Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Outlook S/MIME Flaw; #RubyGems Vuln; #Google Home Mini Recording Flaw; #Camaradar - SANS Internet Storm Center Outlook S/MIME Flaw; #RubyGems Vuln; #Google Home Mini Recording Flaw; #Camaradar


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
podcast logo

ISC StormCast for Thursday, October 12th 2017

A daily summary of cyber security news from the SANS Internet Storm Center
Author:Johannes B. Ullrich, Ph.D.
See below for a schedule of classes I teach.
Created: Wednesday, October 11th 2017
Length: 6:36 minutes
Today's Headline: Outlook S/MIME Flaw; #RubyGems Vuln; #Google Home Mini Recording Flaw; #Camaradar
If you like this podcast, then please consider telling others about it. Use this button to Tweet about this episode: click here. Errors? Corrections? Complaints? Player Problems? Please let us know here: https://isc.sans.edu/contact.html
Plain HTML5 Player
Fancy Player (with skip back/forward)

Show Notes

Outlook Includes plain text version of e-mail with S/MIME Encryption
https://www.sec-consult.com/en/blog/2017/10/fake-crypto-microsoft-outlook-smime-cleartext-disclosure-cve-2017-11776/index.html

RubyGems Remote Code Execution Vulnerability
http://blog.rubygems.org/2017/10/09/unsafe-object-deserialization-vulnerability.html

Google Home Mini Recorded Everything
http://www.androidpolice.com/2017/10/10/google-nerfing-home-minis-mine-spied-everything-said-247/

Cameradar Finds Open RTSP Streams
https://github.com/EtixLabs/cameradar
Top of page

Top of page

Discussion

New Discussions closed for all Podcasts older than two(2) weeks
Please send your comments to our Contact Form

Top of page

Interested in attending one of my classes? See below for my current schedule.

Intrusion Detection In-DepthSan AntonioAug 6th - Aug 11th 2018
Defending Web Applications Security EssentialsAmsterdamSep 3rd - Sep 8th 2018
Defending Web Applications Security EssentialsLas VegasSep 23rd - Sep 28th 2018
Intrusion Detection In-DepthTysonsOct 15th - Oct 20th 2018
Defending Web Applications Security EssentialsDenverOct 24th - Oct 29th 2018
Intrusion Detection In-DepthWashingtonDec 13th - Dec 18th 2018