What does the future of logistics really look like? In this episode, host Blythe Milligan shares details on her recent behind-the-scenes tour of DHL’s Export Facility and Innovation Center in Chicago. From sorting 10,000 packages an hour with only a dozen employees to integrating robotics and generative AI, the tour demonstrates Read More
Extracting Data From JPEGs Didier shows how to efficiently extract data from JPEGs using his tool jpegdump.py https://isc.sans.edu/diary/A%20JPEG%20With%20A%20Payload/32048 Windows Recall Export in Europe In its latest insider build for Windows 11, Microsoft is testing an export feature for data stored by Recall. The feature is limited to European users and Read More
Send a textDr. Koren joins Kevin Geddings to reflect on his conversations with Harvard Medical School classmates at his class reunion. He recounts stories of these Harvard medical doctors struggling to navigate the healthcare system despite their medical training and how clinical trials provide a valuable resource for helping patients Read More
Katz Stealer in JPG Xavier found some multistage malware that uses an Excel Spreadsheet and an HTA file to load an image that includes embeded a copy of Katz stealer. https://isc.sans.edu/diary/More+Steganography/32044 https://unit42.paloaltonetworks.com/malicious-javascript-using-jsfiretruck-as-obfuscation/ JavaScript obfuscated with JSF*CK is being used on over 200,000 websites to direct victims to malware Expired Discord Read More
Send a textDr. Michael Koren interviews Lavern Dowell, an advanced registered nurse practitioner who specializes in diabetes care. They discuss her approach to treating the whole person and how mental health can impact everything from diet and exercise to the ability to go see a physician. They also emphasize the Read More
Automated Tools to Assist with DShield Honeypot Investigations https://isc.sans.edu/diary/Automated%20Tools%20to%20Assist%20with%20DShield%20Honeypot%20Investigations%20%5BGuest%20Diary%5D/32038 EchoLeak: Zero-Click Microsoft 365 Copilot Data Leak Microsoft fixed a vulnerability in Copilot that could have been abused to exfiltrate data from Copilot users. Copilot mishandled instructions an attacker included in documents inspected by Copilot and executed them. https://www.aim.security/lp/aim-labs-echoleak-blogpost Thunderbolt Vulnerability Read More
Quasar RAT Delivered Through Bat Files Xavier is walking you through a quick reverse analysis of a script that will injection code extracted from a PNG image to implement a Quasar RAT. https://isc.sans.edu/diary/Quasar%20RAT%20Delivered%20Through%20Bat%20Files/32036 Delayed Windows 11 24H2 Rollout Microsoft slightly throttled the rollout of windows 11 24H2 due to issues Read More
In this episode, we explore the transformative power of boxing with “Coach PJ” Shirdan from FightCamp, a cutting-edge at-home boxing and kickboxing training system. Discover how the art of boxing not only enhances physical fitness but also fosters discipline and resilience—crucial traits for those on the front lines. We’ll tackle Read More
Send a textDermatologist Dr. Michael Bernhardt joins Dr. Eric Schramm to discuss hidradenitis suppurativa (HS), a debilitating skin condition that affects skin creases such as the armpits and groin. HS is an inflammatory condition that can be misdiagnosed for years. New medications target the underlying inflammation. Treatments are currently in Read More
Microsoft Patch Tuesday Microsoft today released patches for 67 vulnerabilities. 10 of these vulnerabilities are rated critical. One vulnerability has already been exploited and another vulnerability has been publicly disclosed before today. https://isc.sans.edu/diary/Microsoft%20Patch%20Tuesday%20June%202025/32032 Adobe Vulnerabilities Adobe released patches for 7 different applications. Two significant ones are Adobe Commerce and Adobe Read More
Is EDI broken or just misunderstood? In this reunion episode of Freight Friends, Blythe Brumleve welcomes Grace Sharkey back to the mic to talk about her new role at Orderful, the state of freight media, and why so many companies are still struggling with EDI integrations. From customer horror stories to Read More
OctoSQL & Vulnerability Data OctoSQL is a neat tool to query files in different formats using SQL. This can, for example, be used to query the JSON vulnerability files from CISA or NVD and create interesting joins between different files. https://isc.sans.edu/diary/OctoSQL+Vulnerability+Data/32026 Mirai vs. Wazuh The Mirai botnet has now been Read More
Send a textDr. Michael Koren joins Kevin Geddings to discuss the motivations of clinical trial veterans who repeatedly participate in medical research studies. Dr. Koren shares that these participants consistently cite the desire to "Make a Difference" as their primary motivation, pushing science and medicine forward for generations to come.Be Read More
Extracting With pngdump.py Didier extended his pngdump.py script to make it easier to extract additional data appended to the end of the image file. https://isc.sans.edu/diary/Extracting%20With%20pngdump.py/32022 16 React Native Packages for GlueStack Backdoored Overnight 16 npm packages with over a million weekly downloads between them were compromised. The compromised packages include Read More
Be Careful With Fake Zoom Client Downloads Miscreants are tricking victims into downloading fake Zoom clients (and likely other meeting software) by first sending them fake meeting invites that direct victims to a page that offers malware for download as an update to the Zoom client. https://isc.sans.edu/diary/Be%20Careful%20With%20Fake%20Zoom%20Client%20Downloads/32014 Python tarfile Vulnerability Read More
Welcome to Episode 403 of the Microsoft Cloud IT Pro Podcast where Ben and Scott catch up on some of their favorite announcements and news from Microsoft Build 2025. Your support makes this show possible! Please consider becoming a premium member for access to live shows and more. Check out Read More
Phishing e-mail that hides malicious links from Outlook users Jan found a phishing email that hides the malicious link from Outlook users. The email uses specific HTML comment clauses Outlook interprets to render or not render specific parts of the email s HTML code. Jan suggests that the phishing email Read More
In this episode, we sit down with Lt. Danny Smith, a retired firefighter whose 18 years of service took an unexpected turn during a harrowing cardiac event in 2017. Danny shares his transformative journey of navigating the critical crossroads of health and well-being.We explore the pivotal moment when Danny faced Read More
Send a textDr. Nikhil Kapila joins Dr. Michael Koren on this live MedEvidence! presentation. Dr. Kapila, a liver disease specialist, explains why we can't live without our liver. The doctors review what the liver does, what can cause damage to the liver, and what can go wrong when the liver Read More
vBulletin Exploits CVE-2025-48827, CVE-2025-48828 We do see exploit attempts for the vBulletin flaw disclosed about a week ago. The flaw is only exploitable if vBulltin is run on PHP 8.1, and was patched over a year ago. However, vBulltin never disclosed the type of vulnerability that was patched. https://isc.sans.edu/diary/vBulletin%20Exploits%20%28CVE-2025-48827%2C%20CVE-2025-48828%29/32006 Google Read More
