Redis Cryptocoin Mining Worm; Rowhammer over the Network; DrayTek CSRF Exploit
My Next Class
| Defending Web Applications Security Essentials | San Diego | May 9th - May 14th 2019 |
| Intrusion Detection In-Depth | San Antonio | May 28th - Jun 2nd 2019 |
Redis Cryptocoin Mining Worm
https://isc.sans.edu/forums/diary/Anatomy+of+a+Redis+mining+worm/23673/
Evolving Chrome's Security Indicator
https://blog.chromium.org/2018/05/evolving-chromes-security-indicators.html
DrayTek CSRF 0-Day Exploited to Change DNS Servers
https://www.draytek.co.uk/support/security-advisories/kb-advisory-csrf-and-dns-dhcp-web-attacks
Rowhammer Remote Exploit
https://www.cs.vu.nl/~herbertb/download/papers/throwhammer_atc18.pdf
https://arxiv.org/abs/1805.04956
Get a free ISC sticker (login required):
https://isc.sans.edu/sticker.html
https://isc.sans.edu/forums/diary/Anatomy+of+a+Redis+mining+worm/23673/
Evolving Chrome's Security Indicator
https://blog.chromium.org/2018/05/evolving-chromes-security-indicators.html
DrayTek CSRF 0-Day Exploited to Change DNS Servers
https://www.draytek.co.uk/support/security-advisories/kb-advisory-csrf-and-dns-dhcp-web-attacks
Rowhammer Remote Exploit
https://www.cs.vu.nl/~herbertb/download/papers/throwhammer_atc18.pdf
https://arxiv.org/abs/1805.04956
Get a free ISC sticker (login required):
https://isc.sans.edu/sticker.html
iTunes
MP3 Download
RSS Feed
Google Play
Stitcher
Podbean
Amazon Echo
YouTube
Spreaker
iOS App
Spotify
Discussion
There is no mention in the Show Notes of the Spectre attack variation allowing data access inside of the System Management Mode (SMM) area of the CPU. Here is one link: https://www.bleepingcomputer.com/news/security/new-spectre-attack-recovers-data-from-a-cpus-protected-smm-mode/
Posted by SmilingGizmo on Mon May 21 2018, 13:53
New Discussions closed for all Podcasts older than two(2) weeks
Please send your comments to our Contact Form
| Defending Web Applications Security Essentials | San Diego | May 9th - May 14th 2019 |
| Intrusion Detection In-Depth | San Antonio | May 28th - Jun 2nd 2019 |
| Defending Web Applications Security Essentials | Munich | Jul 1st - Jul 6th 2019 |
| Intrusion Detection In-Depth | London | Jul 8th - Jul 13th 2019 |
| Intrusion Detection In-Depth | Boston | Jul 29th - Aug 3rd 2019 |
| Defending Web Applications Security Essentials | San Jose | Aug 12th - Aug 17th 2019 |
| Defending Web Applications Security Essentials | Arlington | Aug 14th - Aug 19th 2019 |
| Defending Web Applications Security Essentials | Brussels | Sep 2nd - Sep 7th 2019 |
| Intrusion Detection In-Depth | London | Sep 23rd - Sep 28th 2019 |
