Best Research Excellence Framework Podcasts (2025)

1
#367 - Tylenol, pregnancy, and autism: What recent studies show and how to interpret the data 1:27:09

Play Pause

7m ago1:27:09

1:27:09

View the Show Notes Page for This Episode Become a Member to Receive Exclusive Content Sign Up to Receive Peter’s Weekly Newsletter In this special episode of The Drive, Peter addresses the recent headlines linking acetaminophen (Tylenol) use during pregnancy to autism in exposed children. Recognizing the confusion these claims have sparked among p…

1
SANS Stormcast Monday, October 6th, 2025: Oracle 0-Day 6:28

12m ago6:28

6:28

Oracle E-Business Suite 0-Day �CVE-2025-61882 Last week, the Cl0p ransomware gang sent messages to many businesses stating that an Oracle E-Business Suite vulnerability was used to exfiltrate data. Initially, Oracle believed the root cause to be a vulnerability patched in June, but now Oracle released a patch for a new vulnerability. https://www.or…

1
Stronger Together Ep 7: PPA Summit, ACSI's New Board Chair, Accreditation, & a Student Revival 14:32

6h ago14:32

14:32

Hear about the 2025 Public Policy & Advocacy Summit that just wrapped up in D.C., get to know ACSI's new Board Chair, Elisa Carlson, and enjoy a spotlight on an ACSI school seeing a revival in its student body. For more on ACSI accreditation, visit acsi.org/accreditation.By ACSI

1
SANS Stormcast Friday, October 3rd, 2025: More .well-known Scans; RedHat Openshift Patch; TOTOLINK Vuln; 6:35

8m ago6:35

6:35

More .well-known scans Attackers are using API documentation automatically published in the .well-known directory for reconnaissance. https://isc.sans.edu/diary/More%20.well-known%20Scans/32340 RedHat Patches Openshift AI Services A flaw was found in Red Hat Openshift AI Service. A low-privileged attacker with access to an authenticated account, fo…

1
SANS Stormcast Thursday, October 2nd, 2025: Honeypot Passwords; OneLogin Vuln; Breaking Intel SGX; OpenSSL Patch 8:11

6m ago8:11

8:11

Comparing Honeypot Passwords with HIBP Most passwords used against our honeypots are also found in the Have I been pwn3d list. However, the few percent that are not found tend to be variations of known passwords, extending them to find likely mutations. https://isc.sans.edu/diary/%5BGuest%20Diary%5D%20Comparing%20Honeypot%20Passwords%20with%20HIBP/…

1
SANS Stormcast Wednesday, October 1st, 2025: Cookie Auth Issues; Western Digtial Command Injection; sudo exploited; 5:10

5m ago5:10

5:10

Sometimes you don t even need to log in Applications using simple, predictable cookies to verify a user s identity are still exploited, and relatively recent vulnerabilities are still due to this very basic mistake. https://isc.sans.edu/diary/%22user%3Dadmin%22.%20Sometimes%20you%20don%27t%20even%20need%20to%20log%20in./32334 Western Digital My Clo…

1
SANS Stormcast Tuesday, September 30th, 2025: Apple Patch; PAN Global Protect Scans; SSL.com signed malware 5:06

10h ago5:06

5:06

Apple Patches Apple released patches for iOS, macOS, and visionOS, fixing a single font parsing vulnerability https://isc.sans.edu/diary/Apple%20Patches%20Single%20Vulnerability%20CVE-2025-43400/32330 Increase in Scans for Palo Alto Global Protect Vulnerability (CVE-2024-3400). Our honeypots detected an increase in scans for a Palo Alto Global Prot…

1
Episode 3: Su Yeong Kim on Choosing the Right PhD Program: Funding, Location, and Culture 7:34

1d ago7:34

7:34

In this episode of Ask Dr. Su Yeong Kim, Professor Su Yeong Kim from the University of Texas at Austin shares essential guidance for students evaluating PhD program offers. Drawing on her extensive experience in graduate education and research, she highlights the three most critical factors to consider: funding, location, and culture. Dr. Su Yeong …

1
#366 ‒ Transforming education with AI and an individualized, mastery-based education model | Joe Liemandt 1:47:22

1d ago1:47:22

1:47:22

View the Show Notes Page for This Episode Become a Member to Receive Exclusive Content Sign Up to Receive Peter’s Weekly Newsletter Joe Liemandt is a software entrepreneur turned education reformer who left Stanford in 1989 to found Trilogy, a highly profitable private software company, before pivoting to transforming K-12 learning. In this episode…

1
SANS Stormcast Monday, September 29th, 2025: Convert Timestamps; Cisco Compromises; GitHub Notification Phishing 8:36

1d ago8:36

8:36

Converting Timestamps in .bash_history Unix shells offer the ability to add timestamps to commands in the .bash_history file. This is often done in the form of Unix timestamps. This new tool converts these timestamps into a more readable format. https://isc.sans.edu/diary/New%20tool%3A%20convert-ts-bash-history.py/32324 Cisco ASA/FRD Compromises Ex…

1
Grafted Together Ep 21: Pursuing Excellence and Righteousness in Sports, with Billy Sparacio 1:10:29

4d ago1:10:29

1:10:29

Billy Sparacio brings nearly 30 years of experience in high school athletics, and he uses sports as a platform to mold young men and women for life beyond the game. Learn more about Spiritual Formation Network meetings: https://www.acsi.org/professional-development/connect-with-networking-groups The Grafted Together Podcast examines how biblical wo…

1
The evolving role of DevProd teams in the AI era 37:11

4d ago37:11

37:11

CEO Abi Noda is joined by DX CTO Laura Tacho to discuss the evolving role of Platform and DevProd teams in the AI era. Together, they unpack how AI is reshaping platform responsibilities, from evaluation and rollout to measurement, tool standardization, and guardrails. They explore why fundamentals like documentation and feedback loops matter more …

1
SANS Stormcast Friday, September 26th, 2025: Webshells in .well-known; Critical Cisco Vulns Exploited; XCSSET Update; GoAnywhere MFT Exploit Details 6:52

4d ago6:52

6:52

Webshells Hiding in .well-known Places Our honeypots registered an increase in scans for URLs in the .well-known directory, which appears to be looking for webshells. https://isc.sans.edu/diary/Webshells%20Hiding%20in%20.well-known%20Places/32320 Cisco Patches Critical Exploited Vulnerabilities Cisco released updates addressing already-exploited vu…

1
SANS Stormcast Thursday, September 25th, 2025: Hikvision Exploits; Cisco Patches; Sonicawall Anit-Rootkit Patch; Windows 10 Support 5:33

6d ago5:33

5:33

Exploit Attempts Against Older Hikvision Camera Vulnerability Out honeypots observed an increase in attacks against some older Hikvision issues. A big part of the problem is weak passwords, and the ability to send credentials as part of the URL. https://isc.sans.edu/diary/Exploit%20Attempts%20Against%20Older%20Hikvision%20Camera%20Vulnerability/323…

1
SANS Stormcast Wednesday, September 24th, 2025: DoS against the Analyst; GitHub Improvements; Solarwinds and Supermicro BMC vulnerabilities 7:22

9d ago7:22

7:22

Distracting the Analyst for Fun and Profit Our undergraduate intern, Tyler House analyzed what may have been a small DoS attack that was likely more meant to distract than to actually cause a denial of service https://isc.sans.edu/diary/%5BGuest%20Diary%5D%20Distracting%20the%20Analyst%20for%20Fun%20and%20Profit/32308 GitHub s plan for a more secur…

1
SANS Stormcast Tuesday, September 23rd, 2025: Ivanti EPMM Exploit; GitHub Impersonation 4:49

7d ago4:49

4:49

CISA Reports Ivanti EPMM Exploit Sightings Two different organizations submitted backdoors to CISA, which are believed to have been installed using Ivanti vulnerabilities patched in May. https://www.cisa.gov/news-events/analysis-reports/ar25-261a Lastpass Observes Impersonation on GitHub Lastpass noted a number of companies being impersonated via f…

1
#365 ‒ Training for longevity: A roundtable on building strength, preventing injury, meeting protein needs, guidance for women and youth athletes, and more | Gabrielle Lyon, Mike Boyle, Jeff Cavaliere 2:15:29

14d ago2:15:29

2:15:29

View the Show Notes Page for This Episode Become a Member to Receive Exclusive Content Sign Up to Receive Peter’s Weekly Newsletter In this special episode of The Drive, Peter hosts a strength and conditioning roundtable with three experts in the field—Gabrielle Lyon, Jeff Cavaliere, and Mike Boyle. Together they explore why maintaining muscle mass…

1
SANS Stormcast Monday, September 22nd, 2025: Odd HTTP Reuqest; GoAnywhere MFT Bug; EDR Freeze 9:02

8d ago9:02

9:02

Help Wanted: What are these odd requests about? An odd request is hitting a number of our honeypots with a somewhat unusual HTTP request header. Please let me know if you no what the request is about. https://isc.sans.edu/forums/diary/Help+Wanted+What+are+these+odd+reuqests+about/32302/ Forta GoAnywhere MFT Vulnerability Forta s GoAnywhere MFT prod…

1
Episode 2: How to Stand Out in PhD Applications with Dr. Su Yeong Kim 9:12

11d ago9:12

9:12

In Episode 2 of Ask Dr. Su Yeong Kim, Professor Su Yeong Kim shares practical insights on how to craft a strong PhD application. She explains what faculty value most research experience that aligns with advisors, solid performance in statistics and methods courses, compelling statements of purpose, and recommendation letters that highlight resilien…

1
SANS Stormcast Friday, September 19th, 2025: Honeypot File Analysis (@sans_edu); SonicWall Breach; DeepSeek Bias; Chrome 0-day 7:14

11d ago7:14

7:14

Exploring Uploads in a Dshield Honeypot Environment This guest diary by one of our SANS.edu undergraduate interns shows how to analyze files uploaded to Cowrie https://isc.sans.edu/diary/Exploring%20Uploads%20in%20a%20Dshield%20Honeypot%20Environment%20%5BGuest%20Diary%5D/32296 Sonicwall Breach SonicWall MySonicWall accounts were breached via crede…

1
SANS Stormcast Thursday, September 18th, 2025: DLL Hooking; Entra ID Actor Tokens; Watchguard and NVidia Patches 6:31

12d ago6:31

6:31

CTRL-Z DLL Hooking Attackers may use a simple reload trick to overwrite breakpoints left by analysts to reverse malicious binaries. https://isc.sans.edu/diary/CTRL-Z%20DLL%20Hooking/32294 Global Admin in every Entra ID tenant via Actor tokens As part of September s patch Tuesday, Microsoft patched CVE-2025-55241. The discoverer of the vulnerability…

1
SANS Stormcast Wednesday, September 17th, 2025: Phishing Resistants; More npm Attacks; ChatGPT MCP abuse 8:47

13d ago8:47

8:47

Why You Need Phishing-Resistant Authentication NOW. The recent compromise of a number of high-profile npmjs.com accounts has yet again shown how dangerous a simple phishing email can be. https://isc.sans.edu/diary/Why%20You%20Need%20Phishing%20Resistant%20Authentication%20NOW./32290 S1ngularity/nx Attackers Strike Again A second wave of attacks has…

1
SANS Stormcast Tuesday, September 16th, 2025: Apple Updates; Rust Phishing; Samsung 0-day 6:42

14d ago6:42

6:42

Apple Updates Apple released major updates for all of its operating systems. In addition to new features, these updates patch 33 different vulnerabilities. https://isc.sans.edu/diary/Apple%20Updates%20Everything%20-%20iOS%20macOS%2026%20Edition/32286 Microsoft End of Life October 14th, support for Windows 10, Exchange 2016, and Exchange 2019 will e…

1
Episode 1: Publishing in Top-Tier Journals with Dr. Su Yeong Kim 6:40

15d ago6:40

6:40

In the first episode of Ask Dr. Su Yeong Kim, Professor Su Yeong Kim shares insights from two decades of research and editorial leadership. With over 170 publications and experience as editor of leading journals, she guides scholars on crafting strong titles, research designs and navigating timelines to succeed in competitive academic publishing.…

1
#364 – AMA #75: Diets: how to evaluate and implement any diet including keto, carnivore, vegan, Mediterranean, and more 13:29

19d ago13:29

13:29

View the Show Notes Page for This Episode Become a Member to Receive Exclusive Content Sign Up to Receive Peter’s Weekly Newsletter In this “Ask Me Anything” (AMA) episode, Peter explores how to determine the right diet for yourself rather than searching for a universal “best” diet. He begins by laying out five non-negotiable criteria that any sust…

1
SANS Stormcast Monday, September 15th, 2025: More Archives; Salesforce Attacks; White Cobra; BSides Augusta 6:06

15d ago6:06

6:06

Web Searches For Archives Didier observed additional file types being searched for as attackers continue to focus on archive files as they spider web pages https://isc.sans.edu/diary/Web%20Searches%20For%20Archives/32282 FBI Flash Alert: Salesforce Attacks The FBI is alerting users of Salesforce of two different threat actors targeting Salesforce. …

1
Lessons from Twilio’s multi-year platform consolidation 1:06:15

18d ago1:06:15

1:06:15

In this episode, host Laura Tacho speaks with Jesse Adametz, Senior Engineering Leader on the Developer Platform at Twilio. Jesse is leading Twilio’s multi-year platform consolidation, unifying tech stacks across large acquisitions and driving migrations at enterprise scale. He discusses platform adoption, the limits of Kubernetes, and how Twilio b…

1
Student Leadership & Learning Ep 21: Equipping a Generation for Courageous Influence 16:11

18d ago16:11

16:11

Even if students know they're meant to stand for truth, are they equipped to do so? Emily Pigott shares ways to equip students to actually follow through on their mission to impact their community with courageous influence. -- Do you read the quarterly Student Leadership & Learning newsletters? Subscribe at www.acsi.org/subscribe The Student Leader…

1
SANS Stormcast Friday, September 12th, 2025: DShield SIEM Update; Another Sonicwall Warning; Website Keystroke Logging 6:38

18d ago6:38

6:38

DShield SIEM Docker Updates Guy updated the DShield SIEM which graphically summarizes what is happening inside your honeypot. https://isc.sans.edu/diary/DShield%20SIEM%20Docker%20Updates/32276 Again: Sonicwall SSL VPN Compromises The Australian Government s Signals Directorate noted an increase in compromised Sonicwall devices. https://www.cyber.go…

1
SANS Stormcast Thursday, September 11th, 2025: BASE64 in DNS; Google Chrome, Ivantii and Sophos Patches; Apple Memory Integrity Feature 7:12

19d ago7:12

7:12

BASE64 Over DNS The base64 character set exceeds what is allowable in DNS. However, some implementations will work even with these invalid characters. https://isc.sans.edu/diary/BASE64%20Over%20DNS/32274 Google Chrome Update Google released an update for Google Chrome, addressing two vulnerabilities. One of the vulnerabilities is rated critical and…

1
SANS Stormcast Wednesday, September 10th, 2025: Microsoft Patch Tuesday; 8:25

23d ago8:25

8:25

Microsoft Patch Tuesday As part of its September patch Tuesday, Microsoft addressed 177 different vulnerabilities, 86 of which affect Microsoft products. None of the vulnerabilities has been exploited before today. Two of the vulnerabilities were already made public. Microsoft rates 13 of the vulnerabilities are critical. https://isc.sans.edu/diary…

1
SANS Stormcast Tuesday, September 9th, 2025: Major npm compromise; HTTP Request Signature 8:44

21d ago8:44

8:44

Major npm compromise A number of high-profile npm libraries were compromised after developers fell for a phishing email. This compromise affected libraries with a total of hundreds of millions of downloads a week. https://bsky.app/profile/bad-at-computer.bsky.social/post/3lydioq5swk2y https://github.com/orgs/community/discussions/172738 https://git…

1
#363 ‒ A new frontier in neurosurgery: restoring brain function with brain-computer interfaces, advancing glioblastoma care, and new hope for devastating brain diseases | Edward Chang, M.D. 1:53:25

22d ago1:53:25

1:53:25

View the Show Notes Page for This Episode Become a Member to Receive Exclusive Content Sign Up to Receive Peter’s Weekly Newsletter Edward Chang is a neurosurgeon, scientist, and a pioneering leader in functional neurosurgery and brain-computer interface technology, whose work spans the operating room, the research lab, and the engineering bench to…

1
SANS Stormcast Monday, September 8th, 2025: YARA to Debugger Offsets; SVG JavaScript Phishing; FreePBX Patches; 5:34

22d ago5:34

5:34

From YARA Offsets to Virtual Addresses Xavier explains how to convert offsets reported by YARA into offsets suitable for the use with debuggers. https://isc.sans.edu/diary/From%20YARA%20Offsets%20to%20Virtual%20Addresses/32262 Phishing via JavaScript in SVG Files Virustotal uncovered a Colombian phishing campaign that takes advantage of JavaScript …

1
Driving enterprise-wide AI tool adoption 46:50

25d ago46:50

46:50

In this episode of Engineering Enablement, host Laura Tacho talks with Bruno Passos, Product Lead for Developer Experience at Booking.com, about how the company is rolling out AI tools across a 3,000-person engineering team. Bruno shares how Booking.com set ambitious innovation goals, why cultural change mattered as much as technology, and the educ…

1
Stronger Together Ep 6: Latin Am. Update, International Education, & Early Ed 11:10

25d ago11:10

11:10

Stuart Salazar, ACSI Divisional Director for Latin America, provides an update. Beth Afanador, a longtime international school educator, gives her reasons why teaching overseas is impactful to both students and the teacher themself. And finally, we highlight the ACSI Early Education workshops with Dr. Tyler Groves. -- The Stronger Together Podcast …

1
SANS Stormcast Friday, September 5th, 2025: Cloudflare Response to 1.1.1.1 Certificate; AI Modem Namespace Reuse; macOS Vulnerability Allowed Keychain Decryption 8:18

25d ago8:18

8:18

Unauthorized Issuance of Certificate for 1.1.1.1 Cloudflare published a blog post with more details regarding the bad 1.1.1.1 certificate that was issued by Fina. https://blog.cloudflare.com/unauthorized-issuance-of-certificates-for-1-1-1-1/ AI Model Namespace Reuse Deleted accounts on Huggingface can be taken over by other entities unrelated to th…

1
SANS Stormcast Thursday, September 4th, 2025: Dassault DELMIA Apriso Exploit Attempts; Android Updates; 1.1.1.1 Certificate Issued 6:22

26d ago6:22

6:22

Exploit Attempts for Dassault DELMIA Apriso. CVE-2025-5086 Our honeypots detected attacks against the manufacturing management system DELMIA Apriso. The deserialization vulnerability was patched in June and is one of a few critical vulnerabilities patched in recent months. https://isc.sans.edu/diary/Exploit%20Attempts%20for%20Dassault%20DELMIA%20Ap…

1
SANS Stormcast Wednesday, September 3rd, 2025: Sextortiion Analysis; Covert Channel DNS/ICMP; Azure AD Secret Theft; Official FreePBX Patches 5:29

27d ago5:29

5:29

A Quick Look at Sextortion at Scale Jan analyzed 1900 different sextortion messages using 205 different Bitcoin addresses to look at the success rate, lifetime, and other metrics defining these campaigns. https://isc.sans.edu/diary/A%20quick%20look%20at%20sextortion%20at%20scale%3A%201%2C900%20messages%20and%20205%20Bitcoin%20addresses%20spanning%2…

1
SANS Stormcast Tuesday, September 2nd, 2025: pdf-parser Patch; Salesloft Compromise; Velociraptor Abuse; NeuVector Default Password 5:39

28d ago5:39

5:39

pdf-parser: All Streams Didier released a new version of pdf-parser.py. This version fixes a problem with dumping all filtered streams. https://isc.sans.edu/diary/pdf-parser%3A%20All%20Streams/32248 Salesloft Drift Putting OAuth Tokens at Risk OAuth tokens used by Salesloft Drift users to provide access to integrations with Salesforce, Google Works…

1
Lower back pain: causes, treatment, and prevention of lower back injuries and pain | Stuart McGill, Ph.D. (#287 rebroadcast) 2:31:22

29d ago2:31:22

2:31:22

View the Show Notes Page for This Episode Become a Member to Receive Exclusive Content Sign Up to Receive Peter’s Weekly Newsletter Stuart McGill is a distinguished professor emeritus at the University of Waterloo and the chief scientific officer at Backfitpro where he specializes in evaluating complex cases of lower back pain from across the globe…

1
Grafted Together Ep 19: AI and Biblical Worldview Integration, with Dr. Steve Mason 39:54

1M ago39:54

39:54

Dr. Steve Mason, Student Success Services Teacher at Southside Christian School in South Carolina, joins the Grafted Together Podcast to discuss Artificial Intelligence, biblical worldview integration, and human intelligence. Read a chapter of Steve Mason's forthcoming book here, on Biblical Integration of Human Intelligence and Artificial Intellig…

1
SANS Stormcast Friday, August 29th, 2025: Scans for ZIP Files; FreePBX 0-Day; Passwordstate Patch 5:45

1M ago5:45

5:45

Increasing Searches for ZIP Files Attackers are scanning our honeypots more and more for .zip files. They are looking for backups of credential files and the like left behind by careless administrators and developers. https://isc.sans.edu/diary/Increasing%20Searches%20for%20ZIP%20Files/32242 FreePBX Vulnerability An upatched vulnerability in FreePB…

1
SANS Stormcast Thursday, August 28th, 2025: Launching Shellcode; NX Compromise; Volt Typhoon Report 6:39

1M ago6:39

6:39

Interesting Technique to Launch a Shellcode Xavier came across malware that PowerShell and the CallWindowProcA() API to launch code. https://isc.sans.edu/diary/Interesting%20Technique%20to%20Launch%20a%20Shellcode/32238 NX Compromised to Steal Wallets and Credentials The popular open source NX build package was compromised. Code was added that uses…