Threat Level: green Handler on Duty: Jim Clausing

SANS ISC: #Samsung #KNOX Patch; #MongoDB Audit; Crypto in #PHP - SANS Internet Storm Center #Samsung #KNOX Patch; #MongoDB Audit; Crypto in #PHP


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
podcast logo

ISC StormCast for Monday, February 13th 2017

A daily summary of network and system security news from the SANS Internet Storm Center
Author:Johannes B. Ullrich, Ph.D.
See below for a schedule of classes I teach.
Created: Monday, February 13th 2017
Length: 5:57 minutes
Today's Headline: #Samsung #KNOX Patch; #MongoDB Audit; Crypto in #PHP

If you like this podcast, then please consider telling others about it. Use this button to Tweet about this episode: click here. Errors? Corrections? Complaints? Player Problems? Please let us know here: https://isc.sans.edu/contact.html

Plain HTML5 Player
Fancy Player (with skip back/forward)

Show Notes

Vulnerabilities in Samsung KNOX
https://googleprojectzero.blogspot.de/2017/02/lifting-hyper-visor-bypassing-samsungs.html

Auditing MongoDB Configurations
https://github.com/stampery/mongoaudit

Reversing Javascript
https://isc.sans.edu/forums/diary/Analysis+of+a+Suspicious+Piece+of+JavaScript/22056/

Wordpress REST API Flaw Widely Exploited
https://www.wordfence.com/blog/2017/02/rapid-growth-in-rest-api-defacements/

Cryptographically Secure PHP Development
https://paragonie.com/blog/2017/02/cryptographically-secure-php-development

DEV522 Web Application Security Essentials
https://www.sans.org/event/sans-2017/course/defending-web-applications-security-essentials

Discussion

New Discussions closed for all Podcasts older than two(2) weeks
Please send your comments to our Contact Form

Interested in attending one of my classes? See below for my current schedule.

Intrusion Detection In-DepthBaltimoreSep 25th - Sep 30th 2017
Intrusion Detection In-DepthSingaporeOct 16th - Oct 21st 2017
Intrusion Detection In-DepthBerlinOct 23rd - Oct 28th 2017
IPv6 EssentialsWashingtonDec 12th - Dec 13th 2017
Defending Web Applications Security EssentialsWashingtonDec 14th - Dec 19th 2017