Network Security News Summary for Wednesday January 03th, 2024
SANS Internet Storm Center's Daily Network Security News Podcast · Johannes B. Ullrich
January 3, 20248m 47s
Audio is streamed directly from the publisher (traffic.libsyn.com) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.
Show Notes
SSH ID Strings; Google Authentication Weakness Exploited; Novel DNS Amplification (#TsuKing) Fingerprinting SSH Identification Strings https://isc.sans.edu/diary/Fingerprinting%20SSH%20Identification%20Strings/30520 Google OAUTH2 Exploited by Malware https://www.cloudsek.com/blog/compromising-google-accounts-malwares-exploiting-undocumented-oauth2-functionality-for-session-hijacking TsuKing DNS Amplification https://lixiang521.com/publication/ccs23/ccs23-xu-tsuking.pdf keywords: dns; tsuking; google; oauth; cookies; fingerprinting; ssh