Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: SANS Daily Network Security Podcast (Stormcast) for Tuesday, May 24th, 2022 - SANS Internet Storm Center SANS Daily Network Security Podcast (Stormcast) for Tuesday, May 24th, 2022


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

jQuery-File-Upload Scans; Oracle OOB Patch; NPM Hijack Detection; Account Pre-Hijacking

If you are not able to play the podcast using the player below: Use this direct link to the audio file: https://traffic.libsyn.com/securitypodcast/8020.mp3

SANS Daily Network Security Podcast (Stormcast) for Tuesday, May 24th, 2022
00:00
Attacker Scanning for jQuery-File-Upload
https://isc.sans.edu/forums/diary/Attacker+Scanning+for+jQueryFileUpload/28674/

Oracle Security Alert Advisory - CVE-2022-21500
https://www.oracle.com/security-alerts/alert-cve-2022-21500.html

How to find NPM dependencies vulnerable to account hijacking
https://www.theregister.com/2022/05/23/npm_dependencies_vulnerable/

Pre-hijacked accounts
https://arxiv.org/pdf/2205.10174.pdf

Spotify spotify logo

Discussion

New Discussions closed for all Podcasts older than two(2) weeks
Please send your comments to our Contact Form

Application Security: Securing Web Apps, APIs, and MicroservicesWashingtonJul 11th - Jul 16th 2022
Application Security: Securing Web Apps, APIs, and MicroservicesOnlineJul 11th - Jul 16th 2022
Application Security: Securing Web Apps, APIs, and MicroservicesTokyoAug 29th - Sep 3rd 2022
Application Security: Securing Web Apps, APIs, and MicroservicesOnline | Japan Standard TimeAug 29th - Sep 3rd 2022
Intrusion Detection In-DepthRiyadhOct 8th - Oct 13th 2022
Intrusion Detection In-DepthOnline | Arabian Standard TimeOct 8th - Oct 13th 2022
Application Security: Securing Web Apps, APIs, and MicroservicesSan FranciscoDec 5th - Dec 10th 2022
Application Security: Securing Web Apps, APIs, and MicroservicesOnline | US PacificDec 5th - Dec 10th 2022