Send a textIn this episode, Obesity, Lifestyle, and Pediatric Specialist Dr. Randolph Nunez joins Cardiologist and Clinical Researcher Dr. Michael Koren as they discuss the approaches to managing obesity, particularly in children and adolescents. Dr. Nunez talks about Keystone Habits like sleep, and how tackling those habits are the key Read More
Microsoft Patch Tuesday Microsoft released patches for 55 vulnerabilities. Three of them are actagorized as critical, two are already exploited and another two have been publicly disclosed. The LDAP server vulnerability could become a huge deal, but it is not clear if an exploit will appear. https://isc.sans.edu/diary/Microsoft%20February%202025%20Patch%20Tuesday/31674 Adobe Patches Adobe Read More
Reminder: 7-Zip MoW The MoW must be added to any files extracted from ZIP or other compound file formats. 7-Zip does not do so by default unless you alter the default configuration. https://isc.sans.edu/diary/Reminder%3A%207-Zip%20%26%20MoW/31668 Apple Fixes 0-Day Apple released updates to iOS and iPadOS fixing a bypass for USB Restricted Mode. Read More
Send a textOn this week’s MedEvidence Monday Minute, Dr. Michael Koren and Kevin Geddings discuss the superbowl and how the predictions around the outcome - based on past experiences - were no substitute for knowing how the actual game would turn out. They relate this to clinical trials, where a Read More
Tired of searching for logistics solutions across scattered platforms? In this episode of Everything is Logistics, Blythe announces CargoRex, a groundbreaking new logistics hub that combines deep industry insights, privacy-first analytics, and a collaborative platform for professionals and creators.She discusses the challenges of navigating the fragmented industry landscape and how Read More
SSL 2.0 Turns 30 This Sunday SSL was created in February 1995. However, back in 2005, only a year later, SSL 3.0 was released, and as of 2011, SSL 2.0 was deprecated, and support was removed from many crypto libraries. However, over 400k hosts are still exposed via SSL 2.0. Read More
Send a textJoin Pulmonologist Dr. Mitchell Rothstein and Allergist and Immunologist Dr. Steve Dorman as they explore the violent activity that can project particles at 100 miles an hour out of your mouth: coughing! The doctors explain the varied approaches doctors take when trying to find the cause of a Read More
The Unbreakable Multi-Layer Anti-Debugging System Xavier found a nice Python script that included what it calls the "Unbreakable Multi-Layer Anti-Debugging System". Leave it up to Xavier to tear it appart for you. https://isc.sans.edu/diary/The%20Unbreakable%20Multi-Layer%20Anti-Debugging%20System/31658 Take my money: OCR crypto stealers in Google Play and App Store Malware using OCR on screen Read More
Phishing via com- prefix domains Every day, attackers are registering a few hunder domain names starting with com-. These are used in phishing e-mails, like for example "toll fee scams", to create more convincing phishing links. https://isc.sans.edu/diary/Phishing%20via%20%22com-%22%20prefix%20domains/31654 Microsoft Windows 10 Extended Security Updates Microsoft released pricing and additional details for Read More
In this Clinician's Guide episode, we sit down with Patrick Fitzgibbons, retired police commander and Shatterproof Community Liaison Lead at FHE Health. We explore the essential topic of specialized addiction and mental health treatment programs designed for first responders. Patrick discusses the key differences between various in-patient treatment facilities, what clinicians Read More
Send a textTechnology like Artificial Intelligence (AI) is being integrated more and more into our lives. It's fast, convenient, and can be used at home to gather more health data than ever. But how do we know if the benefits of these technologies outweigh potential risks and pitfalls? Dr. Mike Hafran Read More
Some Updates to Our Data Feeds We made some updates to the documentation for our data feeds, and added the neat Rosti Feed to our list as well as to our ipinfo page. https://isc.sans.edu/diary/Some%20updates%20to%20our%20data%20feeds/31650 8 Million Request Later We Meade the Solarwindws Supply Chain Attack Look Amateur While the title Read More
Crypto Wallet Scam YouTube spam messages leak private keys to crypto wallets. However, these keys can not be used to withdraw funds. Victims are scammed into depositing "gas fees" which are then collected by the scammer. https://isc.sans.edu/diary/Crypto%20Wallet%20Scam/31646 Mediatek Patches Mediatek patched numerous vulnerabilities in its WLAN products. Some allow for Read More
Send a textThis episode focuses on the FDA's approval of Journavx, a new class of pain medication that offers an alternative to traditional narcotics like OxyContin. Listeners learn about the significance of clinical trials, patient involvement, and the evolution of pain management strategies while emphasizing the need for informed discussions Read More
To Simulate or Replicate: Crafting Cyber Ranges Automating the creation of cyber ranges. This will be a multi part series and this part covers creating the DNS configuration in Windows https://isc.sans.edu/diary/To%20Simulate%20or%20Replicate%3A%20Crafting%20Cyber%20Ranges/31642 Scammers Exploiting Deepseek Hype Scammers are using the hype around Deepseek, and some of the confusion caused by it's Read More
Send a textIn this second and final part of this series, Dr. Michael Koren and Dr. Seth Baum discuss the importance of patient retention in cardiovascular clinical trials. They highlight how participants in these trials, even those on placebos, often experience better health outcomes due to increased medical attention. They Read More
PCAPs or It Didn't Happen: Exposing an Old Netgear Vulnerability Still Active in 2025 [Guest Diary] https://isc.sans.edu/diary/PCAPs%20or%20It%20Didn%27t%20Happen%3A%20Exposing%20an%20Old%20Netgear%20Vulnerability%20Still%20Active%20in%202025%20%5BGuest%20Diary%5D/31638 RCE Vulnerablity in AI Development Platform Lightning AI Noma Security discovered a neat remote code execution vulnerability in Lightning AI. This vulnerability is exploitable by tricking a logged in user into clicking a Read More
Send a textA new chapter unfolds for the Jacksonville Jaguars as Liam Coen steps in as head coach, aiming to instill a winning culture and prioritize Trevor Lawrence's development. The episode explores Jay's key takeaways from Coen's introductory presser as the new coach discussed his thoughts on improving the team's Read More
Welcome to Episode 394 of the Microsoft Cloud IT Pro Podcast. In this episode, we explore everything you need to know to get your Microsoft 365 tenant ready for Copilot. From licensing requirements to deployment best practices, we break down the steps to ensure a seamless setup.Key topics include: Understanding Read More
From PowerShell to a Python Obfuscation Race! This information stealer not only emulates a PDF document convincingly, but also includes its own Python environment for Windows https://isc.sans.edu/diary/From%20PowerShell%20to%20a%20Python%20Obfuscation%20Race!/31634 Alleged Active Exploit Sale of CVE-2024-55591 on Fortinet Devices An exploit for this week's Fortinet vulnerability is for sale on russian forums. Fortinet Read More
