From Highly Obfuscated Batch File to XWorm and Redline https://isc.sans.edu/diary/From%20Highly%20Obfuscated%20Batch%20File%20to%20XWorm%20and%20Redline/31204 CVE-2024-38063 Windows IPv6 Issue PoC Exploit https://github.com/ynwarcs/CVE-2024-38063 Not a vulnerability https://github.com/juwenyi/CVE-2024-42992
Send a textEver wondered how participating in clinical trials could unveil hidden health concerns you didn't even know existed? Join us on this week's MedEvidence Monday Minute as Dr. Michael Koren unravels the mysteries behind cutting-edge medical research. From cardiovascular prevention to vaccine development, discover how these groundbreaking studies can Read More
OpenAI Scans Honeypots https://isc.sans.edu/diary/OpenAI%20Scans%20for%20Honeypots.%20Artificially%20Malicious%3F%20Action%20Abuse%3F/31196 Broken Linux Boot Partitions after August Microsoft Update https://learn.microsoft.com/en-us/windows/release-health/status-windows-11-23H2#3377msgdesc Google Fixes Chrome 0-day https://chromereleases.googleblog.com/2024/08/stable-channel-update-for-desktop_21.html Cisco Zero Day Exploited (now Patched) https://www.sygnia.co/blog/china-threat-group-velvet-ant-cisco-zero-day/ Solar Winds Helpdesk Backdoor https://support.solarwinds.com/SuccessCenter/s/article/SolarWinds-Web-Help-Desk-12-8-3-Hotfix-2 Securing the Future: How Memory-Safe Programming Languages Impact Industry Safety (Christopher Ross) https://www.sans.edu/cyber-research/securing-future-how-memory-safe-programming-languages-impact-industry-safety/
In this episode of Everything is Logistics, Blythe dives into freight marketing's changing landscape. She explores the boom in logistics content creators and talks about finding the sweet spot between quality and quantity. Blythe also gets into the nitty-gritty of analytics reports and Google's search shakeups. To top it off, Read More
Mapping Threats wiht DNSTwist and the Internet Storm Center https://isc.sans.edu/diary/Mapping%20Threats%20with%20DNSTwist%20and%20the%20Internet%20Storm%20Center%20%5BGuest%20Diary%5D/31188 Slack AI Prompt Injection https://promptarmor.substack.com/p/slack-ai-data-exfiltration-from-private Phishing in PWA Applications https://www.welivesecurity.com/en/eset-research/be-careful-what-you-pwish-for-phishing-in-pwa-applications/ QNAP Ransomware Security Center https://www.qnap.com/en/news/2024/qnap-officially-releases-qts-5-2-introducing-security-center-for-active-file-activity-monitoring-elevated-security-and-data-protection
In this installment of our masterclass series for clinicians and savvy first responders, we examine the fine points of working with firefighters. Our guest, Robbie Adler-Tapia, Ph.D., Psychologist and EMDRIA Approved Consultant/Certified Therapist, will guide us through the unique challenges and stresses that firefighters face in their line of work. Read More
Send a textWhat if understanding the nuances between different types of diabetes could revolutionize your approach to prevention and management? Join us as we unravel the latest changes in diabetic guidelines with the esteemed Dr. Arpeta Gupta, a leading endocrinologist. Dr. Gupta expertly demystifies the distinctions between type 1, type Read More
Where are we with CVE-2024-38063: Microsoft IPv6 Vulnerability https://isc.sans.edu/diary/Where+are+we+with+CVE202438063+Microsoft+IPv6+Vulnerability/31186 Microsoft August Update Prevents Linux from Booting https://community.frame.work/t/sbat-verification-error-booting-linux-after-windows-update/56354 PHP CGI Vulnerability Exploited CVE-2024-4577 https://symantec-enterprise-blogs.security.com/threat-intelligence/taiwan-malware-dns F5 Updates https://my.f5.com/manage/s/article/K000140111 https://my.f5.com/manage/s/article/K000140108
Send a textWhat if your persistent cough isn't as alarming as Dr. Google makes it out to be? Join us on MedEvidence Monday Minute as Dr. Michael Koren and Kevin Geddings, explore the more common culprits behind that nagging cough, such as gastroesophageal reflux, post-nasal drip, and asthma. Dr. Koren Read More
In episode three of our NASA Series, we’re talking about the goal of this mission: to manufacture and ship a weather satellite to space but more importantly, be able to collect data to help the accuracy of weather forecasting that impacts every single person here on earth. After all, “Money spent Read More
Do you like donuts? Here is a donut Shellcode Delivered Through PowerShell Python https://isc.sans.edu/diary/Do%20you%20Like%20Donuts%3F%20Here%20is%20a%20Donut%20Shellcode%20Delivered%20Through%20PowerShell%20Python/31182 How Vulnerabilities in Microsoft Apps for MacOS allow Stealing Permissions https://blog.talosintelligence.com/how-multiple-vulnerabilities-in-microsoft-apps-for-macos-pave-the-way-to-stealing-permissions/ Digital Wallet Security Loophole https://www.umass.edu/news/article/new-study-reveals-loophole-digital-wallet-security-even-if-rightful-cardholder-doesnt Microsoft IPv6 Vulnerability CVE-2024-38063 https://x.com/f4rmpoet/status/1825472703223992323 YouTube Video (going live 10am ET) https://www.youtube.com/watch?v=miBb1llFOYQ
Send a textWant to know how the Jacksonville Jaguars are gearing up for the season? In our latest episode of the Touchdown Jaguars podcast, we promise to give you the inside scoop on the second preseason game against the Tampa Bay Buccaneers. We break down the joint practices that provided Read More
Summarizing Web Honeypot Logs https://isc.sans.edu/diary/%5BGuest%20Diary%5D%207%20minutes%20and%204%20steps%20to%20a%20quick%20win%3A%20A%20write-up%20on%20custom%20tools/31170 Large Scale Cloud Extortion Operation https://unit42.paloaltonetworks.com/large-scale-cloud-extortion-operation/ Chrome Redacting Credit Cards and Passwords when you share Android Screens https://www.bleepingcomputer.com/news/google/chrome-will-redact-credit-cards-passwords-when-you-share-android-screen/ Google Products Targeted by Search Ad Scammers https://www.malwarebytes.com/blog/scams/2024/08/dozens-of-google-products-targeted-by-scammers-via-malicious-search-ads MakeShift: Security Analysis of Shimano Di2 Wireless Gear Shifting in Bicyles https://www.usenix.org/system/files/woot24-motallebighomi.pdf
Welcome to Episode 382 of the Microsoft Cloud IT Pro Podcast. In this episode, we dive into three essential tools for safeguarding your organization in the cloud-first world: Security Defaults in Microsoft Entra ID, Conditional Access Policies, and Microsoft Secure Score. Join us as we talk through and rationalize each Read More
When a 3PL chooses a TMS, that decision can make or break the company. In this interview, Blythe Brumleve chats with CEO of SIO Logistics Ali Shafi on the purchasing process he went through to switch his TMS, what ultimately led him to pick Tai Software, and what life is Read More
In this essential episode, we sit down with Kristofor Healey, a former Special Agent renowned for spearheading the largest tele-fraud case in U.S. history. We discuss Healey’s transition from law enforcement to motivational speaking, and how he intertwined his experiences with the timeless wisdom of Stoicism. We explore the practical Read More
Send us a textWe are back baby! Yes your two favorite ladies are back talking about what they love most. Jaguars football. We touch on the draft, training camp and the first pre-season game.Â
