What time is it? Accuracy of pool.ntp.org. How accurate and reliable is pool.ntp.org? Turns out it is very good! https://isc.sans.edu/diary/What%20time%20is%20it%3F%20Accuracy%20of%20pool.ntp.org./32390 Xubuntu Compromise The Xubuntu website was compromised last weekend and served malware https://floss.social/@bluesabre/115401767635718361 Squid Proxy Vulnerability The Squid team fixed an information disclosure vulnerabilty that may leak authentication credentials. https://github.com/squid-cache/squid/security/advisories/GHSA-c8cc-phh7-xmxr Read More
Send a textWe break down a 35–7 loss to the Rams that turned optimism into hard questions about quarterback play, receiver reliability, penalties, protection, and coaching choices. The bye week becomes a reset: retool the call sheet, reassess the WR room, and get healthier on defense.The specific topics discussed this Read More
Hiring is one of the hardest parts of running a logistics company, and Jake Brown has built his career solving that problem. As Managing Partner at Brown & Pierce Consulting, Jake brings his experience from the Marine Corps and manufacturing recruitment to the world of freight, helping logistics companies find and Read More
Using Syscall() for Obfuscation/Fileless Activity Fileless malware written in Python can uses syscall() to create file descriptors in memory, evading signatures. https://isc.sans.edu/diary/Using%20Syscall%28%29%20for%20Obfuscation%20Fileless%20Activity/32384 AWS Outages AWS has had issues most of the day on Monday, affecting numerous services. https://health.aws.amazon.com/health/status Time Server Hack China reports a compromise of its time standard servers. Read More
Send a textDr. Michael Koren joins Kevin Geddings to discuss advances in brain imaging technology. The doctor opens with a fun story about a breakup in college, then moves to discuss how brain imaging for Alzheimer’s may move from noisy tunnels to a dentist-chair-like apparatus for easier scanning in a Read More
Send us a textYou probably wondered why you woke up for that mess. We did too. Jaguars completely shat the bed in London. Did they even show up? Rams did.
TikTok Videos Promoting Malware InstallationTikTok Videos Promoting Malware Installation Tiktok videos advertising ways to obtain software like Photoshop for free will instead trick users into downloading https://isc.sans.edu/diary/TikTok%20Videos%20Promoting%20Malware%20Installation/32380 Google Ads Advertise Malware Targeting MacOS Developers Hunt.io discovered Google ads that pretend to advertise tools like Homebrew and password managers to spread Read More
Step into the world of RESPONDER RESILIENCE, an insightful podcast that sheds light on the challenges and triumphs of firefighters, EMTs, 911, law enforcement professionals, clinicians and those who serve. Hear firsthand accounts from our community's finest as they discuss critical issues on the job and share their experiences with Read More
New DShield Support Slack Workspace Due to an error on Salesforce s side, we had to create a new Slack Workspace for DShield support. https://isc.sans.edu/diary/New%20DShield%20Support%20Slack/32376 Attackers Exploiting Recently Patched Cisco SNMP Flaw (CVE-2025-20352) Trend Micro published details explaining how attackers took advantage of a recently patched Cisco SNMP Vulnerability https://www.trendmicro.com/en_us/research/25/j/operation-zero-disco-cisco-snmp-vulnerability-exploit.html Read More
In this episode, we converse with Dr. Stephanie Conn, a leading expert in police psychology and resilience training for first responders. With nearly three decades of experience, Dr. Conn brings a wealth of knowledge to the table, especially from her newly updated book, "Increasing Resilience in Police & Emergency Personnel." We Read More
Clipboard Image Stealer Xavier presents an infostealer in Python that steals images from the clipboard. https://isc.sans.edu/diary/Clipboard%20Pictures%20Exfiltration%20in%20Python%20Infostealer/32372 F5 Compromise F5 announced a wide-ranging compromise today. Source code and information about unpatched vulnerabilities were stolen. https://my.f5.com/manage/s/article/K000157005 https://my.f5.com/manage/s/article/K000156572 https://my.f5.com/manage/s/article/K000154696 Adobe Updates Adobe updated 12 different products yesterday. https://helpx.adobe.com/security.html SAP Patchday Among the critical Read More
Send a textWe break down a flat 20–12 loss to the Seahawks, why the trenches failed, and what has to change before the London trip. Credit to Seattle’s plan, but we set firmer expectations for a 4–2 team.In our latest episode we discussed the following topics:• Offensive line pressure and Read More
Send a textDr. Reza Bolouri, a memory expert, joins Dr. Michael Koren to discuss Alzheimer’s, what it is, the risks, how it differs from other forms of dementia. The doctors also explore how treatment of dementia has evolved and progressed over the years from symptomatic treatments to new, disease-modifying medications Read More
Send us a textWelp, Jaguars lost. Team and fans alike were still hungover from that MNF win. All three phases of the team failed Sunday. Shay-La and Danika talk about how this loss doesn't bother them like you think.
Microsoft Patch Tuesday Microsoft not only released new patches, but also the last patches for Windows 10, Office 2016, Office 2019, Exchange 2016 and Exchange 2019. https://isc.sans.edu/diary/Microsoft%20Patch%20Tuesday%20October%202025/32368 Ivanti Advisory Ivanti released an advisory with some mitigation steps users can take until the recently made public vulnerablities are patched. https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Endpoint-Manager-EPM-October-2025?language=en_US Fortinet Read More
From the Keys to the coastlines, Florida’s logistics legacy runs on rails, and few know that better than Spencer Jury, Director of Domestic Intermodal at Florida East Coast Railway. In this episode, recorded live at the Florida Supply Chain Summit, Spencer shares how FEC connects Florida’s freight economy, the company’s 1800s Read More
Scans for ESAFENET CDG V5 We do see some increase in scans for the Chinese secure document management system, ESAFENET. https://isc.sans.edu/diary/Heads%20Up%3A%20Scans%20for%20ESAFENET%20CDG%20V5%20/32364 Investigating targeted payroll pirate attacks affecting US universities Microsoft wrote about how payroll pirates redirect employee paychecks via phishing. https://www.microsoft.com/en-us/security/blog/2025/10/09/investigating-targeted-payroll-pirate-attacks-affecting-us-universities/ Attacks against Edge via IE Mode Microsoft Edge offers Read More
Send a textDr. Koren joins Kevin Geddings to discuss the controversy surrounding Christopher Columbus and how perceptions have changed over time. The doctor explains that some view Columbus as a hero while others recognize him as a flawed figure whose actions had severe consequences for indigenous populations in the Americas.Be Read More
New Oracle E-Business Suite Patches Oracle released one more patch for the e-business suite. Oracle does not state if it is already exploited, but the timing of the patch suggests that it should be expedited. https://www.oracle.com/security-alerts/alert-cve-2025-61884.html Widespread Sonicwall SSLVPN Compromise Huntress Labs observed the widespread compromise of the Sonicwall SSLVPN Read More
Send a textDr. David Joseph rejoins Dr. Michael Koren for part 2 of his journey from reluctant med student to medical consultant, inventor, and artist. In this section, Dr. Joseph talks about the difficulties in navigating our current, disjointed, and often impersonal medical system. He recounts having to go through Read More
