Threat Level: green Handler on Duty: Brad Duncan

SANS ISC: FaceID Beaten By Mask; Using Heart Movement as Biometric ID; URL Validation Libraries allow SSRF - SANS Internet Storm Center FaceID Beaten By Mask; Using Heart Movement as Biometric ID; URL Validation Libraries allow SSRF


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
podcast logo

ISC StormCast for Tuesday, November 14th 2017

A daily summary of cyber security news from the SANS Internet Storm Center
Author:Johannes B. Ullrich, Ph.D.
See below for a schedule of classes I teach.
Created: Tuesday, November 14th 2017
Length: 7:55 minutes
Today's Headline: FaceID Beaten By Mask; Using Heart Movement as Biometric ID; URL Validation Libraries allow SSRF

If you like this podcast, then please consider telling others about it. Use this button to Tweet about this episode: click here. Errors? Corrections? Complaints? Player Problems? Please let us know here: https://isc.sans.edu/contact.html

Plain HTML5 Player
Fancy Player (with skip back/forward)

Show Notes

FaceID Beaten By Mask
http://www.bkav.com/d/top-news/-/view_content/content/103968/face-id-beaten-by-mask-not-an-effective-security-measure

Various URL Validation and HTTP Request Libraries Allow SSRF
https://www.blackhat.com/docs/us-17/thursday/us-17-Tsai-A-New-Era-Of-SSRF-Exploiting-URL-Parser-In-Trending-Programming-Languages.pdf

Using Heart Rythm As Biometric ID
http://www.buffalo.edu/news/releases/2017/09/034.html

Discussion

New Discussions closed for all Podcasts older than two(2) weeks
Please send your comments to our Contact Form

Interested in attending one of my classes? See below for my current schedule.

Defending Web Applications Security EssentialsRestonMay 20th - May 25th 2018
Intrusion Detection In-DepthSan AntonioAug 6th - Aug 11th 2018
Defending Web Applications Security EssentialsAmsterdamSep 3rd - Sep 8th 2018
Defending Web Applications Security EssentialsLas VegasSep 23rd - Sep 28th 2018