Send a textOn this episode, recorded in front of a live audience, Cardiologist Dr. Michael Koren is joined by pulmonologist Dr. Mitchell Rothstein to discuss Chronic Obstructive Pulmonary Disease (COPD). COPD is obstruction of the lungs, making it hard to breathe and represents a significant health challenge . It affects Read More
Online Services Again Abused to Exfiltrate Data Attackers like to abuse free online services that can be used to exfiltrate data. From the originals , like pastebin, to past favorites like anonfiles.com. The latest example is gofile.io. As a defender, it is important to track these services to detect exfiltration Read More
AI is being hyped as the magic bullet for supply chains—but what happens when your infrastructure isn’t ready to support it? In this episode, Blythe Brumleve chats with David Bell, CEO of Cloneops.ai, about the cold, hard realities of deploying AI in logistics. From unreliable data pipelines to the complexity Read More
xorsearch Update Diedier updated his "xorsearch" tool. It is now a python script, not a compiled binary, and supports Yara signatures. With Yara support also comes support for regular expressions. https://isc.sans.edu/diary/xorsearch.py%3A%20Searching%20With%20Regexes/31854 Shorter Lived Certificates The CA/Brower Forum passed an update to reduce the maximum livetime of certificates. The reduction will Read More
Send a textDr. Michael Koren Join Kevin Geddings to reflect on the evolution of medical research ethics from the troubling practices at Willowbrook Hospital in the 1970s to today's patient-centered approach. He connects this progression to John Lennon and Yoko Ono's final major concert, which raised awareness about conditions at Read More
Send a textA new era dawns for the Jacksonville Jaguars as we dive deep into the team's first draft under GM James Gladstone. After years of questionable draft strategies, there's a palpable excitement surrounding how the former Rams executive might approach building around Trevor Lawrence and transforming this roster.Our comprehensive Read More
Exploit Attempts for Recent Langflow AI Vulnerability (CVE-2025-3248) After spotting individaul attempts to exploit the recent Langflow vulnerability late last weeks, we now see more systematic internet wide scans attempting to verify the vulnerability. https://isc.sans.edu/forums/diary/Exploit+Attempts+for+Recent+Langflow+AI+Vulnerability+CVE20253248/31850/ Fortinet Analysis of Threat Actor Activity Fortinet oberved recent vulnerablities in its devices being used Read More
Send a textDr. Michael Koren shares insights from his presentation at the American College of Cardiology meeting in Chicago about a groundbreaking oral PCSK9 inhibitor that could lower cholesterol by 80% when combined with a statin. The development represents a significant advancement in treatment options for the 20% of patients Read More
Network Infraxploit Our undergraduate intern, Matthew Gorman, wrote up a walk through of CVE-2018-0171, an older Cisco vulnerability, that is still actively being exploited. For example, VOLT TYPHOON recently exploited this problem. https://isc.sans.edu/diary/Network+Infraxploit+Guest+Diary/31844 Windows Update Issues / Windows 10 Update Microsoft updated its "Release Health" notes with details regarding issues Read More
Welcome to Episode 399 of the Microsoft Cloud IT Pro Podcast. In this episode, we bring you another interview from the MVP Summit. In this episode, we were able to meet up with long time listener Greg Suttie and talk about his path to becoming an MVP as well as Read More
Getting Past PyArmor PyArmor is a python obfuscation tool used for malicious and non-malicious software. Xavier is taking a look at a sample to show what can be learned from these obfuscated samples with not too much work. https://isc.sans.edu/diary/Obfuscated%20Malicious%20Python%20Scripts%20with%20PyArmor/31840 CenterStack RCE CVE-2025-30406 Gladinet s CenterStack secure file-sharing software suffers from Read More
In this Clinician’s Guide for mental health professionals and savvy first responders, we sit down with Wendy Hummell, a retired detective turned health and wellness manager. We’ll dive into the challenges of introducing wellness to Law enforcement culture, the need for supportive internship programs, and how first responders can transition Read More
In this Clinician’s Guide for mental health professionals and savvy first responders, we sit down with Wendy Hummell, a retired detective turned health and wellness manager. We’ll dive into the challenges of introducing wellness to Law enforcement culture, the need for supportive internship programs, and how first responders can transition Read More
Microsoft Patch Tuesday Microsoft patched over 120 vulnerabilities this month. 11 of these were rated critical, and one vulnerability is already being exploited. https://isc.sans.edu/diary/Microsoft%20April%202025%20Patch%20Tuesday/31838 Adobe Updates Adobe released patches for 12 different products. In particular important are patches for Coldfusion addressing several remote code execution vulnerabilities. Adobe Commercse got patches Read More
Send a textPsychiatrist Dr. Rachna Saralka joins Cardiologist Dr. Michael Koren to explore the emerging field of artificial intelligence in psychology. They discuss the promise and shortfalls of using AI in this field, and the need for hard data and validated results through clinical trials. They get into empathy, the Read More
Many people in logistics shy away from giving their opinions online. But Jennifer Morris founded her company Ship Happens to do the exact opposite–by giving opinions online that help other SMBs from shipping headaches. Jenn joins the show to talk about her more than 20 years in logistics, how brokerage sales Read More
XORsearch: Searching With Regexes Didier explains a workaround to use his tool XORsearch to search for regular expressions instead of simple strings. https://isc.sans.edu/diary/XORsearch%3A%20Searching%20With%20Regexes/31834 MCP Security Notification: Tool Poisoning Attacks Invariant labs summarized a critical weakness in the Model Context Protocol (MCP) that allows for "Tool Poisoning Attacks." Many major providers Read More
Send a textOn this Monday Morning Minute, Dr. Michael Koren draws parallels between the NCAA Final Four basketball tournament and the clinical research process. He explains that in medicine, researchers start with literally 10,000 potential molecules, which get whittled down to only three or four medications to be tested in Read More
New SSH Username Report A new ssh/telnet username reports makes it easier to identify new usernames attackers are using against our telnet and ssh honeypots https://isc.sans.edu/diary/New%20SSH%20Username%20Report/31830 Quickshell Sharing is Caring: About an RCE Attack Chain on Quick Share The Google Quick Share protocol is susceptible to several vulnerabilities that have Read More
Exploring Statistical Measures to Predict URLs as Legitimate or Intrusive Using frequency analysis, and training the model with honeypot data as well as log data from legitimate websites allows for a fairly simple and reliable triage of web server logs to identify possible malicious activity. https://isc.sans.edu/diary/Exploring%20Statistical%20Measures%20to%20Predict%20URLs%20as%20Legitimate%20or%20Intrusive%20%5BGuest%20Diary%5D/31822 Critical Unexploitable Ivanti Vulnerability Read More
