Threat Level: green Handler on Duty: Brad Duncan

SANS ISC: SANS Daily Network Security Podcast (Stormcast) for Thursday, September 24th 2015 - SANS Internet Storm Center SANS Daily Network Security Podcast (Stormcast) for Thursday, September 24th 2015


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

ISC StormCast for Thursday, September 24th 2015

If you are not able to play the podcast using the player below: Use this direct link to the audio file: https://traffic.libsyn.com/securitypodcast/4669.mp3

SANS Daily Network Security Podcast (Stormcast) for Thursday, September 24th 2015
00:00

My Next Class

… more classes

Cisco IOS and IOS XE Semiannual Software Security Advisory
http://www.cisco.com/web/about/security/intelligence/Cisco_ERP_sep15.html

Apple iOS 9.0.1 Release (currently no security content posted, but if any is included, it should be listed at the URL below)
https://support.apple.com/en-us/HT201222

Partial iOS 9 Lock Screen Bypass
https://twitter.com/presentservices/status/646730290790969344?ref_src=twsrc%5Etfw

Over 4,000 Apps Affected by XCodeGhost
https://www.fireeye.com/blog/executive-perspective/2015/09/protecting_our_custo.html

Kaspersky Patches Security Vulnerabilities in AV product
http://googleprojectzero.blogspot.co.uk/2015/09/kaspersky-mo-unpackers-mo-problems.html

OPM Breach Update: 5.6 Million Fingerprints Stolen
https://www.opm.gov/news/releases/2015/09/cyber-statement-923/
Spotify spotify logo

Discussion

The lockscreen bypass was obviously a backdoor implanted on purpose, as no real code could accidentally cause such behaviour. It is strange how people continue trusting closed hardware and software produced in the US. Quoting Linus Torvald's father to Microsoft: "You have bug-backdoors".
Posted by Enos on Wed Sep 30 2015, 05:55

New Discussions closed for all Podcasts older than two(2) weeks
Please send your comments to our Contact Form

Application Security: Securing Web Apps, APIs, and MicroservicesTokyoAug 29th - Sep 3rd 2022
Application Security: Securing Web Apps, APIs, and MicroservicesOnline | Japan Standard TimeAug 29th - Sep 3rd 2022
Intrusion Detection In-DepthRiyadhOct 8th - Oct 13th 2022
Intrusion Detection In-DepthOnline | Arabian Standard TimeOct 8th - Oct 13th 2022
Application Security: Securing Web Apps, APIs, and MicroservicesSan FranciscoDec 5th - Dec 10th 2022
Application Security: Securing Web Apps, APIs, and MicroservicesOnline | US PacificDec 5th - Dec 10th 2022
Intrusion Detection In-DepthOnline | Central European TimeJan 30th - Feb 4th 2023