More WebLogic xploits; Ouch! GDPR ; GitHub/Twitter pw loggin; #sans_edu Disrupting PowerShell Empire

ISC StormCast for Friday, May 4th 2018

A daily summary of cyber security news from the SANS Internet Stormcenter
Author:Johannes B. Ullrich, Ph.D.
See below for a schedule of classes I teach.
Created: Friday, May 4th 2018
Length: 14:48 minutes
Today's Headline: More WebLogic xploits; Ouch! GDPR ; GitHub/Twitter pw loggin; #sans_edu Disrupting PowerShell Empire

If you like this podcast, then please consider telling others about it. Use this button to Tweet about this episode: click here. Errors? Corrections? Complaints? Player Problems? Please let us know here: https://isc.sans.edu/contact.html

Plain HTML5 Player
Fancy Player (with skip back/forward)

Show Notes

More WebLogic Exploits
https://isc.sans.edu/forums/diary/WebLogic+Exploited+in+the+Wild+Again/23617/

Ouch! GDPR Newsletter
https://www.sans.org/security-awareness-training/ouch-newsletter

GitHub / Twitter Password Storage Issues
https://blog.twitter.com/official/en_us/topics/company/2018/keeping-your-account-secure.html
https://www.zdnet.com/article/github-says-bug-exposed-account-passwords/

Facebook adds Homegraph Alert to Certificate Transparency log monitoring
https://www.facebook.com/notes/protect-the-graph/phishing-domain-detection/2037453483161459/

Disrupting the Empire: Identifying PowerShell Empire Command and Control Activity
https://www.sans.org/reading-room/whitepapers/forensics/disrupting-empire-identifying-powershell-empire-command-control-activity-38315

Top of page

iTunes

MP3 Download

RSS Feed

Google Play

Stitcher

Podbean

Amazon Echo

YouTube

Spreaker

iOS App

Keywords: Security Network Technology Windows Linux Apple iOS Android Firewall Cyber Infosec cyber security

Prior Podcast: ISC StormCast for Thursday, May 3rd 2018

Next Podcast: ISC StormCast for Monday, May 7th 2018

Top of page

Discussion

New Discussions closed for all Podcasts older than two(2) weeks
Please send your comments to our Contact Form

Top of page

Interested in attending one of my classes? See below for my current schedule.

Intrusion Detection In-Depth	San Antonio	Aug 6th - Aug 11th 2018
Defending Web Applications Security Essentials	Amsterdam	Sep 3rd - Sep 8th 2018
Defending Web Applications Security Essentials	Las Vegas	Sep 23rd - Sep 28th 2018