Handler on Duty: Xavier Mertens
Threat Level: green
Podcast Detail
Manipulating Airline Bookings; PHPMailer Exploit; Signal Uses Domain Fronting
If you are not able to play the podcast using the player below: Use this direct link to the audio file: https://chrt.fm/track/2748D7/https://traffic.libsyn.com/securitypodcast/5307.mp3
SANS Daily Network Security Podcast (Stormcast) for Wednesday, December 28th 2016
00:00
My Next Class
Application Security: Securing Web Apps, APIs, and Microservices | Online | US Eastern | Jan 27th - Feb 1st 2025 |
Network Monitoring and Threat Detection In-Depth | Baltimore | Mar 3rd - Mar 8th 2025 |
Interested in Internet Storm Center stickers? Check here if there are still some available for today.
Using Daemonlogger as a Software Tap
https://isc.sans.edu/forums/diary/Using+daemonlogger+as+a+Software+Tap/21859/
CCC Conference
https://events.ccc.de/congress/2016/wiki/Main_Page
PHPMailer Exploit Released
https://legalhackers.com/exploits/CVE-2016-10033/PHPMailer-RCE-exploit-poc.txt
Patch For Exim Mail Server
https://exim.org/static/doc/CVE-2016-9963.txt
Signal Uses “Domain Fronting†To Evade Censor Ship
https://whispersystems.org/blog/doodles-stickers-censorship/
https://isc.sans.edu/forums/diary/Using+daemonlogger+as+a+Software+Tap/21859/
CCC Conference
https://events.ccc.de/congress/2016/wiki/Main_Page
PHPMailer Exploit Released
https://legalhackers.com/exploits/CVE-2016-10033/PHPMailer-RCE-exploit-poc.txt
Patch For Exim Mail Server
https://exim.org/static/doc/CVE-2016-9963.txt
Signal Uses “Domain Fronting†To Evade Censor Ship
https://whispersystems.org/blog/doodles-stickers-censorship/
Discussion
New Discussions closed for all Podcasts older than two(2) weeks
Please send your comments to our Contact Form
Application Security: Securing Web Apps, APIs, and Microservices | Online | US Eastern | Jan 27th - Feb 1st 2025 |
Network Monitoring and Threat Detection In-Depth | Baltimore | Mar 3rd - Mar 8th 2025 |
Application Security: Securing Web Apps, APIs, and Microservices | Orlando | Apr 13th - Apr 18th 2025 |
Application Security: Securing Web Apps, APIs, and Microservices | San Diego | May 5th - May 10th 2025 |
Network Monitoring and Threat Detection In-Depth | Baltimore | Jun 2nd - Jun 7th 2025 |