Johannes wrote a diary entry “Increasing Searches for ZIP Files” where he analyzed the increase of requests for ZIP files (like backup.zip, web.zip, …) for our web honeypots. I took a look at my logs, and...
Read MoreOverview LangChainGo, the Go implementation of LangChain, a large language model (LLM) application building framework, has been discovered to contain an arbitrary file read vulnerability. The vulnerability, tracked as...
Read More
Since the last update [5], over the past few months I added several enhancements to DShield SIEM...
Read MoreOverview Two local security vulnerabilities have been identified in Sunshine for Windows, version v2025.122.141614 (and likely prior versions). These issues could allow attackers to execute arbitrary code and escalate privileges...
Read MoreThe Lab-Based Drug Checking Standards Meeting is a two-day event designed to bring together scientists involved in lab-based drug checking, specifically for public health applications. In this meeting we will discuss current...
Read MoreAs part of its September patch Tuesday, Microsoft addressed 177 different vulnerabilities, 86 of which affect Microsoft products. None of the vulnerabilities has been exploited before today. Two of the vulnerabilities were...
Read MoreOverview The Amp’ed RF BT-AP 111 Bluetooth Access Point exposes an HTTP-based administrative interface without authentication controls. This allows an unauthenticated remote attacker to gain full administrative access to the...
Read MoreEvent name: STPPA #8: Special Topics on Privacy and Public Auditability, Event 8 Date: September 18, 2025 Details and registration: https://csrc.nist.gov/events/2025/stppa8 Event theme: Experimenting with privacy-enhancing...
Read MoreOverview Hiawatha is an open-source web server that supports Windows, MacOS X and a variety of Linux distributions. Hiawatha was focused on performance and is used in place of larger, more complex web servers. The fetch_request...
Read MoreThis weekend, I noticed three related headers being used in requests to some of our honeypots for the first time [1]: Signature-Input Signature-Agent Signature These headers are related to a relatively new feature, HTTP Message...
Read MoreForensic Science Standards Board (FSSB) fall quarterly meeting for members of the FSSB. Please note: This event is intended for members of the Forensic Science Standards Board only. To request registration consideration, please...
Read MoreDespite the growing potential of mathematical modeling and simulation to transform industrial radiation sterilization, widespread adoption remains limited. This stems not from technical constraints, but from a lack of shared...
Read More