Beware of phishers leveraging a new zero day Internet Explorer (IE) 11 flaw that affects the latest, fully-patched version of Windows. Click play for details. (Episode Runtime: 1:35) Direct YouTube Link: https://www.youtube.com/watch?v=AIKDoTGBaTU EPISODE REFERENCES: New XSS vulnerability affects IE 11 running on Windows 8.1 – Computer World Full Disclosure post about the flaw – Seclists Follow up post on Full Disclosure – Seclists Proof-of-Concept exploit illustrating the issue – Packet Storm — Corey Nachreiner, CISSP ( @SecAdept )
Lots of 0day – WSWiR Episode 136
Every network admin I know is buried under a list of tasks, and has little time to spend learning about the latest information security news. If that sounds like you, check out our weekly news recap video. This episode, from the third week of January, covers rumors the NSA hacked North Korea, a warning about attackers exploiting an zero day Flash flaw, Oracle’s quarterly critical patch day, and more