SANS.edu Internet Storm Center
@sansisc.bsky.social
http://isc.sans.edu - Global Network Security Information Sharing Community - Daily blogs and cyber security news podcast.
A phishing campaign with QR codes rendered using an HTML table https://isc.sans.edu/diary/32606
January 7, 2026 at 9:36 AM
A phishing campaign with QR codes rendered using an HTML table https://isc.sans.edu/diary/32606
SANS Stormcast Wednesday, January 7th, 2026: Tailsnitch Review; D-Link DSL EoL Vuln; TOTOLINK Unpatched Vuln
https://isc.sans.edu/podcastdetail/9756
https://isc.sans.edu/podcastdetail/9756
January 7, 2026 at 5:30 AM
SANS Stormcast Wednesday, January 7th, 2026: Tailsnitch Review; D-Link DSL EoL Vuln; TOTOLINK Unpatched Vuln
https://isc.sans.edu/podcastdetail/9756
https://isc.sans.edu/podcastdetail/9756
Tool Review: Tailsnitch https://isc.sans.edu/diary/32602
January 6, 2026 at 2:11 PM
Tool Review: Tailsnitch https://isc.sans.edu/diary/32602
SANS Stormcast Tuesday, January 6th, 2026: IPKVM Risks; Tailsnitch; Net-SNMP Vuln;
https://isc.sans.edu/podcastdetail/9754
https://isc.sans.edu/podcastdetail/9754
January 6, 2026 at 5:26 AM
SANS Stormcast Tuesday, January 6th, 2026: IPKVM Risks; Tailsnitch; Net-SNMP Vuln;
https://isc.sans.edu/podcastdetail/9754
https://isc.sans.edu/podcastdetail/9754
Risks of OOB Access via IP KVM Devices https://isc.sans.edu/diary/32598
January 5, 2026 at 5:36 PM
Risks of OOB Access via IP KVM Devices https://isc.sans.edu/diary/32598
SANS Stormcast Monday, January 5th, 2026: MongoBleed/React2Shell Recap; Crypto Scams; DNS Stats; Old Fortinet Vulns
https://isc.sans.edu/podcastdetail/9752
https://isc.sans.edu/podcastdetail/9752
January 5, 2026 at 5:25 AM
SANS Stormcast Monday, January 5th, 2026: MongoBleed/React2Shell Recap; Crypto Scams; DNS Stats; Old Fortinet Vulns
https://isc.sans.edu/podcastdetail/9752
https://isc.sans.edu/podcastdetail/9752
ISC Diary: Cryptocurrency Scam Emails and Web Pages As We Enter 2026 https://isc.sans.edu/diary/32594
January 4, 2026 at 5:25 AM
ISC Diary: Cryptocurrency Scam Emails and Web Pages As We Enter 2026 https://isc.sans.edu/diary/32594
Debugging DNS with tshark https://isc.sans.edu/diary/32592
January 2, 2026 at 3:45 PM
Debugging DNS with tshark https://isc.sans.edu/diary/32592
SANS Stormcast Sunday, December 28th, 2025: MongoDB Unauthenticated Memory Leak CVE-2025-14847
https://isc.sans.edu/podcastdetail/9750
https://isc.sans.edu/podcastdetail/9750
December 28, 2025 at 5:10 AM
SANS Stormcast Sunday, December 28th, 2025: MongoDB Unauthenticated Memory Leak CVE-2025-14847
https://isc.sans.edu/podcastdetail/9750
https://isc.sans.edu/podcastdetail/9750
SANS Stormcast Monday, December 22nd, 2025: TLS Callbacks; FreeBSD RCE; NIST Time Server Issues
https://isc.sans.edu/podcastdetail/9748
https://isc.sans.edu/podcastdetail/9748
December 22, 2025 at 4:50 AM
SANS Stormcast Monday, December 22nd, 2025: TLS Callbacks; FreeBSD RCE; NIST Time Server Issues
https://isc.sans.edu/podcastdetail/9748
https://isc.sans.edu/podcastdetail/9748
DLLs & TLS Callbacks https://isc.sans.edu/diary/32580
December 19, 2025 at 10:55 AM
DLLs & TLS Callbacks https://isc.sans.edu/diary/32580
SANS Stormcast Friday, December 19th, 2025: Less Vulnerabie Devices; Critical OneView Vulnerablity; Trufflehog finds JWTs
https://isc.sans.edu/podcastdetail/9746
https://isc.sans.edu/podcastdetail/9746
December 19, 2025 at 4:45 AM
SANS Stormcast Friday, December 19th, 2025: Less Vulnerabie Devices; Critical OneView Vulnerablity; Trufflehog finds JWTs
https://isc.sans.edu/podcastdetail/9746
https://isc.sans.edu/podcastdetail/9746
Positive trends related to public IP ranges from the year 2025 https://isc.sans.edu/diary/32584
December 18, 2025 at 8:11 AM
Positive trends related to public IP ranges from the year 2025 https://isc.sans.edu/diary/32584
SANS Stormcast Thursday, December 18th, 2025: More React2Shell; Donicwall and Cisco Patch; Updated Chrome Advisory
https://isc.sans.edu/podcastdetail/9744
https://isc.sans.edu/podcastdetail/9744
December 18, 2025 at 4:45 AM
SANS Stormcast Thursday, December 18th, 2025: More React2Shell; Donicwall and Cisco Patch; Updated Chrome Advisory
https://isc.sans.edu/podcastdetail/9744
https://isc.sans.edu/podcastdetail/9744
Maybe a Little Bit More Interesting React2Shell Exploit https://isc.sans.edu/diary/32578
December 17, 2025 at 5:15 PM
Maybe a Little Bit More Interesting React2Shell Exploit https://isc.sans.edu/diary/32578
SANS Stormcast Wednesday, December 17th, 2025: Beyond RC4; Forticloud SSO Vuln Exploited; FortiGate SSO Exploited;
https://isc.sans.edu/podcastdetail/9742
https://isc.sans.edu/podcastdetail/9742
December 17, 2025 at 4:45 AM
SANS Stormcast Wednesday, December 17th, 2025: Beyond RC4; Forticloud SSO Vuln Exploited; FortiGate SSO Exploited;
https://isc.sans.edu/podcastdetail/9742
https://isc.sans.edu/podcastdetail/9742
SANS Stormcast Tuesday, December 16th, 2025: Current React2Shell Example; SAML woes; MSMQ issues after patch;
https://isc.sans.edu/podcastdetail/9740
https://isc.sans.edu/podcastdetail/9740
December 16, 2025 at 4:45 AM
SANS Stormcast Tuesday, December 16th, 2025: Current React2Shell Example; SAML woes; MSMQ issues after patch;
https://isc.sans.edu/podcastdetail/9740
https://isc.sans.edu/podcastdetail/9740
More React2Shell Exploits CVE-2025-55182 https://isc.sans.edu/diary/32572
December 15, 2025 at 1:21 PM
More React2Shell Exploits CVE-2025-55182 https://isc.sans.edu/diary/32572
SANS Stormcast Monday, December 15th, 2025: DLL Entry Points; ClickFix and Finger; Apple Patches
https://isc.sans.edu/podcastdetail/9738
https://isc.sans.edu/podcastdetail/9738
December 15, 2025 at 4:45 AM
SANS Stormcast Monday, December 15th, 2025: DLL Entry Points; ClickFix and Finger; Apple Patches
https://isc.sans.edu/podcastdetail/9738
https://isc.sans.edu/podcastdetail/9738
Wireshark 4.6.2 Released https://isc.sans.edu/diary/32568
December 14, 2025 at 4:11 PM
Wireshark 4.6.2 Released https://isc.sans.edu/diary/32568
Apple Patches Everything: December 2025 Edition https://isc.sans.edu/diary/32564
December 12, 2025 at 7:50 PM
Apple Patches Everything: December 2025 Edition https://isc.sans.edu/diary/32564
Abusing DLLs EntryPoint for the Fun https://isc.sans.edu/diary/32562
December 12, 2025 at 5:11 AM
Abusing DLLs EntryPoint for the Fun https://isc.sans.edu/diary/32562
SANS Stormcast Friday, December 12th, 2025: Local AI Models; Mystery Chrome 0-Day; SOAPwn Attack
https://isc.sans.edu/podcastdetail/9736
https://isc.sans.edu/podcastdetail/9736
December 12, 2025 at 4:45 AM
SANS Stormcast Friday, December 12th, 2025: Local AI Models; Mystery Chrome 0-Day; SOAPwn Attack
https://isc.sans.edu/podcastdetail/9736
https://isc.sans.edu/podcastdetail/9736
Using AI Gemma 3 Locally with a Single CPU https://isc.sans.edu/diary/32556
December 11, 2025 at 4:40 AM
Using AI Gemma 3 Locally with a Single CPU https://isc.sans.edu/diary/32556
SANS Stormcast Thursday, December 11th, 2025: Possible CVE-2024-9042 variant; react2shell exploits; notepad++ update hijacking; macOS priv escalation
https://isc.sans.edu/podcastdetail/9734
https://isc.sans.edu/podcastdetail/9734
December 11, 2025 at 4:40 AM
SANS Stormcast Thursday, December 11th, 2025: Possible CVE-2024-9042 variant; react2shell exploits; notepad++ update hijacking; macOS priv escalation
https://isc.sans.edu/podcastdetail/9734
https://isc.sans.edu/podcastdetail/9734