News

@MrEricAlmighty is back with another episode on his recurring series "Why you should watch ______ in less than 10 minutes!" and this week, we talk about The Great Pretender. Find out what the show's strengths are, what it's all about, and why you should find the time to watch this Read More

MSFT January 2021 Patch Tuesday https://isc.sans.edu/forums/diary/Microsoft+January+2021+Patch+Tuesday/26978/ Adobe Patches https://helpx.adobe.com/security.html MimeCast Cert Stolen https://www.mimecast.com/blog/important-update-from-mimecast/ Leaking Silhouettes of Cross-Origin Images https://blog.mozilla.org/attack-and-defense/2021/01/11/leaking-silhouettes-of-cross-origin-images/

Using the NVD Database API Part 3/3 https://isc.sans.edu/forums/diary/Using+the+NVD+Database+and+API+to+Keep+Up+with+Vulnerabilities+and+Patches+Tool+Drop+CVEScan+Part+3+of+3/26974/ Sysinternals Update https://docs.microsoft.com/en-us/sysinternals/ Ubiquiti Breach https://www.bleepingcomputer.com/news/security/networking-giant-ubiquiti-alerts-customers-of-potential-data-breach/ Run-Only AppleScript Reversing https://labs.sentinelone.com/fade-dead-adventures-in-reversing-malicious-run-only-applescripts/

Content marketing is always teaching us new tricks. This is why I wanted to share with you two segments from my recent co-hosting duties on Freightwaves' Put That Coffee Down. We talk about the Barstool Fund that's raising millions of dollars for small businesses and YouTuber Mr. Beast starting (and selling out) Read More

@MrEricAlmighty joins forces with Tyler to discuss where our individual journeys into watching anime started, how that has evolved over the years, and we give you several of our favorite anime series that you should be adding to your watch-list (and some you may want to avoid).Tyler is one of Read More

Maldoc Strings Analysis https://isc.sans.edu/forums/diary/Maldoc+Strings+Analysis/26966/ CVSS Reliablity Survey https://user-surveys.cs.fau.de/index.php?r=survey/index&sid=248857 Fake Trump Video Malware https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/updated-qnode-rat-downloader-distributed-as-trump-video-scandal/ SMS Phishing (Smishing) https://www.bbc.com/news/business-55563748 dnsren vulnerability https://www.exploit-db.com/exploits/49394

Using the NIST Database and API to Keep Up with Vulnerabilities https://isc.sans.edu/forums/diary/Using+the+NIST+Database+and+API+to+Keep+Up+with+Vulnerabilities+and+Patches+Part+1+of+3/26958/ Titan Security Key https://ninjalab.io/wp-content/uploads/2021/01/a_side_journey_to_titan.pdf The Great Suspender Google Chrome Extension https://www.theregister.com/2021/01/07/great_suspender_malware/ Brian Nishida: Ubuntu Artifacts Generated by Gnome Desktop Environment https://www.sans.org/reading-room/whitepapers/forensics/ubuntu-artifacts-generated-gnome-desktop-environment-40035

Welcome to The Writer's Block with Bobby Brown Jr.! This first episode we wanted to just ease you all into the show so we're glad you're here from start! This week Bobby and the team discussed his Take Two's 1:30 Snapchat Disaster, 3:44 breakdown of the pod, 14:17 what I'm Read More

Welcome to The Writer's Block with Bobby Brown Jr.! This first episode we wanted to just ease you all into the show so we're glad you're here from start! This week Bobby and the team discussed his Take Two's 1:30 Snapchat Disaster, 3:44 breakdown of the pod, 14:17 what I'm Read More

In Episode 211, Ben and Scott kick off 2021 (we made it!) with a discussion around What-If support being GA'd for Azure Resource Manager template deployments and how to configure and manage sensitivity labels for Microsoft Teams and Microsoft 365/Office 365 Groups. Sponsors Sperry Software – Powerful Outlook Add-ins developed to Read More

Zyxel Exploitation Under Way https://isc.sans.edu/forums/diary/Scans+for+Zyxel+Backdoors+are+Commencing/26954/ Fortinet Patches https://www.fortiguard.com/psirt?date=01-2021 Foxit PhantomPDF Patches https://www.foxitsoftware.com/support/security-bulletins.html Firefox Android Updates https://www.mozilla.org/en-US/security/advisories/mfsa2021-01/

Welcome to the first Netflix & PHIL episode of 2021! We hope you all are safe & healthy as we embark on what will hopefully be a MUCH better year for us all. For this episode, @PhilTheFilipino discusses one of his favorite shows, the Netflix series Master of None! Even Read More

Netfox Detective: An Alternative Open-Source Packet Analysis Tool https://isc.sans.edu/forums/diary/Netfox+Detective+An+Alternative+OpenSource+Packet+Analysis+Tool/26950/ ElectroRAT Drains Cryptocurrency Accounts https://www.intezer.com/blog/research/operation-ElectroRAT-attacker-creates-fake-companies-to-drain-your-crypto-wallets/ Chrome Will Prefer HTTPS over HTTP By Default https://chromium-review.googlesource.com/c/chromium/src/+/2568448 Android January Patch Day https://source.android.com/security/bulletin/2021-01-01 Telegram Publishes Users' Locations Online https://blog.ahmed.nyc/2021/01/if-you-use-this-feature-on-telegram.html

From a Small BAT File to Mass Logger Infostealer https://isc.sans.edu/forums/diary/From+a+small+BAT+file+to+Mass+Logger+infostealer/26946/ Citrix Releases Updates Addressing DTLS Flaw https://support.citrix.com/article/CTX289674 Zend Framework Deserialization Flaw https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3007 https://github.com/Ling-Yizhou/zendframework3-/blob/main/zend%20framework3%20 %20rce.md

How do you prefer to do lead outreach?Cold calling? Email? Linkedin?On the recent Freightwaves ‘Put That Coffee Down’ Kevin Hill and I broke down a study from Logistics Marketing Advisors that surveyed 100 industry professionals on how they want to be contacted by the sales teams of 3PLs, carriers, and Read More

Happy New Year! Welcome to the first episode of 2021. 2020 was an absolute dumpster fire from start to finish, so why don't we look ahead? Much like we did last year, @MrEricAlmighty & @PhilTheFilipino discuss all the things they're looking forward to in the new year. For this episode, Read More

Traffic Analysis Quiz https://isc.sans.edu/forums/diary/End+of+Year+Traffic+Analysis+Quiz/26940/ Zyxel Backdoor https://www.eyecontrol.nl/blog/undocumented-user-account-in-zyxel-products.html Microsoft Source Code Accessed As a Result of SolarWinds Backdoor https://msrc-blog.microsoft.com/2020/12/31/microsoft-internal-solorigate-investigation-update/

In Episode 210, Ben and Scott lament a broken Green Egg, discuss upcoming changes to the certification renewal process for Microsoft's role-based certifications, and some upcoming name changes that may impact your advanced hunting queries in Microsoft 365 Defender. Sponsors ShareGate - ShareGate's industry-leading products help IT professionals worldwide migrate Read More

@MrEricAlmighty and @PhilTheFilipino are back with our monthly series titled "What Did I Miss?", and for the month of December 2020, we had A LOT of major topics to cover:The Wait For It Playlist on Spotify (3:34)KFC Console (6:36)Robin Williams story (8:49)Spider-Man 3 casting and rumors (13:42)Disney Investor Day announcements Read More

Accessing Restricted Directory Listings via Your AV Solution https://isc.sans.edu/forums/diary/Want+to+know+whats+in+a+folder+you+dont+have+a+permission+to+access+Try+asking+your+AV+solution/26932/ Coin Miner Malware Written in Go https://www.intezer.com/blog/research/new-golang-worm-drops-xmrig-miner-on-servers/?fbclid=IwAR3eFiHCNoqr5mc2UAOcm8nocjUOjZn0cpcAiSoYmn__JtJfBbjqUUT1OwQ AutoHotKey Credential Stealer https://www.trendmicro.com/en_us/research/20/l/stealth-credential-stealer-targets-us-canadian-bank-customers.html