))
<
<div class="span index">1</div> <span><a class="" data-remote="true" data-type="html" href="/series/species-unite">Species Unite</a></span>
Stories that change the way the world treats animals.
Podcasts Worth a Listen
SPONSORED
A cup of vulnerabiliTEA is a podcast dedicated to honouring and sharing vulnerable moments. My goal is to share relatable life experiences, spread love, inspire empathy and vulnerability, and create space to grow and learn from this wholesome journey. So grab your TEA (or coffee, wine, water) and join me with new episodes bi-weekly.
…
continue reading
1
World War COVID Guerre mondiale: From WeaponWorld to PeaceWorld; Learner, begin... De la terre en armes au monde paisible ; Apprenti, débute
learnermarkv
0
343
We live on WeaponWorld. Why not PeaceWorld? How would that work? What should we expect? Has that transition been discussed to your satisfaction, or was it suppressed? I'm slopping a ladle full of forbidden PeaceWorld Mulligan Stew on your WeaponWorld prison zinc tray. Next! Nous habitons la terre en armes. Pourquoi pas au monde paisible ? Comment cela marcherait-il ? Cette transition t'a-t-elle été discutée de façon satisfaisante ou supprimée ? Je te verse une louchée interdite de Ragout Mul ...
…
continue reading
Daily cybersecurity news for practitioners. Vulnerabilities, defenses, threats, network security insight, research and more to make you sound smarter as you get to the office in the morning. New each weekday.
…
continue reading
This show is about remembering, finding, rediscovering, reigniting that feeling of vibrancy. Happiness is your birthright, are you ready to make waves? 🔥💖
…
continue reading
This is a simple woman following a call to discuss the gospel message in contemporary times. Be ready to be challenged, inspired and blessed.
…
continue reading
1
SANS Stormcast Friday, March 27th: Sitecore Exploited; Blasting Past Webp; Splunk and Firefox Vulnerabilities
6:15
6:15
Play Later
Play Later
Lists
Like
Liked
6:15
Sitecore "thumbnailsaccesstoken" Deserialization Scans (and some new reports) CVE-2025-27218 Our honeypots detected a deserialization attack against the CMS Sitecore using a thumnailaccesstoken header. The underlying vulnerability was patched in January, and security firm Searchlight Cyber revealed details about this vulnerability a couple of weeks…
…
continue reading
1
SANS Stormcast Thursday Mar 27th: Classifying Malware with ML; Malicious NPM Packages; Google Chrome 0-day
4:50
4:50
Play Later
Play Later
Lists
Like
Liked
4:50
Leveraging CNNs and Entropy-Based Feature Selection to Identify Potential Malware Artifacts of Interest This diary explores a novel methodology for classifying malware by integrating entropy-driven feature selection with a specialized Convolutional Neural Network (CNN). Motivated by the increasing obfuscation tactics used by modern malware authors,…
…
continue reading
1
SANS Stormcast Wednesday Mar 26th: XWiki Exploit; File Converter Correction; VMWare Vulnerability; Draytek Router Reboots; MMC Exploit Details;
6:14
6:14
Play Later
Play Later
Lists
Like
Liked
6:14
XWiki Search Vulnerablity Exploit Attempts (CVE-2024-3721) Our honeypot detected an increase in exploit attempts for an XWiki command injection vulnerablity. The vulnerability was patched last April, but appears to be exploited more these last couple days. The vulnerability affects the search feature and allows the attacker to inject Groovy code te…
…
continue reading
1
SANS Stormcast Tuesday Mar 25th: Privacy Awware Bots; Ingress Nightmare; Malicious File Converters; VSCode Extension Leads to Ransomware
5:55
5:55
Play Later
Play Later
Lists
Like
Liked
5:55
Privacy Aware Bots A botnet is using privacy as well as CSRF prevention headers to better blend in with normal browsers. However, in the process they may make it actually easier to spot them. https://isc.sans.edu/diary/Privacy%20Aware%20Bots/31796 Critical Ingress Nightmare Vulnerability ingress-nginx fixed four new vulnerabilities, one of which ma…
…
continue reading
1
SANS Stormcast Monday Mar 24th: Critical Next.js Vulnerability; Microsoft Trust Signing Platform Abuse
7:10
7:10
Play Later
Play Later
Lists
Like
Liked
7:10
Critical Next.js Vulnerability CVE-2025-29927 A critical vulnerability in how the x-middleware-subrequest header is verified may lead to bypassing authorization in Next.js applications. https://zhero-web-sec.github.io/research-and-things/nextjs-and-the-corrupt-middleware https://github.com/vercel/next.js/security/advisories/GHSA-f82v-jwr5-mffw http…
…
continue reading
Le traitement des données dans une technologie paisible. https://www.buzzsprout.com/1106222/13366779 LEARNER full text (2024) https://www.buzzsprout.com/1106222/13381922 APPRENTI texte integral (2024)By mark
…
continue reading
Information handling in a peace technology. https://www.buzzsprout.com/1106222/13366779 LEARNER full text (2024) https://www.buzzsprout.com/1106222/13381922 APPRENTI texte integral (2024)By mark
…
continue reading
1
SANS Stormcast Friday Mar 21st: New Data Feeds; SEO Spam; Veeam Deserialization; IBM AIX RCE;
8:24
8:24
Play Later
Play Later
Lists
Like
Liked
8:24
Some New Data Feeds and Little Incident We started offering additional data feeds, and an SEO spamer attempted to make us change a link from an old podcast episode. https://isc.sans.edu/diary/Some%20new%20Data%20Feeds%2C%20and%20a%20little%20%22incident%22./31786 Veeam Deserialization Vulnerability Veeam released details regarding the latest vulner…
…
continue reading
The peace technology applications of science and superstition. True scientific creativity has flatlined since the 1950s. It’s been reduced to marginal improvements of gadgets and banging smaller and smaller objects with bigger and bigger hammers. Corporate weapon science has buried untold scientific discoveries, pending their release during the nex…
…
continue reading
L'application de la science et des superstitions aux technologies paisibles. La véritable créativité scientifique a souffert de ligne plate depuis les années 1950. Elle s’est restreinte à l’amélioration de gadgets aux marges et la à frappe de marteaux plus massifs sur des objets plus microscopiques. La science d’armes corporative a enterré de nombr…
…
continue reading
Le manque d'observer des avertissements jusqu’à ce qu'il ne soit trop tard, en accord avec la mentalité d'armes. https://www.buzzsprout.com/1106222/13366779 LEARNER full text (2024) https://www.buzzsprout.com/1106222/13381922 APPRENTI texte integral (2024)By mark
…
continue reading
Failure to heed warnings until it’s too late, in accordance with weapon mentality. https://www.buzzsprout.com/1106222/13366779 LEARNER full text (2024) https://www.buzzsprout.com/1106222/13381922 APPRENTI texte integral (2024)By mark
…
continue reading
1
SANS Stormcast Thursday Mar 20th: Cisco Smart Licensing Attacks; Vulnerable Drivers again; Synology Advisories Updated
7:09
7:09
Play Later
Play Later
Lists
Like
Liked
7:09
Exploit Attempts for Cisco Smart Licensing Utility CVE-2024-20439 CVE-2024-20440 Attackers added last September's Cisco Smart Licensing Utility vulnerability to their toolset. These attacks orginate most likely from botnets and the same attackers are scanning for a wide range of additional vulnerabilities. The vulnerability is a static credential i…
…
continue reading
1
SANS Stormcast Wednesday Mar 19th 2025: Python DLL Side Loading; Tomcast RCE Correction; SAML Roulette; Windows Shortcut 0-Day
7:18
7:18
Play Later
Play Later
Lists
Like
Liked
7:18
Python Bot Delivered Through DLL Side-Loading A "normal", but vulnerable to DLL side-loading PDF reader may be used to launch additional exploit code https://isc.sans.edu/diary/Python%20Bot%20Delivered%20Through%20DLL%20Side-Loading/31778 Tomcat RCE Correction To exploit the Tomcat RCE I mentioned yesterday, two non-default configuration options mu…
…
continue reading
1
SANS Stormcast Tuesday Mar 18th 2025: Analyzing GUID Encoded Shellcode; Node.js SAML Vuln; Tomcat RCE in the Wild; CSS e-mail obfuscation
7:03
7:03
Play Later
Play Later
Lists
Like
Liked
7:03
Static Analysis of GUID Encoded Shellcode Didier explains how to decode shell code embeded as GUIDs in malware, and how to feed the result to his tool 1768.py which will extract Cobal Strike configuration information from the code. https://isc.sans.edu/diary/Static%20Analysis%20of%20GUID%20Encoded%20Shellcode/31774 SAMLStorm: Critical Authenticatio…
…
continue reading
1
SANS Stormcast Monday March 17th: Mirai Makes Mistakes; Compromised Github Action; ruby-saml vulnerability; Fake GitHub Security Alert Phishing
6:38
6:38
Play Later
Play Later
Lists
Like
Liked
6:38
Mirai Bot Now Incorporating Malformed DrayTek Vigor Router Exploits One of the many versions of the Mirai botnet added some new exploit strings attempting to take advantage of an old DrayTek Vigor Router vulnerability, but they got the URL wrong. https://isc.sans.edu/diary/Mirai%20Bot%20now%20incroporating%20%28malformed%3F%29%20DrayTek%20Vigor%20R…
…
continue reading
1
SECTION 1 - WHY WeaponWorld? WHY NOT PeaceWorld?
0:33
0:33
Play Later
Play Later
Lists
Like
Liked
0:33
How did we get shanghaied aboard this prison galley? Please consult the Table of Contents Page https://www.buzzsprout.com/1106222/4058345 for INTRO and SECTION chapters https://www.buzzsprout.com/1106222/13366779 LEARNER full text (2024) https://www.buzzsprout.com/1106222/13381922 APPRENTI texte integral (2024)…
…
continue reading
1
SECTION 1 - POURQUOI la terre en armes ? POURQUOI PAS le monde paisible?
0:31
0:31
Play Later
Play Later
Lists
Like
Liked
0:31
Mais qu’allait-on faire dans cette galère ? Prier consulter la page Table des matières https://www.buzzsprout.com/1106222/4058453 Pous les chapitres d’ INTRO et de SECTION https://www.buzzsprout.com/1106222/13366779 LEARNER full text (2024) https://www.buzzsprout.com/1106222/13381922 APPRENTI texte integral (2024)…
…
continue reading
How to tumble unstable WeaponWorld into stable PeaceWorld? Please consult the Table of Contents page https://www.buzzsprout.com/1106222/4058345 for INTRO and SECTION chapters https://www.buzzsprout.com/1106222/13366779 LEARNER full text (2024) https://www.buzzsprout.com/1106222/13381922 APPRENTI texte integral (2024)…
…
continue reading
Comment culbuter la terre en armes en pointe sur son vertex du monde paisible ? Prier consulter la page Table des matières https://www.buzzsprout.com/1106222/4058453 Pous les chapitres d’ INTRO et de SECTION https://www.buzzsprout.com/1106222/13366779 LEARNER full text (2024) https://www.buzzsprout.com/1106222/13381922 APPRENTI texte integral (2024…
…
continue reading
What to expect from PeaceWorld? Please consult the Table of Contents page https://www.buzzsprout.com/1106222/4058345 for INTRO and SECTION chapters https://www.buzzsprout.com/1106222/13366779 LEARNER full text (2024) https://www.buzzsprout.com/1106222/13381922 APPRENTI texte integral (2024)By learnermarkv
…
continue reading
À quoi s’attendre du monde paisible ? Prier consulter la page Table des matières https://www.buzzsprout.com/1106222/4058453 Pous les chapitres d’ INTRO et de SECTION https://www.buzzsprout.com/1106222/13366779 LEARNER full text (2024) https://www.buzzsprout.com/1106222/13381922 APPRENTI texte integral (2024)…
…
continue reading
1
SANS Stormcast: File Hashes in MSFT BI; Apache Camel Vuln; Juniper Fixes Exploited Vuln; AMI Patches 10.0 Redfish BMC Vuln
6:07
6:07
Play Later
Play Later
Lists
Like
Liked
6:07
File Hashes Analysis with Power BI Guy explains in this diary how to analyze Cowrie honeypot file hashes using Microsoft's BI tool and what you may be able to discover using this tool. https://isc.sans.edu/diary/File%20Hashes%20Analysis%20with%20Power%20BI%20from%20Data%20Stored%20in%20DShield%20SIEM/31764 Apache Camel Vulnerability Apache released…
…
continue reading
1
SANS Stormcast Thursday Mar 13th: Exploiting Login Pages with Log4j; Patch Tuesday Fallout; Adobe Patches; Medusa Ransomware; Zoom and Font Library Updates;
5:56
5:56
Play Later
Play Later
Lists
Like
Liked
5:56
Log4J Scans for VMWare Hyhbrid Cloud Extensions An attacker is scanning various login pages, including the authentication feature in the VMWare HCX REST API for Log4j vulnerabilities. The attack submits the exploit string as username, hoping to trigger the vulnerability as Log4j logs the username https://isc.sans.edu/diary/Scans%20for%20VMWare%20Hy…
…
continue reading
1
SANS Stormcast Wednesday Mar 12th: Microsoft Patch Tuesday; Apple Patch; Espressif ESP32 Statement
7:54
7:54
Play Later
Play Later
Lists
Like
Liked
7:54
Microsoft Patch Tuesday Microsoft Patched six already exploited vulnerabilities today. In addition, the patches included a critical patch for Microsoft's DNS server and about 50 additional patches. https://isc.sans.edu/diary/Microsoft%20Patch%20Tuesday%3A%20March%202025/31756 Apple Updates iOS/macOS Apple released an update to address a single, alr…
…
continue reading
1
SANS Stormcast Tuesday Mar 11th: Shellcode as UUIDs; Moxe Switch Vuln Updates; Opentext Vuln; Livewire Volt Vuln;
4:59
4:59
Play Later
Play Later
Lists
Like
Liked
4:59
Shellcode Encoded in UUIDs Attackers are using UUIDs to encode Shellcode. The 128 Bit (or 16 Bytes) encoded in each UUID are converted to shell code to implement a cobalt strike beacon https://isc.sans.edu/diary/Shellcode%20Encoded%20in%20UUIDs/31752 Moxa CVE-2024-12297 Expanded to PT Switches Moxa in January first releast an update to address a fr…
…
continue reading
1
SANS Stormcast: Webshells; Undocumented ESP32 Commands; Camera Used For Ransomware Distribution
6:45
6:45
Play Later
Play Later
Lists
Like
Liked
6:45
Commonly Probed Webshell URLs Many attackers deploy web shells to gain a foothold on vulnerable web servers. These webshells can also be taken over by parasitic exploits. https://isc.sans.edu/diary/Commonly%20Probed%20Webshell%20URLs/31748 Undocumented ESP32 Commands A recent conference presentation by Tarlogic revealed several "backdoors" or undoc…
…
continue reading
1
SANS Stormcast Friday Mar 7th: Chrome vs Extensions; Kibana Update; PrePw0n3d Android TV Sticks; Identifying APTs (@sans_edu, Eric LeBlanc)
13:53
13:53
Play Later
Play Later
Lists
Like
Liked
13:53
Latest Google Chrome Update Encourages UBlock Origin Removal The latest update to Google Chrome not only disabled the UBlock Origin ad blocker, but also guides users to uninstall the extension instead of re-enabling it. https://chromereleases.googleblog.com/2025/03/stable-channel-update-for-desktop.html https://www.reddit.com/r/youtube/comments/1j2…
…
continue reading
1
SANS Stormcast Thursday Mar 6th: DShield ELK Analysis; Jailbreaking AMD CPUs; VIM Vulnerability; Snail Mail Ransomware
6:45
6:45
Play Later
Play Later
Lists
Like
Liked
6:45
DShield Traffic Analysis using ELK The "DShield SIEM" includes an ELK dashboard as part of the Honeypot. Learn how to find traffic of interest with this tool. https://isc.sans.edu/diary/DShield%20Traffic%20Analysis%20using%20ELK/31742 Zen and the Art of Microcode Hacking Google released details, including a proof of concept exploit, showing how to …
…
continue reading
1
- INFANTERIE, longues citations rétablies -
41:59
41:59
Play Later
Play Later
Lists
Like
Liked
41:59
Se chausser dans les bottes du combattant moyen. https://www.buzzsprout.com/1106222/13366779 LEARNER full text (2024) https://www.buzzsprout.com/1106222/13381922 APPRENTI texte integral (2024)By mark
…
continue reading
Pull on the boots of an average grunt. https://www.buzzsprout.com/1106222/13366779 LEARNER full text (2024) https://www.buzzsprout.com/1106222/13381922 APPRENTI texte integral (2024)By mark
…
continue reading
1
SANS Stormcast Wednesday Mar 5th: SMTP Credential Hunt; mac-robber.py update; ADSelfService Plus Account Takeover; Android Patch Day; PayPal Scams; VMWare Escape Fix
6:11
6:11
Play Later
Play Later
Lists
Like
Liked
6:11
Romanian Distillery Scanning for SMTP Credentials A particular attacker expanded the scope of their leaked credential file scans. In addition to the usual ".env" style files, it is not looking for specific SMTP related credential files. https://isc.sans.edu/diary/Romanian%20Distillery%20Scanning%20for%20SMTP%20Credentials/31736 Tool Updates: mac-ro…
…
continue reading
1
SANS Stormcast Tuesday Mar 4th: Mark of the Web Details; Sharepint and Click-Fix Phishing; Paragon Partionmanager BYOVD Exploit
6:17
6:17
Play Later
Play Later
Lists
Like
Liked
6:17
Mark of the Web: Some Technical Details Windows implements the "Mark of the Web" (MotW) as an alternate data stream that contains not just the "zoneid" of where the file came from, but may include other data like the exact URL and referrer. https://isc.sans.edu/diary/Mark%20of%20the%20Web%3A%20Some%20Technical%20Details/31732 Havoc Sharepoint with …
…
continue reading
1
SANS Stormcast Monday Mar 3rd: AI Training Data Leaks; MITRE Caldera Vuln; modsecurity bypass
7:08
7:08
Play Later
Play Later
Lists
Like
Liked
7:08
Common Crawl includes Common Leaks The "Common Crawl" dataset, a large dataset created by spidering website, contains as expected many API keys and other secrets. This data is often used to train large language models https://trufflesecurity.com/blog/research-finds-12-000-live-api-keys-and-passwords-in-deepseek-s-training-data Github Repositories E…
…
continue reading
https://www.buzzsprout.com/1106222/13366779 LEARNER full text (2024) https://www.buzzsprout.com/1106222/13381922 APPRENTI texte integral (2024)By Portrait by my brilliant wife, Linda Hulce
…
continue reading
1
Rev'nir vers moi, Comin' Back to Me, par Jefferson Airplane
1:39
1:39
Play Later
Play Later
Lists
Like
Liked
1:39
https://www.buzzsprout.com/1106222/13366779 LEARNER full text (2024) https://www.buzzsprout.com/1106222/13381922 APPRENTI texte integral (2024)By Portrait by my brilliant wife, Linda Hulce
…
continue reading
1
Languis, languis, languis ; Long, long, long ; The Beattles White Album
1:05
1:05
Play Later
Play Later
Lists
Like
Liked
1:05
https://www.buzzsprout.com/1106222/13366779 LEARNER full text (2024) https://www.buzzsprout.com/1106222/13381922 APPRENTI texte integral (2024)By Portrait by my brilliant wife, Linda Hulce
…
continue reading
https://www.buzzsprout.com/1106222/13366779 LEARNER full text (2024) https://www.buzzsprout.com/1106222/13381922 APPRENTI texte integral (2024)By Portrait by my brilliant wife, Linda Hulce
…
continue reading
https://www.buzzsprout.com/1106222/13366779 LEARNER full text (2024) https://www.buzzsprout.com/1106222/13381922 APPRENTI texte integral (2024)By Portrait by my brilliant wife, Linda Hulce
…
continue reading
1
The ink of your eyes, L'encre de tes yeux, by Francis Cabriel
1:20
1:20
Play Later
Play Later
Lists
Like
Liked
1:20
https://www.buzzsprout.com/1106222/13366779 LEARNER full text (2024) https://www.buzzsprout.com/1106222/13381922 APPRENTI texte integral (2024)By Portrait by my brilliant wife, Linda Hulce
…
continue reading
1
SANS Stormcast Friday Feb 28th: Njrat devtunnels.ms; Apple FindMe Abuse; XSS Exploited; @sans_edu Ben Powell EDR vs. Ransomware
14:27
14:27
Play Later
Play Later
Lists
Like
Liked
14:27
Njrat Compaign Using Microsoft dev Tunnels: A recent version of the Njrat remote admin tool is taking advantage of Microsoft's developer tunnels (devtunnels.ms) as a command and control channel. https://isc.sans.edu/diary/Njrat%20Campaign%20Using%20Microsoft%20Dev%20Tunnels/31724 NrootTag Apple FindMy Abuse Malware could use a weakness in the keys …
…
continue reading
1
SANS Stormcast Thursday Feb 27th: High Exfil Ports; Malicious VS Code Theme; Developer Workstation Safety; NAKIVO PoC; OpenH264 and rsync vuln;
6:45
6:45
Play Later
Play Later
Lists
Like
Liked
6:45
Attacker of of Ephemeral Ports Attackers often use ephermeral ports to reach out to download additional resources or exfiltrate data. This can be used, with care, to detect possible compromises. https://isc.sans.edu/diary/%5BGuest%20Diary%5D%20Malware%20Source%20Servers%3A%20The%20Threat%20of%20Attackers%20Using%20Ephemeral%20Ports%20as%20Service%2…
…
continue reading
1
SANS Stormcast Wednesday Feb 26th: M365 Infostealer Botnet; Mixing OpenID Keys; Malicious Medical Image Apps
5:59
5:59
Play Later
Play Later
Lists
Like
Liked
5:59
Massive Botnet Targets M365 with Password Spraying A large botnet is targeting service accounts in M365 with credentials stolen by infostealer malware. https://securityscorecard.com/wp-content/uploads/2025/02/MassiveBotnet-Report_022125_03.pdf Mixing up Public and Private Keys in OpenID The complex OpenID specificiation and the flexibility it suppo…
…
continue reading
1
SANS Stormcast Tuesday Feb 25th: Unfurl Updates; Google Ditches SMS; Paypal Phish; Exim, libXML, Parallels Vuln
6:10
6:10
Play Later
Play Later
Lists
Like
Liked
6:10
Unfurl Update Released Unfurl released an Update fixing a few bugs and adding support to decode BlueSky URLs. https://isc.sans.edu/diary/Unfurl%20v2025.02%20released/31716 Google Confirms GMail To Ditch SMS Code Authentication Google no longer considers SMS authentication save enough for GMail. Instead, it pushes users to use Passkeys, or QR code b…
…
continue reading
1
SANS Stormcast Monday Feb 24th: sigs.py update; Google Introdusing Quantum Safe Sigs; MSFT Update Win 11 issues; LTE/5G Vulns;
5:20
5:20
Play Later
Play Later
Lists
Like
Liked
5:20
Tool Update: Sigs.py Jim updates sigs.py. The tool verifies hashes for files and automatically recognizes what hash is used. https://isc.sans.edu/diary/Tool%20update%3A%20sigs.py%20-%20added%20check%20mode/31706 Google Announcing Quantum Safe Digital Signatures in Cloud KMS Google announced the option to use quantum safe digital signatures for its …
…
continue reading
In this conversation, I talk about the energetic shifts expected in 2025. It is important that we choose peace amidst chaos, the role of intuition in embracing change, and the significance of prayer and support during transformative times. The discussion encourages listeners to connect with their inner selves and find solace in community and spirit…
…
continue reading
1
SANS Stormcast Friday Feb 21st: Kibana Queries; Mongoose Injection; U-Boot Flaws; Unifi Protect Camera Vulnerabilities; Protecting Network Devices as Endpoint (Austin Clark @sans_edu)
12:29
12:29
Play Later
Play Later
Lists
Like
Liked
12:29
Using ES|QL In Kibana to Query DShield Honeypot Logs Using the "Elastic Search Piped Query Language" to query DShield honeypot logs https://isc.sans.edu/diary/Using%20ES%7CQL%20in%20Kibana%20to%20Queries%20DShield%20Honeypot%20Logs/31704 Mongoose Flaws Put MongoDB at risk The Object Direct Mapping library Mongoose suffers from an injection vulnerab…
…
continue reading
1
SANS Stormcast Wednesday Feb 20th: XWorm Cocktail; Quantum Computing Breakthrough; Signal Phishing
7:01
7:01
Play Later
Play Later
Lists
Like
Liked
7:01
XWorm Cocktail: A Mix of PE data with PowerShell Code Quick analysis of an interesting XWrom sample with powershell code embedded inside an executable https://isc.sans.edu/diary/XWorm+Cocktail+A+Mix+of+PE+data+with+PowerShell+Code/31700 Microsoft's Majorana 1 Chip Carves New Path for Quantum Computing Microsoft announced a breack through in Quantum…
…
continue reading
1
SANS Stormcast Tuesday Feb 19th: ModelScan AI Model Security; OpenSSH Vuln; Juniper Patches; Dell BIOS Vulnerability
6:55
6:55
Play Later
Play Later
Lists
Like
Liked
6:55
ModelScan: Protection Against Model Serialization Attacks ModelScan is a tool to inspect AI models for deserialization attacks. The tool will detect suspect commands and warn the user. https://isc.sans.edu/diary/ModelScan%20-%20Protection%20Against%20Model%20Serialization%20Attacks/31692 OpenSSH MitM and DoS Vulnerabilities OpenSSH Patched two vuln…
…
continue reading
1
SANS Stormcast: Securing the Edge; PostgreSQL Exploit; Ivanti Exploit; WinZip Vulnerablity; Xerox Patch
4:39
4:39
Play Later
Play Later
Lists
Like
Liked
4:39
My Very Personal Guidance and Strategies to Protect Network Edge Devices A quick summary to help you secure edge devices. This may be a bit opinionated, but these are the strategies that I find work and are actionable. https://isc.sans.edu/diary/My%20Very%20Personal%20Guidance%20and%20Strategies%20to%20Protect%20Network%20Edge%20Devices/31660 Postg…
…
continue reading
