Podcast Detail

#Drupal: you are pw0n3d; MSFT readies for post SSLv3 world; #CurrentC beta leaks data; ftp command l

If you are not able to play the podcast using the player below: Use this direct link to the audio file: https://traffic.libsyn.com/securitypodcast/4215.mp3

previous
next
Podcast Logo
ISC StormCast for Thursday, October 30th 2014
00:00

My Next Class

Click HERE to learn more about classes Johannes is teaching for SANS
#Drupal: you are pw0n3d; MSFT readies for post SSLv3 world; #CurrentC beta leaks data; ftp command line client command exec

Drupal warns users of possible compromissed sites
https://www.drupal.org/PSA-2014-003

Microsoft Releases Fix It to disable SSLv3
https://support.microsoft.com/kb/3009008

CurrentC Beta User's Info Exposed
http://www.imore.com/depth-look-currentc-and-personal-data-they-want-collect

GMail used by malware for command and control
http://www.wired.com/2014/10/hackers-using-gmail-drafts-update-malware-steal-data/

OS 10.10 ftp remote command exec
http://cxsecurity.com/issue/WLB-2014100174
Network Monitoring and Threat Detection In-DepthAmsterdamApr 20th - Apr 25th 2026
Application Security: Securing Web Apps, APIs, and MicroservicesSan DiegoMay 11th - May 16th 2026
Network Monitoring and Threat Detection In-DepthOnline | Arabian Standard TimeJun 20th - Jun 25th 2026
Network Monitoring and Threat Detection In-DepthRiyadhJun 20th - Jun 25th 2026
Application Security: Securing Web Apps, APIs, and MicroservicesWashingtonJul 13th - Jul 18th 2026
Application Security: Securing Web Apps, APIs, and MicroservicesOnline | British Summer TimeJul 27th - Aug 1st 2026
Application Security: Securing Web Apps, APIs, and MicroservicesLas VegasSep 21st - Sep 26th 2026
no transcript found