New Drupal RCE Vuln; Bash IRC Bot; Insecure Hotel Locks; Alexa Allowed Malicous Apps to Evesdrop

ISC StormCast for Thursday, April 26th 2018

A daily summary of cyber security news from the SANS Internet Storm Center
Author:Johannes B. Ullrich, Ph.D.
See below for a schedule of classes I teach.
Created: Thursday, April 26th 2018
Length: 5:21 minutes
Today's Headline: New Drupal RCE Vuln; Bash IRC Bot; Insecure Hotel Locks; Alexa Allowed Malicous Apps to Evesdrop

If you like this podcast, then please consider telling others about it. Use this button to Tweet about this episode: click here. Errors? Corrections? Complaints? Player Problems? Please let us know here: https://isc.sans.edu/contact.html

Plain HTML5 Player
Fancy Player (with skip back/forward)

Show Notes

New Drupal Remote Code Execution Vulnerability
https://www.drupal.org/sa-core-2018-004

Malicious Network Traffic From /bin/bash
https://isc.sans.edu/forums/diary/Malicious+Network+Traffic+From+binbash/23591/

Insecure Hotel Locks
https://safeandsavvy.f-secure.com/2018/04/25/researchers-find-way-to-generate-master-keys-to-hotels/

Amazon Echo As Evesdropping Device (signin required)
https://info.checkmarx.com/wp-alexa

Top of page

iTunes

MP3 Download

RSS Feed

Google Play

Stitcher

Podbean

Amazon Echo

YouTube

Spreaker

iOS App

Keywords: Security Network Technology Windows Linux Apple iOS Android Firewall Cyber Infosec cyber security

Prior Podcast: ISC StormCast for Wednesday, April 25th 2018

Top of page

Discussion

Top of page

Interested in attending one of my classes? See below for my current schedule.

Defending Web Applications Security Essentials	Reston	May 20th - May 25th 2018
Intrusion Detection In-Depth	San Antonio	Aug 6th - Aug 11th 2018
Defending Web Applications Security Essentials	Amsterdam	Sep 3rd - Sep 8th 2018
Defending Web Applications Security Essentials	Las Vegas	Sep 23rd - Sep 28th 2018