Citrix ADC Update; Pulse Secure SSLVPN Exploited; Project Zero Disclosure Policy; Android Update
ISC StormCast for Tuesday, January 7th 2020
Spoofed Scans from 103/8; Iran Terror Threat; BusKill
ISC StormCast for Monday, January 6th 2020
CCPA Intro; Cisco Patches; XiaoMi Camera Bug;
ISC StormCast for Friday, January 3rd 2020
Ransomware written in JavaScript/Node.js; Landry Breach; Holiday Hack Challenge
ISC StormCast for Tuesday, December 31st 2019
ISC API Update; 36C3
ISC StormCast for Monday, December 30th 2019
Breaking 2FA Soft Tokens; Pihole Dashbaord; Corrupt Office Docs; Enumerating O365 Users;
ISC StormCast for Friday, December 27th 2019
Citrix Application Delivery Controller (Netscaler ADC) Critical Vulnerability
ISC StormCast for Monday, December 23rd 2019
Extracting Macros from AutoCAD Files; Cisco PKI Expiration; AFRINIC IP Heist
ISC StormCast for Friday, December 20th 2019
More DNS over HTTPS Details; Ransomware Going Public; Google Chrome Update
ISC StormCast for Thursday, December 19th 2019
Emotet update; Joomla Patches; Unicode Problems
ISC StormCast for Wednesday, December 18th 2019
Discovering DNS over HTTPS; Ring Camera Weaknesses; WhatsApp Bug;
ISC StormCast for Tuesday, December 17th 2019
Slack "Unshare" Vuln; Google Enforces OAUTH; TPLink Auth Bypass; Factoring IoT RSA Keys
ISC StormCast for Monday, December 16th 2019
Malicious Autocad Files; OpenBSD Priv. Escalation; NPM Path Traversal
ISC StormCast for Friday, December 13th 2019
Shared Data in Malware; WebKit Tracking Protection; SMS Verification; @sans_edu
ISC StormCast for Thursday, December 12th 2019
German Malspam / Trickbot; KeyWe Locks; Chrome Update; iOS Spam Filter
ISC StormCast for Wednesday, December 11th 2019
Microsoft, Adobe, Intel and Apple Updates
ISC StormCast for Tuesday, December 10th 2019
Another Word Maldoc; Snatch Ransomware; Ryuk Decryptor Fail; Sysmon DNS Rules @swiftonsecurity
ISC StormCast for Monday, December 9th 2019
HTML Phishing Email; Great (Red) Canon Activated Against HK
ISC StormCast for Friday, December 6th 2019
OpenBSD Vuln; Linux/BSD VPN Connection Hijack; STI Paper: RASP vs. WAF
ISC StormCast for Thursday, December 5th 2019
Atlasian Companion App IBM Aspera Cloud; Python Libraries; GoAhead
ISC StormCast for Wednesday, December 4th 2019
Avast Blocked from Firefox; Android Patches; Strandhogg; Firefox 71
ISC StormCast for Tuesday, December 3rd 2019
Port 26 Scans; Ursnif/Dridex; Windows 7 ESU; QNAP Patches
ISC StormCast for Monday, December 2nd 2019
Agent Tesla; SauronEye; Splunk Y2k20 Bug; Google Threat Analysis Group Summary
ISC StormCast for Wednesday, November 27th 2019
Playing With Phishing; HPE SSD Update; Malicious Android SDK; Kaspersky Update
ISC StormCast for Tuesday, November 26th 2019
DoH In SOHO Networks; Fortinet Weak Crypto; Tracking via DNS
ISC StormCast for Monday, November 25th 2019
Web Filter Recon; Malice for Local Malware Analysis; VNC Flaws
ISC StormCast for Friday, November 22nd 2019
Memory Encryption Issues; Memory Encryption Issues; RIPlace; OFfcie Preview Issue
ISC StormCast for Thursday, November 21st 2019
Latest Hancitor Update; Oracle Payday Vuln; Chrome Update; Unbound Patch
ISC StormCast for Wednesday, November 20th 2019
JAWS DVR Bot; Tianfu Cup; Access Hotfix; Win10 DoH; Android Camera Permission Mixup
ISC StormCast for Tuesday, November 19th 2019
SMS Woes; Intel Removing EOL BIOS Downloads; Agressive Outlook 365 Phishing
ISC StormCast for Monday, November 18th 2019
TPM-Fail Update; Office Update Breaks Access; WhatsApp Update
ISC StormCast for Friday, November 15th 2019
LokiBot Update; Zeek Packet-Fu; TPM Leaks; Zombieload 2.0
ISC StormCast for Wednesday, November 13th 2019
Microsoft Patch Tuesday; Adobe Updates; Facebook Camera "Bug"; McAfee Update
ISC StormCast for Tuesday, November 12th 2019
TheMoon Still Here; Apply Magento Update; CSS Injection in Slack
ISC StormCast for Monday, November 11th 2019
Misused MSFT Apps; Pwn2Own Summary; State of Javascript Security; Honeypot Update
ISC StormCast for Friday, November 8th 2019
Adobe Mobile SDK; QNAP Advice; Double ZIP Files; Ring Video Doorbell
ISC StormCast for Thursday, November 7th 2019
Google PlayStore Security; Xen and npcap Patches; TrendMicro Insider Issue; SANS Ouch Newsletter
ISC StormCast for Wednesday, November 6th 2019
Formbook Malspam; Honeypot Update; Office on Mac Macros; libarchive bug
ISC StormCast for Tuesday, November 5th 2019
Bluekeep Exploit Update; ClamAV Vuln; XCode Patch; MikroTik DNS Cache Poison
ISC StormCast for Monday, November 4th 2019
Chrome Update; BlueKeep Mass Exploit; Unpached rConfig RCE (exploited, but maybe not a big deal)
ISC StormCast for Friday, November 1st 2019
EML O365 Phishing; MSFT TLS Timeouts; MESSAGETAP; Amazon 3rd Party Device Auth Issues
ISC StormCast for Thursday, October 31st 2019
Apple Updates; Untitled Goose; Pagers in Medicine; Kibana Vuln
ISC StormCast for Wednesday, October 30th 2019
xHelper Update; Counterstrike Money Laundry; PCAPs from YAML
ISC StormCast for Tuesday, October 29th 2019
PHP 7 RCE Exploited; Finding Shellcode; iOS/tvOS/Safari Updates; Sextortion Blogs
ISC StormCast for Monday, October 28th 2019
Odd Double Base64 Header; Parsing DNS Logs in PS; iOS Malware
ISC StormCast for Friday, October 25th 2019
XXE Vuln in LSP4XML (VS Code); Google Chrome SameSite Changes; Gigamon Leftovers
ISC StormCast for Thursday, October 24th 2019
SIM Swapping; Discord Infostealer; Cisco Exploit Code; Tails 4.0 Released
ISC StormCast for Wednesday, October 23rd 2019
Testing TLS 1.3; Firefox/Chrome Updates; Cache Poisoning DoS
ISC StormCast for Tuesday, October 22nd 2019
DNS over TLS Scans; North/Thor/Viking/VPN Compromises;
ISC StormCast for Monday, October 21st 2019
Attacks Against NVMS-9000 DVR; Pixel 4 / Galaxy S10 Biometrics; Home Speaker Phishing
ISC StormCast for Friday, October 18th 2019
Bypassing SPF Records; Old Domain Paypal Accounts; Typosquatting 2020 Election; @sans_edu interview
ISC StormCast for Thursday, October 17th 2019
Oracle CPU; jackson-databind vulnerability; VMWare; Wordpress
ISC StormCast for Wednesday, October 16th 2019
Adobe Updates; Symantec BSDO; OSX Shlayer/Tarmac; Fake iOS Jailbreak
ISC StormCast for Tuesday, October 15th 2019
Sudo Vulnerablity; Apple Safebrowsing; Streaming Privacy
ISC StormCast for Monday, October 14th 2019
YARA Update; Hacking Back Against Ransomware; Fake Crypto Trading Software
ISC StormCast for Friday, October 11th 2019
OUI Mining; iTerm2 Vuln; Apple Updater Exploited
ISC StormCast for Thursday, October 10th 2019
Vidar Malware Analysis; NTLM MIC Bypass; Threats on Google Play Store
ISC StormCast for Wednesday, October 9th 2019
MSFT Patches; Android Patches; vBulletin Patches
ISC StormCast for Tuesday, October 8th 2019
2xVPN=0VPN; WhatsApp GIF Bug; MacOS Catalina; Magecart Update
ISC StormCast for Monday, October 7th 2019
R and visNetwork; Android Priv. Escalation Exploited; Signal Evesdropping
ISC StormCast for Friday, October 4th 2019
Lost Files Ransomware; tcpdump vulnerabilities; Reductor Malware; Pass The Hash @sans_edu
ISC StormCast for Thursday, October 3rd 2019
Latest Emotet News; Ouch! Newsletter; XPdf/Foxit Updates; eFax Malspam
ISC StormCast for Wednesday, October 2nd 2019
PDF Encryption Flaw; Windows 7 Security Extended Updates; ODT Malware
ISC StormCast for Tuesday, October 1st 2019
Maldoc, Powershell and BITS; Cisco Patch Cycle; Exim Flaw
ISC StormCast for Monday, September 30th 2019
Polycom Scans; Apple Security Details; iOS Jail Break
ISC StormCast for Friday, September 27th 2019
vBulletin Botnet; Cisco Patches; Sniffle BT Sniffer; OWA Blocking Extensions

This podcast is also available via various podcast sites. Please let us know if we forgot one.

iTunes

MP3 Download

RSS Feed

Google Play

Stitcher

Podbean

Amazon Echo

YouTube

Spreaker

iOS App

Spotify

Top of page