News

Send a textJoin Dr. Carolyn Tran and Antoinette Bailey, the Diversity, Equity, and Inclusion Liaison for ENCORE Research Group, as we delve into the pivotal role that varied populations play in the landscape of healthcare studies. Antoinette and Dr. Tran engage in a candid conversation about the barriers to recruiting Read More

Microsoft January 2024 Patch Tuesday https://isc.sans.edu/forums/diary/Microsoft+January+2024+Patch+Tuesday/30548/ Adobe Vulnerabilities https://helpx.adobe.com/security/products/substance3d_stager/apsb24-06.html CVE-2023-50916: Authentication Coercion Vulnerablity in Kyocera Device Manager https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/cve-2023-50916-authentication-coercion-vulnerability-in-kyocera-device-manager/ Network Connected Wrenches Used in Factories can be hacked https://arstechnica.com/security/2024/01/network-connected-wrenches-used-in-factories-can-be-hacked-for-sabotage-or-ransomware/

This episode features Beth Potratz, founder and CEO of Drive My Way, discussing driver recruiting, retention, and helping drivers find fulfilling jobs. She explains what drivers want today, and how carriers can better communicate with and support drivers through feedback loops. Providing valuable perspectives on improving the driver experience, she Read More

What is That User Agent https://isc.sans.edu/diary/What%20is%20that%20User%20Agent%3F/30536 KyberSlash Vulnerability https://kyberslash.cr.yp.to/faq.html Netfilter DoS Vulnerability CVE-2024-0193 https://access.redhat.com/security/cve/CVE-2024-0193 Cacti Vulnerability https://github.com/Cacti/cacti/security/advisories/GHSA-pfh9-gwm6-86vp

Send a textDiscover the hidden truths of Medical Research as Dr. Michael Koren from ENCORE Research Group illuminates the intricate dance of clinical trials, delivering a masterclass on personalized patient care and informed decision-making in this week's MedEvidence Monday Minute. As I, Kevin Geddings, guide the conversation, we reveal the Read More

Netstat But Better and in PowerShell https://isc.sans.edu/diary/Netstat%2C%20but%20Better%20and%20in%20PowerShell/30532 Double Phishing Submission https://isc.sans.edu/diary/Are%20you%20sure%20of%20your%20password%3F/30534 Suspicious Prometei Botnet Activity https://isc.sans.edu/diary/Suspicious%20Prometei%20Botnet%20Activity/30538 Spectral Blur Mac Malware https://g-les.github.io/yara/2024/01/03/100DaysofYARA_SpectralBlur.html Google Malware Abusing API is Standard Token Theft not an API Issue https://www.bleepingcomputer.com/news/security/google-malware-abusing-api-is-standard-token-theft-not-an-api-issue/

Send a textThe Jacksonville Jaguars were finally able to stop their four-game skid after a shutout victory over Carolina. With Trevor Lawrence missing the game, James Johnson looked into the Jags' injury report heading into Week 18 where the Jags have to win and they are in. James also discussed Read More

In this episode, we're covering one of the more fascinating topics in all of supply chain - crime, fraud, and disasters. Grace Sharkey also makes her debut in the best of compilation because we cover cargo crime in each one of our monthly episodes. Meanwhile, the other portion of this Read More

Wireshark Updates https://isc.sans.edu/diary/Wireshark%20updates/30528 Android Updates https://source.android.com/docs/security/bulletin/2024-01-01 Ivanti Critical Vulnerability https://forums.ivanti.com/s/article/SA-2023-12-19-CVE-2023-39336?language=en_US Malicious PyPi Packages https://www.fortinet.com/blog/threat-research/malicious-pypi-packages-deploy-coinminer-on-linux-devices Everything npm package https://www.bleepingcomputer.com/news/security/everything-blocks-devs-from-removing-their-own-npm-packages/

In Episode 367, Ben and Scott kick off 2024 with a discussion of Azure Files. They start out reviewing a customer scenario Ben encountered and how they would approach it, breaking down the options available with Azure Files, hosting traditional SMB shares in Azure, and how a hybrid deployment can Read More

In this episode of our podcast, we had the privilege of interviewing David Berez, a retired Police Officer and Drug Recognition Expert with over 33 years of experience in Emergency Services. David shares his insights on Resiliency, Officer Mental Health, Transition into Retirement with Purpose, and Positive Psychology Tools, all Read More

Interesting large and small malspam attachments from 2023 https://isc.sans.edu/diary/Interesting%20large%20and%20small%20malspam%20attachments%20from%202023/30524 Orange Spain RIPE Account Compromise https://www.bleepingcomputer.com/news/security/hacker-hijacks-orange-spain-ripe-account-to-cause-bgp-havoc/ Bitwarden Heist https://blog.redteam-pentesting.de/2024/bitwarden-heist/ Apple iOS PoC Exploits https://github.com/felix-pb/kfd/blob/main/writeups/smith.md https://github.com/felix-pb/kfd/blob/main/writeups/landa.md

Send a textEmbark on an enlightening exploration of systemic lupus erythematosus (SLE) with the insightful Dr. Shah on MedEvidence. We delve deep into the perplexing world of lupus, shedding light on its signature symptoms like the striking malar rash, while clarifying common misconceptions to foster a better understanding of this Read More

Fingerprinting SSH Identification Strings https://isc.sans.edu/diary/Fingerprinting%20SSH%20Identification%20Strings/30520 Google OAUTH2 Exploited by Malware https://www.cloudsek.com/blog/compromising-google-accounts-malwares-exploiting-undocumented-oauth2-functionality-for-session-hijacking TsuKing DNS Amplification https://lixiang521.com/publication/ccs23/ccs23-xu-tsuking.pdf

Send a textUnlock the deeper meaning behind the well-worn New Year's wish of health, happiness, and prosperity with Dr. Michael Koren, whose passion for medical research offers a fresh take on these timeless hopes. As a seasoned cardiologist and research scientist, Dr. Koren joins us to dissect this classic greeting, Read More

It's that time of the year when the days between Thanksgiving and the New Year feel like one giant blur. But it's also a time to think about the things you want to get done in 2024. So what better way to get a handle on what to be thinking Read More

Shall We Play a Game https://isc.sans.edu/diary/Shall+We+Play+a+Game/30510 Mailtrap.io Exfiltration https://isc.sans.edu/diary/Python%20Keylogger%20Using%20Mailtrap.io/30512 Pi Hole Docker https://isc.sans.edu/forums/diary/Pi-Hole%20Pi4%20Docker%20Deployment/30516/ Mirai Update https://isc.sans.edu/diary/Unveiling%20the%20Mirai%3A%20Insights%20into%20Recent%20DShield%20Honeypot%20Activity%20%5BGuest%20Diary%5D/30514 Barracuda 0-Day Vulnerability https://www.barracuda.com/company/legal/esg-vulnerability Apache OFBiz 0-Day Exploited against Atlassian (and possibly others) https://blog.sonicwall.com/en-us/2023/12/sonicwall-discovers-critical-apache-ofbiz-zero-day-authbiz/

Happy New Year!! Danika and Shay-La are back after the holidays. We skipped the last game because aint nobody got time for that and we wanted to enjoyed Christmas. The Panthers came to town, Jagaurs did what they were supposed to do.....WIN. Next up Tenn for the division. Also Jason Read More

This episode was chaos. Between Ike randomly eating pies on camera, David Jolly and Kam arguing and roasting each other in the middle of the interview, Idk where I lost control of this episode but it was hella entertaining lol y'all enjoy! follow @bobbybrowncomedian @mrdjolly @ikerafferty @kamsoofunnySupport the podcast if you Read More