Threat Level: green Handler on Duty: Guy Bruneau

SANS ISC: SANS Daily Network Security Podcast (Stormcast) for Friday, July 13th 2018 - SANS Internet Storm Center SANS Daily Network Security Podcast (Stormcast) for Friday, July 13th 2018


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Extortion With Password; npm Package Malware; CIRCL IMAP Proxy; Banking Malware

If you are not able to play the podcast using the player below: Use this direct link to the audio file: https://traffic.libsyn.com/securitypodcast/6078.mp3

SANS Daily Network Security Podcast (Stormcast) for Friday, July 13th 2018
00:00

My Next Class

… more classes

Extortion Claims Include Leaked Passwords to Appear more Plausiable
https://isc.sans.edu/forums/diary/New+Extortion+Tricks+Now+Including+Your+Password/23866/

npm Package Compromised and Used To Steal Credentials
https://github.com/eslint/eslint-scope/issues/39#issuecomment-404533026

CIRCL IMAP Proxy
https://github.com/CIRCL/IMAP-Proxy

Checkpoint Names "Dorkbot" As A Top Threat (Signup required)
https://research.checkpoint.com/cyber-attack-trends-2018-mid-year-report/

Spotify spotify logo

Discussion

deep link to Cisco "Cyber Attack Trends: 2018 Mid-Year Report":
https://research.checkpoint.com/wp-content/uploads/2018/07/Cyber-Attack-Trends-2018-Mid-Year-Report.pdf
Posted by gebhard on Fri Jul 13 2018, 05:06
Post mortem for npm package compromization:
https://eslint.org/blog/2018/07/postmortem-for-malicious-package-publishes
Posted by gebhard on Fri Jul 13 2018, 05:08

New Discussions closed for all Podcasts older than two(2) weeks
Please send your comments to our Contact Form

Application Security: Securing Web Apps, APIs, and MicroservicesLondonJun 6th - Jun 11th 2022
Application Security: Securing Web Apps, APIs, and MicroservicesOnline | British Summer TimeJun 6th - Jun 11th 2022
Application Security: Securing Web Apps, APIs, and MicroservicesWashingtonJul 11th - Jul 16th 2022
Application Security: Securing Web Apps, APIs, and MicroservicesOnlineJul 11th - Jul 16th 2022
Application Security: Securing Web Apps, APIs, and MicroservicesTokyoAug 29th - Sep 3rd 2022
Application Security: Securing Web Apps, APIs, and MicroservicesOnline | Japan Standard TimeAug 29th - Sep 3rd 2022
Intrusion Detection In-DepthRiyadhOct 8th - Oct 13th 2022
Intrusion Detection In-DepthOnline | Arabian Standard TimeOct 8th - Oct 13th 2022