Cyber Security Podcasts - SANS Internet Storm Center

Daily Information Security Podcast ("StormCast")

Stormcasts are daily 5-10 minute information security threat updates. The podcast is produced each work day, and typically released late in the day to be ready for your morning commute.

To subscribe, use one of the following URLs:
RSS feed: https://isc.sans.edu/dailypodcast.xml (any podcast player should support this in some way)

Recent Episodes

ISC StormCast for Friday, January 18th 2019
Android Malware Motion Evasion; Twitter for Android Bug; WebAuthn/FIDO2; Iranian RaaS
ISC StormCast for Thursday, January 17th 2019
Emotet Update; Magecart Advertising; Premisys Vulnerabilities; ES File Explorer https://isc.sans.edu/podcastdetail.html?podcastid=6332
ISC StormCast for Wednesday, January 16th 2019
MSFT Skype/Team Foundation Server Patch; SCP Client Vulnerabilites; Hosting Vulnerabilites; Industri
ISC StormCast for Tuesday, January 15th 2019
Microsoft LAPS; Intel SGX Update; Godaddy Injecting JavaScript; Play with Docker
ISC StormCast for Monday, January 14th 2019
.gov TLS Failures; Firefox Flash EOL; Fake Movie Malware; MSFT Patch Breaks Access 97
ISC StormCast for Friday, January 11th 2019
I Love You Again; Juniper got Love for you; Systemd doesn't love you; Iran Love DNS;
ISC StormCast for Thursday, January 10th 2019
Face Recog. Test; Google DNS-over-TLS; Malwarebytes vs Win7
ISC StormCast for Wednesday, January 9th 2019
Microsoft Patch Tuesday; Adobe Updates; Google Play Store Adware; ETC 51% Attack
ISC StormCast for Tuesday, January 8th 2019
Encrypted Word Doc; iOS Apps and Malware C&C; NCSC Offers Help; Page Cache Side Channel
ISC StormCast for Monday, January 7th 2019
TAR Malware; ReiKey Protects Macs from Keystroke Loggers; Substition Cipher Font Phishing
ISC StormCast for Friday, January 4th 2019
Malware Leaks Data Via FTP; Hijacking Dormant Twitter Accounts; Critical Adobe Update
ISC StormCast for Thursday, January 3rd 2019
Gift Card Scams; Wifi Chipset Exploit
ISC StormCast for Wednesday, January 2nd 2019
Vein Scanner Bypass; Lightbulb Bots; EU Open Source Bug Bounty
ISC StormCast for Friday, December 28th 2018
Phish with Click Counter; Insecure IPMI Ransomware; MS Edge RCE Exploit;
ISC StormCast for Thursday, December 27th 2018
Problems with IE Emergency Patch; Bitcoin Blacklists; D-Link Password Overflow;
ISC StormCast for Friday, December 21st 2018
Windows 0-Day PoC; Targeted 2FA Attacks; Booter Services Shut Down; Intel VISA
ISC StormCast for Thursday, December 20th 2018
Emergency MSFT IE Patch; Restricting PowerShell; BMC Server Bricking
ISC StormCast for Wednesday, December 19th 2018
ASUS/Gigabyte Vulns; Apple Phishing; Kibana Exploit; SANS Holiday Hack Challenge #kringlecon
ISC StormCast for Tuesday, December 18th 2018
ZIPed Maldoc; Memes Covert Channel; Shamoon is Back
ISC StormCast for Monday, December 17th 2018
Magellan Sqlite Vulnerability; Logitech Options Vuln; Intel NUC;
ISC StormCast for Friday, December 14th 2018
Fake E-Mail Bomb Threats; Phishing Via Non-Delivery Notices;
ISC StormCast for Thursday, December 13th 2018
DOSFuscation Leads to Emotet; OpenSSH Backdoors; Android Malware 2FA Bypass;
ISC StormCast for Wednesday, December 12th 2018
#MSFT Patch Tuesday; #Adbode Patch; Certificate Authority DNS Spoofing Weakness
ISC StormCast for Tuesday, December 11th 2018
Kubernetes 2nd PoC; WebAssembly Creates Client Side Buffer Overflow; Etherum scans
ISC StormCast for Monday, December 10th 2018
Analyzing Malicious Docker Images; Sextortion Ransomware; WebKit Exploit;
ISC StormCast for Friday, December 7th 2018
Adobe Vuln. PoC; WatchOS Update; Data Exfiltration; Marketing 2FA @sans_edu
ISC StormCast for Thursday, December 6th 2018
Flash Update; Apple Patches; 3-5G Network Vulnerability
ISC StormCast for Wednesday, December 5th 2018
Lokibot Update; Fake Ransomware Decrypt Service; Chrome 71 Released
ISC StormCast for Tuesday, December 4th 2018
Hiding in Plain Doc; Kubernets Patch; US-Cert SamSam Alert; Tricky iOS App
ISC StormCast for Monday, December 3rd 2018
KingMiner; Siglent Osciloscope Vuln; Autocad Malware;
ISC StormCast for Friday, November 30th 2018
Ancient Ransomware Family Still Active; Scamclub; Blocking Shodan @sans_edu
ISC StormCast for Thursday, November 29th 2018
Fake Flash Obfuscated Shell Script; Sennheiser Headsdown; MSFT Patches; 3ve Botnet
ISC StormCast for Wednesday, November 28th 2018
QNAP bash Malware; HTTPS Phishing Sites; Wildfire Scams; FTP Going Away
ISC StormCast for Tuesday, November 27th 2018
ViperMonkey; More Malicious NPM Libraries; BMC Lateral Movement;
ISC StormCast for Monday, November 26th 2018
Attacks Against #Docker API; Mirai vs. Hadoop; #Rohammer for ECC
ISC StormCast for Wednesday, November 21st 2018
Critical Flash Update; Emotet Adds Thanksgiving Lure
ISC StormCast for Tuesday, November 20th 2018
Google Play Malware; ATM Vulnerabilities; Nagios XI Update
ISC StormCast for Monday, November 19th 2018
PCAP Analysis Tool; Lookyloo; Spoofing From in GMAIL
ISC StormCast for Friday, November 16th 2018
Emotet Spreads IcedID; Miners Go Docker; GPS Watches; Firefox Breach Notification; Auditd @sans_edu
ISC StormCast for Thursday, November 15th 2018
Win32k Exploit Details (CVE-2018-8589); Pwn2OWn; More Spectre/Meltdown
ISC StormCast for Wednesday, November 14th 2018
Microsoft Patch Tuesday; Adobe Patches
ISC StormCast for Tuesday, November 13th 2018
Google BPG Hijack via Russia; Bootable USB Microcode Loader; Wordpress GDPR Vuln.
ISC StormCast for Monday, November 12th 2018
1.1.1.1 DNS For Mobile; CryotMiner Rootkits; Google Play Protect Success
ISC StormCast for Friday, November 9th 2018
Cisco Updates; Ruby Deserialization; Ouch Newsletter; Blockchain Botnets @sans_edu
ISC StormCast for Thursday, November 8th 2018
VirtualBox 0 Day; WooCommerce RCE #wordpress; Bing Notepad2 Malware; @Bsidesjax
ISC StormCast for Wednesday, November 7th 2018
Chinese Routing Leak; Android Update; Facetime PoC; U-Boot Vuln
ISC StormCast for Tuesday, November 6th 2018
Struts 2.3 RCE; Fake Elon Musk Site Steals BTC; Bypassing SSD Encryption
ISC StormCast for Monday, November 5th 2018
MacOS IR Beyond LaunchAgents; Dissecting CVE-2017-11882 Exploit; Portsmash, Edge Vuln
ISC StormCast for Friday, November 2nd 2018
Windows Defender Sandboxing Bug; BLE Vulnerability;
ISC StormCast for Thursday, November 1st 2018
Encrypted Word Maldocs; iOS/macOS ICMP Error RCE; iOS lock bypass;
ISC StormCast for Wednesday, October 31st 2018
Hancitor Update; Apple Updates; Telegram Clear Text Messages
ISC StormCast for Tuesday, October 30th 2018
PowerShell Cloning Maldoc; Unusual Malicious File Types; Crypto Tracker Backdoor
ISC StormCast for Monday, October 29th 2018
Office Docs and Linux; Anaylzing Crompressed RTF; DHCPv6 systemd; Docker; Hadoop
ISC StormCast for Friday, October 26th 2018
Scam Calls Targeting Chinese; X.org Priv. Elevation Flaw; MS Office Videos
ISC StormCast for Thursday, October 25th 2018
Reversing AutoIT; Arcserve Vulnerabilities; WebEx Vuln;
ISC StormCast for Wednesday, October 24th 2018
Malware Uses Decoy Picture; DoH Push Back; Signal Encryption Bug; Firefox 63
ISC StormCast for Tuesday, October 23rd 2018
Compressed RTF in MSG File; FreeRTOS TCP/IP Vuln; VLC Vulns; Yammer Update
ISC StormCast for Monday, October 22nd 2018
MacOS LaunchAgent; TLS Sessions; jQuery File Upload Plugin; Drupal
ISC StormCast for Friday, October 19th 2018
Cisco Patches; 51% Crypto Currency Attack; VMWare Patch;
ISC StormCast for Thursday, October 18th 2018
NewShareCount Abuse; D-Link Vulns; RID Hacking
ISC StormCast for Wednesday, October 17th 2018
Oracle CPU; libssh vulnerability; Vending Machine Mobile App; TLS1.0/1.1
ISC StormCast for Tuesday, October 16th 2018
CVE-2018-8495 PoE Exploit; Fake Mining Appsi; Fake Google Photo App
ISC StormCast for Monday, October 15th 2018
Branch.io Bug Affects Millions; Medtronics; WebLogic; MSFT JET Database
ISC StormCast for Friday, October 12th 2018
Equation Editor is Back;
ISC StormCast for Thursday, October 11th 2018
Whats App Vuln; SSH Fingerprints; win32k Vuln Details; Juniper Patches
ISC StormCast for Wednesday, October 10th 2018
Microsoft Patch Tuesday; Adobe Updates; Magecart hits Shopper Approved
ISC StormCast for Tuesday, October 9th 2018
Apple Updates; Intel 9th Gen CPU; Windows Deletes Files; macOS Code Signing
ISC StormCast for Monday, October 8th 2018
WPA2 Krack Attack Update; Cisco Patches; git Vulnerability; SWATing
ISC StormCast for Friday, October 5th 2018
Bloomberg Hardware Implant Story; Cloudflare Phishing; DNSSEC Root KSK Rollover
ISC StormCast for Thursday, October 4th 2018
Behind the Phish; Azure Phish; Zoho Phishing and keylogging
ISC StormCast for Wednesday, October 3rd 2018
Yara Rules; GhostDNS; Foxit PDF Reader Vulns; Intel ME Manufacturing Mode
ISC StormCast for Tuesday, October 2nd 2018
Facebook Update; Adobe Acrobat Update; SMTP MTA Strict Transport Security
ISC StormCast for Monday, October 1st 2018
Facebook Leak; Telegram leaks IPs; Browser Notifications; DDE Code Injection
ISC StormCast for Friday, September 28th 2018
Enriching Radare2/x64dbg Output; Apple DEP; UEFI Rootkit
ISC StormCast for Thursday, September 27th 2018
Emotet Update; Fedora Crypto Policies; Android Banking Trojan
ISC StormCast for Wednesday, September 26th 2018
Firefox Monitor;
ISC StormCast for Tuesday, September 25th 2018
MacOS 10.14; More Sextortion; Mojave Privacy Bypass; Cloudflare ESNI
ISC StormCast for Monday, September 24th 2018
Odd DNS Requests; Securing APIs; Windows Jet DB 0day; Malicious Job Offers
ISC StormCast for Friday, September 21st 2018
OSSEC Hunting; NSSLabs; Bitcoin DoS; WebAuthn
ISC StormCast for Thursday, September 20th 2018
Adobe PDF Updates; Credential Stuffing DDoS; Peekaboo;
ISC StormCast for Wednesday, September 19th 2018
Certificate Transparency Tools; WD MyCloud; Kodi Malicious Add-Ons; Cloudflare DNSSEC Support
ISC StormCast for Tuesday, September 18th 2018
Analyzing Office Docs; Apple Updates;
ISC StormCast for Monday, September 17th 2018
Reversing Shortcuts; Not So Random UA; Safari DoS; Webroot SecureAnywhere; Intel ME
ISC StormCast for Friday, September 14th 2018
Malicious MHT Files; Improved Coldboot Attacks; Hurricanes/Disasters; SAP Patches
ISC StormCast for Thursday, September 13th 2018
Fragment Update; Magacart Script; Bypassing CSP With Polyglots
ISC StormCast for Wednesday, September 12th 2018
Microsoft Patch Tuesday; Adobe Patches; URL Spooing; Exploit Search Engine
ISC StormCast for Tuesday, September 11th 2018
Malicious LNK File Tricks; Trend Micro Apps Removed from Apple App Store
ISC StormCast for Sunday, September 9th 2018
Headless Browser Cryptocoin Mining; Adware Doctor Privacy; VPN Priv Escalation
ISC StormCast for Friday, September 7th 2018
Powershell Malware C# Code;
ISC StormCast for Thursday, September 6th 2018
MEGA Chrome Extension Hack; Python Package Installer Code Exec; Win Scheduler Exploit
ISC StormCast for Wednesday, September 5th 2018
Microtik Exploits; Exposed git Directories; SSL Certs and Tor
ISC StormCast for Tuesday, September 4th 2018
Reversing Medium Mobile App;
ISC StormCast for Sunday, September 2nd 2018
OSX/MacOS Custom URL Schemes; Philips e-Alert Vulnerablity
ISC StormCast for Friday, August 31st 2018
Cryptocoin Miners Rule; Android Privacy Weakness; Mimecast EMail Stats
ISC StormCast for Thursday, August 30th 2018
More Octoprint Details #3dprint flaws; Packagist PHP Repo; More OpenSSH; TPM Flaws;
ISC StormCast for Wednesday, August 29th 2018
Windows Priv. Escalation 0 Day;
ISC StormCast for Tuesday, August 28th 2018
HWorm Infection Date; Gnome "Bubblewrap"; Fortnite Android Vuln
ISC StormCast for Monday, August 27th 2018
Struts CVE-2018-11776 Exploit Public; Publisher Malware; AT Commands;
ISC StormCast for Friday, August 24th 2018
Formcrafts Phishing;
ISC StormCast for Thursday, August 23rd 2018
New Critical Apache Struts Vulnerability; Ghostscript Vuln; Photoshop CC Vuln

This podcast is also available via various podcast sites. Please let us know if we forgot one.

iTunes

MP3 Download

RSS Feed

Google Play

Stitcher

Podbean

Amazon Echo

YouTube

Spreaker

iOS App

Spotify

Top of page