XWiki SolrSearch Exploit Attempts CVE-2025-24893 We have detected a number of exploit attempts against XWiki taking advantage of a vulnerability that was added to the KEV list on Friday. https://isc.sans.edu/diary/XWiki%20SolrSearch%20Exploit%20Attempts%20%28CVE-2025-24893%29%20with%20link%20to%20Chicago%20Gangs%20Rappers/32444 AMD Zen 5 Random Number Generator Bug The RDSEED function for AMD s Zen 5 processors does return 0 more Read More
Send us a textJaguars snatched victory from the jaws of defeat. Jaguars go into Vegas after a bye week and instead of looking rejuvenated look and played like ass for about three quarters. Cam Little drills a 68 FG for the NFL record. Jags win in OT.
Scans for WSUS: Port 8530/8531 TCP, CVE-2025-59287 We did observe an increase in scans for TCP ports 8530 and 8531. These ports are associated with WSUS and the scans are likely looking for servers vulnerable to CVE-2025-59287 https://isc.sans.edu/diary/Scans%20for%20Port%208530%208531%20%28TCP%29.%20Likely%20related%20to%20WSUS%20Vulnerability%20CVE-2025-59287/32440 BADCANDY Webshell Implant Deployed via The Australian Signals Directorate warns that they Read More
X-Request-Purpose: Identifying "research" and bug bounty related scans? Our honeypots captured a few requests with bug bounty specific headers. These headers are meant to make it easier to identify requests related to bug bounty, and they are supposed to identify the researcher conducting the scans https://isc.sans.edu/diary/X-Request-Purpose%3A%20Identifying%20%22research%22%20and%20bug%20bounty%20related%20scans%3F/32436 Proton Breach Observatory Proton Read More
Will is a photographer, videographer,content creeator, social media director, and to top it all off he is a hands down amazing dancer. Come join us as we find out what drives him to do everything that he does and where he hopes it will take him.Follow his [email protected] us a Read More
How to Collect Memory-Only Filesystems on Linux Systems Getting forensically sound copies of memory-only file systems on Linux can be tricky, as tools like dd do not work. https://isc.sans.edu/diary/How%20to%20collect%20memory-only%20filesystems%20on%20Linux%20systems/32432 Microsoft Azure Front Door Outage Today, Microsoft s Azure Front Door service failed, leading to users not being able to authenticate Read More
In this Clinicians' Guide Masterclass, we turn the spotlight on the often-overlooked world of mental health in disaster response. Join us as Joellen Rhyndress, a seasoned therapist, shares authentic stories from the front lines of crisis management, revealing what it's truly like to be an embedded clinician in the chaos. Read More
Send a textUrologist Dr. Yaw Nyame joins Dr. Michael Koren to discuss bladder and prostate cancers. Dr. Nyame talks about his journey through college - including the choice between rock stardom and medical school - and how he got to the Fred Hutch Cancer Center in Seattle. Dr. Nyame explains Read More
Phishing with Invisible Characters in the Subject Line Phishing emails use invisible UTF-8 encoded characters to break up keywords used to detect phishing (or spam). This is aided by mail clients not rendering some characters that should be rendered. https://isc.sans.edu/diary/A%20phishing%20with%20invisible%20characters%20in%20the%20subject%20line/32428 Apache Tomcat PUT Directory Traversal Apache released an update to Read More
In sports merch, the clock is the boss. Fanatics SVP of Operations Wayne “Skip” Lee walks through a hot-market playbook where championship buzz turns into next-morning deliveriesWe hear about sunrise delivery in the winning city and why the first 72 hours/7 days decide the season’s biggest sales. Skip breaks down Read More
Bytes over DNS Didiear investigated which bytes may be transmitted as part of a hostname in DNS packets, depending on the client resolver and recursive resolver constraints https://isc.sans.edu/diary/Bytes%20over%20DNS/32420 Unifi Access Vulnerability Unifi fixed a critical vulnerability in it s Access product https://community.ui.com/releases/Security-Advisory-Bulletin-056-056/ce97352d-91cd-40a7-a2f4-2c73b3b30191 OpenAI Atlas Omnibox Prompt Injection OpenAI s latest Read More
Bytes over DNS Didiear investigated which bytes may be transmitted as part of a hostname in DNS packets, depending on the client resolver and recursive resolver constraints https://isc.sans.edu/diary/Bytes%20over%20DNS/32420 Unifi Access Vulnerability Unifi fixed a critical vulnerability in it s Access product https://community.ui.com/releases/Security-Advisory-Bulletin-056-056/ce97352d-91cd-40a7-a2f4-2c73b3b30191 OpenAI Atlas Omnibox Prompt Injection OpenAI s latest Read More
Send a textCardiologist Dr. Koren joins Kevin Geddings to talk about the importance of understanding what we know about patients. The cardiologist recounts a recently recorded podcast where he - with full consent - reviewed the cardiovascular infomation of a patient to give a broader understanding of what all of Read More
Bilingual Phishing for Cloud Credentials Guy observed identical phishing messages in French and English attempting to phish cloud credentials https://isc.sans.edu/diary/Phishing%20Cloud%20Account%20for%20Information/32416 Kaitai Struct WebIDE The binary file analysis tool Kaitai Struct is now available in a web only version https://isc.sans.edu/diary/Kaitai%20Struct%20WebIDE/32422 WSUS Emergency Update Microsoft released an emergency patch for WSUS to Read More
Infostealer Targeting Android Devices This infostealer, written in Python, specifically targets Android phones. It takes advantage of Termux to gain access to data and exfiltrates it via Telegram. https://isc.sans.edu/diary/Infostealer%20Targeting%20Android%20Devices/32414 Attackers exploit recently patched Adobe Commerce Vulnerability CVE-2025-54236 Six weeks after Adobe's emergency patch, SessionReaper (CVE-2025-54236) has entered active exploitation. E-Commerce Read More
Welcome to Episode 413 of the Microsoft Cloud IT Pro Podcast. Microsoft has introduced a new file share-centric management model for Azure Files, aiming to eliminate the complexity of managing storage accounts. This model treats file shares as top-level Azure resources, allowing for easier automation, granular access control, and independent Read More
webctrl.cgi/Blue Angel Software Suite Exploit Attempts. Maybe CVE-2025-34033 Variant? Our honeypots detected attacks that appear to exploit CVE-2025-34033 or a similar vulnerability in the Blue Angle Software Suite. https://isc.sans.edu/diary/webctrlcgiBlue+Angel+Software+Suite+Exploit+Attempts+Maybe+CVE202534033+Variant/32410 Oracle Critical Patch Update Oracle released its quarterly critical patch update. The update includes patches for 374 vulnerabilities across all of Read More
Join us for this compelling episode featuring retired police officers Ernest Stevens and Scott Medlin as they unpack their groundbreaking book, *101 Questions to Ask Before Becoming a Law Enforcement Officer*. We lean into eye-opening discussions that will challenge your perspective on a career in policing. Hear firsthand how this powerful Read More
Send a textDr. Jill Grimes joins Dr. Erich Schramm to discuss young adult health, covering topics from teens and college students to those just starting life on their own. They discuss her book, The Ultimate College Student Health Handbook, and the evidence-based advice Dr. Grimes shares to help students navigate Read More
