Daily 5 min cyber security news summary. News, patches, vulnerabilities and trends in information and network security. Exposed ICS; Evil XDR; GitLab Comment Bug;

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

Johannes B. Ullrich

ISC StormCast for Tuesday, April 23rd, 2024

APR 23, 20246 MIN
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

ISC StormCast for Tuesday, April 23rd, 2024

APR 23, 20246 MIN

Description

Number of Industrial Devices Accessible From Internet Up 30 Thousand over three years<br/> <a href="https://isc.sans.edu/diary/It%20appears%20that%20the%20number%20of%20industrial%20devices%20accessible%20from%20the%20internet%20has%20risen%20by%2030%20thousand%20over%20the%20past%20three%20years/30860">https://isc.sans.edu/diary/It%20appears%20that%20the%20number%20of%20industrial%20devices%20accessible%20from%20the%20internet%20has%20risen%20by%2030%20thousand%20over%20the%20past%20three%20years/30860</a><br/> Evil XDR: Turning an XDR into an Offensive Tool<br/> <a href="https://www.darkreading.com/application-security/evil-xdr-researcher-turns-palo-alto-software-into-perfect-malware">https://www.darkreading.com/application-security/evil-xdr-researcher-turns-palo-alto-software-into-perfect-malware</a><br/> GitLab Comment Bug<br/> <a href="https://www.bleepingcomputer.com/news/security/gitlab-affected-by-github-style-cdn-flaw-allowing-malware-hosting/">https://www.bleepingcomputer.com/news/security/gitlab-affected-by-github-style-cdn-flaw-allowing-malware-hosting/</a><br/> SEC522 Demo: <a href="https://www.sans.org/ondemand/get-demo/316">https://www.sans.org/ondemand/get-demo/316</a><br/>