In this episode, we chat with Jeff Dill, Founder and CEO of the Firefighter Behavioral Health Alliance (FBHA). Jeff shares insights on moral injury, the cultural brainwashing that affects first responders, and the alarming statistics related to firefighter suicides. With a focus on firefighter behavioral health awareness, he explains the Read More
Send a textThe trajectory for those with cardiovascular disease has changed drastically in the past few decades. Cardiologists Michael Koren and Seth Baum discuss the amazing 60% drop in cardiovascular mortality since the 1980's and the worrying rebound in heart-related mortality starting around 2012. They dissect various influences for both Read More
Learn about fileless crypto stealers written in Python, the ongoing exploitation of recent SimpleHelp vulnerablities, new Apple Silicon Sidechannel attacks a Team Viewer Vulnerablity and an odd QR Code Fileless Python InfoStealer Targeting Exodus This Python script targets Exodus crypto wallet and password managers to steal crypto currencies. It does Read More
This episode shows how attackers are bypassing phishing filter by abusing the "shy" softhyphen HTML entitiy. We got an update from Apple fixing a 0-day vulnerability in addition to a number of other issues. watchTowr show how to exploit an interesting FortiOS vulnerability and we have patches for Github Desktop Read More
Send a textDr. Michael Koren reflects on his interview with Dr. Anthony Fauci with Kevin Geddings. This episode explores Dr. Fauci's history in public health and his life after exiting the government sphere. Dr. Koren and Kevin Geddings also highlight the importance of acknowledging uncertainties in science, and how other Read More
Guest Diary: How Access Brokers Maintain Persistence Explore how cybercriminals utilize access brokers to persist within networks and the impact this has on organizational security. https://isc.sans.edu/forums/diary/Guest+Diary+How+Access+Brokers+Maintain+Persistence/31600/ Critical Vulnerability in Meta's Llama Stack (CVE-2024-50050) A deep dive into CVE-2024-50050, a critical vulnerability affecting Meta's Llama Stack, with exploitation details and mitigation Read More
Send us a textCan you feel a brand new day? Well Danika does...Shay-La not so much. The Jaguars get messy in the coaching seach with the late dismissal if Trent Baalke and the drama around hiring Coen and his exit from Tampa.
Send a textJoin Dr. Anthony Fauci and Dr. Michael Koren as they discuss the public health events that have punctuated Dr. Fauci's life. The doctors discuss the difficulties of the HIV epidemic in the 1980's and how Dr. Fauci's early career decision to pursue this emerging threat helped inform and Read More
In today's episode, learn how an attacker attempted to exploit webmail XSS vulnerablities against us. Sonicwall released a critical patch fixing an already exploited vulnerability in its SMA 1000 appliance. Cisco fixed vulnerabilities in ClamAV and its Meeting Manager REST API. Learn from SANS.edu student Anthony Russo how to take Read More
Send a textThe Jacksonville Jaguars have finally moved on from General Manager Trent Baalke, marking a significant turning point for the franchise. With new hope for the future, discussions center around hiring a new General Manager and Head Coach to build a winning culture.• Baalke's tenure ends after years of Read More
In this impactful episode, we address the vital mental health challenges faced by EMS and first responders, including post-traumatic stress and the effects of "buffing" calls—responding to emergencies off-duty.Join us for an insightful conversation with Emergency Medical Technician Frank Glowski, as he shares his personal struggles after traumatic off-duty incidents Read More
In today's episode, we start by talking about the PFSYNC protocol used to synchronize firewall states to support failover. Oracle released it's quarterly critical patch update. ESET is reporting about a critical VPN supply chain attack and CISA released guidance for victims of recent Ivanti related attacks. Catching CARP: Fishing Read More
Send a textRecent guidelines from the Surgeon General indicate that even moderate alcohol consumption poses significant health risks, particularly increasing the likelihood of several cancers. In this episode, cardiologist Dr. Michael Koren and GI specialist Dr. Bharat Misra analyze the data on alcohol and if it aligns with the Surgeon Read More
This episodes covers how Starlink users can be geolocated and how Cloudflare may help deanonymize users. The increased use of AI helpers leads to leaking data via careless prompts. Geolocation and Starlink https://isc.sans.edu/diary/Geolocation%20and%20Starlink/31612 Discover the potential geolocation risks associated with Starlink and how they might be exploited. This diary entry Read More
Send a textOn this week's Monday Morning Minute, Dr. Michael Koren and Kevin Geddings discuss the worry uncertainty brings in a changing government landscape and how this affects healthcare. They discuss the stress of not knowing what to expect with competing visions from the incoming administration and how the structure Read More
In this episode, we talk about downloading and analyzing partial ZIP files, how legitimate remote access tools are used in recent compromises and how a research found an SSRF vulnerability in Azure DevOps Partial ZIP File Downloads A closer look at how attackers are leveraging partial ZIP file downloads to Read More
In this episode, we cover how to use honeypot data to keep your offensive infrastructure alive longer, three critical vulnerabilities in SimpleHelp that must be patched now, and an interesting vulnerability affecting many systems allowing UEFI Secure Boot bypass. Leveraging Honeypot Data for Offensive Security Operations [Guest Diary] A recent Read More
Welcome to Episode 393 of the Microsoft Cloud IT Pro Podcast. In this episode, Ben is joined on the show by Alex Mooney from Logitech. The two of them discuss the integration of technology into meetings. They start out discussion AI for transcribing in-person meetings, highlighting some of their benefits Read More
In this episode, we explore the efficient storage of honeypot logs in databases, issues with Citrix's Session Recording Agent and Windows Update. Ivanti is having another interesting security event and our SANS.edu graduate student Rich Green talks about his research on Passkeys. Extracting Practical Observations from Impractical Datasets: A SANS Read More
Angelo Fruci grew up as a cousin to fellow logistics podcaster Chris Jolly. But it would take years later for the two to team up to start their own freight agency with none other than our favorite, SPI Logistics. Learn about that journey from engineer to freight agency owner while Read More
