Threat Level: green Handler on Duty: Basil Alawi S.Taher

SANS ISC: More About #Excel Macros; Bose SpyPhones; Own/NextCloud Buggy Bugreports - SANS Internet Storm Center More About #Excel Macros; Bose SpyPhones; Own/NextCloud Buggy Bugreports


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
podcast logo

ISC StormCast for Thursday, April 20th 2017

A daily summary of network and system security news from the SANS Internet Storm Center
Author:Johannes B. Ullrich, Ph.D.
See below for a schedule of classes I teach.
Created: Thursday, April 20th 2017
Length: 5:40 minutes
Today's Headline: More About #Excel Macros; Bose SpyPhones; Own/NextCloud Buggy Bugreports

If you like this podcast, then please consider telling others about it. Use this button to Tweet about this episode: click here. Errors? Corrections? Complaints? Player Problems? Please let us know here: https://isc.sans.edu/contact.html

Plain HTML5 Player
Fancy Player (with skip back/forward)

Show Notes

Hunting and Analyzing Malicious Excel Files
https://isc.sans.edu/forums/diary/Hunting+for+Malicious+Excel+Sheets/22322/

Bose May Be Spying on Listeners
https://www.scribd.com/document/345620278/Bose-Privacy-Complaint

Microsoft No-Password Sign In
https://blogs.technet.microsoft.com/enterprisemobility/2017/04/18/no-password-phone-sign-in-for-microsoft-accounts/

Owncloud/Nextcloud Bug Reports Include Passwords
https://blog.hboeck.de/archives/885-Passwords-in-the-Bug-Reports-OwncloudNextcloud.html

Fuzzing Used to Find a Tcpdump Vulnerability
https://www.softscheck.com/en/identifying-security-vulnerabilities-with-cloud-fuzzing/

DNS Homograph Detection
https://github.com/dutchcoders/homographs

For Friday's (and other upcoming webcasts), see
https://www.sans.org/webcasts

Discussion

New Discussions closed for all Podcasts older than two(2) weeks
Please send your comments to our Contact Form

Interested in attending one of my classes? See below for my current schedule.

Intrusion Detection In-DepthBerlinOct 23rd - Oct 28th 2017
IPv6 EssentialsWashingtonDec 12th - Dec 13th 2017
Defending Web Applications Security EssentialsWashingtonDec 14th - Dec 19th 2017