أفضل بودكاسات Cyber Daily (2024)

1
ISC StormCast for Friday, May 10th, 2024 5:53

1d ago5:53

5:53

Analyzing PDF Streams https://isc.sans.edu/diary/Analyzing%20PDF%20Streams/30908 F5 Next Central Manager Vulnerabilities https://eclypsium.com/blog/big-vulnerabilities-in-next-gen-big-ip/ Veeam Patches https://www.veeam.com/kb4441 https://www.veeam.com/kb4509 Citrix Hypervisor Security Update CVE-2024-31497 https://support.citrix.com/article/CTX633…

1
ISC StormCast for Thursday, May 9th, 2024 6:09

2d ago6:09

6:09

Analzying Synology Disks https://isc.sans.edu/diary/Analyzing%20Synology%20Disks%20on%20Linux/30904 RSA Panel https://www.rsaconference.com/usa/agenda/session/The%20Five%20Most%20Dangerous%20New%20Attack%20Techniques%20You%20Need%20to%20Know%20About SANS.edu Research Journal https://www.sans.edu/cyber-security-research…

1
ISC StormCast for Wednesday, May 8th, 2024 8:13

3d ago8:13

8:13

Detecting XFinity/Comcast DNS Spoofing https://isc.sans.edu/diary/Detecting%20XFinity%20Comcast%20DNS%20Spoofing/30898 Weblogic PoC CVE-2024-21006 https://pwnull.github.io/2024/oracle%20weblogic%20CVE-2024-21006%20Double-JNDInjection%20RCE%20analyze/ https://github.com/momika233/CVE-2024-21006 PDF.js React PDF Vulnerablity https://securityonline.in…

1
ISC StormCast for Tuesday, May 7th, 2024 6:27

4d ago6:27

6:27

DHCP Based VPN Routing Leaks https://www.leviathansecurity.com/blog/tunnelvision Mullvad VPN DNS Traffic Leak https://mullvad.net/en/blog/dns-traffic-can-leak-outside-the-vpn-tunnel-on-android Tiny Proxy Vulnerability https://talosintelligence.com/vulnerability_reports/TALOS-2023-1889بقلم Dr. Johannes B. Ullrich

1
ISC StormCast for Monday, May 6th, 2024 5:32

5d ago5:32

5:32

DNS Debugging with nslookup https://isc.sans.edu/diary/nslookups+Debug+Options/30894/ Microsoft Plans DNS Lockdown https://techcommunity.microsoft.com/t5/networking-blog/announcing-zero-trust-dns-private-preview/ba-p/4110366 Microsoft Graph API Abuse https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/graph-api-threats SANSFIRE…

1
ISC StormCast for Friday, May 3rd, 2024 5:33

8d ago5:33

5:33

https://isc.sans.edu/diary/Scans%20Probing%20for%20LB-Link%20and%20Vinga%20WR-AC1200%20routers%20CVE-2023-24796/30890 Scans Probing for LB-Link and Vinga WR-AC1200 routers CVE-2023-24796 Buffer Overflow Vulnerabilities in ArubaOS https://www.arubanetworks.com/support-services/security-bulletins/ The Cuttlefish Malware https://blog.lumen.com/eight-a…

1
ISC StormCast for Thursday, May 2nd, 2024 6:51

9d ago6:51

6:51

Linux Trojan - Xorddos with Filename eyshcjdmzg https://isc.sans.edu/diary/Linux%20Trojan%20-%20Xorddos%20with%20Filename%20eyshcjdmzg/30880 AWS S3 Denial of Wallet Amplification Attack https://medium.com/@maciej.pocwierz/how-an-empty-s3-bucket-can-make-your-aws-bill-explode-934a383cb8b1 https://blog.limbus-medtec.com/the-aws-s3-denial-of-wallet-am…

1
ISC StormCast for Wednesday, May 1st, 2024 6:38

10d ago6:38

6:38

Another Day, Another NAS: Attacks against Zyxel NAS326 Devices CVE-2023-4473, CVE-2023-4474 https://isc.sans.edu/diary/Another%20Day%2C%20Another%20NAS%3A%20Attacks%20against%20Zyxel%20NAS326%20devices%20CVE-2023-4473%2C%20CVE-2023-4474/30884 R-Bitrary Code Execution: Vulnearbility in R's Deserialization https://hiddenlayer.com/research/r-bitrary-c…

1
ISC StormCast for Tuesday, April 30th, 2024 6:55

11d ago6:55

6:55

DLink NAS Exploit Variation https://www.qnap.com/en/security-advisory/qsa-24-09 Muddling Meerkat DNS Abuse https://blogs.infoblox.com/threat-intelligence/a-cunning-operator-muddling-meerkat-and-chinas-great-firewall/ Android TV Data Leakage https://www.youtube.com/watch?v=QiyBXXO8QpA https://www.404media.co/android-tvs-can-expose-user-email-inboxes…

1
ISC StormCast for Monday, April 29th, 2024 6:36

12d ago6:36

6:36

Okta warns of increase in credential stuffing https://sec.okta.com/blockanonymizers Fake payment cards used by Police in Japan https://twitter.com/vxunderground/status/1783522097425211887 Phishing Campaigns Targeting USPS https://www.akamai.com/blog/security-research/phishing-usps-malicious-domains-traffic-equal-to-legitimate-traffic Chrome 124 Bre…

1
ISC StormCast for Friday, April 26th, 2024 20:28

15d ago20:28

20:28

Does it matter if iptables isn't running on my honeypot? https://isc.sans.edu/forums/diary/Does%20it%20matter%20if%20iptables%20isn't%20running%20on%20my%20honeypot%3F/30862/ Unplugging PlugX: Singholing the PlugX USB worm botnet https://blog.sekoia.io/unplugging-plugx-sinkholing-the-plugx-usb-worm-botnet/ pfSense Updates https://docs.netgate.com/a…

1
ISC StormCast for Thursday, April 25th, 2024 6:09

16d ago6:09

6:09

API Rug Pull - The NIST NVD Database and API https://isc.sans.edu/diary/API%20Rug%20Pull%20-%20The%20NIST%20NVD%20Database%20and%20API%20%28Part%204%20of%203%29/30868 Cisco Patches Vulnerabilities and Discovers Arcane Backdoor https://blog.talosintelligence.com/arcanedoor-new-espionage-focused-campaign-found-targeting-perimeter-network-devices/ Vul…

1
ISC StormCast for Wednesday, April 24th, 2024 6:22

17d ago6:22

6:22

Struts2 devmode Still a Problem Ten Years Later https://isc.sans.edu/forums/diary/Struts%20%22devmode%22%3A%20Still%20a%20problem%20ten%20years%20later%3F/30866/ Analyzing Forest Blizard's Custom Post-Compromise Tool for exploiting CVE-2022-38028 https://www.microsoft.com/en-us/security/blog/2024/04/22/analyzing-forest-blizzards-custom-post-comprom…

1
ISC StormCast for Tuesday, April 23rd, 2024 6:05

18d ago6:05

6:05

Number of Industrial Devices Accessible From Internet Up 30 Thousand over three years https://isc.sans.edu/diary/It%20appears%20that%20the%20number%20of%20industrial%20devices%20accessible%20from%20the%20internet%20has%20risen%20by%2030%20thousand%20over%20the%20past%20three%20years/30860 Evil XDR: Turning an XDR into an Offensive Tool https://www.…

1
ISC StormCast for Monday, April 22nd, 2024 5:36

19d ago5:36

5:36

The CVE's They are A-Changing https://isc.sans.edu/diary/The%20CVE%27s%20They%20are%20A-Changing!/30850 CrushFTP 0-Day Vulnerability https://www.crushftp.com/crush11wiki/Wiki.jsp?page=Update https://www.reddit.com/r/crowdstrike/comments/1c88788/situational_awareness_20240419_crushftp_virtual/ GitHub Comment Bug Used to Distribute Malware https://ww…

1
ISC StormCast for Friday, April 19th, 2024 5:06

22d ago5:06

5:06

Delinea Secret Server Authn Authz Bypass https://straightblast.medium.com/all-your-secrets-are-belong-to-us-a-delinea-secret-server-authn-authz-bypass-adc26c800ad3 Ivanti Avalanche Poc/Details https://www.tenable.com/security/research/tra-2024-10 Advanced Phishing Campaign https://www.lookout.com/threat-intelligence/article/cryptochameleon-fcc-phis…

1
ISC StormCast for Thursday, April 18th, 2024 5:19

23d ago5:19

5:19

Malicious PDF File As Delivery Mechanism https://isc.sans.edu/diary/Malicious%20PDF%20File%20Used%20As%20Delivery%20Mechanism/30848 Updated Palo Alto Networks GlobalProtect Guidance https://security.paloaltonetworks.com/CVE-2024-3400 Coordinated Social Engineering Takeovers of Open Source Projects; https://openssf.org/blog/2024/04/15/open-source-se…

1
ISC StormCast for Wednesday, April 17th, 2024 5:33

24d ago5:33

5:33

Palo Alto Networks GlobalProtect exploit public and widely exploited CVE-2024-3400 https://isc.sans.edu/forums/diary/Palo%20Alto%20Networks%20GlobalProtect%20exploit%20public%20and%20widely%20exploited%20CVE-2024-3400/30844/ Putty Private Key Recovery https://www.chiark.greenend.org.uk/~sgtatham/putty/wishlist/vuln-p521-bias.html Oracle Critical Pa…

1
ISC StormCast for Tuesday, April 16th, 2024 6:17

25d ago6:17

6:17

Quick Palo Alto Networks Global Protect Vulnerablity Update CVE-2024-3400 https://isc.sans.edu/diary/30838 Delinea patches critical vulnerability in secret manager https://trust.delinea.com/?tcuUid=17aaf4ef-ada9-46d5-bf97-abd3b07daae3 Lancom Windows Setup Assistant May Reset Password https://www.lancom-systems.com/service-support/general-security-i…

1
ISC StormCast for Sunday, April 14th, 2024 5:41

28d ago5:41

5:41

Palo Alto Networks GlobalProtect 0-Day CVE-2024-3400 https://security.paloaltonetworks.com/CVE-2024-3400 https://www.volexity.com/blog/2024/04/12/zero-day-exploitation-of-unauthenticated-remote-code-execution-vulnerability-in-globalprotect-cve-2024-3400/#RespondingToCompromiseبقلم Dr. Johannes B. Ullrich

1
ISC StormCast for Friday, April 12th, 2024 6:11

29d ago6:11

6:11

BatBadBut: You can't securely execute commands on Windows https://flatt.tech/research/posts/batbadbut-you-cant-securely-execute-commands-on-windows/ FortiClient Linux Remote Code Execution https://www.fortiguard.com/psirt/FG-IR-23-087 Apple Threat Notifications and Protecting Against Mercenary Spyware https://support.apple.com/en-us/102174 New Tech…

1
ISC StormCast for Thursday, April 11th, 2024 5:59

1M ago5:59

5:59

Rust Command API code execution vulnerability CVE-2024-24576 https://blog.rust-lang.org/2024/04/09/cve-2024-24576.html Adobe Updates: Magento Adobe Commerce CVE-2024-20759 CVE-2024-20758 https://helpx.adobe.com/security/products/magento/apsb24-18.html https://helpx.adobe.com/security.html Fortinet FortiOS And FortiProxy Vulnerability CVE-2023-41677…

1
ISC StormCast for Wednesday, April 10th, 2024 6:31

1M ago6:31

6:31

Microsoft Patches https://isc.sans.edu/forums/diary/April%202024%20Microsoft%20Patch%20Tuesday%20Summary/30822/ D-Link NAS Backdoor https://github.com/netsecfish/dlink LG SmartTV Vulnerabilities https://www.bitdefender.com/blog/labs/vulnerabilities-identified-in-lg-webos/بقلم Dr. Johannes B. Ullrich

1
ISC StormCast for Tuesday, April 9th, 2024 5:59

1M ago5:59

5:59

A Use Case for Adding Threat Hunting to Your Security Operations Team. https://isc.sans.edu/diary/30816 Notepad++ Parasite Site https://notepad-plus-plus.org/news/help-to-take-down-parasite-site/ Hugging Face Pickle File Vulnerablities https://huggingface.co/blog/hugging-face-wiz-security-blog Google Considers V8 Sandbox no longer experimental http…

1
ISC StormCast for Monday, April 8th, 2024 5:29

1M ago5:29

5:29

Heartbleed 10th Anniversary https://heartbleed.com/ Possible Libarchive Backdoor Vulnerability https://github.com/libarchive/libarchive/pull/1609 Magento XML Backdoor https://sansec.io/research/magento-xml-backdoor Google Public DNS's approach to fight against cache poisoning attacks https://security.googleblog.com/2024/03/google-public-dnss-approa…

المدونة الصوتية تستحق الاستماع

Cyber Daily بودكاست

المدونة الصوتية تستحق الاستماع

1
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

Johannes B. Ullrich

1
Daily Cyber Threat Intelligence Brief

Dark Web Detective

1
DailyCyber The Truth About Cyber Security with Brandon Krieger

Brandon Krieger

1
ISC StormCast for Friday, May 10th, 2024 5:53

1
ISC StormCast for Thursday, May 9th, 2024 6:09

1
ISC StormCast for Wednesday, May 8th, 2024 8:13

1
ISC StormCast for Tuesday, May 7th, 2024 6:27

1
ISC StormCast for Monday, May 6th, 2024 5:32

1
ISC StormCast for Friday, May 3rd, 2024 5:33

1
ISC StormCast for Thursday, May 2nd, 2024 6:51

1
ISC StormCast for Wednesday, May 1st, 2024 6:38

1
ISC StormCast for Tuesday, April 30th, 2024 6:55

1
ISC StormCast for Monday, April 29th, 2024 6:36

1
ISC StormCast for Friday, April 26th, 2024 20:28

1
ISC StormCast for Thursday, April 25th, 2024 6:09

1
ISC StormCast for Wednesday, April 24th, 2024 6:22

1
ISC StormCast for Tuesday, April 23rd, 2024 6:05

1
ISC StormCast for Monday, April 22nd, 2024 5:36

1
ISC StormCast for Friday, April 19th, 2024 5:06

1
ISC StormCast for Thursday, April 18th, 2024 5:19

1
ISC StormCast for Wednesday, April 17th, 2024 5:33

1
ISC StormCast for Tuesday, April 16th, 2024 6:17

1
ISC StormCast for Sunday, April 14th, 2024 5:41

1
ISC StormCast for Friday, April 12th, 2024 6:11

1
ISC StormCast for Thursday, April 11th, 2024 5:59

1
ISC StormCast for Wednesday, April 10th, 2024 6:31

1
ISC StormCast for Tuesday, April 9th, 2024 5:59

1
ISC StormCast for Monday, April 8th, 2024 5:29

دليل مرجعي سريع