Drones are doing a lot more than flying packages. They’re quietly transforming how warehouses operate behind the scenes. In this episode of Freight Friends, Grace Sharkey and Blythe explore how drones are being used in logistics operations both inside and outside the warehouse, what the second half of 2025 might look Read More
DShield Honeypot Log Volume Increase Within the last few months, there has been a dramatic increase in honeypot log volumes and how often these high volumes are seen. This has not just been from Jesse s residential honeypot, which has historically seen higher log volumes, but from all of the Read More
Send a textOver the past 100 years, the poorest Americans have shifted from being underweight to becoming the group most likely to be overweight. Dr. Michael Koren joins Kevin Geddings to explore some of the social determinants of health underlying this trend. They touch on the complex biological, economic, and Read More
Experimental Suspicious Domain Feed Our new experimental suspicious domain feed uses various criteria to identify domains that may be used for phishing or other malicious purposes. https://isc.sans.edu/diary/Experimental%20Suspicious%20Domain%20Feed/32102 Wing FTP Server RCE Vulnerability Exploited CVE-2025-47812 Huntress saw active exploitation of Wing FTP Server remote code execution (CVE-2025-47812) on a customer on Read More
SSH Tunneling in Action: direct-tcp requests Attackers are compromising ssh servers to abuse them as relays. The attacker will configure port forwarding direct-tcp connections to forward traffic to a victim. In this particular case, the Yandex mail server was the primary victim of these attacks. https://isc.sans.edu/diary/SSH%20Tunneling%20in%20Action%3A%20direct-tcp%20requests%20%5BGuest%20Diary%5D/32094 Fortiguard FortiWeb Unauthenticated SQL Read More
Setting up Your Own Certificate Authority for Development: Why and How. Some tips on setting up your own internal certificate authority using the smallstep CA. https://isc.sans.edu/diary/Setting%20up%20Your%20Own%20Certificate%20Authority%20for%20Development%3A%20Why%20and%20How./32092 Animation-Driven Tapjacking on Android Attackers can use a click-jacking like trick to trick victims into clicking on animated transparent dialogs opened from other applications. Read More
In this compelling episode, we sit down with Lieutenant Andrew Kane, a seasoned veteran of the FDNY with three decades of experience. Drew was on the front lines at Ground Zero during 9/11 and has committed his life to supporting firefighters and their families in navigating mental health and substance Read More
Send a textDr. Michael Koren sits down with Dr. Allan Rosenfeld, a Canadian physician specializing in occupational medicine. The two doctors explore some of the realities of Canadian healthcare by moving through Dr. Rosenfeld's career in family practice, occupational medicine, and his personal use of the healthcare system. Dr. Rosenfeld Read More
Microsoft Patch Tuesday, July 2025 Today, Microsoft released patches for 130 Microsoft vulnerabilities and 9 additional vulnerabilities not part of Microsoft's portfolio but distributed by Microsoft. 14 of these are rated critical. Only one of the vulnerabilities was disclosed before being patched, and none of the vulnerabilities have so far Read More
What s My File Name Malware may use the GetModuleFileName API to detect if it was renamed to a name typical for analysis, like sample.exe or malware.exe https://isc.sans.edu/diary/What%27s%20My%20%28File%29Name%3F/32084 Atomic macOS infostealer adds backdoor for persistent attacks Malware analyst discovered a new version of the Atomic macOS info-stealer (also known as Read More
Send a textDr. Michael Koren joins Kevin Geddings to introduce the concept of "scienceploitation." He explains that many marketing tactics in the health and supplement industry are disguised as scientific claims. For example, phrases like "supports immune health" often sound convincing but are meaningless without specific, evidence-based backing from rigorous Read More
Interesting ssh/telnet usernames Some interesting usernames observed in our honeypots https://isc.sans.edu/diary/A%20few%20interesting%20and%20notable%20ssh%20telnet%20usernames/32080 More sudo trouble The host option in Sudo can be exploited to execute commands on unauthorized hosts. https://www.stratascale.com/vulnerability-alert-CVE-2025-32462-sudo-host CitrixBleed2 PoC Posted (CVE-2025-5777) WatchTwer published additional details about the recently patched CitrixBleed vulnerability, including a PoC exploit. https://labs.watchtowr.com/how-much-more-must-we-bleed-citrix-netscaler-memory-disclosure-citrixbleed-2-cve-2025-5777/ Instagram Using Read More
Welcome to Episode 405 of the Microsoft Cloud IT Pro Podcast. In this episode, Ben and Scott tackle the increasingly complex world of Microsoft’s notebook ecosystem, exploring the new Copilot notebooks feature and how it relates to existing tools like OneNote and Loop. They break down the confusing landscape where Read More
What happens when the company you helped grow suddenly shuts down? For Mia Mazel, it sparked the launch of a brand new one, Talento. Recorded live at TMSA Elevate in Austin, this conversation with Mia explores her journey from grad student to logistics leader, how she navigated the closure of Sworkz, Read More
Sudo chroot Elevation of Privilege The sudo chroot option can be leveraged by any local user to elevate privileges to root, even if no sudo rules are defined for that user. https://www.stratascale.com/vulnerability-alert-CVE-2025-32463-sudo-chroot Polymorphic ZIP Files A zip file with a corrupt End of Central Directory Record may extract different data Read More
In this episode, we sit down with Dr. Nolan Beise, the visionary CEO of Circl Brain Health. Imagine a world where you can optimize your mental performance just as you would your physical fitness. Dr. Beise takes us through the revolutionary technology behind wearable EEG brainwave measurements and how it Read More
Send a textDr. Michael Koren hosts Brian Achille, the Chief Operating Officer of the Certified Clinical Research Professionals Society (CCRPS). Brian draws a distinction between doing clinical research casually and doing it professionally. The distinction highlights how professional training and attitudes prove to be a benefit to research and the Read More
If you're still relying on check calls and spreadsheets to track freight, you're already behind. In this episode, Chain’s EVP of Sales, Kevin Coomes, joins the show to break down how his team is building AI-powered tools that make life easier for freight brokers, from exception management to proactive customer communication. Read More
Send a textCardiologist Michael Koren joins Kevin Geddings to discuss how kidney disease can offect other body systems, including the heart. The doctor explains that people with kidney dysfunction have significantly higher risks for cardiovascular problems including heart attacks, heart failure, and strokes. Dr. Koren differentiates between typical, insurance-driven care Read More
Scattered Spider Update The threat actor known as Scattered Spider is in the news again, this time focusing on airlines. But the techniques used by Scattered Spider, social engineering, are still some of the most dangerous techniques used by various threat actors. https://cloud.google.com/blog/topics/threat-intelligence/unc3944-proactive-hardening-recommendations?e=48754805 AMI BIOS Vulnerability Exploited CVE-2024-54085 A vulnerability Read More
