Podcast Detail

MSHTML 0-Day Exploited; ProtonVPN Privacy; What's App Moderation; Stashing Payload in Log Files (CLFS);

If you are not able to play the podcast using the player below: Use this direct link to the audio file: https://chrt.fm/track/2748D7/https://traffic.libsyn.com/securitypodcast/7662.mp3

Podcast Logo
SANS Daily Network Security Podcast (Stormcast) for Wednesday, September 8th, 2021
00:00

My Next Class

… more classes

Interested in Internet Storm Center stickers? Check here if there are still some available for today.

Microsoft MSHTML Remote Code Execution Vulnerability CVE-2021-40444
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-40444

ProntonMail/VPN Releasing User's IP Address
https://protonmail.com/blog/climate-activist-arrest/

What's App End To End Encryption Questioned (but upheld)
https://twitter.com/evacide/status/1435288900587589632?s=20

PRIVATELOG and STASHLOG Malware Store Payload in Common Log File System (CLFS)
https://www.fireeye.com/blog/threat-research/2021/09/unknown-actor-using-clfs-log-files-for-stealth.html