Send a textThe Touchdown Jaguars podcast returns with co-hosts Phil Barrera and James Johnson breaking down the Jaguars' preseason opener against the Pittsburgh Steelers, highlighting early signs of a new team identity under offensive coordinator Liam Coen.• Trevor Lawrence looks comfortable in new offense,• Liam Coen's system showing creativity with Read More
Microsoft Patch Tuesday https://isc.sans.edu/diary/Microsoft%20August%202025%20Patch%20Tuesday/32192 https://cymulate.com/blog/zero-click-one-ntlm-microsoft-security-patch-bypass-cve-2025-50154/ libarchive Vulnerability A libarchive vulnerability patched in June was upgraded from a low CVSS score to a critical one. Libarchive is used by compression software across various operating systems, making this a difficult vulnerability to patch https://www.freebsd.org/security/advisories/FreeBSD-SA-25:07.libarchive.asc Adobe Patches Adobe released patches for 13 different Read More
This solo episode of Everything is Logistics pulls back the curtain on CargoRex’s new Associations directory—why we built it, who it serves, and how to use it to find the right freight, logistics, and supply chain associations for your goals.You’ll hear the product decisions behind the category (taxonomy, search, and Read More
Erlang OTP SSH Exploits A recently patched and easily exploited vulnerability in Erlang/OTP SSH is being exploited. Palo Alto collected some of the details about this exploit activity that they observed. https://unit42.paloaltonetworks.com/erlang-otp-cve-2025-32433/ WinRAR Exploited WinRAR vulnerabilities are actively being exploited by a number of threat actors. The vulnerability allows for Read More
Google Paid Ads for Fake Tesla Websites Someone is setting up fake Tesla lookalike websites that attempt to collect credit card data from unsuspecting users trying to preorder Tesla products. https://isc.sans.edu/diary/Google%20Paid%20Ads%20for%20Fake%20Tesla%20Websites/32186 Compromising USB Devices for Persistent Stealthy Access USB devices, like Linux-based web cams, can be compromised to emulate malicious Read More
Send us a textNFL is BACK baby...well sorta. Its preason, new faces all over the Jaguars organization. Danika and Shay-La have been on a break because life happens but we back too. Jagaurs drafted the unicorn known as Travis Hunter. How do we feel about this roster and season? We Read More
Mass Internet Scanning from ASN 43350 Our undergraduate intern Duncan Woosley wrote up aggressive scans from ASN 43350 https://isc.sans.edu/diary/Mass+Internet+Scanning+from+ASN+43350+Guest+Diary/32180/#comments HTTP/1.1 Desync Attacks Portswigger released details about new types of HTTP/1.1 desync attacks it uncovered. These attacks are particularly critical for organizations using middleboxes to translate from HTTP/2 to HTTP/1.1 https://portswigger.net/research/http1-must-die Read More
Do Sextortion Scams Still Work in 2025? Jan looked at recent sextortion emails to check if any of the crypto addresses in these emails received deposits. Sadly, some did, so these scams still work. https://isc.sans.edu/diary/Do%20sextortion%20scams%20still%20work%20in%202025%3F/32178 Akira Ransomware Group s use of Drivers Guidepoint Security observed the Akira ransomware group using Read More
In this dynamic episode, join us as we sit down with Jim Burneka and Nick Magoteaux, the dynamic duo behind the Firefighter Health & Wellness Conference. From raw, personal stories to powerful insights about mental health, these two are on a mission to help first responders navigate the often-overlooked challenges Read More
Send a textDermatologist Dr. Kristen Stewart digs deep to get to the root of psoriasis, a skin condition that affects approximately 3% of Americans. She talks about the role of systemic inflammation and how excessive inflammation can impact multiple body systems beyond just the skin. Dr. Stewart reviews her experience Read More
Send a textFootball has returned to Duval! The “Touchdown Jaguars Podcast!” kicks off the preseason with a comprehensive look at training camp developments and what to expect when the Jaguars face the Pittsburgh Steelers in their first preseason game at EverBank Stadium.Host James Johnson dives into the unofficial depth chart Read More
Stealing Machinekeys for fun and profit (or riding the SharePoint wave) Bojan explains in detail how .NET uses Machine Keys to protect the VIEWSTATE, and how to abuse the VIEWSTATE for code execution if the Machine Keys are lost. https://isc.sans.edu/diary/Stealing%20Machine%20Keys%20for%20fun%20and%20profit%20%28or%20riding%20the%20SharePoint%20wave%29/32174 Perplexity is using stealth, undeclared crawlers to evade website no-crawl Read More
Before we can build a base on the Moon, we need something even more important than astronauts: a supply chain. In this episode of Everything is Logistics, we're exploring the "New Silk Road in Space" with Joe Pawelski, CTO and co-founder of CisLunar Industries. Joe breaks down how his company is Read More
Daily Trends Report A new trends report will bring you daily data highlights via e-mail. https://isc.sans.edu/diary/New%20Feature%3A%20Daily%20Trends%20Report/32170 NVidia Triton RCE Wiz found an interesting information leakage vulnerability in NVidia s Triton servers that can be leveraged to remote code execution. https://www.wiz.io/blog/nvidia-triton-cve-2025-23319-vuln-chain-to-ai-server Cursor AI MCP Vulnerability An attacker could abuse negligent Cursor Read More
Send a textThe back-to-school season represents an ideal time to reset health priorities and schedules, potentially more impactful than New Year's resolutions. Dr. Michael Koren joins Kevin Geddings to discuss how the changes that come with a new school year also include health changes and the inevitable spread of the Read More
Scans for pop3user with guessable password A particular IP assigned to a network that calls itself Unmanaged has been scanning telnet/ssh for a user called pop3user with passwords pop3user or 123456 . I assume they are looking for legacy systems that either currently run pop3 or ran pop3 in the Read More
Scattered Spider Related Domain Names A quick demo of our domain feeds and how they can be used to find Scattered Spider related domains https://isc.sans.edu/diary/Scattered+Spider+Related+Domain+Names/32162 Excel External Workbook Links to Blocked File Types Will Be Disabled by Default Excel will discontinue allowing links to dangerous file types starting as early Read More
Welcome to Episode 407 of the Microsoft Cloud IT Pro Podcast. In this episode, we dive deep into the Model Context Protocol (MCP) – a game-changing specification that’s extending the capabilities of Large Language Models (LLMs) and creating exciting new possibilities for IT professionals working with Microsoft Azure and Microsoft Read More
Securing Firebase: Lessons Re-Learned from the Tea Breach Inspried by the breach of the Tea app, Brendon Evans recorded a video to inform of Firebase security issues https://isc.sans.edu/diary/Securing%20Firebase%3A%20Lessons%20Re-Learned%20from%20the%20Tea%20Breach/32158 WebKit Vulnerability Exploited before Apple Patch A WebKit vulnerablity patched by Apple yesterday has already been exploited in Google Chrome. Google noted Read More
In this Clinicians Guide Masterclass, we delve into the intricate world of first responder mental health with Sarah Gura, MA, LCPC, LMHC, EMDR, a seasoned clinician whose expertise sheds light on the intersection of legal intricacies and compassionate care. Join us as we explore essential topics, including confidentiality standards, navigating workers' Read More
