Today's episode covers an odd 12 year old Netgear vulnerability that only received a proper CVE number last year. Learn about how to properly identify OpenID connect users and avoid domain name resue. Good old rsync turns out to be in need of patching and Fortinet: Not sure if it Read More
Tune in for a candid conversation highlighting behavioral health's critical role in emergency services. In this powerful episode, we sit down with Frank Leto (Ret.), Captain and Deputy Director of the FDNY Counseling Service Unit (CSU), to discuss the profound impact of 9/11 on firefighter behavioral health. Join us as Read More
Send a textDr. Michael Koren sits down with Alexandria Clark and Anna Fehr of One of a Kind (1-OAK) Clinical Research to discuss their bold decision to launch a clinical research company in 2021, shortly after the disruptions caused by the COVID-19 pandemic. Dr. Koren reflects on how the pandemic Read More
Today, Microsoft Patch Tuesday headlines our news with Microsoft patching 209 vulnerabilities, some of which have already been exploited. Fortinet suspects a so far unpatched Node.js authentication bypass to be behind some recent exploits of FortiOS and FortiProxy devices. Microsoft January 2025 Patch Tuesday This month's Microsoft patch update addresses Read More
Kevin Rutherford is host of the popular show and movement, Let’s Truck, and he’s back on the pod to talk about how to make trucking great again in 2025. In this episode, we’re covering the importance of a healthy body and mind that leads to a more successful trucking career. Read More
Episode Summary: This episode covers brute-force attacks on the password reset functionality of Hikvision devices, a macOS SIP bypass vulnerability, Linux rootkit malware, and a novel ransomware campaign targeting AWS S3 buckets. Topics Covered: Hikvision Password Reset Brute Forcing URL: https://isc.sans.edu/diary/Hikvision%20Password%20Reset%20Brute%20Forcing/31586 Hikvision devices are being targeted using old brute-force attacks Read More
Send a textCardiologist and research scientist with ENCORE Research Group, Dr. Michael Koren highlights the importance of monitoring your key health numbers with Kevin Geddings. The two talk about the importance of checking weight, cholesterol, and blood pressure, emphasizing consistency in measurement practices for accurate tracking. They discuss newer numbers Read More
In today's episode, we cover the latest updates in cybersecurity: Windows Defender Enhances Chrome Extension Detection Microsoft's Defender now catalogs Chrome extensions to identify malicious ones. Learn how this improves enterprise security. https://isc.sans.edu/diary/Windows%20Defender%20Chrome%20Extension%20Detection/31574 Multi-OLE Analysis in Malicious Documents A look at how attackers embed OLE files in Office documents to Read More
Send a textJoin Dr. Koren and Dr. Ridker for part 2, as they examine the effects of silent inflammation on heart health, emphasizing the importance of understanding specific body signals and the biomarker hsCRP. They also discuss the utility of hsCRP testing as a vital marker for predicting cardiovascular risk Read More
In this episode, we explore the following stories: "Examining Redtail: Analyzing a Sophisticated Cryptomining Malware and its Advanced Tactics" Overview of Redtail's multi-architecture cryptomining malware exploiting vulnerabilities and deploying persistence techniques. URL: Examining Redtail: Analyzing a Sophisticated Cryptomining Malware and its Advanced Tactics "Information Stealer Masquerades as LDAPNightmare PoC Exploit" Read More
In this episode, we focus on South American logistics, sharing crazy stories from the "Road of Death" where truck drivers dodge landslides, cross rivers on rickety pontoon boats, and take showers in mountain waterfalls just to deliver their cargo. Blythe and Grace Sharkey unpack China's ambitious power play in South Read More
In this episode, we discuss critical vulnerabilities in Ivanti Connect Secure and Policy Secure, command injection risks in Aviatrix Network Controllers, and the risks posed by hijacked abandoned backdoors. Episode Links and Topics: More Governments Backdoors in Your Backdoors https://labs.watchtowr.com/more-governments-backdoors-in-your-backdoors/ Researchers reveal how expired domains linked to abandoned backdoors can Read More
Send a textIs it time for the Jaguars to shake things up at the top? On this episode of the Touchdown Jaguars podcast, we return from our break to dissect the highs and lows of a tumultuous season for the Jacksonville Jaguars. Phil Smith and James Johnson are here to Read More
In this episode of our clinician masterclass series, we dive into the unique challenges faced by wildland firefighters and specialized law enforcement units like the Border Patrol, FBI, US Marshals, and the Bureau of Alcohol, Tobacco & Firearms. Join psychologist Dr. Robbie Adler-Tapia as she shares essential strategies and techniques Read More
Send a textDr. Michael Koren welcomes Dr. Paul Ridker, the leading expert in inflammation and cardiovascular disease, Professor of Medicine at Harvard University, and director of the Center for Cardiovascular Disease Prevention at Brigham and Women's Hospital. Dr. Ridker explains how his career began with challenging traditional medical assumptions, specifically Read More
In this episode, we dive into active exploitation of a zero-day in SonicWall SSL-VPN, privilege escalation vulnerabilities in Moxa devices, and a BitLocker bypass in Windows 11. We also cover cryptocurrency mining malware hitting PHP servers and the White House's launch of the U.S. Cyber Trust Mark to secure connected Read More
Join us for a special compilation episode featuring the best of our 2024 NASA and space logistics coverage. We dive into three exciting topics: how NASA handles deep space supply chains, the science behind growing food in space, and an exciting conversation with Inversion Space about building orbital warehouses.From autonomous Read More
In this episode of the SANS Internet Storm Center's Stormcast, we cover critical vulnerabilities affecting OpenSSH, BeyondTrust, and Nuclei, including the newly discovered "RegreSSHion" flaw and a bypass vulnerability in Nuclei. We also discuss how malware evasion techniques can impact analysis environments and highlight the dangers of fake exploits targeting Read More
Send a textLast week the Surgeon General of the United States, Vivek Murthy, urged congress to pass a law requiring warning labels on alcohol showing the link between even light drinking and gastrointestinal cancers, but is this a good idea? Dr. Michael Korn talks with Kevin Geddings to discuss the Read More
In this episode of the SANS Internet Storm Center's Stormcast, we cover the latest cybersecurity threats and defenses, including Python-delivered malware, goodware hash sets, SSL/TLS protocol updates, and critical vulnerabilities in ASUS routers and Paessler PRTG. Stay informed and secure your systems! Full details and links to all stories: SwaetRAT Read More
