These vegetables get sweeter after being kissed by frost, making them a delectable wintertime treat. So don’t despair ... Read More
The post Vegetables That Get Tastier After a Frost appeared first on Garden Therapy.
Online, Thanksgiving is a big feast surrounded by friends and family decorated with turkeys, fun gourds, and fallen ... Read More
The post Thanksgiving Mindfulness: Cultivating Gratitude Through Lessons Learned Gardening appeared first on Garden Therapy.
Let’s talk about LANDFALL. That was an Android spyware campaign specifically targeted at Samsung devices. The discovery story is interesting, and possibly an important clue to understanding this particular bit of commercial malware. Earlier this year Apple’s iOS was patched for a flaw in the handling of DNG (Digital NeGative) images, and WhatsApp issued an advisory with a second iOS vulnerability, that together may have been used in attacks in the wild.
Researchers at Unit 42 went looking for real-world examples of this iOS threat campaign, and instead found DNG images that exploited a similar-yet-distinct vulnerability in a Samsung image handling library. These images had a zip file appended to the end of these malicious DNG files. The attack seems to be launched via WhatsApp messaging, just like the iOS attack. That .zip contains a pair of .so shared object files, that are loaded to manipulate the system’s SELinux protections and install the long term spyware payload.
The earliest known sample of this spyware dates to July of 2024, and Samsung patched the DNG handling vulnerability in April 2025. Apple patched the similar DNG problem in August of 2025. The timing and similarities do suggest that these two spyware campaigns may have been related. Unit 42 has a brief accounting of the known threat actors that could have been behind LANDFALL, and concludes that there just isn’t enough solid evidence to make a determination.
Watchtowr is back with a couple more of their unique vulnerability write-ups. The first is a real tease, as they found a way to leak a healthy chunk of memory from Citrix NetScaler machines. The catch is that the memory leak is a part of an error message, complaining that user authentication is disabled. This configuration is already not appropriate for deployment, and the memory leak wasn’t assigned a CVE.
There was a second issue in the NetScaler system, an open redirect in the login system. This is where an attacker can craft a malicious link that points to a trusted NetScaler machine, and if a user follows the link, the NetScaler will redirect the user to a location specified in the malicious link. It’s not a high severity vulnerability, but still got a CVE and a fix.
And then there’s the other WatchTowr write-up, on Monsta FTP. Here, old vulnerabilities continue to work in versions released after the fix. The worst one here is an unauthenticated RCE (Remote Code Execution) that can be pulled off by asking the server nicely to connect to a remote SFTP server and download a file. In this case, the specified path for saving that file isn’t validated, and can be written anywhere to the Monsta FTP filesystem. Instant webshell. This time it did get fixed, within a couple weeks of WatchTowr sending in the vulnerability disclosure.
Antivirus software Imunify just fixed an issue that threatened a few million servers. Imunify is an antivirus product that scans for malicious code. It sounds great. The problem is that it worked to deobfuscate PHP code, by calling an executeWrapper helper function. The short explanation is that this approach wasn’t as safe as had been hoped, and this deobfuscation step can be manipulated into running malicious code itself. Whoops.
Patchstack reported on this issue, and indicated that it had been publicly known since November 4th. Patches have since been issued, and a simple message has been published that a critical security vulnerability has been fixed. There is a PoC (Proof of Concept) for this vulnerability, that would be trivial to develop into a full webshell. The only challenge is actually getting the file on a server to be scanned. Either way, if your servers run Imunify, be sure to update!
There’s another NPM worm on the loose, and this one has quietly been around for a couple years. This one is a bit different, and the “malicious” packages aren’t doing anything malicious, at least not by default.
[Paul McCarty] first spotted this campaign, and gave it the name “IndonesianFoods”, inspired by the unique names the fake packages were using. It appears that a handful of malicious accounts have spent time running a script that generates these fake packages with unique names, and uploads them to NPM. Downloading one of these packages doesn’t run the script on the victim machine, and in fact doesn’t seem to do anything malicious. So what’s the point?
Endor Labs picked up this thread and continued to pull. The point seems to be TEA theft. That’s the Blockchain tech that’s intended to reward Open Source project and contributions. It’s yet another abuse of NPM, which has had a rough year.
Canonical made a bold decision with Ubuntu 25.04, shipping the uutils Rust rewrite of coreutils and sudo-rs. That decision was controversial, and has proven to be a cause of a few issues. Most recently, the sudo-rs utility has made news due to security vulnerabilities. We know the details on a few of the issues fixed in this update of those, CVE-2025-64170. It’s a quirk when a user types a password into the prompt, but never presses return. The prompt times out, and the typed characters are echoed back to the terminal.
Another issue doesn’t have a CVE assigned yet, but is available as a GitHub Security Advisory, and the patch is published. This one has the potential to be an authentication bypass. Sudo has the feature that tracks how long it has been since the user has last authenticated. The flaw was that this state was leaking between different users, allowing a login by one user to count as a login for other users, allowing that password skip.
And finally, there’s a bit of good news, even if it is temporary. Google has taken action against one of the larger SMS scam providers. The group operates under the name Lighthouse, and seems to use normal cloud infrastructure to run the scams, simply flying under the radar for now. Google has combined legal action with technical, and with any luck, law enforcement can join in on the fun.
Threat actors exploited CVE-2025-21042 to deliver malware via specially crafted images to users in the Middle East.
The post Landfall Android Spyware Targeted Samsung Phones via Zero-Day appeared first on SecurityWeek.
Many of our spring-blooming flowers sprout from bulbs planted in the fall. Favorites like crocus, daffodil, and tulip must spend the winter beneath the cold ground, storing energy for their debut when warm weather returns. Read on to find out how late you can plant bulbs in the fall for a spectacular spring display.
The post When to Plant Spring-Flowering Bulbs appeared first on Gardener's Path.
This is a fun Halloween project for gardeners! It’s silly and quirky, and it puts a smile on ... Read More
The post Jack-o-Planterns: How to Make Pumpkin Planters appeared first on Garden Therapy.
Want to help your garden rest well this winter? Winter mulching is a great way to prolong harvests, improve soil quality, and protect overwintering plants by insulating soil with organic materials. Learn how to use mulch to better support perennials and annual crops this winter. Read more now.
The post How to Use Winter Mulch to Protect Plants in Cold Weather appeared first on Gardener's Path.
When the thermometer takes a sudden dive, you may wake up to a vegetable garden coated with frost. Some crops can tolerate it, but others are ruined instantly. Learn about the hardiness of vegetables, what to do when frost is in the forecast, and how to deal with the damage that may occur in this guide. Read more now.
The post How to Manage Frost Damage in the Fall Vegetable Garden appeared first on Gardener's Path.
Dreading the end of the growing season? Fear no longer! I’ll show you how to protect plants from ... Read More
The post Get a Late Harvest! Frost Protection for Plants appeared first on Garden Therapy.
Skip to the FAQ: brats, smoke woods, beer pairings
Have you ever started in one place and found yourself the next morning in another—without the faintest idea of how you got there?
That pretty much describes my first Oktoberfest in the festival’s birthplace, Munich.
Fresh out of college and traveling through Europe, I wanted to see what Oktoberfest was all about. So I took a seat on a bench under a huge tent in Munich’s die Wiesn district, surrounded by jovial men in feathered hats and lederhosen, singing at the top of their lungs.
A waitress in a dirndl set a Maßkrug, a gray one-liter stoneware mug filled with Munich’s finest brew.
One liter is a lot beer. Like 33.8 fluid ounces. But I didn’t just drink one liter. I didn’t just drink two liters. I drank three. And the Brezn (soft pretzels) and Wurstl (grilled bratwurst) that accompanied them weren’t enough to counterbalance the alcohol in the beer.
I woke the next morning in a cheap hotel, my clothes still on, my backpack by my side. How I got there, I still don’t know to this day. Someone must have been looking out for me.
I don’t suggest you drink three liters of beer at your next Oktoberfest party (although I’m living proof it’s possible).
I do suggest you drink a little less beer and eat a little more food. Actually, a lot more food. Like the following dishes—German-inspired, but perfectly adapted to the grill in your backyard.
We start with….
Indirect grilling may not be the way your grandfather cooked brats, but it works wonders. The gentle heat crisps the casing, locks in moisture, and avoids the flare-ups that can scorch your sausages. Add a touch of wood smoke, and you’ve got a brat that’s smoky, juicy, and packed with flavor. Of course, in Wisconsin, the traditional approach is direct grilling. The secret is to keep the heat moderate, leave yourself a cool zone in case of flare-ups, and never pierce the casing so the juices stay where they belong. Once cooked, slide the brats into a simmering bath of beer and onions—the classic “hot tub” treatment that makes them ideal for tailgates or Oktoberfest gatherings.
South Texas cuisine owes much to its Mexican roots, but the influence of German immigrants runs just as deep. In 1883, a German brewmaster opened San Antonio’s City Brewery—now the heart of the trendy Pearl District. German sausage traditions evolved into Texas’ famed “hot guts” beef links, and dishes like Spiessbraten crossed the Atlantic with settlers from the Palatinate region. Spiessbraten—pork roasted on a spit with little more than onions, garlic, salt, and pepper—is one of the great classics of German grilling. Steven’s Pearl District version nods to that heritage while adding a Texas twist: mustard, ham, cheese, and poblano chiles. Slow roasting over wood smoke ties it all together with a flavor that’s nothing short of spectacular.
Like many of the original Texas barbecue joints, Kreuz Market began as a butcher shop and grocery. At week’s end, any leftover cuts went into the smoker, paired with simple accompaniments you’d find right off the shelves—crackers, cheddar, onions, pickled peppers. No sides simmered for hours, no barbecue sauce—just smoked beef and groceries. The first bite of shoulder clod was a revelation: pure, unadorned beef flavor.
This is Texas barbecue at its boldest. The clod, a 16-pound cut from the beef shoulder, is massive, meaty, and virtually unknown outside the Lone Star State. Most of the time it’s broken down for steaks or ground into burgers, but cooked whole, it becomes one of barbecue’s great unsung treasures. If your local supermarket doesn’t carry it, a good butcher can special order one for you.
The pinnacle of German barbecue is spanferkel—a whole hog spit-roasted over wood after being rubbed with a fragrant spice paste. As it turns on the fire, the pork is basted with a glaze that speaks to Germany’s culinary soul: dark malty beer, honey, and ginger, the same flavors that give Nuremberg’s famous lebkuchen (gingerbread) its signature taste.
Oktoberfest may have started in Munich, but the flavors translate perfectly to your backyard grill. From brats soaking in a beer-and-onion hot tub to smoky Spiessbraten and pork roasted over wood, these dishes are as festive as the beers they pair with. So pour yourself a stein, fire up the grill, and raise a toast—Prost!—to good food, good friends, and a taste of Oktoberfest at home.
Check out our 1000+ Recipes section here on Barbecue Bible.ComAlso, sign up for our Up in Smoke newsletter so you don't miss any blogs and receive some special offers! PLUS get Raichlen's Burgers! PDF for free!
Follow Steven on Facebook, Instagram, YouTube, TikTok, Reddit, and Pinterest!
Check out our store powered by BBQGuys!
The post Fire Meets Oktoberfest – Our Fall Favorites on the Grill appeared first on Barbecuebible.com.
The glory days of summer may be over but there are still a few things to do in the garden before winter arrives. Take the time now to get these tasks done and your plants will be protected from freeze and frost, the soil will be nourished, and your garden will be ready for action when spring arrives. Get the list here.
The post 11 Essential Tasks to Prepare the Garden for Winter appeared first on Gardener's Path.
Whether you are cooking with pumpkins or carving a Jack-O-Lantern, it’s likely that you’ll find yourself with some ... Read More
The post Deliciously Sweet and Salty Rosemary Pumpkin Seeds appeared first on Garden Therapy.
To get those beautiful, spring flowers, you have to put in a little bit of work now. Plan ... Read More
The post Hardy Fall Bulbs to Plant For Long-Lasting Spring Colour appeared first on Garden Therapy.
Ah, fall! The time of year when Mother Nature paints the landscape in shades of russet and ruby. We start pulling on our coziest sweaters, the air becomes fragranced with all things cinnamon, and crispy fallen leaves crunch underfoot. You have an overwhelming urge to visit a pumpkin patch or go apple picking.
The changing of the seasons also activates our taste buds to start craving foods that are warm, comforting—and pumpkin-spiced. And if there’s one thing cannabis lovers know, it’s that delicious recipes are always in season. By adding a splash of Everclear grain alcohol to your cooking, your fall recipes will pop, and flavors will flicker like Jack-o’-lanterns.
If you’re unfamiliar with Everclear, it’s not just any spirit. The clean palette of Everclear can be used as a blank canvas for creating your own kitchen concoctions. This versatile grain alcohol packs a punch but serves as an ideal base for infusions, tinctures and a zesty spin on beloved autumn recipes. Its subtle flavor expertly enhances flavors and spices rather than overshadowing them. It adds a little extra magic—a hint of something you can’t quite place but keeps you coming back for more.
These four delicious fall recipes all use Everclear to enhance the flavors of fall, but you can enjoy them all year round.
Prep: 15 minutes
Steep: 24 hours
Yield: 24 oz.
Whether it’s fall or you’re just hoping to elicit fond memories of costume parties, comfort food and football, this Fall Flavors Infusion recipe will do the trick. It uses apples, cranberries and spices to create what should be dubbed as the official taste of autumn.
Ingredients
Instructions
Tip: Fresh cranberries are certainly preferred, but frozen will also work in a pinch or if they’re out of season.
Prep: 15 minutes
Steep: 14 days
Yield: ~500ml
A cornucopia of autumnal flavor. After all, it’s just not fall without a little harvest spice infusion.
Ingredients
Instructions
Cook Time: 15 minutes
Steep: 4 weeks
Yield: 1 qt
Extend pear season into the entire year with this sweet recipe. Inspired by the German fruit-preserving tradition of “rumptof,” the resulting pears have a slightly more complex flavor owing to the dried fruits and vanilla. This makes them a perfect complement to baked desserts and ice cream alike.
Ingredients
Instructions
No self-respecting fall recipe list is complete without a delicious pumpkin spice drink. Shake it up with this boozy confection.
Ingredients
Instructions
If you enjoy spiciness in your cannabis from terpenes like caryophyllene and myrcene, try whipping up these delicious fall recipes to enhance your season.
PLEASE ENJOY RESPONSIBLY. Everclear® Grain Alcohol is 75.5%-95% Alc./Vol. (120-190 Proof), ©2023 Luxco®, Inc., St. Louis, MO
The post Everclear-Infused Recipes for Fall appeared first on Cannabis Now.
Perennials are the garden gift that keeps on giving. You plant them once and enjoy them for years ... Read More
The post Dividing Perennials 101: Tips for a Beautiful Garden appeared first on Garden Therapy.
It’s just days away from the first frost, and you’re looking at your green tomatoes wishing they would ... Read More
The post Can I Harvest Green Tomatoes? Tips for Ripening and Harvesting appeared first on Garden Therapy.
Cover crops aren’t just for farmers. They’re easy, economical, and efficient for the home garden too. With many benefits, they’re a smart, natural method of protecting the soil, improving its structure, and increasing nutrients all at the same time. Learn how and when to plant cold weather cover crops. Read more now.
The post When and How to Plant Winter Cover Crops appeared first on Gardener's Path.
If you have always associated fall with the end of the growing season, you’ve got to give these ... Read More
The post Fall-Blooming Flowers for Brilliant Autumn Colour! appeared first on Garden Therapy.
Login