News

T-shooting Terraform for DShield Honeypot in Azure https://isc.sans.edu/diary/T-shooting%20Terraform%20for%20DShield%20Honeypot%20in%20Azure%20%5BGuest%20Diary%5D/30484 Ubiquity Unifi Cameras Visible in Wrong Account https://community.ui.com/questions/Bug-Fix-Cloud-Access-Misconfiguration/fe8d4479-e187-4471-bf95-b2799183ceb7 Zoom Vulnerabilities and VISS https://viss.zoom.com/specifications https://www.zoom.com/en/trust/security-bulletin/ Squid Denial of Service Vulnerability https://github.com/squid-cache/squid/security/advisories/GHSA-wgq4-4cfg-c4x3

In Episode 364, Ben and Scott discuss the recently announced Microsoft Designer, cover a handful of updates to Azure including Azure Automation and Azure Container Storage. Then they close out with some updates to the licensing model for Enterprise IoT Security. It’s also the season of giving and we’re raising Read More

The holiday season is a blurry time of year when we start to think about goals for the new year. This mega episode compiles the year's best freight marketing podcasts to grasp industry trends, how AI is disrupting workflows, and measuring ROI. Curated episodes play in order of value but Read More

We declare that nobody’s feelings or friendships were damaged in the making of this podcast. Warning; This podcast was performed by experienced podcasters and long time friends. The owners of this production company do recommend you try this concept at home, as it can be dangerous to some. We challenge Read More

Malicious Python Script with a TCL/TK GUI https://isc.sans.edu/diary/Malicious%20Python%20Script%20with%20a%20TCL%20TK%20GUI/30478 Adobe Updates https://helpx.adobe.com/security/security-bulletin.html TeamCity Exploited https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-347a Sophos Firewall Exploit for EOL Devices CVE-2022-3236 https://www.sophos.com/en-us/security-advisories/sophos-sa-20220923-sfos-rce

Step into the world of Samantha Hawkins, a seasoned PSAP professional and trainer, as she unveils the unseen challenges faced by 911 dispatchers. Explore Samantha’s crucial role with Moetivations, Inc., a company that delivers crucial support services to communications centers all over the country, and her role as an advocate Read More

Are you ready to tackle the tough questions about the Jacksonville Jaguars' recent performance? We promise an insightful analysis that will quench your thirst for a deeper understanding. First off, we dissect the frustrating consecutive losses, especially the disheartening game against the Cleveland Browns. We'll peel back the layers of Read More

Send a textAre you ready to tackle the tough questions about the Jacksonville Jaguars' recent performance? We promise an insightful analysis that will quench your thirst for a deeper understanding. First off, we dissect the frustrating consecutive losses, especially the disheartening game against the Cleveland Browns. We'll peel back the Read More

Microsoft Patch Tuesday https://isc.sans.edu/diary/Microsoft%20Patch%20Tuesday%20December%202023/30480 Microsoft Warns of Malicious OAUTH Applications https://www.microsoft.com/en-us/security/blog/2023/12/12/threat-actors-misuse-oauth-applications-to-automate-financially-driven-attacks/ Apache Struts2 Exploit CVE-2023-50164 https://xz.aliyun.com/t/13172

Shay-La and Danika back again. Jaguars leave a Brown stain. Also Danika talkers about her adventure on Tinder and ask the question of why do men like to send pictures of their Johnson. 

Grace Sharkey and Blythe Brumleve are back with another episode of Freight Friends! This time the duo dish on freight tech innovations, the top 25 freight tech companies, Elon Musk telling off Disney's CEO, and being a woman in the male-dominated freight industry. They also discuss unsanitary makeup return practices Read More

What is Sitemap.xml and Why a Pentester Should Care https://isc.sans.edu/diary/What%20is%20sitemap.xml%2C%20and%20Why%20a%20Pentester%20Should%20Care/30472 Apple Patches Everything https://isc.sans.edu/forums/diary/Apple%20Patches%20Everything/30474/ Android Password Manager Auto Spill https://i.blackhat.com/EU-23/Presentations/EU-23-Gangwal-AutoSpill-Zero-Effort-Credential-Stealing.pdf

Send a textCraving a dose of both music trivia and medical knowledge? Get ready to satiate your appetite on the MedEvidence Monday Minute radio show. Our guest, Dr. Michael Koren, an expert in medical research, not only serves up some surprising facts about the Monkees and their unlikely touring partner, Read More

IPv4 Mapped IPv6 Addresses https://isc.sans.edu/diary/IPv4-mapped%20IPv6%20Address%20Used%20For%20Obfuscation/30466 Honeypots From the Skeptical Beginner to the Tactical Enthusiast https://isc.sans.edu/diary/Honeypots%3A%20From%20the%20Skeptical%20Beginner%20to%20the%20Tactical%20Enthusiast/30468 Bluetooth Weakness CVE-2023-45866 https://github.com/skysafe/reblog/tree/main/cve-2023-45866 Syrus 4 IoT Gateway Vulnerability CVE-2023-6248 https://socradar.io/syrus4-iot-gateway-vulnerability-could-allow-code-execution-on-thousands-of-vehicles-simultaneously-cve-2023-6248/ Microsoft Edge Vulnerability CVE-2023-35618 https://learn.microsoft.com/en-us/deployedge/microsoft-edge-relnotes-security#december-7-2023

5G Vulnerabilities https://isc.sans.edu/diary/5Ghoul%3A%20Impacts%2C%20Implications%20and%20Next%20Steps/30462 Revealing the hidden Risks of QR Codes https://isc.sans.edu/diary/Revealing%20the%20Hidden%20Risks%20of%20QR%20Codes%20%5BGuest%20Diary%5D/30458 Window 10 End of Support https://techcommunity.microsoft.com/t5/windows-it-pro-blog/plan-for-windows-10-eos-with-windows-11-windows-365-and-esu/ba-p/4000414 Apache Struts 2 Vulnerability CVE-2023-50164 https://cwiki.apache.org/confluence/display/WW/S2-066

Monday Night Football returned to the city of Jacksonville for the first time since 2011, but it ended up being a night that Jags fans would rather forget. Not only did the team lose by a score of 34-31, but they also gave the fanbase a scare as Trevor Lawrence Read More

Send a textMonday Night Football returned to the city of Jacksonville for the first time since 2011, but it ended up being a night that Jags fans would rather forget. Not only did the team lose by a score of 34-31, but they also gave the fanbase a scare as Read More

In Episode 363, Ben and Scott talk through some new hibernation capabilities coming to an Azure VM near you and the announced retirement of SharePoint Add-Ins. It’s also the season of giving and we’re raising money for Girls Who Code. Donate today at https://give.girlswhocode.com/msclouditpro! Like what you hear and want Read More

In this interview, Mike Zayonc, co-founder of Kodif, discusses how AI can transform customer support in freight through automation to improve productivity. He explains how his company's CX and Support automation platform's AI tools increase productivity by 40% by deflecting repetitive requests and resolving issues instantly. Mike also shares advice Read More

Whose packet is is anyway: a new RFC for attribution of internet probes https://isc.sans.edu/forums/diary/Whose%20packet%20is%20it%20anyway%3A%20a%20new%20RFC%20for%20attribution%20of%20internet%20probes/30456/ MLFlow Vulnerability https://www.contrastsecurity.com/security-influencers/discovering-mlflow-framework-zero-day-vulnerability-machine-language-model-security-contrast-security https://mlflow.org/category/news/index.html Abusing STS Tokens https://redcanary.com/blog/aws-sts/ Atlasian Vulnerabilities https://confluence.atlassian.com/security/security-advisories-bulletins-1236937381.html Holiday Hack Challenge https://www.sans.org/mlp/holiday-hack-challenge-2023/