Scanning for Confluence CVE-2022-26134 https://isc.sans.edu/diary/Scanning%20for%20Confluence%20CVE-2022-26134/30704 Exploiting CSP Wildcards for Google Domains https://attackshipsonfi.re/p/exploiting-csp-wildcards-for-google Silver SAML: Golden SAML in the Cloud https://www.semperis.com/blog/meet-silver-saml/
Dissecting DarkGate: Module Malware Delivery and Persistence as a Service https://isc.sans.edu/diary/%5BGuest%20Diary%5D%20Dissecting%20DarkGate%3A%20Modular%20Malware%20Delivery%20and%20Persistence%20as%20a%20Service./30700 Ivanti Incident Response Update https://www.cisa.gov/news-events/cybersecurity-advisories/aa24-060b Github Flooded with Infected Repos https://apiiro.com/blog/malicious-code-campaign-github-repo-confusion-attack Security Flaws in NoName Doorbell Cameras https://www.consumerreports.org/home-garden/home-security-cameras/video-doorbells-sold-by-major-retailers-have-security-flaws-a2579288796/
Welcome to Episode 371 of the Microsoft Cloud IT Pro Podcast, where we’ll be discussing Microsoft Intune, one of the most powerful tools for managing your organization’s devices, apps, and endpoint security. In this episode, we’ll start exploring the three pillars of Intune: Devices, Apps, and Endpoint Security. We’ll cover Read More
Join us for an engaging episode where we explore mental health and de-escalation with Ernest Stevens, author of the best-selling book "Mental Health and De-escalation: A Guide for Law Enforcement Professionals.” As a pivotal member of the San Antonio Police Department Mental Health Unit, Ernie brings a wealth of experience Read More
Send a textUnlock the secrets of managing type 2 diabetes through nutrition with our esteemed guest, Dr. Alfa Patel, an expert in internal medicine and clinical research. Prepare to challenge your preconceptions with our interactive quizzes and myth-busting discussions that reveal the truth behind diet and diabetes. From the deceptive Read More
Take Downs and the Rest of Us: Do they matter? https://isc.sans.edu/diary/Take%20Downs%20and%20the%20Rest%20of%20Us%3A%20Do%20they%20matter%3F/30694 Joint Cybersecurity Advisory https://www.ic3.gov/Media/News/2024/240227.pdf SVR Cyber Actors Adapt Tactics for Initial Cloud Access https://www.ncsc.gov.uk/news/svr-cyber-actors-adapt-tactics-for-initial-cloud-access Data Scientists Targeted by Malicious Hugging Face ML Models with Silent Backdoor https://jfrog.com/blog/data-scientists-targeted-by-malicious-hugging-face-ml-models-with-silent-backdoor/
In this episode, Blythe and Nate Robert, founder of logistics startup Baton, discuss how his company was acquired by Ryder to build out their new Silicon Valley-based technology lab. The goal of the 40-person lab consisting of engineers, designers, and product managers is to solve pain points identified through engagement Read More
Utilizing the VirusTotal API to Query Files Uploaded to the DShield Honeypot https://isc.sans.edu/diary/Utilizing%20the%20VirusTotal%20API%20to%20Query%20Files%20Uploaded%20to%20DShield%20Honeypot%20%5BGuest%20Diary%5D/30688 New WiFi Authentication Vulnerabilities Discovered https://www.top10vpn.com/research/wifi-vulnerabilities/ Subdomain Takeover Spam https://labs.guard.io/subdomailing-thousands-of-hijacked-major-brand-subdomains-found-bombarding-users-with-millions-a5e5fb892935
Send a textEver wondered how doctors navigate the murky waters when they're at odds over a diagnosis or medical question? This week's MedEvidence Monday Minute is discussing this intricate dance. Dr. Michael Koren and Kevin Geddings of WSOS St. Augustine Radio peeled back the curtain on medical disagreements and the Read More
Friend, Foe or Something In Between https://isc.sans.edu/diary/%5BGuest%20Diary%5D%20Friend%2C%20foe%20or%20something%20in%20between%3F%20The%20grey%20area%20of%20%27security%20research%27/30670 Large AT&T Wireless Network Outage https://isc.sans.edu/diary/Large%20AT%26T%20Wireless%20Network%20Outage%20%23att%20%23outage/30680 Connect Wise Screenconnect Userd by LockBit https://www.bleepingcomputer.com/news/security/screenconnect-servers-hacked-in-lockbit-ransomware-attacks/ SSH Snake Abused in the Wild https://github.com/MegaManSec/SSH-Snake
Grace Sharkey is back for a special live edition of Freight Friends recorded during Manifest: The Future of Supply Chain and Logistics in Las Vegas. Discussed on the show are the latest visibility technology and the problems that still need to be solved to achieve true end-to-end solutions, along with Read More
In this episode, we dive into the inspiring journey of Joseph T. Bonanno, a true American hero who has served in both the USAF and The FDNY. Joseph opens up about the profound impact of suicide on his life, especially following the tragic loss of his brother Michael in 2012. Read More
Send a textDiscover the intricate ties between heart health and memory as we sit down with esteemed neurology expert Dr. Steven Toenjes and well-known cardiologist Dr. Michael Koren. They will give you insights that could reshape your understanding of Alzheimer's disease. The conversation transcends the traditional boundaries of amyloid PET Read More
In this episode, Blythe explains how to organize a website redesign project into phases based on priority, starting with an MVP launch before adding other features. Listeners are presented with tips for gathering the necessary "ingredients" ahead of time - such as detailed page outlines, text, images, bios, etc. - Read More
Old Mirai New Exploits https://isc.sans.edu/diary/Mirai-Mirai%20On%20The%20Wall...%20%5BGuest%20Diary%5D/30658 KeyTrap PoC Exploit https://github.com/knqyf263/CVE-2023-50387 Google Open Sources Magika File ID System https://opensource.googleblog.com/2024/02/magika-ai-powered-fast-and-efficient-file-type-identification.html Exploiting Unsynchronised Clocks https://attackshipsonfi.re/p/exploiting-unsynchonised-clocks
