Handler on Duty: Xavier Mertens
Threat Level: green
Podcast Detail
#Superbowl spam; Better #SSL Warnings; Got an Inventory? Hack a #BMW; ZynOS DNS Vuln
If you are not able to play the podcast using the player below: Use this direct link to the audio file: https://chrt.fm/track/2748D7/https://traffic.libsyn.com/securitypodcast/4337.mp3
My Next Class
Application Security: Securing Web Apps, APIs, and Microservices | Washington | Dec 13th - Dec 18th 2024 |
Application Security: Securing Web Apps, APIs, and Microservices | Online | US Eastern | Jan 27th - Feb 1st 2025 |
Interested in Internet Storm Center stickers? Check here if there are still some available for today.
Superbowl Spam
https://isc.sans.edu/forums/diary/Beware+of+Phishing+and+Spam+Super+Bowl+Fans/19261/
Better SSL Warnings
https://isc.sans.edu/forums/diary/Improving+SSL+Warnings/19263/
Assett Inventories
https://isc.sans.edu/forums/diary/Asset+Inventory+Do+you+have+yours/19265/
BMW ConnectedDrive Vulnerable
http://www.pcworld.com/article/2878437/bmw-cars-found-vulnerable-in-connected-drive-hack.html
ZynOS (DLink and others) affected by unauthenticated DNS Server Change Flaw
http://www.computerworld.com/article/2876292/dns-hijacking-flaw-affects-d-link-dsl-router-possibly-other-devices.html
Facebook Malware Infects more then 110k users
http://seclists.org/fulldisclosure/2015/Jan/131
https://isc.sans.edu/forums/diary/Beware+of+Phishing+and+Spam+Super+Bowl+Fans/19261/
Better SSL Warnings
https://isc.sans.edu/forums/diary/Improving+SSL+Warnings/19263/
Assett Inventories
https://isc.sans.edu/forums/diary/Asset+Inventory+Do+you+have+yours/19265/
BMW ConnectedDrive Vulnerable
http://www.pcworld.com/article/2878437/bmw-cars-found-vulnerable-in-connected-drive-hack.html
ZynOS (DLink and others) affected by unauthenticated DNS Server Change Flaw
http://www.computerworld.com/article/2876292/dns-hijacking-flaw-affects-d-link-dsl-router-possibly-other-devices.html
Facebook Malware Infects more then 110k users
http://seclists.org/fulldisclosure/2015/Jan/131
Discussion
New Discussions closed for all Podcasts older than two(2) weeks
Please send your comments to our Contact Form
Application Security: Securing Web Apps, APIs, and Microservices | Washington | Dec 13th - Dec 18th 2024 |
Application Security: Securing Web Apps, APIs, and Microservices | Online | US Eastern | Jan 27th - Feb 1st 2025 |
Network Monitoring and Threat Detection In-Depth | Baltimore | Mar 3rd - Mar 8th 2025 |
Application Security: Securing Web Apps, APIs, and Microservices | Orlando | Apr 13th - Apr 18th 2025 |