Send a textWe seize a national-stage win over Kansas City, then flip the cornerback room by trading Tyson Campbell for Greg Newsome. Trevor Lawrence steadies a rough start with his legs, hits BTJ for a dime, and caps the night with an unforgettable scramble for a game winning touchdown.With the Read More
Building Better Defenses: RedTail Observations Defending against attacks like RedTail is more then blocking IoCs, but instead one must focus on the techniques and tactics attackers use. https://isc.sans.edu/diary/Guest+Diary+Building+Better+Defenses+RedTail+Observations+from+a+Honeypot/32312 Sonicwall: It wasn t the user s fault Sonicwall admits to a breach resulting in the loss of user configurations stored in Read More
Building Better Defenses: RedTail Observations Defending against attacks like RedTail is more then blocking IoCs, but instead one must focus on the techniques and tactics attackers use. https://isc.sans.edu/diary/Guest+Diary+Building+Better+Defenses+RedTail+Observations+from+a+Honeypot/32312 Sonicwall: It wasn t the user s fault Sonicwall admits to a breach resulting in the loss of user configurations stored in Read More
Welcome to Episode 412 of the Microsoft Cloud IT Pro Podcast. In this episode, we explore three announcements from Microsoft that are reshaping how security teams work with Sentinel. From a reimagined data architecture to AI integration and new visualization capabilities, Microsoft is doubling down on making security operations more Read More
Polymorphic Python Malware Xavier discovered self-modifying Python code on Virustotal. The remote access tool takes advantage of the inspect module to modify code on the fly. https://isc.sans.edu/diary/Polymorphic%20Python%20Malware/32354 SSH ProxyCommand Vulnerability A user cloning a git repository may be tricked into executing arbitrary code via the SSH proxycommand option. https://dgl.cx/2025/10/bash-a-newline-ssh-proxycommand-cve-2025-61984 Framelink Read More
Send us a textWe are BACK with another episode and another victory. Jaguars wins are gritty and not pretty...we don't need them to be. Shay-La and Danika talk about this big stage for the Jaguars and they delivered....with a few stumbles along the way.
In this episode, we sit down with Sheriff Michelle Cook from the Clay County, Florida, Sheriff's Office for an eye-opening discussion about the ever-evolving landscape of law enforcement. Sheriff Cook shares her insights on the crucial topics of recruitment and retention within the force, diving deep into the challenges and Read More
Send a textDr. David Joseph joins Dr. Michael Koren in part 1 of this 2-part series to discuss his journey into the medical world - with myriad tangents and diversions along the way. Dr. Joseph explores his journey from scrappy teen entrepreneur and freshman MIT researcher and inventor to Harvard-trained Read More
FreePBX Exploit Attempts (CVE-2025-57819) A FreePBX SQL injection vulnerability disclosed in August is being used to execute code on affected systems. https://isc.sans.edu/diary/Exploit%20Against%20FreePBX%20%28CVE-2025-57819%29%20with%20code%20execution./32350 Disrupting Threats Targeting Microsoft Teams Microsoft published a blog post outlining how to better secure Teams. https://www.microsoft.com/en-us/security/blog/2025/10/07/disrupting-threats-targeting-microsoft-teams/ Kibana XSS Patch CVE-2025-25009 Elastic patched a stored XSS vulnerability in Read More
When freight gets tough, the toughest lean into resilience. In this episode of Everything is Logistics, Krystina Booker, Founder of Booker Transport Solutions, shares her journey from launching her own brokerage to navigating challenges with grit, creativity, and purpose. Her perspective blends business savvy with a personal mission to make Read More
More Details About Oracle 0-Day The exploit is now widely distributed and has been analyzed to show the nature of the underlying vulnerabilities. https://isc.sans.edu/diary/Quick%20and%20Dirty%20Analysis%20of%20Possible%20Oracle%20E-Business%20Suite%20Exploit%20Script%20%28CVE-2025-61882%29%20%5BUPDATED%5B/32346 https://labs.watchtowr.com/well-well-well-its-another-day-oracle-e-business-suite-pre-auth-rce-chain-cve-2025-61882well-well-well-its-another-day-oracle-e-business-suite-pre-auth-rce-chain-cve-2025-61882/ Redis Vulnerability Redis patched a ciritcal use after free vulnerability that could lead to arbitrary code execution. https://redis.io/blog/security-advisory-cve-2025-49844/ GoAnywhere Bug Exploited Microsoft is reporting about Read More
Send a textDr. Michael Koren joins Kevin Geddings to discuss the positive headline results from a clinical study on the cholesterol medication Repatha. Dr. Koren explains what "headline results" are and how they differ from results presented in a full scientific format. He talks about how these findings are being Read More
Oracle E-Business Suite 0-Day CVE-2025-61882 Last week, the Cl0p ransomware gang sent messages to many businesses stating that an Oracle E-Business Suite vulnerability was used to exfiltrate data. Initially, Oracle believed the root cause to be a vulnerability patched in June, but now Oracle released a patch for a new Read More
More .well-known scans Attackers are using API documentation automatically published in the .well-known directory for reconnaissance. https://isc.sans.edu/diary/More%20.well-known%20Scans/32340 RedHat Patches Openshift AI Services A flaw was found in Red Hat Openshift AI Service. A low-privileged attacker with access to an authenticated account, for example, as a data scientist using a standard Read More
Comparing Honeypot Passwords with HIBP Most passwords used against our honeypots are also found in the Have I been pwn3d list. However, the few percent that are not found tend to be variations of known passwords, extending them to find likely mutations. https://isc.sans.edu/diary/%5BGuest%20Diary%5D%20Comparing%20Honeypot%20Passwords%20with%20HIBP/32310 Breaking Server SGX via DRAM Inspection By Read More
Josh Bitsko was one of three officers who breached the suspect’s room during the 1 October mass shooting in Las Vegas, the deadliest mass shooting in U.S. history. That moment was not just a test of tactics; it was a critical examination of the emotional core of what it truly Read More
Send a textTwo straight wins change more than the standings; they change how we carry ourselves. The Jags went over to the West Coast and handled business against a beat up 49ers team that is still a very respectable unit. They did this by matching San Francisco’s physical edge, turning Read More
Send a textChristy Kestner, PhD, joins Erich Schramm, MD to discuss her journey from bench scientist to medical communicator. She talks about the importantce of spreading knowledge far and wide, particularly in the current era of massive misinformation. The duo talk about the problem of keeping medical and scientific information Read More
Sometimes you don t even need to log in Applications using simple, predictable cookies to verify a user s identity are still exploited, and relatively recent vulnerabilities are still due to this very basic mistake. https://isc.sans.edu/diary/%22user%3Dadmin%22.%20Sometimes%20you%20don%27t%20even%20need%20to%20log%20in./32334 Western Digital My Cloud Vulnerability Western Digital patched a critical vulnerability in its MyCloud Read More
Send us a textJaguars go into the Bay area and take the soul from the 49ers. Did them in their own house. Defense shines as always, offense still trying to find it's way.
