CTRL-Z DLL Hooking Attackers may use a simple reload trick to overwrite breakpoints left by analysts to reverse malicious binaries. https://isc.sans.edu/diary/CTRL-Z%20DLL%20Hooking/32294 Global Admin in every Entra ID tenant via Actor tokens As part of September s patch Tuesday, Microsoft patched CVE-2025-55241. The discoverer of the vulnerability, Dirk-jan Mollema has published Read More
In this episode, we address the realities of mental health in high-stress professions, the impact of training, and the often-overlooked importance of creative outlets for healing with John Creamer, the Deputy Executive Director of the Florida Deputy Sheriff’s Association. With over 32 years in law enforcement and a wealth of Read More
Send a textDr. Michael Myers joins Dr. Michael Koren for an interview about his physician journey from medical school to private practice, healthcare administration, health consulting, teaching, and writing. Dr. Myers talks about his serendipitous journey through many parts of the healthcare system and how this shaped his unique career Read More
Why You Need Phishing-Resistant Authentication NOW. The recent compromise of a number of high-profile npmjs.com accounts has yet again shown how dangerous a simple phishing email can be. https://isc.sans.edu/diary/Why%20You%20Need%20Phishing%20Resistant%20Authentication%20NOW./32290 S1ngularity/nx Attackers Strike Again A second wave of attacks has hit over a hundred npm-related GitHub repositories. The updated payload implements Read More
From AI agents that negotiate contracts to the surprising world of private-label branding, this month’s Freight Friends covers the big shifts shaping logistics right now. Blythe and Grace Sharkey break down Grace’s experience at the Change event, the rise of HappyRobot and other AI-driven workflows, the state of reverse logistics, Read More
Apple Updates Apple released major updates for all of its operating systems. In addition to new features, these updates patch 33 different vulnerabilities. https://isc.sans.edu/diary/Apple%20Updates%20Everything%20-%20iOS%20macOS%2026%20Edition/32286 Microsoft End of Life October 14th, support for Windows 10, Exchange 2016, and Exchange 2019 will end. https://support.microsoft.com/en-us/windows/windows-10-support-ends-on-october-14-2025-2ca8b313-1946-43d3-b55c-2b95b107f281#:~:text=As%20a%20reminder%2C%20Windows%2010,one%20that%20supports%20Windows%2011. https://techcommunity.microsoft.com/blog/exchange/t-9-months-exchange-server-2016-and-exchange-server-2019-end-of-support/4366605 Phishing Targeting Rust Developers Rust developers are Read More
Send us a textWelp, almost doesn't count. Jaguars lose at the end to the Bengals in a game they could have had. Shay-La and Danika talk about the highs and lows of the game. Danika also went to this game and she walks you through her trip and tailgating experience.
Send a textDr. Michael Koren joins Kevin Geddings to share insights from his recent meeting with Alzheimer's expert Dr. Reza Bolouri. The doctor highlights advances in understanding the disease's progression, mechanisms, and treatment options. This progress offers new hope for patients through early screening, diagnosis, and medications that have been Read More
Web Searches For Archives Didier observed additional file types being searched for as attackers continue to focus on archive files as they spider web pages https://isc.sans.edu/diary/Web%20Searches%20For%20Archives/32282 FBI Flash Alert: Salesforce Attacks The FBI is alerting users of Salesforce of two different threat actors targeting Salesforce. There are no new vulnerabilities Read More
DShield SIEM Docker Updates Guy updated the DShield SIEM which graphically summarizes what is happening inside your honeypot. https://isc.sans.edu/diary/DShield%20SIEM%20Docker%20Updates/32276 Again: Sonicwall SSL VPN Compromises The Australian Government s Signals Directorate noted an increase in compromised Sonicwall devices. https://www.cyber.gov.au/about-us/view-all-content/alerts-and-advisories/ongoing-active-exploitation-of-sonicwall-ssl-vpns-in-australia Website Keystroke Logging Many websites log every keystroke, not just data submitted Read More
DShield SIEM Docker Updates Guy updated the DShield SIEM which graphically summarizes what is happening inside your honeypot. https://isc.sans.edu/diary/DShield%20SIEM%20Docker%20Updates/32276 Again: Sonicwall SSL VPN Compromises The Australian Government s Signals Directorate noted an increase in compromised Sonicwall devices. https://www.cyber.gov.au/about-us/view-all-content/alerts-and-advisories/ongoing-active-exploitation-of-sonicwall-ssl-vpns-in-australia Website Keystroke Logging Many websites log every keystroke, not just data submitted Read More
Welcome to Episode 410 of the Microsoft Cloud IT Pro Podcast where hosts Jay Leask and Joy Apple are joined by special guest Ben Stegink for a discussion recorded live from the North American Cloud and Collaboration Summit in Branson. In this episode we focus on how organizations must adapt Read More
BASE64 Over DNS The base64 character set exceeds what is allowable in DNS. However, some implementations will work even with these invalid characters. https://isc.sans.edu/diary/BASE64%20Over%20DNS/32274 Google Chrome Update Google released an update for Google Chrome, addressing two vulnerabilities. One of the vulnerabilities is rated critical and may allow code execution. https://chromereleases.googleblog.com/2025/09/stable-channel-update-for-desktop_9.html Read More
In this episode, we hear from seven influential FDNY leaders who share their insights on effective leadership, resilience, and wellness:- Captain Frank Leto: Discusses the rapid formation of FDNY mental health resources after 9/11.- Lieutenant Drew Kane: Offers insights into the support provided by the FDNY Counseling Services Unit to Read More
Send a textJoin Cardiologist Dr. Michael Koren as he speaks in front of a live audience to break down the truth about triglycerides. Triglycerides are a type of fat in our blood that acts as an energy source for the body, but high levels can have serious impacts on your Read More
Microsoft Patch Tuesday As part of its September patch Tuesday, Microsoft addressed 177 different vulnerabilities, 86 of which affect Microsoft products. None of the vulnerabilities has been exploited before today. Two of the vulnerabilities were already made public. Microsoft rates 13 of the vulnerabilities are critical. https://isc.sans.edu/diary/Microsoft%20Patch%20Tuesday%20September%202025/32270 Adobe Patches Adobe Read More
Anne Reinke didn’t plan on leaving the Transportation Intermediaries Association, but when the longtime IANA leader retired after more than two decades, she received an offer she couldn’t refuse. With a lifelong passion for rail and deep experience at CSX and TIA, Anne stepped into the role of President and Read More
Major npm compromise A number of high-profile npm libraries were compromised after developers fell for a phishing email. This compromise affected libraries with a total of hundreds of millions of downloads a week. https://bsky.app/profile/bad-at-computer.bsky.social/post/3lydioq5swk2y https://github.com/orgs/community/discussions/172738 https://github.com/chalk/chalk/issues/656#issuecomment-3266894253 https://www.aikido.dev/blog/npm-debug-and-chalk-packages-compromised HTTP Request Signatures It looks like some search engines and AI bots are Read More
Send us a textIt is offically football season and Jagaurs secure it with a win vs the Carolina Panthers. Danika discribes getting back to tailgating at The Slab. How the game played out between the two big kitties. Looking towards Cincy and Danika's road trip. Also STOP THE PRESS! BREAKING Read More
Send a textDr. Michael Koren joins Kevin Geddings to discuss the importance of taking reasonable precautions for health and safety. He recounts his experience at a recent Jacksonville Jaguars football game, which was delayed out of an abundance of caution due to a lightning storm. Dr. Koren explains that although Read More
