Podcasts about TLS

This week, TLS contributors select their favourites from 2025; plus an interview with CD Rose, winner of this year's Goldsmiths Prize.‘We Live Here Now', by CD RoseProduced by Charlotte Pardy Hosted on Acast. See acast.com/privacy for more information.

professorjrod@gmail.comThe everyday internet feels effortless, but behind every click lives a maze of services quietly doing the heavy lifting. I pull back the curtain on the systems that make your workday possible—file shares that just appear on your desktop, printers that hum along until a 200‑page PDF wrecks the queue, and the alphabet soup of protocols that move data safely and fast.We start with the essentials: SMB and Samba for file and print, why SFTP on port 22 beats FTP for modern transfers, and how relational databases differ from NoSQL when your needs shift from consistent records to massive logs. From there we head to the browser, unpacking HTTPS, TLS, and certificates so you know what that lock icon actually guarantees. Email gets its due too: SMTP for sending, IMAP for syncing, and the trio of SPF, DKIM, and DMARC that keeps phishing at bay.Security and scale meet in the middle with proxy servers, spam gateways, and Unified Threat Management devices that filter, inspect, and sandbox threats before users ever see them. Then we look at load balancers that keep portals alive at peak times, plus the messy reality of legacy systems that refuse to retire. We don't ignore the industrial world—embedded devices, ICS, and SCADA that run utilities and factories—where one misstep can ripple beyond a single office.Troubleshooting ties it all together. I share real stories and checklists for wired faults, slow networks, Wi‑Fi ghosts caused by microwave ovens, and VoIP glitches fixed with QoS and VLANs. You'll leave with practical ways to spot the root cause fast, confidence with ports and protocols, and a clearer map of the services that keep everything running.If you learned something useful, follow the show, share this episode with a teammate, and leave a quick review to help others find us. Got a strange network mystery you solved? Send it my way and we'll feature the best ones next time.Inspiring Tech Leaders - The Technology PodcastInterviews with Tech Leaders and insights on the latest emerging technology trends.Listen on: Apple Podcasts SpotifySupport the showArt By Sarah/DesmondMusic by Joakim KarudLittle chacha ProductionsJuan Rodriguez can be reached atTikTok @ProfessorJrodProfessorJRod@gmail.com@Prof_JRodInstagram ProfessorJRod

Dimitra Fimi is Professor of Fantasy and Children's Literature at the University of Glasgow and Co-Director of the Centre for Fantasy and the Fantastic. Her Tolkien, Race and Cultural History won the Mythopoeic Scholarship Award for Inklings Studies and she co-edited the critical edition of A Secret Vice: Tolkien on Invented Languages which won the Tolkien Society Award for Best Book. Her Celtic Myth in Contemporary Children's Fantasy won the Mythopoeic Scholarship Award in Myth and Fantasy Studies. Other work includes co-editing Sub-creating Arda: World-building in J.R.R. Tolkien's Work, its Precursors and its Legacies and Imagining the Celtic Past in Modern Fantasy. She has contributed articles for the TLS and The Conversation, and has appeared on numerous radio and TV programs.When the rightly famous and beloved ‘The Great Courses' series decided to offer a Lord of the Rings entry for their catalog of the very best in scholarship for adult-learners, they asked Dimitra Fimi to create ‘The World of J. R. R. Tolkien,' one of their most popular courses and one you can enjoy in an Audible edition.Links Promised in Conversation:A Kind of Elvish Craft: The Dimitra Fimi Substack Site* Miniature Books in Children's Fantasy* Parabasis: A Tribute to Dionysis Stavvopoulos* On Tolkien's Letter 131 (4): “Romance” vs. ScienceDimitra Fimi articles at ‘The Conversation'* After 150 years, we still haven't solved the puzzle of Alice in Wonderland (2015)Kanreki Conversations about Rowling-Galbraith ‘Golden Threads'* Pregnancy Traps in the Works of Rowling-Galbraith* Golden Threads in Rowling-Galbraith (1)* Golden Threads in Rowling-Galbraith (2)* ‘The Lost Child' Golden Thread* Alternative Explanations of ‘The Lost Child' Golden Thread* The Induced Abortion Hypothesis* The July 2025 Kanreki IndexOur Ten Questions for Dr Fimi:1. How does a woman born and raised on the Greek island of Salamis wind up in Cardiff studying Celtic Mythology?2. You're a Tolkien scholar and expert in fantasy and Children's literature. Tolkienistas are legend for looking down their Ent noses at Harry Potter, though there are important exceptions to that rule (the late Stratford Caldecott, his wife Leonie, Amy H. Sturgis, others). How did you meet the Boy Who Lived and what were your first impressions of Rowling as author?3. You have a lot in common with Rowling, no? Tolkien devotee, serious student of mythology, and a wonderful appreciation of the magic of story, especially magical stories for children. The Tolkien influence on Rowling is well documented though she has tried to belittle it, but her use of myths as templates for her stories is less well known but at least as important. What do you make of her admittedly “shameless” borrowing from folk tales and myths?4. I guess this is a segue to the Cormoran Strike books which are awash in myths -- Leda and the Swan, Castor and Pollux, Cupid and Psyche, Artemis and Tisiphone... Am I missing any?5. You've seen Rowling's recent confirmation of the Cupid and Psyche myth in her tweeted painting of ‘Psyche Ascendant.' That suggests we'll see the happy ending of the myth in Strikes 9 and 10. Or does it? What did you see of that myth specifically in Hallmarked Man?6. Running Grave has another embedded text, not a myth per se, one that makes sense in light of Rowling's love of everything the Bronte sisters wrote. Tell us what made you think of Jane Eyre as you were reading Strike 7.7. Rowling did something unusual in 2019, well, among the unusual things she did that year, in inviting readers to interpret her work in light of their ‘Lake' inspiration as well as her intentional ‘Shed' artistry. Writers like Lewis and Tolkien would be aghast at that, though Inkling Studies today necessarily include heavy biographical leanings in almost everything written about those authors. What is your take in general on what Lewis called ‘The Personal Heresy' and about Rowling as a living author inviting that critical perspective while she is still among us?8. It's fascinating, frankly, that you are not so compartmentalized in your reading that Rowling is still a writer you read outside of her fantasy and children's literature. Do you read the Strike-Ellacott stories because you also love a good detective novel or is it your interest in Rowling and whatever she is writing?9. Have you read Christmas Pig? John believes that in fifty years, the Lord tarrying, high school and college students will read Pig as Rowling's representative work the way we had to read Tale of Two Cities or Christmas Carol to be exposed to Dickens.10. John tries to read imaginative fiction through what he calls an “iconological lens,” a method born of his Perennialist beliefs and life as an Orthodox Christian. In what ways do you think your childhood and secondary education gave you a sympathy unusual for multi-valent texts than those born and raised in relatively secular cultures? This is a public episode. If you'd like to discuss this with other subscribers or get access to bonus episodes, visit hogwartsprofessor.substack.com/subscribe

This week, Lois Houston and Nikita Abraham are joined by Principal OCI Instructor Orlando Gentil to explore what truly keeps data safe, and what puts it at risk.   They discuss the CIA triad, dive into hashing and encryption, and shed light on how cyber threats like malware, phishing, and ransomware try to sneak past defenses.   Cloud Tech Jumpstart: https://mylearn.oracle.com/ou/course/cloud-tech-jumpstart/152992 Oracle University Learning Community: https://education.oracle.com/ou-community LinkedIn: https://www.linkedin.com/showcase/oracle-university/ X: https://x.com/Oracle_Edu   Special thanks to Arijit Ghosh, David Wright, Kris-Ann Nansen, Radhika Banka, and the OU Studio Team for helping us create this episode. ------------------------------------------ Episode Transcript: 00:00 Welcome to the Oracle University Podcast, the first stop on your cloud journey. During this series of informative podcasts, we'll bring you foundational training on the most popular Oracle technologies. Let's get started! 00:25 Lois: Hello and welcome to the Oracle University Podcast! I'm Lois Houston, Director of Innovation Programs with Oracle University, and with me is Nikita Abraham, Team Lead: Editorial Services. Nikita: Hey everyone! Last week, we discussed how you can keep your data safe with authentication and authorization. Today, we'll talk about various security risks that could threaten your systems. 00:48 Lois: And to help us understand this better, we have Orlando Gentil, Principal OCI Instructor, back with us. Orlando, welcome back! Let's start with the big picture—why is security such a crucial part of our digital world today? Orlando: Whether you are dealing with files stored on a server or data flying across the internet, one thing is always true—security matters. In today's digital world, it's critical to ensure that data stays private, accurate, and accessible only to the right people.  01:20 Nikita: And how do we keep data private, secure, and unaltered? Is there a security framework that we can use to make sense of different security practices? Orlando: The CIA triad defines three core goals of information security.  CIA stands for confidentiality. It's about keeping data private. Only authorized users should be able to access sensitive information. This is where encryption plays a huge role. Integrity means ensuring that the data hasn't been altered, whether accidentally or maliciously. That's where hashing helps. You can compare a stored hash of data to a new hash to make sure nothing's changed. Availability ensures that data is accessible when it's needed. This includes protections like system redundancy, backups, and anti-DDoS mechanisms. Encryption and hashing directly support confidentiality and integrity. And they indirectly support availability by helping keep systems secure and resilient. 02:31 Lois: Let's rewind a bit. You spoke about something called hashing. What does that mean? Orlando: Hashing is a one-way transformation. You feed in data and it produces a unique fixed length string called a hash. The important part is the same input always gives the same output, but you cannot go backward and recover the original data from the hash. It's commonly used for verifying integrity. For example, to check if a file has changed or a message was altered in transit. Hashing is also used in password storage. Systems don't store actual passwords, just their hashes. When you log in, the system hashes what you type it and compare the stored hash. If they match, you're in. But your actual password was never stored or revealed. So hashing isn't about hiding data, it's about providing it hasn't changed. So, while hashing is all about protecting integrity, encryption is the tool we use to ensure confidentiality. 03:42 Nikita: Right, the C in CIA. And how does it do that? Orlando: Encryption takes readable data, also known as plaintext, and turns it into something unreadable called ciphertext using a key. To get the original data back, you need to decrypt it using the right key. This is especially useful when you are storing sensitive files or sending data across networks. If someone intercepts the data, all they will see is gibberish, unless they have the correct key to decrypt it. Unlike hashing, encryption is reversible as long as you have the right key. 04:23 Lois: And are there different types of encryption that serve different purposes? Orlando: Symmetric and asymmetric encryption. With symmetric encryption, the same key is used to both encrypt and decrypt the data. It's fast and great for securing large volumes of data, but the challenge lies in safely sharing the key. Asymmetric encryption solves that problem. It uses a pair of keys: public key that anyone can use to encrypt data, and a private key that only the recipient holds to decrypt it. This method is more secure for communications, but also slower and more resource-intensive. In practice, systems often use both asymmetric encryption to exchange a secure symmetric key and then symmetric encryption for the actual data transfer. 05:21 Nikita: Orlando, where is encryption typically used in day-to-day activities? Orlando: Data can exist in two primary states: at rest and in transit. Data at rest refers to data stored on disk, in databases, backups, or object storage. It needs protection from unauthorized access, especially if a device is stolen or compromised. This is where things like full disk encryption or encrypted storage volumes come in. Data in transit is data being sent from one place to another, like a user logging into a website or an API sending information between services. To protect it from interception, we use protocols like TLS, SSL, VPNs, and encrypted communication channels. Both forms data need encryption, but the strategies and threats can differ. 06:19 Lois: Can you do a quick comparison between hashing and encryption? Orlando: Hashing is one way. It's used to confirm that data hasn't changed. Once data is hashed, it cannot be reversed. It's perfect for use cases like password storage or checking the integrity of files. Encryption, on the other hand, it's two-way. It's designed to protect data from unauthorized access. You encrypt the data so only someone with the right key can decrypt and read it. That's what makes it ideal for keeping files, messages, or network traffic confidential. Both are essential for different reasons. Hashing for trust and encryption for privacy. 07:11 Adopting a multicloud strategy is a big step towards future-proofing your business and we're here to help you navigate this complex landscape. With our suite of courses, you'll gain insights into network connectivity, security protocols, and the considerations of working across different cloud platforms. Start your journey to multicloud today by visiting mylearn.oracle.com.  07:39 Nikita: Welcome back! When we talk about cybersecurity, we hear a lot about threats and vulnerabilities. But what do those terms really mean? Orlando: In cybersecurity, a threat is a potential danger and a vulnerability is a weakness an asset possess that a threat can exploit. When a threat and a vulnerability align, it creates a risk of harm. A threat actor then performs an exploit to leverage that vulnerability, leading to undesirable impact, such as data loss or downtime. After an impact, the focus shifts to response and recovery to mitigate damage and restore operations.  08:23 Lois: Ok, let's zero in on vulnerabilities. What counts as a vulnerability, and what categories do attackers usually target first?  Orlando: Software and hardware bugs are simply unintended flaws in a system's core programming or design. Misconfigurations arise when systems aren't set up securely, leaving gaps. Weak passwords and authentication provide easy entry points for attackers. A lack of encryption means sensitive data is openly exposed. Human error involves mistakes made by people that unintentionally create security risks. Understanding these common vulnerability types is the first step in building more resilient and secure systems as they represent the critical entry points attackers leverage to compromise systems and data. By addressing these, we can significantly reduce our attack surface and enhance overall security.  09:28 Nikita: Can we get more specific here? What are the most common cybersecurity threats that go after vulnerabilities in our systems and data? Orlando: Malware is a broad category, including viruses, worms, Trojans, and spyware. Its goal is to disrupt or damage systems. Ransomware has been on the rise, targeting everything from hospitals to government agencies. It lock your files and demands a ransom, usually in cryptocurrency. Phishing relies on deception. Attackers impersonate legitimate contacts to trick users into clicking malicious links or giving up credentials. Insider threats are particularly dangerous because they come within employees, contractors, or even former staff with lingering access. Lastly, DDoS attacks aim to make online services unavailable by overwhelming them with traffic, often using a botnet—a network of compromised devices. 10:34 Lois: Orlando, can you walk us through how each of these common cybersecurity threats work? Orlando: Malware, short for malicious software, is one of the oldest and most pervasive types of threats. It comes in many forms, each with unique methods and objectives. A virus typically attaches itself to executable files and documents and spreads when those are shared or opened. Worms are even more dangerous in networked environments as they self-replicate and spread without any user action. Trojans deceive users by posing as harmless or helpful applications. Once inside, they can steal data or open backdoors for remote access. Spyware runs silently in the background, collecting sensitive information like keystrokes or login credentials. Adware might seem like just an annoyance, but it can also track your activity and compromise privacy. Finally, rootkits are among the most dangerous because they operate at a low system level, often evading detection tools and allowing attackers long-term access. In practice, malware can be a combination of these types. Attackers often bundle different techniques to maximize damage.  12:03 Nikita: And what about ransomware? Why it is such a serious threat? Orlando: Ransomware has become one of the most disruptive and costly types of cyber attacks in recent years. Its goal is simple but devastating, to encrypt your data and demand payment in exchange for access. It usually enters through phishing emails, insecure remote desktop protocol ports or known vulnerabilities. Once inside, it often spreads laterally across the network before activating, ensuring maximum impact. There are two common main forms. Crypto ransomware encrypts user files, making them inaccessible. Locker ransomware goes a step further, locking the entire system interface, preventing any use at all. Victims are then presented with a ransom note, typically requesting cryptocurrency payments in exchange for the decryption key. What makes ransomware so dangerous is not just the encryption itself, but the pressure it creates. Healthcare institutions, for instance, can't afford the downtime, making them prime targets.  13:18 Lois: Wow. Thanks, Orlando, for joining us today.  Nikita: Yeah, thanks Orlando. We'll be back next week with more on how you use security models to tackle these threats head-on. And if you want to learn about the topics we covered today, go to mylearn.oracle.com and search for the Cloud Tech Jumpstart  course. Until next time, this is Nikita Abraham… Lois: And Lois Houston, signing off! 13:42 That's all for this episode of the Oracle University Podcast. If you enjoyed listening, please click Subscribe to get all the latest episodes. We'd also love it if you would take a moment to rate and review us on your podcast app. See you again on the next episode of the Oracle University Podcast.

A nasty start to the day accelerated to a loss of 167 points (-1.9%) on the ASX 200 as RBA minutes and US futures took us down. The big three sectors were hit hard with the iron ore miners smacked. BHP off 3.7% on UK court ruling and RIO off 2.7% with FMG falling 2.0%. Energy stocks also slipped, WDS down 1.9% with STO off 0.6% and uranium stocks under pressure. Gold miners too sold off as bullion slipped, NST down 5.6% and EVN down 5.2% with lithium the only sector that saw any green. PLS up 3.3% and LTR up 2.1%. Banks were also sold down hard, WBC fell 3.0% and CBA down 1.7% with the Big Bank Basket falling to $267.54 (-1.8%). Financials also in the seller's sights, NWL fell 6.2% and MQG off 1.7%. Insurers fell, QBE down 1.4% and REITS under pressure too. GMG off 3.0% as a tech play on data centres. Industrials saw across the board selling, WES fell 1.2% and REA off 2.4% with CAR falling 3.2% as TLS down 0.2%. Tech stocks were decimated after TNE disappointed, off 17.2% despite a special dividend. WTC fell 4.6% and XRO tumbled 3.3% with the All-Tech Index down 4.3%. In corporate news, JHX rallied 9.9% on better-than-expected results, AGM's dominated. BSL fell 1.7% on EBIT to land at the bottom of guidance range. CAT tested a life with a 11.7% fall on a growth rate of 19%. ALQ fell 2.9% on better numbers. PLT was a rare bright spot after a jump in first half profits, up 6.8%. On the economic front, RBA minutes took rate cuts off the table. Australian consumer confidence rose 0.7% too.  Asian markets weaker with Japan down 2.9%, China down 0.3% and HK off 1.6%.European markets set to open weaker.Want to invest with Marcus Today? Our MT20 portfolio is designed for investors seeking exposure to our strategy while we do the hard work for you.If you're looking for personal financial advice, our friends at Clime Investment Management can help. Their team of licensed advisers operates across most states, offering tailored financial planning services.  Why not sign up for a free trial? Gain access to expert insights, research, and analysis to become a better investor.

The ASX 200 slipped again by 19 points to 8800 (0.2%) as CBA continued to weigh, off another 3.1% with the Big Bank Basket down to $279.76 (-1.6%). Joining in the casualty list were 360 off 13.1% on disappointing numbers and ALL down 7.5% as it came up lemons. Our dismal tech sector continues to slide as XRO head lower still, off 2.2% and WTC down 0.8%. REA fell 2.5% and CAR down 1.0%. Industrials were ok, TCL up 0.5% and WES gaining 0.7% with COL and WOW better, TLS gained another 0.4%. GYG continue to be wrapped lower, down 2.0% and TPW also fell hard today, off 4.4%.In resource land, iron ore improved in Asian trade, BHP up 0.6% and RIO sprinting 2.3% ahead. Gold miners were modestly better, NST up 1.4% and EVN up 2.0%. Lithium stocks better, LTR up 6.1% on its new auction platform, MIN roared 9.2% ahead on selling part of its lithium business to POSCO. LYC slid 2.7% with uranium stocks weaker. Oil and gas stocks better with WDS up 1.4%. Coal stocks weaker. In corporate news, FLT rose 1% on an earnings update, NWL fell 0.4% after surviving a protest vote at the AGM, MP1 resumed trade after capital raising. A1N dropped 9.7% on much weaker ad revenue. DMP rose 1.8% after an AGM update.In economic news, investor loan numbers, in Asia hopes for more Chinese stimulus helped iron ore prices higher.Want to invest with Marcus Today? Our MT20 portfolio is designed for investors seeking exposure to our strategy while we do the hard work for you. If you're looking for personal financial advice, our friends at Clime Investment Management can help. Their team of licensed advisers operates across most states, offering tailored financial planning services.  Why not sign up for a free trial? Gain access to expert insights, research, and analysis to become a better investor.

Topics covered in this episode: httptap 10 Smart Performance Hacks For Faster Python Code FastRTC Explore Python dependencies with pipdeptree and uv pip tree Extras Joke Watch on YouTube About the show Sponsored by us! Support our work through: Our courses at Talk Python Training The Complete pytest Course Patreon Supporters Connect with the hosts Michael: @mkennedy@fosstodon.org / @mkennedy.codes (bsky) Brian: @brianokken@fosstodon.org / @brianokken.bsky.social Show: @pythonbytes@fosstodon.org / @pythonbytes.fm (bsky) Join us on YouTube at pythonbytes.fm/live to be part of the audience. Usually Monday at 10am PT. Older video versions available there too. Finally, if you want an artisanal, hand-crafted digest of every week of the show notes in email form? Add your name and email to our friends of the show list, we'll never share it. Michael #1: httptap Rich-powered CLI that breaks each HTTP request into DNS, connect, TLS, wait, and transfer phases with waterfall timelines, compact summaries, or metrics-only output. Features Phase-by-phase timing – precise measurements built from httpcore trace hooks (with sane fallbacks when metal-level data is unavailable). All HTTP methods – GET, POST, PUT, PATCH, DELETE, HEAD, OPTIONS with request body support. Request body support – send JSON, XML, or any data inline or from file with automatic Content-Type detection. IPv4/IPv6 aware – the resolver and TLS inspector report both the address and its family. TLS insights – certificate CN, expiry countdown, cipher suite, and protocol version are captured automatically. Multiple output modes – rich waterfall view, compact single-line summaries, or -metrics-only for scripting. JSON export – persist full step data (including redirect chains) for later processing. Extensible – clean Protocol interfaces for DNS, TLS, timing, visualization, and export so you can plug in custom behavior. Example: Brian #2: 10 Smart Performance Hacks For Faster Python Code Dido Grigorov A few from the list Use math functions instead of operators Avoid exception handling in hot loops Use itertools for combinatorial operations - huge speedup Use bisect for sorted list operations - huge speedup Michael #3: FastRTC The Real-Time Communication Library for Python: Turn any python function into a real-time audio and video stream over WebRTC or WebSockets. Features

The ASX 200 fell 17 points to 8824 (0.2%) as CBA stumbled 6.6% lower on trading update.  Every 1% is a 10-point fall. This wiped any thoughts of gains off the table. The Big Bank Basket fell to $284.31 (-3.8%). WBC bucked the trend in the banks, up 1.3%. Financial generally flat, MQG up 0.7% and QBE rising 0.6%. Industrials generally firmer, TCL up 1.0%, WES up 0.6% and WOW and COL slightly firmer. REITs firmed, GMG up 1.5% and SGP rising 1.3%. TLS also had a good day up 1.0%. Tech remained becalmed,.XRO flat and WTC off 0.3%. The All -Tech Index flat. Resources were firm. BHP, RIO and FMG were steady, but gold miners showed strength, NST up 3.2%, NEM up 4.3% and GMD rising 2.8%. Lithium stocks were also very strong, PLS up 7.5% and MIN up 6.0%. Oil and gas better, WDS up 1.6% and uranium stocks steady. In corporate news, CBA was the focus. Comments from Matt Comyn on competition and a reduction in NIM sent the stock down %. SCG rose 0.7% on a trading update. BEN also falling hard on cash earnings of $120,7m down 8.5%.  COL flat on CEO comments at the AGM. EDV announced a new head of Dan Murphy's.Westpac-Melbourne Institute Consumer Sentiment Index surged 12.8% to 103.8 points in the past month. Asian markets easing back slightly. Want to invest with Marcus Today? Our MT20 portfolio is designed for investors seeking exposure to our strategy while we do the hard work for you. If you're looking for personal financial advice, our friends at Clime Investment Management can help. Their team of licensed advisers operates across most states, offering tailored financial planning services.  Why not sign up for a free trial? Gain access to expert insights, research, and analysis to become a better investor.

The ASX 200 kicked 66 points higher to 8836 (0.8%) as news of a Senate vote to end the shutdown brought risk appetite back. ANZ results helped the banking sector as the market warmed to the transformation story, with the stock hitting record highs, up 3.2%. The Big Bank Basket rose to $295.69 (0.2%) with CBA slipping slightly.Financials were better, as MQG found some analyst love and ZIP rose 4.5% on Nasdaq listing news. NWL rallied 2.4%, with XYZ bouncing hard, up 6.9%. Insurers firmed; REITs were mixed, with GMG down 1.3% and SCG up 0.7%.Healthcare was also mixed as CSL fell 0.1% and RMD rose 0.6%. Industrials perked up after a lacklustre start, TLS up 0.6% with QAN rallying 2.3%, and the tech space doing well — WTC gained6.2 % and XRO rose 1.0%, with the All-Tech Index up %.Resources were also in demand — gold miners kicked higher, NST up 3.5% and EVN up 3.9%. Lithium stocks enjoyed a day out, PLS up 9.2% and MIN gaining 4.0%. Rare earth stocks were back in favour, LYC up 4.8% and ARU rallying 7.8% to its SPP price. Energy stocks were also in demand, WDS up 1.2% and PDN rose 7.9%, with LOT up 5.9% as uranium found favour.In corporate news, MND rose 11.0% on a trading update, DOW hit a five-year high on a solid opening higher $750m Chevron deal, and DNL exploded 7.8% higher on improved results. AUB flat on news that CVC Asia joined the fray. AGL rose 1.6% after it agreed to divest its stake in Tilt Renewables. MYX fell 5.9% on news Cosette will appeal the court decision.Asian markets – HK up 0.9%, China off 0.1% and Japan up 1.3%.  US futures strong on shutdown hopes. Nasdaq up 307 Dow up 98. European markets set for a strong opening. Want to invest with Marcus Today? Our MT20 portfolio is designed for investors seeking exposure to our strategy while we do the hard work for you. If you're looking for personal financial advice, our friends at Clime Investment Management can help. Their team of licensed advisers operates across most states, offering tailored financial planning services.  Why not sign up for a free trial? Gain access to expert insights, research, and analysis to become a better investor.

Soyez le premier à tester le nouveau Plaud Note Pro :https://link.influxcrew.com/Plaud-LEGEND3Via ce lien, vous profitez également de 20 % de réduction sur les autres produits de la marque à partir du 13 novembre.Avec Plaud, vos données sont sécurisées : Plaud respecte les normes RGPD, EN18031, SOC2 et HIPAA.Toutes les transmissions entre votre appareil et leurs serveurs cloud sont sécurisées via le protocole TLS, garantissant l'intégrité de vos données et empêchant tout accès non autorisé.Merci à François Savin d'être venu sur Legend.François est chef privé de luxe à domicile depuis dix ans. Il exerce entre la Côte d'Azur et Dubaï. Formé auprès de grands noms de la gastronomie, il a cuisiné pour une clientèle prestigieuse et partage aujourd'hui avec nous ses anecdotes les plus folles.➡️ Retrouvez la boutique LEGEND : https://youtu.be/T6YTsF6CRy4Pour toutes demandes de partenariats : legend@influxcrew.comRetrouvez-nous sur tous les réseaux LEGEND !Facebook : https://www.facebook.com/legendmediafrInstagram : https://www.instagram.com/legendmedia/TikTok : https://www.tiktok.com/@legendTwitter : https://twitter.com/legendmediafrSnapchat : https://t.snapchat.com/CgEvsbWV Hébergé par Acast. Visitez acast.com/privacy pour plus d'informations.

The ASX smashed lower to finish the week off 59 points at 8770 (0.7%), with the week down 1.2%. Felt like a lot more really!  Banks came under pressure, coming off all-time highs as MQG was dumped 5.7% and WBC and CBA fell hard. The Big Bank Basket dropped to $295.13 (-1.1%). Financials and wealth managers continued to fall, with NWL off 2.6% and AMP down 2.9%. REITs were a mixed bag — GMG steady, while CHC slipped 1.2%. Industrials slid, with SGH down 1.6% and ALL off 2.0%, while the tech sector came under serious pressure — WTC down 2.7% and XRO off 2.5%. The All-Tech Index fell 2.2%.TLS bucked the trend on defensive buying, up 1.2%, while QAN landed 6.6% lower after an update. Resources were weaker too, as the big miners sold off — BHP down 0.8% and RIO off 1.3%. Gold miners were mixed, with NEM up 1.8% and EVN down 0.7%. Some buying appeared in rare earths, but uranium came under a little pressure.In corporate news, XYZ dropped 15.8% on a Q3 revenue miss, QAN fell again on a trading update, and OML slipped 6.0% after warning of a weaker finish to the year. REA came under pressure on results, but NWS rallied slightly on its own. AQZ crash-landed 42.7% after a voluntary suspension ended with a large profit drop and the MD stepping down. MQG became the latest blue-chip loser to be skewered, on disappointing results.On the economic front, nothing locally, but Chinese trade numbers disappointed and iron ore dropped again in Singapore trade.Asian markets - HK down 1.1%, China off 0.2% and Japan down 2%.  US Futures off lows, Nasdaq up 40 Dow up 50. European markets set for a slightly lower opening. Want to invest with Marcus Today? Our MT20 portfolio is designed for investors seeking exposure to our strategy while we do the hard work for you. If you're looking for personal financial advice, our friends at Clime Investment Management can help. Their team of licensed advisers operates across most states, offering tailored financial planning services.  Why not sign up for a free trial? Gain access to expert insights, research, and analysis to become a better investor.

Send us a textRansomware doesn't wait for your change window, and neither do we. This episode takes you inside the decisions that matter when privileged accounts start hopping across systems, Exchange servers attract fresh exploits, and the clock is running on recovery. We open with the newest CISA guidance on Microsoft Exchange and translate it into moves you can apply today: enforce least privilege with a real PAM, choose stronger MFA than SMS, disable basic auth, and lock in transport protections that withstand downgrade tricks.From there, we get practical about TLS and HSTS. Rolling TLS everywhere sounds simple until certificates, ciphers, and legacy services push back. We map a staged path that starts with critical links, reduces misconfigurations, and grows coverage without breaking internal apps. HSTS then adds a policy backbone that reduces user error, blocks session hijacking, and tightens browser behavior, with clear notes on latency, preload lists, and subdomain scope.When incidents hit, priorities flip. We break down the right call when lateral movement continues during a ransomware event: disable privileged accounts and switch to preapproved emergency access. On evidence handling, we reinforce the nonnegotiable step for integrity—cryptographic hashing before and after imaging—plus secondary measures for custody and confidentiality. Disaster recovery gets the same scrutiny: meeting RTO while missing RPO means your backup cadence or replication policy failed, not your failover drill. We also cover immutable logs with WORM storage to prevent admin tampering and why emergency patches should be followed by a retrospective CAB review to keep governance intact after the fire is out.If you're preparing for the CISSP or sharpening day-to-day security operations, this session delivers clear, actionable guidance you can put to work immediately. Subscribe, share with your team, and leave a review to help more practitioners find these practical playbooks. What's the one control you'd implement tomorrow to cut lateral movement in half?Gain exclusive access to 360 FREE CISSP Practice Questions at FreeCISSPQuestions.com and have them delivered directly to your inbox! Don't miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!

The ASX 200 managed to cling to small gains today, up 26 points to 8828 (0.3%).NAB fell 3.3% after results saw some profit-taking on low growth, WBC down 1.2% as it went ex-dividend. Insurers were better, with QBE up 1.7% and MPL up 0.8%, while other financials remained sloppy and weak.Industrials generally mixed — TLS up 0.6%, TCL up 0.8%, and ALL rising 1.3%, with WES slipping 1.2% again, and JBH falling 3.1%. Travel stocks also fell, WEB down 2.7% and FLT losing altitude, off 1.4%.One bright spot was LNW, up 8.2% on a better-than-expected quarterly. DMP also gained 4.7% as shorts covered, just in case. Tech was slightly firmer as WTC rallied 0.6% and XRO up 0.5%, with the All-Tech Index up %.Resources firmed — BHP up 1.6% despite iron ore falling again, RIO also doing well. Gold miners were better on a bullion price increase, NST up 2.8% and NEM rising 2.8%. Rare earths were still under some pressure, as was the uranium space, while oil and gas firmed, WDS up 1.6%.In corporate news, ZIP fell 4.2% after its AGM reaffirmed guidance — perhaps the market was looking for another upgrade. JHX tumbled again, down 12.7%, as it went into a trading halt and blamed index rebalancing for the earlier sell-off. TAH dropped 3.0% as Aware Super sold down, and AMC rallied 5.0% on first-quarter results.On the economic front, Balance of Payments data was released today, showing the seasonally adjusted balance on goods increased by $2.827bn in September.Asian markets - HK up 1.6% China up 1.3% and Japan bouncing 1.6% 10-year yields squeezed to 4.36%.US Futures, Nasdaq down 19. Dow up 13. Tesla vote tonight.European markets set for a flat opening.Want to invest with Marcus Today? Our MT20 portfolio is designed for investors seeking exposure to our strategy while we do the hard work for you. If you're looking for personal financial advice, our friends at Clime Investment Management can help. Their team of licensed advisers operates across most states, offering tailored financial planning services.  Why not sign up for a free trial? Gain access to expert insights, research, and analysis to become a better investor.

The ASX fell another 12 points to 8802, well off lows, as resources were slammed hard. The market finished well off the lows of the day as US futures recovered from heavy early losses. Banks held up again, CBA up 1.3% and the Big Bank Basket up to $297.93 (+0.9 % ). MQG dropped 0.4%, and financials were mixed — ASX up 1.6% and GQG off 1.7% again. Insurers saw small gains, SUN up 0.6% and MPL up 1.2% on an acquisition. Industrials were mixed, TLS rose 1.5% with BXB recovering slightly, WOW and COL rose, and TCL up 0.8%. Tech stocks fell, XRO off 0.9% and WTC continuing to fall off 1.4%. The All-Tech Index was down 1.7%. Healthcare stocks were mixed — CSL fell 0.4% despite a briefing on vaccines this morning, RMD up 0.6%, and PME slipping 1.4%.Resources tumbled, BHP off 0.5% with FMG down 2.5%, though well off the lows. Gold miners saw small losses even as bullion pushed higher. Lithium stocks fell hard, PLS down 3.3% and MIN off 3.4%. Rare earths saw heavy losses, LYC off 3.3% and ILU down 3.6%. Second-liners like ARU fell 5.7%, well below the SPP placement price of 28c.In corporate news, TYR appointed Nigel Lee as new CEO, GMG fell 3.4% on an AGM update. WDS looking to boost cashflow.Nothing on the economic front here. Asian markets crumbled in places — the Nikkei 225 dropped the most since April, as tech valuations came under scrutiny.Asian markets - HK up 0.1% China up 0.1% and Japan down 1.5% 10-year yields 4.31%. US Futures off lows, Nasdaq down 52. Dow up 56.Want to invest with Marcus Today? Our MT20 portfolio is designed for investors seeking exposure to our strategy while we do the hard work for you. If you're looking for personal financial advice, our friends at Clime Investment Management can help. Their team of licensed advisers operates across most states, offering tailored financial planning services.  Why not sign up for a free trial? Gain access to expert insights, research, and analysis to become a better investor.

Vijoy Pandey joins Sebastian Hassinger for this episode of The New Quantum Era to discuss Cisco's ambitious vision for quantum networking—not as a far-future technology, but as infrastructure that solves real problems today. Leading Outshift by Cisco, their incubation group and Cisco Research, Vijoy explains how quantum networks are closer than quantum computers, why distributed quantum computing is the path to scale, and how entanglement-based protocols can tackle immediate classical challenges in security, synchronization, and coordination. The conversation spans from Vijoy's origin story building a Hindi chatbot in the late 1980s to Cisco's groundbreaking room-temperature quantum entanglement chip developed with UC Santa Barbara, and explores use cases from high-frequency trading to telescope array synchronization.Guest BioVijoy Pandey is Senior Vice President at Outshift by Cisco, the company's internal incubation group, where he also leads Cisco Research and Cisco Developer Relations (DevNet). His career in computing began in high school building AI chatbots, eventually leading him through distributed systems and software engineering roles including time at Google. At Cisco, Vijoy oversees a portfolio spanning quantum networking, security, observability, and emerging technologies, operating at the intersection of research and product incubation within the company's Chief Strategy Office.Key TopicsFrom research to systems: How Cisco's quantum work is transitioning from physics research to systems engineering, focusing on operability, deployment, and practical applications rather than building quantum computers.The distributed quantum computing vision: Cisco's North Star is building quantum network fabric that enables scale-out distributed quantum computing across heterogeneous QPU technologies (trapped ion, superconducting, etc.) within data centers and between them—making "the quantum network the solution" to quantum's scaling problem and classical computing's physics problem.Room-temperature entanglement chip: Cisco and UC Santa Barbara developed a prototype photonic chip that generates 200 million entangled photon pairs per second at room temperature, telecom wavelengths, and less than 1 milliwatt power—enabling deployment on existing fiber infrastructure without specialized equipment.Classical use cases today: How quantum networking protocols solve present-day problems in synchronization (global database clocks, telescope arrays), decision coordination (high-frequency trading across geographically distributed exchanges), and security (intrusion detection using entanglement collapse) without requiring massive qubit counts or cryogenic systems.Quantum telepathy for HFT: The concept of using entanglement and teleportation to coordinate decisions across locations faster than the speed of light allows classical communication—enabling fairness guarantees for high-frequency trading across data centers in different cities.Meeting customers where they are: Cisco's strategy to deploy quantum networking capabilities alongside existing classical infrastructure, supporting a spectrum from standard TLS to post-quantum cryptography to QKD, rather than requiring greenfield deployments.The transduction grand challenge: Why building the "NIC card" that connects quantum processors to quantum networks—the transducer—is the critical bottleneck for distributed quantum computing and the key technical risk Cisco is addressing.Product-company fit in corporate innovation: How Outshift operates like internal startups within Cisco, focusing on problems adjacent to the company's four pillars (networking, security, observability, collaboration) with both technology risk and market risk, while maintaining agility through a framework adapted from Cisco's acquisition integration playbook.Why It MattersCisco's systems-level approach to quantum networking represents a paradigm shift from viewing quantum as distant future technology to infrastructure deployable today for specific high-value use cases. By focusing on room-temperature, telecom-compatible entanglement sources and software stacks that integrate with existing networks, Cisco is positioning quantum networking as the bridge between classical and quantum computing worlds—potentially accelerating practical quantum applications from decades away to 5-10 years while solving immediate enterprise challenges in security and coordination.Episode HighlightsVijoy's journey from building Hindi chatbots on a BBC Micro in the late 1980s to leading quantum innovation at Cisco. Why quantum networking is "here and now" while quantum computing is still being figured out. The spectrum of quantum network applications: from near-term classical coordination problems to the long-term quantum internet connecting quantum data centers and sensors. How entanglement enables provable intrusion detection on standard fiber networks alongside classical IP traffic. The "step function moment" coming for quantum: why the transition from physics to systems engineering means a ChatGPT-like breakthrough is imminent, and why this one will be harder to catch up on than software-based revolutions. Design partner collaborations with financial services, federal agencies, and energy companies on security and synchronization use cases.Cisco's quantum software stack prototypes: Quantum Compiler (for distributed quantum error correction), Quantum Alert (security), and QuantumSync (decision coordination).

Recent advancements in quantum computing are pushing the technology closer to practical application, with companies like Google, IBM, and ICONIC making significant strides in stabilizing quantum systems. This progress poses risks to current encryption methods, as traditional security measures may become obsolete due to quantum capabilities. The National Institute of Standards and Technology (NIST) is advocating for the adoption of post-quantum cryptography (PQC) to protect sensitive data, emphasizing the urgency for organizations to reassess their security protocols. Failure to act could result in severe repercussions, including data breaches and regulatory noncompliance.Google's quantum computing division has published research demonstrating practical applications for quantum computers, such as using quantum technology for nuclear magnetic resonance to estimate atomic structures. The company is shifting its focus from merely proving quantum feasibility to making the technology cost-effective. Sundar Pichai, CEO of Alphabet, expressed optimism about the timeline for commercially viable quantum computing, while industry opinions vary, with some experts suggesting practical applications may still be decades away. This divergence highlights the uncertainty surrounding the timeline for widespread quantum adoption.In addition to quantum computing advancements, the episode discusses the integration of PQC into mainstream technology. Microsoft Windows 11 has begun incorporating PQC algorithms into its cryptographic APIs, allowing for the generation of PQC key pairs and hybrid TLS handshakes. Meanwhile, companies like Palo Alto Networks are updating their software to support quantum-resistant encryption. These developments indicate a growing recognition of the need for quantum-safe security measures as organizations prepare for the potential threats posed by quantum computing.For Managed Service Providers (MSPs) and IT decision-makers, the implications are clear: proactive measures are necessary to prepare for the quantum computing era. MSPs should assist clients in inventorying their cryptographic systems and developing a roadmap for adopting PQC. As the U.S. government urges organizations to transition to quantum-safe encryption by 2035, MSPs must prioritize updating protocols and exploring quantum-resistant solutions. The transition to quantum-safe encryption is a multi-year effort, and early preparation will help mitigate future risks associated with quantum advancements. One thing to know today00:00 All About Quantum Computing This is the Business of Tech.    Supported by:  

The ASX 200 dropped another 41 points to 8886 as interest rate sensitive stocks fell and WES dropped 7.1% on AGM comments. Banks held firm as we await details from APEC on the Trump/Xi Meeting which was all over in 90 minutes. The Big Bank Basket held at $289.37 (+0.1%), with insurers slipping and financials a little wishy washy. REITs tumbled as rates rose, GMG down 1.3% and SCG off 2.9% on rate rethink. Industrials were also weaker, ALL fell 2.2% with WOW gaining 3.3% at the expense COL down 2.6%. REA continued to fall, down 2.6%. TLS off 1.4% and tech stocks fell again, XRO down 2.6% and WTC down another 2.6%. TCL slid 2.4% with JBH under pressure following a trading update. CSL found some friends, up 5.2% but RMD and COH fell.In resources, a mixed picture, gold miners were spotty. Some ok, some not, NEM gained 1.3% and RRL up 1.2% with uranium stocks still in fashion (for now). PDN up 5.9% and lithium stocks benefitting from broker upgrades to the lithium price. PLS up 5.4% and LTR gaining 11.2%.In corporate news, MIN soared 13.7% on much better-than-expected results, UNI fell 4.3% after an update and L1G returned to trade after capital raise and soared 11.7%. CIA also doing well on a quarterly in the iron ore space, up 9.9%. JHX fell 3.1% after losing the chair to a vote.In economic news, the BoJ held rates unchanged, Trump met Xi for 90 minutes to talk trade. Not sure that is long enough to really get into the ‘nitty gritty', but China seems to be happy to buy soybeans. Tariffs reduced from 57% to 47%. Not a huge deal really.Asian markets mixed, HK up 0.1% China down 0.3% and Japan up 0.5%10-year yields 4.23%. US Futures not doing much really. Yet.Want to invest with Marcus Today? Our MT20 portfolio is designed for investors seeking exposure to our strategy while we do the hard work for you. If you're looking for personal financial advice, our friends at Clime Investment Management can help. Their team of licensed advisers operates across most states, offering tailored financial planning services.  Why not sign up for a free trial? Gain access to expert insights, research, and analysis to become a better investor.

The ASX 200 fell 43 points to 9012 (0.5%) as resources were sold off heavily. Two blue chip casualties today too in CSL on a downgrade and delays to its demerger plans and WTC on ASIC raid on offices. Both falling heavily, CSL off 15.9% and WTC down 15.9% too. The All-Tech Index fell 1.1%. Gold miners under serious [pressure again today with NEM down 4.1% and NST falling 3.1% as bullion fell below US$4000. The Iron ore majors fared better with small losses, but rare earths dropped in a brutal sell down, LYC fell 13.9% and ILU down 5.2% with lithium stocks back on the chopping board as LTR dropped 12.8% and PLS fell 6.1%. Oil and gas stocks eased, WDS down 1.7% and uranium stocks fell, PDN down 4.4% and DYL off 2.5%. Banks though and other defensives were in demand. CBA up 1.4% and NAB rising 2.5% with the Big Bank Basket back up to $295.24 (+1.4%). Insurers gained too. QBE up1.5 % and SUN up 2.2%. Broker AUB got a NBIO from Swedish private equity, up 5.9% and SDF rose in sympathy. Industrials firmed, WES pushing ahead again, up 2.8% TLS up1.0 % and COL gaining 1.6%. In healthcare CSL weighed and tech stocks fell, WTC being responsible. In corporate news, media speculation on Bain Capital bidding for all or some of DMP saw the stock rocket before denial and profit taking killed it, still up 7.2%. FLT fell 0.9% as it sold its Cross Hotels business. On the economic front, Trump was in Japan meeting new PM Takaichi as the Fed kicks off its meeting tonight.Asian markets mixed ahead of framework trade deal, Japan down 0.8%, with HK and China mildly positive.Want to invest with Marcus Today? Our MT20 portfolio is designed for investors seeking exposure to our strategy while we do the hard work for you. If you're looking for personal financial advice, our friends at Clime Investment Management can help. Their team of licensed advisers operates across most states, offering tailored financial planning services.  Why not sign up for a free trial? Gain access to expert insights, research, and analysis to become a better investor.

This week, Jake and Travis sit down with journalist Will Sommer to unpack his investigation into the New Age wellness empire selling stacks of glowing TV monitors as a cure‑all. Jason Shurka, the brains behind the multi-million dollar operation, used the funds to bankroll a brand new streaming platform, Unifyd TV, whose offerings include documentaries made by QAnon promoters. According to the promoters of this quack cure, their work is approved by a secret society of powerful entities who are dedicated to elevating humankind called “The Light Systems” cabal or “TLS.” One member of The Light Systems, a figure called “Ray,” is regularly filmed while wearing a face-concealing hoodie and gloves in order to preserve his anonymity in interviews with Shurka available on Unifyd TV. It's a lot. Just listen to the episode. Subscribe for $5 a month to get all the premium episodes: www.patreon.com/qaa Will Sommer https://bsky.app/profile/willsommer.bsky.social How a Bizarre Healing-TV-Screen Tycoon Is Funding MAGA Media https://www.thebulwark.com/p/bizarre-healing-tv-screen-tycoon-funding-maga-media-unifyd-eesystem The first two episodes of Annie Kelly's new podcast miniseries “Truly, Tradly, Deeply” will be released on the Cursed Media podcast network on the 29th of October. https://www.cursedmedia.net/ Cursed Media subscribers also get access to every episode of every QAA miniseries we produced, including Manclan by Julian Feeld and Annie Kelly, Trickle Down by Travis View, The Spectral Voyager by Jake Rockatansky and Brad Abrahams, and Perverts by Julian Feeld and Liv Agar. Plus, Cursed Media subscribers will get access to at least three new exclusive podcast miniseries every year. https://www.cursedmedia.net/ Editing by Corey Klotz. Theme by Nick Sena. Additional music by Pontus Berghe. Theme Vocals by THEY/LIVE (instagram.com/theyylivve / sptfy.com/QrDm). Cover Art by Pedro Correa: (pedrocorrea.com) qaapodcast.com QAA was known as the QAnon Anonymous podcast.

In this episode Michael, Sarah and Mark talk with guest Ryen Macababbad, Principal Security Program Manager at Microsoft about her current work on standardizing security terminology and taxonomy across Microsoft. Also, how getting terminology right is important to security, especially for those with neurodiverse conditions, such as autism.We also discuss Azure Security news about the Microsoft AI tour Sarah is doing, Cosmos DB, and Michael goes on a rant about TLS certificate checking. https://aka.ms/azsecpod

Welcome back to another Friday special! This week's bonus episode features an interview with co-host of the TLS podcast Alex Clark. Alex is a literary journalist and book extraordinaire. She discusses her podcast and imparts her literary wisdom... If you want to contact the show to ask a question and get involved in the conversation then please email us: janeandfi@times.radioFollow us on Instagram! @janeandfiPodcast Producer: Eve SalusburyExecutive Producer: Rosie Cutler Hosted on Acast. See acast.com/privacy for more information.

Bem-vindos a mais um Kubicast! Neste episódio, recebemos Victor Carvalho para destrinchar o Talos Linux como base enxuta e segura para rodar Kubernetes. Nós comparamos a proposta minimalista do Talos com distros generalistas, e debatemos por que um SO "Kubernetes-first" reduz superfície de ataque e acelera a vida de quem opera clusters no dia a dia.Falamos de segurança no detalhe: kernel hardenizado (KSP), SELinux funcionando de verdade com Kubernetes, criptografia de disco com chaves via TPM/KMS, e o modelo API-driven (sem SSH) que muda a forma como operamos nós. Também discutimos operação e upgrades, incluindo o uso do Talos Factory e de Terraform para padronizar imagens, além de estratégias para controlar endpoints e certificados.Fechamos com experiências reais: comparativos de tempo de provisioning, requisitos mínimos, rede (Flannel vs Cilium), dores comuns (certificados/TLS, IP flutuante) e boas práticas de produção — aquela mistura de técnica com bom humor que só a nossa bancada entrega.Links Importantes:- Victor Cardoso - https://www.linkedin.com/in/victorbmcarvalho/- João Brito - https://www.linkedin.com/in/juniorjbn/- Site oficial do Talos Linux - https://talos.dev- Assista ao FilmeTEArapia - https://youtu.be/M4QFmW_HZh0?si=HIXBDWZJ8yPbpflMHashtags#Talos #TalosLinux #Kubernetes #DevOps #DevSecOps #Kubicast #Containers #Getup #K8s #SELinux #KSP #Terraform #Proxmox #Flannel #Cilium #ZeroTrust #Imutabilidade #Homelab #Observabilidade #SBOMO Kubicast é uma produção da Getup, empresa especialista em Kubernetes e projetos open source para Kubernetes. Os episódios do podcast estão nas principais plataformas de áudio digital e no YouTube.com/@getupcloud.

Cisco's routers just exposed more than two million networks thanks to a "security optional" SNMP setup that's being actively exploited—Steve and Leo break down why this is a worst-case scenario for the industry and how easily it could have been avoided. Gmail's spam filtering false-positive spree. iOS 26's Safari randomizes its fingerprint by default. Cisco's SNMP stands for "Security Not My Problem". Windows' "stuck" Extended Security Updates (ESU). Europe complains, gets 1-year of ESU with no strings. Where to get $6 TLS certs (really) while they last. The lessons to learn from Jaguar Land Rover's mess. The NEON app: get paid to have your voice recorded. Bluesky's age verification, now coming to Ohio. What is "Kids Web Services" for age verification. More than 10K Ollama instances publicly exposed. GRC's DNS Benchmark reaches "release candidate" Show Notes - https://www.grc.com/sn/SN-1045-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: vanta.com/SECURITYNOW 1password.com/securitynow Melissa.com/twit threatlocker.com/twit zapier.com/twit

Cisco's routers just exposed more than two million networks thanks to a "security optional" SNMP setup that's being actively exploited—Steve and Leo break down why this is a worst-case scenario for the industry and how easily it could have been avoided. Gmail's spam filtering false-positive spree. iOS 26's Safari randomizes its fingerprint by default. Cisco's SNMP stands for "Security Not My Problem". Windows' "stuck" Extended Security Updates (ESU). Europe complains, gets 1-year of ESU with no strings. Where to get $6 TLS certs (really) while they last. The lessons to learn from Jaguar Land Rover's mess. The NEON app: get paid to have your voice recorded. Bluesky's age verification, now coming to Ohio. What is "Kids Web Services" for age verification. More than 10K Ollama instances publicly exposed. GRC's DNS Benchmark reaches "release candidate" Show Notes - https://www.grc.com/sn/SN-1045-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: vanta.com/SECURITYNOW 1password.com/securitynow Melissa.com/twit threatlocker.com/twit zapier.com/twit

Cisco's routers just exposed more than two million networks thanks to a "security optional" SNMP setup that's being actively exploited—Steve and Leo break down why this is a worst-case scenario for the industry and how easily it could have been avoided. Gmail's spam filtering false-positive spree. iOS 26's Safari randomizes its fingerprint by default. Cisco's SNMP stands for "Security Not My Problem". Windows' "stuck" Extended Security Updates (ESU). Europe complains, gets 1-year of ESU with no strings. Where to get $6 TLS certs (really) while they last. The lessons to learn from Jaguar Land Rover's mess. The NEON app: get paid to have your voice recorded. Bluesky's age verification, now coming to Ohio. What is "Kids Web Services" for age verification. More than 10K Ollama instances publicly exposed. GRC's DNS Benchmark reaches "release candidate" Show Notes - https://www.grc.com/sn/SN-1045-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: vanta.com/SECURITYNOW 1password.com/securitynow Melissa.com/twit threatlocker.com/twit zapier.com/twit

Cisco's routers just exposed more than two million networks thanks to a "security optional" SNMP setup that's being actively exploited—Steve and Leo break down why this is a worst-case scenario for the industry and how easily it could have been avoided. Gmail's spam filtering false-positive spree. iOS 26's Safari randomizes its fingerprint by default. Cisco's SNMP stands for "Security Not My Problem". Windows' "stuck" Extended Security Updates (ESU). Europe complains, gets 1-year of ESU with no strings. Where to get $6 TLS certs (really) while they last. The lessons to learn from Jaguar Land Rover's mess. The NEON app: get paid to have your voice recorded. Bluesky's age verification, now coming to Ohio. What is "Kids Web Services" for age verification. More than 10K Ollama instances publicly exposed. GRC's DNS Benchmark reaches "release candidate" Show Notes - https://www.grc.com/sn/SN-1045-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: vanta.com/SECURITYNOW 1password.com/securitynow Melissa.com/twit threatlocker.com/twit zapier.com/twit

Daniel Stenberg, Swedish Internet protocol expert and founder and lead developer of the Curl project, speaks with SE Radio host Gavin Henry about removing Rust from Curl. They discuss why Hyper was removed from curl, why the last five percent of making it a success was difficult, what the project gained from the 5-year attempt to tackle bringing Rust into a C project, lessons learned for next time, why user support is critical, and the positive long-lasting impact this attempt had. Brought to you by IEEE Computer Society and IEEE Software magazine.

Cisco's routers just exposed more than two million networks thanks to a "security optional" SNMP setup that's being actively exploited—Steve and Leo break down why this is a worst-case scenario for the industry and how easily it could have been avoided. Gmail's spam filtering false-positive spree. iOS 26's Safari randomizes its fingerprint by default. Cisco's SNMP stands for "Security Not My Problem". Windows' "stuck" Extended Security Updates (ESU). Europe complains, gets 1-year of ESU with no strings. Where to get $6 TLS certs (really) while they last. The lessons to learn from Jaguar Land Rover's mess. The NEON app: get paid to have your voice recorded. Bluesky's age verification, now coming to Ohio. What is "Kids Web Services" for age verification. More than 10K Ollama instances publicly exposed. GRC's DNS Benchmark reaches "release candidate" Show Notes - https://www.grc.com/sn/SN-1045-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: vanta.com/SECURITYNOW 1password.com/securitynow Melissa.com/twit threatlocker.com/twit zapier.com/twit

Cisco's routers just exposed more than two million networks thanks to a "security optional" SNMP setup that's being actively exploited—Steve and Leo break down why this is a worst-case scenario for the industry and how easily it could have been avoided. Gmail's spam filtering false-positive spree. iOS 26's Safari randomizes its fingerprint by default. Cisco's SNMP stands for "Security Not My Problem". Windows' "stuck" Extended Security Updates (ESU). Europe complains, gets 1-year of ESU with no strings. Where to get $6 TLS certs (really) while they last. The lessons to learn from Jaguar Land Rover's mess. The NEON app: get paid to have your voice recorded. Bluesky's age verification, now coming to Ohio. What is "Kids Web Services" for age verification. More than 10K Ollama instances publicly exposed. GRC's DNS Benchmark reaches "release candidate" Show Notes - https://www.grc.com/sn/SN-1045-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: vanta.com/SECURITYNOW 1password.com/securitynow Melissa.com/twit threatlocker.com/twit zapier.com/twit

Cisco's routers just exposed more than two million networks thanks to a "security optional" SNMP setup that's being actively exploited—Steve and Leo break down why this is a worst-case scenario for the industry and how easily it could have been avoided. Gmail's spam filtering false-positive spree. iOS 26's Safari randomizes its fingerprint by default. Cisco's SNMP stands for "Security Not My Problem". Windows' "stuck" Extended Security Updates (ESU). Europe complains, gets 1-year of ESU with no strings. Where to get $6 TLS certs (really) while they last. The lessons to learn from Jaguar Land Rover's mess. The NEON app: get paid to have your voice recorded. Bluesky's age verification, now coming to Ohio. What is "Kids Web Services" for age verification. More than 10K Ollama instances publicly exposed. GRC's DNS Benchmark reaches "release candidate" Show Notes - https://www.grc.com/sn/SN-1045-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: vanta.com/SECURITYNOW 1password.com/securitynow Melissa.com/twit threatlocker.com/twit zapier.com/twit

Cisco's routers just exposed more than two million networks thanks to a "security optional" SNMP setup that's being actively exploited—Steve and Leo break down why this is a worst-case scenario for the industry and how easily it could have been avoided. Gmail's spam filtering false-positive spree. iOS 26's Safari randomizes its fingerprint by default. Cisco's SNMP stands for "Security Not My Problem". Windows' "stuck" Extended Security Updates (ESU). Europe complains, gets 1-year of ESU with no strings. Where to get $6 TLS certs (really) while they last. The lessons to learn from Jaguar Land Rover's mess. The NEON app: get paid to have your voice recorded. Bluesky's age verification, now coming to Ohio. What is "Kids Web Services" for age verification. More than 10K Ollama instances publicly exposed. GRC's DNS Benchmark reaches "release candidate" Show Notes - https://www.grc.com/sn/SN-1045-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: vanta.com/SECURITYNOW 1password.com/securitynow Melissa.com/twit threatlocker.com/twit zapier.com/twit

Topics covered in this episode: * PostgreSQL 18 Released* * Testing is better than DSA (Data Structures and Algorithms)* * Pyrefly in Cursor/PyCharm/VSCode/etc* * Playwright & pytest techniques that bring me joy* Extras Joke Watch on YouTube About the show Sponsored by us! Support our work through: Our courses at Talk Python Training The Complete pytest Course Patreon Supporters Connect with the hosts Michael: @mkennedy@fosstodon.org / @mkennedy.codes (bsky) Brian: @brianokken@fosstodon.org / @brianokken.bsky.social Show: @pythonbytes@fosstodon.org / @pythonbytes.fm (bsky) Join us on YouTube at pythonbytes.fm/live to be part of the audience. Usually Monday at 10am PT. Older video versions available there too. Finally, if you want an artisanal, hand-crafted digest of every week of the show notes in email form? Add your name and email to our friends of the show list, we'll never share it. Michael #1: PostgreSQL 18 Released PostgreSQL 18 is out (Sep 25, 2025) with a focus on faster text handling, async I/O, and easier upgrades. New async I/O subsystem speeds sequential scans, bitmap heap scans, and vacuum by issuing concurrent reads instead of blocking on each request. Major-version upgrades are smoother: pg_upgrade retains planner stats, adds parallel checks via -jobs, and supports faster cutovers with -swap. Smarter query performance lands with skip scans on multicolumn B-tree indexes, better OR optimization, incremental-sort merge joins, and parallel GIN index builds. Dev quality-of-life: virtual generated columns enabled by default, a uuidv7() generator for time-ordered IDs, and RETURNING can expose both OLD and NEW. Security gets an upgrade with native OAuth 2.0 authentication; MD5 password auth is deprecated and TLS controls expand. Text operations get a boost via the new PG_UNICODE_FAST collation, faster upper/lower, a casefold() helper, and clearer collation behavior for LIKE/FTS. Brian #2: Testing is better than DSA (Data Structures and Algorithms) Ned Batchelder If you need to grind through DSA problems to get your first job, then of course, do that, but if you want to prepare yourself for a career, and also stand out in job interviews, learn how to write tests. Testing is a skill you'll use constantly, will make you stand out in job interviews, and isn't taught well in school (usually). Testing code well is not obvious. It's a puzzle and a problem to solve. It gives you confidence and helps you write better code. Applies everywhere, at all levels. Notes from Brian Most devs suck at testing, so being good at it helps you stand out very quickly. Thinking about a system and how to test it often very quickly shines a spotlight on problem areas, parts with not enough specification, and fuzzy requirements. This is a good thing, and bringing up these topics helps you to become a super valuable team member. High level tests need to be understood by key engineers on a project. Even if tons of the code is AI generated. Even if many of the tests are, the people understanding the requirements and the high level tests are quite valuable. Michael #3: Pyrefly in Cursor/PyCharm/VSCode/etc Install the VSCode/Cursor extension or PyCharm plugin, see https://pyrefly.org/en/docs/IDE/ Brian spoke about Pyrefly in #433: Dev in the Arena I've subsequently had the team on Talk Python: #523: Pyrefly: Fast, IDE-friendly typing for Python (podcast version coming in a few weeks, see video for now.) My experience has been Pyrefly changes the feel of the editor, give it a try. But disable the regular language server extension. Brian #4: Playwright & pytest techniques that bring me joy Tim Shilling “I've been working with playwright more often to do end to end tests. As a project grows to do more with HTMX and Alpine in the markup, there's less unit and integration test coverage and a greater need for end to end tests.” Tim covers some cool E2E techniques Open new pages / tabs to be tested Using a pytest marker to identify playwright tests Using a pytest marker in place of fixtures Using page.pause() and Playwright's debugging tool Using assert_axe_violations to prevent accessibility regressions Using page.expect_response() to confirm a background request occurred From Brian Again, with more and more lower level code being generated, and many unit tests being generated (shakes head in sadness), there's an increased need for high level tests. Don't forget API tests, obviously, but if there's a web interface, it's gotta be tested. Especially if the primary user experience is the web interface, building your Playwright testing chops helps you stand out and let's you test a whole lot of your system with not very many tests. Extras Brian: Big O - By Sam Who Yes, take Ned's advice and don't focus so much on DSA, focus also on learning to test. However, one topic you should be comfortable with in algortithm-land is Big O, at least enough to have a gut feel for it. And this article is really good enough for most people. Great graphics, demos, visuals. As usual, great content from Sam Who, and a must read for all serious devs. Python 3.14.0rc3 has been available since Sept 18. Python 3.14.0 final scheduled for Oct 7 Django 6.0 alpha 1 released Django 6.0 final scheduled for Dec 3 Python Test Static hosting update Some interesting discussions around setting up my own server, but this seems like it might be yak shaving procrastination research when I really should be writing or coding. So I'm holding off until I get some writing projects and a couple SaaS projects further along. Joke: Always be backing up

“You can have the best program in the world, but if nobody knows about it, it won't make a difference,” says Todd Jordan, who leads United Way of Greater Kansas City's 2-1-1. “That's why we run a 24/7/365 contact center—to guide people to real help with a kind, empathetic voice.” In this special Technology Reseller News podcast, Publisher Doug Green brings together Todd Jordan (United Way 2-1-1, Kansas City), Jill Blankenship (CEO, Frontline Group), and Thomas McCarthy-Howe (CTO, VCONIC) to explore Empathy at Scale: how vCon (styled vCon) data and AI—implemented with strict privacy and security—are transforming community helplines and complex, multi-agency referrals. The Scale - and the Strain United Way's 2-1-1 covers 23 counties and roughly 2.5 million people across the Greater Kansas City region. Demand has surged since the pandemic: 155,000+ calls last year and nearly 500,000 total contacts (calls, web, email, even USPS), with average call times around 7.5 minutes—well over a million minutes of conversations. The mix spans urban, suburban, and rural needs, multiple languages, and highly sensitive situations (from rent and utilities to domestic violence and mental health crises). Protecting privacy is paramount. From Corridor Conversation to Pilot Blankenship describes how a hallway conversation about vCon—a new IETF-developed file format for conversations—sparked a collaboration. Frontline Group packaged the idea inside Frontline Quest, their agent-enablement and professional services program, while VCONIC, a spin-out dedicated to vCon technology, provided the protocol and secure data handling. The trio launched a live pilot with United Way 2-1-1 to transcribe calls, structure insights, and surface actionable “signals” for quality, safety, and service improvement—without compromising caller confidentiality. “vCon is designed to feed AI and protect people,” says Thomas McCarthy-Howe. “Bringing IETF-grade security and openness to conversational data lets us see the dark operational signals—safely—and use them to help people faster.” What Changed for 2-1-1 Quality & Care Signals: Real-time indicators help supervisors coach empathy, spotting where agents can lean in—and where secondary trauma support is needed for frontline staff. Searchable Conversations (Not Just Dispositions): Instead of relying on boxes and notes, leaders can now query full conversations to answer urgent policy questions. Jordan asked the system to compare eviction-prevention resources across Kansas vs. Missouri; the synthesized, data-grounded view matched the team's lived experience and revealed precise gaps. Multilingual & Multichannel Reality: With 70–80 languages in some school districts, vCon-backed transcription and analysis improve consistency across interpreters and channels—phone, web, email, and more. Why It Matters For a nonprofit with finite resources, the team needed technology that is secure, lean, and humane—helping callers in crisis without forcing agents to split attention between empathy and note-taking. The pilot is doing exactly that: safeguarding sensitive data while unlocking insights that mobilize funding, target interventions, and strengthen outcomes. “We're at the tip of something transformative,” Jordan says. “Real-time data from our community voices helps us advocate better—and care better.” About the participants: United Way of Greater Kansas City 2-1-1 serves 23 counties and ~2.5M people, fielding 155k+ calls annually. 2-1-1 is a North American network covering ~99% of the U.S. and much of Canada. Frontline Group is a contact center BPO and professional services firm; its Frontline Quest program integrates vCon to enhance agent experience and operational insight. VCONIC specializes in vCon technology—a conversation file format being developed in the IETF, the internet standards body behind protocols like TLS and OAuth. Learn more: United Way 2-1-1 (Kansas City),

professorjrod@gmail.comHave you ever wondered what invisible force protects your private messages, banking details, and personal information as they travel across the internet? The answer lies in cryptology—the fascinating science of securing information through mathematical techniques.Cryptology forms the backbone of modern cybersecurity, addressing the critical needs for confidentiality and integrity in our digital communications. Throughout this episode, Professor J-Rod breaks down complex cryptographic concepts into digestible, practical explanations that reveal how our online world maintains security.We journey through the three fundamental pillars of cryptographic security. First, symmetric encryption—the fastest method using a single shared key—powers everything from full disk encryption on your laptop to secure messaging. Next, we explore asymmetric encryption (public-key cryptography), which brilliantly solves the key distribution problem through mathematically-linked key pairs. Finally, we demystify hashing—the one-way process that creates digital fingerprints to verify data integrity without revealing the original content.Each concept comes alive through real-world examples: how your laptop protects files even if stolen, how websites establish secure connections with your browser, and why changing just one letter in a document completely transforms its hash value. The episode offers both theoretical understanding and practical knowledge about the technologies we unconsciously trust every day.Whether you're a cybersecurity novice or simply curious about how digital security works, this episode provides valuable insights into the cryptographic foundations that keep our digital lives private and secure. Subscribe to Technology Tap for part two of our Cryptology Deep Dive, where we'll explore digital signatures, PKI, certificate authorities, and applications like VPNs, TLS, and blockchain. Your digital security knowledge journey is just beginning!Support the showIf you want to help me with my research please e-mail me.Professorjrod@gmail.comIf you want to join my question/answer zoom class e-mail me at Professorjrod@gmail.comArt By Sarah/DesmondMusic by Joakim KarudLittle chacha ProductionsJuan Rodriguez can be reached atTikTok @ProfessorJrodProfessorJRod@gmail.com@Prof_JRodInstagram ProfessorJRod

A CA has incorrectly issued TLS certificates for the 1.1.1.1 and 2.2.2.2 IP addresses. We go into the details.

Client authentication using public TLS server certificates is on the deprecation path. In this episode we go through the key dates in this deprecation.

Assistant Professor Mohammad Mirhosseini (Caltech EE/APh) explains how his group built a mechanical quantum memory that stores microwave-photon quantum states far longer than typical superconducting qubits, and why that matters for hybrid quantum architectures. The discussion covers microwave photons, phonons, optomechanics, coherence versus lifetime (T2 vs. T1), current speed bottlenecks, and implications for quantum transduction and error mechanisms. The discussion centers on a paper from Mirhosseini's paper from December of 2024 titled, “A mechanical quantum memory for microwave photons,” detailing strong coupling between a transmon and a long‑lived nanomechanical oscillator for storage and retrieval of nonclassical states.GuestMohammad Mirhosseini is an Assistant Professor of Electrical Engineering and Applied Physics at Caltech, where his group engineers hybrid superconducting–phononic–photonic systems at millikelvin temperatures for computing, communication, and sensing. He completed his PhD at the University of Rochester's Institute of Optics and was a postdoc in Oscar Painter's group at Caltech before starting his lab. His recent team effort demonstrates mechanical oscillators as compact, long‑lived quantum memories integrated with superconducting circuits.Key topicsWhat “microwave photons” are and how qubits emit/absorb single microwave photons in circuit QED analogously to atoms and optical photons.Why “memory” is missing in today's quantum processors and how a dedicated long‑lived storage element can complement fast but dissipative superconducting qubits.Optomechanics 101: mapping quantum states between electrical and mechanical degrees of freedom, with phonons as the quantized vibrational excitations.T1 vs. T2: demonstrated order‑of‑magnitude gains in lifetime (T1) and more modest current gains in coherence (T2), plus paths to mitigate dephasing.Present bottleneck: state conversion between qubit and oscillator is about 100× slower than native superconducting operations, with clear engineering avenues to speed up.Quantum transduction: leveraging the same mechanical intermediary to bridge microwave and optical domains for interconnects and networking.Two‑level system (TLS) defects: shared decoherence mechanisms across mechanical oscillators and superconducting circuits and why comparing both can illuminate materials limits.Why it mattersHybrid architectures that pair fast processors with long‑lived memories are a natural route to scaling, and mechanical oscillators offer lifetimes far exceeding conventional superconducting storage elements while remaining chip‑integrable.. Demonstrating nonclassical state storage and retrieval with strong qubit–mechanics coupling validates mechanical oscillators as practical quantum memories and sets the stage for on‑chip transduction. Overcoming current speed limits and dephasing would lower the overhead for synchronization, buffering, and possibly future fault‑tolerant protocols in superconducting platforms.Episode highlightsA clear explanation of microwave photons and how circuit QED lets qubits create and absorb them one by one.Mechanical memory concept: store quantum states as phonons in a gigahertz‑frequency nanomechanical oscillator and read them back later.Performance today: roughly 10–30× longer T1 than typical superconducting qubits with current T2 gains of a few×, alongside concrete strategies to extend T2.Speed trade‑off: present qubit–mechanics state transfer is ~100× slower than native superconducting gates, but device design and coupling improvements are underway.Roadmap: tighter coupling for in‑oscillator gates, microwave‑to‑optical conversion via the same mechanics, and probing TLS defects to inform both mechanical and superconducting coherence.

This week, we dig into Atlassian buying The Browser Company, whether Pay Per Crawl makes sense, and Oracle's cloud jackpot. Plus, a quick lesson in Aussie slang. Watch the YouTube Live Recording of Episode (https://www.youtube.com/live/iTFrzM8U2hQ?si=XaRjUM0tMr2aOLVZ) 537 (https://www.youtube.com/live/iTFrzM8U2hQ?si=XaRjUM0tMr2aOLVZ) Runner-up Titles "I have a plan to make things slightly better.” Matt Ray comes off the top rope We are in that demographic Flip-flops, thongs, and slides. No Translation Needed Do we have a fashion channel? Why not us too? Let's just try it Hooters adjacent tech story Pay-per-crawl. I don't know how DNS works, nobody does Cool, copyright, I love it Just lots of weird stuff going on. Y'all are weird Rundown Final thought on Australia (https://walkingtheworld.substack.com/p/final-thought-on-australia) Atlassian agrees to acquire The Browser Company for $610 million (https://www.cnbc.com/2025/09/04/atlassian-the-browser-company-deal.html) VMware buying Slide Rocket in 2011 (https://techcrunch.com/2011/04/26/vmware-acquires-online-presentation-application-sliderocket/), which is now ClearSlide (https://www.clearslide.com/product/sliderocket/) An Interview with Cloudflare Founder and CEO Matthew Prince About Internet History and Pay-per-crawl (https://stratechery.com/2025/an-interview-with-cloudflare-founder-and-ceo-matthew-prince-about-internet-history-and-pay-per-crawl/) Anthropic Agrees to Pay $1.5 Billion to Settle Lawsuit With Book Authors (https://www.nytimes.com/2025/09/05/technology/anthropic-settlement-copyright-ai.html) Apple unveils iPhone 17 Pro and iPhone 17 Pro Max (https://www.apple.com/newsroom/2025/09/apple-unveils-iphone-17-pro-and-iphone-17-pro-max/) Catch up quick | Apple September event highlights (https://youtu.be/31MbUHX7W8k?si=lmDZqRp_SsQykqsr) Apple introduces AirPods Pro 3 with live translation feature (https://arstechnica.com/gadgets/2025/09/new-airpods-pro-3-turn-apples-earbuds-into-fitness-tracker-universal-translator/) Nvidia's top two mystery customers made up 39% of the chipmaker's Q2 revenue (https://www.cnbc.com/2025/08/28/nvidias-top-two-mystery-customers-made-up-39percent-of-its-q2-revenue-.html) Oracle Financial's US parent jumps 27% in extended trading on Tuesday; Here's why - CNBC TV18 (https://www.cnbctv18.com/market/oracle-corp-share-price-jump-q1-results-guidance-data-centre-india-listed-stock-19668521.htm) Relevant to your Interests Google, Apple, and Mozilla Win in the Antitrust Case Google Lost (https://spyglass.org/google-apple-and-mozilla-win-in-the-antitrust-case-google-lost/) Privacy Nightmare: Your Doorbell Camera Is Snitching to Insurance Companies (https://www.gadgetreview.com/privacy-nightmare-your-doorbell-camera-is-snitching-to-insurance-companies) Broadcom Stock Soars as AI Demand Drives Strong Earnings—Crucial Price Levels to Monitor (https://www.investopedia.com/broadcom-stock-soars-as-ai-demand-drives-strong-earnings-crucial-price-levels-to-monitor-11804068) Addressing the unauthorized issuance of multiple TLS certificates for 1.1.1.1 (https://blog.cloudflare.com/unauthorized-issuance-of-certificates-for-1-1-1-1/) Exclusive | Databricks Crosses $4 Billion in Annual Revenue Rate (https://www.wsj.com/tech/ai/databricks-increases-revenue-forecast-to-4-billion-a-year-642897c8) SpaceX strikes $17B deal to buy EchoStar's spectrum for Starlink's direct-to-phone service (https://techcrunch.com/2025/09/08/spacex-strikes-17b-deal-to-buy-echostars-spectrum-for-starlinks-direct-to-phone-service/) Google Cloud CEO sees sunny prospects thanks to AI demand (https://www.theregister.com/2025/09/09/google_cloud_ceo_sees_sunny/) Apple unveils iPhone 17 Pro and iPhone 17 Pro Max (https://www.apple.com/newsroom/2025/09/apple-unveils-iphone-17-pro-and-iphone-17-pro-max/) Catch up quick | Apple September event highlights (https://youtu.be/31MbUHX7W8k?si=lmDZqRp_SsQykqsr) Apple introduces AirPods Pro 3 with live translation feature (https://arstechnica.com/gadgets/2025/09/new-airpods-pro-3-turn-apples-earbuds-into-fitness-tracker-universal-translator/) Claude can now create and use files (https://www.anthropic.com/news/create-files) The $69 Billion Domino Effect: How VMware's Debt-Fueled Acquisition Is Killing Open Source, One Repository at a Time (https://fastcode.io/2025/08/30/the-69-billion-domino-effect-how-vmwares-debt-fueled-acquisition-is-killing-open-source-one-repository-at-a-time/) Nonsense 2025 AI Darwin Award Nominees - Worst AI Failures of the Year (https://aidarwinawards.org/nominees-2025.html) Ground staff strike: KLM cancels over 100 flights on Wednesday - DutchNews.nl (https://www.dutchnews.nl/2025/09/ground-staff-strike-klm-cancels-over-100-flights-on-wednesday/) Listener Feedback Carless People (https://www.amazon.com/Careless-People-Cautionary-Power-Idealism/dp/1250391237) What We've Learned About the Kawhi Leonard Situation—and What We Haven't (https://www.theringer.com/2025/09/09/nba/kawhi-leonard-los-angeles-clippers-steve-ballmer-aspiration-salary-cap-circumvention) Conferences VMUG London (https://my.vmug.com/s/event/a4pVs000000eX25IAE/uk-usercon?filters=%257B%2522baseConditions%2522%3A%255B%257B%2522fieldName%2522%3A%2522acem__Zone__c%2522%2C%2522fieldType%2522%3A%2522ID%2522%2C%2522fieldValue%2522%3A%2522a4vVs0000002wkgIAA%2522%257D%255D%2C%2522tabCondition%2522%3A%2522Upcoming%2522%2C%2522textAreaConditions%2522%3A%255B%255D%2C%2522picklistConditions%2522%3A%255B%255D%2C%2522chatterGroupCondition%2522%3A%257B%2522chatterGroupId%2522%3Anull%257D%2C%2522page%2522%3A5%257D&chatterGroupId&utm_source&utm_medium&utm_campaign), Coté speaking, September 18th. SREDay London (https://sreday.com/2025-london-q3/), Coté speaking, September 18th and 19th. Civo Navigate London (https://www.civo.com/navigate/london/2025), Coté speaking, September 30th. Texas Linux Fest (https://2025.texaslinuxfest.org), Austin, October 3rd to 4th. CF Day EU (https://events.linuxfoundation.org/cloud-foundry-day-europe/), Coté speaking, Frankfurt, October 7th, 2025. AI for the Rest of Us (https://aifortherestofus.live/london-2025), Coté speaking, October 15th-16th, London. Use code SDT20 for 20% off. Wiz Wizdom Conferences (https://www.wiz.io/wizdom), NYC November 3-5, London November 17-19 SREDay Amsterdam (https://sreday.com/2025-amsterdam-q4/), Coté speaking, November 7th. SDT News & Community Join our Slack community (https://softwaredefinedtalk.slack.com/join/shared_invite/zt-1hn55iv5d-UTfN7mVX1D9D5ExRt3ZJYQ#/shared-invite/email) Email the show: questions@softwaredefinedtalk.com (mailto:questions@softwaredefinedtalk.com) Free stickers: Email your address to stickers@softwaredefinedtalk.com (mailto:stickers@softwaredefinedtalk.com) Follow us on social media: Twitter (https://twitter.com/softwaredeftalk), Threads (https://www.threads.net/@softwaredefinedtalk), Mastodon (https://hachyderm.io/@softwaredefinedtalk), LinkedIn (https://www.linkedin.com/company/software-defined-talk/), BlueSky (https://bsky.app/profile/softwaredefinedtalk.com) Watch us on: Twitch (https://www.twitch.tv/sdtpodcast), YouTube (https://www.youtube.com/channel/UCi3OJPV6h9tp-hbsGBLGsDQ/featured), Instagram (https://www.instagram.com/softwaredefinedtalk/), TikTok (https://www.tiktok.com/@softwaredefinedtalk) Book offer: Use code SDT for $20 off "Digital WTF" by Coté (https://leanpub.com/digitalwtf/c/sdt) Sponsor the show (https://www.softwaredefinedtalk.com/ads): ads@softwaredefinedtalk.com (mailto:ads@softwaredefinedtalk.com) Recommendations Brandon: Python: The Documentary | An origin story (https://www.youtube.com/watch?v=GfH4QL4VqJ0) Matt: macOS - Sound Output → another computer beats using a headphone switcher Coté: back to Obsidian (https://obsidian.md). Marriott lifetime platinum luggage tags (https://www.reddit.com/r/marriott/comments/17vtenx/life_time_platinum_luggage_tags_thats_it/), check out this deep dive (https://phillipsloop.com/2024/05/10/review-complimentary-marriott-bonvoy-lifetime-elite-gift/). Photo Credits Header (https://unsplash.com/photos/opera-house-sydney-australia-r2L6vCKaVRk)

Marty speaks about today's VisionOS 26 developer beta 9 explaining what is new for users and developers.visionOS 26 Beta 9 Release Noteshttps://developer.apple.com/documentation/visionos-release-notes/visionos-26-release-notes What AVP users will noticeApp Store now shows an Accessibility section on app pages (like a quick “nutrition label” before you download).Share a window from People View: tap Nearby to share with folks around you—or invite FaceTime callers.Mac Virtual Display looks cleaner—sharper edges in passthrough around your Mac/keyboard.Safari: the Clear button is back in the History sidebar. (Heads-up: immersive video can still trap the UI—force-quit if it happens.)Search crash fix rolled out via OTA; EyeSight reliably shows content again.AirDrop videos now open in Files; Messages gets a handful of small polish fixes.Known issue: Spotlight may show blank app icons in Siri Suggestions.Dev bits On-device AI hooks: apps can tap Apple's model directly; faster first responses = snappier features without the cloud.3D charts land in Swift Charts → expect true 3D data views in visionOS apps.Security tightening: default TLS 1.2+ for new builds; very old servers may break. Logs redact more by default.What I've read:- No Jupiter Environment- Still persistence issues for some users- Still widget anchoring problems for some usersEmail: ThePodTalkNetwork@gmail.comWebsite: ThePodTalk.Net

Topics covered in this episode: * rathole* * pre-commit: install with uv* A good example of what functools.Placeholder from Python 3.14 allows Converted 160 old blog posts with AI Extras Joke Watch on YouTube About the show Sponsored by DigitalOcean: pythonbytes.fm/digitalocean-gen-ai Use code DO4BYTES and get $200 in free credit Connect with the hosts Michael: @mkennedy@fosstodon.org / @mkennedy.codes (bsky) Brian: @brianokken@fosstodon.org / @brianokken.bsky.social Show: @pythonbytes@fosstodon.org / @pythonbytes.fm (bsky) Join us on YouTube at pythonbytes.fm/live to be part of the audience. Usually Monday at 10am PT. Older video versions available there too. Finally, if you want an artisanal, hand-crafted digest of every week of the show notes in email form? Add your name and email to our friends of the show list, we'll never share it. Michael #1: rathole A lightweight and high-performance reverse proxy for NAT traversal, written in Rust. An alternative to frp and ngrok. Features High Performance Much higher throughput can be achieved than frp, and more stable when handling a large volume of connections. Low Resource Consumption Consumes much fewer memory than similar tools. See Benchmark. The binary can be as small as ~500KiB to fit the constraints of devices, like embedded devices as routers. On my server, it's currently using about 2.7MB in Docker (wow!) Security Tokens of services are mandatory and service-wise. The server and clients are responsible for their own configs. With the optional Noise Protocol, encryption can be configured at ease. No need to create a self-signed certificate! TLS is also supported. Hot Reload Services can be added or removed dynamically by hot-reloading the configuration file. HTTP API is WIP. Brian #2: pre-commit: install with uv Adam Johnson pre-commit doesn't natively support uv, but you can get around that with pre-commit-uv $ uv tool install pre-commit --with pre-commit-uv Installing pre-commit like this Installs it globally Installs with uv adds an extra plugin “pre-commit-uv” to pre-commit, so that any Python based tool installed via pre-commit also uses uv Very cool. Nice speedup Brian #3: A good example of what functools.Placeholder from Python 3.14 allows Rodrigo Girão Serrão Remove punctuation functionally Also How to use functools.Placeholder, a blog post about it. functools.partial is cool way to create a new function that partially binds some parameters to another function. It doesn't always work for functions that take positional arguments. functools.Placeholder fixes that with the ability to put in placeholders for spots where you want to be able to pass that in from the outer partial binding. And all of this sounds totally obscure without a good example, so thank you to Rodgrigo for coming up with the punctuation removal example (and writeup) Michael #4: Converted 160 old blog posts with AI They were held-hostage at wordpress.com to markdown and integrated them into my Hugo site at mkennedy.codes Here is the chat conversation with Claude Opus/Sonnet. Had to juggle this a bit because the RSS feed only held the last 50. So we had to go back in and web scrape. That resulted in oddies like comments on wordpress that had to be cleaned etc. Whole process took 3-4 hours from idea to “production”duction”. The chat transcript is just the first round getting the RSS → Hugo done. The fixes occurred in other chats. This article is timely and noteworthy: Blogging service TypePad is shutting down and taking all blog content with it This highlights why your domain name needs to be legit, not just tied to the host. I'm looking at you pyfound.blogspot.com. I just redirected blog.michaelckennedy.net to mkennedy.codes Carefully mapping old posts to a new archived area using NGINX config. This is just the HTTP portion, but note the /sitemap.xml and location ~ "^/([0-9]{4})/([0-9]{2})/([0-9]{2})/(.+?)/?$" { portions. The latter maps posts such as https://blog.michaelckennedy.net/2018/01/08/a-bunch-of-online-python-courses/ to https://mkennedy.codes/posts/r/a-bunch-of-online-python-courses/ server { listen 80; server_name blog.michaelckennedy.net; # Redirect sitemap.xml to new domain location = /sitemap.xml { return 301 ; } # Handle blog post redirects for HTTP -> HTTPS with URL transformation # Pattern: /YYYY/MM/DD/post-slug/ -> location ~ "^/([0-9]{4})/([0-9]{2})/([0-9]{2})/(.+?)/?$" { return 301 ; } # Redirect all other HTTP URLs to mkennedy.codes homepage location / { return 301 ; } } Extras Brian: SMS URLs and Draft SMS and iMessage from any computer keyboard from Seth Larson Test and Code Archive is now up, see announcement Michael: Python: The Documentary | An origin story is out! Joke: Do you know him? He is me.

What are common mistakes folks are making with their Azure tenant(s)? While at the Kansas City Developers Conference, Richard chatted with Scott Sauber to run down his top ten list of issues he checks on for all his customers using Azure. From tenant ownership to naming conventions, policies, identities, and cost controls - there are a lot of things you can do to make your Azure experience more reliable, cost-effective, and efficient. Check out the links for more details on each of the potential issues!LinksAzure Service GroupsAzure Naming ConventionsAzure Naming ToolAzure Tagging StrategyAzure PolicyManaged IdentitiesDefaultAzureCredentialTLS in Azure App ServiceSSL LabsFederated Identity CredentialsBudgets and Cost AlertsAzure ReservationsAzure Savings PlanRecorded August 14, 2025

Are you panicked? Here are FACTS to help you and strategies that might benefit your thinking. Here are the links to all the sales: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠SAVE ON TRENDSPIDER - GET THE ANNUAL SUBSCRIPTION TO GET MY 4 HOUR ALGORITHM ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠

DigiCert is widely recognized for its expertise in PKI and as a TLS certificate authority. As you can imagine, they have a significant perspective on the quantum computing threat to encryption and the migration to post-quantum cryptography (PQC). We cover everything from the challenges of upgrading IoT devices to ML-DSA signature sizes, as well as the new DigiCert One platform the company offers to help manage the migration process. In the middle of this episode, you'll even get a clear summary of what a successful rollout to PQC looks like. Join host Konstantinos Karagiannis for a wide-ranging chat on actionable PQC steps you can take with Kevin Hilscher from DigiCert. There's even a Quantum Safe Playground to experiment with!For more information on DigiCert, visit www.digicert.com/.   Visit the Quantum Safe Playground at https://labs.digicert.com/quantum-safe.Visit Protiviti at www.protiviti.com/US-en/technology-consulting/quantum-computing-services to learn more about how Protiviti is helping organizations get post-quantum ready.  Follow host Konstantinos Karagiannis on all socials: @KonstantHacker and follow Protiviti on LinkedIn and Twitter: @Protiviti.     Questions and comments are welcome!  Theme song by David Schwartz, copyright 2021.Visit Protiviti at www.protiviti.com/US-en/technology-consulting/quantum-computing-services  to learn more about how Protiviti is helping organizations get post-quantum ready.  Follow host Konstantinos Karagiannis on all socials: @KonstantHacker and follow Protiviti Technology on LinkedIn and X: @ProtivitiTech.             Questions and comments are welcome!  Theme song by David Schwartz, copyright 2021.  The views expressed by the participants of this program are their own and do not represent the views of, nor are they endorsed by, Protiviti Inc., The Post-Quantum World, or their respective officers, directors, employees, agents, representatives, shareholders, or subsidiaries.  None of the content should be considered investment advice, as an offer or solicitation of an offer to buy or sell, or as an endorsement of any company, security, fund, or other securities or non-securities offering. Thanks for listening to this podcast. Protiviti Inc. is an equal opportunity employer, including minorities, females, people with disabilities, and veterans.  

Cloud computing giant Amazon Web Services (AWS) has added support for the ML-KEM post-quantum key encapsulation mechanism to secure TLS connections from potential quantum threats. You can listen to all of the Quantum Minute episodes at https://QuantumMinute.com. The Quantum Minute is brought to you by Applied Quantum, a leading consultancy and solutions provider specializing in quantum computing, quantum cryptography, quantum communication, and quantum AI. Learn more at https://AppliedQuantum.com.

Spiritual researcher and Unifyd TV founder Jason Shurka   @JasonShurka26 reveals the truth about the TLS organization, The Pyramid Code, and energy-based healing technologies  in episode 211 of the Far Out with Faust podcast.In this explosive episode, Faust and Jason explore the covert operations of TLS — a spiritually driven organization working to neutralize global darkness. Jason shares psychic downloads, miraculous healings, and a chilling firsthand account of the aftermath of a deadly ambush. From ancient architecture to suppressed energy tech, this conversation connects elite agendas, consciousness manipulation, and the awakening of humanity through energy, frequency, and vibration.In this episode:

Natalie is joined by Professors Islam Issa and Edith Hall to tell the story of the great library of Alexandria. It was included in Alexander the Great's original design for his city, located in the Nile Delta. Alexandria was to be a city of knowledge. The founders of the library were ambitious: they wanted nothing less than to collect all the books in the world. They were willing to pay huge sums, but they were also ruthless and unscrupulous. The Ptolemies would write to fellow rulers and wealthy friends and ask to borrow their priceless texts. Then the library would copy the scrolls, and return the copies. Or alternatively they'd just steal them. Handily, papyrus, the principal reading material of the era, grew in great abundance around Alexandria. So there was plenty of it for those copies. Less fortunately, it's extremely flammable. So in 48 BCE, when Julius Caesar's besieged army set fire to ships in the harbour in order to block the invading fleet, the fire spread and destroyed a significant part of the library.'Rockstar mythologist' Natalie Haynes is the best-selling author of 'Divine Might', 'Stone Blind', and 'A Thousand Ships' as well as a reformed comedian who is a little bit obsessive about Ancient Greek and Rome.Islam Issa is Professor of Literature and History at Birmingham City University. His book 'Alexandria, the City that Changed the World' is the Winner of the Runciman Award and The Times, Sunday Times, TLS, Booklist, Epoch Times and Waterstones Book of the Year.Edith Hall is Professor of Classics at Durham University, specialising in ancient Greek literature. She has written over thirty books and is a Fellow of the British Academy.Producer...Mary Ward-Lowery

Natalie is joined by Professors Islam Issa and Edith Hall to tell the story of the ancient city of Alexandria. Located on the Nile Delta, this spectacular and highly innovative city was founded by Alexander the Great around two and half thousand years ago. And like all great ideas, it came to him in a dream.'Rockstar mythologist' Natalie Haynes is the best-selling author of 'Divine Might', 'Stone Blind', and 'A Thousand Ships' as well as a reformed comedian who is a little bit obsessive about Ancient Greek and Rome. Islam Issa is Professor of Literature and History at Birmingham City University. His book 'Alexandria, the City that Changed the World' is the Winner of the Runciman Award and The Times, Sunday Times, TLS, Booklist, Epoch Times and Waterstones Book of the Year.Edith Hall is Professor of Classics at Durham University, specialising in ancient Greek literature. She has written over thirty books and is a Fellow of the British Academy.Producer...Mary Ward-Lowery

In this episode, Anna Rose and Nico Mohnblatt speak with Dan and Sinu from TLSNotary to trace the project's journey from early Bitcoin forum ideas to its current role as a foundational protocol maintained by PSE. Dan recounts the origins of TLSNotary as a tool for cryptographically proving web data, while Sinu explains how the project was revived to provide modern TLS attestation. The conversation covers the use-cases for verifiable web proofs, the different modes these interactive protocols can take, and the broader impact of this technology on leveraging siloed user data. Related links: Episode 325: Web Proofs with Tracy from Pluto Episode 354: The Founding of Zero Knowledge Systems with Austin Hill Episode 362: zkTLS with Maddy from Reclaim 2013 Blog Post ‘tlsnotary - cryptographic proof of fiat transfer for p2p exchanges' TLSNotary Whitepaper DECO: Liberating Web Data Using Decentralized Oracles for TLS Primus Labs (Previously PADO) Town Crier: An Authenticated Data Feed for Smart Contracts Check out the latest jobs in ZK at the ZK Podcast Jobs Board.  **If you like what we do:** * Find all our links here! @ZeroKnowledge | Linktree * Subscribe to our podcast newsletter * Follow us on Twitter @zeroknowledgefm * Join us on Telegram * Catch us on YouTube **Support the show:** *

Microsoft Patch Tuesday, July 2025 Today, Microsoft released patches for 130 Microsoft vulnerabilities and 9 additional vulnerabilities not part of Microsoft's portfolio but distributed by Microsoft. 14 of these are rated critical. Only one of the vulnerabilities was disclosed before being patched, and none of the vulnerabilities have so far been exploited. https://isc.sans.edu/diary/Microsoft%20Patch%20Tuesday%2C%20July%202025/32088 Opposum Attack If a TLS server is configured to allow switching from HTTP to HTTPS on a specific port, an attacker may be able to inject a request into the data stream. https://opossum-attack.com/ Ivanti Security Updates Ivanty fixed vulnerabilities in Ivanty Connect Secure, EPMM, and EPM. In particular the password decryption vulnerabliity may be interesting. https://www.ivanti.com/blog/july-security-update-2025

Interesting ssh/telnet usernames Some interesting usernames observed in our honeypots https://isc.sans.edu/diary/A%20few%20interesting%20and%20notable%20ssh%20telnet%20usernames/32080 More sudo trouble The host option in Sudo can be exploited to execute commands on unauthorized hosts. https://www.stratascale.com/vulnerability-alert-CVE-2025-32462-sudo-host CitrixBleed2 PoC Posted (CVE-2025-5777) WatchTwer published additional details about the recently patched CitrixBleed vulnerability, including a PoC exploit. https://labs.watchtowr.com/how-much-more-must-we-bleed-citrix-netscaler-memory-disclosure-citrixbleed-2-cve-2025-5777/ Instagram Using Six Day Certificates Instagram changes their TLS certificates daily and they use certificates that are just about to expire in a week. https://hereket.com/posts/instagram-single-day-certificates/