SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

Johannes B. Ullrich


A brief daily summary of what is important in information security. The podcast is published every weekday and designed to get you ready for the day with a brief, usually 5 minute long, summary of current network security related events. The content is late breaking, educational and based on listener input as well as on input received by the SANS Internet Stormcenter. You may submit questions and comments via our contact form at .

Available on


3773 episodes

ISC StormCast for Tuesday, March 26th, 2024

Tool updates: and Apple Updates for MacOS, iOS/iPadOS, visionOS; Fake Python Infrastructure OpenVPN Update

Mar 26
ISC StormCast for Monday, March 25th, 2024's Experimental Mode CISCP Advisory on Application-Layer Loop DoS Fixes for Windows Server LSASS Memory Leak

Mar 25
ISC StormCast for Friday, March 22nd, 2024

Geofeed Apple Updates Apple Bug GitHub Copilot AutoFix Fortinet PoC Ivanti Standalone Sentry

Mar 22
ISC StormCast for Thursday, March 21st, 2024

Scans for the Fortinet FortiOS CVE-2024-21762 Vulnerability Microsoft Reminder: It is Tax Season (at least in the US) Abusing DHCP Administrators Group for Privilege Escalation in Windows Domains;

Mar 21
ISC StormCast for Wednesday, March 20th, 2024

Attacker Hunting Firewalls Fortigate Vulnerability Exploit Available IC3 Annual Report 2023 Issues with macOS 14.4 Update

Mar 20
ISC StormCast for Tuesday, March 19th, 2024

Microsoft announced deprecation of 1024 bit RSA Keys Chrome Real-Time Safe Browsing Protection Fortra FileCatalyst Vulnerability CVE-2024-25153 Spring Security CVE-2024-22257 TrendNet TWEW-827DRU Router Vulnerability CVE-2024-28353 CVE-2024-28354

Mar 19
ISC StormCast for Monday, March 18th, 2024

5GHoul Revisted: Thress Months Later Obfuscated Hexadecimal Payload ChatGPT Related OAUTH Issues RedCanary Threat Detection Report CRL/OCSP Changes

Mar 18
ISC StormCast for Friday, March 15th, 2024

Increase in the number of phishing messages pointing to IPFS and to R2 buckets Fortinet New Vulnerabilities Fortinet Updates Arcserve UDP Vulnerability and PoC Michael Holcomb: Mode Matters: Monitoring PLCs for Detecting Potential ICS/OT Incidents

Mar 15
ISC StormCast for Thursday, March 14th, 2024

Using ChatGPT to Deofuscate Malicious Scripts Critical Fortinet Vulnerabilities Adobe Security Bulletins Kubernetes Local Volumes Command Injection Vulnerability

Mar 14
ISC StormCast for Wednesday, March 13th, 2024

Microsoft Patch Tuesday March 2024 Death Knell of NVD Unrestricted file upload vulnerability in ManageEngine Desktop Central Siemens Fire Protection System Updates

Mar 13
ISC StormCast for Tuesday, March 12th, 2024

What happens when you accidentially leak your AWS API Keys How Crypto Imposters are using Calendly to infect Macs with Malware Misconfiguration Manager: Overlooked and Overprivileged

Mar 12
ISC StormCast for Monday, March 11th, 2024

Attack Wrangles Thousands of Web Users into a Password Cracking Botnet Cisco VPN Client Vuln Fortinet Vulnerability Exploited pgAdmin Path Traversal Font Vulnerabilities QNAP Flaws

Mar 11
ISC StormCast for Friday, March 8th, 2024

AWS Deploymnet Risks - Configuration and Credential File Targeting Apple Updates NSA/CISA Secure Cloud Guides

Mar 08
ISC StormCast for Thursday, March 7th, 2024

Scanning and Abusing the QUIC Protocol Google Chrome Update Spinning YARN Teamcity Exploited

Mar 07
ISC StormCast for Wednesday, March 6th, 2024

iOS/iPadOS Updates with Zero Day Fixes Why Your Firewall Will Kill You QEMU Tunnel VMware Vulnerabilities Patched

Mar 06
ISC StormCast for Tuesday, March 5th, 2024

Capturing DShield Packets with a LAN Tap Additional Critical Security Issues Affecting Teamcity GitHub Push Protection Now On By Default Android Updates Linksys E-2000 Vulnerablity

Mar 05
ISC StormCast for Monday, March 4th, 2024

Scanning for Confluence CVE-2022-26134 Exploiting CSP Wildcards for Google Domains Silver SAML: Golden SAML in the Cloud

Mar 04
ISC StormCast for Friday, March 1st, 2024

Dissecting DarkGate: Module Malware Delivery and Persistence as a Service Ivanti Incident Response Update Github Flooded with Infected Repos Security Flaws in NoName Doorbell Cameras

Mar 01
ISC StormCast for Thursday, February 29th, 2024

Exploit Attempts for Unknown Password Reset Vulnerability StopRansomware: Updated ALPHV Blackcat Advisory GlobalBlock Service To Prevent Trademark abuse

Feb 29
ISC StormCast for Wednesday, February 28th, 2024

Take Downs and the Rest of Us: Do they matter? Joint Cybersecurity Advisory SVR Cyber Actors Adapt Tactics for Initial Cloud Access Data Scientists Targeted by Malicious Hugging Face ML Models with Silent Backdoor

Feb 28
ISC StormCast for Tuesday, February 27th, 2024

Utilizing the VirusTotal API to Query Files Uploaded to the DShield Honeypot New WiFi Authentication Vulnerabilities Discovered Subdomain Takeover Spam

Feb 27
ISC StormCast for Monday, February 26th, 2024

Update MGLNDD * Scans*%20Scans/30686/ Simple Anti-Sandbox Technique: Where's the Mouse Security Vulnerabilities in Apex Code Could Leak Salesforce Data IBM Operation Decision Manager Exploit CVE-2024-22319 CVE-2024-22320 Linux Kernel TLS Vulnerability CVE-2024-26582

Feb 26
ISC StormCast for Friday, February 23rd, 2024

Friend, Foe or Something In Between Large AT&T Wireless Network Outage Connect Wise Screenconnect Userd by LockBit SSH Snake Abused in the Wild

Feb 23
ISC StormCast for Thursday, February 22nd, 2024

Phishing Pages Hosted on ScreenConnect Authentication Bypass Exploit CVE-2024-1709 CVE-2024-1708) iMessage with PQ3

Feb 22
ISC StormCast for Wednesday, February 21st, 2024

Python InfoStealer Wtih Dynamic Sandbox Detection Connectwise Screenconnect Vulnerabilities Remove VMWare Enhanced Authentication Plugin (EAP) VE-2024-22245 CVE-2024-22250 Voltage Noise to Manipulate Wireless Chargers

Feb 21
ISC StormCast for Tuesday, February 20th, 2024

Old Mirai New Exploits KeyTrap PoC Exploit Google Open Sources Magika File ID System Exploiting Unsynchronised Clocks

Feb 20
ISC StormCast for Monday, February 19th, 2024

SolarWinds Security Advisories Google Chrome Adds Private Network Checks Gold Factory iOS Trojan

Feb 19
ISC StormCast for Friday, February 16th, 2024

USPS Anchors Snowballing Smishing Campaigns Linux Issuing CVEs Analyzing Pulse Secure Firmware and Bypassing Integrity Checking Jennifer Walker: Detecting Rogue Ethernet Switches Using Layer 1 Techniques

Feb 16
ISC StormCast for Thursday, February 15th, 2024

Guest Diary: Learning by Doing An Interative Adventure in Troubleshooting Snap Trap: The Hidden Dangers within Ubuntu's Package Suggestion System The Risks of the Monikerlink Bug in Microsoft Outlook Adobe Patches AMD Patches

Feb 15
ISC StormCast for Wednesday, February 14th, 2024

Microsoft Patch Tuesday DNSSEC DoS Vulnerability CVE-2023-50387 Zoom Desktop Client Vuln QNAP Vulnerablity

Feb 14