Keeping Track of Time: Network Time Protocol and GPSD Bug https://isc.sans.edu/forums/diary/Keeping+Track+of+Time+Network+Time+Protocol+and+a+GPSD+Bug/27886/ Apple Airtags Stored XSS https://medium.com/@bobbyrsec/zero-day-hijacking-icloud-credentials-with-apple-airtags-stored-xss-6997da43a216 CISA/NSA Guidance To Configure VPNs https://media.defense.gov/2021/Sep/28/2002863184/-1/-1/0/CSI_SELECTING-HARDENING-REMOTE-ACCESS-VPNS-20210928.PDF Facebook Open Sourcing "Mariana Trench" Tool To Analyze Android and Java Apps https://engineering.fb.com/2021/09/29/security/mariana-trench/
TLS 1.3 and SSL: The Current State of Affairs https://isc.sans.edu/forums/diary/TLS+13+and+SSL+the+current+state+of+affairs/27882/ EFF Discontinues HTTPS Everywhere Plugin https://www.eff.org/deeplinks/2021/09/https-actually-everywhere Malicious CryptoCoin Wallet https://discourse.mozilla.org/t/got-hacked-by-the-add-on-called-safepal-wallet/85797 Microsoft Automates Exchange Mitigations https://techcommunity.microsoft.com/t5/exchange-team-blog/new-security-feature-in-september-2021-cumulative-update-for/ba-p/2783155
September has Truck Driver Appreciation Week and that means you’ve likely seen several posts on your social media feeds “Thanking a Trucker.” But what are some ways you can do more than a social media post? We’re breaking down some campaigns being run by some of the bigger companies but Read More
This episode Bobby and Viktoriya open up to talk more about the official Comedy Zone partnership announcement. I've spent the last 3 weekends there seeing comics like Rod Man, Samuel J Comroe and Vincent Bryant performing and we spoke about how dope it is watching live professional comedy shows. Also Read More
iOS15 is here and with that, we enter a new era of digital marketing. Why? Because the data companies will be able to collect will be severely limited. Which makes it more important than ever to focus on building your first-party data collection process. So that's what we're covering in today's episode to Read More
@PhilTheFilipino & @MrEricAlmighty are here with our latest review to tell you everything you need to know about Dear Evan Hansen! After many years of hoping that the popular Broadway play would find it's way onto the big screen, it is FINALLY here...but is it worth your time? Or is Read More
Mobile Device Inventory via Active Sync https://isc.sans.edu/forums/diary/Keep+an+Eye+on+Your+Users+Mobile+Devices+Simple+Inventory/27868/ Autodiscover Attacks https://autodiscover-vulnerable-tlds.com https://wiki.mozilla.org/Public_Suffix_List https://www.guardicore.com/labs/autodiscovering-the-great-leak/ Three More 0-Day Vulnerabilities in iOS https://habr.com/en/post/579714/ original russian version: https://habr.com/en/post/579716/ Cisco CAPWAP Vulnerability https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ewlc-capwap-rce-LYgj8Kf Sonicwall SMA 100 Series Vulnerablity https://www.sonicwall.com/support/product-notification/security-notice-critical-arbitrary-file-delete-vulnerability-in-sonicwall-sma-100-series-appliances/210819124854603/
Ayyee whats good pod gang! I made $34 Dollars podcasting this month thanks to you all!! So here's a new audio exclusive episode ft Viktoriya and my friend Asia chimes in occasionally! This was Viks first time back on the podcast since I left Tallahassee so we caught up a Read More
Excel Recipe: Some VBA Code with a Touch of Excel4 Macro https://isc.sans.edu/forums/diary/Excel+Recipe+Some+VBA+Code+with+a+Touch+of+Excel4+Macro/27864/ Windows Platform Binary Table Weakness https://eclypsium.com/2021/09/20/everyone-gets-a-rootkit/ Apple Patches Older iOS/MacOS Versions https://support.apple.com/en-us/HT201222 Broken Digital Signatures Used to Foil Malware Detection https://blog.google/threat-analysis-group/financially-motivated-actor-breaks-certificate-parsing-avoid-detection/
In Episode 248, Ben and Scott dive into the recently announced capability to go passwordless for your consumer Microsoft account, the GA of AAD-join for your virtual machines in AVD host pools, and per-Power App conditional access with authentication context in Azure AD. Sponsors ShareGate - ShareGate's industry-leading products help Read More
In this episode, we’re talking about the flood of technology that has hit the logistics market and how it can make or break a company should they choose the wrong provider. But how do you know what technology is right for your business? That’s what our guest Mike Mulqueen of Read More
@PhilTheFilipino & @MrEricAlmighty are back with our most casual episode on the podcast called Tirades and Hot Takes, where each month, we rant on different topics and unpopular opinions that we get from the internet, friends, and/or our listeners, with no limits on where we can go next. In anticipation Read More
A First Look at Apple's iOS 15 "Private Relay" feature https://isc.sans.edu/forums/diary/A+First+Look+at+Apples+iOS+15+Private+Relay+feature/27858/ macOS Finder Security Feature Bypass Leads to Possible RCE https://ssd-disclosure.com/ssd-advisory-macos-finder-rce/ VMWare vCenter Advisory https://blogs.vmware.com/vsphere/2021/09/vmsa-2021-0020-what-you-need-to-know.html NetGear Circle Parental Control Vulnerablity https://blog.grimm-co.com/2021/09/mama-always-told-me-not-to-trust.html
In this episode, we have Big Ed Burns and his son Ed Burns also joining the show to talk about bridging the gap between the family dynamics of running a business together--especially when you can combine the superpowers of the veteran leadership with new insights. Connect with Big Ed Burns and Read More
Welcome back to our monthly series, The Game Room Where It Happens! Since we've been gaming practically our entire lives, we discuss a different gaming franchise each month. This month, @PhilTheFilipino gets into one of his favorite games of the last few years, Jurassic World Evolution. & for this episode, Read More
Malicious Calendar Subscriptions Are Back https://isc.sans.edu/forums/diary/Malicious+Calendar+Subscriptions+Are+Back/27846/ Simple Analysis of a CVE-2021-40444 (MSHTML) Document https://isc.sans.edu/forums/diary/Simple+Analysis+Of+A+CVE202140444+docx+Document/27848/ Mirai Botnet Hunting OMIGOD https://twitter.com/1ZRR4H/status/1438580885142507528 https://isc.sans.edu/port.html?port=1270 Exploit for Netgear Flaws Available https://gynvael.coldwind.pl/?id=742
Owner of Metromax Dispatch, Metromax Solutions, and Metromax Express Demarco Thomas sits down with The Digital Dispatch podcast to talk about his entrepreneurship journey, why outsourcing in logistics is important, and the opportunities in the last-mile sector. Many of us in the logistics space weren’t born into it--we came into it Read More
