News

Microsoft Patch Tuesday https://isc.sans.edu/diary/Microsoft+July+2022+Patch+Tuesday/28838 Adobe Updates https://helpx.adobe.com/security/security-bulletin.html SAP Patches https://dam.sap.com/mac/app/e/pdf/preview/embed/ucQrx6G?ltr=a&rc=10 IBM Patches https://www.ibm.com/support/pages/node/6602255 https://www.ibm.com/support/pages/node/6602259 https://www.ibm.com/support/pages/node/6602251

What a Shipper Wants with The Produce Industry PodcastMost of us in shipping know how complex the busy produce season can be. Which is why many freight brokers go above and beyond to try to reach those shippers. In this episode, we're talking with citrus farm owner turned shipper turned Read More

We hope you aren't listening to this weeks episode in a theatre! You are going to be hearing us say Macbeth quite a few times in this episode. Kate is going to tell us all about the Astor Riots from May 10, 1849. Riots that happened over competition of who Read More

Rogers Outage https://about.rogers.com/news-ideas/a-message-from-rogers-president-and-ceo/ Rolling Pwn https://rollingpwn.github.io/rolling-pwn/ GitHub Runners mine Cryptocoins https://www.trendmicro.com/en_us/research/22/g/unpacking-cloud-based-cryptocurrency-miners-that-abuse-github-ac.html SANSFIRE Keynote Stream https://www.sans.org/webcasts/the-internet-storm-center-how-to-use-and-how-to-contribute-data/

@PhilTheFilipino & @MrEricAlmighty have had really high expectations for the 4th Thor film in the MCU, Love and Thunder. With the positive reception of it's predecessor, was this an easy home run? Or did Marvel continue it's run of underwhelming Phase 4 projects? After seeing the film on opening night, Read More

SANSFIRE Keynote Stream https://www.sans.org/webcasts/the-internet-storm-center-how-to-use-and-how-to-contribute-data/ Extracting URLs from Emotet with Cyberchef https://isc.sans.edu/forums/diary/Excel%204%20Emotet%20Maldoc%20Analysis%20using%20CyberChef/28830/ Microsoft rolling Back Macro Policy Change https://techcommunity.microsoft.com/t5/microsoft-365-blog/helping-users-stay-safe-blocking-internet-macros-by-default-in/ba-p/3071805 Checkmate Ransomware Affected Poorly Configured QNAP NAS https://www.qnap.com/en/security-advisory/QSA-22-21 PyPi Requires 2FA for critical packages https://pypi.org/security-key-giveaway/

This weeks mini episode was suggested to us by one of our favorite listeners Chandi. She is the co-host of the Bound By The Cloak podcast. You can follow her specifically on Twitter @boundbythecloak and you can checkout their podcast at https://boundbythecloak.com/ . Thanks so much Chandi!!This was a thread Read More

In Episode 289, Ben and Scott dive into announcements for Windows Admin Center for ARC-enabled servers, Azure Gateway Load Balancer [maybe] reaching GA, OAuth 2.0 client credential flow for POP, and IMAP and Exchange Online, and kind-of/sort-of nested groups in Azure AD. Like what you hear and want to support Read More

In this Freightwaves Now mashup, I'm sharing 4 different clips from previous appearances discussing how freight companies can prepare their marketing plans now should a recession hit our industry hard. It's not all doom and gloom but if the last two years have taught us anything, it's that we gotta be Read More

How Many SANs are Insane https://isc.sans.edu/forums/diary/How+Many+SANs+are+Insane/28820/ Fortinet July Updates https://fortiguard.fortinet.com/psirt?date=07-2022 Phishing Attacks Getting Trickier https://www.sans.org/newsletters/ouch/phishing-attacks-getting-trickier Quantum Safe Ciphers https://csrc.nist.gov/News/2022/pqc-candidates-to-be-standardized-and-round-4 Apple Proposes Lockdown Mode https://www.apple.com/newsroom/2022/07/apple-expands-commitment-to-protect-users-from-mercenary-spyware/

Ever had recurring stressful memories, nightmares, or emergency calls that re-activated a traumatic event? First Responder therapists Dr. Stacy Raymond and Bonnie Rumilly, LCSW will be talking about EMDR, a powerfully effective way to take the charge out of stressful memories and reprocess them.​​First responders are often placed in situations Read More

@MrEricAlmighty is back with a new episode from his recurring series "Why you should watch ______ in less than 10 minutes!" and this week, we talk about Komi Can't Communicate. Find out what the show's strengths are, what it's all about, and why you should find the time to watch Read More

Send a textThis month's MedEvidence! Radio Dr. Michael Koren and Kevin Geddings discuss Diversity in Clinical Research: Challenges and Triumphs.  Also included in this month's MedEvidence! Radio Is there too much talk or not enough about diversity in clinical trials?What is the purpose of diversity in clinical trials?What population participates most in Read More

EternalBlue 5 Years After WannaCry and NotPetya https://isc.sans.edu/forums/diary/EternalBlue+5+years+after+WannaCry+and+NotPetya/28816/ OpenSSL Patches Two Vulnerabilities https://www.openssl.org/news/secadv/20220705.txt Iconburst NPM Software Supply Chain Attack https://blog.reversinglabs.com/blog/iconburst-npm-software-supply-chain-attack-grabs-data-from-apps-websites

There's a lot of doubt running rampant in the markets but as logistics professionals--staying on top of those moments that can shift consumer behavior can mean the survival of your company. And what better way to stay on top of those shifts than to hear insight from some of the Read More

Bill Gross is known as the junk bond king. He made a fortune innovating the investment world. He was a petty petty man with a huge ego. He got so petty with the company he created he got fired from it. His divorce from his wife was nothing short of Read More

7Zip Mark of the Web For Office Files https://isc.sans.edu/forums/diary/7Zip+MoW+For+Office+files/28812/ SessionManager Backdoor Seen with IIS https://securelist.com/the-sessionmanager-iis-backdoor/106868/ Googe Chrome Stable Channel Update https://chromereleases.googleblog.com/2022/03/stable-channel-update-for-desktop_25.html

On today's episode, Jay and Phil previewed six players on the Jags' roster who have something to prove heading into the 2022 season. Many of these players were high draft picks made by the Jags or free agents the team spent a lot of money on, and after not quite Read More

Have you ever had a bad landlord? We all probably have. Are you a bad landlord? Shame on you!! On todays mini episode, Kate talks about a particularly bad landlord that never took care of issues in the rental. The tenant made sure that any potential new tenants knew about Read More

Case Study: Cobalt Strike Server Lives on After its Domain is Suspended https://isc.sans.edu/forums/diary/Case+Study+Cobalt+Strike+Server+Lives+on+After+Its+Domain+Is+Suspended/28804/ CVE-2022-28219: Unauthenticated XXE to RCE and Domain Compromise in ManageEngine ADAudit Plus https://www.horizon3.ai/red-team-blog-cve-2022-28219/ CWE Top 25 Update https://cwe.mitre.org/top25/archive/2022/2022_cwe_top25.html#analysis