Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: SANS Daily Network Security Podcast (Stormcast) for Tuesday, August 16th, 2022 - SANS Internet Storm Center

SANS Site Network

Current Site

SANS Internet Storm Center

Other SANS Sites Help

Graduate Degree Programs

Security Training

Security Certification

Security Awareness Training

Penetration Testing

Industrial Control Systems

Cyber Defense Foundations

DFIR

Software Security

Government OnSite Training

SANS Daily Network Security Podcast (Stormcast) for Tuesday, August 16th, 2022

Log In or Sign Up for Free!

Realtek Vuln Followup; MacOS Priv Escalatio; Zoom; Vuln Bootloaders; HPE ILO

If you are not able to play the podcast using the player below: Use this direct link to the audio file: https://traffic.libsyn.com/securitypodcast/8132.mp3

SANS Daily Network Security Podcast (Stormcast) for Tuesday, August 16th, 2022

00:00

See us at SANSFIRE in Washington DC, July 11th-16th. Handler talks, Internet Storm Center Keynote, Honeypot Workshop following the keynote. Click here for details.

My Next Class

Application Security: Securing Web Apps, APIs, and Microservices	Tokyo	Aug 29th - Sep 3rd 2022
Application Security: Securing Web Apps, APIs, and Microservices	Online \| Japan Standard Time	Aug 29th - Sep 3rd 2022

… more classes

Help us make this podcast better by participating in a simple two question survey

Realtek CVE-2022-27255 Followup (snort signature and presentation)
https://isc.sans.edu/diary/Realtek+SDK+SIP+ALG+Vulnerability%3A+A+Big+Deal%2C+but+not+much+you+can+do+about+it.+CVE+2022-27255/28940

MacOS Privilege Escalation
https://sector7.computest.nl/post/2022-08-process-injection-breaking-all-macos-security-layers-with-a-single-vulnerability/

Zoom Update
https://explore.zoom.us/en/trust/security/security-bulletin/

Microsoft Block Vulnerable Bootloaders
https://eclypsium.com/2022/08/11/vulnerable-bootloaders-2022/

HPE Integrated Lights Out 5 Vulnerablities
https://support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=emr_na-hpesbhf04333en_us

iTunes

MP3 Download

RSS Feed

Google

Listen on Google Podcasts

Stitcher

Podbean

Amazon Echo

YouTube

Spreaker

iOS App

Spotify

Discussion

Login here to join the discussion.

Application Security: Securing Web Apps, APIs, and Microservices	Tokyo	Aug 29th - Sep 3rd 2022
Application Security: Securing Web Apps, APIs, and Microservices	Online \| Japan Standard Time	Aug 29th - Sep 3rd 2022
Intrusion Detection In-Depth	Riyadh	Oct 8th - Oct 13th 2022
Intrusion Detection In-Depth	Online \| Arabian Standard Time	Oct 8th - Oct 13th 2022
Application Security: Securing Web Apps, APIs, and Microservices	San Francisco	Dec 5th - Dec 10th 2022
Application Security: Securing Web Apps, APIs, and Microservices	Online \| US Pacific	Dec 5th - Dec 10th 2022
Intrusion Detection In-Depth	Online \| Central European Time	Jan 30th - Feb 4th 2023