SANS Stormcast Friday, October 31st, 2025: Bug Bounty Headers; Exchange hardening; MOVEIt vulnerability

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

Inhalt bereitgestellt von SANS ISC Handlers and Johannes B. Ullrich. Alle Podcast-Inhalte, einschließlich Episoden, Grafiken und Podcast-Beschreibungen, werden direkt von SANS ISC Handlers and Johannes B. Ullrich oder seinem Podcast-Plattformpartner hochgeladen und bereitgestellt. Wenn Sie glauben, dass jemand Ihr urheberrechtlich geschütztes Werk ohne Ihre Erlaubnis nutzt, können Sie dem hier beschriebenen Verfahren folgen https://de.player.fm/legal.

1M ago 6:19

MP3•Episode-Home

X-Request-Purpose: Identifying "research" and bug bounty related scans?
Our honeypots captured a few requests with bug bounty specific headers. These headers are meant to make it easier to identify requests related to bug bounty, and they are supposed to identify the researcher conducting the scans
https://isc.sans.edu/diary/X-Request-Purpose%3A%20Identifying%20%22research%22%20and%20bug%20bounty%20related%20scans%3F/32436
Proton Breach Observatory
Proton opened up its breach observatory. This website will collect information about breaches affecting companies that have not yet made the breach public.
https://proton.me/blog/introducing-breach-observatory
Microsoft Exchange Server Security Best Practices
A new document published by a collaboration of national cyber security agencies summarizes steps that should be taken to harden Exchange Server.
https://www.nsa.gov/Portals/75/documents/resources/cybersecurity-professionals/CSI_Microsoft_Exchange_Server_Security_Best_Practices.pdf?ver=9mpKKyUrwfpb9b9r4drVMg%3d%3d
MOVEit Vulnerability
Progress published an advisory for its file transfer program MOVEIt . This software has had heavily exploited vulnerabilities in the past.
https://community.progress.com/s/article/MOVEit-Transfer-Vulnerability-CVE-2025-10932-October-29-2025

3169 Episoden

#Security #Tech #Software Development #SANS ISC Handlers #Johannes B. Ullrich #News #Tech News

SANS Stormcast Friday, October 31st, 2025: Bug Bounty Headers; Exchange hardening; MOVEIt vulnerability

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

1,192 subscribers

published 1M ago

MP3•Episode-Home

3169 Episoden

#Security #Tech #Software Development #SANS ISC Handlers #Johannes B. Ullrich #News #Tech News

كل الحلقات

Willkommen auf Player FM!

Player FM scannt gerade das Web nach Podcasts mit hoher Qualität, die du genießen kannst. Es ist die beste Podcast-App und funktioniert auf Android, iPhone und im Web. Melde dich an, um Abos geräteübergreifend zu synchronisieren.

Höre 500+ Themen zu

Ähnelt SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

Podcasts, die es wert sind, gehört zu werden

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) « » SANS Stormcast Friday, October 31st, 2025: Bug Bounty Headers; Exchange hardening; MOVEIt vulnerability

SANS Stormcast Friday, October 31st, 2025: Bug Bounty Headers; Exchange hardening; MOVEIt vulnerability

Podcasts, die es wert sind, gehört zu werden

Willkommen auf Player FM!

Ähnelt SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

Kurzanleitung

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) « »
SANS Stormcast Friday, October 31st, 2025: Bug Bounty Headers; Exchange hardening; MOVEIt vulnerability