))
Every week, the ENDS team runs down the biggest green news stories, shines a spotlight on some pretty nasty chemicals, and takes a forensic look at one of the more deep-rooted environmental issues facing us today. Read more on the issues covered at www.endsreport.com or follow us on Twitter @TheENDSReport Hosted on Acast. See acast.com/privacy for more information.
…
continue reading
How we can as humans can help this problem.
…
continue reading
Freakonomics co-author Steve Levitt tracks down other high achievers for surprising, revealing conversations about their lives and obsessions. Join Levitt as he goes through the most interesting midlife crisis you’ve ever heard — and learn how a renegade sheriff is transforming Chicago's jail, how a biologist is finding the secrets of evolution in the Arctic tundra, and how a trivia champion memorized 160,000 flashcards. To get every show in the Freakonomics Radio Network without ads and a m ...
…
continue reading
1
The Green Elephant in the Room: Solutions To Restoring the Health of People and the Living Planet
Rico Verde
9
125
We all know about the doom and gloom associated with environmental issues. We need to tell ourselves a new story. Instead let's talk about energy independence, green jobs, livable cities, clean water, clean air, and healthy children. This is where politics, perceptions, and life-style meet the catastrophe that is unfolding in front of our eyes. Here's a suggestion — subscribe, tune-in, and stop doom-scrolling.
…
continue reading
Daily cybersecurity news for practitioners. Vulnerabilities, defenses, threats, network security insight, research and more to make you sound smarter as you get to the office in the morning. New each weekday.
…
continue reading
It is fair to conclude that in a democracy all policy is politics. Ergo, all policy interventions should also be seen through the prism of politics. In this podcast, Anil Padmanabhan will explore this intersection of politics and economics to try and give you a fresh perspective on the week that was. This is a Mint production, brought to you by HT Smartcast.
…
continue reading
Some global issue problem. We invite the guest and ask them questions.
…
continue reading
Climate change is here; it's happening. Find out what that means, why scientists are so sure and what we need to do now.
…
continue reading
The Pristine Ocean Podcast shares real stories about people fighting marine plastic pollution. Listen in for new insights how we are all connected in the task of keeping the oceans pristine.
…
continue reading
1
Robert Crocker, Somebody Else’s Problem - some key issues on consumption and the environment
Robert Crocker
11
This is an introductory talk on some of the key themes in my recent book, Somebody Else’s Problem: Consumerism, Sustainability and Design (Greenleaf UK), on the environmental impacts of everyday consumption, and the role of established systems and ‘post-cautionary ‘ forms of design and production, in locking in high carbon forms of consumption, pollution and waste. I argue that we need to ensure all environmental costs are included in the price of all goods and services consumed, but explain ...
…
continue reading
1
Care More Be Better: A Podcast For Sustainable Social Impact and Regeneration
Corinna Bellizzi
7314
Care More Be Better, invites you to care more so we can create a better world together. We amplify the voices of environmentalists, activists, health and nutrition gurus, scientists, and leading experts who seek to make the world a better place. Over the course of more than 250 interview episodes, you'll hear from experts like Jean-Michel Cousteau, Paul Hawken, Nina Simons, Dr. Wallace J. Nichols, Captain Liz Clark, Dr. William Li, Miyoko Schinner, John Roulac, Chef Babette Davis, Kelly Reye ...
…
continue reading
Inflection points are events that result in significant economic, environmental, geopolitical, societal and technological changes that shape our world. And our world is facing some of its toughest challenges yet: Clean water. Affordable energy. Connectivity. Climate change. Environmental pollution. Economic growth. Our Inflection Points solution briefings are a series of podcasts with Jacobs’ thought leaders and technologists, providing background on these critical issues, the challenges at ...
…
continue reading
This is a podcast to address the environmental issue of waste and water pollution. We believe this is a huge problem. Cover art photo provided by Vanessa Ives on Unsplash: https://unsplash.com/@vanessaives
…
continue reading
Jim Al-Khalili and guests work out how science can best be put to work to solve a pressing problem facing society.
…
continue reading
Series that demystifies health issues, separating fact from fiction and bringing clarity to conflicting health advice.
…
continue reading
Mohammed Abdalla's lifelong love of nature, combined with an eye-opening childhood loss, sparked a desire to study energy management and do his part to save the world through sustainability. After a stint on the wrong side of the pollution problem, Mohammed founded Good Faith Energy, a solar provider company that helps its customers take a big step towards decreasing their carbon footprint while saving them money. All those years of work on the front lines of sustainability work have given M ...
…
continue reading
Welcome to Plastic: The Last Straw, the podcast all about plastic! Join us on our journey from the invention of plastic, all the way to the very last straw, as we look at the plastics problem from the perspectives of a range of experts and organisations working in the field. This mini-series is produced by TuneFM at the University of New England and is created in partnership with the Environmental Protection Authority of NSW.
…
continue reading
Breaking news on the environment, climate change, pollution, and endangered species. Also featuring Climate Connections, a special series on climate change co-produced by NPR and National Geographic.
…
continue reading
EarthSayers Podcast Series is the newest initiative from EarthSayers.org, the pioneering search engine dedicated to curating the voices of sustainability for over 15 years. Born out of EarthSayers’ extensive archive of more than 5,000 educational videos, EarthSayers Cinema now brings full-length environmental and social documentaries to life on LinkedIn. These films highlight urgent issues across the UN’s Sustainable Development Goals (SDGs) while centering Indigenous wisdom and the voices o ...
…
continue reading
When we were making the script for the podcast our goal was to show how plastic is affecting the earth. It has impacted many things including us so if we do not stop it soon then there will be no more fish in the sea and we will be swimming in plastic. I don’t know if you could image that but it would be a really big problem and it would be too hard to fix that but right now we can do our best and find a solution. Cover art photo provided by Erik Eastman on Unsplash: https://unsplash.com/@er ...
…
continue reading
MIT News is dedicated to bringing news from the Massachusetts Institute of Technology (MIT) to the world. We cover research, innovation, teaching, entrepreneurship, and the Institute’s distinctive and quirky culture. We find ourselves educated and amazed by our community of hands-on problem-solvers who are eager to know how things work — and inspired to make them work better. We hope you are amazed, too.
…
continue reading
Join Jack and Ellie from Reuseabox as they chat with industry experts, sustainable business leaders and change-makers as they try to uncover the simplest ways to make your business better for people and the planet.
…
continue reading
Bloomberg Philanthropies’ “Follow the Data” podcast highlights how our work is driving change and making an impact in the areas of education, the arts, the environment, public health and government innovation. Here’s how the podcast works: our founder is a strong believer that “if you can’t measure it, you can’t manage it,” and data-driven strategies are at the core of our work. Each episode will begin with a key data point that gives insight into a problem we’re addressing through our uniqu ...
…
continue reading
On the Green Fence lives up to its name in looking at complex, often divisive environmental issues from multiple angles. It’s not about greenism, but about delving into the major concerns of our time in an engaging and human way. DW reporter Neil King sits on the fence and explores the role business, society and science play in our transition to a more environmentally friendly world. In so doing, he aims to make sense of issues that affect us all, but which are often over-simplified or convo ...
…
continue reading
Just a little bit of interesting facts about Post Malone. Cover art photo provided by Imthaz Ahamed on Unsplash: https://unsplash.com/@imthaz
…
continue reading
The energy revolution is coming, and it's all hands on deck. Amplifying the expertise of the leaders in the new energy economy and inviting diverse voices to the table, we'll talk solar power, battery storage and battery alternatives, microgrids, renewable energy, distributed energy architectures, energy policy, energy equity, and all things energy. I'm your host, Amy Simpkins, renewable energy CEO (and Rocket Scientist) and I am passionate about creating sustainable change. I believe that a ...
…
continue reading
On climate change, there are no boundaries for innovators and entrepreneurs. Discover action stories on climate change and what the future looks like. Listen for deep, insightful and thought provoking climate conversations.
…
continue reading
Learn how the world's leading engineers and innovators are changing the world on the Worldwide Engineering Podcast.
…
continue reading
Mahauliyati Mukalmay is an Urdu phrase which means "Conversations on Climate". This podcast series is an initiative of the Climate and Environment Initiative (CEI) at the Research Society of International Law, Pakistan (RSIL), an independent, non-partisan think tank based in Pakistan. CEI envisions a climate-resilient world that recognises that climate change threats are already unprecedented and potentially existential. We hope to encourage action to address those threats in a manner that i ...
…
continue reading
Tons of plastic continue to pile up in landfills and find their way in our oceans, and it only gets worse every single year. Judith Enck, founder and president of Beyond Plastics, is leading the charge against plastic pollution for decades. She joins Corinna Bellizzi to share what must be done to accelerate and improve efforts in reducing plastic u…
…
continue reading
1
Shannon Lovgren interviews Judith Enck, whose new book “The Problem with Plastic” reveals how plastic pollution harms our health and environment.
42:57
Episode Overview In this compelling conversation, host Shannon Lovgren sits down with Judith Enck, President of Beyond Plastics, former EPA Regional Administrator, long-time environmental advocate, and author of The Problem With Plastic: How We Can Save Ourselves and Our Planet Before It’s Too Late. Together, they explore one of the most urgent env…
…
continue reading
1
Eat to Beat Disease with Dr. William Li: A Special Bonus Episode from “Nutrition Without Compromise”
43:43
Guest: Dr. William W. Li, NYT-Bestselling Author of Eat to Beat Disease Originally Recorded: May 2022 on Nutrition Without Compromise Sponsor of Original Episode: ÖRLÖ NutritionCo-Hosts: Corinna Bellizzi & Tia WaldenThis episode is shared with permission from Nutrition Without Compromise and ORLO Nutrition. Episode Summary Today’s bonus episode com…
…
continue reading
1
SANS Stormcast Monday, December 22nd, 2025: TLS Callbacks; FreeBSD RCE; NIST Time Server Issues
6:00
DLLs & TLS Callbacks As a follow-up to last week's diary about DLL Entrypoints, Didier is looking at TLS ( Thread Local Storage ) and how it can be abused. https://isc.sans.edu/diary/DLLs%20%26%20TLS%20Callbacks/32580 FreeBSD Remote code execution via ND6 Router Advertisements A critical vulnerability in FreeBSD allows for remote code execution. Bu…
…
continue reading
In the last episode of the podcast, Stephen Dubner turns the microphone on Steve Levitt. They talk about Levitt’s favorite — and least favorite — moments from the show’s five-year run, his quest to reform education, and his next podcasting gig. SOURCES: Stephen Dubner, host of Freakonomics Radio, co-author of Freakonomics books. RESOURCES: "How to …
…
continue reading
SHOW NOTES Think we're doomed? The data tells a different story. More than half of young people worldwide believe humanity is headed for extinction, but when researchers examine the actual numbers, they find something surprising. Death rates from natural disasters have fallen tenfold since the 1920s. Child mortality dropped from 43% to 4% globally.…
…
continue reading
1
The Global Crossroads of Climate Policy: Progress, Pushback, and the Battle for a Regenerative Future
15:27
A Care More Be Better Solocast with Corinna Bellizzi This week, the global sustainability landscape delivered a swirl of conflicting signals — bold progress in some regions, dramatic rollbacks in others, and powerful reminders that our environmental challenges are deeply interconnected. In this solo episode, or "solocast," Corinna unpacks five majo…
…
continue reading
1
SANS Stormcast Friday, December 19th, 2025: Less Vulnerabie Devices; Critical OneView Vulnerablity; Trufflehog finds JWTs
4:37
Positive trends related to public IP range from the year 2025 Fewer ICS systems, as well as fewer systems with outdated SSL versions, are exposed to the internet than before. The trend isn t quite clean for ISC, but SSL2 and SSL3 systems have been cut down by about half. https://isc.sans.edu/diary/Positive%20trends%20related%20to%20public%20IP%20ra…
…
continue reading
The government has announced that the flagship nature policy, biodiversity net gain, is set to see substantial revisions in 2026 with development sites up to 0.2 hectares in size to be exempt from the requirement. Labour has also revised England’s national planning policy blueprint – the National Planning Policy Framework. On this week’s ECO Chambe…
…
continue reading
1
SANS Stormcast Thursday, December 18th, 2025: More React2Shell; Donicwall and Cisco Patch; Updated Chrome Advisory
6:10
Maybe a Little Bit More Interesting React2Shell Exploit Attackers are branching out to attack applications that initial exploits may have missed. The latest wave of attacks is going after less common endpoints and attempting to exploit applications that do not have Next.js exposed. https://isc.sans.edu/diary/Maybe%20a%20Little%20Bit%20More%20Intere…
…
continue reading
In this episode, we investigate the representation of working class voices in the UK’s environment sector, reveal exclusive ENDS analysis on the industry’s make-up and hear from those trying to break glass ceilings. New ENDS analysis shows that of more than 260 environmental professionals surveyed, more than two-thirds of respondents felt that work…
…
continue reading
1
Into The Hollow Age: How Climate Fiction Shapes Our Future with Cathryn Bancroft and Ali Horriyat
1:05:30
1:05:30
Riproduci in seguito
Riproduci in seguito
Liste
Like
Like aggiunto
1:05:30
Storytelling can inspire us to take action on the ever-worsening climate crisis. Ali Horriyat and Cathryn Bancroft join forces in writing a new cli-fi book, The Hollow Age, which dares to ask the question: if our planet burns, do we run to another planet or risk everything to save it? Together with Corinna Bellizzi, they discuss how they use fictio…
…
continue reading
1
SANS Stormcast Wednesday, December 17th, 2025: Beyond RC4; Forticloud SSO Vuln Exploited; FortiGate SSO Exploited;
6:38
Beyond RC4 for Windows authentication Microsoft outlined its transition plan to move away from RC4 for authentication and published guidance and tools to facilitate this change. https://www.microsoft.com/en-us/windows-server/blog/2025/12/03/beyond-rc4-for-windows-authentication FortiCloud SSO Login Vuln Exploited Arctic Wolf observed exploit attemp…
…
continue reading
1
SANS Stormcast Tuesday, December 16th, 2025: Current React2Shell Example; SAML woes; MSMQ issues after patch;
5:45
More React2Shell Exploits CVE-2025-55182 Our honeypots continue to detect numerous React2Shell variants. Some using slightly modified exploits https://isc.sans.edu/diary/More%20React2Shell%20Exploits%20CVE-2025-55182/32572 The Fragile Lock: Novel Bypasses For SAML Authentication SAML is a tricky protocol to implement correctly, in particular if dif…
…
continue reading
1
SANS Stormcast Monday, December 15th, 2025: DLL Entry Points; ClickFix and Finger; Apple Patches
6:45
Abusing DLLs EntryPoint for the Fun DLLs will not just execute code when some of their functions are called, but also as they are loaded. https://isc.sans.edu/diary/Abusing%20DLLs%20EntryPoint%20for%20the%20Fun/32562 Apple Patches Everything: December 2025 Edition Apple released patches for all of its operating systems, fixing two already exploited…
…
continue reading
The late Robert Solow was a giant among economists. When he was 98 years old he told Steve about cracking German codes in World War II, why it’s so hard to reduce inequality, and how his field lost its way. SOURCES: Robert Solow, professor emeritus of economics at the Massachusetts Institute of Technology. RESOURCES: "Secrecy, Cigars, and a Venetia…
…
continue reading
How much is enough at the holidays? In this solo episode of Care More Be Better, host Corinna Bellizzi reflects on the spirit of giving at Christmas and beyond: how we can shift from consumerism to connection, from “more stuff” to more meaning. Drawing inspiration from her earlier interview with Stephanie Seferian, host of Sustainable Minimalists a…
…
continue reading
1
SANS Stormcast Friday, December 12th, 2025: Local AI Models; Mystery Chrome 0-Day; SOAPwn Attack
6:56
Using AI Gemma 3 Locally with a Single CPU Installing AI models on modes hardware is possible and can be useful to experiment with these models on premise https://isc.sans.edu/diary/Using%20AI%20Gemma%203%20Locally%20with%20a%20Single%20CPU%20/32556 Mystery Google Chrome 0-Day Vulnerability Google released an update for Google Chrome fixing a vulne…
…
continue reading
1
SANS Stormcast Thursday, December 11th, 2025: Possible CVE-2024-9042 variant; react2shell exploits; notepad++ update hijacking; macOS priv escalation
6:58
Possible exploit variant for CVE-2024-9042 (Kubernetes OS Command Injection) We observed HTTP requests with our honeypot that may be indicative of a new version of an exploit against an older vulnerability. Help us figure out what is going on. https://isc.sans.edu/diary/Possible%20exploit%20variant%20for%20CVE-2024-9042%20%28Kubernetes%20OS%20Comma…
…
continue reading
The economist John Fingleton has published his recommendations to streamline planning laws for the development of UK nuclear power – and they could have implications far beyond the nuclear industry. The prime minister Sir Keir Starmer has endorsed all of Fingleton’s recommendations and in a speech last week, promised to go further citing “well-inte…
…
continue reading
The skin is our biggest detoxification organ, and yet we put things on it that we do not fully understand. To avoid compromising your overall health with poorly made moisturizers and sunscreens, now is the time to give regenerative skincare products a try. Corinna Bellizzi is joined by Megan Douglas, fifth-generation herbalist and founder of The Or…
…
continue reading
1
SANS Stormcast Wednesday, December 10th, 2025: Microsoft, Adobe, Ivanti, Fortinet, and Ruby patches.
8:04
Microsoft Patch Tuesday Microsoft released its regular monthly patch on Tuesday, addressing 57 flaws. https://isc.sans.edu/diary/Microsoft%20Patch%20Tuesday%20December%202025/32550 Adobe Patches Adobe patched five products. The remote code execution in ColdFusion, as well as the code execution issue in Acrobat, will very likely see exploits soon. h…
…
continue reading
SHOW NOTES You've been recycling for years, diligently sorting your bins and feeling good about doing your part. But what if the whole system was designed to fail from the start? In this episode, we reveal the uncomfortable truth about recycling rates, industry deception, and why the companies making plastic never wanted recycling to work in the fi…
…
continue reading
1
SANS Stormcast Tuesday, December 9th, 2025: nanoKVM Vulnerabilities; Ghostframe Phishing; WatchGuard Advisory
6:26
nanoKVM Vulnerabilities The nanoKVM device updates firmware insecurely; however, the microphone that the authors of the advisory referred to as undocumented may actually be documented in the underlying hardware description. https://www.tomshardware.com/tech-industry/cyber-security/researcher-finds-undocumented-microphone-and-major-security-flaws-in…
…
continue reading
1
SANS Stormcast Monday, December 8th, 2025: AutoIT3 FileInstall; React2Shell Update; Tika Vuln
5:34
AutoIT3 Compiled Scripts Dropping Shellcodes Malicious AutoIT3 scripts are usign the FileInstall function to include additional scripts at compile time that are dropped as temporary files during execution. https://isc.sans.edu/diary/AutoIT3%20Compiled%20Scripts%20Dropping%20Shellcodes/32542 React2Shell Update The race is on to patch vulnerable syst…
…
continue reading
Michael Crow is the president of Arizona State University, which U.S. News & World Report has called the most innovative school in the country for 11 years running. He tells Steve about why higher education needs to change, and how A.S.U. is leading the way. Plus: Steve has an announcement about the podcast. SOURCES: Michael Crow, president of Ariz…
…
continue reading
1
SANS Stormcast Friday, December 5th, 2025: Compromised Govt System; React Vuln Update; Array Networks VPN Attacks
4:35
Nation-State Attack or Compromised Government? [Guest Diary] An IP address associated with the Indonesian Government attacked one of our interns' honeypots. https://isc.sans.edu/diary/Nation-State%20Attack%20or%20Compromised%20Government%3F%20%5BGuest%20Diary%5D/32536 React Update Working exploits for the React vulnerability patched yesterday are n…
…
continue reading
1
SANS Stormcast Thursday, December 4th, 2025: CDN Headers; React Vulnerabiity; PickleScan Patch
6:44
Attempts to Bypass CDNs Our honeypots recently started receiving scans that included CDN specific headers. https://isc.sans.edu/diary/Attempts%20to%20Bypass%20CDNs/32532 React Vulnerability CVE-2025-55182 React patched a critical vulnerability in React server components. Exploitation is likely imminent. https://react.dev/blog/2025/12/03/critical-se…
…
continue reading
This week the government published its long-awaited Environmental Improvement plan. The report is intended to lay out how the government will deliver on the Environment Act 2021’s legally-binding targets. The reception has been mixed – but why has the prime minister’s words on the day sparked debate? On this week’s podcast, ECO Chamber host, James …
…
continue reading
1
SANS Stormcast Wednesday, December 3rd, 2025: SmartTube Compromise; NPM Malware Prompt Injection Attempt; Angular XSS Vulnerability
6:06
SmartTube Android App Compromise The key a developer used to sign the Android YouTube player SmartTube was compromised and used to publish a malicious version. https://github.com/yuliskov/SmartTube/issues/5131#issue-3670629826 https://github.com/yuliskov/SmartTube/releases/tag/notification Two Years, 17K Downloads: The NPM Malware That Tried to Gas…
…
continue reading
Climate investor and philanthropist Tom Steyer, recipient of the 2025 Charles David Keeling Memorial Lecture, talks about the current and future state of energy. In a conversation with Scott Lewis of Voice of San Diego, Steyer argues that capitalism and policy must work together at scale, and highlights the marketplace rise of renewables like solar…
…
continue reading
EPISODE SHOW-NOTES For decades, we knew plastic was a problem. Scientists published papers. Environmentalists raised alarms. But knowing and seeing are two very different things. In 2015, a sea turtle with a plastic straw lodged in its nostril changed everything. That eight-minute video of agony went viral with over 110 million views, and suddenly …
…
continue reading
1
SANS Stormcast Tuesday, December 2nd, 2025: Analyzing ToolShell from Packdets; Android Update; Long Game Malicious Browser Ext.
5:49
Hunting for SharePoint In-Memory ToolShell Payloads A walk-through showing how to analyze ToolShell payloads, starting with acquiring packets all the way to decoding embedded PowerShell commands. https://isc.sans.edu/diary/%5BGuest%20Diary%5D%20Hunting%20for%20SharePoint%20In-Memory%20ToolShell%20Payloads/32524 Android Security Bulletin December 20…
…
continue reading
1
SANS Stormcast Monday, December 1st, 2025: More ClickFix; Teams Guest Access; Geoserver XXE Vulnerablity
5:42
Fake adult websites pop realistic Windows Update screen to deliver stealers via ClickFix The latest variant of ClickFix tricks users into copy/pasting commands by displaying a fake blue screen of death. https://www.acronis.com/en/tru/posts/fake-adult-websites-pop-realistic-windows-update-screen-to-deliver-stealers-via-clickfix/ B2B Guest Access Cre…
…
continue reading
Climate negotiations at COP30 in Belém, Brazil have come to an end. On this week’s podcast, ECO Chamber special guest Dr Timo Leiter from the Grantham Research Institute on Climate Change and the Environment, and a veteran of eight international climate conferences, shares his insights on the latest summit. The ENDS Report team discusses the progre…
…
continue reading
1
SANS Stormcast Wednesday, November 26th, 2025: Attacks Against Messaging; Passwords in Random Websites; Fluentbit Vuln; #thanksgiving
6:07
Spyware Allows Cyber Threat Actors to Target Users of Messaging Applications Spyware attacks messaging applications in part by triggering vulnerabilities in messaging applications but also by deploying tools like keystroke loggers and screenshot applications. https://www.cisa.gov/news-events/alerts/2025/11/24/spyware-allows-cyber-threat-actors-targ…
…
continue reading
SHOW-NOTES WHY THREE EPISODES ON PLASTIC? You already know plastic is bad. You've heard about ocean garbage patches and sea turtles with straws in their noses. You've been told to recycle and use reusable bags. So why spend three full episodes on something you already understand? Because almost everything you think you know about the plastic crisis…
…
continue reading
1
SANS Stormcast Tuesday, November 25th, 2025: URL Mapping and Authentication; SHA1-Hulud; Hacklore
6:11
Conflicts between URL mapping and URL based access control. Mapping different URLs to the same script, and relying on URL based authentication at the same time, may lead to dangerous authentication and access control gaps. https://isc.sans.edu/diary/Conflicts%20between%20URL%20mapping%20and%20URL%20based%20access%20control./32518 Sha1-Hulud, The Se…
…
continue reading
Shared with permission from The Get Obsessed With Living Your Best Life Podcast - hosted by Julie Lokun. This week, I’m excited to share a powerful conversation from my podcasting colleague and business bestie, Julie Lokun, host of Get Obsessed With Your Life. Julie sits down with Jim Kwik, the world’s leading brain coach and author of the bestsell…
…
continue reading
1
SANS Stormcast Monday, November 24th, 2025: CSS Padding in Phishing; Oracle Identity Manager Scans Update;
4:59
Use of CSS stuffing as an obfuscation technique? Phishing sites stuff their HTML with benign CSS code. This is likely supposed to throw of simple detection engines https://isc.sans.edu/diary/Use%20of%20CSS%20stuffing%20as%20an%20obfuscation%20technique%3F/32510 Critical Oracle Identity Manager Flaw Possibly Exploited as Zero-Day Early exploit attem…
…
continue reading
Michael Greenstone knows it’s corny, but he wants to make the world a better place — by tracking the impact of air quality, developing pollution markets in India, and … starting a podcast, which Steve says proves he’s over the hill. SOURCES: Michael Greenstone, professor of economics at the University of Chicago. RESOURCES: "New evidence on the imp…
…
continue reading
1
SANS Stormcast Friday, November 21st, 2025: Oracle Idendity Manager Scans; SonicWall DoS Vuln; Adam Wilson (@sans_edu) reducing prompt injection.
14:09
Oracle Identity Manager Exploit Observation from September (CVE-2025-61757) We observed some exploit attempts in September against an Oracle Identity Manager vulnerability that was patched in October, indicating that exploitation may have occurred prior to the patch being released. https://isc.sans.edu/diary/Oracle%20Identity%20Manager%20Exploit%20…
…
continue reading
Once dubbed an "economic miracle”, things don't run like they used to in Germany. This new DW original podcast endeavors to find out how Germany lost its magic and who’s got it now? Traveling beyond Germany — to India, France, Switzerland, and Denmark— the show explores how others are getting things right, and what Europe's former Wunderkind might …
…
continue reading
1
SANS Stormcast Thursday, November 20th, 2025: Unicode Issues; FortiWeb More Vulns; DLink DIR-878 Vuln; Operation WrtHug and ASUS Routers
6:34
Unicode: It is more than funny domain names. Unicode can cause a number of issues due to odd features like variance selectors and text direction issues. https://isc.sans.edu/diary/Unicode%3A%20It%20is%20more%20than%20funny%20domain%20names./32472 FortiWeb Multiple OS command injection in API and CLI A second silently patched vulnerability in FortiW…
…
continue reading
The Planning and Infrastructure Bill is nearing the end of its controversial passage in the House of Lords, with NGO lobby groups trying to come up with a compromise in a last minute huddle. Will they succeed? At the same time, a High Court challenge and a new report from the Environmental Audit Committee has added more fuel to the fire. The team a…
…
continue reading
With the increasing number of huge industrial mills across the country, one of the most essential parts of our food system is also being industrialized: flour. Kevin Morse, CEO and co-founder of Cairnspring Mills, talks about his mission to bring organic flour into the mainstream market and the important role of community-rooted mills in achieving …
…
continue reading
KongTuke Activity This diary investigates how a recent Kong Tuke infections evolved all the way from starting with a ClickFix attack. https://isc.sans.edu/diary/KongTuke%20activity/32498 Cloudflare Outage Cloudflare suffered a large outage today after an oversized configuration file was loaded into its bot protection service https://x.com/dok2001 G…
…
continue reading
1
SANS Stormcast Tuesday, November 18th, 2025: Binary Expression Decoding. Tea NPM Pollution; IBM AIX NIMSH Vulnerability
4:58
Decoding Binary Numeric Expressions Didier updated his number to hex script to support simple arithmetic operations in the text. https://isc.sans.edu/diary/Decoding%20Binary%20Numeric%20Expressions/32490 Tea Token NPM Pollution The NPM repository was hit with around 150,000 submissions that did not contain any useful contributions, but instead atte…
…
continue reading
1
SANS Stormcast Monday, November 17th, 2025: New(isch) Fortiweb Vulnerability; Finger and ClickFix
7:10
Fortiweb Vulnerability Fortinet, with significant delay, acknowledged a recently patched vulnerability after exploit attempts were seen publicly. https://isc.sans.edu/diary/Honeypot+FortiWeb+CVE202564446+Exploits/32486 https://labs.watchtowr.com/when-the-impersonation-function-gets-used-to-impersonate-users-fortinet-fortiweb-auth-bypass/ https://fo…
…
continue reading
Suleika Jaouad was diagnosed with cancer at 22. She made her illness the subject of a New York Times column and a memoir, Between Two Kingdoms. She and Steve talk about what it means to live with a potentially fatal illness, how to talk to people who've gone through a tragedy, and ways to encourage medical donations. SOURCES: Suleika Jaouad, author…
…
continue reading
