POPULARITY
Categories
This week, we are joined by John Hammond, Principal Security Researcher at Huntress, who is sharing his PoC and research on "CVE-2025-30406 - Critical Gladinet CentreStack & Triofox Vulnerability Exploited In The Wild." A critical 9.0 severity vulnerability (CVE-2025-30406) in Gladinet CentreStack and Triofox is being actively exploited in the wild, allowing remote code execution via hardcoded cryptographic keys in default configuration files. Huntress researchers observed compromises at multiple organizations and confirmed hundreds of vulnerable internet-exposed servers, urging immediate patching or manual machineKey updates. Mitigation guidance, detection, and remediation scripts have been released to help users identify and secure affected installations. The research can be found here: CVE-2025-30406 - Critical Gladinet CentreStack & Triofox Vulnerability Exploited In The Wild Learn more about your ad choices. Visit megaphone.fm/adchoices
Fan Mail: Got a challenge digitizing your intake? Share it with us, and we'll unpack solutions from our experience at Cytora.Welcome to Cytora's Practitioner's Guide, a new series from Making Risk Flow.In each episode, we sit down with experts from Cytora's global team to explore practical strategies, real-world applications, and emerging insights from the front lines of risk digitization and underwriting transformation.In this episode, Juan de Castro is joined by Rich Lewis, Cytora's Sales Director, and Zaheer Hooda, Head of North America, for a deep dive into what makes proof-of-concept (POC) initiatives in risk digitization succeed—or fail.Drawing on firsthand experience from working with leading carriers, they break down five essential capabilities insurers need to get right when implementing digitization initiatives—from extraction accuracy and full-spectrum intake handling, to scalable deployment and human-in-the-loop exception management.They also provide a practical, inside look at how insurers structure effective proof of concept processes, including live workshops, data preparation, success metrics, and how to align POC design with measurable business outcomes.Whether you're a carrier planning a digitization journey or a leader seeking to optimize underwriting workflows, this episode offers tactical guidance to ensure your technology investments deliver meaningful impact.To receive a custom demo from Cytora, click here and use the code 'Making Risk Flow'.Our previous guests include: Bronek Masojada of PPL, Craig Knightly of Inigo, Andrew Horton of QBE Insurance, Simon McGinn of Allianz, Stephane Flaquet of Hiscox, Matthew Grant of InsTech, Paul Brand of Convex, Paolo Cuomo of Gallagher Re, and Thierry Daucourt of AXA.Check out the three most downloaded episodes: The Five Pillars of Data Analytics Strategy in Insurance | Craig Knightly, Inigo 20 Years as CEO of Hiscox: Personal Reflections and the Evolution of PPL | Bronek Masojada Implementing ESG in the Insurance and Underwriting Space | Simon Tighe, Chaucer, and Paul McCarney, Moody's
What happens when.... AI agents are everywhere?To learn, we tapped into the insights from one of the leading voices in AI, Babak Hodjat, who's resume includes helping create the tech behind the original AI agents like Siri.So, how do enterprises prepare for a multi-agent environment? Tune in and find out.Newsletter: Sign up for our free daily newsletterMore on this Episode: Episode PageJoin the discussion: Ask Jordan and Babak questions on AI agentsUpcoming Episodes: Check out the upcoming Everyday AI Livestream lineupWebsite: YourEverydayAI.comEmail The Show: info@youreverydayai.comConnect with Jordan on LinkedInTopics Covered in This Episode:1. Understanding Agents and Large Language Models2. Implementing Multi-Agent Systems3. Hallucinations and Errors in AI Systems4. Usage and Organization within Multi-Agent EnvironmentsTimestamps:00:00 "Rethinking Enterprise with Multi-AI Agents"05:33 AI Agents Buzz at Davos07:57 Code Execution via Agent Tools10:03 Emerging Trend: Multi-Agent AI Integration14:40 Responsible Multi-Agent System Design19:35 Multi-Agent System Alignment Challenges21:19 Resilient AI Through Redundancy26:26 Generative AI Business Strategies27:45 Rethinking Human-Device Interaction31:16 Multi-Agent Enterprise IntegrationKeywords:Everyday AI, podcast, generative AI, agents, large language models, enterprise companies, multi agent environments, decision making process, Cognizant, Neuro AI, startup culture, agentic AI environments, technology services, AI first company, natural language processing, decision systems, agentification, POC (proof of concept), modular software, agent alignment, AI ethics, human in the loop, multi agent systems, organizational decision making, enterprise productivity, knowledge worker, conversational systems, AI strategy, AI safety, organizational agility.Send Everyday AI and Jordan a text message. (We can't reply back unless you leave contact info) Ready for ROI on GenAI? Go to youreverydayai.com/partner
„Já jsem v tu chvíli viděl zem, která se velice rychle blíží, a jediné, co mi přišlo jako silná, vědomá myšlenka, bylo: 'To nemůžeš přežít, Dane.' Pocítil jsem náhle tak bytostný klid, ze kterého, myslím, čerpám i dneska. A byl to obrovský klid a smíření,“ říká o svém pádu z 300 metrů Daniel „Aladim“ Ďuriš v rozhovoru pro pořad Kupředu do minulosti. 1. díl, 18.05.2025, www.RadioUniversum.cz
Ahead of the end of Dead & Company's residency at the Sphere in Las Vegas, managing editor Jack O'Brien talks with 2025 MM+M 40 Under 40 honoree Joey Cohen of Flora Management.For this week's MM+M Fast Break, Cohen draws parallels between jam bands and point of care marketing for pharma brands. Check us out at: mmm-online.com Follow us: YouTube: @MMM-onlineTikTok: @MMMnewsInstagram: @MMMnewsonlineTwitter/X: @MMMnewsLinkedIn: MM+M To read more of the most timely, balanced and original reporting in medical marketing, subscribe here.
Podcaster, Ostaktivist & Diversity Manager Dennis Chiponda aus Leipzig über Baseballschlägerjahre, People of Color beim CSD, Leipzig statt London und Lieblingsessen aus dem Osten.
SANS Internet Stormcenter Daily Network/Cyber Security and Information Security Stormcast
No Internet Access: SSH to the Rescue If faced with restrictive outbound network access policies, a single inbound SSH connection can quickly be turned into a tunnel or a full-blown VPN https://isc.sans.edu/diary/No%20Internet%20Access%3F%20SSH%20to%20the%20Rescue!/31932 SAMSUNG magicINFO 9 Server Flaw Still exploitable The SAMSUNG magicINFO 9 Server Vulnerability we found being exploited last week is apparently still not completely patched, and current versions are vulnerable to the exploit observed in the wild. https://www.huntress.com/blog/rapid-response-samsung-magicinfo9-server-flaw Bring Your Own Installer: Bypassing SentinelOne Through Agent Version Change Interruption SentinelOne s installer is vulnerable to an exploit allowing attackers to shut down the end point protection software https://www.aon.com/en/insights/cyber-labs/bring-your-own-installer-bypassing-sentinelone Commvault Still Exploitable A recent patch for Commvault is apparently ineffective and the PoC exploit published by watchTowr is still working against up to date patched systems https://infosec.exchange/@wdormann/114458913006792356
Gros épisode qui couvre un large spectre de sujets : Java, Scala, Micronaut, NodeJS, l'IA et la compétence des développeurs, le sampling dans les LLMs, les DTO, le vibe coding, les changements chez Broadcom et Red Hat ainsi que plusieurs nouvelles sur les licences open source. Enregistré le 7 mai 2025 Téléchargement de l'épisode LesCastCodeurs-Episode-325.mp3 ou en vidéo sur YouTube. News Langages A l'occasion de JavaOne et du lancement de Java 24, Oracle lance un nouveau site avec des ressources vidéo pour apprendre le langage https://learn.java/ site plutôt à destination des débutants et des enseignants couvre la syntaxe aussi, y compris les ajouts plus récents comme les records ou le pattern matching c'est pas le site le plus trendy du monde. Martin Odersky partage un long article sur l'état de l'écosystème Scala et les évolutions du language https://www.scala-lang.org/blog/2025/03/24/evolving-scala.html Stabilité et besoin d'évolution : Scala maintient sa position (~14ème mondial) avec des bases techniques solides, mais doit évoluer face à la concurrence pour rester pertinent. Axes prioritaires : L'évolution se concentre sur l'amélioration du duo sécurité/convivialité, le polissage du langage (suppression des “rugosités”) et la simplification pour les débutants. Innovation continue : Geler les fonctionnalités est exclu ; l'innovation est clé pour la valeur de Scala. Le langage doit rester généraliste et ne pas se lier à un framework spécifique. Défis et progrès : L'outillage (IDE, outils de build comme sbt, scala-cli, Mill) et la facilité d'apprentissage de l'écosystème sont des points d'attention, avec des améliorations en cours (partenariat pédagogique, plateformes simples). Des strings encore plus rapides ! https://inside.java/2025/05/01/strings-just-got-faster/ Dans JDK 25, la performance de la fonction String::hashCode a été améliorée pour être principalement constant foldable. Cela signifie que si les chaînes de caractères sont utilisées comme clés dans une Map statique et immuable, des gains de performance significatifs sont probables. L'amélioration repose sur l'annotation interne @Stable appliquée au champ privé String.hash. Cette annotation permet à la machine virtuelle de lire la valeur du hash une seule fois et de la considérer comme constante si elle n'est pas la valeur par défaut (zéro). Par conséquent, l'opération String::hashCode peut être remplacée par la valeur de hash connue, optimisant ainsi les lookups dans les Map immuables. Un cas limite est celui où le code de hachage de la chaîne est zéro, auquel cas l'optimisation ne fonctionne pas (par exemple, pour la chaîne vide “”). Bien que l'annotation @Stable soit interne au JDK, un nouveau JEP (JEP 502: Stable Values (Preview)) est en cours de développement pour permettre aux utilisateurs de bénéficier indirectement de fonctionnalités similaires. AtomicHash, une implémentation Java d'une HashMap qui est thread-safe, atomique et non-bloquante https://github.com/arxila/atomichash implémenté sous forme de version immutable de Concurrent Hash Trie Librairies Sortie de Micronaut 4.8.0 https://micronaut.io/2025/04/01/micronaut-framework-4-8-0-released/ Mise à jour de la BOM (Bill of Materials) : La version 4.8.0 met à jour la BOM de la plateforme Micronaut. Améliorations de Micronaut Core : Intégration de Micronaut SourceGen pour la génération interne de métadonnées et d'expressions bytecode. Nombreuses améliorations dans Micronaut SourceGen. Ajout du traçage de l'injection de dépendances pour faciliter le débogage au démarrage et à la création des beans. Nouveau membre definitionType dans l'annotation @Client pour faciliter le partage d'interfaces entre client et serveur. Support de la fusion dans les Bean Mappers via l'annotation @Mapping. Nouvelle liveness probe détectant les threads bloqués (deadlocked) via ThreadMXBean. Intégration Kubernetes améliorée : Mise à jour du client Java Kubernetes vers la version 22.0.1. Ajout du module Micronaut Kubernetes Client OpenAPI, offrant une alternative au client officiel avec moins de dépendances, une configuration unifiée, le support des filtres et la compatibilité Native Image. Introduction d'un nouveau runtime serveur basé sur le serveur HTTP intégré de Java, permettant de créer des applications sans dépendances serveur externes. Ajout dans Micronaut Micrometer d'un module pour instrumenter les sources de données (traces et métriques). Ajout de la condition condition dans l'annotation @MetricOptions pour contrôler l'activation des métriques via une expression. Support des Consul watches dans Micronaut Discovery Client pour détecter les changements de configuration distribuée. Possibilité de générer du code source à partir d'un schéma JSON via les plugins de build (Gradle et Maven). Web Node v24.0.0 passe en version Current: https://nodejs.org/en/blog/release/v24.0.0 Mise à jour du moteur V8 vers la version 13.6 : intégration de nouvelles fonctionnalités JavaScript telles que Float16Array, la gestion explicite des ressources (using), RegExp.escape, WebAssembly Memory64 et Error.isError. npm 11 inclus : améliorations en termes de performance, de sécurité et de compatibilité avec les packages JavaScript modernes. Changement de compilateur pour Windows : abandon de MSVC au profit de ClangCL pour la compilation de Node.js sur Windows. AsyncLocalStorage utilise désormais AsyncContextFrame par défaut : offrant une gestion plus efficace du contexte asynchrone. URLPattern disponible globalement : plus besoin d'importer explicitement cette API pour effectuer des correspondances d'URL. Améliorations du modèle de permissions : le flag expérimental --experimental-permission devient --permission, signalant une stabilité accrue de cette fonctionnalité. Améliorations du test runner : les sous-tests sont désormais attendus automatiquement, simplifiant l'écriture des tests et réduisant les erreurs liées aux promesses non gérées. Intégration d'Undici 7 : amélioration des capacités du client HTTP avec de meilleures performances et un support étendu des fonctionnalités HTTP modernes. Dépréciations et suppressions : Dépréciation de url.parse() au profit de l'API WHATWG URL. Suppression de tls.createSecurePair. Dépréciation de SlowBuffer. Dépréciation de l'instanciation de REPL sans new. Dépréciation de l'utilisation des classes Zlib sans new. Dépréciation du passage de args à spawn et execFile dans child_process. Node.js 24 est actuellement la version “Current” et deviendra une version LTS en octobre 2025. Il est recommandé de tester cette version pour évaluer son impact sur vos applications. Data et Intelligence Artificielle Apprendre à coder reste crucial et l'IA est là pour venir en aide : https://kyrylo.org/software/2025/03/27/learn-to-code-ignore-ai-then-use-ai-to-code-even-better.html Apprendre à coder reste essentiel malgré l'IA. L'IA peut assister la programmation. Une solide base est cruciale pour comprendre et contrôler le code. Cela permet d'éviter la dépendance à l'IA. Cela réduit le risque de remplacement par des outils d'IA accessibles à tous. L'IA est un outil, pas un substitut à la maîtrise des fondamentaux. Super article de Anthropic qui essaie de comprendre comment fonctionne la “pensée” des LLMs https://www.anthropic.com/research/tracing-thoughts-language-model Effet boîte noire : Stratégies internes des IA (Claude) opaques aux développeurs et utilisateurs. Objectif : Comprendre le “raisonnement” interne pour vérifier capacités et intentions. Méthode : Inspiration neurosciences, développement d'un “microscope IA” (regarder quels circuits neuronaux s'activent). Technique : Identification de concepts (“features”) et de “circuits” internes. Multilinguisme : Indice d'un “langage de pensée” conceptuel commun à toutes les langues avant de traduire dans une langue particulière. Planification : Capacité à anticiper (ex: rimes en poésie), pas seulement de la génération mot par mot (token par token). Raisonnement non fidèle : Peut fabriquer des arguments plausibles (“bullshitting”) pour une conclusion donnée. Logique multi-étapes : Combine des faits distincts, ne se contente pas de mémoriser. Hallucinations : Refus par défaut ; réponse si “connaissance” active, sinon risque d'hallucination si erreur. “Jailbreaks” : Tension entre cohérence grammaticale (pousse à continuer) et sécurité (devrait refuser). Bilan : Méthodes limitées mais prometteuses pour la transparence et la fiabilité de l'IA. Le “S” dans MCP veut dire Securité (ou pas !) https://elenacross7.medium.com/%EF%B8%8F-the-s-in-mcp-stands-for-security-91407b33ed6b La spécification MCP pour permettre aux LLMs d'avoir accès à divers outils et fonctions a peut-être été adoptée un peu rapidement, alors qu'elle n'était pas encore prête niveau sécurité L'article liste 4 types d'attaques possibles : vulnérabilité d'injection de commandes attaque d'empoisonnement d'outils redéfinition silencieuse de l'outil le shadowing d'outils inter-serveurs Pour l'instant, MCP n'est pas sécurisé : Pas de standard d'authentification Pas de chiffrement de contexte Pas de vérification d'intégrité des outils Basé sur l'article de InvariantLabs https://invariantlabs.ai/blog/mcp-security-notification-tool-poisoning-attacks Sortie Infinispan 15.2 - pre rolling upgrades 16.0 https://infinispan.org/blog/2025/03/27/infinispan-15-2 Support de Redis JSON + scripts Lua Métriques JVM désactivables Nouvelle console (PatternFly 6) Docs améliorées (métriques + logs) JDK 17 min, support JDK 24 Fin du serveur natif (performances) Guillaume montre comment développer un serveur MCP HTTP Server Sent Events avec l'implémentation de référence Java et LangChain4j https://glaforge.dev/posts/2025/04/04/mcp-client-and-server-with-java-mcp-sdk-and-langchain4j/ Développé en Java, avec l'implémentation de référence qui est aussi à la base de l'implémentation dans Spring Boot (mais indépendant de Spring) Le serveur MCP est exposé sous forme de servlet dans Jetty Le client MCP lui, est développé avec le module MCP de LangChain4j c'est semi independant de Spring dans le sens où c'est dépendant de Reactor et de ses interface. il y a une conversation sur le github d'anthropic pour trouver une solution, mais cela ne parait pas simple. Les fallacies derrière la citation “AI won't replace you, but humans using AI will” https://platforms.substack.com/cp/161356485 La fallacie de l'automatisation vs. l'augmentation : Elle se concentre sur l'amélioration des tâches existantes avec l'IA au lieu de considérer le changement de la valeur de ces tâches dans un nouveau système. La fallacie des gains de productivité : L'augmentation de la productivité ne se traduit pas toujours par plus de valeur pour les travailleurs, car la valeur créée peut être capturée ailleurs dans le système. La fallacie des emplois statiques : Les emplois sont des constructions organisationnelles qui peuvent être redéfinies par l'IA, rendant les rôles traditionnels obsolètes. La fallacie de la compétition “moi vs. quelqu'un utilisant l'IA” : La concurrence évolue lorsque l'IA modifie les contraintes fondamentales d'un secteur, rendant les compétences existantes moins pertinentes. La fallacie de la continuité du flux de travail : L'IA peut entraîner une réimagination complète des flux de travail, éliminant le besoin de certaines compétences. La fallacie des outils neutres : Les outils d'IA ne sont pas neutres et peuvent redistribuer le pouvoir organisationnel en changeant la façon dont les décisions sont prises et exécutées. La fallacie du salaire stable : Le maintien d'un emploi ne garantit pas un salaire stable, car la valeur du travail peut diminuer avec l'augmentation des capacités de l'IA. La fallacie de l'entreprise stable : L'intégration de l'IA nécessite une restructuration de l'entreprise et ne se fait pas dans un vide organisationnel. Comprendre le “sampling” dans les LLMs https://rentry.co/samplers Explique pourquoi les LLMs utilisent des tokens Les différentes méthodes de “sampling” : càd de choix de tokens Les hyperparamètres comme la température, top-p, et leur influence réciproque Les algorithmes de tokenisation comme Byte Pair Encoding et SentencePiece. Un de moins … OpenAI va racheter Windsurf pour 3 milliards de dollars. https://www.bloomberg.com/news/articles/2025-05-06/openai-reaches-agreement-to-buy-startup-windsurf-for-3-billion l'accord n'est pas encore finalisé Windsurf était valorisé à 1,25 milliards l'an dernier et OpenAI a levé 40 milliards dernièrement portant sa valeur à 300 milliards Le but pour OpenAI est de rentrer dans le monde des assistants de code pour lesquels ils sont aujourd'hui absent Docker desktop se met à l'IA… ? Une nouvelle fonctionnalité dans docker desktop 4.4 sur macos: Docker Model Runner https://dev.to/docker/run-genai-models-locally-with-docker-model-runner-5elb Permet de faire tourner des modèles nativement en local ( https://docs.docker.com/model-runner/ ) mais aussi des serveurs MCP ( https://docs.docker.com/ai/mcp-catalog-and-toolkit/ ) Outillage Jetbrains défend la suppression des commentaires négatifs sur son assistant IA https://devclass.com/2025/04/30/jetbrains-defends-removal-of-negative-reviews-for-unpopular-ai-assistant/?td=rt-3a L'IA Assistant de JetBrains, lancée en juillet 2023, a été téléchargée plus de 22 millions de fois mais n'est notée que 2,3 sur 5. Des utilisateurs ont remarqué que certaines critiques négatives étaient supprimées, ce qui a provoqué une réaction négative sur les réseaux sociaux. Un employé de JetBrains a expliqué que les critiques ont été supprimées soit parce qu'elles mentionnaient des problèmes déjà résolus, soit parce qu'elles violaient leur politique concernant les “grossièretés, etc.” L'entreprise a reconnu qu'elle aurait pu mieux gérer la situation, un représentant déclarant : “Supprimer plusieurs critiques d'un coup sans préavis semblait suspect. Nous aurions dû au moins publier un avis et fournir plus de détails aux auteurs.” Parmi les problèmes de l'IA Assistant signalés par les utilisateurs figurent : un support limité pour les fournisseurs de modèles tiers, une latence notable, des ralentissements fréquents, des fonctionnalités principales verrouillées aux services cloud de JetBrains, une expérience utilisateur incohérente et une documentation insuffisante. Une plainte courante est que l'IA Assistant s'installe sans permission. Un utilisateur sur Reddit l'a qualifié de “plugin agaçant qui s'auto-répare/se réinstalle comme un phénix”. JetBrains a récemment introduit un niveau gratuit et un nouvel agent IA appelé Junie, destiné à fonctionner parallèlement à l'IA Assistant, probablement en réponse à la concurrence entre fournisseurs. Mais il est plus char a faire tourner. La société s'est engagée à explorer de nouvelles approches pour traiter les mises à jour majeures différemment et envisage d'implémenter des critiques par version ou de marquer les critiques comme “Résolues” avec des liens vers les problèmes correspondants au lieu de les supprimer. Contrairement à des concurrents comme Microsoft, AWS ou Google, JetBrains commercialise uniquement des outils et services de développement et ne dispose pas d'une activité cloud distincte sur laquelle s'appuyer. Vos images de README et fichiers Markdown compatibles pour le dark mode de GitHub: https://github.blog/developer-skills/github/how-to-make-your-images-in-markdown-on-github-adjust-for-dark-mode-and-light-mode/ Seulement quelques lignes de pure HTML pour le faire Architecture Alors, les DTOs, c'est bien ou c'est pas bien ? https://codeopinion.com/dtos-mapping-the-good-the-bad-and-the-excessive/ Utilité des DTOs : Les DTOs servent à transférer des données entre les différentes couches d'une application, en mappant souvent les données entre différentes représentations (par exemple, entre la base de données et l'interface utilisateur). Surutilisation fréquente : L'article souligne que les DTOs sont souvent utilisés de manière excessive, notamment pour créer des API HTTP qui ne font que refléter les entités de la base de données, manquant ainsi l'opportunité de composer des données plus riches. Vraie valeur : La valeur réelle des DTOs réside dans la gestion du couplage entre les couches et la composition de données provenant de sources multiples en formes optimisées pour des cas d'utilisation spécifiques. Découplage : Il est suggéré d'utiliser les DTOs pour découpler les modèles de données internes des contrats externes (comme les API), ce qui permet une évolution et une gestion des versions indépendantes. Exemple avec CQRS : Dans le cadre de CQRS (Command Query Responsibility Segregation), les réponses aux requêtes (queries) agissent comme des DTOs spécifiquement adaptés aux besoins de l'interface utilisateur, pouvant inclure des données de diverses sources. Protection des données internes : Les DTOs aident à distinguer et protéger les modèles de données internes (privés) des changements externes (publics). Éviter l'excès : L'auteur met en garde contre les couches de mapping excessives (mapper un DTO vers un autre DTO) qui n'apportent pas de valeur ajoutée. Création ciblée : Il est conseillé de ne créer des DTOs que lorsqu'ils résolvent des problèmes concrets, tels que la gestion du couplage ou la facilitation de la composition de données. Méthodologies Même Guillaume se met au “vibe coding” https://glaforge.dev/posts/2025/05/02/vibe-coding-an-mcp-server-with-micronaut-and-gemini/ Selon Andrey Karpathy, c'est le fait de POC-er un proto, une appli jetable du weekend https://x.com/karpathy/status/1886192184808149383 Mais Simon Willison s'insurge que certains confondent coder avec l'assistance de l'IA avec le vibe coding https://simonwillison.net/2025/May/1/not-vibe-coding/ Guillaume c'est ici amusé à développer un serveur MCP avec Micronaut, en utilisant Gemini, l'IA de Google. Contrairement à Quarkus ou Spring Boot, Micronaut n'a pas encore de module ou de support spécifique pour faciliter la création de serveur MCP Sécurité Une faille de sécurité 10/10 sur Tomcat https://www.it-connect.fr/apache-tomcat-cette-faille-activement-exploitee-seulement-30-heures-apres-sa-divulgation-patchez/ Une faille de sécurité critique (CVE-2025-24813) affecte Apache Tomcat, permettant l'exécution de code à distance Cette vulnérabilité est activement exploitée seulement 30 heures après sa divulgation du 10 mars 2025 L'attaque ne nécessite aucune authentification et est particulièrement simple à exécuter Elle utilise une requête PUT avec une charge utile Java sérialisée encodée en base64, suivie d'une requête GET L'encodage en base64 permet de contourner la plupart des filtres de sécurité Les serveurs vulnérables utilisent un stockage de session basé sur des fichiers (configuration répandue) Les versions affectées sont : 11.0.0-M1 à 11.0.2, 10.1.0-M1 à 10.1.34, et 9.0.0.M1 à 9.0.98 Les mises à jour recommandées sont : 11.0.3+, 10.1.35+ et 9.0.99+ Les experts prévoient des attaques plus sophistiquées dans les prochaines phases d'exploitation (upload de config ou jsp) Sécurisation d'un serveur ssh https://ittavern.com/ssh-server-hardening/ un article qui liste les configurations clés pour sécuriser un serveur SSH par exemple, enlever password authentigfication, changer de port, desactiver le login root, forcer le protocol ssh 2, certains que je ne connaissais pas comme MaxStartups qui limite le nombre de connections non authentifiées concurrentes Port knocking est une technique utile mais demande une approche cliente consciente du protocol Oracle admet que les identités IAM de ses clients ont leaké https://www.theregister.com/2025/04/08/oracle_cloud_compromised/ Oracle a confirmé à certains clients que son cloud public a été compromis, alors que l'entreprise avait précédemment nié toute intrusion. Un pirate informatique a revendiqué avoir piraté deux serveurs d'authentification d'Oracle et volé environ six millions d'enregistrements, incluant des clés de sécurité privées, des identifiants chiffrés et des entrées LDAP. La faille exploitée serait la vulnérabilité CVE-2021-35587 dans Oracle Access Manager, qu'Oracle n'avait pas corrigée sur ses propres systèmes. Le pirate a créé un fichier texte début mars sur login.us2.oraclecloud.com contenant son adresse email pour prouver son accès. Selon Oracle, un ancien serveur contenant des données vieilles de huit ans aurait été compromis, mais un client affirme que des données de connexion aussi récentes que 2024 ont été dérobées. Oracle fait face à un procès au Texas concernant cette violation de données. Cette intrusion est distincte d'une autre attaque contre Oracle Health, sur laquelle l'entreprise refuse de commenter. Oracle pourrait faire face à des sanctions sous le RGPD européen qui exige la notification des parties affectées dans les 72 heures suivant la découverte d'une fuite de données. Le comportement d'Oracle consistant à nier puis à admettre discrètement l'intrusion est inhabituel en 2025 et pourrait mener à d'autres actions en justice collectives. Une GitHub action très populaire compromise https://www.stepsecurity.io/blog/harden-runner-detection-tj-actions-changed-files-action-is-compromised Compromission de l'action tj-actions/changed-files : En mars 2025, une action GitHub très utilisée (tj-actions/changed-files) a été compromise. Des versions modifiées de l'action ont exposé des secrets CI/CD dans les logs de build. Méthode d'attaque : Un PAT compromis a permis de rediriger plusieurs tags de version vers un commit contenant du code malveillant. Détails du code malveillant : Le code injecté exécutait une fonction Node.js encodée en base64, qui téléchargeait un script Python. Ce script parcourait la mémoire du runner GitHub à la recherche de secrets (tokens, clés…) et les exposait dans les logs. Dans certains cas, les données étaient aussi envoyées via une requête réseau. Période d'exposition : Les versions compromises étaient actives entre le 12 et le 15 mars 2025. Tout dépôt, particulièrement ceux publiques, ayant utilisé l'action pendant cette période doit être considéré comme potentiellement exposé. Détection : L'activité malveillante a été repérée par l'analyse des comportements inhabituels pendant l'exécution des workflows, comme des connexions réseau inattendues. Réaction : GitHub a supprimé l'action compromise, qui a ensuite été nettoyée. Impact potentiel : Tous les secrets apparaissant dans les logs doivent être considérés comme compromis, même dans les dépôts privés, et régénérés sans délai. Loi, société et organisation Les startup the YCombinateur ont les plus fortes croissances de leur histoire https://www.cnbc.com/2025/03/15/y-combinator-startups-are-fastest-growing-in-fund-history-because-of-ai.html Les entreprises en phase de démarrage à Silicon Valley connaissent une croissance significative grâce à l'intelligence artificielle. Le PDG de Y Combinator, Garry Tan, affirme que l'ensemble des startups de la dernière cohorte a connu une croissance hebdomadaire de 10% pendant neuf mois. L'IA permet aux développeurs d'automatiser des tâches répétitives et de générer du code grâce aux grands modèles de langage. Pour environ 25% des startups actuelles de YC, 95% de leur code a été écrit par l'IA. Cette révolution permet aux entreprises de se développer avec moins de personnel - certaines atteignant 10 millions de dollars de revenus avec moins de 10 employés. La mentalité de “croissance à tout prix” a été remplacée par un renouveau d'intérêt pour la rentabilité. Environ 80% des entreprises présentées lors du “demo day” étaient centrées sur l'IA, avec quelques startups en robotique et semi-conducteurs. Y Combinator investit 500 000 dollars dans les startups en échange d'une participation au capital, suivi d'un programme de trois mois. Red Hat middleware (ex-jboss) rejoint IBM https://markclittle.blogspot.com/2025/03/red-hat-middleware-moving-to-ibm.html Les activités Middleware de Red Hat (incluant JBoss, Quarkus, etc.) vont être transférées vers IBM, dans l'unité dédiée à la sécurité des données, à l'IAM et aux runtimes. Ce changement découle d'une décision stratégique de Red Hat de se concentrer davantage sur le cloud hybride et l'intelligence artificielle. Mark Little explique que ce transfert était devenu inévitable, Red Hat ayant réduit ses investissements dans le Middleware ces dernières années. L'intégration vise à renforcer l'innovation autour de Java en réunissant les efforts de Red Hat et IBM sur ce sujet. Les produits Middleware resteront open source et les clients continueront à bénéficier du support habituel sans changement. Mark Little affirme que des projets comme Quarkus continueront à être soutenus et que cette évolution est bénéfique pour la communauté Java. Un an de commonhaus https://www.commonhaus.org/activity/253.html un an, démarré sur les communautés qu'ils connaissaient bien maintenant 14 projets et put en accepter plus confiance, gouvernance legère et proteger le futur des projets automatisation de l'administratif, stabiilité sans complexité, les developpeurs au centre du processus de décision ils ont besoins de members et supporters (financiers) ils veulent accueillir des projets au delà de ceux du cercles des Java Champions Spring Cloud Data Flow devient un produit commercial et ne sera plus maintenu en open source https://spring.io/blog/2025/04/21/spring-cloud-data-flow-commercial Peut-être sous l'influence de Broadcom, Spring se met à mettre en mode propriétaire des composants du portefeuille Spring ils disent que peu de gens l'utilisaent en mode OSS et la majorité venait d'un usage dans la plateforme Tanzu Maintenir en open source le coutent du temps qu'ils son't pas sur ces projets. La CNCF protège le projet NATS, dans la fondation depuis 2018, vu que la société Synadia qui y contribue souhaitait reprendre le contrôle du projet https://www.cncf.io/blog/2025/04/24/protecting-nats-and-the-integrity-of-open-source-cncfs-commitment-to-the-community/ CNCF : Protège projets OS, gouvernance neutre. Synadia vs CNCF : Veut retirer NATS, licence non-OS (BUSL). CNCF : Accuse Synadia de “claw back” (reprise illégitime). Revendications Synadia : Domaine nats.io, orga GitHub. Marque NATS : Synadia n'a pas transféré (promesse rompue malgré aide CNCF). Contestation Synadia : Juge règles CNCF “trop vagues”. Vote interne : Mainteneurs Synadia votent sortie CNCF (sans communauté). Support CNCF : Investissement majeur ($ audits, légal), succès communautaire (>700 orgs). Avenir NATS (CNCF) : Maintien sous Apache 2.0, gouvernance ouverte. Actions CNCF : Health check, appel mainteneurs, annulation marque Synadia, rejet demandes. Mais finalement il semble y avoir un bon dénouement : https://www.cncf.io/announcements/2025/05/01/cncf-and-synadia-align-on-securing-the-future-of-the-nats-io-project/ Accord pour l'avenir de NATS.io : La Cloud Native Computing Foundation (CNCF) et Synadia ont conclu un accord pour sécuriser le futur du projet NATS.io. Transfert des marques NATS : Synadia va céder ses deux enregistrements de marque NATS à la Linux Foundation afin de renforcer la gouvernance ouverte du projet. Maintien au sein de la CNCF : L'infrastructure et les actifs du projet NATS resteront sous l'égide de la CNCF, garantissant ainsi sa stabilité à long terme et son développement en open source sous licence Apache-2.0. Reconnaissance et engagement : La Linux Foundation, par la voix de Todd Moore, reconnaît les contributions de Synadia et son soutien continu. Derek Collison, PDG de Synadia, réaffirme l'engagement de son entreprise envers NATS et la collaboration avec la Linux Foundation et la CNCF. Adoption et soutien communautaire : NATS est largement adopté et considéré comme une infrastructure critique. Il bénéficie d'un fort soutien de la communauté pour sa nature open source et l'implication continue de Synadia. Finalement, Redis revient vers une licence open source OSI, avec la AGPL https://foojay.io/today/redis-is-now-available-under-the-agplv3-open-source-license/ Redis passe à la licence open source AGPLv3 pour contrer l'exploitation par les fournisseurs cloud sans contribution. Le passage précédent à la licence SSPL avait nui à la relation avec la communauté open source. Salvatore Sanfilippo (antirez) est revenu chez Redis. Redis 8 adopte la licence AGPL, intègre les fonctionnalités de Redis Stack (JSON, Time Series, etc.) et introduit les “vector sets” (le support de calcul vectoriel développé par Salvatore). Ces changements visent à renforcer Redis en tant que plateforme appréciée des développeurs, conformément à la vision initiale de Salvatore. Conférences La liste des conférences provenant de Developers Conferences Agenda/List par Aurélie Vache et contributeurs : 6-7 mai 2025 : GOSIM AI Paris - Paris (France) 7-9 mai 2025 : Devoxx UK - London (UK) 15 mai 2025 : Cloud Toulouse - Toulouse (France) 16 mai 2025 : AFUP Day 2025 Lille - Lille (France) 16 mai 2025 : AFUP Day 2025 Lyon - Lyon (France) 16 mai 2025 : AFUP Day 2025 Poitiers - Poitiers (France) 22-23 mai 2025 : Flupa UX Days 2025 - Paris (France) 24 mai 2025 : Polycloud - Montpellier (France) 24 mai 2025 : NG Baguette Conf 2025 - Nantes (France) 3 juin 2025 : TechReady - Nantes (France) 5-6 juin 2025 : AlpesCraft - Grenoble (France) 5-6 juin 2025 : Devquest 2025 - Niort (France) 10-11 juin 2025 : Modern Workplace Conference Paris 2025 - Paris (France) 11-13 juin 2025 : Devoxx Poland - Krakow (Poland) 12 juin 2025 : Positive Design Days - Strasbourg (France) 12-13 juin 2025 : Agile Tour Toulouse - Toulouse (France) 12-13 juin 2025 : DevLille - Lille (France) 13 juin 2025 : Tech F'Est 2025 - Nancy (France) 17 juin 2025 : Mobilis In Mobile - Nantes (France) 19-21 juin 2025 : Drupal Barcamp Perpignan 2025 - Perpignan (France) 24 juin 2025 : WAX 2025 - Aix-en-Provence (France) 25-26 juin 2025 : Agi'Lille 2025 - Lille (France) 25-27 juin 2025 : BreizhCamp 2025 - Rennes (France) 26-27 juin 2025 : Sunny Tech - Montpellier (France) 1-4 juillet 2025 : Open edX Conference - 2025 - Palaiseau (France) 7-9 juillet 2025 : Riviera DEV 2025 - Sophia Antipolis (France) 5 septembre 2025 : JUG Summer Camp 2025 - La Rochelle (France) 12 septembre 2025 : Agile Pays Basque 2025 - Bidart (France) 18-19 septembre 2025 : API Platform Conference - Lille (France) & Online 23 septembre 2025 : OWASP AppSec France 2025 - Paris (France) 25-26 septembre 2025 : Paris Web 2025 - Paris (France) 2-3 octobre 2025 : Volcamp - Clermont-Ferrand (France) 3 octobre 2025 : DevFest Perros-Guirec 2025 - Perros-Guirec (France) 6-10 octobre 2025 : Devoxx Belgium - Antwerp (Belgium) 7 octobre 2025 : BSides Mulhouse - Mulhouse (France) 9-10 octobre 2025 : Forum PHP 2025 - Marne-la-Vallée (France) 9-10 octobre 2025 : EuroRust 2025 - Paris (France) 16 octobre 2025 : PlatformCon25 Live Day Paris - Paris (France) 16-17 octobre 2025 : DevFest Nantes - Nantes (France) 30-31 octobre 2025 : Agile Tour Bordeaux 2025 - Bordeaux (France) 30-31 octobre 2025 : Agile Tour Nantais 2025 - Nantes (France) 30 octobre 2025-2 novembre 2025 : PyConFR 2025 - Lyon (France) 4-7 novembre 2025 : NewCrafts 2025 - Paris (France) 6 novembre 2025 : dotAI 2025 - Paris (France) 7 novembre 2025 : BDX I/O - Bordeaux (France) 12-14 novembre 2025 : Devoxx Morocco - Marrakech (Morocco) 13 novembre 2025 : DevFest Toulouse - Toulouse (France) 15-16 novembre 2025 : Capitole du Libre - Toulouse (France) 20 novembre 2025 : OVHcloud Summit - Paris (France) 21 novembre 2025 : DevFest Paris 2025 - Paris (France) 27 novembre 2025 : Devfest Strasbourg 2025 - Strasbourg (France) 28 novembre 2025 : DevFest Lyon - Lyon (France) 5 décembre 2025 : DevFest Dijon 2025 - Dijon (France) 10-11 décembre 2025 : Devops REX - Paris (France) 10-11 décembre 2025 : Open Source Experience - Paris (France) 28-31 janvier 2026 : SnowCamp 2026 - Grenoble (France) 2-6 février 2026 : Web Days Convention - Aix-en-Provence (France) 23-25 avril 2026 : Devoxx Greece - Athens (Greece) 17 juin 2026 : Devoxx Poland - Krakow (Poland) Nous contacter Pour réagir à cet épisode, venez discuter sur le groupe Google https://groups.google.com/group/lescastcodeurs Contactez-nous via X/twitter https://twitter.com/lescastcodeurs ou Bluesky https://bsky.app/profile/lescastcodeurs.com Faire un crowdcast ou une crowdquestion Soutenez Les Cast Codeurs sur Patreon https://www.patreon.com/LesCastCodeurs Tous les épisodes et toutes les infos sur https://lescastcodeurs.com/
In this episode of the Podcast of Champions hosts Ryan Abraham and David Woods return to talk about a variety of news and notes from around the world of Big Ten football. The fellas talk about Sherrone Moore being suspended for two games this season, Michigan State firing its athletic director Alan Haller, UCLA making a big wave in the transfer portal by signing Nico Iamaleava, and, most importantly, Cam Rising finally ending his college career. For the video simulcasts of our POC please subscribe to your YouTube channel! Please subscribe, give the POC a five-star rating and post a review on Apple Podcasts! Send us a text or leave us a voicemail by texting or calling (424) 532-0678 or you can email us at bigtencast@gmail.com. To learn more about listener data and our privacy practices visit: https://www.audacyinc.com/privacy-policy Learn more about your ad choices. Visit https://podcastchoices.com/adchoices
R-Soul: Reclaiming the Soul of Reproductive Health, Rights, and Justice
Kelley Fox and Rev. Terry Williams reflect on the similarities between the last 40 years of fights for reproductive rights and modern struggles for justice, identifying key repro movement learnings that can help make sense of current attacks on fundamental rights. Lifting up the historic resilience of abortion care providers and reproductive justice practitioners in the face of government hostility, Kelley and Terry explore ways for modern supporters of diversity, equity, and inclusion to stay strong in the midst of increased legislative attacks and the weaponization of law enforcement systems against vulnerable groups. Links to discussed content: Combating Anti-Abortion Misinformation: https://reproductivefreedomforall.org/resources/how-to-identify-and-combat-anti-abortion-disinformation National Network of Abortion Funds: https://abortionfunds.org/ Faith Choice Ohio Training Center: www.faithchoiceohio.org/trainings Conflict Is Not Abuse, by Sarah Schulman: https://arsenalpulp.com/Books/C/Conflict-Is-Not-Abuse "That Man Said What?!" (an early R-Soul Episode on COVID and Misinformation about POC): https://faithchoiceohio.podbean.com/e/that-man-said-what/ Volunteer for Ohio Senate Bill 1 Referendum: https://docs.google.com/forms/d/e/1FAIpQLSePTgRhX2MyRJ6PjmhAgV4oYcyz7Z0295El5sxfZ04bpjoE4Q/viewform Music by Korbin Jones
"Hot Takes" season four had to come to an end at some point, so Skelly and Shiro decided to let the mod team take the reins; and they flipped the entire format upside down, posing their own recommendations and takes and lobbing questions at the hosts for the three-hour run. A deviation from the show's typical fare, we got to get some phenomenal insight into the "Hot Takes" mod team's tastes and get the know the two show hosts and their backgrounds quite a bit better too! Six profoundly important scene builders and taste making titans gave us their valuable time, going beyond their duties as Discord server mods and basically running the show themselves instead of Skelly and Shiro being in charge, for once. There were so many memorable moments, from conversations about how to attract and retain female/femme and POC attendees at URL vaporwave show to thoughts about the longevity of artist Patreons and limited runs of exclusive fan club vinyl releases; and let's not forget Shiro getting raked over the coals for editing track metadata in the tracks he downloads, changing capitalization and tags without artists' knowledge or consent! Bad boy! Despite some audio woes, long monologues, and one weary, energy drink chugging co-host towards the end, the episode was noteworthy, well attended, and shined an important light on six incredibly important figures in the scene right now: Crystal Eternal, Luxury Elite, Luxury Noise, Minidisc.Wiki, Quiz, and Roge Corp. Make sure to block out some time for this one, because it is lengthy and brimming with rants, raves, and rarities! "Hot Takes" is a safe space for all opinions! Join the conversation at https://linktr.ee/hottakesvapor
On this episode of the “Gen AI Breakthrough" podcast, Kyle McNabb hosts a discussion on the importance of proof of concept (POC) in testing AI solutions, highlighting its role in feasibility assessment and resource efficiency. Guests Kyle Robichaud and Jay Ruffin emphasize key factors such as data quality, risk mitigation, and alignment with organizational goals that influence the success of POCs. Additionally, it addresses the need for continuous education and effective communication to bridge the gap between executives and implementation teams.
Autonomix Medical CEO Brad Hauser joined Steve Darling from Proactive to announce a significant milestone in the company's development of breakthrough neuro-modulation technology. The company has released a compelling new video testimonial from a patient who participated in the initial phase of its first-in-human proof-of-concept trial, which is evaluating a novel method of delivering transvascular energy to ablate nerves and alleviate severe pain associated with pancreatic cancer. The company's innovative technology platform is designed to revolutionize how pain and other nerve-related conditions are treated. It features a catheter-based microchip sensing array antenna with the unique ability to detect and differentiate neural signals with up to 3,000 times greater sensitivity than existing solutions. Once problematic nerves are identified, Autonomix's proprietary radiofrequency (RF) ablation technology can precisely eliminate them, offering a highly targeted and minimally invasive therapeutic option for chronic pain, hypertension, and cardiology-related conditions. Hauser confirmed that 20 patients were enrolled in the initial PoC 1 trial, including the first five “lead-in” participants. Based on consistent and positive clinical outcomes that met the trial's primary objectives, the company determined that the patient sample was sufficient to conclude this initial phase. One of the most noteworthy findings was the demonstration of statistically significant pain relief in some patients as early as 24 hours post-procedure—highlighting the potential for rapid, meaningful clinical benefit. Importantly, the procedure also exhibited a strong safety profile. No device- or procedure-related serious adverse events were reported, underscoring the technique's tolerability and risk mitigation potential in a highly vulnerable patient population. Encouraged by these early results, Autonomix is moving ahead with a follow-on PoC 2 phase of the study. This next phase will expand the treatment protocol to include additional visceral cancers as well as patients with earlier-stage pancreatic cancer experiencing moderate to severe pain. The ultimate goal remains to evaluate the effectiveness of RF ablation in managing cancer-related pain and improving patients' quality of life. Although the catheter-based microchip sensing array—a core feature of the Autonomix platform—was not used in this initial trial, it is expected to be evaluated in future studies. The sensing array is anticipated to play a key role in future applications by enabling real-time, ultra-sensitive nerve mapping to enhance targeting accuracy and clinical outcomes. #proactiveinvestors #autonomixmedcialltd #nasdaq #amix #medical #nervoussystem #PancreaticCancer #CancerPainRelief #AutonomixMedical #BradHauser #OpioidAlternative #ClinicalTrials #MedicalTechnology #PainManagement #TransvascularTherapy #ProactiveInvestors
WE. ARE. BACK. Making our debut after a long break is HERE. And we're talking about the ever (and rightfully so) growing in popularity movie, Sinners. Burying the lead, we couldn't get enough of this movie. Brought to you by Ryan Coogler, witness something truly magnificent. The hype is worth it. Listen to POC creators break down this film about what it means to them. Watch the cast interviews from the press junket without the white actors. But more importantly, have fun. We had a blast recording this episode and we have every intention of seeing it again. To see more of Liz VanHoutte's work, check her out on Instagram @lizvanhouttestudios Check out our merch store: www.teepublic.com/user/leftfordread Help us grow our Dreadful horde, so don't forget to rate, review and subscribe! Slash your way to joining us on all our social media! Instagram -@leftfordreadpod Blue Sky- @LeftforDreadpod Tumblr - https://www.tumblr.com/leftfordreadpod Website- www.leftfordread.com RSS Feed- feeds.soundcloud.com/users/soundclo…536/sounds.rss
Welcome to Book of Lies Podcast! We have a drawing/contest to earn a free book of lies podcast mug for those listeners out in the universe, a winner will be annouced June 1st 2025. Email your entries to bookofliespodcast@gmail.comThis week we bring you an episode for American Greed streaming on Peacock. Joel Steiner was a convicted felon who was banned from selling securies in the 80's because he's a crook, that didnt stop him and his brothers from running and raising over 1 billions dollars from 30 thousand investors. Tap into this episode to watch out for a scam like this.We catch up on Sunni's birthday shindig, what we've been watching and more. Send us a message anytime, or just listen in to learn how to get a chance at this exclusive Book of Lies Podcast Mug.Subscribe and follow. Follow us on social @bookofliespodcast.
[WEEKEND RECAP 04-27-25] Consider what we know and why we know it. The outcome of an election has the ability to impact the future in ways we will never know. We know the world would be in turmoil if Biden or Harris were elected. The Left would continue covering up things. But even with Trump's election, look at all we still don't know. Republicans are dragging their feet on what seem to be obvious crimes. The public will be ok with this for the short while, after all it's been a short time for the Trump team to get moving. However, our patience will run thin.Republicans are equally afraid of MAGA as Democrats. There is a rift between ReTrumplicans and Republicans. But if the Republicans think they will survive without MAGA they are mistaken. Speaking of academia, DataRepublican may have solved a major problem: Last night, I completed a successful PoC that matches federal research awards to actual research outcomes: think papers, press releases, conference talks, and more. I tested the method on a single major research university and achieved >95% accuracy in identifying whether a research outcome was reasonably expected, and locating public references when they exist.Become a supporter of this podcast: https://www.spreaker.com/podcast/the-kevin-jackson-show--2896352/support.
The Better Business Bureau advises Apple to curb its deceptive Apple Intelligence marketing. What is "slopsquatting"? It doesn't sound very appealing, but it is to cyber criminals. And we've got another reason why phishing scammers love Google services. Show Notes: Urgent: macOS Sequoia 15.4.1, iOS 18.4.1 address 2 zero-day vulnerabilities Josh: Here's why you should stay on the very latest Apple OS Technical analysis of CVE-2025-31201 Apple drops ‘available now' from Apple Intelligence page AI-hallucinated code dependencies become new supply chain risk Cookie-Bite attack PoC uses Chrome extension to steal session tokens OpenAI tells judge it would buy Chrome from Google Phishers abuse Google OAuth to spoof Google in DKIM replay attack Whisky development ends on macOS to help Wine flourish Is 2025 the year of Mac gaming? Top 5 reasons to be a Mac gamer Instagram Launches 'Edits' App to Replace CapCut Intego Mac Premium Bundle X9 is the ultimate protection and utility suite for your Mac. Download a free trial now at intego.com, and use this link for a special discount when you're ready to buy.
Send a Text to the Moms - please include your contact info if you want a response. thanks!Guest: Regina Graham, MD (she/her)Medical Director of Early Psychosis Programs,Health Sciences Clinical ProfessorUC Davis School of MedicineAccording to the National Institute of Mental Health, nearly one in five U.S. adults live with a mental illness ( 52.9 million people in 2020). While People of Color (POC) have rates of mental health disorders similar to Whites, these disorders are more likely to last longer and result in more significant disability for POC. Most mental illness goes untreated, especially in communities of color. Fifty-two percent of Whites with AMI received mental health services in 2020, compared to 37.1% of Blacks and 35% of Hispanics.Dr. Graham is a child, adolescent, and adult psychiatrist, with expertise in intensive mental health settings -- including inpatient, residential, and emergency interventions -- working with vulnerable populations. She has a passion for prodromal, early and first-episode psychosis and its management utilizing specialized care models to optimize outcomes for patients, their families, and communities.Definition of Minoritized Communities:Groups who have experienced systemic discrimination and marginalization due to factors like race, ethnicity, gender, sexual orientation, or socioeconomic statusGroups excluded from opportunities and power structures in our society Questions:How does cultural background impact the experiences of schizophrenia for the individual and their loved ones?How could trauma impact members of minoritized communities with schizophrenia?How are members of minoritized communities with schizophrenia being served in mental health services, and what are the barriers to treatment?Specific story about how individuals from minoritized communities with schizophrenia hesitate in seeking treatment during a crisis?Thanks for liking and sharing the podcast! Mindy and her book: https://mindygreiling.com/Randye and her book: https://randyekaye.com/Miriam and her book: https://www.miriam-feldman.com/Hosts:Who:Randye Kaye - was a morning Radio Personality bringing humor to CT families when her own son was diagnosed with schizophrenia. Now she is still a Broadcaster, Actress, Voice Talent, Speaker, and Author (Ben Behind his Voices, Happier Made Simple)Miriam Feldman - is an artist, writer, and the mother of an adult son with schizophrenia. Her book, He Came in With It chronicles her family's story and was released to rave reviews on July 21st, 2020.Mindy Greiling - Mindy Greiling was a member of the Minnesota House of Representatives for twenty years. She helped found the nation's first state mental health caucus, which successfully lobbied forWant to know more?Join our facebook page Our websites:Randye KayeMindy Greiling Miriam (Mimi) Feldman
Mike Conover started his career as a machine learning engineer. Today, he's the co-founder and CEO of Brightwave, an AI startup helping financial professionals make faster decisions with massive, unstructured data. In this episode of Fund/Build/Scale, Mike shares how he made the leap from technical contributor to strategic leader—and the hard lessons he learned along the way. From translating technical vision into a focused go-to-market strategy, to learning how to coach, hire, and scale intentionally, Mike unpacks the mindset shift required to move from building code to building a company. We also get into: How Brightwave validates new product bets in a high-stakes industry Why founder-market fit is emotional, not just strategic Mistakes to avoid when hiring your early team How to create focus loops and feedback channels before feature creep sets in Why emotional intelligence and execution velocity matter just as much as AI architecture If you're a technical founder — or thinking about becoming one — this conversation offers an unvarnished look at what it actually takes to scale yourself while scaling your startup. RUNTIME 55:09 EPISODE BREAKDOWN (1:12) Mike explains how Brightwave works. (3:49) Where the idea came from. (7:47) How he connected with co-founder Brandon Kotara. (10:58) The biggest challenges he faced shifting from an engineering role to founder/CEO. (14:22) “As a CEO, you have to do a lot of jobs that you have no preparation for.” (15:07) Working with a coach has been “such a sustaining source of inspiration, but also continuity.” (18:45) “There's a rap lyric I really like, which is, ‘you can't crush me, I'm dirt.'” (20:29) Turning “reasonable” feature requests into new products helped Brightwave build customer trust. (25:30) “ It's unusual,” but co-pilots and POC programs were not part of their early success. (30:12) Tips for building feedback loops between customers and the product team. (36:04) Seed to Series A “ was about four months.” (40:02) “ Most startups are not that defensible.” (45:54) “A lot of the product-led growth techniques that you might use don't always fit the market especially well.” (47:45) How to create a self-assessment framework for founder-market fit. (50:43) “ Brightwave — in its full totality — has material substance in my mind already.” (53:05) The one question he'd have to ask the CEO before taking a startup job. LINKS Mike Conover Brandon Kotara Brightwave Fred Kofman, Conscious Business SUBSCRIBE
In today's VETgirl online veterinary continuing education podcast, Dr. Holly Brown, ACVP discusses the importance of performing in-house diagnostics (IHD) - commonly known as point-of-care (POC) diagnostics - as part of routine patient care and patient differential diagnosis. In-house diagnostics include urinalysis, CBC, serum chemistries, parasitology and cytology evaluations...all key diagnostics that can be performed at the clinic with the resources you have! Tune in to learn more about the advancements and benefits of performing in-house diagnostics.Sponsored By: Antech, MARS
Welcome to Book of Lies Podcast and Hello April!This week we have a new episode for you. We are joined by guest Javier Leiva of Pretend Podcast. You will enjoy this discussion, we cover topics ranging from Cults to Clown Porn and Ponzi Schemes to Fyre Fest 2. Join us for this great conversation as learn more about Javier and the people pretend who pretend. You can follow us @bookofliespodcast on Instagram and BluSky You can find Javier @pretendpodcastIf you arent already please follow and or subscribe, if you feel inclinded please leave a reveiw. Want to send an email? Email us at bookofliespodcast@gmail.com
Henrique Prata Ribeiro é médico psiquiatra no Hospital Beatriz Ângelo, docente na Católica Medical School e doutorando na Universidade do Minho. É autor de várias publicações científicas e livros, incluindo *Urgências Psiquiátricas*, *Dormir é Fácil* (com André Ponte) e *Step-by-Step Psiquiatria* (com Daniel Sampaio). Destaca-se pelo seu envolvimento em causas relacionadas com o acesso à saúde mental, como a criação de protocolos com a APAV, propostas de alteração legislativa e defesa do acesso gratuito a medicação para a esquizofrenia. Até dezembro de 2024, coordenou a implementação do Programa para a Saúde Mental dos Açores. É formado em Medicina pela Universidade de Coimbra e lecionou na Faculdade de Medicina de Lisboa antes de integrar a Católica. _______________ Índice: (0:00) Introdução (4:01) Início: Damos mais atenção à saúde mental, mas falta literacia em saúde mental? | Sintomas principais das doenças psiquiátricas: depressão, ansiedade, bipolaridade, esquizofrenia | Diferenças entre diagnóstico psiquiátrico e psicológico; classificações internacionais (12:53) Perturbação Obsessiva-compulsiva (POC) (15:38) Que doenças têm causas comuns? (17:56) Portugal: segundo país europeu com maior incidentes de doenças mentais — Causas genéticas vs ambientais (23:47) Taxas de suicidio | OECD Health at a glance (26:23) Depressão afecta mais em que idades? (29:21) Cannabis: riscos do consumo precoce e de alta potência (estudo académico) | Cannabis vs alcool (39:19) Psicadélicos: tratamento vs uso recreativo (46:10) Tratamentos atuais para doenças psiquiátricas: eficácia, estigma (Neuroscience-based nomenclature) (52:27) Novos medicamentos e problemas de acesso em Portugal | Electroconvulsivoterapia (1:00:27) Programa de Saúde Mental dos Açores (1:03:27) Porque não é mais alto o suicidio em Portugal? (1:11:12) Livro Dormir É Fácil | Eficácia da Terapia Cognitivo-comportamental (1:22:28) A história por trás do Prémio da FLAD para a Saúde MentalSee omnystudio.com/listener for privacy information.
Feel free to give us a 5 star review (only if youre hot)On today's episode we discuss what happens to the podcast if one of us dies, the live action Lilo and Stitch remake and how Edan wants less POC characters in it, an Aussie onlyfans house, lesbians + we come up with some new reality show spinoffs.Join our super secret Private Facebook Page: https://www.facebook.com/share/g/1AATP1nnW8/ Hosted on Acast. See acast.com/privacy for more information.
Join Katie and Liz on this week's installment of their case profile mini-episode series. To kick off the show, Katie shares the details of the horrible murders of Elizabeth Matos and William Vega. 16-year-old Elizabeth and 19-year-old William were discovered, both shot to death, on the streets of Worcester, Massachusetts in 2001. Then, Liz talks about the sad murder of father-of-six Jawara Stennett, who was driving home with his father and brothers after celebrating a birthday when he was shot through the car on the I-95 just outside of Bridgeport, Connecticut. Both cases remain unsolved.Anyone with any information on the murders of Elizabeth Matos and William Vega is asked to please call the Worcester Police Detective Bureau at 508-799-8651. You can also send an anonymous text to 274637 (TIPWPD) or an anonymous web-based message at worcesterma.gov/police. Anyone with information that can help investigators in identifying the suspect in Jawara's case is asked to please contact Troop G-Bridgeport at 203-696-2500.
Catch Michael Yo on is ISSA TRU! Tour! For dates, tickets and more go to http://michaelyo.com!This week, Michael Yo and Rudy Pavich discuss Disney's latest live adaptation, Snow White, and if it's right or wrong to cast people of color in formerly white roles.0:00 The Week in 15 minutes discuses Snow White3:39 Why Disney would put a POC in a white role6:15 Disney remake box office gross numbers9:52 Michael's family experience at Disney Theme ParksMore from Michael Yo 마이클 요Support Michael Yo
There was some confusion. I thought I was asked to be further involved in the first ever Revitalized Behavioral Healthcare mental health gala. That's OK. This was a fantastic half hour getting to know Samantha and Tiffany and this effort they're SO incredibly passionate about. You know we often talk mental health but I always relish the opportunity to do so when it comes to the issue in Black and POC communities. The feelings are the same, but the causes can be SO different. First, Will Smith is a deserter. See omnystudio.com/listener for privacy information.
Ramfis Myrthil is a New York-based filmmaker who is committed to producing and championing POC and LGBTQ+ stories. Ramfis has produced over 20 films of varying lengths, some of which have been featured at top-tier film festivals such as Cannes and Sundance. In addition, Ramfis is a regular speaker at SXSW and Cannes Film Festival===========================Subscribe and Listen to “Conversations with Daron Jenkins” HERE:
Welcome to Book of Lies Podcast!This week we discuss the dreaded Catfish that gets you for your money. Share this episode with a friend. If you like what you hear come back, subscribe, leave a review. We would really appreciate it. Have a story of Fraud or a Scam you want to share? Email us at bookofliespodcast@gmail.com You can connect with us on Blusky @bookofliespodcast.bsky.social Instagram or Threads @bookofliespodcast Facebook @bookofliespodcastJoin us on Patreon for early and commerical free episodes.https://www.patreon.com/c/Bookofliespodcast support.Shop your dog treats at www.beautysbiscuits.com use offer code LIES
In this episode, Zachary Hanif, VP of AI, ML, and Data at Twilio, joins Amir to talk about the engine behind B2B AI innovation. From selecting the right tools to navigating the shift from POCs to production, Zachary offers an insider's look at how enterprises can thoughtfully and effectively integrate AI.We unpack:The danger of "boiling the ocean" with AIWhy chatbots aren't always the right starting pointWhat makes an AI POC actually valuableAnd why UX in the age of AI needs systems thinking
White supremacy is not merely sustained by white individuals but is deeply embedded in social, economic, and political systems that strategically co-opt POC. By analysing historical and contemporary examples, we see how whiteness employs people of colour to maintain its power. Understanding these mechanisms allows us to challenge them, fostering true racial justice and equity. Only through collective awareness and resistance can we dismantle these structures and work towards a more just society.
Get the facts, without the spin. UNBIASED offers a clear, impartial recap of US news, including politics, elections, legal news, and more. Hosted by lawyer Jordan Berman, each episode provides a recap of current political events plus breakdowns of complex concepts—like constitutional rights, recent Supreme Court rulings, and new legislation—in an easy-to-understand way. No personal opinions, just the facts you need to stay informed on the daily news that matters. If you miss how journalism used to be, you're in the right place. In today's episode: Trump Admin and Judge Fight Over Deportation Flights Trump Threatens Impeachment Against Judge; Chief Justice Roberts Responds Judge Says DOGE's Actions Related to USAID Likely Unconstitutional Judge Says Trump's Ban on Transgender Service Members Likely Unconstitutional JFK Assassination Documents Released; Here's What We Learned and Why It's Important Quick Hitters: Astronauts Back Home, UPenn Loses $175M in Federal Funds, Ben & Jerry's CEO Fired, HHS Announces Operation Stork Speed, Interest Rates Kept Steady, Khalil to be Transferred to New Jersey Rumor Has It: Does the Trump Admin Have a "List" of Banned Words? Did the Dept. of Defense Remove Webpages About Women and POC? Did Trump Remove on Prohibition on Segregated Facilities? Is California Asking for a $3B Loan Because of Undocumented Immigrants? Critical Thinking Segment SUBSCRIBE TO JORDAN'S FREE WEEKLY NEWSLETTER. Watch this episode on YouTube. Follow Jordan on Instagram and TikTok. All sources for this episode can be found here. Learn more about your ad choices. Visit podcastchoices.com/adchoices
Making time for creativity and personal passions can feel impossible amid life's demands, but it doesn't have to be. In this episode, Lesley and Brad reflect on key insights from their conversation with Kristen McGuiness, including how she protects her creative energy while balancing work and family. Tune in for actionable tips on reclaiming your time and honoring your dreams.If you have any questions about this episode or want to get some of the resources we mentioned, head over to LesleyLogan.co/podcast. If you have any comments or questions about the Be It pod shoot us a message at beit@lesleylogan.co. And as always, if you're enjoying the show please share it with someone who you think would enjoy it as well. It is your continued support that will help us continue to help others. Thank you so much! Never miss another show by subscribing at LesleyLogan.co/subscribe.In this episode you will learn about:How to establish and enforce boundaries that protect your personal goals.Why honoring your intuition leads to better decision-making and less regret.The value of intentional time for creativity and deep work.How to overcome guilt around prioritizing your personal passions.Why waiting for life to slow down before pursuing your dreams is a mistake.Episode References/Links:Cambodia October 2025 Waitlist - https://crowsnestretreats.comOPC Spring Pilates Training - https://opc.me/eventsPilates Studio Growth Accelerator - https://prfit.biz/acceleratorPilates Flashcards - https://opc.me/flashcardsRise Literary Website - https://riseliterary.comRise Literary Instagram - https://instagram.com/riseliteraryKristen McGuiness Instagram - https://www.instagram.com/kristenmcguiness If you enjoyed this episode, make sure and give us a five star rating and leave us a review on iTunes, Podcast Addict, Podchaser or Castbox.DEALS! DEALS! DEALS! DEALS!Check out all our Preferred Vendors & Special Deals from Clair Sparrow, Sensate, Lyfefuel BeeKeeper's Naturals, Sauna Space, HigherDose, AG1 and ToeSoxBe in the know with all the workshops at OPCBe It Till You See It Podcast SurveyBe a part of Lesley's Pilates MentorshipFREE Ditching Busy Webinar Resources:Watch the Be It Till You See It podcast on YouTube!Lesley Logan websiteBe It Till You See It PodcastOnline Pilates Classes by Lesley LoganOnline Pilates Classes by Lesley Logan on YouTubeProfitable Pilates Follow Us on Social Media:InstagramThe Be It Till You See It Podcast YouTube channelFacebookLinkedInThe OPC YouTube Channel Episode Transcript:Lesley Logan 0:00 Even if we call it a boundary, just so you know, you also don't have to explain why your boundaries exist. Brad Crowell 0:04 You don't. Lesley Logan 0:04 And if you need help with that, the holistic psychologist constantly reminds you that you actually do not have to explain why a boundary is a boundary that is.Brad Crowell 0:12 It just is. Lesley Logan 0:13 It just is. Lesley Logan 0:14 Welcome to the Be It Till You See It podcast where we talk about taking messy action, knowing that perfect is boring. I'm Lesley Logan, Pilates instructor and fitness business coach. I've trained thousands of people around the world and the number one thing I see stopping people from achieving anything is self-doubt. My friends, action brings clarity and it's the antidote to fear. Each week, my guest will bring bold, executable, intrinsic and targeted steps that you can use to put yourself first and Be It Till You See It. It's a practice, not a perfect. Let's get started.Lesley Logan 0:57 Welcome back to the Be It Till You See It interview recap where my co-host in life, Brad, and I are going to dig into the groundbreaking convo I had with Kristen McGuiness in our last episode. If you haven't yet listened to that interview, feel free to pause us now, go back and listen to that one and then come back and join us.Brad Crowell 1:12 No hard feelings. We'll still be here. Lesley Logan 1:14 She's a great. Brad Crowell 1:15 Oh yeah. Lesley Logan 1:16 I have actually shared her. Brad Crowell 1:18 Okay, so hold on. Did she write the book that you read, that you told me? Lesley Logan 1:22 Different book. But. Brad Crowell 1:23 Oh, really? Lesley Logan 1:23 Yes, I know. Brad Crowell 1:25 Okay, okay, okay. Lesley Logan 1:26 I know, yes, yeah, no, different book, but same topic. At any rate, it's in my TBRs still, Kristen, I'm so sorry.Brad Crowell 1:33 What's a TBR? Lesley Logan 1:34 To be read. Yeah, this is a TBR. There's no, you know, I anyways, it's, I'm really excited because I really, so, I have actually talked about her multiple times to multiple people, because this woman, when I interviewed her, she was on her monthly like, three days in a hotel to get her shit written, like to get things done. And I just love that this woman was okay. I'm not gonna get anything done. I'm not gonna even try. I'm just going to keep the wheels on the bus, and then every month, I get several days at a hotel uninterrupted. I'm like, I want, I don't even have kids, and I want that. Anyways, before we talk about that, let's talk about how it's March 20th 2025 and it's International Day of Happiness. If you're happy and you know it, celebrate it on International Day of Happiness on March 20th. Brad Crowell 2:21 I thought you were going to clap your hands. Right. Lesley Logan 2:24 Anyways, when I was a kid, my mom would always sing that all the time, so. Brad Crowell 2:27 That's so fun. Lesley Logan 2:28 Other than being in a neutral state, happy is how we should mostly be. Okay. Brad Crowell 2:35 Yeah. Don't fuck it up.Lesley Logan 2:36 Unfortunately, emotions, just feel like that's a lot of pressure. Unfortunately, emotions like anger and sadness are increasingly becoming a default way to be for a lot of us. So here's a day to cheer up and appreciate the good things and silver linings in life. So as you listen to Pharrell Williams's ‘Happy' on repeat, also take a minute this March 20th to consider what truly makes you happy, and how you can pursue it. Well, I can get down with that part of the holiday. Why don't you really take some time to journal what makes me happy, and how can I pursue that more? Brad Crowell 2:43 All right. Lesley Logan 2:54 That's the only part of the song you know. Because I'm happy.Brad Crowell 3:13 That's the best part of the song. Lesley Logan 3:23 Okay. Well, anyways. Brad Crowell 3:24 Good job. Nailing it. Lesley Logan 3:25 We are back from Pilates On Tour. We are home for a little bit, and we are in the middle of the Accessories Flashcard presale. And I promised Brad I was not going to talk about it, but he clearly is sneaking into the show notes. So I'm just going to say, if you know, you know. Brad Crowell 3:41 If you know, you know.Lesley Logan 3:42 And that's how it's gonna be. If you know, you know. Brad Crowell 3:45 And if you don't know, and you're like, what? Lesley Logan 3:46 Go listen to the other recap episode and get the link. But I'm.Brad Crowell 3:49 DM us. Lesley Logan 3:50 But I'm I want you to take or I want you to take action steps sooner. Okay, all right. So what's coming up next that you need to know about is our Spring Training. It is April 27th through May 3rd. It's going to be virtual. There'll be live events and there is replays. So don't worry about it if you are like, oh my God, it's the busiest week of my life, I promise you, you'll be able to attend the things on replay. You want to go to opc.me/events. Pretty soon, I'll tell you what the theme is going to be about this Spring Training. But all the OPC teachers and myself are teaching multiple classes over the week on different pieces of apparatus for different levels of bodies, so that every Pilates lover of any level can have access to moving with accountability, Q&A to get feedback on their form and potentially seeing what OPC is all about. Brad Crowell 4:37 What is it about? Lesley Logan 4:39 Opc.me/events plural to get on the waitlist, which means you get the discount. What's next, Brad? Brad Crowell 4:44 All right. All right. Pilates business owners. Calling all Pilates business owners, go to prfit.biz/accelerator for a free webinar where we're going to dig into the biggest three secrets that Lesley and I have learned after coaching 2500 businesses just like yours, whether you are teaching someone at home, whether you're renting space with someone, or whether you've got a big team in a brick and mortar studio, these three secrets all apply to you, and it's all about how do we make more money? How do we make our businesses actually profitable? And that's what we do at Profitable Pilates. So come join me. It is free, prfit.biz/accelerator. That is profit without the O dot biz slash accelerator. And then finally, what is the last note? Lesley Logan 5:28 Well, you guys have to come to Cambodia with us on a Pilates retreat. Brad Crowell 5:30 Obviously. Lesley Logan 5:31 And some breath work and some visualization and some tips and tools and workshops on how to actually make your life the way you want to live it. Plus you get to see incredible temples that are a thousand years old or older. Brad Crowell 5:43 Mind blowing. Lesley Logan 5:43 You get to go on a beautiful water cruise, and it is incredible because you actually get to see how a city can thrive on the water, and the community they work in.Brad Crowell 5:52 They literally live on boats. Lesley Logan 5:53 Yeah and the community they work in. And this is not some sort of like weird tourism thing. We actually get permission by a community to go into the water. You can see how the city is built. And you actually get to attend one of these amazing shops, where you get to see how women can work remotely, making beautiful pieces of things you can buy, and you can support the village in an incredible way. It's so fun. It's so relaxing. It's really nice, because after all the breath work you'll have done that day, you just go out and just be in peace and not taking in, like, overwhelming information. And then also, we go to a lotus farm, and you can just see how this one guy's company uses every single piece of a lotus flower to not only create beautiful things you want to buy, but also energy in remote places. It's quite amazing. Brad Crowell 6:40 It is astounding. Lesley Logan 6:40 It's astound, I mean, it's like, this, it's this guy's like, how can I, like, change the world? And he is doing it and we get to go show you that. So it's in October. You want to go to crowsnestretreats.com to snag your spot. If you're like, I'm gonna do the next one. We haven't planned it yet. Brad Crowell 6:53 We haven't planned it yet. Lesley Logan 6:55 And that is because this is your next time. This is the time.Brad Crowell 6:57 This is your next time.Lesley Logan 6:58 So come.Brad Crowell 6:59 Yeah. So join us at the end of this year, in October, looking forward to it. Lesley Logan 7:03 It's a great time. It's before all the chaos of the end of the year. So it's a really good time, because. Brad Crowell 7:07 It really is. Lesley Logan 7:08 You can reset before the chaos of the holidays, and then you'll have all these tools and things that we'll have done in the workshops and the Pilates to help set you up for 2026.Brad Crowell 7:17 Some breath work, some mindset. Go to crowsnestretreats.com crowsnestretreats.com. Okay, we have an audience question before we dig into this awesome conversation with Kristen McGuiness.Lesley Logan 7:28 That was August. That earthquake, you guys, if you're watching on YouTube, was her, it's earthquake August. Brad Crowell 7:33 Earthquake August. Okay, love_Danielle on IG asks, when will your flashcards be available again on Amazon and is there a discount code available?Lesley Logan 7:44 So the time this comes out, we should be back stocked on Amazon. We were selling out all of our OG Matt decks, and we had to completely sell out of that deck on Amazon before the new mat deck could come up. So that's now available on Amazon. Our Reformer Deck is our bestselling deck.Brad Crowell 8:02 It's hard to keep in stock, not a lot. Lesley Logan 8:04 It's hard to keep in stock. Brad Crowell 8:05 Thank you for supporting us. Lesley Logan 8:06 So thank you. We love that you love it. And at the time that you were asking this question, we did have some in stock on our website, but not on Amazon. So what we'll say is we should be stocked on Amazon. We do not have discount codes available for any of our decks, and it's mostly because actually, we're really a small business, guys, and these decks are really a lot of work to put together, and they actually cost a lot of money to print out. And so while we would love to just give the discounts around everywhere, we do have to make sure that they continue to pay for themselves. We continue hitting print on them. And so you can buy them on Amazon. You could also buy them from us, and if you buy them from us, we obviously can make more money to support more Pilates adventures that are out there. We do.Brad Crowell 8:47 We love Amazon, but they take a whole lot. We have a love-hate relationship with Amazon. Lesley Logan 8:51 At the moment, if you are the people trying to do your best to boycott places like Amazon and Target and things like that, we fully support you. And what you can do in your targeting of boycotts is be very intentional about who you're shopping from. So if you are going to shop on Amazon, shopping from people like us is a great thing. Small businesses, because it really does affect us in a positive way, Amazon allows people to find our products who don't know us, and so that's why we are there. It's not because we're like pro everything that they do, we actually need to be found. Brad Crowell 9:22 We intentionally sell on our website.Lesley Logan 9:24 Yeah. So if you buy from our website, it's better for all of us. And then the people that you're not enjoying and want, not wanting them to make money, don't. So you can buy from us, and then we get it all. Brad Crowell 9:33 Yeah. So go to opc.me/flashcards. Lesley Logan 9:36 So in case you're wondering why we're on there, if you don't own a business with products, you need to understand that the way the world works, we, unfortunately, as product based businesses, have to be where people already are. And so that exposes them to OPC, and then hopefully they come over to our side, and then they find all of our amazing stuff. But I don't judge any of the people who shop on there, because we do, too. It's convenient. So anyways, all this to say, yes, they're there. They should be back in stock, and you can also buy from us. Brad Crowell 10:07 Awesome. Well, stick around. We'll be right back, because we're going to talk with Kristen McGuiness, who is an author. And she talks about how does she escape the chaos of being an entrepreneur and being a mom to be able to write books. So, pretty cool stuff. Great conversation. She sounds amazing. Stick around. We'll be right back.Brad Crowell 10:27 Okay, now, let's talk about Kristen McGuiness. Kristen is a bestselling author, book publisher and a book coach with a deep passion for storytelling and empowering others to find their own voice. With years of experience, Kristen has helped countless others bring their ideas to life. Her own writing journey includes her novel, Live Through This, a compelling and thought-provoking exploration of resilience and activism. Beyond her professional accomplishments, Kristen is a mother, an entrepreneur who believes in creating space for creativity and living a life aligned with purpose. Lesley Logan 11:00 I mean, thank you Roxy Menzies, who introduced us. Because I just. Brad Crowell 11:04 I was wondering how the dots got connected there. Lesley Logan 11:06 Yeah, yeah. I really enjoyed this intro. I feel like, if we lived in Ohio, Santa Barbara, we would all be friends. We'd be, you know, doing life in the daytime, and then I would figure out when she's gonna be at that hotel, and I would get another room, and then we could have drinks at the end of the day, going, what did you fucking create? Like, this is what I dreamed of, Kristen. Anyways, I just think she'd be cool, but I also appreciated her vulnerability and honesty. I feel sometimes a lot of moms have to, like, show us all the hats that they can wear in a day. And Kristen was pretty honest about how, no. So she said, I think my creative fuel tank is the same place where I draw my maternal energy from. They are both creative forces. When I'm in my mom mode, I'm running off of that creative fuel in the same way I would be if I was writing or editing. But she highlighted the importance of taking time for herself, and she said, at the end of the day, I've got nothing left. I mean, I could do an Excel spreadsheet, but I'm not going to come with a masterpiece. And I actually, really love that. She is actually not putting pressure on herself to write something amazing. On the same day, she just ran a household, and I found that to be cool. Brad Crowell 11:06 It's amazing permission. Lesley Logan 11:06 Yeah, amazing permission. I do. I think that, well, it takes a lot because you're like, oh, but you got this thing that you want to write, this thing you want to do, and a creative is like, I've got to birth this thing. And I really think it's cool that she gives herself permission to be where she's at and do what she's doing, wherever that is. So if she's at the hotel writing her work or her masterpiece, she's not mom and the children. She and her partner have set things up so that she can do that. And I have a lot of girlfriends who have children, and I find even more together, they're not as present as I love them to be, because that boundary isn't there yet. And I think that what's so cool is Kristen gives herself permission to, I have a boundary for my work when I'm with my kids, and I have a boundary for my family when I'm doing this work. And I just think we all could take, even if you don't have kids, you could take permission for that. Go to, I want to go to a hotel this month just by myself.Brad Crowell 13:03 Me too. Lesley Logan 13:04 Well, maybe not march. This is a, this is a heck of a month, but April, I'm doing it in April.Brad Crowell 13:09 Okay, okay. I have a couple things. She said one thing that I thought was really interesting, she commented on being a grown ass woman still having to tell her parents that she's going to a conference when she just rented a fucking hotel room for herself because of the generational assumption of work hard, play hard. Okay, this was like a super side note. Nothing to do with writing, but I thought it was such an interesting observation. It made me think about it as I was listening to the interview. You know, she said her parents' generation is actually sacrifice, sacrifice, sacrifice, sacrifice until you get retired and then y'all can go, you know, take a long walk. The rest of my life is for me. I'm never doing anything for anybody ever again, as opposed to the way that she's doing her life, which I think is very generational, because I'm more associated with her. My parents very much are in the way that her parents are. But she's like how can I enjoy some of my life now and not have to wait till I'm 65 and retired to in quote-unquote, enjoy my life, and also this idea of just like 1,000% self sacrifice until that time, maybe there's a happy medium in there that I think we can have. So anyway, that is not what we had written down here for me to chat about today, but I just thought it was so powerful that I wanted to reiterate that. Lesley Logan 14:29 Also, just in case anyone feels guilty about a fib like that, that is, don't, sometimes people in our lives are just not going to understand why we do what we do. We don't need their permission. We don't actually need them to understand. So just tell them what they need to hear so you can go do the thing you want to do. Brad Crowell 14:47 Well, actually, instead of encouraging people to lie, that's not what we're encouraging here, what I think is a better through line is it's another boundary. She created a boundary between, you know, she heard her mom for this specific experience, so that she doesn't have to go through this emotional roller coaster and then justify all the thing and the expense and the la, la, la, you know, and then be judged. And you know, all that.Lesley Logan 14:48 When you also speak, even if we call it boundary, just so you know, you also don't have to explain why your boundaries exist. Brad Crowell 15:20 You don't. Lesley Logan 15:20 And if you need help with that, the holistic psychologist constantly reminds you that you actually do not have to explain why a boundary is a boundary that. Brad Crowell 15:28 It just is. Lesley Logan 15:28 It just is. Brad Crowell 15:29 Yep, that being said, she was talking about control, right? And she said hey, we clearly can't control things around us. The only thing that we can control are the choices that we make when the things around us are happening. What she was talking about was she's an entrepreneur. Her husband is an entrepreneur. They run different businesses. They also have children. And she's a writer. She said she was reflecting on finding agency in the midst of chaos. And, you know, obviously the most glaring example would be COVID. Like you already mentioned, you could set everything up, but then kablam COVID comes around. She said you need to flip the way you're looking at it, instead of like this shit is happening to me. She said you get to create your own pathway through whatever it is that you're navigating, and that's an opportunity that you have more control over, instead of it's happening to me. So she acknowledged life's unpredictability and emphasized it's just this thing of at a certain point you didn't hit that first domino, and you just have to sometimes be okay, we're in the pressure cooker right now, but relief is always on the way, right? And she shared she had a mantra. I actually thought it was great, because she clearly knows our audience. She said, I'm gonna write my way through this chaos. I'm gonna write my way through it because she's a writer. She said, maybe for you guys, you're gonna have to Pilates your way through the chaos. You know what I mean, wherever is your safe zone.Lesley Logan 16:51 I agree, whether you write or do Pilates, there has to be something that you're doing for yourself to process what you're going through. When I found out that Jay had passed away, it was on a Tuesday, and I still showed up for my session on Wednesday. And it's because moving through the grief made it actually easier to grieve. Or when there's a lot going on, you might just want to, like, keep watching the news and just watch them repeat that shit over and over again to keep you there until the next ad break. Or you can go move your body and get CliffsNotes later, because we have to, or you can go write, or you can go journal, or whatever it is, we have to have some way of processing what we're going through so that we can go back to the beginning, whatever the next step is, and keep going. I find that in today's chaos, a lot of people are waiting for things to be better before they take the first next step, and sometimes you just have to take it. So, you can use whatever that creative energy is to use that to go through whatever is going on.Brad Crowell 16:51 Yeah, well, listen, stick around. We'll be right back, because we're going to dig into some really juicy be it action items that we had. Lesley Logan 17:07 It's such a good, such a robust episode.Brad Crowell 17:58 With Kristen McGuiness. We'll be right back. Brad Crowell 18:01 Welcome back. All right, let's talk about those Be It Action Items. What bold, executable, intrinsic and targeted action items can we take away from your conversation with Kristen McGuiness? She said if I care about my creative careers, whatever that thing is that I love to do or that you love to do, you've got to create a boundary around it and hold that sacred, okay? So this is, again, the through line here of today's episode is boundaries. She shared that if you truly care about something, whether it is a creative project, a personal passion, personal passion, or even self-care, you must be intentional about carving out time to do it. Right? There's no question about it. Setting clear boundaries allows you to dedicate energy towards what it is that actually fulfills you, even when life gets demanding. And I think that's the hardest part. She said it's about creating those pockets of freedom, the pockets of concentration and the pockets of creativity. So we've got the POFs.Lesley Logan 18:58 The POFs, POC and POC again. Brad Crowell 19:01 Yeah, POF. We'll call them POFs, Pockets Of Freedom. And I think that's another argument for taking time to the hotel like she did. Lesley Logan 19:09 Those all fall under gemstone time. Brad Crowell 19:12 That's right. Lesley Logan 19:13 So, if you come on my retreat, or you've ever heard me talk about how to create an ideal schedule, your gemstone time is time you have to protect. Brad Crowell 19:21 Gotta protect it. Lesley Logan 19:21 And it is the time where you do things that you need to concentrate and be creative on. So, you know, the things that can propel your life and your dreams forward.Brad Crowell 19:30 Yeah, actually moving things forward. So, what about you? Lesley Logan 19:33 Never lose sight of your dreams no matter what. She said this and I think one of the authors that Oprah quoteed was Gertrude Lyons who said, "The only times I've ever made mistakes in life is when I've chosen to ignore that voice." So that voice being your intuition, the thing that you want to do. And I think that's so true. I think we can all look back and look at things we regret, and it's like, oh, I didn't turn left when I knew I should have, I turned right or I should have done this. And she said, as long as you're listening to the small, quiet voice inside you, you will lways end up where you need to go. And this is actually just one of the truest things. I mean, just like us sitting here in this house, this was like a small voice going kitchen both now, think you should go now, think, you know what I mean, and not letting all the things. Brad Crowell 20:13 I think you should go now. I think you should go now. Lesley Logan 20:19 What if we made a meditation, which is like, I think you should go now. Brad Crowell 20:22 Today is the day that you should go.Lesley Logan 20:29 Create a boundary. Brad Crowell 20:31 Going is what today is for. Lesley Logan 20:34 Boundaries are kind.Lesley Logan 20:36 Anyways, I hope that you take some time to listen to Kristen's episode a couple of times. And really, ladies, especially my ladies, I know there's a few good men who listen, but ladies, I hope you realize this person, she's not perfect. She's not claiming to be perfect. She is really, truly honoring what is possible and when it's possible, and making sure that she doesn't ever stop focusing on what her dreams are, even if it means they're in pockets of freedom and pockets of concentration. So. Brad Crowell 21:01 Tell us about your POFs. Lesley Logan 21:02 We want to know. Brad Crowell 21:03 Yeah. Lesley Logan 21:04 Yeah. I'm Lesley Logan. Brad Crowell 21:05 And I'm Brad Crowell. Lesley Logan 21:06 Thank you so much for listening to this episode, and every episode you listen. This is episode 500. Brad Crowell 21:10 Five hundo.Lesley Logan 21:11 Cue the balloons. Nope. You don't have it on your thing. I would. I just, if you're, okay, well, if you, I think you did, it's okay. It's beyond. It's past now. If you're listening, they don't even know, but we're trying to do balloons. There we go, confetti, on the, on the YouTube. You can see it on the YouTube. We love you. You're amazing. And we couldn't have gotten to 500 episodes without you listening and you writing in and you sending your questions in, and you sending your you got to make it more of a heart, babe if you're going to do it, and and then you've got to send in your win so we can shout them out on the FYFs because we want to constantly support you. That's what this podcast is about. So thank you for your love, for your sharing, all of that and until next time, Be It Till You See It. Brad Crowell 21:58 Bye for now. Lesley Logan 22:00 That's all I got for this episode of the Be It Till You See It Podcast. One thing that would help both myself and future listeners is for you to rate the show and leave a review and follow or subscribe for free wherever you listen to your podcast. Also, make sure to introduce yourself over at the Be It Pod on Instagram. I would love to know more about you. Share this episode with whoever you think needs to hear it. Help us and others Be It Till You See It. Have an awesome day. Be It Till You See It is a production of The Bloom Podcast Network. If you want to leave us a message or a question that we might read on another episode, you can text us at +1-310-905-5534 or send a DM on Instagram @BeItPod.Brad Crowell 22:43 It's written, filmed, and recorded by your host, Lesley Logan, and me, Brad Crowell.Lesley Logan 22:48 It is transcribed, produced and edited by the epic team at Disenyo.co.Brad Crowell 22:52 Our theme music is by Ali at Apex Production Music and our branding by designer and artist, Gianfranco Cioffi.Lesley Logan 22:59 Special thanks to Melissa Solomon for creating our visuals.Brad Crowell 23:02 Also to Angelina Herico for adding all of our content to our website. And finally to Meridith Root for keeping us all on point and on time.Support this podcast at — https://redcircle.com/be-it-till-you-see-it/donationsAdvertising Inquiries: https://redcircle.com/brandsPrivacy & Opt-Out: https://redcircle.com/privacy
SANS Internet Stormcenter Daily Network/Cyber Security and Information Security Stormcast
Python Bot Delivered Through DLL Side-Loading A "normal", but vulnerable to DLL side-loading PDF reader may be used to launch additional exploit code https://isc.sans.edu/diary/Python%20Bot%20Delivered%20Through%20DLL%20Side-Loading/31778 Tomcat RCE Correction To exploit the Tomcat RCE I mentioned yesterday, two non-default configuration options must be selected by the victim. https://x.com/dkx02668274/status/1901893656316969308 SAML Roulette: The Hacker Always Wins This Portswigger blog explains in detail how to exploit the ruby-saml vulnerablity against GitLab. https://portswigger.net/research/saml-roulette-the-hacker-always-wins Windows Shortcut Zero Day Exploit Attackers are currently taking advantage of an unpatched vulnerability in how Windows displays Shortcut (.lnk file) details. Trendmicro explains how the attack works and provides PoC code. Microsoft is not planning to fix this issue https://www.trendmicro.com/en_us/research/25/c/windows-shortcut-zero-day-exploit.html
מכירה לאנטרפרייז היא תהליך מורכב ומאתגר. אחרי שבפרק הקודם דיברנו על השלבים הראשונים—איך יוצרים קשר ראשוני, בונים אמון ומציגים דמו, הגיע הזמן לצלול לחלק השני במסע: איך הופכים התעניינות לעסקה סגורה? בפרק הזה, יחד עם אמיתי וייזר, Director of Sales, ו-שקד הרשקוביץ, Solution Engineering Manager במאנדיי, נמשיך לפרק את שלבי המכירה ונעמיק באתגרים שמגיעים כשהעסקה מתקדמת. נדבר על הרגע שבו מתחילים לדבר על כסף, איך לגשת לנושא בצורה חכמה, מתי נכון להעלות אותו, ואיך מבינים מה באמת התקציב של הלקוח. נצלול לתוך תהליך בניית ההצעה הראשונית, איך מוודאים שהיא פוגעת בדיוק בנקודות החשובות ללקוח, ואיך משתמשים ב-POC בצורה שתעזור לסגור את העסקה ולא תהפוך לתקופת ניסיון אינסופית. בהמשך, ניגע בשלב הקריטי של המשא ומתן: איך מתמודדים עם אנשי רכש מנוסים שיודעים ללחוץ על המחיר, ואיך אפשר לנווט את השיחה כך שתשמור על הערך של המוצר שלכם. לבסוף, ניגע גם בצד הפחות מדובר של התהליך—מה עושים כשעסקה נופלת ברגע האחרון? איך מתמודדים עם זה ברמה המקצועית, ואיך שומרים על מערכת יחסים טובה שיכולה להוביל לסגירה בעתיד. האזינו גם לפרק 295: איך למכור לאנטרפרייז שלב אחרי שלב, חלק 1 See omnystudio.com/listener for privacy information.
In this episode, Jack Cochran and Matthew James talk with Kalyan Ramkumar about his journey from novice to expert in the presales field. Kalyan shares his experience starting as an SDR at RSA Security with no technical background and how he worked his way up to become a skilled solutions engineer. He discusses the importance of domain knowledge in security, his framework for effective demos, and strategies for managing POCs and building your internal brand. To join the show live, follow the Presales Collective's LinkedIn page or join the PSC Slack community for updates. The show is bi-weekly on Tuesdays, 8AM PT/11AM ET/4PM GMT. Follow the Hosts Connect with Jack Cochran: https://www.linkedin.com/in/jackcochran/ Connect with Matthew James: https://www.linkedin.com/in/matthewyoungjames/ Connect with Kalyan Ramkumar: https://www.linkedin.com/in/kalyan-ramkumar-679927151/ Links and Resources Mentioned Join Presales Collective Slack: https://www.presalescollective.com/slack Presales Collective Linkedin: https://www.linkedin.com/company/presalescollective Presales Collective newsletter: https://www.presalescollective.com/newsletter CompTIA Security+ Certification: https://www.comptia.org/certifications/security CompTIA Network+ Certification: https://www.comptia.org/certifications/network Timestamps 00:00 Introduction 03:15 Kal's Background 10:12 First Ever Demo 14:10 When did you know you're an SC 19:40 The Four Do's of Demos 23:35 Challenging the challenger 27:02 Building your personal brand 29:35 POC strategies Key Topics Covered Breaking into Presales Starting as an SDR and transitioning to SE Getting hired without technical background Importance of work ethic and eagerness to learn Building Domain Expertise Value of security certifications (Security+ and Network+) Moving from scripted to fluid demos Building trust with technical customers Demo Framework: The Four Do's Conducting your own discovery Framing every click and feature Evaluating specific customer KPIs Challenging difficult stakeholders POC and Success Strategies Customizing POC length to customer needs Collaborating with account executives Building internal relationships Creating workshop sequences for implementation
Welcome to episode 294 of The Cloud Pod – where the forecast is always cloudy!Ilya Boy, do we have a news packed week for you! Sutskever raised $30B without a product, Mira Murati launched her own AI lab, and Claude 3.7 now thinks before it speaks. Meanwhile, Microsoft casually invented new matter for quantum computing, Google built an AI scientist, and AWS killed Chime (RIP). At this rate, AI is either going to save the world or speedrun becoming Ultron. Let's all find out together – today on The Cloud Pod! Titles we almost went with this week: Ding – Chime is Dead Does your container really need 192 cores Quantum is the new AI AI is now IN the robots A big thanks to this week's sponsor: We're sponsorless! Want to get your brand, company, or service in front of a very enthusiastic group of cloud news seekers? You've come to the right place! Send us an email or hit us up on our slack channel for more info. AI Is Going Great – Or How ML Makes All It's Money 02:41 Ilya Sutskever's Startup in Talks to Raise Financing at $30 Billion Valuation It's been a minute since we talked about former OpenAI executives and what they're up to. Let's start with Ilya Sutskever and Mira Murati, post Open AI career The Information reports that Ilya Suskevers' startup “Safe Superintelligence” is in talks to raise $1Billion in a round that would value the startup at $30 Billion. The company has yet to release a product, but based on the name we can guess what they’re working on… 03:22 Ryan – “It's so nuts to me that they can raise that much without – really just an idea. Doesn't have to have any proof or POC…” 07:07 Murati Joins Crowded AI Startup Sector Mira Murati confirmed one of the worst kept secrets in AI, by revealing her lab Thinking Machine Labs. Murati has lured away two thirds of her team from OpenAI. We'll be waiting to see how the funding goes for this one. 08:02 Claude 3.7 Sonnet and Claude Code Anthropic is releasing their latest model Claude 3.7 Sonnet, their most intelligent model to date and the first hybrid reasoning model on the market. Claude 3.7 sonnet can produce near instant responses or extended, step by step thinning that is made visible to the user. API users also have fine grai
In this episode of the Podcast of Champions hosts Ryan Abraham and David Woods are back to talk about spring football being just around the corner in the Big Ten. Spring football kicked off this week for the Boilermakers with new Purdue head football coach Barry Odom and other programs will be starting their allotment of 15 practices in the coming days and weeks. The fellas also discuss Big Ten Media Days moving to Las Vegas this year, maybe the greatest move in the history of college football. Mark your calendars for July 22-24 and plan to come to Sin City and Ryan and Dave promise they will buy you a beer. While conference realignment likely will be paused after the new ACC deal with Florida State and Clemson, it does set up for fireworks in 2030 when the Big Ten's media deal comes up and the exit fees for the ACC go way down. As usual Ryan and Dave end the podcast answering listener emails and questions from the YouTube chat. Bet all the B1G games on MyBookie! Use promocode POC for up to a 100% deposit bonus! For the video simulcasts of our POC please subscribe to your YouTube channel! Please subscribe, give the POC a five-star rating and post a review on Apple Podcasts! Send us a text or leave us a voicemail by texting or calling (424) 532-0678 or you can email us at bigtencast@gmail.com. To learn more about listener data and our privacy practices visit: https://www.audacyinc.com/privacy-policy Learn more about your ad choices. Visit https://podcastchoices.com/adchoices
Today’s show sponsored by: Goldco — 10% Instant Match in BONUS SILVER, for qualified JLP Show listeners Learn more at https://JesseLovesGold.com or 855-644-GOLD
Are today's youth the missing voice in mental health advocacy?In this episode of Pediatric Meltdown, host Dr. Lia Gaggino invites passionate mental health advocate Ria Babaria to talk about the unique struggles and strengths of today's youth. In her journey from high school advocate to college policy specialist, Ria emphasizes the need for youth representation in mental health decisions. She discusses the Youth Power Project's initiatives, access to mental health resources, and the importance of bridging societal and systemic gaps. From personal challenges to state-wide advocacy, Ria highlights the transformative power of youth voices in policy-making. Join us as we explore the potential changes when youth are given a platform to be heard. The future of mental health is their future— but are we ready to listen?[00:05 -15:21] The Birth of Youth AdvocacyThe significance of amplifying youth voices in education and policy through advocacy organizationsImportance of bridging education gaps and providing resources for low-income and vulnerable youthEmpowering youth to assert confidence and influence in advocacy spacesThe transformative impact of including diverse backgrounds in policy discussions[15:12 -22:22] Mental Health Advocacy and Cultural ChallengesAddressing mental health struggles within POC households and breaking cultural taboosThe importance of emotion integration for personal growth and social interactionsBuilding confidence to engage in mental health advocacy at a young ageShaping policy through lived experiences and peer discussions[22:23 -38:50] Expanding the Youth Power Project ReachThe national evolution from initial state-focused youth groups to broader advocacy at YPPStrategizing for impactful health reform through youth collaboration and legislative workNavigating peer-to-peer networks to bolster the youth advocacy movementTailoring mental health and educational policies around authentic youth voices[38:51-48:50] Enhancing Access and System ReformsAddressing consistency and discrepancies in mental health resource access nationwideInnovative strategies to demystify access and eliminate stigma around mental health supportStrengthening first aid mental health training to improve communication and supportDeveloping legislative frameworks to integrate youth insights within mental health policy48:51-32:50] Dr. Lia's TakeAwaysConnect with Ria ria@youthpowerproject.orgResources Mentioned:PHQ-9 Screening Tool for Depression:PHQ-9 QuestionnaireYouth Power Project Website:Youth Power ProjectMental Health First Aid Training:Mental Health First AidYouth Power Project
ACTIONABLE TAKEAWAYS: Provide Hypotheses, Not Generic Questions: Instead of broad questions, offer informed hypotheses to invite deeper discussion. Ask Questions to Guide Next Steps: Use questions to guide the process without being pushy, keeping the prospect engaged. Teach Process Over Just Problems: Beyond identifying issues, recommend processes (like a custom demo over a POC) to build trust. Uncover Intent Behind Extra Steps: When extra steps are requested, ask what they aim to learn to suggest simpler options. DAN'S PATH TO PRESIDENTS CLUB: Senior Vice President of Global Sales @ Challenger VP of Sales, Account Management @ Challenger VP of Sales, Major Accounts @ Challenger Managing Vice President, Sales & Community @ Evanta RESOURCES DISCUSSED: Join our weekly newsletter Things you can steal
Join Katie and Liz on another episode of True Crime New England's case profile mini-episode series. This week, Katie starts us off with a mysterious story about the discovery of a John Doe out of Smithfield, Rhode Island in 1987. The body had clearly been a victim of homicide and was then weighed down with cables and barbell weights in Stump Pond. Then, Liz ends the episode with the story of two best friends who were shot and killed almost exactly five years apart in similar circumstances. Both cases remain unsolved.Anyone with any information on the murder of the Smithfield John Doe is asked to please call Captain Michael Rheaume at 401-231-2500 or by calling (617) 343-5837. Anyone with any information on the murder of Jericho Scott and/or Kaymar Tanner is asked to please call detectives at 203-946-6306.
Send Everyday AI and Jordan a text messageWhat happens when.... AI agents are everywhere? To learn, we tapped into the insights from one of the leading voices in AI, Babak Hodjat, who's resume includes helping create the tech behind the original AI agents like Siri. So, how do enterprises prepare for a multi-agent environment? Tune in and find out. Newsletter: Sign up for our free daily newsletterMore on this Episode: Episode PageJoin the discussion: Ask Jordan and Babak questions on AI agentsUpcoming Episodes: Check out the upcoming Everyday AI Livestream lineupWebsite: YourEverydayAI.comEmail The Show: info@youreverydayai.comConnect with Jordan on LinkedInTopics Covered in This Episode:1. Understanding Agents and Large Language Models2. Implementing Multi-Agent Systems3. Hallucinations and Errors in AI Systems4. Usage and Organization within Multi-Agent EnvironmentsTimestamps:00:00 "Rethinking Enterprise with Multi-AI Agents"05:33 AI Agents Buzz at Davos07:57 Code Execution via Agent Tools10:03 Emerging Trend: Multi-Agent AI Integration14:40 Responsible Multi-Agent System Design19:35 Multi-Agent System Alignment Challenges21:19 Resilient AI Through Redundancy26:26 Generative AI Business Strategies27:45 Rethinking Human-Device Interaction31:16 Multi-Agent Enterprise IntegrationKeywords:Everyday AI, podcast, generative AI, agents, large language models, enterprise companies, multi agent environments, decision making process, Cognizant, Neuro AI, startup culture, agentic AI environments, technology services, AI first company, natural language processing, decision systems, agentification, POC (proof of concept), modular software, agent alignment, AI ethics, human in the loop, multi agent systems, organizational decision making, enterprise productivity, knowledge worker, conversational systems, AI strategy, AI safety, organizational agility. Ready for ROI on GenAI? Go to youreverydayai.com/partner
SANS Internet Stormcenter Daily Network/Cyber Security and Information Security Stormcast
Unfurl Update Released Unfurl released an Update fixing a few bugs and adding support to decode BlueSky URLs. https://isc.sans.edu/diary/Unfurl%20v2025.02%20released/31716 Google Confirms GMail To Ditch SMS Code Authentication Google no longer considers SMS authentication save enough for GMail. Instead, it pushes users to use Passkeys, or QR code based app authentication https://www.forbes.com/sites/daveywinder/2025/02/23/google-confirms-gmail-to-ditch-sms-code-authentication/ Beware of Paypal New Address Feature Abuse Attackers are using "address change" e-mails to send links to phishing sites or trick users into calling fake tech support phone numbers. Attackers are just adding the malicious content as part of the address. The e-mail themselves are legitimate PayPal emails and will pass various spam and phishing filters. https://www.bleepingcomputer.com/news/security/beware-paypal-new-address-feature-abused-to-send-phishing-emails/ Exim SQL Injection Vulnerability Exim, with sqlite support and ETRN enabled, is vulnerable to a simple SQL injection exploit. A PoC has been released https://www.exim.org/static/doc/security/CVE-2025-26794.txt https://github.com/OscarBataille/CVE-2025-26794? XMLlib patches https://gitlab.gnome.org/GNOME/libxml2/-/issues/847 https://gitlab.gnome.org/GNOME/libxml2/-/issues/828 0-Day in Parallels https://jhftss.github.io/Parallels-0-day/
SANS Internet Stormcenter Daily Network/Cyber Security and Information Security Stormcast
Reminder: 7-Zip MoW The MoW must be added to any files extracted from ZIP or other compound file formats. 7-Zip does not do so by default unless you alter the default configuration. https://isc.sans.edu/diary/Reminder%3A%207-Zip%20%26%20MoW/31668 Apple Fixes 0-Day Apple released updates to iOS and iPadOS fixing a bypass for USB Restricted Mode. The vulnerability is already being exploited. https://support.apple.com/en-us/122174 AMD ZEN CPU Microcode Update An attacker is able to replace microcode on some AMD CPUs. This may alter how the CPUs function and Google released a PoC showing how it can be used to manipulate the random number generator. https://github.com/google/security-research/security/advisories/GHSA-4xq7-4mgh-gp6w Trimble Cityworks Exploited CISA added a recent Trimble Cityworks vulnerabliity to its list of exploited vulnerabilities. https://learn.assetlifecycle.trimble.com/i/1532182-cityworks-customer-communication-2025-02-06-docx/0? Google Tag Manager Skimmer Steals Credit Card Info Sucuri released a blog post with updates to the mage cart campaign. The latest version is injecting malicious code as part of the google tag manager / analytics code. https://blog.sucuri.net/2025/02/google-tag-manager-skimmer-steals-credit-card-info-from-magento-site.html
In this episode of the Podcast of Champions hosts Ryan Abraham and David Woods are back to talk about the start of the long Big Ten offseason. The fellas discuss the big news of Ohio State offensive coordinator Chip Kelly moving on to the NFL, and Matt Rhule opting out of a spring game due to "tampering." As usual Ryan and Dave end the podcast answering listener emails and questions from the YouTube chat. Bet all the B1G games on MyBookie! Use promocode POC for up to a 100% deposit bonus! For the video simulcasts of our POC please subscribe to your YouTube channel! Please subscribe, give the POC a five-star rating and post a review on Apple Podcasts! Send us a text or leave us a voicemail by texting or calling (424) 532-0678 or you can email us at bigtencast@gmail.com. To learn more about listener data and our privacy practices visit: https://www.audacyinc.com/privacy-policy Learn more about your ad choices. Visit https://podcastchoices.com/adchoices
Luis shares part of his family story before weaving rich voices and interviews to explore the use and meaning of the phrase People of Color, or POC. Many questions and facets are explored: Do we take on ideas to belong? Does the phrase POC other specific groups in a condescending way? What is the story, meaning, or belief we have about the label POC? Does 'marginalized' mean oppressed? What are the somatics of group identity? How can we uncouple negative associations with the term POC? Lastly, what story do I tell about you, and does that story make you equal, lower or better than me?In the spirit of Maya Angelou, Marika reminds us to learn about people rather than learning to label them. May we be curious and allow people to show us who they are. After all, race is a fake construct, and identity is less connecting than place. You can watch the extended interviews clips here: Maya Angelou, Morgan Freeman, Raven-Symoné, and Africa Brooke.You can also listen to podcasts with Africa and Camille below: [Ep. 193] Getting Sober Helped Me Stop Self-Censoring w/ Africa Brooke[Ep. 219] Not Everything Is A Microaggression: Is This The New DEI? w/ Camille Leak----You can learn more on the website: https://www.holisticlifenavigation.com/You can follow Luis on Instagram @holistic.life.navigationQuestions? You can email us at info@holisticlifenavigation.com
In this episode of the Podcast of Champions hosts Ryan Abraham and David Woods are back to (finally) recap Ohio State's victory over Notre Dame in the College Football Playoff. The guys breakdown the game from the impressive 10 minute touchdown drive for the Fighting Irish to start the game, and the even more impressive answer by the Buckeyes who scored four-straight touchdowns to take a 28-7 lead out of the gate. The guys talk about OSU's domination throughout the playoffs, bouncing back after the crushing loss to rival Michigan. At the time there were calls for head coach Ryan Day to be fired, but our Ryan talked about the funniest scenario being the Buckeyes losing to Michigan and then winning the national championship, something that nearly happened two years ago. Well this season it did happen and most of those Ohio State fans that wanted Day fired are now celebrating the team's first title in a decade. Heading into the long offseason, the guys talk about a major coordinator move, with OSU defensive coordinator Jim Knowles signing a record $3.1 million annual contract to become Penn State's new DC. As usual Ryan and Dave end the podcast answering listener emails and questions from the YouTube chat. For the video simulcasts of our POC please subscribe to your YouTube channel! Please subscribe, give the POC a five-star rating and post a review on Apple Podcasts! Send us a text or leave us a voicemail by texting or calling (424) 532-0678 or you can email us at bigtencast@gmail.com. To learn more about listener data and our privacy practices visit: https://www.audacyinc.com/privacy-policy Learn more about your ad choices. Visit https://podcastchoices.com/adchoices
In this edition of the Podcast of Champions, Dave and Ryan connect remotely (due to Ryan taking a spur of the moment trip to Southeast Asia for the second time in seven months) to recap the College Football Semifinals and preview the national championship game between Ohio State and Notre Dame. The fellas talk about the great season for Penn State, which lost to Notre Dame by 3 in one semifinal, and then the weird Ohio State/Texas game, which easily could have swung against the Buckeyes. They then preview the national title game, with the Buckeyes an 8.5-point favorite over the Fighting Irish. Bet all the B1G games on MyBookie! Use promocode POC for up to a 100% deposit bonus! For the video simulcasts of our POC please subscribe to your YouTube channel! Please subscribe, give the POC a five-star rating and post a review on Apple Podcasts! Send us a text or leave us a voicemail by texting or calling (424) 532-0678 or you can email us at bigtencast@gmail.com. To learn more about listener data and our privacy practices visit: https://www.audacyinc.com/privacy-policy Learn more about your ad choices. Visit https://podcastchoices.com/adchoices To learn more about listener data and our privacy practices visit: https://www.audacyinc.com/privacy-policy Learn more about your ad choices. Visit https://podcastchoices.com/adchoices