Handler on Duty: Didier Stevens
Threat Level: green
Podcast Detail
BaseXX Obfuscation; Juniper Radius Issue; NSO Group Leak; Password Autofill Dangers
If you are not able to play the podcast using the player below: Use this direct link to the audio file: https://traffic.libsyn.com/securitypodcast/7590.mp3
Interested in Internet Storm Center stickers? Check here if there are still some available for today.
Multiple BaseXX Obfuscations
https://isc.sans.edu/forums/diary/Multiple+BaseXX+Obfuscations/27640/
Juniper Patches: Radius Vulnerability
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11180&cat=SIRT_1&actp=LIST
fail2ban vulnerability
https://github.com/fail2ban/fail2ban/security/advisories/GHSA-m985-3f3v-cwmm
NSO Group Victims Leaked
https://www.amnesty.org/en/latest/research/2021/07/forensic-methodology-report-how-to-catch-nso-groups-pegasus/
Dangers of Autofilling Passwords
https://marektoth.com/blog/password-managers-autofill/#analysis
https://isc.sans.edu/forums/diary/Multiple+BaseXX+Obfuscations/27640/
Juniper Patches: Radius Vulnerability
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11180&cat=SIRT_1&actp=LIST
fail2ban vulnerability
https://github.com/fail2ban/fail2ban/security/advisories/GHSA-m985-3f3v-cwmm
NSO Group Victims Leaked
https://www.amnesty.org/en/latest/research/2021/07/forensic-methodology-report-how-to-catch-nso-groups-pegasus/
Dangers of Autofilling Passwords
https://marektoth.com/blog/password-managers-autofill/#analysis
Discussion
New Discussions closed for all Podcasts older than two(2) weeks
Please send your comments to our Contact Form