Podcasts about Cyber

Positive trends related to public IP range from the year 2025 Fewer ICS systems, as well as fewer systems with outdated SSL versions, are exposed to the internet than before. The trend isn t quite clean for ISC, but SSL2 and SSL3 systems have been cut down by about half. https://isc.sans.edu/diary/Positive%20trends%20related%20to%20public%20IP%20ranges%20from%20the%20year%202025/32584 Hewlett-Packard Enterprise OneView Software, Remote Code Execution HPs OneView Software allows for unauthenticated code execution https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbgn04985en_us&docLocale=en_US#vulnerability-summary-1 Trufflehog Detecting JWTs with Public Keys Trufflehog added the ability to detect JWT tokens and validate them using public keys. https://trufflesecurity.com/blog/trufflehog-now-detects-jwts-with-public-key-signatures-and-verifies-them-for-liveness

Maybe a Little Bit More Interesting React2Shell Exploit Attackers are branching out to attack applications that initial exploits may have missed. The latest wave of attacks is going after less common endpoints and attempting to exploit applications that do not have Next.js exposed. https://isc.sans.edu/diary/Maybe%20a%20Little%20Bit%20More%20Interesting%20React2Shell%20Exploit/32578 UAT-9686 actively targets Cisco Secure Email Gateway and Secure Email and Web Manager Cisco s Security Email Gateway and Secure Email and Web Manager patch an already-exploited vulnerability. https://blog.talosintelligence.com/uat-9686/ https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sma-attack-N9bf4 SONICWALL SMA1000 APPLIANCE LOCAL PRIVILEGE ESCALATION VULNERABILITY A local privilege escalation vulnerability, which SonicWall patched today, is already being exploited. https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0019 Google releases vulnerability details Google updated last week s advisory by adding a CVE to the mystery vulnerability and adding a statement that it affects WebGPU. No new patch was released. https://chromereleases.googleblog.com/2025/12/stable-channel-update-for-desktop_16.html

On today's episode, we welcome back cybersecurity expert Caleb Barlow. Caleb joins us to explore lessons learned from conflicts in Ukraine and Gaza, with a focus on emerging threats to GPS systems and how they could impact security, military operations, and critical infrastructure. While this show covers legal topics, and Ben is a lawyer, the views expressed do not constitute legal advice. For official legal advice on any of the topics we cover, please contact your attorney.  Get the weekly Caveat Briefing delivered to your inbox. Like what you heard? Be sure to check out and subscribe to our ⁠⁠⁠⁠⁠⁠⁠Caveat Briefing⁠⁠⁠⁠⁠⁠⁠, a weekly newsletter available exclusively to ⁠⁠⁠⁠⁠⁠⁠N2K Pro⁠⁠⁠⁠⁠⁠⁠ members on ⁠⁠⁠⁠⁠⁠⁠N2K CyberWire's⁠⁠⁠⁠⁠⁠⁠ website. N2K Pro members receive our Thursday wrap-up covering the latest in privacy, policy, and research news, including incidents, techniques, compliance, trends, and more. This week's ⁠⁠⁠⁠Caveat Briefing⁠⁠⁠⁠ covers ⁠President Trump's new executive order aimed at overriding state A.I. laws to create a single federal regulatory framework, boosting U.S. “global A.I. dominance” and favoring tech companies. The order grants the attorney general authority to challenge state regulations, threatens to withhold federal funds from noncompliant states, and has sparked bipartisan opposition amid concerns about consumer protection and child safety. Curious about the details? Head over to the ⁠⁠⁠⁠⁠⁠⁠Caveat Briefing⁠⁠⁠⁠⁠⁠⁠ for the full scoop and additional compelling stories. Got a question you'd like us to answer on our show? You can send your audio file to ⁠⁠⁠⁠⁠⁠⁠caveat@thecyberwire.com⁠⁠⁠⁠⁠⁠⁠. Hope to hear from you. Learn more about your ad choices. Visit megaphone.fm/adchoices

In this last episode of the special AI mini-series, we now explore the human side of transformation, where technology meets purpose and people remain at the center. From future jobs and critical thinking to working with C-level leaders, how human intervention and high-quality data drive success in an AI-powered world.This week Dave, Esmee , Rob sit down with Johanna Hutchinson, CDO at BAE systems about why data matters, the rise of Sovereign AI, and the skills shaping the intelligence age. TLDR00:55 Introduction of Johanna Hutchinson02:09 Explaining the State of AI mini-series with Craig06:01 Conversation with Johanna34:20 Weaving today's data tapestries with AI40:20 Going to a rave GuestJohanna Hutchinson: https://www.linkedin.com/in/johanna-hutchinson-95b95568/ HostsDave Chapman: https://www.linkedin.com/in/chapmandr/Esmee van de Giessen: https://www.linkedin.com/in/esmeevandegiessen/Rob Kernahan: https://www.linkedin.com/in/rob-kernahan/with co-host Craig Suckling: https://www.linkedin.com/in/craigsuckling/ProductionMarcel van der Burg: https://www.linkedin.com/in/marcel-vd-burg/Dave Chapman: https://www.linkedin.com/in/chapmandr/ SoundBen Corbett: https://www.linkedin.com/in/ben-corbett-3b6a11135/Louis Corbett:  https://www.linkedin.com/in/louis-corbett-087250264/ 'Cloud Realities' is an original podcast from Capgemini

If you like what you hear, please subscribe, leave us a review and tell a friend! 

On this episode of Have a Seat with Chris Hansen, Chris is joined by legendary country music artist John Rich talk his new song, The Righteous Hunter, and music video that tackles the epidemic of human trafficking. Having co-fronted the band Lonestar, and currently one-half of the country music duo Big and Rich, John Rich is using his voice and platform to raise awareness, advocate for education and call for change surrounding human trafficking. Watch The Righteous Hunter by John Rich on Youtube HERE: https://www.youtube.com/watch?v=o-wfCN2qVew X - @johnrich www.johnrich.com Thanks to our sponsors: Home Title Lock: Go to ⁠https://hometitlelock.com/chrishansen⁠ and use promo code HANSEN to get a FREE title history report and a FREE TRIAL of their Triple Lock Protection! For details visit ⁠https://hometitlelock.com/warranty⁠ Learn more about your ad choices. Visit megaphone.fm/adchoices

Beyond RC4 for Windows authentication Microsoft outlined its transition plan to move away from RC4 for authentication and published guidance and tools to facilitate this change. https://www.microsoft.com/en-us/windows-server/blog/2025/12/03/beyond-rc4-for-windows-authentication FortiCloud SSO Login Vuln Exploited Arctic Wolf observed exploit attempts against vulnerable FortiGate appliances. https://arcticwolf.com/resources/blog/arctic-wolf-observes-malicious-sso-logins-following-disclosure-cve-2025-59718-cve-2025-59719/ FrePBX Vulnerability Horizon3.ai identified three distinct vulnerabilities in FreePBX. In particular, the authentication by-pass issue should be of concern, but default FreePBX installs do not use the vulnerable web authentication feature. https://horizon3.ai/attack-research/the-freepbx-rabbit-hole-cve-2025-66039-and-others/

Cybersecurity is essential for every practice that relies on technology. In this episode, guest Kaitlin Upchurch, Senior Vice President and Cyber & Tech Practice Leader at Lockton, addresses the cybersecurity questions practices are—and are not—thinking about. She explains why cybersecurity risks are often misunderstood, what makes health care a prime target, and why insurance alone is not enough. Tune in to understand your cyber exposure, the biggest threats facing practices today, and the first steps to strengthen your protection beyond buying a policy.  Chapters00:00 Intro00:47 Banter04:25 Guest background10:20 Tell us about Lockton.13:40 Do medical practices need cybersecurity?18:40 What are cybersecurity misconceptions?20:48 What are some cybersecurity threats?25:00 How can medical practices avoid cybersecurity issues?26:37 Access+27:16 Legal Takeaways28:45 OutroWatch full episodes of our podcast on our YouTube channel: https://www.youtube.com/@byrdadatto  Stay connected for the latest business and health care legal updates:WebsiteFacebookInstagramLinkedIn

On today's program, sponsored by Elbit America, Dr. Jim Lewis of the Center for European Policy Analysis and Mark Montgomery, a retired US Navy rear admiral who is now the senior director of the Center on Cyber and Technology Innovation at the Foundation for Defense of Democracies and Cyberspace Solarium Commission senior advisor join Defense & Aerospace Report Editor Vago Muradian to review the year in cyber and technology.

In this episode of the Foster Friendly Podcast, host Courtney Williams engages with cybersecurity experts Chad Rychlewski and Kae David to discuss the critical importance of protecting children in the digital age. They explore various topics including digital footprints, the risks associated with social media, and the necessity of open communication between parents and children. The conversation emphasizes the need for parents, especially foster parents, to be proactive in safeguarding their children's online presence and understanding the technology they use. The episode also highlights practical tips and resources for parents to navigate the complexities of digital safety.Checkout their website:www.cybersecurityparents.comTakeawaysUnderstanding digital footprints is crucial for child safety.Parents must teach children about online risks.Open communication is key to building trust with children.Cyber bullying is a significant risk for kids online.Locking children's credit can prevent identity theft.Foster parents can set rules for technology use.Conducting tech audits helps ensure safety.Behavior contracts can clarify expectations around technology.All devices with internet access need to be monitored.Staying updated on technology changes is essential for parents.

Welcome to Mastering Cyber with Host Alissa (Dr Jay) Abdullah, PhD, SVP & Deputy CSO at Mastercard, and former White House technology executive. Listen to this weekly one-minute podcast to help you maneuver cybersecurity industry tips, terms, and topics. Buckle up, your 60 seconds of cyber starts now! Sponsored by Mastercard: https://mastercard.us/en-us.html

If you like what you hear, please subscribe, leave us a review and tell a friend!

Watch The X22 Report On Video No videos found (function(w,d,s,i){w.ldAdInit=w.ldAdInit||[];w.ldAdInit.push({slot:17532056201798502,size:[0, 0],id:"ld-9437-3289"});if(!d.getElementById(i)){var j=d.createElement(s),p=d.getElementsByTagName(s)[0];j.async=true;j.src="https://cdn2.decide.dev/_js/ajs.js";j.id=i;p.parentNode.insertBefore(j,p);}})(window,document,"script","ld-ajs");pt> Click On Picture To See Larger PictureCalifornia is destroying their gasoline market, they want the state to own it, socialism. Oil prices are dropping, gas prices are dropping soon gas will be close to $1. Trump is reversing the [CB] illusion, jobs are being returned to the private sector. All in preparation to go back to the Constitution. The [DS] will continue to push back and try to delay everything Trump is trying to do. The House is prepared to make his EO into law, this will protect the country into the future. Trump had the real Generals stand behind him, these are the individuals that will protect the Republic from the [DS]. Trump is undoing decades of corruption, exposing the [DS] treasonous crimes, they will fight to hide their treasonous acts but this will fail. In the end the Military is the only way. Economy (function(w,d,s,i){w.ldAdInit=w.ldAdInit||[];w.ldAdInit.push({slot:18510697282300316,size:[0, 0],id:"ld-8599-9832"});if(!d.getElementById(i)){var j=d.createElement(s),p=d.getElementsByTagName(s)[0];j.async=true;j.src="https://cdn2.decide.dev/_js/ajs.js";j.id=i;p.parentNode.insertBefore(j,p);}})(window,document,"script","ld-ajs"); https://twitter.com/US_OGA/status/2000639453866651711?s=20 https://twitter.com/KobeissiLetter/status/2000951982874636662?s=20 https://twitter.com/profstonge/status/2000628845918265518?s=20 https://twitter.com/KobeissiLetter/status/2000925538131829101?s=20 https://twitter.com/RealEJAntoni/status/2000925018281402525?s=20 https://twitter.com/profstonge/status/2000952081012940948?s=20 https://twitter.com/RapidResponse47/status/2000966123274068007?s=20 https://twitter.com/RealEJAntoni/status/2000936248370717073?s=20 https://twitter.com/EricLDaugh/status/2000922549060858200?s=20   $2,000 per household, depending on the number of workers.” “[The economy] is gonna start lifting off in Q1 and Q2.” This is HUGE! Political/Rights https://twitter.com/KanekoaTheGreat/status/2000701268806062358?s=20 https://twitter.com/KanekoaTheGreat/status/2000713713423196652?s=20 https://twitter.com/KanekoaTheGreat/status/2000766725231665257?s=20 https://twitter.com/KnightsTempOrg/status/2000645606964933100?s=20 WEIRD? Police Publish and Quickly Delete Photos of Rob Reiner's Son Being Cuffed for Slaughtering Parents, Give No Explanation Nick Reiner, the 32-year-old son of liberal activist and famed director Rob Reiner, has been arrested and charged with the brutal murder of his parents. The LAPD Gang and Narcotics Division published dramatic photos of Nick's handcuffed arrest on Instagram on Monday, but quickly deleted them without explanation. Rob Reiner, 78, known for classics like The Princess Bride, Spinal Tap, and When Harry Met Sally, and his wife Michele Singer Reiner, 68, were found stabbed to death in their Brentwood, Los Angeles home on Sunday afternoon. The New York Post reports: Nick Reiner, whose face is blurred out, is seen being forced to the ground with his hands cuffed behind his back, according to one photo. Another snap showed law enforcement pushing the suspect against the front of a squad car. In the caption, the unit only identified the man as “a double homicide suspect.” The arrest was made by US Marshals with the assistance of the LAPD's robbery homicide division, according to the post. An LAPD spokesperson declined to comment when asked why the force's gang and narcotics unit deleted the arrest photo shortly after it was published. The since-deleted photos: Nick, who has long battled severe drug addiction starting in his teens, co-wrote and starred in the 2016 semi-autobiographical film Being Charlie, directed by his father, which chronicled a young man's struggles with substance abuse and rehab. Insiders report that Nick “really resented” his father and “hated himself for not being as successful,” amid ongoing family tensions. The night before the murders, Rob and Nick reportedly got into a “very loud argument” at Conan O'Brien's Christmas party, loud enough for other guests to notice. Source: thegatewaypundit.com https://twitter.com/nypost/status/2000870292227260695?s=20 https://twitter.com/barrycunningham/status/2000736216354853228?s=20   lists are…well you know. TAKE A LISTEN https://twitter.com/RealSLokhova/status/2000919590449394156?s=20 Real Texas Conservative  The tragic deaths of filmmaker Rob Reiner and his wife Michele on December 14, 2025, have cast a somber shadow over Hollywood, prompting reflections on legacy, loss, and the lingering scars of political division. In response, President Donald Trump’s Truth Social post on December 15, 2025 – framing their passing through the lens of “Trump Derangement Syndrome” (TDS) – has ignited controversy. Yet, when examined against the backdrop of Reiner’s decade-long barrage of vitriolic rhetoric against Trump, the statement emerges not as callous, but as an appropriate blend of pointed satire, genuine sympathy, and a timely concern for mental health. This piece builds an ironclad case for its fittingness, rooted in factual history, psychological insight, and legal precedent. To understand the appropriateness of Trump’s words, one must first confront the unyielding hostility Reiner directed at him since 2015. Reiner, celebrated for directing classics like “This Is Spinal Tap” and “The Princess Bride,” transformed into one of Trump’s most vocal detractors after his presidential candidacy. In a 2016 interview with The Hollywood Reporter, Reiner labeled Trump a “con man” and “dangerous,” warning he would erode democratic norms. This escalated over the years. By 2018, Reiner tweeted comparisons of Trump to Hitler, accusing him of fostering fascism and white supremacy. His 2024 documentary “God & Country” explicitly tied Trump’s influence to Christian nationalism, portraying it as a threat to American democracy. Reiner’s social media feed became a relentless stream of attacks, calling Trump a “pathological liar,” “sociopath,” and “existential danger” in posts that amassed millions of views. Even in 2025, shortly before his death, Reiner urged boycotts of Trump-related events, framing his re-election as apocalyptic. These were not isolated jabs but a sustained campaign, often personal and inflammatory, that Reiner himself admitted stemmed from deep-seated outrage. This history of antagonism, predominantly initiated by Reiner, sets the stage for why Trump’s response is not only defensible but proportionate. Far from escalating the feud posthumously, Trump’s post acknowledges Reiner’s talents – “a tortured and struggling, but once very talented movie director and comedy star” – while attributing the tragedy to TDS, a “mind-crippling disease” fueled by “raging obsession.” This framing isn’t baseless invention; it’s grounded in credible psychological analysis. Critics have questioned the timing of Trump’s post, issued just a day after the tragedy, as potentially too raw or opportunistic. However, this immediacy is precisely what makes it authentic and effective, aligning with Trump’s longstanding style of direct, unfiltered leadership in a 24/7 news cycle where narratives solidify within hours. Historical precedents abound; consider how President Lincoln addressed critics’ deaths or political losses with prompt wit during the Civil War, using fresh moments to foster national introspection and prevent distorted legacies. Similarly, Trump’s swift response cuts through emerging media spin – already framing Reiner solely as a heroic anti-Trump voice – by injecting balance and psychological truth right when public discourse peaks. Delaying would risk seeming calculated or detached, whereas this timing underscores sincerity, especially paired with the post’s sympathetic close. In essence, it’s not haste but strategic candor, transforming grief into a teachable moment on division’s dangers before emotions calcify. Transitioning from personal history to broader insight, TDS has been recognized by mental health experts as a manifestation of intense political polarization leading to real psychological strain. Psychiatrist Dr. Keith Ablow, in analyses shared on platforms like the Mark Simone Show, described TDS as rooted in “mass hysteria,” where individuals project anxieties onto a political figure, resulting in paranoia, chronic stress, and potential health declines. Research in the Journal of Abnormal Psychology supports this, linking partisan hatred to elevated cortisol levels, anxiety disorders, and weakened well-being. Trump’s reference to TDS isn’t mockery; it’s a diagnostic observation, highlighting how Reiner’s fixation – evident in his own words – might have contributed to personal tolls, especially amid reports of familial strife surrounding the deaths. By raising this, Trump shifts the narrative from vendetta to vigilance, urging awareness of how ideological obsessions erode lives. Moreover, the post’s satirical edge aligns with a storied tradition of political commentary, making it intellectually apt rather than insensitive. Trump employs hyperbole – “driving people CRAZY” amid America’s “Golden Age” – to underscore the irony of Reiner’s paranoia against tangible achievements like record economic growth, Middle East peace accords, and energy independence during his administration. This mirrors Jonathan Swift’s exaggerated proposals in “A Modest Proposal” or Abraham Lincoln’s witty rebukes of critics, using humor to expose societal flaws without literal malice. Legally, such expression is shielded by the First Amendment; the Supreme Court’s ruling in Hustler Magazine v. Falwell affirms that satirical opinions about public figures, absent provable falsehoods, are protected speech. Trump’s “reportedly due to” phrasing acknowledges speculation, ensuring it remains opinion, not defamation. What elevates the statement to appropriateness is its undercurrent of grace amid past unkindnesses, including Trump’s rare direct engagement with Reiner pre-tragedy despite the instigations. The post concludes with “May Rob and Michele rest in peace!” This isn’t perfunctory; it’s a sincere extension of sympathy, humanizing both parties and transcending the feud while modeling reciprocity in an era of unrelenting acrimony. Trump’s words match rhetoric’s intensity yet cap it with compassion and a mental health caveat, turning potential gloating into a nudge toward understanding division’s toll. In conclusion, Trump’s response is ironclad in its fittingness because it reciprocates a decade of Reiner’s attacks with measured satire, validates psychological realities, and prioritizes sympathy over score-settling. It doesn’t diminish the tragedy but illuminates division’s costs, encouraging reflection. Postscript: While the author is not an attorney or mental health practitioner, his nearly two decades as a seasoned content writer and editor have honed expert research skills, enabling rigorous analysis grounded in verifiable facts and legal precedents. https://twitter.com/DC_Draino/status/2000931274744324237?s=20 https://twitter.com/AlecLace/status/2000700955457630718?s=20 https://twitter.com/KurtSchlichter/status/2000694706054029700?s=20  reason for it. Sadly, past experience, teaches us that the most likely reason for the lack of transparency is that the answers are not going to support the left-wing agenda of the local Rhode Island Democrats. I could be wrong. But if I was wrong, I have a nagging suspicion. I would've had answers to those questions already. The FBI is offering a $50,000 reward for information leading to the arrest of this man. Trump blames Brown, not FBI, for delay in finding shooting suspect President Trump blamed Brown University for the delay in locating the suspect in the fatal mass shooting on the school's campus in Rhode Island on Saturday. “You'd really have to ask the school a little bit more about that because this was a school problem,” Trump said when asked on Monday if FBI Director Kash Patel has told him why it's been difficult for the FBI to identify the suspected shooter. “They had their own guards. They had their own police. They had their own everything, but you'd have to ask that question really to the school, not to the FBI. We came in after the fact, and the FBI will do a good job, but they came in after the fact,” he said. Source: thehill.com War/Peace https://twitter.com/WarClandestine/status/2000694318512652750?s=20 JUST IN: US OBLITERATES 3 More Venezuelan Drug Boats Just Hours After President Trump Designates Fentanyl as a Weapon of Mass Destruction United States Southern Command on Monday announced that Joint Task Force Southern Spear took out three narcotrafficking vessels in the Eastern Pacific.  A total of eight “narco-terrorists” were killed in the strikes. “Intelligence confirmed that the vessels were transiting along known narco-trafficking routes in the Eastern Pacific and were engaged in narco-trafficking,” US SOUTHCOM said. Video from the strikes shows massive explosions on each boat, turning them into burning piles of rubble. https://twitter.com/Southcom/status/2000756230252314901?s=20 Source: thegatewaypundit.com Trump: Syria is a key part of peace efforts in the Middle East Washington, Dec. 16 (SANA) U.S. President Donald Trump described the developments in Syria this year as “remarkable,” highlighting that the United States is committed to ensuring lasting peace in the Middle East, with Syria playing an essential role in that peace. Source: sana.sy 1306 Q !xowAT4Z3VQ ID: e7b971 No.1248119 Apr 30 2018 10:51:06 (EST) Define the terms of the Iran nuclear deal. Does the agreement define & confine cease & desist ‘PRO' to the republic of Iran? What if Iran created a classified ‘satellite' Nuclear facility in Northern Syria? What if the program never ceased? What other bad actors are possibly involved? Did the U.S. know? Where did the cash payments go? How many planes delivered? Did all planes land in same location? Where did the U1 material end up? Is this material traceable? Yes. Define cover. What if U1 material ended up in Syria? What would be the primary purpose? SUM OF ALL FEARS. In the movie, where did the material come from? What country? What would happen if Russia or another foreign state supplied Uranium to Iran/Syria? WAR. What does U1 provide? Define cover. Why did we strike Syria? Why did we really strike Syria? Define cover. Patriots in control. Q British Intelligence Head Says Prepare for War Against Russia  The newly appointed head of MI6, Blaise Metreweli, formerly known by her position as “Q”, is literally the granddaughter of factual Ukraine Nazi, Constantine Dobrowolski.  Now, as head of MI6 Metreweli wants war with Russia. In a rather remarkable speech to the British people, Blaise Metreweli proclaimed Europe is in “the space between peace and war,” with a direct military conflict with Russia looming as the biggest threat.  Metreweli declared, “Our world is being actively remade, with profound implications for national and international security.” Source: theconservativetreehouse.com https://twitter.com/disclosetv/status/2000898313579561365?s=20 https://twitter.com/MarioNawfal/status/2000896186413441184?s=20   have already been filed. The World Bank estimates the total at $524 billion over the next decade – triple Ukraine’s 2024 GDP. Zelensky: “It’s not enough to force Russia into a deal. It’s not enough to make it stop killing. We must make Russia accept that there are rules in the world.” Mechanism: Register of Damage (created 2023): collects claims from individuals, companies, and the Ukrainian state. Claims Commission: reviews, validates, and awards compensation case-by-case. Categories: sexual violence, child deportations, infrastructure destruction, religious sites bombed. Funding plan: Frozen Russian assets held by the EU, supplemented by member contributions. Dutch FM David van Weel: “The goal is to have validated claims that will ultimately be paid by Russia.” Enforcement? Still being worked out. Complication: Trump's team floated amnesty for war crimes as part of a peace deal – makes prosecuting the very individuals being billed impossible. Next steps: Convention takes force after 25 nations ratify it (if funds secured). Russia calls frozen-assets proposal “illegal,” denies war crimes, threatens retaliation. Reality check: This is post-WWII-style reparations applied to an ongoing conflict. The $524B estimate covers through 2024 only – 2025's escalated attacks on utilities, transport, and civilians already make the number outdated. https://twitter.com/AwakenedOutlaw/status/2000626884145754206?s=20   breaking out. Their position is legitimately insane. Sadly, what’s clear is that the European leadership is comprised of war-mongering, bloodthirsty psychopaths. The idiom, “With friends like these, who needs enemies?” comes to mind. Only in this case, it’s not a sarcastic observation. ______ EU Globalists Threaten to Dump $2.34 Trillion in U.S. Debt to Stop Trump's Ukraine Peace Deal JUST IN: Senate Advances $900 BILLION Defense Spending Bill with Military Aid to Ukraine Senate advances $900 billion defense spending bill The US Senate on Monday voted to end the filibuster and advance the National Defense Authorization Act to a final vote.  The bipartisan vote, 76-20, invoked cloture on the bill, bringing it one step closer to final passage, which could still take days. Still, some lawmakers seek to amend the bill further, which would then require House passage before landing on the President's desk. Burchett: Big vote tonight was the NDAA, National Defense Authorization Act, and it was $900.6 billion. There’s money in there for, of course, Ukraine, $800 million total, and some other things, money in there for recognizing an Indian tribe out of North Carolina— has nothing to do with national security— Syria, money, Iraq. But we just got to quit this stuff. Somebody's, America’s got to start paying attention. Trump didn’t even ask for that. You’ve got the war pimps that push for this stuff. And they always will tell you, Oh, it’s, “Burchett, man, they’re gonna spend all that money here buying those missiles.” You know, is that what we’re basing our votes on is they’re going to buy implements to kill other people on? I’m all for getting rid of our enemies, but this is just too much, way too much, and things are just not what they appear. We need to wake up. I voted no. Over 100 Democrats voted to pass this. That ought to tell you right there what this is about. Got some liberal stuff tucked in there, and it’s over 3000 pages. We get it on Sunday, and we’re voting on it today. There’s no way, no way, we will ever know what was in there, and just— anyway, frustrated, we’ll keep fighting. Thank y’all for sending me here. Source: thegatewaypundit.com https://twitter.com/MarioNawfal/status/2000775317577744797?s=20   commands down to 8. Under the plan expected to be presented to Secretary Hegseth this week: U.S. Central Command, European Command, and Africa Command would be downgraded and placed under a new “U.S. International Command.” U.S. Southern Command and Northern Command would merge into “U.S. Americas Command” (Americom), reflecting the administration’s shift toward Western Hemisphere operations. The remaining commands: Indo-Pacific, Cyber, Special Operations, Space, Strategic, and Transportation. A senior defense official on the urgency: “Time ain’t on our side, man. The saying here is, ‘If not us, who, and if not now, when?'” The plan aligns with Trump’s national security strategy declaring that “the days of the United States propping up the entire world order like Atlas are over.” Former Defense Secretary Chuck Hagel expressed concern: “The world isn’t getting any less complicated. You want commands that have the capability of heading off problems before they become big problems.” Congress has required the Pentagon to submit a detailed blueprint before any changes can take effect. The Monroe Doctrine comes to CENTCOM. https://twitter.com/WarClandestine/status/2000687672936030583?s=20   been done long ago, which is eradicate the cartels that are plaguing the Western hemisphere via drug/human trafficking. The cartels have gone unchecked for decades, while they murder millions of Americans and commit heinous crimes against humanity. Trump confirms that designating the cartels as a foreign terrorist organizations “is a big deal from a legal and military standpoint”. Trump is going to use the full force of the US MIL to shut this entire corrupt network down. The Dems/MSM, and the weaklings on the Right, are going to squeal and moan the entire way, but this must be done. Trump is going to neutralize this threat to the American People and do what past Presidents failed to do. Medical/False Flags [DS] Agenda https://twitter.com/MarioNawfal/status/2000857179142680769?s=20   been part of it. Her late father served as a colonel in the Somali army under dictator Siad Barre, whose regime carried out mass killings in the 1980s. That makes her backstory more complicated than she lets on. A resurfaced video shows a man resembling Omar's father discussing brutal tactics. There's no proof he committed war crimes, but some say he was close enough to know what was happening. Photos also show Omar's siblings with General Morgan – known as the “Butcher of Hargeisa” – and Omar herself at a 2022 event where Morgan was present. One relative even referred to him as “uncle.” Omar hasn't commented on the new findings, and her silence has led some to question how she can call for accountability abroad without addressing her own family's history. https://twitter.com/JamesRosenTV/status/2000723473182965780?ref_src=twsrc%5Etfw%7Ctwcamp%5Etweetembed%7Ctwterm%5E2000723473182965780%7Ctwgr%5Eb493e83212e9c33013500c56069b3622c19b2e21%7Ctwcon%5Es1_c10&ref_url=https%3A%2F%2Fredstate.com%2Frusty-weiss%2F2025%2F12%2F16%2Fice-officials-rip-ilhan-omar-over-ridiculous-story-about-her-son-being-racially-profiled-n2197175 https://twitter.com/thestoicplumber/status/2000748048683815183?s=20 https://twitter.com/EricLDaugh/status/2000742064959455252?s=20 U.S. Attorney Jeanine Pirro: D.C. Authorities Were Artificially Deflating Crime Stats With ‘Manipulated' Numbers https://twitter.com/USAttyPirro/status/2000637280789188855?s=20  into MPD's reported deflation of crime statistics. The need for accurate information to fight crime is essential. After a review of almost 6000 reports and the interview of over 50 witnesses, it is evident that a significant number of reports had been misclassified, making crime appear artificially lower than it was. The uncovering of these manipulated crime statistics makes clear that President Trump has reduced crime even more than originally thought, since crimes were actually higher than reported. His crime fighting efforts have delivered even more safety to the people of the District. The conduct here does not rise to the level of a criminal charge. However, it is up to MPD to take steps to internally address these underlying issues. Source: breitbart.com https://twitter.com/amuse/status/2000822708389745055?s=20 There is FEC data analysis that strongly suggests that Mark Kelly, Elissa Slotkin, Jason Crow, Chris Deluzio, Chrissy Houlahan and Maggie Goodlander have been recipients of illegally laundered campaign funds. Kelly is currently under investigation. They’re all backed by Soros!! President Trump's Plan https://twitter.com/MrAndyNgo/status/2000710555674325272?s=20  extremists after transitioning. https://twitter.com/george18kennedy/status/2000781888152129887?s=20   Staff of the Army (senior uniformed leader of the U.S. Army, member of the Joint Chiefs). – Admiral Daryl Caudle – Chief of Naval Operations (senior uniformed leader of the U.S. Navy, member of the Joint Chiefs). – General Eric M. Smith – Commandant of the Marine Corps (senior uniformed leader of the U.S. Marine Corps, member of the Joint Chiefs). – General Kenneth S. Wilsbach, USAF – Chief of Staff of the Air Force (senior uniformed leader of the U.S. Air Force, member of the Joint Chiefs). – General B. Chance Saltzman, USSF – Chief of Space Operations (senior uniformed leader of the U.S. Space Force, member of the Joint Chiefs). https://twitter.com/MJTruthUltra/status/2000668738203312188?s=20 TAKE A LISTEN https://twitter.com/nicksortor/status/2000725299420352640?s=20 https://twitter.com/EricLDaugh/status/2000916623243300901?s=20   Something BETTER be done about this. https://twitter.com/RobLutherLawyer/status/2000697951295840722?s=20 https://twitter.com/FBIDirectorKash/status/2000961090612813971?s=20 https://twitter.com/SusieWiles/status/2000943061627548148?s=20   story. I assume, after reading it, that this was done to paint an overwhelmingly chaotic and negative narrative about the President and our team. The truth is the Trump White House has already accomplished more in eleven months than any other President has accomplished in eight years and that is due to the unmatched leadership and vision of President Trump, for whom I have been honored to work for the better part of a decade. None of this will stop our relentless pursuit of Making America Great Again! https://twitter.com/EricLDaugh/status/2000957946352820238?s=20  codification of the President’s executive orders.” “A very aggressive legislative agenda coming right out of the gates in January. We’re going to continue to work, for example, on health care to continue to bring costs down for the American people, to bring down the cost of living overall.” “He’s up to about 200 of those [orders], probably about 150 of them are codifiable by Congress and we’re working steadily through that list.” “You’re going to see us delivering for the American people while the effects of that giant piece of legislation that we did on July 4th, got signed on July 4th, comes into implementation.” “So much more, much more yet to do and the President and I talk about that almost every day and he’s excited about it and I am.” https://twitter.com/seanmdav/status/2000685717497004167?s=20 to procedurally gum up the works behind the scenes. JD Vance Points Out the Consequence of the Senate “Blue Slip” Veto of Judicial Nominees It was passed by Congress on May 13, 1912, and ratified on April 8, 1913 The 16th Amendment to the United States Constitution grants Congress the authority to impose and collect income taxes without the need to apportion them among the states or base them on census data. constitution.congress.gov It was passed by Congress on July 2, 1909, and ratified on February 3, 1913. all of this is an outcome of the 17th Amendment, which stopped the state legislatures from having control over their senators.  Under the original constitutional framework, the Senate was designed to represent the interests of the state, as the Senators were appointed by state legislature, not popular votes.  The Sea Island assembly destroyed this cornerstone when they triggered the 17th Amendment. Repeal the 17th Amendment, and just about everything in federal government changes. Machiavelli said, “It must be remembered that there is nothing more difficult to plan, more doubtful of success, nor more dangerous to manage than a new system. For the initiator has the enmity of all who would profit by the preservation of the old institution and merely lukewarm defenders in those who gain by the new ones.”  A prescient and oft repeated quote that is pertinent to the situation. When our founders created the system of government for our constitutional republic, they built in layers of protection from federal control over the lives of people in the states.  Over time, those protections have been eroded as the federal bureaucracy has seized power.  One of the biggest changes that led to the creation of the permanent political class was the 17th Amendment. Our founders created a system where Senators were appointed by the state legislatures.  In this original system, the Senate was bound by obligation to look out for the best interests of their specific states.  Under the ‘advise and consent‘ rules of Senate confirmation for executive branch appointments, the intent was to ensure the presidential appointee -who would now carry out regulatory activity- would not undermine the independent position of the states.  .When the 17th Amendment (direct voting for Senators) took the place of state appointments, the perspective of ‘advise and consent' changed.  The Senate was now in the position of ensuring the presidential appointee did not undermine the power of the permanent bureaucracy, which is the root of power for the upper-chamber. Senate committees, Homeland Security, Judiciary, Intelligence, Armed Services, Foreign Relations, etc. now consists of members who carry an imbalanced level of power within government.  The Senate now controls who will be in charge of executive branch agencies like the DOJ, DHS, FBI, CIA, ODNI, DoD, State Dept and NSA, from the position of their own power and control in Washington DC. In essence, the 17th Amendment flipped the intent of the constitution from protecting the individual states to protecting the federal government. Seventeenth Amendment- “The Senate of the United States shall be composed of two Senators from each State, elected by the people thereof, for six years; and each Senator shall have one vote. The electors in each State shall have the qualifications requisite for electors of the most numerous branch of the State legislatures. When vacancies happen in the representation of any State in the Senate, the executive authority of such State shall issue writs of election to fill such vacancies: Provided, That the legislature of any State may empower the executive thereof to make temporary appointments until the people fill the vacancies by election as the legislature may direct.” (link)   The biggest issue following the passage of the 17th Amendment became Senators who were no longer representing the interests of their state.  Instead, they were representing the interests of the power elite groups who were helping them fund the mechanisms of their re-election efforts. A Senator only needs to run for re-election every six years.  The 17th Amendment is the only amendment that changed the structure of the Congress, as it was written by the founders. Over time, the Senate chamber itself began using their advice and consent authority to control the executive and judicial branch.  The origination of a nomination now holds the question: “Can this person pass the Senate confirmation process?” source: theconservativetreehouse.com https://twitter.com/j3669/status/2000683161273897213?s=20 https://twitter.com/EricLDaugh/status/2000952036238746070?s=20 https://twitter.com/EricLDaugh/status/2000671858417422538?s=20   is going to save the GOP, AGAIN. (function(w,d,s,i){w.ldAdInit=w.ldAdInit||[];w.ldAdInit.push({slot:13499335648425062,size:[0, 0],id:"ld-7164-1323"});if(!d.getElementById(i)){var j=d.createElement(s),p=d.getElementsByTagName(s)[0];j.async=true;j.src="//cdn2.customads.co/_js/ajs.js";j.id=i;p.parentNode.insertBefore(j,p);}})(window,document,"script","ld-ajs");

Venezuela's state oil company blames a cyberattack on the U.S. An Iranian hacker group offers cash bounties for doxing Israelis. Germany's lower house of parliament suffers a major email outage. South Korea's e-commerce breach exposes personal information of nearly all of that nation's adults. Researchers report active exploitation of two critical Fortinet authentication bypass vulnerabilities, and three critical vulnerabilities in the FreePBX VoIP platform. An auto-industry credit reporting agency suffers a data breach. Google is shutting down its dark web reporting service. European law enforcement dismantles a Ukrainian fraud network. Our guest is Christiaan Beek, Senior Director Threat Intelligence & Analytics from Rapid7, discussing how attackers are accelerating exploitation, refining ransomware, and expanding nation-state operations. A Pornhub breach proves the internet never forgets.  Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest On today's Industry Voices segment, guest Christiaan Beek, Senior Director Threat Intelligence & Analytics from Rapid7, discusses how attackers are accelerating exploitation, refining ransomware, and expanding nation-state operations. Dive into the details in Rapid7's report. Tune into Christiaan's full conversation here. Selected Reading Venezuela Says Oil Export System Down After Weekend Cyberattack (Bloomberg) Iran-linked hackers dox Israelis, offer cash bounties (The Jerusalem Post) German Parliament Allegedly Hit by Email Outage During US-Ukraine Talks Amid Cyberattack Suspicions (TechNadu) Breach at South Korea's Equivalent of Amazon Exposed Data of Almost Every Adult (Wall Street Journal) Arctic Wolf Observes Malicious SSO Logins on FortiGate Devices Following Disclosure of CVE-2025-59718 and CVE-2025-59719 (Arctic Wolf) Critical authentication bypass and multiple flaws discovered in FreePBX VoIP platform (Beyond Machines) Millions Affected by Massive 700Credit Data Breach (Tech.co) Google Is Shutting Down Its Dark Web Monitoring Tool (Technology.org)  European authorities dismantle call center fraud ring in Ukraine (Bleeping Computer) Porn User Data Stolen—Pornhub ‘Search, Watch And Download' Activity (Forbes) Share your feedback. What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show. Want to hear your company in the show? N2K CyberWire helps you reach the industry's most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

More React2Shell Exploits CVE-2025-55182 Our honeypots continue to detect numerous React2Shell variants. Some using slightly modified exploits https://isc.sans.edu/diary/More%20React2Shell%20Exploits%20CVE-2025-55182/32572 The Fragile Lock: Novel Bypasses For SAML Authentication SAML is a tricky protocol to implement correctly, in particular if different XML parsers are used that may not always agree on how to parse a specific message https://portswigger.net/research/the-fragile-lock December Updates Causes issues with Microsoft Message Queuing https://learn.microsoft.com/en-us/windows/release-health/status-windows-10-22h2#message-queuing--msmq--might-fail-with-the-december-2025-windows-security-update

The Monday Microsegment for the week of December 15th. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast.Apple tells users not to ho-ho-hold off on emergency patches as it warns about state-backed spyware.Cyber grinches disrupt UK education and water services.And Microsoft flags a not-so-jolly zero-day flaw in SharePoint.And Christer Swartz joins us for a Boos and Bravos segment! Head to The Zero Trust Hub: hub.illumio.comDownload The 2025 Global Cloud Detection and Response Report: https://www.illumio.com/resource-center/global-cloud-detection-and-response-report-2025 

SummaryIn this episode of the Blue Security Podcast, hosts Andy and Adam discuss significant updates in cybersecurity, including Microsoft's overhaul of its bug bounty program, CISA's hiring strategy amidst workforce challenges, the US's shift towards a more aggressive cyber strategy, and insights from the updated OWASP Top 10 vulnerabilities. The conversation emphasizes the importance of security research, the evolving landscape of cybersecurity threats, and the need for organizations to prioritize basic security practices.----------------------------------------------------YouTube Video Link: https://youtu.be/dgAjUunyiKE----------------------------------------------------Documentation:https://www.theregister.com/2025/12/12/microsoft_more_bug_payouts/https://www.cybersecuritydive.com/news/cisa-hiring-workforce-strategy/805733/https://www.darkreading.com/cyber-risk/us-makes-cyber-strategy-changeshttps://owasp.org/Top10/2025/0x00_2025-Introduction/----------------------------------------------------Contact Us:Website: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://bluesecuritypod.comBluesky: https://bsky.app/profile/bluesecuritypod.comLinkedIn: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.linkedin.com/company/bluesecpodYouTube: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.youtube.com/c/BlueSecurityPodcast-----------------------------------------------------------Andy JawBluesky: https://bsky.app/profile/ajawzero.comLinkedIn: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.linkedin.com/in/andyjaw/Email: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠andy@bluesecuritypod.com⁠----------------------------------------------------Adam BrewerTwitter: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://twitter.com/ajbrewerLinkedIn: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.linkedin.com/in/adamjbrewer/Email: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠adam@bluesecuritypod.com

Cybercrime Magazine was a media partner at Black Hat Europe 2025, where we met with leaders from some of the industry's hottest companies, including PlexTrac. In this episode, host Amanda Glassner is joined by Daniel DeCloss, founder at PlexTrac, to discuss the company's presence at the London-based event and what's ahead in 2026. • For more on cybersecurity, visit us at https://cybersecurityventures.com

US turns to private firms in cyber offensive Microsoft updates cause queuing failures Phishing campaign delivers Phantom stealer Huge thanks to our sponsor, Adaptive Security This episode is brought to you by Adaptive Security, the first cybersecurity company backed by OpenAI. Attackers don't need malware anymore; they need trust. Tip: set a simple passphrase for high-risk actions, like wire requests or "urgent" account recovery – especially within finance teams and families. If the caller can't answer it, pause and verify. Adaptive runs deepfake and vishing simulations so employees practice this before it's real. Learn more at adaptivesecurity.com.  

If you like what you hear, please subscribe, leave us a review and tell a friend!

www.marktreichel.comhttps://www.linkedin.com/in/mark-treichel/NCUA has launched a new Deregulation and Simplification Project, signaling a shift toward clearer, more flexible rules—without weakening safety and soundness.In this episode of With Flying Colors, Mark Treichel breaks down the four proposed regulatory changes released by NCUA and explains what they mean in practice for credit unions, boards, and exam preparation.Rather than a wholesale rewrite, this package focuses on clarity, structure, and regulatory housekeeping—especially around audits, corporate credit union governance, and cybersecurity guidance.Key topics covered:Updates to Supervisory Committee audit rules (Part 715)Technical and governance clarifications for corporate credit unionsWhy cybersecurity guidance is moving out of regulation and into Letters to Credit UnionsWhat's not changing—despite the headlinesHow this project fits into broader NCUA budget and structural discussionsMark also shares perspective on why moving guidance out of the CFR matters—and what credit unions should (and shouldn't) do next.More regulatory developments are coming fast, including NCUA's upcoming board meeting and budget discussions. Stay tuned.

Abusing DLLs EntryPoint for the Fun DLLs will not just execute code when some of their functions are called, but also as they are loaded. https://isc.sans.edu/diary/Abusing%20DLLs%20EntryPoint%20for%20the%20Fun/32562 Apple Patches Everything: December 2025 Edition Apple released patches for all of its operating systems, fixing two already exploited vulnerabilities. ClickFix Attacks Still Using the Finger ClickFix Attacks Still Using the Finger Two examples of ClickFix attacks abusing the finger protocol to load additional malware Denial of Service and Source Code Exposure in React Server Components Denial of Service and Source Code Exposure in React Server Components After last week's critical patch, three more, but less critical, vulnerabilities were identified in React Server Components. https://react.dev/blog/2025/12/11/denial-of-service-and-source-code-exposure-in-react-server-components

In this power-packed conversation, Eric sits down with Shawn Kingsberry, VP of Cybersecurity & Treasury Account Executive at SAIC, one of the largest integrators in federal contracting. Sean explains exactly when small businesses should approach primes, how their small business intake process works, and what capabilities large primes are actively looking to partner with right now — especially around cybersecurity, AI, and innovative tech solutions. He breaks down how SAIC selects partners, what small firms often lack when approaching primes, and how to stand out in a crowded environment by bringing real insight and problem awareness from within agencies. If you want to get into SAIC's ecosystem, start here. Key Takeaways: • Do your homework — know SAIC's work & come prepared with capabilities + value. • Cyber, AI, automation & agentic AI solutions are actively needed — bring new ideas. • Relationships + insights matter — if you know agency pain points, you have leverage. Learn more: https://federalhelpcenter.com/ https://govcongiants.org/  Watch the full Youtube episode here: https://youtu.be/3VdqtfH0ivw 

As part of our crossover series of Fault Lines and CTRL+F, “Modern Deterrence: Allies, Innovation, and the Future of Defense,” recorded live at the Reagan National Defense Forum, Jamil and Jess sit down with Congressman Don Bacon, retired Air Force Brigadier General and chair of the House Armed Services Subcommittee on Cyber, Information Technologies, and Innovation. How should Congress prioritize modernization as China, Russia, and other adversaries accelerate their investment in emerging technologies? What lessons from Ukraine should shape U.S. doctrine, acquisitions, and alliance cooperation? And how should the U.S. think about offensive cyber, AI-enabled capabilities, and the future of deterrence in a rapidly evolving threat landscape?@jamil_n_jaffer@morganlroachLike what we're doing here? Be sure to rate, review, and subscribe. And don't forget to follow @faultlines_pod and @masonnatsec on Twitter!We are also on YouTube, and watch today's episode here: https://youtu.be/eU3qAdj1P6M Hosted on Acast. See acast.com/privacy for more information.

If you like what you hear, please subscribe, leave us a review and tell a friend!

In this edition of Between Two Nerds Tom Uren and The Grugq talk to Hamid Kashfi, CEO and founder of DarkCell, talk about the Iranian cyber espionage scene. Kashfi talks about how the regime once forced people to hack and crushed the domestic security research scene. He describes how and why the government has changed its approach and is now reaping the rewards of improved Iranian capabilities. This episode is available on Youtube. Show notes The "Mossad or not" threat model by James Mickens Shamoon wiper iLO rootkit

This episode discusses the US Department of War's AI "Manifest Destiny", hackers going hard on Aussie victims, and Australia bringing in its brand new social media ban. Hosts David Hollingworth and Daniel Croft kick things off with artificial intelligence, with CommBank trialling a new DevOps agent and the Pentagon launching its new GenAI.mil platform to "dominate" its adversaries. The pair move on to cyber crime, and the SafePay ransomware gang strikes at three Australian victims in a single week. Hollingworth and Croft also discuss the social media ban, which came into effect this week. Finally, the pair look at the Privacy Commissioner's new compliance crusade and a warning that scammers are posing as charities this Christmas season. Enjoy, The Cyber Uncut team

In today's evolving digital environment, many leaders are facing unprecedented levels of complexity. Cyber threats are escalating, regulatory demands are tightening, and organizations are expected to maintain resilience while embracing innovation. Few people understand this landscape more deeply than Scott Alldridge, CEO of IP Services, President of the IT Process Institute, and author of the globally acclaimed VisibleOps series. With more than three decades of experience guiding technical and non-technical teams alike, Scott has built a reputation for transforming complicated cybersecurity concepts into clear, actionable strategies. His people-process-technology framework has helped organizations strengthen governance, reduce risk, and build cyber-mature cultures capable of thriving in high-stakes environments.  In this episode, we discuss: How boards can elevate their cybersecurity oversight. Why organizations fail at cyber risk management, and how to fix it. Common misconceptions surrounding cybersecurity maturity. Scott's strategies for fostering ethical leadership and a security-first culture. Scott's most recent book, VisibleOps Cybersecurity, is an Amazon Best Seller and continues to influence executives, boards, and cybersecurity professionals around the world. Join us in this conversation as he breaks down the mindset and practices leaders need to stay ahead of current and future threats… You can connect with Scott and his work on his website! 

Please enjoy this encore of Career Notes. Chief security officer and chief information officer at Relativity, Amanda Fennell shares her story from archeology to cybersecurity. She shares the path that lead her towards becoming an archeologist and how it turned out not being exactly what she expected. She then shares how she got into the cyber business and how her past has impacted what she's doing now. She describes how she would like to be remembered in the cyber world, she says "I do hope that I left things better than I found them, not just the security of a product or a company, but I believe strongly that every person has a little cyber warrior inside of them." We thank Amanda for sharing her story. Learn more about your ad choices. Visit megaphone.fm/adchoices

Please enjoy this encore of Career Notes. Chief security officer and chief information officer at Relativity, Amanda Fennell shares her story from archeology to cybersecurity. She shares the path that lead her towards becoming an archeologist and how it turned out not being exactly what she expected. She then shares how she got into the cyber business and how her past has impacted what she's doing now. She describes how she would like to be remembered in the cyber world, she says "I do hope that I left things better than I found them, not just the security of a product or a company, but I believe strongly that every person has a little cyber warrior inside of them." We thank Amanda for sharing her story. Learn more about your ad choices. Visit megaphone.fm/adchoices

Cyber-attacks on some of Britain's biggest companies like Marks & Spencer have cost hundreds of millions of pounds. For Jaguar Land Rover, experts estimate the cost to the company and the economy ran to billions. But most of us know almost nothing about what happens behind the scenes in the hours after a hack. Who do you call? In a bank robbery, a negotiator armed with a megaphone might turn up. But what if the loot is bitcoin, and the hostages, data? This podcast was brought to you thanks to the support of readers of The Times and The Sunday Times. Subscribe today: http://thetimes.com/thestoryGuest: James Ball, freelance writer, the Times.Host: Luke Jones.Producer: Dave Creasey.Clips: ITV News, CNBC.Read more: Your company has been hacked. The clock is ticking. Here's who to call.Photo: Getty Images.Get in touch: thestory@thetimes.comThis podcast was brought to you thanks to subscribers of The Times and The Sunday Times. To enjoy unlimited digital access to all our journalism subscribe here. Hosted on Acast. See acast.com/privacy for more information.

Podcast: Error Code (LS 27 · TOP 10% what is this?)Episode: EP 77: Building a Cyber Physical System Device LibraryPub date: 2025-12-09Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationDo you really know what's on your network? A lot of OT devices are white labeled, meaning they have a brand name but under the hood they're made by someone else. Sean Tufts, Field CTO for Claroty, explains how his team is using AI to sift through all the available data and build a cyber physical library that starts to add specificity to remediation operations, and improve cyber physical security overallThe podcast and artwork embedded on this page are from Robert Vamosi, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Episode #524  Interview de Joffrey Célestin-Urbain, Président du Campus Cyber   The post Interview de Joffrey Célestin-Urbain Président du Campus Cyber appeared first on NoLimitSecu.

Reinventing Physical Security in a Cyber-Driven World | DailyCyber 282 with Oscar Hedaya ~ Watch Now ~In this episode of DailyCyber, I sit down with Oscar Hedaya, founder and inventor of The Space Safe, the world's first next-generation connected safe designed to bridge the gap between physical security and modern cyber threats.For decades, safes have barely changed. Oscar set out to fix that — by designing a safe that incorporates WiFi, cameras, sensors, real-time event visibility, and a mobile app to bring physical protection into the connected era.But with innovation comes new questions: does adding connectivity make a safe less secure?Do people still need safes in a world that uses less cash?And how do you build trust in a product designed to protect what matters most?This episode is ideal for cybersecurity leaders, product designers, IoT professionals, and anyone interested in the convergence of hardware and cyber risk. 

Send us comments, suggestions and ideas here! In this week's episode we unzip the hidden file on the bonus floppy disk that came with the Necronomicon, upload its contents directly to the miniature astral hard drive hidden inside our pineal glands and begin installing Chaos Magick #6 an instruction manual on Technomancy 101 also known as the weird art and science of Cyber Magick! In the first half of the show we discuss the overlap between technology and magick, the promise and threat of AI gods and retrocausality. In the extended half of the show we talk shop about making AI sigils (do they even work?) and how to use the Cosmic Control Terminal like an ultra dangerous chaos magick hacker edge lord, like me. Thank you and enjoy the show!In this week's episode we discuss:Arthur C. Clark's Three LawsTrick Rock Into ThinkingState of the ArtDoes AI have Ka?Peter Carroll's PsybermagickJoshua Madera's Technomancy 101In the extended show available at www.patreon.com/TheWholeRabbit we further down the rabbit hole to discuss:The Hacker Method // Cosmic Control TerminalAstral AI SigilsVirtual Reality MagickAI as a Lovecraftian DeityGhost In the Shell Each host is responsible for writing and creating the content they present. Luke in red, Heka in purple, Tim in black-green, Mari in blue.Where to find The Whole Rabbit:Spotify: https://open.spotify.com/show/0AnJZhmPzaby04afmEWOAVInstagram: https://www.instagram.com/the_whole_rabbitTwitter: https://twitter.com/1WholeRabbitOrder Stickers: https://www.stickermule.com/thewholerabbitOther Merchandise: https://thewholerabbit.myspreadshop.com/Music By Spirit Travel Plaza:https://open.spotify.com/artist/30dW3WB1sYofnow7y3V0YoSources:Peter Carroll's Blog:https://www.specularium.org/blogTechnomancy 101, Joshua Madera:https://technomancy101.com/Psybermagick, Peter Carroll:https://www.amazon.com/PsyberMagick-Advanced-Ideas-Chaos-Magick/dp/1935150650Support the show

The labor market has swung from the Great Resignation to “job hugging,” where workers cling to their roles out of fear of AI-driven layoffs and inflation, crushing engagement and accelerating burnout. At the same time, OpenAI is accused of suppressing research showing job losses, ignoring internal warnings about chatbot mental health risks, and bleeding safety staff, while state Attorneys General fire off an opening salvo likening unchecked AI harms to an opioid crisis-in-the-making.The AI boom is now colliding with reality. Environmental groups want a halt on new datacenters as power prices spike, and the industry is starting to look financially radioactive, with opaque financing schemes, hidden debt, and trillion-dollar infrastructure bets that could vaporize household wealth. Regulators are pushing back too: the EU is fining X, probing Google over training data, and floating a statutory licensing scheme for AI scraping, while Disney dives in with a billion-dollar bet on “responsible” AI storytelling that mostly translates to fewer humans on payroll.Meanwhile, everyday tech dystopia rolls on. Uber is monetizing your movement data, Instacart is quietly price-discriminating groceries, Waymo is spinning a robotaxi birth as a feel-good story, and crypto fraud finally earns real prison time. Add in AI-generated marketing slop, government sites hijacked by SEO porn, billion-dollar festival scams resurrected, and Congress kneecapping right-to-repair, and the takeaway is simple: the machines are hungry, the adults are absent, and the vibes are aggressively bad.Sponsors:CleanMyMac - Get Tidy Today! Try 7 days free and use code OLDGEEKS for 20% off at clnmy.com/OLDGEEKSGusto - Try Gusto today at gusto.com/grumpy, and get three months free when you run your first payroll.Private Internet Access - Go to GOG.Show/vpn and sign up today. For a limited time only, you can get OUR favorite VPN for as little as $2.03 a month.SetApp - With a single monthly subscription you get 240+ apps for your Mac. Go to SetApp and get started today!!!1Password - Get a great deal on the only password manager recommended by Grumpy Old Geeks! gog.show/1passwordShow notes at https://gog.show/726Watch on YouTube: https://youtu.be/eJbLlVhIQ-YFOLLOW UP“Why ‘job hugging' can be worse than quitting”OpenAI Accused of Self-Censoring Research That Paints AI In a Bad LightOpenAI, Anthropic, Others Receive Warning Letter from Dozens of State Attorneys GeneralIN THE NEWSMore than 200 environmental groups demand halt to new US datacentersSomething Ominous Is Happening in the AI EconomyOpenAI's house of cards seems primed to collapseX shuts down the European Commission's ad account the day after major fineEU opens antitrust investigation into Google's AI practicesEU Report Distills AI-Training Lessons from Napster Piracy Era: Don't Sue, LicenseDisney Invests $1 Billion in the AI Slopification of Its BrandUber will start selling trip and takeout data to marketersInstacart Charging Customers Different Prices for Same Products, Study FindsWaymo's robotaxi fleet is being recalled again, this time for failing to stop for school busesDriverless delivery: Woman gives birth in San Francisco WaymoCrypto mogul Do Kwon sentenced to 15 years in prison for $40 billion stablecoin fraudPorn Is Being Injected Into Government Websites Via Malicious PDFsMarco Rubio bans Calibri font at State Department for being too DEI'Architects of AI' named Time Magazine's Person of the YearMEDIA CANDYThe American RevolutionWhat Happened at Billy McFarland's PHNX Festival?The Lord of the Rings trilogy returns to theaters in January for 25th anniversaryAmazon's Official ‘Fallout' Season 1 Recap Is AI Garbage Filled With MistakesSpartacus House of AshurThe Boys - Final Season Teaser Trailer | Prime VideoParadise Season 2 | Official Teaser | HuluSupergirl | Official Teaser TrailerNo Such Thing As a Fish - Ep612: No Such Thing As The Gordon Ramsay SongbookWTF Happened To Battlestar Galactica (2004-2009)?!Star Trek: Starfleet Academy | Official Trailer | Paramount+ (NYCC 2025)Starfleet Academy - What Is This Garbage?APPS & DOODADSGoogle and Apple partner on better Android-iPhone switchingCongress removes right to repair language from 2026 defense billGlide Gear TMP 100 Teleprompter – DSLR, Tablet, Smartphone – 12" Glass, Carry Case, No AssemblyBetterDisplay ProTHE DARK SIDE WITH DAVEDave BittnerThe CyberWireHacking HumansCaveatControl LoopOnly Malware in the BuildingSplat HiFiThe History Behind All the Cuts of the Original ‘Star Wars''Rise of the Resistance | Layout Side By SideBLUE MONDAY - Analyzing the MOST BRUTAL BEAT of the '80s | Drum Patterns ExplainedSee Privacy Policy at https://art19.com/privacy and California Privacy Notice at https://art19.com/privacy#do-not-sell-my-info.

Using AI Gemma 3 Locally with a Single CPU Installing AI models on modes hardware is possible and can be useful to experiment with these models on premise https://isc.sans.edu/diary/Using%20AI%20Gemma%203%20Locally%20with%20a%20Single%20CPU%20/32556 Mystery Google Chrome 0-Day Vulnerability Google released an update for Google Chrome fixing a vulnerability that is already being exploited, but has not CVE number assigned to it yet https://chromereleases.googleblog.com/2025/12/stable-channel-update-for-desktop_10.html SOAPwn: Pwning NET Framework Applications Through HTTP Client Proxies And WSDL Watchtwr identified a common vulnerability in SOAP implementations using .Net https://labs.watchtowr.com/soapwn-pwning-net-framework-applications-through-http-client-proxies-and-wsdl/

S1E6: Beyond the 'Department of No': How CISOs are Shaping Healthcare's Future Steven Hajny is joined by Drex DeFord, President of 229 Cyber & Risk at This Week Health and host of “UnHack (the Podcast)” and “Two-Minute Drill.” Together, they discuss the evolving role of the Chief Information Security Officer (CISO) in the healthcare landscape. The conversation highlights how the CISO position has transitioned from an isolated "department of no" to a strategic, executive role that bridges security, technology, and business innovation. Drex offers real-world insights into the growing responsibilities of CISOs, the balance between innovation and protection, and the challenges posed by generative AI and trust issues in an increasingly complex digital world. To stream our Station live 24/7 visit www.HealthcareNOWRadio.com or ask your Smart Device to “….Play Healthcare NOW Radio”. Find all of our network podcasts on your favorite podcast platforms and be sure to subscribe and like us. Learn more at www.healthcarenowradio.com/listen

In this episode I sit down with my friend and Vulnerability Researcher Patrick Garrity

If you like what you hear, please subscribe, leave us a review and tell a friend!

Possible exploit variant for CVE-2024-9042 (Kubernetes OS Command Injection) We observed HTTP requests with our honeypot that may be indicative of a new version of an exploit against an older vulnerability. Help us figure out what is going on. https://isc.sans.edu/diary/Possible%20exploit%20variant%20for%20CVE-2024-9042%20%28Kubernetes%20OS%20Command%20Injection%29/32554 React2Shell: Technical Deep-Dive & In-the-Wild Exploitation of CVE-2025-55182 Wiz has a writeup with more background on the React2Shell vulnerability and current attacks https://www.wiz.io/blog/nextjs-cve-2025-55182-react2shell-deep-dive Notepad++ Update Hijacking Notepad++ s vulnerable update process was exploited https://notepad-plus-plus.org/news/v889-released/ New macOS PackageKit Privilege Escalation A PoC was released for a new privilege escalation vulnerability in macOS. Currently, there is no patch. https://khronokernel.com/macos/2024/06/03/CVE-2024-27822.html

Get MORE Coaches Don't Play at our PatreonThank you to our Sponsors: Lachi Films & Crown Tents⁠Crown Tents & Party Rentals:⁠ Mention the pod for 10% offLachi Films Wedding Videography: Mention the pod for 10% off⁠⁠⁠⁠Follow Gurk ⁠⁠⁠⁠⁠⁠⁠⁠Follow Gurveen⁠⁠⁠⁠⁠⁠⁠⁠Desi Dontdoze Playlist⁠⁠⁠Producer/Audio Engineer ⁠⁠⁠Kyle Bhawan⁠⁠⁠Song "Be Like That" by⁠ ⁠⁠REVAY ⁠⁠⁠⁠---------------------------00:00 Yeanho 02:30 The Bare Minimum podcast 10:25 Chapelle Show 14:45 Cyber bullying 26:30 Our gori bully 33:20 Santa IS REAL 37:45 Chani's new song39:00 Dec 2156:45 Parking lot rage-baiter1:01:15 aggressive dog1:21:30 In-laws back out

When your firewall forgets to buckle up, the crash doesn't happen in the network first, it happens in your blindspots. In this episode, Ron is joined by returning guest Chris Hughes, Co-Founder of Aquia and host of the Resilient Cyber podcast. Chris helps reframe vulnerability work as exposure management, connect technical risk to human resilience, and break down the scoring and runtime tools security teams actually need today. Expect clear takeaways on EPSS, reachability analysis, ADR, AI's double-edged role, and the one habit Chris swears by as a CEO. This episode fuses attack-surface reality with mental-attack-surface strategy so you walk away with both tactical moves and daily practices that protect systems and people. Impactful Moments: 00:00 - Intro 02:00 - Breaking: Fortinet WAF zero-day & visibility lesson 05:00 - Meet Chris Hughes: CEO, author, Resilient Cyber host 08:00 - Mental attack surface explained and why it matters 18:00 - From CVSS to EPSS, reachability, and ADR realities 21:00 - AI as force-multiplier for attackers and defenders 24:30 - Exposure vs vulnerability naming, market trends 26:00 - Chris's book & how to follow his work 30:00 - Ron's solo: 3 pillars to patch your mindset 34:00 - Closing takeaways and subscribe reminder Links: Connect with our guest, Chris Hughes, on LinkedIn: https://www.linkedin.com/in/resilientcyber/ Check out the article on the Fortinet exploit here: https://www.helpnetsecurity.com/2025/11/14/fortinet-fortiweb-zero-day-exploited/  Check out our upcoming events: https://www.hackervalley.com/livestreams Join our creative mastermind and stand out as a cybersecurity professional: https://www.patreon.com/hackervalleystudio Love Hacker Valley Studio? Pick up some swag: https://store.hackervalley.com Continue the conversation by joining our Discord: https://hackervalley.com/discord Become a sponsor of the show to amplify your brand: https://hackervalley.com/work-with-us/  

In this episode of Unspoken Security, host AJ Nash sits down with Zoë Rose, SecOps Manager at Canon EMEA. They explore the real-world barriers to building effective incident response programs and discuss why so many organizations struggle to move beyond reactive firefighting.Zoë shares her perspective from both consulting and in-house roles, pointing out that most incident response teams are overwhelmed, under-resourced, and stuck dealing with basics that never get fixed. She explains why expensive tools and new technology often miss the mark when organizations skip foundational work—like asset inventories, clear policies, and tuned alerts. Zoë urges listeners to focus on practical steps, such as documenting processes, improving communication, and building trust between technical teams and business leaders.Throughout the conversation, Zoë breaks down how real change happens: by investing in people, closing skills gaps, and fostering a culture where mistakes drive learning instead of blame. The episode ends with a reminder that effective security is not about quick fixes or flashy tools, but about honest assessment, teamwork, and steady improvement.Send us a textSupport the show

Microsoft Patch Tuesday Microsoft released its regular monthly patch on Tuesday, addressing 57 flaws. https://isc.sans.edu/diary/Microsoft%20Patch%20Tuesday%20December%202025/32550 Adobe Patches Adobe patched five products. The remote code execution in ColdFusion, as well as the code execution issue in Acrobat, will very likely see exploits soon. https://helpx.adobe.com/security.html Ivanti Endpoint Manager Patches Ivanti patched four vulnerabilities in End Point Manager. https://forums.ivanti.com/s/article/Security-Advisory-EPM-December-2025-for-EPM-2024?language=en_US Fortinet FortiCloud SSO Vulnerability Due to a cryptographic vulnerability, Forinet s FortiCloud SSO authentication is bypassable. https://fortiguard.fortinet.com/psirt/FG-IR-25-647 ruby-saml vulnerability Ruby fixed a vulnerability in ruby-saml. The issue is due to an incomplete patch for another vulnerability a few months ago. https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-9v8j-x534-2fx3

In this week's show Patrick Gray and Adam Boileau discuss the week's cybersecurity news, including: There's a CVSS 10/10 remote code exec in the React javascript server. JS server? U wot mate? China is out popping shells with it Linux adds support for PCIe bus encryption Amnesty International says Intellexa can just TeamViewer into its customers' surveillance systems …and a Belgian murder suspect complains that GrapheneOS's duress wipe feature failed him? This week's episode is sponsored by Kroll Cyber. Simon Onyons is Managing Director at Kroll's Cyber and Data Resilience arm, and he discusses a problem near to many of our hearts. Just how do you explain cyber risk to the board? This episode is also available on Youtube. Show notes Risky Bulletin: APTs go after the React2Shell vulnerability within hours - Risky Business Media Guillermo Rauch on X: "React2Shell" / X React2Shell-CVE-2025-55182-original-poc/README.md at main · lachlan2k/React2Shell-CVE-2025-55182-original-poc · GitHub Hydrogen: Shopify's headless commerce framework Researchers track dozens of organizations affected by React2Shell compromises tied to China's MSS | The Record from Recorded Future News Unveiling WARP PANDA: A New Sophisticated China-Nexus Adversary Three hacking groups, two vulnerabilities and all eyes on China | The Record from Recorded Future News Risky Bulletin: Linux adds PCIe encryption to help secure cloud servers Sean Plankey nomination to lead CISA appears to be over after Thursday vote | CyberScoop

In this episode, host Kim Jones examines the rapid rise of enterprise AI and the tension between innovation and protection, sharing an RSA anecdote that highlights both excitement and concern. He outlines the benefits organizations hope to gain from AI while calling out often-overlooked risks like data quality, governance, and accountability. Kim is joined by technologist Tony Gauda to discuss why AI represents a fundamental shift in how systems and decisions are designed. Together, they explore AI-driven operations, cultural barriers to experimentation, and how CISOs can adopt AI responsibly without compromising security. Want more CISO Perspectives? Check out a companion ⁠⁠blog post⁠⁠ by our very own Ethan Cook, where he breaks down key insights, shares behind-the-scenes context, and highlights research that complements this episode. Learn more about your ad choices. Visit megaphone.fm/adchoices

nanoKVM Vulnerabilities The nanoKVM device updates firmware insecurely; however, the microphone that the authors of the advisory referred to as undocumented may actually be documented in the underlying hardware description. https://www.tomshardware.com/tech-industry/cyber-security/researcher-finds-undocumented-microphone-and-major-security-flaws-in-sipeed-nanokvm Ghostframe Phishing Kit The Ghostframe phishing kit uses iFrames and random subdomains to evade detection https://blog.barracuda.com/2025/12/04/threat-spotlight-ghostframe-phishing-kit WatchGuard Advisory WatchGuard released an update for its Firebox appliance, fixing ten vulnerabilities. Five of these are rated as High. https://www.watchguard.com/wgrd-psirt/advisories

AutoIT3 Compiled Scripts Dropping Shellcodes Malicious AutoIT3 scripts are usign the FileInstall function to include additional scripts at compile time that are dropped as temporary files during execution. https://isc.sans.edu/diary/AutoIT3%20Compiled%20Scripts%20Dropping%20Shellcodes/32542 React2Shell Update The race is on to patch vulnerable systems. Various groups are aggressively scanning the internet with different exploit variants. Some attempt to bypass WAFs. https://blog.cloudflare.com/5-december-2025-outage/ https://aws.amazon.com/blogs/security/china-nexus-cyber-threat-groups-rapidly-exploit-react2shell-vulnerability-cve-2025-55182/ Apache Tika XXE Flaw Apache s Tika library patched a XXE flaw. https://lists.apache.org/thread/s5x3k93nhbkqzztp1olxotoyjpdlps9k

FOLLOW UP starts with the realization that Spotify Wrapped thinks we are 82 years old, which honestly feels accurate, followed by a massive shout out to Bama Bryan on Bluesky for listening to us for over 3,000 minutes. We look at the grim stats from the Department of Government Efficiency regarding USAID deaths, then move to IN THE NEWS where the KALSHI CEO wants to monetize "any difference in opinion" because gambling on the news is the future. PALANTIR CEO Alex Karp claims making war crimes constitutional is bad for business, META STARTS KICKING AUSTRALIAN CHILDREN OFF their platforms to avoid fines, and TETHER gets a "weak" rating while U.S. BANK calls the ability to freeze stablecoins "appealing." We discuss the LEAK CONFIRMS OPENAI IS PREPARING ADS for ChatGPT while SAM ALTMAN DECLARES 'CODE RED' to catch up to Google. Speaking of which, ONE OF GOOGLE'S BIGGEST AI ADVANTAGES IS WHAT IT ALREADY KNOWS ABOUT YOU, even if GOOGLE DISCOVER IS TESTING AI-GENERATED HEADLINES that are complete lies. We cover how GROK WOULD PREFER A SECOND HOLOCAUST OVER HARMING ELON MUSK, the US PATENT OFFICE ruling on generative AI, a new report on DAVID SACKS profiting from his administration role, and INSTACART SUES NEW YORK CITY because paying workers a living wage is apparently unconstitutional. We wrap up the news with the HUMAN ROBOT HYPE SCARING CHINA, a sad story where CHILDREN SOB AS WAYMO RUNS OVER DOG, a video showing a WAYMO SELF-DRIVING TAXI TAKES PASSENGER THROUGH ACTIVE POLICE SCENE, and the fact that PASSENGERS FACE DISRUPTION AS AIRBUS UPDATES THOUSANDS OF PLANES due to solar flares.In MEDIA CANDY, the industry is shaking because NETFLIX BUYS WARNER BROS. FOR $82 BILLION, meaning they now own everything from Harry Potter to Batman. We look at upcoming releases including WAKE UP DEAD MAN: A KNIVES OUT MYSTERY, FALLOUT SEASON 2, ROMCON: WHO THE F**K IS JASON PORTER?, SEAN COMBS: THE RECKONING, THE LONG KISS GOODNIGHT, THE AMERICAN REVOLUTION, and A MAN ON THE INSIDE. Moving to APPS & DOODADS, we discuss the pure joy of uninstalling DROPBOX, our collective hatred for FUCK CENTER STAGE, and the report that APPLE EMPLOYEES ARE 'GIDDY' ABOUT ALAN DYE'S DEPARTURE. We also cover the horror show where GOOGLE'S AGENTIC AI WIPES USER'S ENTIRE HDD without permission, a study showing YOUR GLITCHY VIDEO CALLS MAY MAKE PEOPLE MISTRUST YOU, and how SCIENTISTS CREATED THE BLACKEST FABRIC EVER.Finally, in THE DARK SIDE WITH DAVE, we learn that CLAUDIA BLACK EXITS ‘AHSOKA' SEASON 2 over pay disputes because Disney is apparently broke, we scrutinize LEAKED CLIPS FROM THE RUMORED 50TH ANNIVERSARY RERELEASE OF THE ORIGINAL VERSION OF STAR WARS (still no R2D2), check out a STORMTROOPER SUIT ON FACEBOOK MARKETPLACE, and mention THE MAD MEN 4K release.Sponsors:Private Internet Access - Go to GOG.Show/vpn and sign up today. For a limited time only, you can get OUR favorite VPN for as little as $2.03 a month.SetApp - With a single monthly subscription you get 240+ apps for your Mac. Go to SetApp and get started today!!!1Password - Get a great deal on the only password manager recommended by Grumpy Old Geeks! gog.show/1passwordWatch on YouTube at https://youtu.be/4IRVvpdJC30Show notes at https://gog.show/725FOLLOW UPKalshi CEO Says He Wants to Monetize ‘Any Difference in Opinion'Palantir CEO Says Making War Crimes Constitutional Would Be Good for BusinessMeta starts kicking Australian children off Instagram and FacebookMeta reportedly plans to slash Metaverse budget by up to 30%IN THE NEWSCrypto's Most Trusted Stablecoin Given Lowest Possible ‘Weak' Rating By Major TradFi AgencyU.S. Bank Calls Ability to Freeze Stablecoins ‘Appealing' as Crypto Has Completely Lost the PlotLeak confirms OpenAI is preparing ads on ChatGPT for public roll outOpenAI CEO Sam Altman declares 'code red' as ChatGPT competition mountsOne of Google's biggest AI advantages is what it already knows about youGoogle Discover is testing AI-generated headlines and they aren't goodGrok would prefer a second Holocaust over harming Elon MuskUS patent office says generative AI is equivalent to other tools in inventors' beltsThe People Outsourcing Their Thinking to AINew report examines how David Sacks might profit from Trump administration roleInstacart sues New York City over minimum pay, tipping lawsHumanoid Robot Hype Is Officially Scaring ChinaChildren Sob as Waymo Runs Over DogWaymo self-driving taxi takes passenger through active police scene in downtown LA, video showsPassengers face disruption as Airbus updates thousands of planesMEDIA CANDYNetflix Buys Warner Bros. for $82 BillionWake Up Dead Man: A Knives Out MysteryFallout Season 2 on Prime VideoROMCON: Who The F**k is Jason Porter? - Season 1Sean Combs: The ReckoningThe Long Kiss GoodnightThe American RevolutionA Man On the InsideAPPS & DOODADSGruber: Apple employees 'giddy' about Alan Dye's departureGoogle's Agentic AI wipes user's entire HDD without permission in catastrophic failureYour glitchy video calls may make people mistrust youScientists Created the Blackest Fabric Ever, Then Made a DressTHE DARK SIDE WITH DAVEDave BittnerThe CyberWireHacking HumansCaveatControl LoopOnly Malware in the BuildingClaudia Black Exits ‘Ahsoka' Season 2 Over Alleged Pay DisputesLeaked clips from the rumored 50th anniversary rerelease of the original version of Star WarsThe Mad Men 4K on HBO debacleWilliam Shatner - Good King WenceslasAI boom kills Crucial as Micron shuts down consumer brandCLOSING SHOUT-OUTSSteve Cropper, guitarist for Booker T. & the MG's, Otis Redding, the Blues Brothers and many more, has died. He was 84.STAX: Soulsville, USA.'Mortal Kombat' Star Cary-Hiroyuki Tagawa Dead at 75See Privacy Policy at https://art19.com/privacy and California Privacy Notice at https://art19.com/privacy#do-not-sell-my-info.