Threat Level: green Handler on Duty: Jan Kopriva

SANS ISC: SANS Internet Storm Center

SANS Site Network

Current Site

SANS Internet Storm Center

Other SANS Sites Help

Graduate Degree Programs

Security Training

Security Certification

Security Awareness Training

Penetration Testing

Industrial Control Systems

Cyber Defense Foundations

DFIR

Software Security

Government OnSite Training

SANS Daily Network Security Podcast (Stormcast) for Monday, January 10th, 2022

Log In or Sign Up for Free!

Cobalt Strike via MSBuild; H2 JNDI Vuln; Trojanized dnSpy; Fin7 BadUSB

SANS Daily Network Security Podcast (Stormcast) for Monday, January 10th, 2022

00:00

My Next Class

Intrusion Detection In-Depth	Online \| Arabian Standard Time	Mar 5th - Mar 10th 2022
Application Security: Securing Web Apps, APIs, and Microservices	San Diego	May 5th - May 10th 2022

… more classes

Help us make this podcast better by participating in a simple two question survey

Extracting Cobalt Strike Beacons from MSBuild Scripts
https://isc.sans.edu/forums/diary/Extracting+Cobalt+Strike+Beacons+from+MSBuild+Scripts/28200/

The JNDI Strikes Back: Unauthenticated RCE in H2 Database Console
https://jfrog.com/blog/the-jndi-strikes-back-unauthenticated-rce-in-h2-database-console/

Trojanized dnSpy app drops malware cocktail
https://www.bleepingcomputer.com/news/security/trojanized-dnspy-app-drops-malware-cocktail-on-researchers-devs/

FIN7 Attackers Sending Malicious USB Sticks
https://www.bleepingcomputer.com/news/security/fbi-hackers-use-badusb-to-target-defense-firms-with-ransomware/

iTunes

MP3 Download

RSS Feed

Google

Listen on Google Podcasts

Stitcher

Podbean

Amazon Echo

YouTube

Spreaker

iOS App

Spotify

Discussion

New Discussions closed for all Podcasts older than two(2) weeks
Please send your comments to our Contact Form

Intrusion Detection In-Depth	Online \| Arabian Standard Time	Mar 5th - Mar 10th 2022
Application Security: Securing Web Apps, APIs, and Microservices	San Diego	May 5th - May 10th 2022
Application Security: Securing Web Apps, APIs, and Microservices	Online \| US Pacific	May 5th - May 10th 2022