Maybe a Little Bit More Interesting React2Shell Exploit Attackers are branching out to attack applications that initial exploits may have missed. The latest wave of attacks is going after less common endpoints and attempting to exploit applications that do not have Next.js exposed. https://isc.sans.edu/diary/Maybe%20a%20Little%20Bit%20More%20Interesting%20React2Shell%20Exploit/32578 UAT-9686 actively targets Cisco Secure Email Read More
In this gripping episode, we dive deep into the heart and soul of Autumn Schmidt, a former police officer whose journey from the front lines of law enforcement to the forefront of women's empowerment is nothing short of remarkable. Autumn’s story is rich with the kind of raw vulnerability that Read More
Send a textDr. Zeke Emanuel joins Dr. Michael Koren to discuss his new book Eat Your Ice Cream: Six Simple Rules for a Long and Healthy Life. Dr. Emanuel explains how frustrated he is at trendy, influencer-style health advice and how it accentuates intense, short-term "miracle fixes," which are almost Read More
Send us a textJets came to town with only two wins for the season. This time of year teams like to play spoilers so Jaguars still had to be on point for this game...and they scored 48 points. Trevor FUCKING Lawrence was on point. Has Coen unlocked our QB? We Read More
Beyond RC4 for Windows authentication Microsoft outlined its transition plan to move away from RC4 for authentication and published guidance and tools to facilitate this change. https://www.microsoft.com/en-us/windows-server/blog/2025/12/03/beyond-rc4-for-windows-authentication FortiCloud SSO Login Vuln Exploited Arctic Wolf observed exploit attempts against vulnerable FortiGate appliances. https://arcticwolf.com/resources/blog/arctic-wolf-observes-malicious-sso-logins-following-disclosure-cve-2025-59718-cve-2025-59719/ FrePBX Vulnerability Horizon3.ai identified three distinct vulnerabilities in Read More
In this special "Best-Of" compilation, I’ve mashed up four powerhouse conversations into one episode to give you the ultimate blueprint for building a successful freight agency.We aren't just talking theory; we are connecting the dots between the vision, the tech, the sales strategy, and the culture required to win in Read More
More React2Shell Exploits CVE-2025-55182 Our honeypots continue to detect numerous React2Shell variants. Some using slightly modified exploits https://isc.sans.edu/diary/More%20React2Shell%20Exploits%20CVE-2025-55182/32572 The Fragile Lock: Novel Bypasses For SAML Authentication SAML is a tricky protocol to implement correctly, in particular if different XML parsers are used that may not always agree on how to Read More
Send a textDr. Michael Koren joins Kevin Geddings to review some possibly outdated information on modern statin bottles. Kevin reveals that he dutifully takes his statin at night and avoids grapefruit, but cardiologist Michael Koren, MD, gives updated advice. The doctor states that rosuvastatin, a newer statin, is long-acting, and Read More
Abusing DLLs EntryPoint for the Fun DLLs will not just execute code when some of their functions are called, but also as they are loaded. https://isc.sans.edu/diary/Abusing%20DLLs%20EntryPoint%20for%20the%20Fun/32562 Apple Patches Everything: December 2025 Edition Apple released patches for all of its operating systems, fixing two already exploited vulnerabilities. ClickFix Attacks Still Using Read More
Send us a textIt was a cold and rainy day down at Everbank when the Jaguars took on the Colts. Yes, Danika did tailgate and sit in that slop. Colts haven't won in Jacksonville since 2014 and the streak continues. Colts unfortunately lost Danny Dimes but the Jaguars took care Read More
Using AI Gemma 3 Locally with a Single CPU Installing AI models on modes hardware is possible and can be useful to experiment with these models on premise https://isc.sans.edu/diary/Using%20AI%20Gemma%203%20Locally%20with%20a%20Single%20CPU%20/32556 Mystery Google Chrome 0-Day Vulnerability Google released an update for Google Chrome fixing a vulnerability that is already being exploited, but Read More
Send a textWe ride a convincing win over the Colts into first place and map out how Jacksonville can close the AFC South. Trevor Lawrence is finding his rhythm in Liam Coen’s scheme while the defense sets the tone with timely pressure and takeaways.The specific topics we discussed this week Read More
Possible exploit variant for CVE-2024-9042 (Kubernetes OS Command Injection) We observed HTTP requests with our honeypot that may be indicative of a new version of an exploit against an older vulnerability. Help us figure out what is going on. https://isc.sans.edu/diary/Possible%20exploit%20variant%20for%20CVE-2024-9042%20%28Kubernetes%20OS%20Command%20Injection%29/32554 React2Shell: Technical Deep-Dive & In-the-Wild Exploitation of CVE-2025-55182 Wiz has Read More
We sit down with Lt. Andrew Masters of Fort Lauderdale Fire Rescue, a man who has stared into the abyss. His raw, unfiltered journey takes us deep into the struggles of mental health within the first responder community, where the weight of despair nearly pushed him over the edge. Andrew Read More
Welcome back to Blu's News! Tonight we’re diving deep into the DCU and MCU. We have the wild description of the Supergirl: Woman of Tomorrow trailer (featuring a very rude dog), reports that Fantastic Four: First Steps is putting up historically low numbers on Disney+, and our Top 5 demands Read More
Send a textRetired Rear Admiral Gene Kendall joins cardiologist Dr. Michael Koren to discuss his exciting career, starting as one of the first Black students at Duke University. The former admiral discusses the excitement, disappointment, and life lessons going from a "big fish in a small pond" to an elite Read More
Microsoft Patch Tuesday Microsoft released its regular monthly patch on Tuesday, addressing 57 flaws. https://isc.sans.edu/diary/Microsoft%20Patch%20Tuesday%20December%202025/32550 Adobe Patches Adobe patched five products. The remote code execution in ColdFusion, as well as the code execution issue in Acrobat, will very likely see exploits soon. https://helpx.adobe.com/security.html Ivanti Endpoint Manager Patches Ivanti patched four Read More
In this best-of episode of Everything is Logistics, we’re building the business case for healthy paranoia in freight. I’m pulling together clips from past conversations with Jonathan Ryan (Overhaul), Reid Clements (Highway), and Mark Funk & Shivrani Narayan (SPI Logistics), plus a breakdown with Grace Sharkey (Orderful) on the current Read More
nanoKVM Vulnerabilities The nanoKVM device updates firmware insecurely; however, the microphone that the authors of the advisory referred to as undocumented may actually be documented in the underlying hardware description. https://www.tomshardware.com/tech-industry/cyber-security/researcher-finds-undocumented-microphone-and-major-security-flaws-in-sipeed-nanokvm Ghostframe Phishing Kit The Ghostframe phishing kit uses iFrames and random subdomains to evade detection https://blog.barracuda.com/2025/12/04/threat-spotlight-ghostframe-phishing-kit WatchGuard Advisory WatchGuard Read More
AutoIT3 Compiled Scripts Dropping Shellcodes Malicious AutoIT3 scripts are usign the FileInstall function to include additional scripts at compile time that are dropped as temporary files during execution. https://isc.sans.edu/diary/AutoIT3%20Compiled%20Scripts%20Dropping%20Shellcodes/32542 React2Shell Update The race is on to patch vulnerable systems. Various groups are aggressively scanning the internet with different exploit variants. Read More
