Send a textCardiothoracic surgeon Dr. Mustafa "Dr. Kurk" Kurkluoglu joins cardiologist Dr. Michael Koren to discuss three mechanisms that affect heart health:Oxidative stress, dangerous charged particles that can damage cellsInflammation, an immune process that can get out of controlEndothelial dysfunction, cells that line blood vessels stop working properlyThe two doctors Read More
Apple Updates Everything: July 2025 Edition Apple released updates for all of its operating systems patching 89 different vulnerabilities. Many vulnerabilities apply to multiple operating systems. https://isc.sans.edu/diary/Apple%20Updates%20Everything%3A%20July%202025/32154 Python Triage A quick python script by Xavier to efficiently search through files, even compressed once, for indicators of compromise. https://isc.sans.edu/diary/Triage+is+Key+Python+to+the+Rescue/32152/ PaperCut Attacks Read More
The logistics industry can often feel like a numbers game, but Linda Carrion is here to remind us it’s always been about the people, especially the drivers. In this episode, Linda shares how she went from medical assistant to CEO of two freight companies, why her approach to leadership is grounded Read More
Parasitic SharePoint Exploits We are seeing attacks against SharePoint itself and attempts to exploit backdoors left behind by attackers. https://isc.sans.edu/diary/Parasitic%20Sharepoint%20Exploits/32148 Cisco ISE Vulnerability Exploited A recently patched vulnerability in Cisco ISE is now being exploited. The Zero Day Initiative has released a blog detailing the exploit chain to obtain code Read More
Send a textCardiologist Dr. Michael Koren joins Kevin Geddings to talk about how we can learn a lot about medicine by knowing our history. The duo discuss how the history of healthcare, including smallpox inoculation in the 1800s, can inform us of the benefits of life-saving medicines like vaccines. They Read More
Linux Namespaces Linux namespaces can be used to control networking features on a process-by-process basis. This is useful when trying to present a different network environment to a process being analysed. https://isc.sans.edu/diary/Sinkholing%20Suspicious%20Scripts%20or%20Executables%20on%20Linux/32144 Coyote in the Wild: First-Ever Malware That Abuses UI Automation Akamai identified malware that takes advantage of Microsoft Read More
New File Integrity Tool: ficheck.py Jim created a new tool, ficheck.py, that can be used to verify file integrity. It is a drop-in replacement for an older tool, fcheck, which was written in Perl and no longer functions well on modern Linux distributions. https://isc.sans.edu/diary/New%20Tool%3A%20ficheck.py/32136 Mitel Vulnerability Mitel released a patch Read More
Reversing SharePoint Toolshell Exploits CVE-2025-53770 and CVE-2025-53771 A quick walk-through showing how to decode the payload of recent SharePoint exploits https://isc.sans.edu/diary/Analyzing%20Sharepoint%20Exploits%20%28CVE-2025-53770%2C%20CVE-2025-53771%29/32138 Compromised JavaScript NPM is Package The popular npm package is was compromised by malware. Luckily, the malicious code was found quickly, and it was reversed after about five hours. Read More
What if the key to mental wellness lies not just in the mind but in the bed? In this eye-opening episode, Dr. Leah Kaylor, the FBI's sleep expert helps to unravel the intricate relationship between sleep and resilience, exploring how addressing sleep issues can spark essential conversations about mental health Read More
Send a textDr. Michael Greger joins Dr. Michael Koren to discuss his life's work spreading nutritional knowledge. Dr. Greger talks about how a change in diet and lifestyle helped add 31 years to his grandmother's prognosis and how this event convinced him to go into medicine. He explains how a Read More
Microsoft Updates SharePoint Vulnerability Guidance CVE-2025-53770 and CVE-2025-53771 Microsoft released its update for SharePoint 2016, completing the updates across all currently supported versions. https://msrc.microsoft.com/blog/2025/07/customer-guidance-for-sharepoint-vulnerability-cve-2025-53770/ WinZip MotW Privacy Starting with version 7.10, WinZip introduced an option to no longer include the download URL in zip files as part of the Mark Read More
Microsoft Released Patches for SharePoint Vulnerability CVE-2025-53770 CVE-2025-53771 Microsoft released a patch for the currently exploited SharePoint vulnerability. It also added a second CVE number identifying the authentication bypass vulnerability. https://msrc.microsoft.com/blog/2025/07/customer-guidance-for-sharepoint-vulnerability-cve-2025-53770/ How Quickly Are Systems Patched? Jan took Shodan data to check how quickly recent vulnerabilities were patched. The quick Read More
Send a textDr. Michael Koren joins Kevin Geddings to discuss how clinical research sites like ENCORE Research Group and medical information companies like MedEvidence can build and give back to communities by sharing what they know. Dr. Koren explains that medical experts can help people understand complex topics such as Read More
SharePoint Servers Exploited via 0-day CVE-2025-53770 Late last week, CodeWhite found a new remote code execution exploit against SharePoint. This vulnerability is now actively exploited. https://isc.sans.edu/diary/Critical+Sharepoint+0Day+Vulnerablity+Exploited+CVE202553770+ToolShell/32122/ Veeam Voicemail Phishing Attackers appear to impersonate VEEAM in recent voicemail-themed phishing attempts. https://isc.sans.edu/diary/Veeam%20Phishing%20via%20Wav%20File/32120 Passkey Phishing Attack A currently active phishing attack takes advantage Read More
Hiding Payloads in Linux Extended File Attributes Xavier today looked at ways to hide payloads on Linux, similar to how alternate data streams are used on Windows. Turns out that extended file attributes do the trick, and he presents some scripts to either hide data or find hidden data. https://isc.sans.edu/diary/Hiding%20Payloads%20in%20Linux%20Extended%20File%20Attributes/32116 Read More
Welcome to Episode 406 of the Microsoft Cloud IT Pro Podcast. In this episode, Ben and Scott discuss their recent experiences and thoughts on Microsoft’s Copilot features and agents, specifically focusing on the Researcher and Analyst agents. They share practical applications and benefits of these tools, such as using Researcher Read More
More Free File Sharing Services Abuse The free file-sharing service catbox.moe is abused by malware. While it officially claims not to allow hosting of executables, it only checks extensions and is easily abused https://isc.sans.edu/diary/More%20Free%20File%20Sharing%20Services%20Abuse/32112 Ongoing SonicWall Secure Mobile Access (SMA) Exploitation Campaign using the OVERSTEP Backdoor A group Google identifies Read More
Join us for an insightful conversation with Doug Allen, the author of “An Operator's Guide to the Nervous System”. With a deep commitment to serving military personnel and the first responder community, Doug offers a fresh perspective on achieving peak performance through an innovative technique that recalibrates your nervous system Read More
Send a textPolycystic kidney disease (PKD) is the most common inherited kidney disease. Those with PKD have a 50% chance of passing it on to their children and have progressively worse kidney function as they age. World-known PKD researcher Dr. Fouad Chebib joins Dr. Michael Koren to discuss the symptoms, Read More
Keylogger Data Stored in an ADS Xavier came across a keystroke logger that stores data in alternate data streams. The data includes keystroke logs as well as clipboard data https://isc.sans.edu/diary/Keylogger%20Data%20Stored%20in%20an%20ADS/32108 Malvertising Homebrew An attacker has been attempting to trick users into installing a malicious version of Homebrew. The fake software Read More
