Threat Level: green Handler on Duty: Rob VandenBrink

SANS ISC: SANS Daily Network Security Podcast (Stormcast) for Monday, March 24th 2014 - SANS Internet Storm Center SANS Daily Network Security Podcast (Stormcast) for Monday, March 24th 2014


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!


If you are not able to play the podcast using the player below: Use this direct link to the audio file: https://traffic.libsyn.com/securitypodcast/3903.mp3

SANS Daily Network Security Podcast (Stormcast) for Monday, March 24th 2014
00:00
Individual Account Compromisse Leads to Spam Incident
https://isc.sans.edu/forums/diary/How+the+Compromised+of+a+User+Account+Lead+to+a+Spam+Incident/17843

Microsoft Using Employees Private Hotmail Account To Track Down Intellecutal Property Leak
http://www.zdnet.com/how-microsoft-tracked-down-a-spy-who-leaked-its-secrets-7000027545

Andorid Privilege Escalation Via Updating
http://www.informatics.indiana.edu/xw7/papers/privilegescalationthroughandroidupdating.pdf

Chrome will require Certificate Transperancy from all EV Certificate Authorities after February 2015.
https://sites.google.com/site/certificatetransparency/ev-ct-plan
Spotify spotify logo

Discussion

The Hotmail account Microsoft accessed wasn't that of their (former) employee, but that of the journalist he had sent the source code to. Which might not make a big difference legally, but it does make it more embarrassing for Microsoft.
Posted by Martijn Grooten on Mon Mar 24 2014, 10:36

New Discussions closed for all Podcasts older than two(2) weeks
Please send your comments to our Contact Form

Application Security: Securing Web Apps, APIs, and MicroservicesWashingtonJul 11th - Jul 16th 2022
Application Security: Securing Web Apps, APIs, and MicroservicesOnlineJul 11th - Jul 16th 2022
Application Security: Securing Web Apps, APIs, and MicroservicesTokyoAug 29th - Sep 3rd 2022
Application Security: Securing Web Apps, APIs, and MicroservicesOnline | Japan Standard TimeAug 29th - Sep 3rd 2022
Intrusion Detection In-DepthRiyadhOct 8th - Oct 13th 2022
Intrusion Detection In-DepthOnline | Arabian Standard TimeOct 8th - Oct 13th 2022
Application Security: Securing Web Apps, APIs, and MicroservicesSan FranciscoDec 5th - Dec 10th 2022
Application Security: Securing Web Apps, APIs, and MicroservicesOnline | US PacificDec 5th - Dec 10th 2022