|
X-He-Spam-Score: -2.0
|
|
Return-Path: <bounce+b82545.7bdc18-lapor=turnbackhoax.id@m.ghost.io>
|
|
Delivered-To: dropbox@plan.io
|
|
Received: from m.launch.gmbh ([127.0.0.1])
|
|
by m.launch.gmbh with LMTP
|
|
id oAwOHfYZl2cl1g4AJzdhvw
|
|
(envelope-from <bounce+b82545.7bdc18-lapor=turnbackhoax.id@m.ghost.io>)
|
|
for <dropbox@plan.io>; Mon, 27 Jan 2025 06:30:30 +0100
|
|
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on m.launch.gmbh
|
|
X-Spam-Level:
|
|
X-Spam-Status: No, score=-2.0 required=5.0 tests=BAYES_00,DKIM_SIGNED,
|
|
DKIM_VALID,DMARC_PASS,HTML_IMAGE_RATIO_04,HTML_MESSAGE,LOTS_OF_MONEY,
|
|
RCVD_IN_DNSWL_NONE,SPF_FAIL,SPF_FAIL_IGNORE,SPF_HELO_NONE,
|
|
T_KAM_HTML_FONT_INVALID,T_SCC_BODY_TEXT_LINE autolearn=ham
|
|
autolearn_force=no version=3.4.6
|
|
X-Spam-Report:
|
|
* -1.9 BAYES_00 BODY: Bayes spam probability is 0 to 1%
|
|
* [score: 0.0000]
|
|
* 5.0 SPF_FAIL SPF check failed
|
|
* -0.1 DMARC_PASS DMARC check passed
|
|
* -0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at
|
|
* https://www.dnswl.org/, no trust
|
|
* [64.90.62.163 listed in list.dnswl.org]
|
|
* 0.0 SPF_HELO_NONE SPF: HELO does not publish an SPF Record
|
|
* 0.0 HTML_IMAGE_RATIO_04 BODY: HTML has a low ratio of text to image
|
|
* area
|
|
* 0.0 HTML_MESSAGE BODY: HTML included in message
|
|
* -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature
|
|
* 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily
|
|
* valid
|
|
* 0.0 T_KAM_HTML_FONT_INVALID Test for Invalidly Named or Formatted
|
|
* Colors in HTML
|
|
* 0.0 LOTS_OF_MONEY Huge... sums of money
|
|
* -5.0 SPF_FAIL_IGNORE Planio Inbox does not consider SPF FAILS on
|
|
* redirects
|
|
* -0.0 T_SCC_BODY_TEXT_LINE No description available.
|
|
X-Spam-Score: -2.0
|
|
Authentication-Results: m.launch.gmbh; dmarc=pass (p=none dis=none) header.from=ghost.io
|
|
Authentication-Results: m.launch.gmbh; spf=fail smtp.mailfrom=m.ghost.io
|
|
Authentication-Results: m.launch.gmbh;
|
|
dkim=pass (2048-bit key; unprotected) header.d=m.ghost.io header.i=@m.ghost.io header.a=rsa-sha256 header.s=mailgun header.b=LBPDGCSc;
|
|
dkim-atps=neutral
|
|
Envelope-to: inbox+rlxc+36be+hoax-clearing-center@plan.io
|
|
Received: from pdx1-sub0-mail-mx206.dreamhost.com (fltr-in1.mail.dreamhost.com [64.90.62.163])
|
|
(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
|
|
key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256)
|
|
(No client certificate requested)
|
|
by m.launch.gmbh (Postfix) with ESMTPS id 9E28E161724
|
|
for <inbox+rlxc+36be+hoax-clearing-center@plan.io>; Mon, 27 Jan 2025 06:30:29 +0100 (CET)
|
|
Received: from postfix-inbound-v2-9.inbound.mailchannels.net (inbound-egress-7.mailchannels.net [23.83.220.5])
|
|
(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
|
|
key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256)
|
|
(No client certificate requested)
|
|
by pdx1-sub0-mail-mx206.dreamhost.com (Postfix) with ESMTPS id 4YhH7R1HZFz85g2
|
|
for <lapor@turnbackhoax.id>; Sun, 26 Jan 2025 21:30:27 -0800 (PST)
|
|
ARC-Seal: i=1; s=arc-2022; d=mailchannels.net; t=1737955826; a=rsa-sha256;
|
|
cv=none;
|
|
b=fz7VF2wsyqVzymOmUBN1xGr7MDaA4onS6oIHxHUXSp/1q2Vg81HCTdCAy+w1E2M5SgFr4E
|
|
MLIBpvnhyWEl/QklcsDLmP1V/rfu3KZc/P1LicooiNOuwEQhKxt85XVaK7iXbVLOgAWihP
|
|
jzE0/8gn2cL0857VZHFmpYSOdWCDz/UnMloUBHn0rAaceiAldMnrm12TPRU7ugIOFbV4G/
|
|
LwhQCz7W5ioA/81D0TTq6vTsSFxREHAbFs3ElDIyKG5Iw05QoJE07ukRoBSTEM5caOPnP+
|
|
D2wsjXRfE0lV1HyDC5mrTg/FTgsUQPkoz0nWIGERadGmXsyPdupPz2GIWdr/Cg==
|
|
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed;
|
|
d=mailchannels.net;
|
|
s=arc-2022; t=1737955826;
|
|
h=from:from:sender:sender:reply-to:subject:subject:date:date:
|
|
message-id:message-id:to:to:cc:mime-version:mime-version:
|
|
content-type:content-type:list-unsubscribe:list-unsubscribe-post:
|
|
dkim-signature; bh=nhWHWToazU37RhZd72nc5Bbqhb8tyHr8kJJcRCJGKPw=;
|
|
b=bxu07skitk+S8bfZ+eMX1kxEWcZre4ioOJ+PdnKP5PLt2Hvf39xxXTan9V3xL6guvu8o/8
|
|
7gGxPE8hdlk8gmqoh95MJa56hk5RzrP4wWSfGTflXubl7n738TxGsxdSp7OfNjcRWiV1+H
|
|
U8Ne5cANDpM26USRHhqZLOmRnmtZpM3YEVpcqT/ihNQ1WJ1cm0KzG823hrnG/iL8l7EqwD
|
|
KD7i+Jdtpjdw05d0O1ctZ5fTCYpX2mbfUlmV8fFWupyM2aTsp3rbH1Sw28UvsjZZLQsC7M
|
|
WQDxS/bONAS/rqXCI/dJ2VIWBfHV5FI7DuOeQREoPW+f9GIjXLRLRakb29/EIg==
|
|
ARC-Authentication-Results: i=1;
|
|
inbound-rspamd-d95797564-vw9dd;
|
|
none
|
|
X-Message-ID: WYEN2QGztXZy3uRhsloK0H3g
|
|
Received: from relay9.ghost.io (relay9.ghost.io [143.55.233.111])
|
|
(using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256)
|
|
by 100.117.131.76 (trex/6.10.3);
|
|
Mon, 27 Jan 2025 05:30:26 +0000
|
|
Authentication-Results: inbound.mailchannels.net;
|
|
spf=pass
|
|
smtp.mailfrom=bounce+b82545.7bdc18-lapor=turnbackhoax.id@m.ghost.io;
|
|
dkim=pass header.d=m.ghost.io;
|
|
dmarc=pass (policy=none; pct=100; status=pass);
|
|
arc=none
|
|
Received-SPF: pass (dmarc-service-5d67ddd967-npj6q: domain of m.ghost.io
|
|
designates 143.55.233.111 as permitted sender) client-ip=143.55.233.111;
|
|
envelope-from=bounce+b82545.7bdc18-lapor=turnbackhoax.id@m.ghost.io;
|
|
helo=relay9.ghost.io;
|
|
DKIM-Signature: a=rsa-sha256; v=1; c=relaxed/relaxed; d=m.ghost.io; q=dns/txt; s=mailgun; t=1737955824; x=1737963024;
|
|
h=Message-Id: List-Unsubscribe-Post: List-Unsubscribe: To: To: From: From: Subject: Subject: Content-Type: Mime-Version: Date: Sender: Sender;
|
|
bh=nhWHWToazU37RhZd72nc5Bbqhb8tyHr8kJJcRCJGKPw=;
|
|
b=LBPDGCSctVuMQpDrHF7HaXydMufBi40/aEhGX9ec8IFVM1PBvgG10Jg6W5sZGuoRmWeY6Nsf9ryEd+Wjc+8GeTxjpeUzGLXsD03v/vZExXN4yRpDCG1ZwJ7DQiPhqrutqpJmXX/Oq5DTU93wgX4Eea8Rsl2jgGfc5wvk/oyywrmD2tflOO2d/PZjYC21uK7rlsmfnoBjW1B5QCYijgTEtCy3/rl6EdpgZdrxzvwelp/E87PkXfcYa3yYmCAeNHTxAOrGJQamuywlRQzuaEsaVM/5HZrFekyzClrTXmIJODytIn6BbRO8QUo7Pqa47Oibvu9xEaBs/D5FUm3PDGWkIg==
|
|
X-Mailgun-Sending-Ip: 143.55.233.111
|
|
X-Mailgun-Sending-Ip-Pool-Name: Bulk - Standard
|
|
X-Mailgun-Sending-Ip-Pool: 6155d7ba935d084321777411
|
|
X-Mailgun-Sid: WyIzODUwYiIsImxhcG9yQHR1cm5iYWNraG9heC5pZCIsIjdiZGMxOCJd
|
|
Received: by 7c73451dd2c4 with HTTP id 679719f03926af7a17afe2ce; Mon, 27 Jan 2025
|
|
05:30:24 GMT
|
|
X-Mailgun-Batch-Id: 679719f0e2299333383a41ff
|
|
Sender: risky-biz=ghost.io@m.ghost.io
|
|
Date: Mon, 27 Jan 2025 05:30:24 +0000
|
|
Mime-Version: 1.0
|
|
Content-Type: multipart/alternative;
|
|
boundary="60ee574c50bc56e8b98e0e7037c196c1bf7ffb630b4184fc10d7ff77e48e"
|
|
Subject: Risky Bulletin: Tbilisi public transport goes free after anti-government hack
|
|
From: Risky.Biz <risky-biz@ghost.io>
|
|
To: lapor@turnbackhoax.id
|
|
X-Mailgun-Tag: bulk-email
|
|
X-Mailgun-Tag: ghost-email
|
|
X-Mailgun-Tag: blog-1041185
|
|
X-Mailgun-Track-Opens: true
|
|
X-Mailgun-Deliver-By: Mon, 27 Jan 2025 05:30:20 +0000
|
|
List-Unsubscribe: <https://news.risky.biz/unsubscribe/?uuid=1a80b145-9ce5-407e-b496-c57050db16ff&key=b42b9394aa843f18196f4ef71cbb26d29e72298989fd79444a9147b6e32ee87b&newsletter=102a29ad-4bfc-4105-8645-703ba0268482>,
|
|
<mailto:u+mq6toytemmytqjtfnvqws3bnnfsd2nrxhe3tcolfmi2gkm3ggy2tambqge3dezjsmqzcm2b5mnsdszjsgqzwimddha4wgn3egm2diobugm4wcyjwg4zgimdbmqycm2j5giydenjqgezdombvgmydenbognstizbygi2genbtha2dcyrtmustimdnfztwq33toqxgs3zgoi6wyylqn5zcknbqor2xe3tcmfrww2dpmf4c42leez2d2ytvnrvs2zlnmfuwyjtuhvtwq33toqwwk3lbnfwcm5b5mjwg6zzngeydimjrha2sm5r5gi@m.ghost.io>
|
|
List-Unsubscribe-Post: List-Unsubscribe=One-Click
|
|
X-Mailgun-Variables: {"email-id": "679719eb4e3f65000162e2d2"}
|
|
Message-Id: <20250127053024.3e4d824b43841b3e@m.ghost.io>
|
|
|
|
--60ee574c50bc56e8b98e0e7037c196c1bf7ffb630b4184fc10d7ff77e48e
|
|
Content-Type: text/plain; charset="utf-8"
|
|
Content-Transfer-Encoding: quoted-printable
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
=C2=A0
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
https://news.risky.biz/r/27a04213?m=3D1a80b145-9ce5-407e-b496-c57050db16ff
|
|
|
|
|
|
Risky Business News [https://news.risky.biz/r/bdfa48f5?m=3D1a80b145-9ce5-40=
|
|
7e-b496-c57050db16ff]
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Risky Bulletin: Tbilisi public transport goes free after anti-government ha=
|
|
ck [https://news.risky.biz/r/c2f074bc?m=3D1a80b145-9ce5-407e-b496-c57050db1=
|
|
6ff]
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
By Catalin Cimpanu =E2=80=A2 27 Jan 2025
|
|
|
|
|
|
View in browser [https://news.risky.biz/r/04f10f83?m=3D1a80b145-9ce5-407e-b=
|
|
496-c57050db16ff]
|
|
|
|
|
|
|
|
|
|
View in browser [https://news.risky.biz/r/8112e431?m=3D1a80b145-9ce5-407e-b=
|
|
496-c57050db16ff]
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
TThis newsletter is brought to you by asset inventory and network visibilit=
|
|
y company=C2=A0runZero [https://news.risky.biz/r/e14c3d49?m=3D1a80b145-9ce5=
|
|
-407e-b496-c57050db16ff]. You can subscribe to an audio version of this new=
|
|
sletter as a podcast by searching for "Risky Business" in your podcatcher o=
|
|
r subscribing via this RSS feed [https://news.risky.biz/r/96a700ba?m=3D1a80=
|
|
b145-9ce5-407e-b496-c57050db16ff].
|
|
|
|
|
|
|
|
https://risky.biz/RBNEWS381/ [https://news.risky.biz/r/b3f75287?m=3D1a80b14=
|
|
5-9ce5-407e-b496-c57050db16ff]
|
|
|
|
Anti-government hackers have defaced payment systems installed in public tr=
|
|
ansport buses in Georgia's capital, Tbilisi, to play pro-European songs and=
|
|
slogans.
|
|
|
|
The incident took place on Friday morning as residents headed to work.
|
|
|
|
The ticket scanners and point-of-sale devices played the national anthems o=
|
|
f Georgia and the EU, along with pro-EU speeches from local politicians:
|
|
|
|
* The Georgian national anthem.
|
|
* A phrase from Georgia's first President Zviad Gamsakhurdia, from his fam=
|
|
ous 1991 speech declaring the restoration of the country's independence: "L=
|
|
ong live the independence of Georgia!"
|
|
* A segment from late Prime Minister Zurab Zhvania's statement at the Coun=
|
|
cil of Europe in 1999: "I am Georgian, therefore I am European."
|
|
* Statements from Bidzina Ivanishvili's pre-election speeches.
|
|
* Obscene remarks made by current president and pro-Kremlin figure Mikheil=
|
|
Kavelashvili.
|
|
* Beethoven's "Ode to Joy," considered the EU's unofficial anthem.
|
|
* The phrase "Glory to Ukraine, glory to Georgia, f*** Russia!"
|
|
|
|
The Tbilisi City Hall [https://news.risky.biz/r/2f4324f7?m=3D1a80b145-9ce5-=
|
|
407e-b496-c57050db16ff] shut down the system and is allowing residents to t=
|
|
ravel for free until the hacked systems are restored.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
=C2=A0
|
|
|
|
|
|
|
|
|
|
[https://news.risky.biz/r/c9fdbef4?m=3D1a80b145-9ce5-407e-b496-c57050db16ff=
|
|
]
|
|
|
|
|
|
|
|
|
|
The hacks take place after almost three months of daily anti-government pro=
|
|
tests. Massive anti-government protests [https://news.risky.biz/r/3c1d8501?=
|
|
m=3D1a80b145-9ce5-407e-b496-c57050db16ff] erupted in Tbilisi on October 28 =
|
|
last year after a pro-Kremlin party won the country's Parliamentary electio=
|
|
n [https://news.risky.biz/r/e131499a?m=3D1a80b145-9ce5-407e-b496-c57050db16=
|
|
ff] among allegations of massive fraud, threats of violence, and ballot stu=
|
|
ffing.
|
|
|
|
The winning Georgia Dream party canceled the country's EU ascension process=
|
|
, passed oppressive laws, and canceled the country's presidential election,=
|
|
appointing a president through the Parliament instead=E2=80=94putting even=
|
|
more fuel on the ongoing protests.
|
|
|
|
No hacktivist group has taken credit for the attacks yet.
|
|
|
|
This marks the first time that hacking has played any role in Georgia's ant=
|
|
i-Russian resistance movement. This also marks the first time I've seen in-=
|
|
bus payment and ticket scanning systems get hacked. So, an A+ for originali=
|
|
ty!
|
|
|
|
|
|
Risky Business Podcasts
|
|
|
|
Risky Business is now on YouTube with video versions of our main podcasts. =
|
|
Below is our latest weekly show with Pat and Adam at the helm!
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
=C2=A0
|
|
|
|
|
|
|
|
|
|
[https://news.risky.biz/r/4fd618e9?m=3D1a80b145-9ce5-407e-b496-c57050db16ff=
|
|
]
|
|
|
|
|
|
|
|
|
|
----------------------------------------
|
|
|
|
|
|
Breaches, hacks, and security incidents
|
|
|
|
Phemex crypto-heist: A threat actor has stolen $70 million worth of crypto-=
|
|
assets from Singapore-based exchange Phemex. The attackers stole multiple t=
|
|
ypes of crypto at the same time in a coordinated attack last Thursday. Phem=
|
|
ex paused and then resumed operations after addressing the hack. Some anony=
|
|
mous security researchers have told reporters that the techniques used in t=
|
|
he attack are reminiscent of North Korean hacking group TraderTraitor. [Add=
|
|
itional coverage in The Block [https://news.risky.biz/r/07990449?m=3D1a80b1=
|
|
45-9ce5-407e-b496-c57050db16ff]]
|
|
|
|
NoOnes crypto-heist: A threat actor has stolen $8 million worth of crypto-a=
|
|
ssets from crypto P2P marketplace NoOnes. The hack took place on the first =
|
|
day of the year and exploited a vulnerability in the platform's Solana brid=
|
|
ge. According to open-source investigators, the stolen funds were passed th=
|
|
rough the Tornado Cash mixing service. [Additional coverage in the Crowdfun=
|
|
dInsider [https://news.risky.biz/r/d835e82b?m=3D1a80b145-9ce5-407e-b496-c57=
|
|
050db16ff]]
|
|
|
|
BeyondTrust breach: Identity service provider BeyondTrust has updated its d=
|
|
ata breach disclosure [https://news.risky.biz/r/011b20d1?m=3D1a80b145-9ce5-=
|
|
407e-b496-c57050db16ff] and says that only 17 of its customers were impacte=
|
|
d by a security breach last December.
|
|
|
|
UnitedHealth doubles breach impact numbers: UnitedHealth says that 190 mill=
|
|
ion Americans had their data stolen in a ransomware attack at its Change He=
|
|
althcare subsidiary last year. The company almost doubled the initial numbe=
|
|
r of 100 million it put out last year. UnitedHealth says it has now notifie=
|
|
d most of the affected individuals. Change Healthcare was hit by the AlphV =
|
|
ransomware gang in February of last year in an incident that caused pharmac=
|
|
y and prescription issuance outages all over the country. [Additional cover=
|
|
age in TechCrunch [https://news.risky.biz/r/89f391b1?m=3D1a80b145-9ce5-407e=
|
|
-b496-c57050db16ff]]
|
|
|
|
British Museum network down after insider attack: London police have arrest=
|
|
ed a former employee who broke into the British Museum and shut down severa=
|
|
l IT systems. Officials say the man's actions took down the museum's ticket=
|
|
booking system. Several exhibitions were closed on Friday as a result of t=
|
|
he intrusion. [Additional coverage in The Guardian [https://news.risky.biz/=
|
|
r/b59d0da6?m=3D1a80b145-9ce5-407e-b496-c57050db16ff]]
|
|
|
|
Emergency systems hacked in Israeli schools: Pro-Palestine hacktivist group=
|
|
Handala has breached the Israeli Ministry of National Security and has sen=
|
|
t false missile alerts to Israeli schools and kindergartens. The alerts wer=
|
|
e sent to smartphones via SMS and to raid and emergency systems [https://ne=
|
|
ws.risky.biz/r/739d850e?m=3D1a80b145-9ce5-407e-b496-c57050db16ff] installed=
|
|
in schools and kindergartners. The group claims it wiped the system after =
|
|
sending the alerts. [Additional coverage in Ynet [https://news.risky.biz/r/=
|
|
a90a19b6?m=3D1a80b145-9ce5-407e-b496-c57050db16ff]]
|
|
|
|
TalkTalk breach: UK ISP TalkTalk is investigating a data breach at a third-=
|
|
party supplier after some of its subscriber data was posted on a hacking fo=
|
|
rum last week. The threat actor claims to have stolen the details of nearly=
|
|
19 million TalkTalk users in a breach this month. TalkTalk previously expe=
|
|
rienced a major breach in 2015 [https://news.risky.biz/r/f162a824?m=3D1a80b=
|
|
145-9ce5-407e-b496-c57050db16ff].
|
|
|
|
|
|
General tech and privacy
|
|
|
|
Windows Administrator Protection: The Microsoft security team has published=
|
|
its first-ever technical explanation [https://news.risky.biz/r/e9cffad1?m=
|
|
=3D1a80b145-9ce5-407e-b496-c57050db16ff] about the new Administrator Protec=
|
|
tion (AP) feature coming to Windows 11, a system that requires biometrics a=
|
|
uthentication to perform admin-level tasks. We first covered this back in N=
|
|
ovember [https://news.risky.biz/r/e5639596?m=3D1a80b145-9ce5-407e-b496-c570=
|
|
50db16ff].
|
|
|
|
Samsung Galaxy S25 Content Credentials: Samsung's new line of Galaxy S25 de=
|
|
vices are the first-ever devices to feature a new technology named Content =
|
|
Credentials. The new tech detects and automatically labels AI-generated con=
|
|
tent. Content Credentials currently supports images, but the technology wil=
|
|
l be extended to audio, video, and documents. [Additional coverage in TechC=
|
|
runch [https://news.risky.biz/r/d5d508fa?m=3D1a80b145-9ce5-407e-b496-c57050=
|
|
db16ff]]
|
|
|
|
PayPal fined over security failures: The New York Department of Financial S=
|
|
ervices has fined PayPal $2 million [https://news.risky.biz/r/822c85cc?m=3D=
|
|
1a80b145-9ce5-407e-b496-c57050db16ff] for failing to secure sensitive custo=
|
|
mer data. The agency says PayPal did not use personnel trained in cybersecu=
|
|
rity risks when updating its backend to integrate the IRS' Form 1099-K. Dev=
|
|
elopers left sensitive data unredacted in PayPal's systems, which allowed t=
|
|
hreat actors to be able to easily retrieve it once they compromised a user =
|
|
account.
|
|
|
|
Google launches custom Web Store: Google has launched [https://news.risky.b=
|
|
iz/r/873f938e?m=3D1a80b145-9ce5-407e-b496-c57050db16ff] a custom Chrome Web=
|
|
Store for enterprises to allow companies to filter what extensions appear =
|
|
on the store for their employees and avoid unwanted malware being installed=
|
|
=2E
|
|
|
|
More Texas car privacy probes: The Texas OAG has filed cases against four m=
|
|
ore automakers (Ford, Hyundai, Toyota, and Fiat Chrysler) over their car da=
|
|
ta collection practices. It previously also sued GM. No cases against Tesla=
|
|
, though, a car literally made to work on the cloud and track everything. [=
|
|
Additional coverage in The Record [https://news.risky.biz/r/09c6a6d2?m=3D1a=
|
|
80b145-9ce5-407e-b496-c57050db16ff]]
|
|
|
|
BlueSky spam networks: Underground services that sell follows, likes, and r=
|
|
eply spam have acquired BlueSky in their sights. One such service appears t=
|
|
o have registered over 8,000 BlueSky accounts [https://news.risky.biz/r/23d=
|
|
fd991?m=3D1a80b145-9ce5-407e-b496-c57050db16ff] for future abuse.
|
|
|
|
Image via @conspirator0
|
|
|
|
|
|
Government, politics, and policy
|
|
|
|
Belarus blocks internet during election weekend: The Belarusian government =
|
|
has taken down internet access across the country for three days during the=
|
|
country's presidential election this weekend. Officials ordered [https://n=
|
|
ews.risky.biz/r/81cafd7c?m=3D1a80b145-9ce5-407e-b496-c57050db16ff] ISPs to =
|
|
shut down the internet between Friday and Sunday in order to prevent threat=
|
|
s to election infrastructure. The measure is most likely meant to prevent t=
|
|
he public from coordinating protests via social media, similar to those tha=
|
|
t took place four years ago.
|
|
|
|
Turkiye proposes controversial cybersecurity law: Turkish officials are fas=
|
|
t-tracking a cybersecurity bill through Parliament for the creation of a na=
|
|
tional cybersecurity directorate. The bill contains provisions that would g=
|
|
rant the new agency the power to collect and store data from all the countr=
|
|
y's institutions and critical infrastructure providers. It also contains a =
|
|
provision that effectively criminalizes reporting on security incidents if =
|
|
the government has not first confirmed a breach. The country's opposition h=
|
|
as warned the bill effectively lays out a legal foundation of a sprawling s=
|
|
urveillance apparatus on the grounds of cybersecurity threats. [Additional =
|
|
coverage in the Turkish Minute [https://news.risky.biz/r/9671df80?m=3D1a80b=
|
|
145-9ce5-407e-b496-c57050db16ff] and the Nordic Monitor [https://news.risky=
|
|
=2Ebiz/r/7e0ba5e1?m=3D1a80b145-9ce5-407e=
|
|
-b496-c57050db16ff]] [h/t DataBreache=
|
|
s.net]
|
|
|
|
US cyber diplomacy funding halted: An order from Secretary of State Marco R=
|
|
ubio to halt all foreign aid has also ground to a halt the activity of the =
|
|
department's new cyber diplomacy bureau. [Additional coverage in The Record=
|
|
[https://news.risky.biz/r/f3e1e069?m=3D1a80b145-9ce5-407e-b496-c57050db16f=
|
|
f]]
|
|
|
|
US gives up ten old exploits: The US government has reported 39 vulnerabili=
|
|
ties to software vendors in fiscal year 2023. According to an unclassified =
|
|
report [PDF [https://news.risky.biz/r/19b58cf6?m=3D1a80b145-9ce5-407e-b496-=
|
|
c57050db16ff]], ten of the 39 were old vulnerabilities the government had d=
|
|
iscovered in previous years and kept for its own internal use. This likely =
|
|
includes offensive cyber operations. [h/t Joseph Menn [https://news.risky.b=
|
|
iz/r/24b11878?m=3D1a80b145-9ce5-407e-b496-c57050db16ff]]
|
|
|
|
|
|
Sponsor section
|
|
|
|
In this Risky Business News sponsor interview, Catalin Cimpanu talks with r=
|
|
unZero founder and CEO HD Moore about the company's latest capability, a fe=
|
|
ature called Inside-Out Attack Surface Management that takes internal finge=
|
|
rprints and scans the internet to discover possible exposures.
|
|
|
|
|
|
|
|
https://risky.biz/RBNEWSSI69/ [https://news.risky.biz/r/a7e5408d?m=3D1a80b1=
|
|
45-9ce5-407e-b496-c57050db16ff]
|
|
|
|
|
|
Arrests, cybercrime, and threat intel
|
|
|
|
US indicts new batch of DPRK IT workers: The US DOJ has charged [https://ne=
|
|
ws.risky.biz/r/6712c1cf?m=3D1a80b145-9ce5-407e-b496-c57050db16ff] two North=
|
|
Korean IT workers who posed as Westerners to obtain jobs at US companies a=
|
|
nd raise money for the country's weapons program. The two, along with other=
|
|
co-conspirators, are believed to have generated over $866,000 over the pas=
|
|
t six years. The DOJ has also charged two US nationals for running a laptop=
|
|
farm that allowed the workers to disguise their location and pose as US re=
|
|
sidents.
|
|
|
|
Former employee pleads guilty to hacks: A 39-year-old Florida man has plead=
|
|
ed guilty [https://news.risky.biz/r/72c30bef?m=3D1a80b145-9ce5-407e-b496-c5=
|
|
7050db16ff] to hacking and destroying the IT network of his former employer=
|
|
=2E He is the former Disney employee wh=
|
|
o hacked the company's menu software t=
|
|
o remove allergy information and deface the menu with mass-shooting-related=
|
|
data. See this CourtWatch [https://news.risky.biz/r/4f72c9b3?m=3D1a80b145-=
|
|
9ce5-407e-b496-c57050db16ff] article on the original indictment.
|
|
|
|
No more investigations in Prince Harry hack: The UK government says it will=
|
|
not launch any new investigations into UK tabloid The Sun for its hacking =
|
|
of Prince Harry's personal smartphone. Officials have dropped any future in=
|
|
vestigations after the outlet admitted guilt [https://news.risky.biz/r/3aa6=
|
|
d0eb?m=3D1a80b145-9ce5-407e-b496-c57050db16ff] and settled its case with th=
|
|
e UK royal house member. [Additional coverage in Byline Times [https://news=
|
|
=2Erisky.biz/r/91440d6b?m=3D1a80b145-9ce5-407e-b496-c57050db16ff]]
|
|
|
|
Malaysian scam gang detained: Malaysian authorities have detained 16 locals=
|
|
for their role in an online cyber scam syndicate that targeted people in S=
|
|
ingapore. The group operated by calling victims posing as bank representati=
|
|
ves, government officials, and police officers and urging victims to transf=
|
|
er funds to new accounts under the gang's control. The group stole over $1.=
|
|
4 million just from this scheme alone. [Additional coverage in The Malay Ma=
|
|
il [https://news.risky.biz/r/3f5928d9?m=3D1a80b145-9ce5-407e-b496-c57050db1=
|
|
6ff]]
|
|
|
|
New npm malware: Two-hundred-forty malicious npm packages were discovered a=
|
|
nd taken down last week. Check out the GitHub security advisory portal for=
|
|
=C2=A0more details [https://news.risky.biz/r/ed6adbfc?m=3D1a80b145-9ce5-407=
|
|
e-b496-c57050db16ff].
|
|
|
|
Email text salting: Cisco Talos observed an increase in the number of email=
|
|
threats leveraging hidden text salting [https://news.risky.biz/r/f7e13539?=
|
|
m=3D1a80b145-9ce5-407e-b496-c57050db16ff] (also known as "poisoning") in th=
|
|
e second half of 2024.
|
|
|
|
SSH tunneling: Sygnia says [https://news.risky.biz/r/76d33e84?m=3D1a80b145-=
|
|
9ce5-407e-b496-c57050db16ff] it's seeing ransomware gangs use SSH tunnels t=
|
|
o backdoor VMWare ESXi instances and deploy their file encryptors.
|
|
|
|
C2-over-QUIC: Security firm Active Countermeasures has published a pretty g=
|
|
ood overview [https://news.risky.biz/r/2c15f357?m=3D1a80b145-9ce5-407e-b496=
|
|
-c57050db16ff] of how threat actors are hiding C2 traffic using the QUIC pr=
|
|
otocol.
|
|
|
|
FunkSec group: Digital risk company Foresiet has published a profile on the=
|
|
tactics of FunkSec [https://news.risky.biz/r/cd572770?m=3D1a80b145-9ce5-40=
|
|
7e-b496-c57050db16ff], a new threat actor that was last month's most prolif=
|
|
ic ransomware gang.
|
|
|
|
SimpleHelp campaign: ArcticWolf says it has spotted [https://news.risky.biz=
|
|
/r/b7ff297d?m=3D1a80b145-9ce5-407e-b496-c57050db16ff] threat actors using S=
|
|
impleHelp remote access servers to breach corporate networks. The company h=
|
|
as yet to link the intrusions to a specific vulnerability but noted the cam=
|
|
paign started a week after Horizon3 published a report [https://news.risky.=
|
|
biz/r/d785653b?m=3D1a80b145-9ce5-407e-b496-c57050db16ff] about three new Si=
|
|
mpleHelp vulnerabilities.
|
|
|
|
MyCrypter: A threat actor is selling access to a new malware crypting servi=
|
|
ce named MyCrypter [https://news.risky.biz/r/48882a10?m=3D1a80b145-9ce5-407=
|
|
e-b496-c57050db16ff].
|
|
|
|
Royal-to-BlackSuit rebrand: Red Sense researchers have published an overvie=
|
|
w of how the Royal ransomware group had slowly rebranded [https://news.risk=
|
|
y.biz/r/fc9da456?m=3D1a80b145-9ce5-407e-b496-c57050db16ff] into what we kno=
|
|
w now as BlackSuit. Royal itself is an offshoot of the Conti gang, which it=
|
|
self is a rebrand of the old Ryuk crew.
|
|
|
|
|
|
Malware technical reports
|
|
|
|
Trojanized builder infects 18k: Over 18,000 users infected themselves with =
|
|
a backdoor after they downloaded a cracked malware builder. Security firm C=
|
|
loudSEK says [https://news.risky.biz/r/22d6dde6?m=3D1a80b145-9ce5-407e-b496=
|
|
-c57050db16ff] the builder was advertised using online tutorials, YouTube a=
|
|
nd Telegram channels, and GitHub repositories. The backdoor was hidden insi=
|
|
de a builder for the XWorm RAT, a popular malware strain. Users who attempt=
|
|
ed to use the builder had their browser, Discord, and Telegram data stolen.
|
|
|
|
Tangerine Turkey: Red Canary researchers have discovered a new malware stra=
|
|
in named Tangerine Turkey [https://news.risky.biz/r/878960fd?m=3D1a80b145-9=
|
|
ce5-407e-b496-c57050db16ff]. The malware was first seen in November of last=
|
|
year and is a VBS worm that spreads via portable USB devices. Its primary =
|
|
role is to spread offline via USB and then deploy a cryptominer named Zephy=
|
|
r when the user connects to the internet.
|
|
|
|
SilentCryptoMiner: Dr.Web researchers have published an analysis of a three=
|
|
-year-old campaign deploying the SilentCryptoMiner malware [https://news.ri=
|
|
sky.biz/r/fd1d2cd6?m=3D1a80b145-9ce5-407e-b496-c57050db16ff].
|
|
|
|
Helldown ransomware: The ThreatMon team has published a report on the new H=
|
|
elldown ransomware [https://news.risky.biz/r/8208a03f?m=3D1a80b145-9ce5-407=
|
|
e-b496-c57050db16ff].
|
|
|
|
> "The Helldown ransomware group emerged as a significant cyber threat in A=
|
|
ugust 2024, demonstrating sophisticated capabilities in targeting both Linu=
|
|
x and Windows systems across multiple sectors and geographic regions. Throu=
|
|
gh our technical analysis, we have identified this group as a highly adapta=
|
|
ble threat actor group that has successfully compromised approximately 40 o=
|
|
rganizations, including notable targets such as Zyxel."
|
|
|
|
Premium Panel: Intrinsec researchers take a look at Premium Panel [https://=
|
|
news.risky.biz/r/3fed04c4?m=3D1a80b145-9ce5-407e-b496-c57050db16ff], a thre=
|
|
e-year-old phishing toolkit used in the wild.
|
|
|
|
|
|
Sponsor section
|
|
|
|
Senior Sales Engineer Ali Cheikh demonstrates runZero to Risky Business hos=
|
|
t Patrick Gray. runZero is a cyber asset management tool that combines acti=
|
|
ve scanning, passive discovery, and API integrations to discover IT, OT, an=
|
|
d IoT assets (both managed and unmanaged) across your network, including cl=
|
|
oud, mobile, and remote environments.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
=C2=A0
|
|
|
|
|
|
|
|
|
|
[https://news.risky.biz/r/22b3682f?m=3D1a80b145-9ce5-407e-b496-c57050db16ff=
|
|
]
|
|
|
|
|
|
|
|
|
|
|
|
APTs, cyber-espionage, and info-ops
|
|
|
|
Andariel: AhnLab researchers have spotted [https://news.risky.biz/r/ec1e395=
|
|
1?m=3D1a80b145-9ce5-407e-b496-c57050db16ff] North Korean APT group Andariel=
|
|
using RID hijacking in recent attacks.
|
|
|
|
> "RID Hijacking is an attack technique that involves modifying the Relativ=
|
|
e Identifier (RID) value of an account with restricted privileges, such as =
|
|
a regular user or guest account, to match the RID value of an account with =
|
|
higher privileges, such as an administrator."
|
|
|
|
Silent Lynx: Seqrite researchers have discovered a new APT group named Sile=
|
|
nt Lynx [https://news.risky.biz/r/75c1cbdb?m=3D1a80b145-9ce5-407e-b496-c570=
|
|
50db16ff] that primarily targets government entities in Kyrgyzstan.
|
|
|
|
> "In our ongoing tracking of Silent Lynx, we discovered notable similariti=
|
|
es and overlaps with a Kazakhstan-based threat actor/group known as YoroTro=
|
|
oper [https://news.risky.biz/r/9b3d4208?m=3D1a80b145-9ce5-407e-b496-c57050d=
|
|
b16ff], as identified by our colleagues at Cisco Talos."
|
|
|
|
Kremlin disinfo switches to Germany: Russian-backed disinformation groups a=
|
|
re flooding the internet with disinformation and pro-AfD content ahead of G=
|
|
ermany's parliamentary election, according to reports from Antibot4Navalny =
|
|
[https://news.risky.biz/r/f83148d6?m=3D1a80b145-9ce5-407e-b496-c57050db16ff=
|
|
], Correctiv [https://news.risky.biz/r/a76be239?m=3D1a80b145-9ce5-407e-b496=
|
|
-c57050db16ff], the Gnida Project [https://news.risky.biz/r/de765925?m=3D1a=
|
|
80b145-9ce5-407e-b496-c57050db16ff], and NewsGuard [https://news.risky.biz/=
|
|
r/eec125ff?m=3D1a80b145-9ce5-407e-b496-c57050db16ff]. The campaign has been=
|
|
linked to a threat actor tracked as Storm-1516 [https://news.risky.biz/r/7=
|
|
58910be?m=3D1a80b145-9ce5-407e-b496-c57050db16ff]. The group was active las=
|
|
t year attacking the Harris side and supporting the Trump campaign in the U=
|
|
S. The group is allegedly coordinated [https://news.risky.biz/r/c20fdb2b?m=
|
|
=3D1a80b145-9ce5-407e-b496-c57050db16ff] by US fugitive turned Kremlin prop=
|
|
agandist John Mark Dougan. According to German intelligence services (via B=
|
|
ild [https://news.risky.biz/r/32cc8ff0?m=3D1a80b145-9ce5-407e-b496-c57050db=
|
|
16ff]), Russian authorities allocate over $2 billion each year for disinfor=
|
|
mation operations.
|
|
|
|
|
|
Vulnerabilities, security research, and bug bounty
|
|
|
|
Zyxel reboot loops: A faulty application signature update has forced Zyxel =
|
|
firewalls into reboot loops [https://news.risky.biz/r/6f34a285?m=3D1a80b145=
|
|
-9ce5-407e-b496-c57050db16ff]. The bug is impacting the company's USG FLEX =
|
|
or ATP series. Networks protected by these devices are currently exposed to=
|
|
attacks. Zyxel says device recovery is possible but only using on-site pre=
|
|
sence.
|
|
|
|
AMD CPU bug patch leaks early: Laptop maker ASUS has leaked [https://news.r=
|
|
isky.biz/r/a00f142b?m=3D1a80b145-9ce5-407e-b496-c57050db16ff] a patch for a=
|
|
n upcoming major CPU vulnerability. The patch is for AMD CPUs on Windows. I=
|
|
t is unclear if the issue also impacts other CPU makers and platforms. [h/t=
|
|
Dan Goodin]
|
|
|
|
Atlassian security updates: Atlassian has released its monthly security upd=
|
|
ates [https://news.risky.biz/r/30868090?m=3D1a80b145-9ce5-407e-b496-c57050d=
|
|
b16ff] for January 2025.
|
|
|
|
New EDR bypass: Praetorian security researchers have discovered a new EDR b=
|
|
ypass [https://news.risky.biz/r/da5e2c25?m=3D1a80b145-9ce5-407e-b496-c57050=
|
|
db16ff] using CPU hardware breakpoints.
|
|
|
|
Llama code exec: Oligo has found a code exec vulnerability [https://news.ri=
|
|
sky.biz/r/8e94003e?m=3D1a80b145-9ce5-407e-b496-c57050db16ff] in Meta's Llam=
|
|
a open-source AI model.
|
|
|
|
> "The vulnerability, CVE-2024-50050 [https://news.risky.biz/r/def7f8bf?m=
|
|
=3D1a80b145-9ce5-407e-b496-c57050db16ff] enables attackers to execute arbit=
|
|
rary code on the llama-stack inference server from the network."
|
|
|
|
Kubernetes Windows bug write-up: Akamai security researcher Tomer Peled has=
|
|
published a technical write-up [https://news.risky.biz/r/adb2443e?m=3D1a80=
|
|
b145-9ce5-407e-b496-c57050db16ff] on a bug tracked as CVE-2024-9042 [https:=
|
|
//news.risky.biz/r/406c5b13?m=3D1a80b145-9ce5-407e-b496-c57050db16ff] that =
|
|
impacts Kubernetes Windows nodes. Peled says the bug can be used to take ov=
|
|
er K8s hosts.
|
|
|
|
Clone2Leak vulnerability: Flatt Security has discovered a vulnerability in =
|
|
the Git Credential Protocol, a system that stores user credentials in Git-b=
|
|
ased applications. Named Clone2Leak [https://news.risky.biz/r/09240d40?m=3D=
|
|
1a80b145-9ce5-407e-b496-c57050db16ff], the bug allows threat actors to stea=
|
|
l a victim's Git credentials when they clone a malicious repository. Clone2=
|
|
Leak impacts the Git codebase, official GitHub desktop and CLI apps, and th=
|
|
ird-party repo managers.
|
|
|
|
Node.js CVE drama: Socket Security has a good article [https://news.risky.b=
|
|
iz/r/d3fcf70c?m=3D1a80b145-9ce5-407e-b496-c57050db16ff] on a recent drama i=
|
|
n the infosec community about the issuance of a new CVE for outdated Node.j=
|
|
s installations.
|
|
|
|
|
|
Infosec industry
|
|
|
|
Pwn2Own Automotive 2025: Security researcher Sina Kheirkhah has won the Pwn=
|
|
2Own Automotive 2025 [https://news.risky.biz/r/adf2ed65?m=3D1a80b145-9ce5-4=
|
|
07e-b496-c57050db16ff] hacking contest.
|
|
|
|
New tool=E2=80=94EByte ransomware: Purple teamer Codepulze has open-sourced=
|
|
EByte [https://news.risky.biz/r/9a692779?m=3D1a80b145-9ce5-407e-b496-c5705=
|
|
0db16ff], a Go-based ransomware strain.
|
|
|
|
New tool=E2=80=94WinVisor: The Elastic security team [https://news.risky.bi=
|
|
z/r/642d4b16?m=3D1a80b145-9ce5-407e-b496-c57050db16ff] has released WinViso=
|
|
r [https://news.risky.biz/r/907e2bcd?m=3D1a80b145-9ce5-407e-b496-c57050db16=
|
|
ff], a hypervisor-based emulator for Windows x64 binaries.
|
|
|
|
New tool=E2=80=94YaraMonitor: Security researcher Monty has released YaraMo=
|
|
nitor [https://news.risky.biz/r/435229d0?m=3D1a80b145-9ce5-407e-b496-c57050=
|
|
db16ff], a tool to continuously ingest, analyze, and alert on malware sampl=
|
|
es given a set of Yara rules.
|
|
|
|
New tool=E2=80=94Slack Jack: Security researcher Abel de la Paz has release=
|
|
d Slack Jack [https://news.risky.biz/r/a9b08bad?m=3D1a80b145-9ce5-407e-b496=
|
|
-c57050db16ff], a tool to hijack a Slack bot using its token and perform va=
|
|
rious enumeration and exploitation attacks.
|
|
|
|
New tool=E2=80=94LOLTunnels: Security researcher Kamran Saifullah has relea=
|
|
sed a project named LOLTunnels [https://news.risky.biz/r/fd0eca94?m=3D1a80b=
|
|
145-9ce5-407e-b496-c57050db16ff]. The project tracks a list of digital tunn=
|
|
eling technologies that can be abused by threat actors as well as by inside=
|
|
rs for data exfiltrations, persistence, shell access, and more. The project=
|
|
is similar to other initiatives that track benign tools that can be abused=
|
|
for attacks on Windows (LOLBAS [https://news.risky.biz/r/560143f6?m=3D1a80=
|
|
b145-9ce5-407e-b496-c57050db16ff],=C2=A0LOLDrivers [https://news.risky.biz/=
|
|
r/28fee1db?m=3D1a80b145-9ce5-407e-b496-c57050db16ff], and=C2=A0LOFLCAB [htt=
|
|
ps://news.risky.biz/r/16ecf142?m=3D1a80b145-9ce5-407e-b496-c57050db16ff]), =
|
|
Linux (GTFOBins [https://news.risky.biz/r/39c64563?m=3D1a80b145-9ce5-407e-b=
|
|
496-c57050db16ff]), macOS (LOOBins [https://news.risky.biz/r/07d8c378?m=3D1=
|
|
a80b145-9ce5-407e-b496-c57050db16ff]), CI/CD pipelines (LOTP [https://news.=
|
|
risky.biz/r/74a8578a?m=3D1a80b145-9ce5-407e-b496-c57050db16ff]), ESXi VMs (=
|
|
LOLESXi [https://news.risky.biz/r/2c3e6b42?m=3D1a80b145-9ce5-407e-b496-c570=
|
|
50db16ff]), and RMM software (LOLRMM [https://news.risky.biz/r/76f0603a?m=
|
|
=3D1a80b145-9ce5-407e-b496-c57050db16ff]).
|
|
|
|
Threat/trend reports: DataDog [https://news.risky.biz/r/8969cab2?m=3D1a80b1=
|
|
45-9ce5-407e-b496-c57050db16ff], Harfang Labs [https://news.risky.biz/r/b38=
|
|
92a8c?m=3D1a80b145-9ce5-407e-b496-c57050db16ff], Red Canary [https://news.r=
|
|
isky.biz/r/b90f9136?m=3D1a80b145-9ce5-407e-b496-c57050db16ff], Rising [http=
|
|
s://news.risky.biz/r/172d7543?m=3D1a80b145-9ce5-407e-b496-c57050db16ff], Se=
|
|
curonix [https://news.risky.biz/r/fea33d41?m=3D1a80b145-9ce5-407e-b496-c570=
|
|
50db16ff], and the World Economic Forum [https://news.risky.biz/r/9bccbffd?=
|
|
m=3D1a80b145-9ce5-407e-b496-c57050db16ff] have published reports and summar=
|
|
ies covering various infosec trends and industry threats.
|
|
|
|
JSAC 2024: Talks from Japan CERT's JSAC 2024 security conference, which too=
|
|
k place last January, are=C2=A0available on YouTube [https://news.risky.biz=
|
|
/r/6de5ae38?m=3D1a80b145-9ce5-407e-b496-c57050db16ff]. This year's edition =
|
|
videos have not yet been uploaded.
|
|
|
|
DeepSeek-R1: Chinese startup DeepSeek has released [https://news.risky.biz/=
|
|
r/2903fffc?m=3D1a80b145-9ce5-407e-b496-c57050db16ff] a new open-source AI m=
|
|
odel named DeepSeek-R1 that appears to be really good at coding, gaining qu=
|
|
ite a lot of positive reviews (and warnings) from the infosec community.
|
|
|
|
|
|
Risky Business Podcasts
|
|
|
|
In this podcast, Tom Uren and Adam Boileau talk about the continued importa=
|
|
nce of hack and leak operations. They didn't really affect the recent US pr=
|
|
esidential election, but they are still a powerful tool for vested interest=
|
|
s to influence public policy.
|
|
|
|
|
|
|
|
https://risky.biz/SRB106/ [https://news.risky.biz/r/76b9d335?m=3D1a80b145-9=
|
|
ce5-407e-b496-c57050db16ff]
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
=C2=A0
|
|
|
|
|
|
|
|
|
|
[https://news.risky.biz/r/2a0818f8?m=3D1a80b145-9ce5-407e-b496-c57050db16ff=
|
|
]
|
|
|
|
|
|
|
|
|
|
In this edition of Between Two Nerds, Tom Uren and The Grugq talk about the=
|
|
evolution of Russian cyber operations during its invasion of Ukraine.
|
|
|
|
|
|
|
|
https://risky.biz/BTN105/ [https://news.risky.biz/r/e6b529cf?m=3D1a80b145-9=
|
|
ce5-407e-b496-c57050db16ff]
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
=C2=A0
|
|
|
|
|
|
|
|
|
|
[https://news.risky.biz/r/b647ab86?m=3D1a80b145-9ce5-407e-b496-c57050db16ff=
|
|
]
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Risky.Biz =C2=A9 2025 =E2=80=93 Unsubscribe [https://news.risky.biz/unsubsc=
|
|
ribe/?uuid=3D1a80b145-9ce5-407e-b496-c57050db16ff&key=3Db42b9394aa843f18196=
|
|
f4ef71cbb26d29e72298989fd79444a9147b6e32ee87b&newsletter=3D102a29ad-4bfc-41=
|
|
05-8645-703ba0268482]
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
=C2=A0
|
|
|
|
|
|
|
|
|
|
|
|
--60ee574c50bc56e8b98e0e7037c196c1bf7ffb630b4184fc10d7ff77e48e
|
|
Content-Type: text/html; charset="utf-8"
|
|
Content-Transfer-Encoding: quoted-printable
|
|
|
|
<!doctype html>
|
|
<html>
|
|
<head>
|
|
<meta name=3D"viewport" content=3D"width=3Ddevice-width">
|
|
<meta http-equiv=3D"Content-Type" content=3D"text/html; charset=3DU=
|
|
TF-8">
|
|
<!--[if mso]><xml><o:OfficeDocumentSettings><o:PixelsPerInch>96</o:=
|
|
PixelsPerInch><o:AllowPNG/></o:OfficeDocumentSettings></xml><![endif]-->
|
|
<title>Risky Bulletin: Tbilisi public transport goes free after ant=
|
|
i-government hack</title>
|
|
<style>
|
|
=2Epost-title-link {
|
|
display: block;
|
|
margin-top: 32px;
|
|
color: #15212A;
|
|
text-align: center;
|
|
line-height: 1.1em;
|
|
}
|
|
=2Epost-title-link-left {
|
|
text-align: left;
|
|
}
|
|
=2Eview-online-link {
|
|
word-wrap: none;
|
|
white-space: nowrap;
|
|
color: #738a94;
|
|
text-decoration: underline !important;
|
|
}
|
|
=2Ekg-nft-link {
|
|
display: block;
|
|
text-decoration: none !important;
|
|
color: #15212A !important;
|
|
font-family: inherit !important;
|
|
font-size: 14px;
|
|
line-height: 1.3em;
|
|
padding-top: 4px;
|
|
padding-right: 20px;
|
|
padding-left: 20px;
|
|
padding-bottom: 4px;
|
|
}
|
|
=2Ekg-twitter-link {
|
|
display: block;
|
|
text-decoration: none !important;
|
|
color: #15212A !important;
|
|
font-family: inherit !important;
|
|
font-size: 15px;
|
|
padding: 8px;
|
|
line-height: 1.3em;
|
|
}
|
|
=2Ekg-audio-link {
|
|
color: #738a94 !important;
|
|
}
|
|
@media only screen and (max-width: 620px) {
|
|
table.body {
|
|
width: 100%;
|
|
min-width: 100%;
|
|
}
|
|
|
|
.hide-mobile {
|
|
display: none;
|
|
}
|
|
|
|
.mobile-only {
|
|
display: initial !important;
|
|
}
|
|
|
|
.hide-desktop {
|
|
display: initial !important;
|
|
}
|
|
|
|
.desktop-only {
|
|
display: none !important;
|
|
}
|
|
|
|
table.body p,
|
|
table.body ul,
|
|
table.body ol,
|
|
table.body td {
|
|
font-size: 16px;
|
|
}
|
|
|
|
table.body .post-excerpt {
|
|
font-size: 16px !important;
|
|
}
|
|
|
|
table.body .kg-callout-card {
|
|
padding: 16px 24px !important;
|
|
}
|
|
|
|
table.body .kg-callout-text {
|
|
font-size: 16px !important;
|
|
line-height: 1.5em !important;
|
|
}
|
|
|
|
table.body pre {
|
|
white-space: pre-wrap !important;
|
|
word-break: break-word !important;
|
|
}
|
|
|
|
table.body .content {
|
|
padding: 0 !important;
|
|
}
|
|
|
|
table.body .container {
|
|
padding: 0 !important;
|
|
width: 100% !important;
|
|
}
|
|
|
|
table.body .main {
|
|
border-spacing: 10px 0 !important;
|
|
border-left-width: 0 !important;
|
|
border-radius: 0 !important;
|
|
border-right-width: 0 !important;
|
|
}
|
|
|
|
table.body .btn table {
|
|
width: 100% !important;
|
|
}
|
|
|
|
table.body .btn a {
|
|
width: 100% !important;
|
|
}
|
|
|
|
table.body .img-responsive {
|
|
height: auto !important;
|
|
max-width: 100% !important;
|
|
width: auto !important;
|
|
}
|
|
|
|
table.body .site-icon {
|
|
padding-top: 0 !important;
|
|
}
|
|
|
|
table.body .site-info {
|
|
padding-top: 24px !important;
|
|
}
|
|
|
|
table.body .post-title-link {
|
|
margin-top: 24px !important;
|
|
}
|
|
|
|
table.body .post-meta-wrapper {
|
|
padding-bottom: 24px !important;
|
|
}
|
|
|
|
table.body .site-icon img {
|
|
width: 36px !important;
|
|
height: 36px !important;
|
|
}
|
|
|
|
table.body .site-url a {
|
|
font-size: 13px !important;
|
|
padding-bottom: 16px !important;
|
|
}
|
|
|
|
table.body .post-meta,
|
|
table.body .post-meta-date {
|
|
white-space: normal !important;
|
|
font-size: 13px !important;
|
|
line-height: 1.2em;
|
|
}
|
|
|
|
table.body .post-meta,
|
|
table.body .view-online {
|
|
width: 100% !important;
|
|
}
|
|
|
|
table.body .post-meta-left,
|
|
table.body .post-meta-left.view-online {
|
|
width: 100% !important;
|
|
text-align: left !important;
|
|
}
|
|
|
|
table.body .post-meta.view-online-mobile {
|
|
display: table-row !important;
|
|
}
|
|
|
|
table.body .post-meta-left.view-online-mobile,
|
|
table.body .post-meta-left.view-online-mobile .view-online {
|
|
text-align: left !important;
|
|
}
|
|
|
|
table.body .post-meta.view-online.desktop {
|
|
display: none !important;
|
|
}
|
|
|
|
table.body .view-online {
|
|
text-decoration: underline;
|
|
}
|
|
|
|
table.body .footer p,
|
|
table.body .footer p span {
|
|
font-size: 13px !important;
|
|
}
|
|
|
|
table.body .view-online-link,
|
|
table.body .footer,
|
|
table.body .footer a {
|
|
font-size: 13px !important;
|
|
}
|
|
|
|
table.body .post-title a {
|
|
font-size: 26px !important;
|
|
line-height: 1.1em !important;
|
|
}
|
|
|
|
table.feedback-buttons {
|
|
display: table !important;
|
|
width: 100% !important;
|
|
max-width: 390px;
|
|
}
|
|
|
|
table.feedback-buttons img {
|
|
display: inherit !important;
|
|
}
|
|
|
|
table.body .feedback-button-text {
|
|
display: none!important;
|
|
}
|
|
|
|
table.body .latest-posts-header {
|
|
font-size: 12px !important;
|
|
}
|
|
|
|
table.body .latest-post-title {
|
|
padding-right: 8px !important;
|
|
}
|
|
|
|
table.body .latest-post h4,
|
|
table.body .latest-post h4 span {
|
|
padding: 4px 0 6px !important;
|
|
font-size: 15px !important;
|
|
}
|
|
|
|
table.body .latest-post-excerpt,
|
|
table.body .latest-post-excerpt a,
|
|
table.body .latest-post-excerpt span {
|
|
font-size: 13px !important;
|
|
line-height: 1.2 !important;
|
|
}
|
|
|
|
table.body .subscription-box h3 {
|
|
font-size: 14px !important;
|
|
}
|
|
|
|
table.body .subscription-box p,
|
|
table.body .subscription-box p span {
|
|
font-size: 13px !important;
|
|
}
|
|
|
|
table.body .subscription-details,
|
|
table.body .manage-subscription {
|
|
display: inline-block;
|
|
width: 100%;
|
|
text-align: left !important;
|
|
font-size: 13px !important;
|
|
}
|
|
|
|
table.body .subscription-details {
|
|
padding-bottom: 12px;
|
|
}
|
|
|
|
table.body .kg-bookmark-card {
|
|
width: 90vw;
|
|
}
|
|
|
|
table.body .kg-bookmark-thumbnail {
|
|
display: none !important;
|
|
}
|
|
|
|
table.body .kg-bookmark-metadata span {
|
|
font-size: 13px !important;
|
|
}
|
|
|
|
table.body .kg-embed-card {
|
|
max-width: 90vw !important;
|
|
}
|
|
|
|
table.body h1 {
|
|
font-size: 32px !important;
|
|
line-height: 1.3em !important;
|
|
}
|
|
|
|
table.body h2,
|
|
table.body h2 span {
|
|
font-size: 26px !important;
|
|
line-height: 1.22em !important;
|
|
}
|
|
|
|
table.body h3 {
|
|
font-size: 21px !important;
|
|
line-height: 1.25em !important;
|
|
}
|
|
|
|
table.body h4 {
|
|
font-size: 19px !important;
|
|
line-height: 1.3em !important;
|
|
}
|
|
|
|
table.body h5 {
|
|
font-size: 16px !important;
|
|
line-height: 1.4em !important;
|
|
}
|
|
|
|
table.body h6 {
|
|
font-size: 16px !important;
|
|
line-height: 1.4em !important;
|
|
}
|
|
|
|
table.body blockquote {
|
|
font-size: 16px !important;
|
|
line-height: 1.6em;
|
|
margin-bottom: 0;
|
|
}
|
|
|
|
table.body blockquote p {
|
|
margin-right: 15px !important;
|
|
margin-left: 15px !important;
|
|
}
|
|
|
|
table.body blockquote.kg-blockquote-alt {
|
|
border-left: 0 none !important;
|
|
margin: 0 !important;
|
|
font-size: 18px !important;
|
|
line-height: 1.4em !important;
|
|
}
|
|
|
|
table.body blockquote.kg-blockquote-alt p {
|
|
margin-right: 20px !important;
|
|
margin-left: 20px !important;
|
|
}
|
|
|
|
table.body hr {
|
|
margin: 2em 0 !important;
|
|
}
|
|
|
|
table.body .kg-header-card.kg-v2 span {
|
|
font-size: inherit !important;
|
|
}
|
|
|
|
table.body .kg-header-card.kg-v2 .kg-header-card-content {
|
|
padding-top: 64px !important;
|
|
padding-bottom: 64px !important;
|
|
}
|
|
|
|
table.body .kg-header-card.kg-v2 .kg-header-card-image + .kg-header-card-=
|
|
content {
|
|
padding-top: 52px !important;
|
|
padding-bottom: 52px !important;
|
|
}
|
|
|
|
table.body .kg-header-card.kg-v2 .kg-header-card-heading {
|
|
font-size: 2.2em !important;
|
|
line-height: 1.1 !important;
|
|
}
|
|
|
|
table.body .kg-header-card.kg-v2 .kg-header-card-subheading {
|
|
line-height: 1.3em !important;
|
|
}
|
|
|
|
.feature-image-caption {
|
|
font-size: 13px!important;
|
|
}
|
|
|
|
.kg-card-figcaption {
|
|
font-size: 13px!important;
|
|
}
|
|
|
|
.kg-card-figcaption p,
|
|
=2Ekg-card-figcaption p span {
|
|
font-size: 13px!important;
|
|
}
|
|
}
|
|
@media all {
|
|
.subscription-details p.hidden {
|
|
display: none !important;
|
|
}
|
|
|
|
.ExternalClass {
|
|
width: 100%;
|
|
}
|
|
|
|
.ExternalClass,
|
|
=2EExternalClass p,
|
|
=2EExternalClass span,
|
|
=2EExternalClass font,
|
|
=2EExternalClass td,
|
|
=2EExternalClass div {
|
|
line-height: 100%;
|
|
}
|
|
|
|
.apple-link a {
|
|
color: inherit !important;
|
|
font-family: inherit !important;
|
|
font-size: inherit !important;
|
|
font-weight: inherit !important;
|
|
line-height: inherit !important;
|
|
text-decoration: none !important;
|
|
}
|
|
|
|
#MessageViewBody a {
|
|
color: inherit;
|
|
text-decoration: none;
|
|
font-size: inherit;
|
|
font-family: inherit;
|
|
font-weight: inherit;
|
|
line-height: inherit;
|
|
}
|
|
|
|
.btn-primary table td:hover {
|
|
background-color: #34495e !important;
|
|
}
|
|
|
|
.btn-primary a:hover {
|
|
background-color: #34495e !important;
|
|
border-color: #34495e !important;
|
|
}
|
|
}
|
|
</style>
|
|
</head>
|
|
<body style=3D"background-color: #fff; font-family: -apple-system, Blin=
|
|
kMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-serif, &=
|
|
#39;Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI Symbol&=
|
|
#39;; -webkit-font-smoothing: antialiased; font-size: 18px; line-height: 1.=
|
|
4; margin: 0; padding: 0; -ms-text-size-adjust: 100%; -webkit-text-size-adj=
|
|
ust: 100%; color: #15212A;"><img width=3D"1" height=3D"1" alt=3D"" src=3D"h=
|
|
ttp://email.m.ghost.io/o/eJw8zjFuwzAMQNHTRJsNkqJEaeBhxIiJhThV4TpFj18gQ8Y_fO=
|
|
B1FetXLMEVJUpNqRAHf7axL6NrlipY3djjLScAwExOncKm3NFjdIy5SK0p91tFyuLNGliVFoYSU=
|
|
AIkgRSBeI3OvRAbx8Jo0S8Mz_W-zZ9zHTMcurfveVwYztfxZe362Gb7W0cPp9prfyxvVDj1fXzK=
|
|
9nlfEBixpPCr9B8AAP__mjU80A">
|
|
<span class=3D"preheader" style=3D"color: transparent; display: non=
|
|
e; height: 0; max-height: 0; max-width: 0; opacity: 0; overflow: hidden; ms=
|
|
o-hide: all; visibility: hidden; width: 0;">In other news: Zyxel firewalls =
|
|
are in a reboot loop; UnitedHealth doubles the number of users impacted by =
|
|
last year's ransomware attack; crypto-exchange Phemex hacked for $70 mi=
|
|
llion.</span>
|
|
<table role=3D"presentation" border=3D"0" cellpadding=3D"0" cellspa=
|
|
cing=3D"0" class=3D"body" width=3D"100%" style=3D"border-collapse: separate=
|
|
; mso-table-lspace: 0pt; mso-table-rspace: 0pt; background-color: #fff; wid=
|
|
th: 100%;" bgcolor=3D"#fff">
|
|
<!-- Outlook doesn't respect max-width so we need an extra cent=
|
|
ered table -->
|
|
<!--[if mso]>
|
|
<tr>
|
|
<td>
|
|
<center>
|
|
<table border=3D"0" cellpadding=3D"0" cellspacing=
|
|
=3D"0" width=3D"600">
|
|
<![endif]-->
|
|
<tr>
|
|
<td style=3D"font-family: -apple-system, BlinkMacSystemFont=
|
|
, 'Segoe UI', Roboto, Helvetica, Arial, sans-serif, 'Apple Colo=
|
|
r Emoji', 'Segoe UI Emoji', 'Segoe UI Symbol'; font-siz=
|
|
e: 18px; vertical-align: top; color: #15212A;" valign=3D"top"> </td>
|
|
<td class=3D"container" style=3D"font-family: -apple-system=
|
|
, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-se=
|
|
rif, 'Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI S=
|
|
ymbol'; font-size: 18px; vertical-align: top; color: #15212A; display: =
|
|
block; max-width: 600px; margin: 0 auto;" valign=3D"top">
|
|
<div class=3D"content" style=3D"box-sizing: border-box;=
|
|
display: block; margin: 0 auto; max-width: 600px;">
|
|
<!-- START CENTERED WHITE CONTAINER -->
|
|
<table role=3D"presentation" border=3D"0" cellpaddi=
|
|
ng=3D"0" cellspacing=3D"0" class=3D"main" width=3D"100%" style=3D"border-co=
|
|
llapse: separate; mso-table-lspace: 0pt; mso-table-rspace: 0pt; background:=
|
|
#ffffff; border-radius: 3px; border-spacing: 20px 0; width: 100%;">
|
|
|
|
<!-- START MAIN CONTENT AREA -->
|
|
<tr>
|
|
<td class=3D"wrapper" style=3D"font-family:=
|
|
-apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, =
|
|
Arial, sans-serif, 'Apple Color Emoji', 'Segoe UI Emoji', &=
|
|
#39;Segoe UI Symbol'; font-size: 18px; vertical-align: top; color: #152=
|
|
12A; box-sizing: border-box;" valign=3D"top">
|
|
<table role=3D"presentation" border=3D"=
|
|
0" cellpadding=3D"0" cellspacing=3D"0" width=3D"100%" style=3D"border-colla=
|
|
pse: separate; mso-table-lspace: 0pt; mso-table-rspace: 0pt; width: 100%;">
|
|
|
|
<tr class=3D"site-info-row">
|
|
<td class=3D"site-info" wid=
|
|
th=3D"100%" align=3D"center" style=3D"font-family: -apple-system, BlinkMacS=
|
|
ystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-serif, 'A=
|
|
pple Color Emoji', 'Segoe UI Emoji', 'Segoe UI Symbol';=
|
|
font-size: 18px; vertical-align: top; color: #15212A; padding-top: 32px;" =
|
|
valign=3D"top">
|
|
<table role=3D"presenta=
|
|
tion" border=3D"0" cellpadding=3D"0" cellspacing=3D"0" style=3D"border-coll=
|
|
apse: separate; mso-table-lspace: 0pt; mso-table-rspace: 0pt; width: 100%;"=
|
|
width=3D"100%">
|
|
<tr>
|
|
<td class=
|
|
=3D"site-icon" style=3D"font-family: -apple-system, BlinkMacSystemFont, =
|
|
9;Segoe UI', Roboto, Helvetica, Arial, sans-serif, 'Apple Color Emo=
|
|
ji', 'Segoe UI Emoji', 'Segoe UI Symbol'; font-size: 18=
|
|
px; vertical-align: top; color: #15212A; padding-bottom: 8px; padding-top: =
|
|
8px; text-align: center; border-radius: 3px;" valign=3D"top" align=3D"cente=
|
|
r"><a href=3D"https://news.risky.biz/r/27a04213?m=3D1a80b145-9ce5-407e-b496=
|
|
-c57050db16ff" style=3D"color: #727272; text-decoration: none; overflow-wra=
|
|
p: anywhere;" target=3D"_blank"><img src=3D"https://news.risky.biz/content/=
|
|
images/2024/01/rbicon.png" alt=3D"Risky.Biz" border=3D"0" width=3D"44" heig=
|
|
ht=3D"44" style=3D"border: none; -ms-interpolation-mode: bicubic; max-width=
|
|
: 100%; width: 44px; height: 44px; border-radius: 3px;"></a></td>
|
|
</tr>
|
|
<tr>
|
|
<td class=
|
|
=3D"site-url site-url-bottom-padding" style=3D"font-family: -apple-system, =
|
|
BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-seri=
|
|
f, 'Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI Sym=
|
|
bol'; vertical-align: top; color: #15212A; font-size: 16px; letter-spac=
|
|
ing: -0.1px; font-weight: 700; text-transform: uppercase; text-align: cente=
|
|
r; padding-bottom: 12px;" valign=3D"top" align=3D"center"><div style=3D"wid=
|
|
th: 100% !important;"><a href=3D"https://news.risky.biz/r/bdfa48f5?m=3D1a80=
|
|
b145-9ce5-407e-b496-c57050db16ff" class=3D"site-title" style=3D"text-decora=
|
|
tion: none; color: #15212A; overflow-wrap: anywhere;" target=3D"_blank">Ris=
|
|
ky Business News</a></div></td>
|
|
</tr>
|
|
|
|
</table>
|
|
</td>
|
|
</tr>
|
|
|
|
<tr>
|
|
<td class=3D"post-title pos=
|
|
t-title-with-excerpt post-title-left" style=3D"font-family: -apple-system, =
|
|
BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-seri=
|
|
f, 'Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI Sym=
|
|
bol'; vertical-align: top; color: #15212A; font-size: 36px; line-height=
|
|
: 1.1em; font-weight: 700; padding-bottom: 8px; text-align: left;" valign=
|
|
=3D"top" align=3D"left">
|
|
<a href=3D"https://news=
|
|
=2Erisky.biz/r/c2f074bc?m=3D1a80b145-9c=
|
|
e5-407e-b496-c57050db16ff" class=3D"po=
|
|
st-title-link post-title-link-left" style=3D"text-decoration: none; display=
|
|
: block; margin-top: 32px; color: #15212A; line-height: 1.1em; text-align: =
|
|
left; overflow-wrap: anywhere;" target=3D"_blank">Risky Bulletin: Tbilisi p=
|
|
ublic transport goes free after anti-government hack</a>
|
|
</td>
|
|
</tr>
|
|
<tr>
|
|
<td style=3D"font-family: -=
|
|
apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Ar=
|
|
ial, sans-serif, 'Apple Color Emoji', 'Segoe UI Emoji', =
|
|
9;Segoe UI Symbol'; font-size: 18px; vertical-align: top; color: #15212=
|
|
A; width: 100%;" width=3D"100%" valign=3D"top">
|
|
<table class=3D"post-me=
|
|
ta-wrapper" role=3D"presentation" border=3D"0" cellpadding=3D"0" cellspacin=
|
|
g=3D"0" width=3D"100%" style=3D"border-collapse: separate; mso-table-lspace=
|
|
: 0pt; mso-table-rspace: 0pt; width: 100%; padding-bottom: 32px;">
|
|
<tr>
|
|
<td height=3D"2=
|
|
0" class=3D"post-meta post-meta-left" style=3D"font-family: -apple-system, =
|
|
BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-seri=
|
|
f, 'Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI Sym=
|
|
bol'; vertical-align: top; color: #738a94; font-size: 13px; font-weight=
|
|
: 400; text-align: left; padding: 0;" valign=3D"top" align=3D"left">
|
|
By Catalin =
|
|
Cimpanu • <span class=3D"post-meta-date" style=3D"white-space: nowra=
|
|
p;">27 Jan 2025 </span>
|
|
</td>
|
|
<td class=3D"po=
|
|
st-meta post-meta-left view-online desktop" style=3D"font-family: -apple-sy=
|
|
stem, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, san=
|
|
s-serif, 'Apple Color Emoji', 'Segoe UI Emoji', 'Segoe =
|
|
UI Symbol'; vertical-align: top; color: #738a94; font-size: 13px; font-=
|
|
weight: 400; text-align: right;" valign=3D"top" align=3D"right">
|
|
<a href=3D"=
|
|
https://news.risky.biz/r/04f10f83?m=3D1a80b145-9ce5-407e-b496-c57050db16ff"=
|
|
class=3D"view-online-link" style=3D"word-wrap: none; white-space: nowrap; =
|
|
color: #738a94; overflow-wrap: anywhere; text-decoration: underline;" targe=
|
|
t=3D"_blank">View in browser</a>
|
|
</td>
|
|
</tr>
|
|
<tr class=3D"post-m=
|
|
eta post-meta-left view-online-mobile" style=3D"color: #738a94; font-size: =
|
|
13px; font-weight: 400; text-align: left; display: none;" align=3D"left">
|
|
<td height=3D"2=
|
|
0" class=3D"view-online" style=3D"font-family: -apple-system, BlinkMacSyste=
|
|
mFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-serif, 'Apple=
|
|
Color Emoji', 'Segoe UI Emoji', 'Segoe UI Symbol'; ver=
|
|
tical-align: top; color: #738a94; font-size: 13px; font-weight: 400; text-a=
|
|
lign: center;" valign=3D"top" align=3D"center">
|
|
<a href=3D"=
|
|
https://news.risky.biz/r/8112e431?m=3D1a80b145-9ce5-407e-b496-c57050db16ff"=
|
|
class=3D"view-online-link" style=3D"word-wrap: none; white-space: nowrap; =
|
|
color: #738a94; overflow-wrap: anywhere; text-decoration: underline;" targe=
|
|
t=3D"_blank">View in browser</a>
|
|
</td>
|
|
</tr>
|
|
</table>
|
|
</td>
|
|
</tr>
|
|
|
|
<tr class=3D"post-content-row">
|
|
<td class=3D"post-content-sans-=
|
|
serif" style=3D"font-family: -apple-system, BlinkMacSystemFont, 'Segoe =
|
|
UI', Roboto, Helvetica, Arial, sans-serif, 'Apple Color Emoji',=
|
|
'Segoe UI Emoji', 'Segoe UI Symbol'; vertical-align: top; =
|
|
font-size: 17px; line-height: 1.5em; color: #15212A; padding-bottom: 20px; =
|
|
border-bottom: 1px solid #e5eff5; max-width: 600px;" valign=3D"top">
|
|
<!-- POST CONTENT START -->
|
|
<p style=3D"margin: 0 0 1.5=
|
|
em 0; line-height: 1.6em;"><strong style=3D"font-weight: 700;"><em>TThis ne=
|
|
wsletter is brought to you by asset inventory and network visibility compan=
|
|
y </em></strong><a href=3D"https://news.risky.biz/r/e14c3d49?m=3D1a80b=
|
|
145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #=
|
|
727272; text-decoration: underline;" target=3D"_blank"><strong style=3D"fon=
|
|
t-weight: 700;"><em>runZero</em></strong></a><strong style=3D"font-weight: =
|
|
700;"><em>. You can subscribe to an audio version of this newsletter as a p=
|
|
odcast by searching for "Risky Business" in your podcatcher or su=
|
|
bscribing via </em></strong><a href=3D"https://news.risky.biz/r/96a700ba?m=
|
|
=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; =
|
|
color: #727272; text-decoration: underline;" target=3D"_blank"><strong styl=
|
|
e=3D"font-weight: 700;"><em>this RSS feed</em></strong></a><strong style=3D=
|
|
"font-weight: 700;"><em>.</em></strong></p><div class=3D"kg-card kg-embed-c=
|
|
ard" style=3D"margin: 0 0 1.5em; padding: 0;">
|
|
<iframe frameborder=3D"0" style=3D"width: 100%; height: 156px;" srcdoc=
|
|
=3D"
|
|
=20
|
|
<!DOCTYPE html>
|
|
<html>
|
|
<head>
|
|
<title>Risky Business Player</title>
|
|
</head>
|
|
<body>
|
|
|
|
<!-- Include the Google Font Inter -->
|
|
<style>
|
|
@import url("https://fonts.googleapis.com/css2?family=3DInter:wght@400=
|
|
;700&display=3Dswap");
|
|
|
|
body {
|
|
margin: 0px;
|
|
}
|
|
|
|
=2Eaudio-player {
|
|
font-family: "Inter", sans-serif;
|
|
}
|
|
|
|
=2Eicon {
|
|
background-image: url("https://risky.biz/static/img/icons/subscrib=
|
|
e-icons.svg");
|
|
display: block;
|
|
width: 33px;
|
|
height: 33px;
|
|
background-size: 528px 111px;
|
|
}
|
|
|
|
}
|
|
</style>
|
|
|
|
<!-- Audio player -->
|
|
<div class=3D"audio-player" style=3D"display: flex; flex-=
|
|
direction: column; gap: 5px; padding-top: 0px; padding-bottom: 20px; backgr=
|
|
ound: rgb(244, 244, 239); background: linear-gradient(0deg, rgba(244, 244, =
|
|
239, 1) 0%, rgba(244, 244, 239, 0) 100%); border-radius: 8px; border: 1px s=
|
|
olid #d7d7d7; width: calc(100% - 1px) min-width: 350px;">
|
|
<audio class=3D"audioElement" preload=3D"none"&g=
|
|
t;
|
|
<source src=3D"https://dts.podtrac.com/redirect.mp3/media3.=
|
|
risky.biz/RBNEWS381.mp3" type=3D"audio/mpeg">
|
|
Your browser does not support the audio element.
|
|
</audio>
|
|
|
|
<!-- Title -->
|
|
<div style=3D"background: #666666; color: #FEFEFE; font-size: 1=
|
|
4px; padding-left: 5%; padding-right: 5%; padding-top: 10px; padding-bottom=
|
|
: 10px; border-top-left-radius: 8px; border-top-right-radius: 8px; white-sp=
|
|
ace: nowrap; overflow: hidden; text-overflow: ellipsis; margin-bottom: 10px=
|
|
;">
|
|
<a style=3D"color:#FEFEFE; text-decoration: none;" tar=
|
|
get=3D"_new" href=3D"https://risky.biz/RBNEWS381/">R=
|
|
isky Bulletin: Public transport in Tbilisi is free after anti-government ha=
|
|
ck</a>
|
|
</div>
|
|
|
|
<!-- Player Controls and Progress Bar -->
|
|
<div style=3D"display: flex; align-items: center; justify-conte=
|
|
nt: center; gap: 10px; width: 90%; margin: 0 auto;">
|
|
<button type=3D"button" class=3D"playPauseBtn&quo=
|
|
t; style=3D"color: #1e1e1e; background-color: #FAFAFA; font-size: 18px=
|
|
; border: none; padding: 10px; border-radius: 8px; cursor: pointer; height:=
|
|
42px; width: 42px; text-align: center; display: flex; align-items: center;=
|
|
justify-content: center;">&#9654;</button>
|
|
<input type=3D"range" style=3D"flex-grow: 1; -web=
|
|
kit-appearance: none; height: 5px; background: #ddd; border-radius: 8px; ou=
|
|
tline: none; cursor: pointer;" class=3D"progressBar" value=
|
|
=3D"0" min=3D"0" max=3D"100" />
|
|
<span style=3D"font-size: 12px; font-weight: 200;" cla=
|
|
ss=3D"currentTime">0:00</span> /=20
|
|
=20
|
|
=20
|
|
=20
|
|
=20
|
|
<span style=3D"font-size: 12px; font-weight: 200;&qu=
|
|
ot; class=3D"duration">
|
|
5:51
|
|
</span>
|
|
</div>
|
|
|
|
<!-- Subscribe Buttons -->
|
|
<div style=3D"width: 90%; display: flex; justify-content: space=
|
|
-between; align-items: center; padding-left: 5%;">
|
|
<div style=3D"padding-right:20px;" class=3D"subTe=
|
|
xt">
|
|
<strong>Subscribe &nbsp;</strong>
|
|
</div>
|
|
=20
|
|
<div style=3D"display: flex; align-items: center; gap: 6px;=
|
|
margin: 0; flex-grow: 1;" class=3D"subContainer">
|
|
<!-- Apple Podcast Icon -->
|
|
<a href=3D"https://podcasts.apple.com/au/podcast/risky-=
|
|
business-news/id1621305970"
|
|
style=3D"background-position: 48px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon apple-podcast"></a>
|
|
<!-- Overcast Icon -->
|
|
<a href=3D"https://overcast.fm/itunes1621305970"
|
|
style=3D"background-position: 141px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon overcast-podcast"></a>
|
|
|
|
<!-- Pocket Casts Icon -->
|
|
<a href=3D"https://pca.st/yicebxgl"
|
|
style=3D"background-position: 234px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon pocketcast-podcast"></a>
|
|
<!-- Spotify Icon -->
|
|
<a href=3D"https://open.spotify.com/show/0BdExoUZqbGsBY=
|
|
jt6QZl4Q"
|
|
style=3D"background-position: 420px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon spotify-podcast"></a>
|
|
<!-- RSS Icon -->
|
|
<a href=3D"https://risky.biz/feeds/risky-business-news&=
|
|
quot;
|
|
style=3D"background-position: 327px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon rss-podcast"></a>
|
|
</div>
|
|
=20
|
|
|
|
=20
|
|
<a href=3D"https://risky.biz">
|
|
<img src=3D"https://risky.biz/static/img/RB_Site_Logo.svg&=
|
|
quot; alt=3D"Logo"
|
|
style=3D"margin-left: 0; height: 32px; display: block; pa=
|
|
dding-right: 5%;"
|
|
id=3D"logo" class=3D"logo playerLogo">
|
|
</a>
|
|
<script>
|
|
document.addEventListener("DOMContentLoaded", function () {
|
|
const players =3D document.querySelectorAll(".audio-player&quo=
|
|
t;);
|
|
|
|
function resizeElements(player) {
|
|
const logo =3D player.querySelector(".logo");
|
|
const subscribeIcons =3D player.querySelectorAll(".icon&qu=
|
|
ot;);
|
|
const subscribeContainer =3D player.querySelector(".subCon=
|
|
tainer"); // Select subContainer by class
|
|
const subText =3D player.querySelector(".subText"); /=
|
|
/ Select subText by class
|
|
|
|
if (player.offsetWidth <=3D 425) {
|
|
// Hide logo
|
|
if (logo) {
|
|
logo.style.display =3D "none";
|
|
}
|
|
} else if (player.offsetWidth <=3D 500) {
|
|
// Show logo and scale logo and icons to 70%
|
|
if (logo) {
|
|
logo.style.display =3D "block";
|
|
logo.style.transform =3D "scale(0.7)";
|
|
logo.style.transformOrigin =3D "center";
|
|
logo.style.verticalAlign =3D "middle";
|
|
}
|
|
subscribeIcons.forEach(icon =3D> {
|
|
icon.style.transform =3D "scale(0.7)";
|
|
icon.style.transformOrigin =3D "center";
|
|
icon.style.verticalAlign =3D "middle";
|
|
});
|
|
|
|
// Remove padding from subText and set font-size to 12px
|
|
if (subText) {
|
|
subText.style.padding =3D "0";
|
|
subText.style.fontSize =3D "12px";
|
|
}
|
|
|
|
// Set gap in subContainer to 0px
|
|
if (subscribeContainer) {
|
|
subscribeContainer.style.gap =3D "0px";
|
|
}
|
|
} else {
|
|
// Reset scaling, alignment, and visibility
|
|
if (logo) {
|
|
logo.style.display =3D "block";
|
|
logo.style.transform =3D "scale(1)";
|
|
logo.style.verticalAlign =3D "baseline";
|
|
}
|
|
subscribeIcons.forEach(icon =3D> {
|
|
icon.style.transform =3D "scale(1)";
|
|
icon.style.verticalAlign =3D "baseline";
|
|
});
|
|
|
|
// Reset padding and font-size in subText
|
|
if (subText) {
|
|
subText.style.padding =3D "0 20px"; // Defaul=
|
|
t padding
|
|
subText.style.fontSize =3D "inherit"; // Defa=
|
|
ult font-size
|
|
}
|
|
|
|
// Reset gap in subContainer
|
|
if (subscribeContainer) {
|
|
subscribeContainer.style.gap =3D "6px"; // De=
|
|
fault gap
|
|
}
|
|
}
|
|
}
|
|
|
|
function handleResize() {
|
|
players.forEach(player =3D> {
|
|
resizeElements(player);
|
|
});
|
|
}
|
|
|
|
// Run on initial load and resize
|
|
handleResize();
|
|
window.addEventListener("resize", handleResize);
|
|
});
|
|
</script>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
</div>
|
|
</div>
|
|
|
|
|
|
<script>
|
|
// Custom Audio Player
|
|
document.addEventListener("DOMContentLoaded", function () {
|
|
const players =3D document.querySelectorAll(".audio-player");
|
|
|
|
players.forEach(function (player) {
|
|
// Skip if already initialized
|
|
if (player.dataset.initialized =3D=3D=3D "true") return;
|
|
|
|
// Mark player as initialized
|
|
player.dataset.initialized =3D "true";
|
|
=20
|
|
const audio =3D player.querySelector(".audioElement");
|
|
const playPauseBtn =3D player.querySelector(".playPauseBtn&quo=
|
|
t;);
|
|
const progressBar =3D player.querySelector(".progressBar"=
|
|
);
|
|
const currentTimeEl =3D player.querySelector(".currentTime&quo=
|
|
t;);
|
|
const durationEl =3D player.querySelector(".duration");
|
|
|
|
if (!audio || !playPauseBtn || !progressBar || !currentTimeEl || !d=
|
|
urationEl) {
|
|
console.error("One or more player elements not found:"=
|
|
;, { audio, playPauseBtn, progressBar, currentTimeEl, durationEl });
|
|
return;=20
|
|
}
|
|
|
|
playPauseBtn.addEventListener("click", () =3D> {
|
|
if (audio.paused) {
|
|
audio.play();
|
|
playPauseBtn.textContent =3D "⏸";=20
|
|
|
|
// GA4 event for starting audio
|
|
gtag("event", "audio_play", {
|
|
"content_title": "Risky Bulletin: Publ=
|
|
ic transport in Tbilisi is free after anti-government hack",
|
|
"content_type": "audio"
|
|
});
|
|
} else {
|
|
audio.pause();
|
|
playPauseBtn.textContent =3D "▶";
|
|
}
|
|
});
|
|
|
|
audio.addEventListener("timeupdate", () =3D> {
|
|
if (audio.duration) {
|
|
progressBar.value =3D (audio.currentTime / audio.duration) =
|
|
* 100;
|
|
currentTimeEl.textContent =3D formatTime(audio.currentTime)=
|
|
;
|
|
}
|
|
});
|
|
|
|
audio.addEventListener("loadedmetadata", () =3D> {
|
|
durationEl.textContent =3D formatTime(audio.duration);
|
|
});
|
|
|
|
progressBar.addEventListener("input", () =3D> {
|
|
if (audio.duration) {
|
|
audio.currentTime =3D (progressBar.value / 100) * audio.dur=
|
|
ation;
|
|
}
|
|
});
|
|
|
|
function formatTime(seconds) {
|
|
const minutes =3D Math.floor(seconds / 60);
|
|
const secs =3D Math.floor(seconds % 60);
|
|
return `${minutes}:${secs < 10 ? "0" : ""=
|
|
;}${secs}`;
|
|
}
|
|
});
|
|
});
|
|
|
|
</script>
|
|
</body>
|
|
</html>
|
|
|
|
|
|
"></iframe>
|
|
</div><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><a href=3D"http=
|
|
s://news.risky.biz/r/b3f75287?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" sty=
|
|
le=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underline;"=
|
|
target=3D"_blank"><span style=3D"white-space: pre-wrap;">https://risky.biz=
|
|
/RBNEWS381/</span></a></p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6=
|
|
em;">Anti-government hackers have defaced payment systems installed in publ=
|
|
ic transport buses in Georgia's capital, Tbilisi, to play pro-European =
|
|
songs and slogans.</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"=
|
|
>The incident took place on Friday morning as residents headed to work.</p>=
|
|
<p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;">The ticket scanners a=
|
|
nd point-of-sale devices played the national anthems of Georgia and the EU,=
|
|
along with pro-EU speeches from local politicians:</p><ul style=3D"margin:=
|
|
0 0 1.5em 0; line-height: 1.6em; padding-left: 1.3em; padding-right: 1.5em=
|
|
; list-style: disc; max-width: 100%;"><li style=3D"margin: 0.5em 0; padding=
|
|
-left: 0.3em; line-height: 1.6em;">The Georgian national anthem.</li><li st=
|
|
yle=3D"margin: 0.5em 0; padding-left: 0.3em; line-height: 1.6em;">A phrase =
|
|
from Georgia's first President Zviad Gamsakhurdia, from his famous 1991=
|
|
speech declaring the restoration of the country's independence: "=
|
|
Long live the independence of Georgia!"</li><li style=3D"margin: 0.5em=
|
|
0; padding-left: 0.3em; line-height: 1.6em;">A segment from late Prime Min=
|
|
ister Zurab Zhvania's statement at the Council of Europe in 1999: "=
|
|
;I am Georgian, therefore I am European."</li><li style=3D"margin: 0.5=
|
|
em 0; padding-left: 0.3em; line-height: 1.6em;">Statements from Bidzina Iva=
|
|
nishvili's pre-election speeches.</li><li style=3D"margin: 0.5em 0; pad=
|
|
ding-left: 0.3em; line-height: 1.6em;">Obscene remarks made by current pres=
|
|
ident and pro-Kremlin figure Mikheil Kavelashvili.</li><li style=3D"margin:=
|
|
0.5em 0; padding-left: 0.3em; line-height: 1.6em;">Beethoven's "O=
|
|
de to Joy," considered the EU's unofficial anthem.</li><li style=
|
|
=3D"margin: 0.5em 0; padding-left: 0.3em; line-height: 1.6em;">The phrase &=
|
|
quot;Glory to Ukraine, glory to Georgia, f*** Russia!"</li></ul><p sty=
|
|
le=3D"margin: 0 0 1.5em 0; line-height: 1.6em;">The <a href=3D"https://news=
|
|
=2Erisky.biz/r/2f4324f7?m=3D1a80b145-9c=
|
|
e5-407e-b496-c57050db16ff" style=3D"ov=
|
|
erflow-wrap: anywhere; color: #727272; text-decoration: underline;" target=
|
|
=3D"_blank">Tbilisi City Hall</a> shut down the system and is allowing resi=
|
|
dents to travel for free until the hacked systems are restored.</p><div cla=
|
|
ss=3D"kg-card kg-embed-card" style=3D"margin: 0 0 1.5em; padding: 0;"><!--[=
|
|
if !mso !vml]-->
|
|
<a class=3D"kg-video-preview" href=3D"https://news.risky.biz/r/=
|
|
c9fdbef4?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" aria-label=3D"Play video=
|
|
" style=3D"background-color: #1d1f21; background-image: radial-gradient(cir=
|
|
cle at center, #5b5f66, #1d1f21); display: block; overflow-wrap: anywhere; =
|
|
color: #727272; mso-hide: all; text-decoration: none;" target=3D"_blank">
|
|
<table cellpadding=3D"0" cellspacing=3D"0" border=3D"0" wid=
|
|
th=3D"100%" background=3D"https://i.ytimg.com/vi/OetCeWNIljI/hqdefault.jpg"=
|
|
role=3D"presentation" style=3D"border-collapse: separate; mso-table-lspace=
|
|
: 0pt; mso-table-rspace: 0pt; width: 100%; background-size: cover; min-heig=
|
|
ht: 200px; background: url('https://i.ytimg.com/vi/OetCeWNIljI/hqdefaul=
|
|
t.jpg') left top / cover; mso-hide: all;">
|
|
<tbody><tr style=3D"mso-hide: all">
|
|
<td width=3D"25%" style=3D"font-family: -apple-syst=
|
|
em, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-=
|
|
serif, 'Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI=
|
|
Symbol'; font-size: 18px; vertical-align: top; color: #15212A; visibil=
|
|
ity: hidden; mso-hide: all;" valign=3D"top">
|
|
<img src=3D"https://img.spacergif.org/v1/150x45=
|
|
0/0a/spacer.png" alt width=3D"100%" border=3D"0" style=3D"border: none; -ms=
|
|
-interpolation-mode: bicubic; max-width: 100%; display: block; height: auto=
|
|
; opacity: 0; visibility: hidden; mso-hide: all;" height=3D"auto">
|
|
</td>
|
|
<td width=3D"50%" align=3D"center" valign=3D"middle=
|
|
" style=3D"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI=
|
|
9;, Roboto, Helvetica, Arial, sans-serif, 'Apple Color Emoji', '=
|
|
;Segoe UI Emoji', 'Segoe UI Symbol'; font-size: 18px; color: #1=
|
|
5212A; vertical-align: middle; mso-hide: all;">
|
|
<div class=3D"kg-video-play-button" style=3D"he=
|
|
ight: 2em; width: 3em; margin: 0 auto; border-radius: 10px; padding: 1em 0.=
|
|
8em 0.6em 1em; font-size: 1em; background-color: rgba(0,0,0,0.85); mso-hide=
|
|
: all;"><div style=3D"display: block; width: 0; height: 0; margin: 0 auto; =
|
|
line-height: 0px; border-color: transparent transparent transparent white; =
|
|
border-style: solid; border-width: 0.8em 0 0.8em 1.5em; mso-hide: all;"></d=
|
|
iv></div>
|
|
</td>
|
|
<td width=3D"25%" style=3D"font-family: -apple-syst=
|
|
em, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-=
|
|
serif, 'Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI=
|
|
Symbol'; font-size: 18px; vertical-align: top; color: #15212A; mso-hid=
|
|
e: all;" valign=3D"top"> </td>
|
|
</tr>
|
|
</tbody></table>
|
|
</a>
|
|
<!--[endif]-->
|
|
|
|
<!--[if vml]>
|
|
<v:group xmlns:v=3D"urn:schemas-microsoft-com:vml" xmlns:w=3D"u=
|
|
rn:schemas-microsoft-com:office:word" coordsize=3D"600,450" coordorigin=3D"=
|
|
0,0" href=3D"https://www.youtube.com/watch?v=3DOetCeWNIljI" style=3D"width:=
|
|
600px;height:450px;">
|
|
<v:rect fill=3D"t" stroked=3D"f" style=3D"position:absolute=
|
|
;width:600;height:450;"><v:fill src=3D"https://i.ytimg.com/vi/OetCeWNIljI/h=
|
|
qdefault.jpg" type=3D"frame"/></v:rect>
|
|
<v:oval fill=3D"t" strokecolor=3D"white" strokeweight=3D"4p=
|
|
x" style=3D"position:absolute;left:261;top:186;width:78;height:78"><v:fill =
|
|
color=3D"black" opacity=3D"30%" /></v:oval>
|
|
<v:shape coordsize=3D"24,32" path=3D"m,l,32,24,16,xe" fillc=
|
|
olor=3D"white" stroked=3D"f" style=3D"position:absolute;left:289;top:208;wi=
|
|
dth:30;height:34;" />
|
|
</v:group>
|
|
<![endif]--></div><div class=3D"kg-card kg-image-card" style=3D=
|
|
"margin: 0 0 1.5em; padding: 0;"><img src=3D"https://news.risky.biz/content=
|
|
/images/2025/01/MArika.png" class=3D"kg-image" alt loading=3D"lazy" width=
|
|
=3D"530" height=3D"574" style=3D"border: none; -ms-interpolation-mode: bicu=
|
|
bic; max-width: 100%; display: block; margin: 0 auto; height: auto; width: =
|
|
auto;"></div><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;">The hack=
|
|
s take place after almost three months of daily anti-government protests. <=
|
|
a href=3D"https://news.risky.biz/r/3c1d8501?m=3D1a80b145-9ce5-407e-b496-c57=
|
|
050db16ff" style=3D"overflow-wrap: anywhere; color: #727272; text-decoratio=
|
|
n: underline;" target=3D"_blank">Massive anti-government protests</a> erupt=
|
|
ed in Tbilisi on October 28 last year after a pro-Kremlin party won the cou=
|
|
ntry's <a href=3D"https://news.risky.biz/r/e131499a?m=3D1a80b145-9ce5-4=
|
|
07e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #727272; te=
|
|
xt-decoration: underline;" target=3D"_blank">Parliamentary election</a> amo=
|
|
ng allegations of massive fraud, threats of violence, and ballot stuffing.<=
|
|
/p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;">The winning Georgi=
|
|
a Dream party canceled the country's EU ascension process, passed oppre=
|
|
ssive laws, and canceled the country's presidential election, appointin=
|
|
g a president through the Parliament instead—putting even more fuel =
|
|
on the ongoing protests.</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1=
|
|
=2E6em;">No hacktivist group has taken=20=
|
|
credit for the attacks yet.</p><p styl=
|
|
e=3D"margin: 0 0 1.5em 0; line-height: 1.6em;">This marks the first time th=
|
|
at hacking has played any role in Georgia's anti-Russian resistance mov=
|
|
ement. This also marks the first time I've seen in-bus payment and tick=
|
|
et scanning systems get hacked. So, an A+ for originality!</p><h3 id=3D"ris=
|
|
ky-business-podcasts" style=3D"margin-top: 0; font-family: -apple-system, B=
|
|
linkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-serif=
|
|
, 'Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI Symb=
|
|
ol'; line-height: 1.11em; font-weight: 700; text-rendering: optimizeLeg=
|
|
ibility; margin: 1.5em 0 0.5em 0; font-size: 26px;"><strong style=3D"font-w=
|
|
eight: 800;"><em>Risky Business Podcasts</em></strong></h3><p style=3D"marg=
|
|
in: 0 0 1.5em 0; line-height: 1.6em;"><em>Risky Business is now on YouTube =
|
|
with video versions of our main podcasts. Below is our latest weekly show w=
|
|
ith Pat and Adam at the helm!</em></p><div class=3D"kg-card kg-embed-card" =
|
|
style=3D"margin: 0 0 1.5em; padding: 0;"><!--[if !mso !vml]-->
|
|
<a class=3D"kg-video-preview" href=3D"https://news.risky.biz/r/=
|
|
4fd618e9?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" aria-label=3D"Play video=
|
|
" style=3D"background-color: #1d1f21; background-image: radial-gradient(cir=
|
|
cle at center, #5b5f66, #1d1f21); display: block; overflow-wrap: anywhere; =
|
|
color: #727272; mso-hide: all; text-decoration: none;" target=3D"_blank">
|
|
<table cellpadding=3D"0" cellspacing=3D"0" border=3D"0" wid=
|
|
th=3D"100%" background=3D"https://i.ytimg.com/vi/pJr2K9mCW-s/hqdefault.jpg"=
|
|
role=3D"presentation" style=3D"border-collapse: separate; mso-table-lspace=
|
|
: 0pt; mso-table-rspace: 0pt; width: 100%; background-size: cover; min-heig=
|
|
ht: 200px; background: url('https://i.ytimg.com/vi/pJr2K9mCW-s/hqdefaul=
|
|
t.jpg') left top / cover; mso-hide: all;">
|
|
<tbody><tr style=3D"mso-hide: all">
|
|
<td width=3D"25%" style=3D"font-family: -apple-syst=
|
|
em, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-=
|
|
serif, 'Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI=
|
|
Symbol'; font-size: 18px; vertical-align: top; color: #15212A; visibil=
|
|
ity: hidden; mso-hide: all;" valign=3D"top">
|
|
<img src=3D"https://img.spacergif.org/v1/150x45=
|
|
0/0a/spacer.png" alt width=3D"100%" border=3D"0" style=3D"border: none; -ms=
|
|
-interpolation-mode: bicubic; max-width: 100%; display: block; height: auto=
|
|
; opacity: 0; visibility: hidden; mso-hide: all;" height=3D"auto">
|
|
</td>
|
|
<td width=3D"50%" align=3D"center" valign=3D"middle=
|
|
" style=3D"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI=
|
|
9;, Roboto, Helvetica, Arial, sans-serif, 'Apple Color Emoji', '=
|
|
;Segoe UI Emoji', 'Segoe UI Symbol'; font-size: 18px; color: #1=
|
|
5212A; vertical-align: middle; mso-hide: all;">
|
|
<div class=3D"kg-video-play-button" style=3D"he=
|
|
ight: 2em; width: 3em; margin: 0 auto; border-radius: 10px; padding: 1em 0.=
|
|
8em 0.6em 1em; font-size: 1em; background-color: rgba(0,0,0,0.85); mso-hide=
|
|
: all;"><div style=3D"display: block; width: 0; height: 0; margin: 0 auto; =
|
|
line-height: 0px; border-color: transparent transparent transparent white; =
|
|
border-style: solid; border-width: 0.8em 0 0.8em 1.5em; mso-hide: all;"></d=
|
|
iv></div>
|
|
</td>
|
|
<td width=3D"25%" style=3D"font-family: -apple-syst=
|
|
em, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-=
|
|
serif, 'Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI=
|
|
Symbol'; font-size: 18px; vertical-align: top; color: #15212A; mso-hid=
|
|
e: all;" valign=3D"top"> </td>
|
|
</tr>
|
|
</tbody></table>
|
|
</a>
|
|
<!--[endif]-->
|
|
|
|
<!--[if vml]>
|
|
<v:group xmlns:v=3D"urn:schemas-microsoft-com:vml" xmlns:w=3D"u=
|
|
rn:schemas-microsoft-com:office:word" coordsize=3D"600,450" coordorigin=3D"=
|
|
0,0" href=3D"https://www.youtube.com/watch?v=3DpJr2K9mCW-s" style=3D"width:=
|
|
600px;height:450px;">
|
|
<v:rect fill=3D"t" stroked=3D"f" style=3D"position:absolute=
|
|
;width:600;height:450;"><v:fill src=3D"https://i.ytimg.com/vi/pJr2K9mCW-s/h=
|
|
qdefault.jpg" type=3D"frame"/></v:rect>
|
|
<v:oval fill=3D"t" strokecolor=3D"white" strokeweight=3D"4p=
|
|
x" style=3D"position:absolute;left:261;top:186;width:78;height:78"><v:fill =
|
|
color=3D"black" opacity=3D"30%" /></v:oval>
|
|
<v:shape coordsize=3D"24,32" path=3D"m,l,32,24,16,xe" fillc=
|
|
olor=3D"white" stroked=3D"f" style=3D"position:absolute;left:289;top:208;wi=
|
|
dth:30;height:34;" />
|
|
</v:group>
|
|
<![endif]--></div><hr style=3D"position: relative; display: blo=
|
|
ck; width: 100%; margin: 3em 0; padding: 0; height: 1px; border: 0; border-=
|
|
top: 1px solid #e5eff5;"><h3 id=3D"breaches-hacks-and-security-incidents" s=
|
|
tyle=3D"margin-top: 0; font-family: -apple-system, BlinkMacSystemFont, '=
|
|
;Segoe UI', Roboto, Helvetica, Arial, sans-serif, 'Apple Color Emoj=
|
|
i', 'Segoe UI Emoji', 'Segoe UI Symbol'; line-height: 1=
|
|
=2E11em; font-weight: 700; text-renderi=
|
|
ng: optimizeLegibility; margin: 1.5em=20=
|
|
0 0.5em 0; font-size: 26px;"><strong style=3D"font-weight: 800;">Breaches, =
|
|
hacks, and security incidents</strong></h3><p style=3D"margin: 0 0 1.5em 0;=
|
|
line-height: 1.6em;"><strong style=3D"font-weight: 700;">Phemex crypto-hei=
|
|
st:</strong> A threat actor has stolen $70 million worth of crypto-assets f=
|
|
rom Singapore-based exchange Phemex. The attackers stole multiple types of =
|
|
crypto at the same time in a coordinated attack last Thursday. Phemex pause=
|
|
d and then resumed operations after addressing the hack. Some anonymous sec=
|
|
urity researchers have told reporters that the techniques used in the attac=
|
|
k are reminiscent of North Korean hacking group TraderTraitor. [<em>Additio=
|
|
nal coverage in </em><a href=3D"https://news.risky.biz/r/07990449?m=3D1a80b=
|
|
145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #=
|
|
727272; text-decoration: underline;" target=3D"_blank"><em>The Block</em></=
|
|
a>]</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong style=
|
|
=3D"font-weight: 700;">NoOnes crypto-heist:</strong> A threat actor has sto=
|
|
len $8 million worth of crypto-assets from crypto P2P marketplace NoOnes. T=
|
|
he hack took place on the first day of the year and exploited a vulnerabili=
|
|
ty in the platform's Solana bridge. According to open-source investigat=
|
|
ors, the stolen funds were passed through the Tornado Cash mixing service. =
|
|
[<em>Additional coverage in the </em><a href=3D"https://news.risky.biz/r/d8=
|
|
35e82b?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: an=
|
|
ywhere; color: #727272; text-decoration: underline;" target=3D"_blank"><em>=
|
|
CrowdfundInsider</em></a>]</p><p style=3D"margin: 0 0 1.5em 0; line-height:=
|
|
1.6em;"><strong style=3D"font-weight: 700;">BeyondTrust breach:</strong> I=
|
|
dentity service provider BeyondTrust has updated its <a href=3D"https://new=
|
|
s.risky.biz/r/011b20d1?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"o=
|
|
verflow-wrap: anywhere; color: #727272; text-decoration: underline;" target=
|
|
=3D"_blank">data breach disclosure</a> and says that only 17 of its custome=
|
|
rs were impacted by a security breach last December.</p><p style=3D"margin:=
|
|
0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"font-weight: 700;">Unit=
|
|
edHealth doubles breach impact numbers:</strong> UnitedHealth says that 190=
|
|
million Americans had their data stolen in a ransomware attack at its Chan=
|
|
ge Healthcare subsidiary last year. The company almost doubled the initial =
|
|
number of 100 million it put out last year. UnitedHealth says it has now no=
|
|
tified most of the affected individuals. Change Healthcare was hit by the A=
|
|
lphV ransomware gang in February of last year in an incident that caused ph=
|
|
armacy and prescription issuance outages all over the country. [<em>Additio=
|
|
nal coverage in </em><a href=3D"https://news.risky.biz/r/89f391b1?m=3D1a80b=
|
|
145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #=
|
|
727272; text-decoration: underline;" target=3D"_blank"><em>TechCrunch</em><=
|
|
/a>]</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong style=
|
|
=3D"font-weight: 700;">British Museum network down after insider attack:</s=
|
|
trong> London police have arrested a former employee who broke into the Bri=
|
|
tish Museum and shut down several IT systems. Officials say the man's a=
|
|
ctions took down the museum's ticket booking system. Several exhibition=
|
|
s were closed on Friday as a result of the intrusion. [<em>Additional cover=
|
|
age in </em><a href=3D"https://news.risky.biz/r/b59d0da6?m=3D1a80b145-9ce5-=
|
|
407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #727272; t=
|
|
ext-decoration: underline;" target=3D"_blank"><em>The Guardian</em></a>]</p=
|
|
><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"fon=
|
|
t-weight: 700;">Emergency systems hacked in Israeli schools:</strong> Pro-P=
|
|
alestine hacktivist group Handala has breached the Israeli Ministry of Nati=
|
|
onal Security and has sent false missile alerts to Israeli schools and kind=
|
|
ergartens. The alerts were sent to smartphones via SMS and to <a href=3D"ht=
|
|
tps://news.risky.biz/r/739d850e?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" s=
|
|
tyle=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underline=
|
|
;" target=3D"_blank">raid and emergency systems</a> installed in schools an=
|
|
d kindergartners. The group claims it wiped the system after sending the al=
|
|
erts. [<em>Additional coverage in </em><a href=3D"https://news.risky.biz/r/=
|
|
a90a19b6?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: =
|
|
anywhere; color: #727272; text-decoration: underline;" target=3D"_blank"><e=
|
|
m>Ynet</em></a>]</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><=
|
|
strong style=3D"font-weight: 700;">TalkTalk breach:</strong> UK ISP TalkTal=
|
|
k is investigating a data breach at a third-party supplier after some of it=
|
|
s subscriber data was posted on a hacking forum last week. The threat actor=
|
|
claims to have stolen the details of nearly 19 million TalkTalk users in a=
|
|
breach this month. TalkTalk previously experienced a major breach in <a hr=
|
|
ef=3D"https://news.risky.biz/r/f162a824?m=3D1a80b145-9ce5-407e-b496-c57050d=
|
|
b16ff" style=3D"overflow-wrap: anywhere; color: #727272; text-decoration: u=
|
|
nderline;" target=3D"_blank">2015</a>.</p><div class=3D"kg-card kg-image-ca=
|
|
rd" style=3D"margin: 0 0 1.5em; padding: 0;"><img src=3D"https://news.risky=
|
|
=2Ebiz/content/images/2025/01/TalkTal=
|
|
k.png" class=3D"kg-image" alt loading=3D=
|
|
"lazy" width=3D"600" height=3D"294" style=3D"border: none; -ms-interpolatio=
|
|
n-mode: bicubic; max-width: 100%; display: block; margin: 0 auto; height: a=
|
|
uto; width: auto;"></div><h3 id=3D"general-tech-and-privacy" style=3D"margi=
|
|
n-top: 0; font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI'=
|
|
;, Roboto, Helvetica, Arial, sans-serif, 'Apple Color Emoji', '=
|
|
Segoe UI Emoji', 'Segoe UI Symbol'; line-height: 1.11em; font-w=
|
|
eight: 700; text-rendering: optimizeLegibility; margin: 1.5em 0 0.5em 0; fo=
|
|
nt-size: 26px;"><strong style=3D"font-weight: 800;">General tech and privac=
|
|
y</strong></h3><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><stron=
|
|
g style=3D"font-weight: 700;">Windows Administrator Protection:</strong> Th=
|
|
e Microsoft security team has published its <a href=3D"https://news.risky.b=
|
|
iz/r/e9cffad1?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-w=
|
|
rap: anywhere; color: #727272; text-decoration: underline;" target=3D"_blan=
|
|
k">first-ever technical explanation</a> about the new Administrator Protect=
|
|
ion (AP) feature coming to Windows 11, a system that requires biometrics au=
|
|
thentication to perform admin-level tasks. We first covered this <a href=3D=
|
|
"https://news.risky.biz/r/e5639596?m=3D1a80b145-9ce5-407e-b496-c57050db16ff=
|
|
" style=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underl=
|
|
ine;" target=3D"_blank">back in November</a>.</p><p style=3D"margin: 0 0 1.=
|
|
5em 0; line-height: 1.6em;"><strong style=3D"font-weight: 700;">Samsung Gal=
|
|
axy S25 Content Credentials:</strong> Samsung's new line of Galaxy S25 =
|
|
devices are the first-ever devices to feature a new technology named Conten=
|
|
t Credentials. The new tech detects and automatically labels AI-generated c=
|
|
ontent. Content Credentials currently supports images, but the technology w=
|
|
ill be extended to audio, video, and documents. [<em>Additional coverage in=
|
|
</em><a href=3D"https://news.risky.biz/r/d5d508fa?m=3D1a80b145-9ce5-407e-b=
|
|
496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #727272; text-de=
|
|
coration: underline;" target=3D"_blank"><em>TechCrunch</em></a>]</p><p styl=
|
|
e=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"font-weight=
|
|
: 700;">PayPal fined over security failures:</strong> The New York Departme=
|
|
nt of Financial Services has fined PayPal <a href=3D"https://news.risky.biz=
|
|
/r/822c85cc?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wra=
|
|
p: anywhere; color: #727272; text-decoration: underline;" target=3D"_blank"=
|
|
>$2 million</a> for failing to secure sensitive customer data. The agency s=
|
|
ays PayPal did not use personnel trained in cybersecurity risks when updati=
|
|
ng its backend to integrate the IRS' Form 1099-K. Developers left sensi=
|
|
tive data unredacted in PayPal's systems, which allowed threat actors t=
|
|
o be able to easily retrieve it once they compromised a user account.</p><p=
|
|
style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"font-w=
|
|
eight: 700;">Google launches custom Web Store:</strong> Google has <a href=
|
|
=3D"https://news.risky.biz/r/873f938e?m=3D1a80b145-9ce5-407e-b496-c57050db1=
|
|
6ff" style=3D"overflow-wrap: anywhere; color: #727272; text-decoration: und=
|
|
erline;" target=3D"_blank">launched</a> a custom Chrome Web Store for enter=
|
|
prises to allow companies to filter what extensions appear on the store for=
|
|
their employees and avoid unwanted malware being installed.</p><p style=3D=
|
|
"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"font-weight: 70=
|
|
0;">More Texas car privacy probes:</strong> The Texas OAG has filed cases a=
|
|
gainst four more automakers (Ford, Hyundai, Toyota, and Fiat Chrysler) over=
|
|
their car data collection practices. It previously also sued GM. No cases =
|
|
against Tesla, though, a car literally made to work on the cloud and track =
|
|
everything. [<em>Additional coverage in </em><a href=3D"https://news.risky.=
|
|
biz/r/09c6a6d2?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-=
|
|
wrap: anywhere; color: #727272; text-decoration: underline;" target=3D"_bla=
|
|
nk"><em>The Record</em></a>]</p><p style=3D"margin: 0 0 1.5em 0; line-heigh=
|
|
t: 1.6em;"><strong style=3D"font-weight: 700;">BlueSky spam networks:</stro=
|
|
ng> Underground services that sell follows, likes, and reply spam have acqu=
|
|
ired BlueSky in their sights. One such service appears to have registered o=
|
|
ver <a href=3D"https://news.risky.biz/r/23dfd991?m=3D1a80b145-9ce5-407e-b49=
|
|
6-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #727272; text-deco=
|
|
ration: underline;" target=3D"_blank">8,000 BlueSky accounts</a> for future=
|
|
abuse.</p><div class=3D"kg-card kg-image-card kg-card-hascaption" style=3D=
|
|
"margin: 0 0 1.5em; padding: 0;"><img src=3D"https://news.risky.biz/content=
|
|
/images/2025/01/conspirator0.jpg" class=3D"kg-image" alt loading=3D"lazy" w=
|
|
idth=3D"600" height=3D"353" style=3D"border: none; -ms-interpolation-mode: =
|
|
bicubic; max-width: 100%; display: block; margin: 0 auto; height: auto; wid=
|
|
th: auto;"><div class=3D"kg-card-figcaption" style=3D"text-align: center; f=
|
|
ont-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, =
|
|
Helvetica, Arial, sans-serif, 'Apple Color Emoji', 'Segoe UI Em=
|
|
oji', 'Segoe UI Symbol'; padding-top: 10px; padding-bottom: 10p=
|
|
x; line-height: 1.5em; color: #738a94; font-size: 13px;"><span style=3D"tex=
|
|
t-align: center; white-space: pre-wrap;">Image via @conspirator0</span></di=
|
|
v></div><h3 id=3D"government-politics-and-policy" style=3D"margin-top: 0; f=
|
|
ont-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, =
|
|
Helvetica, Arial, sans-serif, 'Apple Color Emoji', 'Segoe UI Em=
|
|
oji', 'Segoe UI Symbol'; line-height: 1.11em; font-weight: 700;=
|
|
text-rendering: optimizeLegibility; margin: 1.5em 0 0.5em 0; font-size: 26=
|
|
px;"><strong style=3D"font-weight: 800;">Government, politics, and policy</=
|
|
strong></h3><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong s=
|
|
tyle=3D"font-weight: 700;">Belarus blocks internet during election weekend:=
|
|
</strong> The Belarusian government has taken down internet access across t=
|
|
he country for three days during the country's presidential election th=
|
|
is weekend. Officials <a href=3D"https://news.risky.biz/r/81cafd7c?m=3D1a80=
|
|
b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: =
|
|
#727272; text-decoration: underline;" target=3D"_blank">ordered</a> ISPs to=
|
|
shut down the internet between Friday and Sunday in order to prevent threa=
|
|
ts to election infrastructure. The measure is most likely meant to prevent =
|
|
the public from coordinating protests via social media, similar to those th=
|
|
at took place four years ago.</p><p style=3D"margin: 0 0 1.5em 0; line-heig=
|
|
ht: 1.6em;"><strong style=3D"font-weight: 700;">Turkiye proposes controvers=
|
|
ial cybersecurity law:</strong> Turkish officials are fast-tracking a cyber=
|
|
security bill through Parliament for the creation of a national cybersecuri=
|
|
ty directorate. The bill contains provisions that would grant the new agenc=
|
|
y the power to collect and store data from all the country's institutio=
|
|
ns and critical infrastructure providers. It also contains a provision that=
|
|
effectively criminalizes reporting on security incidents if the government=
|
|
has not first confirmed a breach. The country's opposition has warned =
|
|
the bill effectively lays out a legal foundation of a sprawling surveillanc=
|
|
e apparatus on the grounds of cybersecurity threats. [<em>Additional covera=
|
|
ge in the </em><a href=3D"https://news.risky.biz/r/9671df80?m=3D1a80b145-9c=
|
|
e5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #727272=
|
|
; text-decoration: underline;" target=3D"_blank"><em>Turkish Minute</em></a=
|
|
><em> and the </em><a href=3D"https://news.risky.biz/r/7e0ba5e1?m=3D1a80b14=
|
|
5-9ce5-407e-b496-c57050db16ff" rel=3D"noreferrer" style=3D"overflow-wrap: a=
|
|
nywhere; color: #727272; text-decoration: underline;" target=3D"_blank"><em=
|
|
>Nordic Monitor</em></a>] [<em>h/t DataBreaches.net</em>]</p><p style=3D"ma=
|
|
rgin: 0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"font-weight: 700;"=
|
|
>US cyber diplomacy funding halted:</strong> An order from Secretary of Sta=
|
|
te Marco Rubio to halt all foreign aid has also ground to a halt the activi=
|
|
ty of the department's new cyber diplomacy bureau. [<em>Additional cove=
|
|
rage in </em><a href=3D"https://news.risky.biz/r/f3e1e069?m=3D1a80b145-9ce5=
|
|
-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #727272; =
|
|
text-decoration: underline;" target=3D"_blank"><em>The Record</em></a>]</p>=
|
|
<p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"font=
|
|
-weight: 700;">US gives up ten old exploits:</strong> The US government has=
|
|
reported 39 vulnerabilities to software vendors in fiscal year 2023. Accor=
|
|
ding to an unclassified report [<a href=3D"https://news.risky.biz/r/19b58cf=
|
|
6?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywher=
|
|
e; color: #727272; text-decoration: underline;" target=3D"_blank"><em>PDF</=
|
|
em></a>], ten of the 39 were old vulnerabilities the government had discove=
|
|
red in previous years and kept for its own internal use. This likely includ=
|
|
es offensive cyber operations. [<em>h/t </em><a href=3D"https://news.risky.=
|
|
biz/r/24b11878?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-=
|
|
wrap: anywhere; color: #727272; text-decoration: underline;" target=3D"_bla=
|
|
nk"><em>Joseph Menn</em></a>]</p><div class=3D"kg-card kg-image-card" style=
|
|
=3D"margin: 0 0 1.5em; padding: 0;"><img src=3D"https://news.risky.biz/cont=
|
|
ent/images/2025/01/VEP.png" class=3D"kg-image" alt loading=3D"lazy" width=
|
|
=3D"600" height=3D"373" style=3D"border: none; -ms-interpolation-mode: bicu=
|
|
bic; max-width: 100%; display: block; margin: 0 auto; height: auto; width: =
|
|
auto;"></div><h3 id=3D"sponsor-section" style=3D"margin-top: 0; font-family=
|
|
: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica,=
|
|
Arial, sans-serif, 'Apple Color Emoji', 'Segoe UI Emoji', =
|
|
'Segoe UI Symbol'; line-height: 1.11em; font-weight: 700; text-rend=
|
|
ering: optimizeLegibility; margin: 1.5em 0 0.5em 0; font-size: 26px;"><stro=
|
|
ng style=3D"font-weight: 800;"><em>Sponsor section</em></strong></h3><p sty=
|
|
le=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><em>In this Risky Business =
|
|
News sponsor interview, Catalin Cimpanu talks with runZero founder and CEO =
|
|
HD Moore about the company's latest capability, a feature called Inside=
|
|
-Out Attack Surface Management that takes internal fingerprints and scans t=
|
|
he internet to discover possible exposures.</em></p><div class=3D"kg-card k=
|
|
g-embed-card" style=3D"margin: 0 0 1.5em; padding: 0;">
|
|
<iframe frameborder=3D"0" style=3D"width: 100%; height: 156px;" srcdoc=
|
|
=3D"
|
|
=20
|
|
<!DOCTYPE html>
|
|
<html>
|
|
<head>
|
|
<title>Risky Business Player</title>
|
|
</head>
|
|
<body>
|
|
|
|
<!-- Include the Google Font Inter -->
|
|
<style>
|
|
@import url("https://fonts.googleapis.com/css2?family=3DInter:wght@400=
|
|
;700&display=3Dswap");
|
|
|
|
body {
|
|
margin: 0px;
|
|
}
|
|
|
|
=2Eaudio-player {
|
|
font-family: "Inter", sans-serif;
|
|
}
|
|
|
|
=2Eicon {
|
|
background-image: url("https://risky.biz/static/img/icons/subscrib=
|
|
e-icons.svg");
|
|
display: block;
|
|
width: 33px;
|
|
height: 33px;
|
|
background-size: 528px 111px;
|
|
}
|
|
|
|
}
|
|
</style>
|
|
|
|
<!-- Audio player -->
|
|
<div class=3D"audio-player" style=3D"display: flex; flex-=
|
|
direction: column; gap: 5px; padding-top: 0px; padding-bottom: 20px; backgr=
|
|
ound: rgb(244, 244, 239); background: linear-gradient(0deg, rgba(244, 244, =
|
|
239, 1) 0%, rgba(244, 244, 239, 0) 100%); border-radius: 8px; border: 1px s=
|
|
olid #d7d7d7; width: calc(100% - 1px) min-width: 350px;">
|
|
<audio class=3D"audioElement" preload=3D"none"&g=
|
|
t;
|
|
<source src=3D"https://dts.podtrac.com/redirect.mp3/media3.=
|
|
risky.biz/RBNEWSSI69.mp3" type=3D"audio/mpeg">
|
|
Your browser does not support the audio element.
|
|
</audio>
|
|
|
|
<!-- Title -->
|
|
<div style=3D"background: #666666; color: #FEFEFE; font-size: 1=
|
|
4px; padding-left: 5%; padding-right: 5%; padding-top: 10px; padding-bottom=
|
|
: 10px; border-top-left-radius: 8px; border-top-right-radius: 8px; white-sp=
|
|
ace: nowrap; overflow: hidden; text-overflow: ellipsis; margin-bottom: 10px=
|
|
;">
|
|
<a style=3D"color:#FEFEFE; text-decoration: none;" tar=
|
|
get=3D"_new" href=3D"https://risky.biz/RBNEWSSI69/">=
|
|
Sponsored: runZero on Inside-Out Attack Surface Management</a>
|
|
</div>
|
|
|
|
<!-- Player Controls and Progress Bar -->
|
|
<div style=3D"display: flex; align-items: center; justify-conte=
|
|
nt: center; gap: 10px; width: 90%; margin: 0 auto;">
|
|
<button type=3D"button" class=3D"playPauseBtn&quo=
|
|
t; style=3D"color: #1e1e1e; background-color: #FAFAFA; font-size: 18px=
|
|
; border: none; padding: 10px; border-radius: 8px; cursor: pointer; height:=
|
|
42px; width: 42px; text-align: center; display: flex; align-items: center;=
|
|
justify-content: center;">&#9654;</button>
|
|
<input type=3D"range" style=3D"flex-grow: 1; -web=
|
|
kit-appearance: none; height: 5px; background: #ddd; border-radius: 8px; ou=
|
|
tline: none; cursor: pointer;" class=3D"progressBar" value=
|
|
=3D"0" min=3D"0" max=3D"100" />
|
|
<span style=3D"font-size: 12px; font-weight: 200;" cla=
|
|
ss=3D"currentTime">0:00</span> /=20
|
|
=20
|
|
=20
|
|
=20
|
|
=20
|
|
<span style=3D"font-size: 12px; font-weight: 200;&qu=
|
|
ot; class=3D"duration">
|
|
10:11
|
|
</span>
|
|
</div>
|
|
|
|
<!-- Subscribe Buttons -->
|
|
<div style=3D"width: 90%; display: flex; justify-content: space=
|
|
-between; align-items: center; padding-left: 5%;">
|
|
<div style=3D"padding-right:20px;" class=3D"subTe=
|
|
xt">
|
|
<strong>Subscribe &nbsp;</strong>
|
|
</div>
|
|
=20
|
|
<div style=3D"display: flex; align-items: center; gap: 6px;=
|
|
margin: 0; flex-grow: 1;" class=3D"subContainer">
|
|
<!-- Apple Podcast Icon -->
|
|
<a href=3D"https://podcasts.apple.com/au/podcast/risky-=
|
|
business-news/id1621305970"
|
|
style=3D"background-position: 48px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon apple-podcast"></a>
|
|
<!-- Overcast Icon -->
|
|
<a href=3D"https://overcast.fm/itunes1621305970"
|
|
style=3D"background-position: 141px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon overcast-podcast"></a>
|
|
|
|
<!-- Pocket Casts Icon -->
|
|
<a href=3D"https://pca.st/yicebxgl"
|
|
style=3D"background-position: 234px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon pocketcast-podcast"></a>
|
|
<!-- Spotify Icon -->
|
|
<a href=3D"https://open.spotify.com/show/0BdExoUZqbGsBY=
|
|
jt6QZl4Q"
|
|
style=3D"background-position: 420px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon spotify-podcast"></a>
|
|
<!-- RSS Icon -->
|
|
<a href=3D"https://risky.biz/feeds/risky-business-news&=
|
|
quot;
|
|
style=3D"background-position: 327px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon rss-podcast"></a>
|
|
</div>
|
|
=20
|
|
|
|
=20
|
|
<a href=3D"https://risky.biz">
|
|
<img src=3D"https://risky.biz/static/img/RB_Site_Logo.svg&=
|
|
quot; alt=3D"Logo"
|
|
style=3D"margin-left: 0; height: 32px; display: block; pa=
|
|
dding-right: 5%;"
|
|
id=3D"logo" class=3D"logo playerLogo">
|
|
</a>
|
|
<script>
|
|
document.addEventListener("DOMContentLoaded", function () {
|
|
const players =3D document.querySelectorAll(".audio-player&quo=
|
|
t;);
|
|
|
|
function resizeElements(player) {
|
|
const logo =3D player.querySelector(".logo");
|
|
const subscribeIcons =3D player.querySelectorAll(".icon&qu=
|
|
ot;);
|
|
const subscribeContainer =3D player.querySelector(".subCon=
|
|
tainer"); // Select subContainer by class
|
|
const subText =3D player.querySelector(".subText"); /=
|
|
/ Select subText by class
|
|
|
|
if (player.offsetWidth <=3D 425) {
|
|
// Hide logo
|
|
if (logo) {
|
|
logo.style.display =3D "none";
|
|
}
|
|
} else if (player.offsetWidth <=3D 500) {
|
|
// Show logo and scale logo and icons to 70%
|
|
if (logo) {
|
|
logo.style.display =3D "block";
|
|
logo.style.transform =3D "scale(0.7)";
|
|
logo.style.transformOrigin =3D "center";
|
|
logo.style.verticalAlign =3D "middle";
|
|
}
|
|
subscribeIcons.forEach(icon =3D> {
|
|
icon.style.transform =3D "scale(0.7)";
|
|
icon.style.transformOrigin =3D "center";
|
|
icon.style.verticalAlign =3D "middle";
|
|
});
|
|
|
|
// Remove padding from subText and set font-size to 12px
|
|
if (subText) {
|
|
subText.style.padding =3D "0";
|
|
subText.style.fontSize =3D "12px";
|
|
}
|
|
|
|
// Set gap in subContainer to 0px
|
|
if (subscribeContainer) {
|
|
subscribeContainer.style.gap =3D "0px";
|
|
}
|
|
} else {
|
|
// Reset scaling, alignment, and visibility
|
|
if (logo) {
|
|
logo.style.display =3D "block";
|
|
logo.style.transform =3D "scale(1)";
|
|
logo.style.verticalAlign =3D "baseline";
|
|
}
|
|
subscribeIcons.forEach(icon =3D> {
|
|
icon.style.transform =3D "scale(1)";
|
|
icon.style.verticalAlign =3D "baseline";
|
|
});
|
|
|
|
// Reset padding and font-size in subText
|
|
if (subText) {
|
|
subText.style.padding =3D "0 20px"; // Defaul=
|
|
t padding
|
|
subText.style.fontSize =3D "inherit"; // Defa=
|
|
ult font-size
|
|
}
|
|
|
|
// Reset gap in subContainer
|
|
if (subscribeContainer) {
|
|
subscribeContainer.style.gap =3D "6px"; // De=
|
|
fault gap
|
|
}
|
|
}
|
|
}
|
|
|
|
function handleResize() {
|
|
players.forEach(player =3D> {
|
|
resizeElements(player);
|
|
});
|
|
}
|
|
|
|
// Run on initial load and resize
|
|
handleResize();
|
|
window.addEventListener("resize", handleResize);
|
|
});
|
|
</script>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
</div>
|
|
</div>
|
|
|
|
|
|
<script>
|
|
// Custom Audio Player
|
|
document.addEventListener("DOMContentLoaded", function () {
|
|
const players =3D document.querySelectorAll(".audio-player");
|
|
|
|
players.forEach(function (player) {
|
|
// Skip if already initialized
|
|
if (player.dataset.initialized =3D=3D=3D "true") return;
|
|
|
|
// Mark player as initialized
|
|
player.dataset.initialized =3D "true";
|
|
=20
|
|
const audio =3D player.querySelector(".audioElement");
|
|
const playPauseBtn =3D player.querySelector(".playPauseBtn&quo=
|
|
t;);
|
|
const progressBar =3D player.querySelector(".progressBar"=
|
|
);
|
|
const currentTimeEl =3D player.querySelector(".currentTime&quo=
|
|
t;);
|
|
const durationEl =3D player.querySelector(".duration");
|
|
|
|
if (!audio || !playPauseBtn || !progressBar || !currentTimeEl || !d=
|
|
urationEl) {
|
|
console.error("One or more player elements not found:"=
|
|
;, { audio, playPauseBtn, progressBar, currentTimeEl, durationEl });
|
|
return;=20
|
|
}
|
|
|
|
playPauseBtn.addEventListener("click", () =3D> {
|
|
if (audio.paused) {
|
|
audio.play();
|
|
playPauseBtn.textContent =3D "⏸";=20
|
|
|
|
// GA4 event for starting audio
|
|
gtag("event", "audio_play", {
|
|
"content_title": "Sponsored: runZero o=
|
|
n Inside-Out Attack Surface Management",
|
|
"content_type": "audio"
|
|
});
|
|
} else {
|
|
audio.pause();
|
|
playPauseBtn.textContent =3D "▶";
|
|
}
|
|
});
|
|
|
|
audio.addEventListener("timeupdate", () =3D> {
|
|
if (audio.duration) {
|
|
progressBar.value =3D (audio.currentTime / audio.duration) =
|
|
* 100;
|
|
currentTimeEl.textContent =3D formatTime(audio.currentTime)=
|
|
;
|
|
}
|
|
});
|
|
|
|
audio.addEventListener("loadedmetadata", () =3D> {
|
|
durationEl.textContent =3D formatTime(audio.duration);
|
|
});
|
|
|
|
progressBar.addEventListener("input", () =3D> {
|
|
if (audio.duration) {
|
|
audio.currentTime =3D (progressBar.value / 100) * audio.dur=
|
|
ation;
|
|
}
|
|
});
|
|
|
|
function formatTime(seconds) {
|
|
const minutes =3D Math.floor(seconds / 60);
|
|
const secs =3D Math.floor(seconds % 60);
|
|
return `${minutes}:${secs < 10 ? "0" : ""=
|
|
;}${secs}`;
|
|
}
|
|
});
|
|
});
|
|
|
|
</script>
|
|
</body>
|
|
</html>
|
|
|
|
|
|
"></iframe>
|
|
</div><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><a href=3D"http=
|
|
s://news.risky.biz/r/a7e5408d?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" sty=
|
|
le=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underline;"=
|
|
target=3D"_blank"><span style=3D"white-space: pre-wrap;">https://risky.biz=
|
|
/RBNEWSSI69/</span></a></p><h3 id=3D"arrests-cybercrime-and-threat-intel" s=
|
|
tyle=3D"margin-top: 0; font-family: -apple-system, BlinkMacSystemFont, '=
|
|
;Segoe UI', Roboto, Helvetica, Arial, sans-serif, 'Apple Color Emoj=
|
|
i', 'Segoe UI Emoji', 'Segoe UI Symbol'; line-height: 1=
|
|
=2E11em; font-weight: 700; text-renderi=
|
|
ng: optimizeLegibility; margin: 1.5em=20=
|
|
0 0.5em 0; font-size: 26px;"><strong style=3D"font-weight: 800;">Arrests, c=
|
|
ybercrime, and threat intel</strong></h3><p style=3D"margin: 0 0 1.5em 0; l=
|
|
ine-height: 1.6em;"><strong style=3D"font-weight: 700;">US indicts new batc=
|
|
h of DPRK IT workers:</strong> The US DOJ has <a href=3D"https://news.risky=
|
|
=2Ebiz/r/6712c1cf?m=3D1a80b145-9ce5-407=
|
|
e-b496-c57050db16ff" style=3D"overflow=
|
|
-wrap: anywhere; color: #727272; text-decoration: underline;" target=3D"_bl=
|
|
ank">charged</a> two North Korean IT workers who posed as Westerners to obt=
|
|
ain jobs at US companies and raise money for the country's weapons prog=
|
|
ram. The two, along with other co-conspirators, are believed to have genera=
|
|
ted over $866,000 over the past six years. The DOJ has also charged two US =
|
|
nationals for running a laptop farm that allowed the workers to disguise th=
|
|
eir location and pose as US residents.</p><p style=3D"margin: 0 0 1.5em 0; =
|
|
line-height: 1.6em;"><strong style=3D"font-weight: 700;">Former employee pl=
|
|
eads guilty to hacks:</strong> A 39-year-old Florida man has <a href=3D"htt=
|
|
ps://news.risky.biz/r/72c30bef?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" st=
|
|
yle=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underline;=
|
|
" target=3D"_blank">pleaded guilty</a> to hacking and destroying the IT net=
|
|
work of his former employer. He is the former Disney employee who hacked th=
|
|
e company's menu software to remove allergy information and deface the =
|
|
menu with mass-shooting-related data. See this <a href=3D"https://news.risk=
|
|
y.biz/r/4f72c9b3?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflo=
|
|
w-wrap: anywhere; color: #727272; text-decoration: underline;" target=3D"_b=
|
|
lank"><em>CourtWatch</em></a> article on the original indictment.</p><p sty=
|
|
le=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"font-weigh=
|
|
t: 700;">No more investigations in Prince Harry hack:</strong> The UK gover=
|
|
nment says it will not launch any new investigations into UK tabloid The Su=
|
|
n for its hacking of Prince Harry's personal smartphone. Officials have=
|
|
dropped any future investigations after the outlet <a href=3D"https://news=
|
|
=2Erisky.biz/r/3aa6d0eb?m=3D1a80b145-9c=
|
|
e5-407e-b496-c57050db16ff" style=3D"ov=
|
|
erflow-wrap: anywhere; color: #727272; text-decoration: underline;" target=
|
|
=3D"_blank">admitted guilt</a> and settled its case with the UK royal house=
|
|
member. [<em>Additional coverage in </em><a href=3D"https://news.risky.biz=
|
|
/r/91440d6b?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wra=
|
|
p: anywhere; color: #727272; text-decoration: underline;" target=3D"_blank"=
|
|
><em>Byline Times</em></a>]</p><p style=3D"margin: 0 0 1.5em 0; line-height=
|
|
: 1.6em;"><strong style=3D"font-weight: 700;">Malaysian scam gang detained:=
|
|
</strong> Malaysian authorities have detained 16 locals for their role in a=
|
|
n online cyber scam syndicate that targeted people in Singapore. The group =
|
|
operated by calling victims posing as bank representatives, government offi=
|
|
cials, and police officers and urging victims to transfer funds to new acco=
|
|
unts under the gang's control. The group stole over $1.4 million just f=
|
|
rom this scheme alone. [<em>Additional coverage in </em><a href=3D"https://=
|
|
news.risky.biz/r/3f5928d9?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=
|
|
=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underline;" t=
|
|
arget=3D"_blank"><em>The Malay Mail</em></a>]</p><p style=3D"margin: 0 0 1.=
|
|
5em 0; line-height: 1.6em;"><strong style=3D"font-weight: 700;">New npm mal=
|
|
ware:</strong> Two-hundred-forty malicious npm packages were discovered and=
|
|
taken down last week. Check out the GitHub security advisory portal for&#x=
|
|
A0;<a href=3D"https://news.risky.biz/r/ed6adbfc?m=3D1a80b145-9ce5-407e-b496=
|
|
-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #727272; text-decor=
|
|
ation: underline;" target=3D"_blank">more details</a>.</p><p style=3D"margi=
|
|
n: 0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"font-weight: 700;">Em=
|
|
ail text salting:</strong> Cisco Talos observed an increase in the number o=
|
|
f email threats leveraging <a href=3D"https://news.risky.biz/r/f7e13539?m=
|
|
=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; =
|
|
color: #727272; text-decoration: underline;" target=3D"_blank">hidden text =
|
|
salting</a> (also known as "poisoning") in the second half of 202=
|
|
4.</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong style=
|
|
=3D"font-weight: 700;">SSH tunneling:</strong> <a href=3D"https://news.risk=
|
|
y.biz/r/76d33e84?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflo=
|
|
w-wrap: anywhere; color: #727272; text-decoration: underline;" target=3D"_b=
|
|
lank">Sygnia says</a> it's seeing ransomware gangs use SSH tunnels to b=
|
|
ackdoor VMWare ESXi instances and deploy their file encryptors.</p><p style=
|
|
=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"font-weight:=
|
|
700;">C2-over-QUIC:</strong> Security firm Active Countermeasures has publ=
|
|
ished a <a href=3D"https://news.risky.biz/r/2c15f357?m=3D1a80b145-9ce5-407e=
|
|
-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #727272; text-=
|
|
decoration: underline;" target=3D"_blank">pretty good overview</a> of how t=
|
|
hreat actors are hiding C2 traffic using the QUIC protocol.</p><p style=3D"=
|
|
margin: 0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"font-weight: 700=
|
|
;">FunkSec group:</strong> Digital risk company Foresiet has published a pr=
|
|
ofile on the tactics of <a href=3D"https://news.risky.biz/r/cd572770?m=3D1a=
|
|
80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color=
|
|
: #727272; text-decoration: underline;" target=3D"_blank">FunkSec</a>, a ne=
|
|
w threat actor that was last month's most prolific ransomware gang.</p>=
|
|
<p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"font=
|
|
-weight: 700;">SimpleHelp campaign:</strong> ArcticWolf says it has <a href=
|
|
=3D"https://news.risky.biz/r/b7ff297d?m=3D1a80b145-9ce5-407e-b496-c57050db1=
|
|
6ff" style=3D"overflow-wrap: anywhere; color: #727272; text-decoration: und=
|
|
erline;" target=3D"_blank">spotted</a> threat actors using SimpleHelp remot=
|
|
e access servers to breach corporate networks. The company has yet to link =
|
|
the intrusions to a specific vulnerability but noted the campaign started a=
|
|
week after Horizon3 published a <a href=3D"https://news.risky.biz/r/d78565=
|
|
3b?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhe=
|
|
re; color: #727272; text-decoration: underline;" target=3D"_blank">report</=
|
|
a> about three new SimpleHelp vulnerabilities.</p><p style=3D"margin: 0 0 1=
|
|
=2E5em 0; line-height: 1.6em;"><strong=
|
|
style=3D"font-weight: 700;">MyCrypter:=
|
|
</strong> A threat actor is selling access to a new malware crypting servic=
|
|
e named <a href=3D"https://news.risky.biz/r/48882a10?m=3D1a80b145-9ce5-407e=
|
|
-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #727272; text-=
|
|
decoration: underline;" target=3D"_blank">MyCrypter</a>.</p><p style=3D"mar=
|
|
gin: 0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"font-weight: 700;">=
|
|
Royal-to-BlackSuit rebrand:</strong> Red Sense researchers have published a=
|
|
n overview of how the Royal ransomware group had <a href=3D"https://news.ri=
|
|
sky.biz/r/fc9da456?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overf=
|
|
low-wrap: anywhere; color: #727272; text-decoration: underline;" target=3D"=
|
|
_blank">slowly rebranded</a> into what we know now as BlackSuit. Royal itse=
|
|
lf is an offshoot of the Conti gang, which itself is a rebrand of the old R=
|
|
yuk crew.</p><div class=3D"kg-card kg-image-card" style=3D"margin: 0 0 1.5e=
|
|
m; padding: 0;"><img src=3D"https://news.risky.biz/content/images/2025/01/R=
|
|
1.png" class=3D"kg-image" alt loading=3D"lazy" width=3D"600" height=3D"839"=
|
|
style=3D"border: none; -ms-interpolation-mode: bicubic; max-width: 100%; d=
|
|
isplay: block; margin: 0 auto; height: auto; width: auto;"></div><div class=
|
|
=3D"kg-card kg-image-card" style=3D"margin: 0 0 1.5em; padding: 0;"><img sr=
|
|
c=3D"https://news.risky.biz/content/images/2025/01/R2.jpeg" class=3D"kg-ima=
|
|
ge" alt loading=3D"lazy" width=3D"600" height=3D"839" style=3D"border: none=
|
|
; -ms-interpolation-mode: bicubic; max-width: 100%; display: block; margin:=
|
|
0 auto; height: auto; width: auto;"></div><h3 id=3D"malware-technical-repo=
|
|
rts" style=3D"margin-top: 0; font-family: -apple-system, BlinkMacSystemFont=
|
|
, 'Segoe UI', Roboto, Helvetica, Arial, sans-serif, 'Apple Colo=
|
|
r Emoji', 'Segoe UI Emoji', 'Segoe UI Symbol'; line-hei=
|
|
ght: 1.11em; font-weight: 700; text-rendering: optimizeLegibility; margin: =
|
|
1.5em 0 0.5em 0; font-size: 26px;"><strong style=3D"font-weight: 800;">Malw=
|
|
are technical reports</strong></h3><p style=3D"margin: 0 0 1.5em 0; line-he=
|
|
ight: 1.6em;"><strong style=3D"font-weight: 700;">Trojanized builder infect=
|
|
s 18k:</strong> Over 18,000 users infected themselves with a backdoor after=
|
|
they downloaded a cracked malware builder. Security firm <a href=3D"https:=
|
|
//news.risky.biz/r/22d6dde6?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=
|
|
=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underline;" t=
|
|
arget=3D"_blank">CloudSEK says</a> the builder was advertised using online =
|
|
tutorials, YouTube and Telegram channels, and GitHub repositories. The back=
|
|
door was hidden inside a builder for the XWorm RAT, a popular malware strai=
|
|
n. Users who attempted to use the builder had their browser, Discord, and T=
|
|
elegram data stolen.</p><div class=3D"kg-card kg-image-card" style=3D"margi=
|
|
n: 0 0 1.5em; padding: 0;"><img src=3D"https://news.risky.biz/content/image=
|
|
s/2025/01/xworm.png" class=3D"kg-image" alt loading=3D"lazy" width=3D"600" =
|
|
height=3D"395" style=3D"border: none; -ms-interpolation-mode: bicubic; max-=
|
|
width: 100%; display: block; margin: 0 auto; height: auto; width: auto;"></=
|
|
div><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"=
|
|
font-weight: 700;">Tangerine Turkey:</strong> Red Canary researchers have d=
|
|
iscovered a new malware strain named <a href=3D"https://news.risky.biz/r/87=
|
|
8960fd?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: an=
|
|
ywhere; color: #727272; text-decoration: underline;" target=3D"_blank">Tang=
|
|
erine Turkey</a>. The malware was first seen in November of last year and i=
|
|
s a VBS worm that spreads via portable USB devices. Its primary role is to =
|
|
spread offline via USB and then deploy a cryptominer named Zephyr when the =
|
|
user connects to the internet.</p><p style=3D"margin: 0 0 1.5em 0; line-hei=
|
|
ght: 1.6em;"><strong style=3D"font-weight: 700;">SilentCryptoMiner:</strong=
|
|
> Dr.Web researchers have published an analysis of a three-year-old campaig=
|
|
n deploying the <a href=3D"https://news.risky.biz/r/fd1d2cd6?m=3D1a80b145-9=
|
|
ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #72727=
|
|
2; text-decoration: underline;" target=3D"_blank">SilentCryptoMiner malware=
|
|
</a>.</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong styl=
|
|
e=3D"font-weight: 700;">Helldown ransomware:</strong> The ThreatMon team ha=
|
|
s published a report on the new <a href=3D"https://news.risky.biz/r/8208a03=
|
|
f?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywher=
|
|
e; color: #727272; text-decoration: underline;" target=3D"_blank">Helldown =
|
|
ransomware</a>.</p><blockquote style=3D"margin: 0; padding: 0; border-left:=
|
|
#727272 2px solid; font-size: 17px; font-weight: 500; line-height: 1.6em; =
|
|
letter-spacing: -0.2px;"><p style=3D"line-height: 1.6em; margin: 2em 25px; =
|
|
font-size: 1em; padding: 0;"><em>"The Helldown ransomware group emerge=
|
|
d as a significant cyber threat in August 2024, demonstrating sophisticated=
|
|
capabilities in targeting both Linux and Windows systems across multiple s=
|
|
ectors and geographic regions. Through our technical analysis, we have iden=
|
|
tified this group as a highly adaptable threat actor group that has success=
|
|
fully compromised approximately 40 organizations, including notable targets=
|
|
such as Zyxel."</em></p></blockquote><p style=3D"margin: 0 0 1.5em 0;=
|
|
line-height: 1.6em;"><strong style=3D"font-weight: 700;">Premium Panel:</s=
|
|
trong> Intrinsec researchers take a look at <a href=3D"https://news.risky.b=
|
|
iz/r/3fed04c4?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-w=
|
|
rap: anywhere; color: #727272; text-decoration: underline;" target=3D"_blan=
|
|
k">Premium Panel</a>, a three-year-old phishing toolkit used in the wild.</=
|
|
p><div class=3D"kg-card kg-image-card" style=3D"margin: 0 0 1.5em; padding:=
|
|
0;"><img src=3D"https://news.risky.biz/content/images/2025/01/PP.png" clas=
|
|
s=3D"kg-image" alt loading=3D"lazy" width=3D"600" height=3D"357" style=3D"b=
|
|
order: none; -ms-interpolation-mode: bicubic; max-width: 100%; display: blo=
|
|
ck; margin: 0 auto; height: auto; width: auto;"></div><h3 id=3D"sponsor-sec=
|
|
tion-1" style=3D"margin-top: 0; font-family: -apple-system, BlinkMacSystemF=
|
|
ont, 'Segoe UI', Roboto, Helvetica, Arial, sans-serif, 'Apple C=
|
|
olor Emoji', 'Segoe UI Emoji', 'Segoe UI Symbol'; line-=
|
|
height: 1.11em; font-weight: 700; text-rendering: optimizeLegibility; margi=
|
|
n: 1.5em 0 0.5em 0; font-size: 26px;"><strong style=3D"font-weight: 800;"><=
|
|
em>Sponsor section</em></strong></h3><p style=3D"margin: 0 0 1.5em 0; line-=
|
|
height: 1.6em;"><em>Senior Sales Engineer Ali Cheikh demonstrates runZero t=
|
|
o Risky Business host Patrick Gray. runZero is a cyber asset management too=
|
|
l that combines active scanning, passive discovery, and API integrations to=
|
|
discover IT, OT, and IoT assets (both managed and unmanaged) across your n=
|
|
etwork, including cloud, mobile, and remote environments.</em></p><div clas=
|
|
s=3D"kg-card kg-embed-card" style=3D"margin: 0 0 1.5em; padding: 0;"><!--[i=
|
|
f !mso !vml]-->
|
|
<a class=3D"kg-video-preview" href=3D"https://news.risky.biz/r/=
|
|
22b3682f?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" aria-label=3D"Play video=
|
|
" style=3D"background-color: #1d1f21; background-image: radial-gradient(cir=
|
|
cle at center, #5b5f66, #1d1f21); display: block; overflow-wrap: anywhere; =
|
|
color: #727272; mso-hide: all; text-decoration: none;" target=3D"_blank">
|
|
<table cellpadding=3D"0" cellspacing=3D"0" border=3D"0" wid=
|
|
th=3D"100%" background=3D"https://i.ytimg.com/vi/HFKlipfI0AM/hqdefault.jpg"=
|
|
role=3D"presentation" style=3D"border-collapse: separate; mso-table-lspace=
|
|
: 0pt; mso-table-rspace: 0pt; width: 100%; background-size: cover; min-heig=
|
|
ht: 200px; background: url('https://i.ytimg.com/vi/HFKlipfI0AM/hqdefaul=
|
|
t.jpg') left top / cover; mso-hide: all;">
|
|
<tbody><tr style=3D"mso-hide: all">
|
|
<td width=3D"25%" style=3D"font-family: -apple-syst=
|
|
em, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-=
|
|
serif, 'Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI=
|
|
Symbol'; font-size: 18px; vertical-align: top; color: #15212A; visibil=
|
|
ity: hidden; mso-hide: all;" valign=3D"top">
|
|
<img src=3D"https://img.spacergif.org/v1/150x45=
|
|
0/0a/spacer.png" alt width=3D"100%" border=3D"0" style=3D"border: none; -ms=
|
|
-interpolation-mode: bicubic; max-width: 100%; display: block; height: auto=
|
|
; opacity: 0; visibility: hidden; mso-hide: all;" height=3D"auto">
|
|
</td>
|
|
<td width=3D"50%" align=3D"center" valign=3D"middle=
|
|
" style=3D"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI=
|
|
9;, Roboto, Helvetica, Arial, sans-serif, 'Apple Color Emoji', '=
|
|
;Segoe UI Emoji', 'Segoe UI Symbol'; font-size: 18px; color: #1=
|
|
5212A; vertical-align: middle; mso-hide: all;">
|
|
<div class=3D"kg-video-play-button" style=3D"he=
|
|
ight: 2em; width: 3em; margin: 0 auto; border-radius: 10px; padding: 1em 0.=
|
|
8em 0.6em 1em; font-size: 1em; background-color: rgba(0,0,0,0.85); mso-hide=
|
|
: all;"><div style=3D"display: block; width: 0; height: 0; margin: 0 auto; =
|
|
line-height: 0px; border-color: transparent transparent transparent white; =
|
|
border-style: solid; border-width: 0.8em 0 0.8em 1.5em; mso-hide: all;"></d=
|
|
iv></div>
|
|
</td>
|
|
<td width=3D"25%" style=3D"font-family: -apple-syst=
|
|
em, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-=
|
|
serif, 'Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI=
|
|
Symbol'; font-size: 18px; vertical-align: top; color: #15212A; mso-hid=
|
|
e: all;" valign=3D"top"> </td>
|
|
</tr>
|
|
</tbody></table>
|
|
</a>
|
|
<!--[endif]-->
|
|
|
|
<!--[if vml]>
|
|
<v:group xmlns:v=3D"urn:schemas-microsoft-com:vml" xmlns:w=3D"u=
|
|
rn:schemas-microsoft-com:office:word" coordsize=3D"600,450" coordorigin=3D"=
|
|
0,0" href=3D"https://www.youtube.com/watch?v=3DHFKlipfI0AM" style=3D"width:=
|
|
600px;height:450px;">
|
|
<v:rect fill=3D"t" stroked=3D"f" style=3D"position:absolute=
|
|
;width:600;height:450;"><v:fill src=3D"https://i.ytimg.com/vi/HFKlipfI0AM/h=
|
|
qdefault.jpg" type=3D"frame"/></v:rect>
|
|
<v:oval fill=3D"t" strokecolor=3D"white" strokeweight=3D"4p=
|
|
x" style=3D"position:absolute;left:261;top:186;width:78;height:78"><v:fill =
|
|
color=3D"black" opacity=3D"30%" /></v:oval>
|
|
<v:shape coordsize=3D"24,32" path=3D"m,l,32,24,16,xe" fillc=
|
|
olor=3D"white" stroked=3D"f" style=3D"position:absolute;left:289;top:208;wi=
|
|
dth:30;height:34;" />
|
|
</v:group>
|
|
<![endif]--></div><h3 id=3D"apts-cyber-espionage-and-info-ops" =
|
|
style=3D"margin-top: 0; font-family: -apple-system, BlinkMacSystemFont, =
|
|
9;Segoe UI', Roboto, Helvetica, Arial, sans-serif, 'Apple Color Emo=
|
|
ji', 'Segoe UI Emoji', 'Segoe UI Symbol'; line-height: =
|
|
1.11em; font-weight: 700; text-rendering: optimizeLegibility; margin: 1.5em=
|
|
0 0.5em 0; font-size: 26px;"><strong style=3D"font-weight: 800;">APTs, cyb=
|
|
er-espionage, and info-ops</strong></h3><p style=3D"margin: 0 0 1.5em 0; li=
|
|
ne-height: 1.6em;"><strong style=3D"font-weight: 700;">Andariel:</strong> A=
|
|
hnLab researchers <a href=3D"https://news.risky.biz/r/ec1e3951?m=3D1a80b145=
|
|
-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #727=
|
|
272; text-decoration: underline;" target=3D"_blank">have spotted</a> North =
|
|
Korean APT group Andariel using RID hijacking in recent attacks.</p><blockq=
|
|
uote style=3D"margin: 0; padding: 0; border-left: #727272 2px solid; font-s=
|
|
ize: 17px; font-weight: 500; line-height: 1.6em; letter-spacing: -0.2px;"><=
|
|
p style=3D"line-height: 1.6em; margin: 2em 25px; font-size: 1em; padding: 0=
|
|
;"><em>"RID Hijacking is an attack technique that involves modifying t=
|
|
he Relative Identifier (RID) value of an account with restricted privileges=
|
|
, such as a regular user or guest account, to match the RID value of an acc=
|
|
ount with higher privileges, such as an administrator."</em></p></bloc=
|
|
kquote><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong style=
|
|
=3D"font-weight: 700;">Silent Lynx:</strong> Seqrite researchers have disco=
|
|
vered a new APT group named <a href=3D"https://news.risky.biz/r/75c1cbdb?m=
|
|
=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; =
|
|
color: #727272; text-decoration: underline;" target=3D"_blank">Silent Lynx<=
|
|
/a> that primarily targets government entities in Kyrgyzstan.</p><blockquot=
|
|
e style=3D"margin: 0; padding: 0; border-left: #727272 2px solid; font-size=
|
|
: 17px; font-weight: 500; line-height: 1.6em; letter-spacing: -0.2px;"><p s=
|
|
tyle=3D"line-height: 1.6em; margin: 2em 25px; font-size: 1em; padding: 0;">=
|
|
<em>"In our ongoing tracking of Silent Lynx, we discovered notable sim=
|
|
ilarities and overlaps with a Kazakhstan-based threat actor/group known as =
|
|
</em><a href=3D"https://news.risky.biz/r/9b3d4208?m=3D1a80b145-9ce5-407e-b4=
|
|
96-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #727272; text-dec=
|
|
oration: underline;" target=3D"_blank"><em>YoroTrooper</em></a><em>, as ide=
|
|
ntified by our colleagues at Cisco Talos."</em></p></blockquote><p sty=
|
|
le=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"font-weigh=
|
|
t: 700;">Kremlin disinfo switches to Germany:</strong> Russian-backed disin=
|
|
formation groups are flooding the internet with disinformation and pro-AfD =
|
|
content ahead of Germany's parliamentary election, according to reports=
|
|
from <a href=3D"https://news.risky.biz/r/f83148d6?m=3D1a80b145-9ce5-407e-b=
|
|
496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #727272; text-de=
|
|
coration: underline;" target=3D"_blank">Antibot4Navalny</a>, <a href=3D"htt=
|
|
ps://news.risky.biz/r/a76be239?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" st=
|
|
yle=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underline;=
|
|
" target=3D"_blank">Correctiv</a>, the <a href=3D"https://news.risky.biz/r/=
|
|
de765925?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: =
|
|
anywhere; color: #727272; text-decoration: underline;" target=3D"_blank">Gn=
|
|
ida Project</a>, and <a href=3D"https://news.risky.biz/r/eec125ff?m=3D1a80b=
|
|
145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #=
|
|
727272; text-decoration: underline;" target=3D"_blank">NewsGuard</a>. The c=
|
|
ampaign has been linked to a threat actor tracked as <a href=3D"https://new=
|
|
s.risky.biz/r/758910be?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"o=
|
|
verflow-wrap: anywhere; color: #727272; text-decoration: underline;" target=
|
|
=3D"_blank">Storm-1516</a>. The group was active last year attacking the Ha=
|
|
rris side and supporting the Trump campaign in the US. The group is <a href=
|
|
=3D"https://news.risky.biz/r/c20fdb2b?m=3D1a80b145-9ce5-407e-b496-c57050db1=
|
|
6ff" style=3D"overflow-wrap: anywhere; color: #727272; text-decoration: und=
|
|
erline;" target=3D"_blank">allegedly coordinated</a> by US fugitive turned =
|
|
Kremlin propagandist John Mark Dougan. According to German intelligence ser=
|
|
vices (via <a href=3D"https://news.risky.biz/r/32cc8ff0?m=3D1a80b145-9ce5-4=
|
|
07e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #727272; te=
|
|
xt-decoration: underline;" target=3D"_blank">Bild</a>), Russian authorities=
|
|
allocate over $2 billion each year for disinformation operations.</p><div =
|
|
class=3D"kg-card kg-image-card" style=3D"margin: 0 0 1.5em; padding: 0;"><i=
|
|
mg src=3D"https://news.risky.biz/content/images/2025/01/Storm.png" class=3D=
|
|
"kg-image" alt loading=3D"lazy" width=3D"600" height=3D"432" style=3D"borde=
|
|
r: none; -ms-interpolation-mode: bicubic; max-width: 100%; display: block; =
|
|
margin: 0 auto; height: auto; width: auto;"></div><h3 id=3D"vulnerabilities=
|
|
-security-research-and-bug-bounty" style=3D"margin-top: 0; font-family: -ap=
|
|
ple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Aria=
|
|
l, sans-serif, 'Apple Color Emoji', 'Segoe UI Emoji', '=
|
|
Segoe UI Symbol'; line-height: 1.11em; font-weight: 700; text-rendering=
|
|
: optimizeLegibility; margin: 1.5em 0 0.5em 0; font-size: 26px;"><strong st=
|
|
yle=3D"font-weight: 800;">Vulnerabilities, security research, and bug bount=
|
|
y</strong></h3><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><stron=
|
|
g style=3D"font-weight: 700;">Zyxel reboot loops:</strong> A faulty applica=
|
|
tion signature update has forced Zyxel firewalls into <a href=3D"https://ne=
|
|
ws.risky.biz/r/6f34a285?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"=
|
|
overflow-wrap: anywhere; color: #727272; text-decoration: underline;" targe=
|
|
t=3D"_blank">reboot loops</a>. The bug is impacting the company's USG F=
|
|
LEX or ATP series. Networks protected by these devices are currently expose=
|
|
d to attacks. Zyxel says device recovery is possible but only using on-site=
|
|
presence.</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong=
|
|
style=3D"font-weight: 700;">AMD CPU bug patch leaks early:</strong> Laptop=
|
|
maker ASUS has <a href=3D"https://news.risky.biz/r/a00f142b?m=3D1a80b145-9=
|
|
ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #72727=
|
|
2; text-decoration: underline;" target=3D"_blank">leaked</a> a patch for an=
|
|
upcoming major CPU vulnerability. The patch is for AMD CPUs on Windows. It=
|
|
is unclear if the issue also impacts other CPU makers and platforms. [<em>=
|
|
h/t Dan Goodin</em>]</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em=
|
|
;"><strong style=3D"font-weight: 700;">Atlassian security updates:</strong>=
|
|
Atlassian has released its <a href=3D"https://news.risky.biz/r/30868090?m=
|
|
=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; =
|
|
color: #727272; text-decoration: underline;" target=3D"_blank">monthly secu=
|
|
rity updates</a> for January 2025.</p><p style=3D"margin: 0 0 1.5em 0; line=
|
|
-height: 1.6em;"><strong style=3D"font-weight: 700;">New EDR bypass:</stron=
|
|
g> Praetorian security researchers have discovered a <a href=3D"https://new=
|
|
s.risky.biz/r/da5e2c25?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"o=
|
|
verflow-wrap: anywhere; color: #727272; text-decoration: underline;" target=
|
|
=3D"_blank">new EDR bypass</a> using CPU hardware breakpoints.</p><p style=
|
|
=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"font-weight:=
|
|
700;">Llama code exec:</strong> Oligo has found a <a href=3D"https://news.=
|
|
risky.biz/r/8e94003e?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"ove=
|
|
rflow-wrap: anywhere; color: #727272; text-decoration: underline;" target=
|
|
=3D"_blank">code exec vulnerability</a> in Meta's Llama open-source AI =
|
|
model.</p><blockquote style=3D"margin: 0; padding: 0; border-left: #727272 =
|
|
2px solid; font-size: 17px; font-weight: 500; line-height: 1.6em; letter-sp=
|
|
acing: -0.2px;"><p style=3D"line-height: 1.6em; margin: 2em 25px; font-size=
|
|
: 1em; padding: 0;"><em>"The vulnerability, </em><a href=3D"https://ne=
|
|
ws.risky.biz/r/def7f8bf?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"=
|
|
overflow-wrap: anywhere; color: #727272; text-decoration: underline;" targe=
|
|
t=3D"_blank"><em>CVE-2024-50050</em></a><em> enables attackers to execute a=
|
|
rbitrary code on the llama-stack inference server from the network."</=
|
|
em></p></blockquote><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><=
|
|
strong style=3D"font-weight: 700;">Kubernetes Windows bug write-up:</strong=
|
|
> Akamai security researcher Tomer Peled has published a <a href=3D"https:/=
|
|
/news.risky.biz/r/adb2443e?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=
|
|
=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underline;" t=
|
|
arget=3D"_blank">technical write-up</a> on a bug tracked as <a href=3D"http=
|
|
s://news.risky.biz/r/406c5b13?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" sty=
|
|
le=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underline;"=
|
|
target=3D"_blank">CVE-2024-9042</a> that impacts Kubernetes Windows nodes.=
|
|
Peled says the bug can be used to take over K8s hosts.</p><p style=3D"marg=
|
|
in: 0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"font-weight: 700;">C=
|
|
lone2Leak vulnerability:</strong> Flatt Security has discovered a vulnerabi=
|
|
lity in the Git Credential Protocol, a system that stores user credentials =
|
|
in Git-based applications. Named <a href=3D"https://news.risky.biz/r/09240d=
|
|
40?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhe=
|
|
re; color: #727272; text-decoration: underline;" target=3D"_blank">Clone2Le=
|
|
ak</a>, the bug allows threat actors to steal a victim's Git credential=
|
|
s when they clone a malicious repository. Clone2Leak impacts the Git codeba=
|
|
se, official GitHub desktop and CLI apps, and third-party repo managers.</p=
|
|
><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"fon=
|
|
t-weight: 700;">Node.js CVE drama:</strong> Socket Security has a <a href=
|
|
=3D"https://news.risky.biz/r/d3fcf70c?m=3D1a80b145-9ce5-407e-b496-c57050db1=
|
|
6ff" style=3D"overflow-wrap: anywhere; color: #727272; text-decoration: und=
|
|
erline;" target=3D"_blank">good article</a> on a recent drama in the infose=
|
|
c community about the issuance of a new CVE for outdated Node.js installati=
|
|
ons.</p><div class=3D"kg-card kg-image-card" style=3D"margin: 0 0 1.5em; pa=
|
|
dding: 0;"><img src=3D"https://news.risky.biz/content/images/2025/01/Jerry.=
|
|
png" class=3D"kg-image" alt loading=3D"lazy" width=3D"600" height=3D"313" s=
|
|
tyle=3D"border: none; -ms-interpolation-mode: bicubic; max-width: 100%; dis=
|
|
play: block; margin: 0 auto; height: auto; width: auto;"></div><h3 id=3D"in=
|
|
fosec-industry" style=3D"margin-top: 0; font-family: -apple-system, BlinkMa=
|
|
cSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-serif, '=
|
|
;Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI Symbol'=
|
|
;; line-height: 1.11em; font-weight: 700; text-rendering: optimizeLegibilit=
|
|
y; margin: 1.5em 0 0.5em 0; font-size: 26px;"><strong style=3D"font-weight:=
|
|
800;">Infosec industry</strong></h3><p style=3D"margin: 0 0 1.5em 0; line-=
|
|
height: 1.6em;"><strong style=3D"font-weight: 700;">Pwn2Own Automotive 2025=
|
|
:</strong> Security researcher Sina Kheirkhah has won the <a href=3D"https:=
|
|
//news.risky.biz/r/adf2ed65?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=
|
|
=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underline;" t=
|
|
arget=3D"_blank">Pwn2Own Automotive 2025</a> hacking contest.</p><div class=
|
|
=3D"kg-card kg-image-card" style=3D"margin: 0 0 1.5em; padding: 0;"><img sr=
|
|
c=3D"https://news.risky.biz/content/images/2025/01/Pwn2.png" class=3D"kg-im=
|
|
age" alt loading=3D"lazy" width=3D"600" height=3D"334" style=3D"border: non=
|
|
e; -ms-interpolation-mode: bicubic; max-width: 100%; display: block; margin=
|
|
: 0 auto; height: auto; width: auto;"></div><p style=3D"margin: 0 0 1.5em 0=
|
|
; line-height: 1.6em;"><strong style=3D"font-weight: 700;">New tool—=
|
|
EByte ransomware:</strong> Purple teamer Codepulze has open-sourced <a href=
|
|
=3D"https://news.risky.biz/r/9a692779?m=3D1a80b145-9ce5-407e-b496-c57050db1=
|
|
6ff" style=3D"overflow-wrap: anywhere; color: #727272; text-decoration: und=
|
|
erline;" target=3D"_blank">EByte</a>, a Go-based ransomware strain.</p><p s=
|
|
tyle=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"font-wei=
|
|
ght: 700;">New tool—WinVisor:</strong> The <a href=3D"https://news.r=
|
|
isky.biz/r/642d4b16?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"over=
|
|
flow-wrap: anywhere; color: #727272; text-decoration: underline;" target=3D=
|
|
"_blank">Elastic security team</a> has released <a href=3D"https://news.ris=
|
|
ky.biz/r/907e2bcd?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overfl=
|
|
ow-wrap: anywhere; color: #727272; text-decoration: underline;" target=3D"_=
|
|
blank">WinVisor</a>, a hypervisor-based emulator for Windows x64 binaries.<=
|
|
/p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"f=
|
|
ont-weight: 700;">New tool—YaraMonitor:</strong> Security researcher=
|
|
Monty has released <a href=3D"https://news.risky.biz/r/435229d0?m=3D1a80b1=
|
|
45-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #7=
|
|
27272; text-decoration: underline;" target=3D"_blank">YaraMonitor</a>, a to=
|
|
ol to continuously ingest, analyze, and alert on malware samples given a se=
|
|
t of Yara rules.</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><=
|
|
strong style=3D"font-weight: 700;">New tool—Slack Jack:</strong> Sec=
|
|
urity researcher Abel de la Paz has released <a href=3D"https://news.risky.=
|
|
biz/r/a9b08bad?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-=
|
|
wrap: anywhere; color: #727272; text-decoration: underline;" target=3D"_bla=
|
|
nk">Slack Jack</a>, a tool to hijack a Slack bot using its token and perfor=
|
|
m various enumeration and exploitation attacks.</p><p style=3D"margin: 0 0 =
|
|
1.5em 0; line-height: 1.6em;"><strong style=3D"font-weight: 700;">New tool&=
|
|
#x2014;LOLTunnels:</strong> Security researcher Kamran Saifullah has releas=
|
|
ed a project named <a href=3D"https://news.risky.biz/r/fd0eca94?m=3D1a80b14=
|
|
5-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #72=
|
|
7272; text-decoration: underline;" target=3D"_blank">LOLTunnels</a>. The pr=
|
|
oject tracks a list of digital tunneling technologies that can be abused by=
|
|
threat actors as well as by insiders for data exfiltrations, persistence, =
|
|
shell access, and more. The project is similar to other initiatives that tr=
|
|
ack benign tools that can be abused for attacks on Windows (<a href=3D"http=
|
|
s://news.risky.biz/r/560143f6?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" sty=
|
|
le=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underline;"=
|
|
target=3D"_blank">LOLBAS</a>, <a href=3D"https://news.risky.biz/r/28f=
|
|
ee1db?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: any=
|
|
where; color: #727272; text-decoration: underline;" target=3D"_blank">LOLDr=
|
|
ivers</a>, and <a href=3D"https://news.risky.biz/r/16ecf142?m=3D1a80b1=
|
|
45-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #7=
|
|
27272; text-decoration: underline;" target=3D"_blank">LOFLCAB</a>), Linux (=
|
|
<a href=3D"https://news.risky.biz/r/39c64563?m=3D1a80b145-9ce5-407e-b496-c5=
|
|
7050db16ff" style=3D"overflow-wrap: anywhere; color: #727272; text-decorati=
|
|
on: underline;" target=3D"_blank">GTFOBins</a>), macOS (<a href=3D"https://=
|
|
news.risky.biz/r/07d8c378?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=
|
|
=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underline;" t=
|
|
arget=3D"_blank">LOOBins</a>), CI/CD pipelines (<a href=3D"https://news.ris=
|
|
ky.biz/r/74a8578a?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overfl=
|
|
ow-wrap: anywhere; color: #727272; text-decoration: underline;" target=3D"_=
|
|
blank">LOTP</a>), ESXi VMs (<a href=3D"https://news.risky.biz/r/2c3e6b42?m=
|
|
=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; =
|
|
color: #727272; text-decoration: underline;" target=3D"_blank">LOLESXi</a>)=
|
|
, and RMM software (<a href=3D"https://news.risky.biz/r/76f0603a?m=3D1a80b1=
|
|
45-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #7=
|
|
27272; text-decoration: underline;" target=3D"_blank">LOLRMM</a>).</p><div =
|
|
class=3D"kg-card kg-image-card" style=3D"margin: 0 0 1.5em; padding: 0;"><i=
|
|
mg src=3D"https://news.risky.biz/content/images/2025/01/LOLTunnels.png" cla=
|
|
ss=3D"kg-image" alt loading=3D"lazy" width=3D"600" height=3D"449" style=3D"=
|
|
border: none; -ms-interpolation-mode: bicubic; max-width: 100%; display: bl=
|
|
ock; margin: 0 auto; height: auto; width: auto;"></div><p style=3D"margin: =
|
|
0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"font-weight: 700;">Threa=
|
|
t/trend reports:</strong> <a href=3D"https://news.risky.biz/r/8969cab2?m=3D=
|
|
1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; col=
|
|
or: #727272; text-decoration: underline;" target=3D"_blank">DataDog</a>, <a=
|
|
href=3D"https://news.risky.biz/r/b3892a8c?m=3D1a80b145-9ce5-407e-b496-c570=
|
|
50db16ff" style=3D"overflow-wrap: anywhere; color: #727272; text-decoration=
|
|
: underline;" target=3D"_blank">Harfang Labs</a>, <a href=3D"https://news.r=
|
|
isky.biz/r/b90f9136?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"over=
|
|
flow-wrap: anywhere; color: #727272; text-decoration: underline;" target=3D=
|
|
"_blank">Red Canary</a>, <a href=3D"https://news.risky.biz/r/172d7543?m=3D1=
|
|
a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; colo=
|
|
r: #727272; text-decoration: underline;" target=3D"_blank">Rising</a>, <a h=
|
|
ref=3D"https://news.risky.biz/r/fea33d41?m=3D1a80b145-9ce5-407e-b496-c57050=
|
|
db16ff" style=3D"overflow-wrap: anywhere; color: #727272; text-decoration: =
|
|
underline;" target=3D"_blank">Securonix</a>, and the <a href=3D"https://new=
|
|
s.risky.biz/r/9bccbffd?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"o=
|
|
verflow-wrap: anywhere; color: #727272; text-decoration: underline;" target=
|
|
=3D"_blank">World Economic Forum</a> have published reports and summaries c=
|
|
overing various infosec trends and industry threats.</p><p style=3D"margin:=
|
|
0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"font-weight: 700;">JSAC=
|
|
2024:</strong> Talks from Japan CERT's JSAC 2024 security conference, =
|
|
which took place last January, are <a href=3D"https://news.risky.biz/r=
|
|
/6de5ae38?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap:=
|
|
anywhere; color: #727272; text-decoration: underline;" target=3D"_blank">a=
|
|
vailable on YouTube</a>. This year's edition videos have not yet been u=
|
|
ploaded.</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong s=
|
|
tyle=3D"font-weight: 700;">DeepSeek-R1:</strong> Chinese startup DeepSeek h=
|
|
as <a href=3D"https://news.risky.biz/r/2903fffc?m=3D1a80b145-9ce5-407e-b496=
|
|
-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #727272; text-decor=
|
|
ation: underline;" target=3D"_blank">released</a> a new open-source AI mode=
|
|
l named DeepSeek-R1 that appears to be really good at coding, gaining quite=
|
|
a lot of positive reviews (and warnings) from the infosec community.</p><d=
|
|
iv class=3D"kg-card kg-image-card" style=3D"margin: 0 0 1.5em; padding: 0;"=
|
|
><img src=3D"https://news.risky.biz/content/images/2025/01/Sam-1.png" class=
|
|
=3D"kg-image" alt loading=3D"lazy" width=3D"599" height=3D"239" style=3D"bo=
|
|
rder: none; -ms-interpolation-mode: bicubic; max-width: 100%; display: bloc=
|
|
k; margin: 0 auto; height: auto; width: auto;"></div><div class=3D"kg-card =
|
|
kg-image-card" style=3D"margin: 0 0 1.5em; padding: 0;"><img src=3D"https:/=
|
|
/news.risky.biz/content/images/2025/01/Alex.png" class=3D"kg-image" alt loa=
|
|
ding=3D"lazy" width=3D"597" height=3D"610" style=3D"border: none; -ms-inter=
|
|
polation-mode: bicubic; max-width: 100%; display: block; margin: 0 auto; he=
|
|
ight: auto; width: auto;"></div><div class=3D"kg-card kg-image-card" style=
|
|
=3D"margin: 0 0 1.5em; padding: 0;"><img src=3D"https://news.risky.biz/cont=
|
|
ent/images/2025/01/Kenn.png" class=3D"kg-image" alt loading=3D"lazy" width=
|
|
=3D"590" height=3D"288" style=3D"border: none; -ms-interpolation-mode: bicu=
|
|
bic; max-width: 100%; display: block; margin: 0 auto; height: auto; width: =
|
|
auto;"></div><div class=3D"kg-card kg-image-card" style=3D"margin: 0 0 1.5e=
|
|
m; padding: 0;"><img src=3D"https://news.risky.biz/content/images/2025/01/J=
|
|
aana.png" class=3D"kg-image" alt loading=3D"lazy" width=3D"530" height=3D"2=
|
|
12" style=3D"border: none; -ms-interpolation-mode: bicubic; max-width: 100%=
|
|
; display: block; margin: 0 auto; height: auto; width: auto;"></div><h3 id=
|
|
=3D"risky-business-podcasts-1" style=3D"margin-top: 0; font-family: -apple-=
|
|
system, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, s=
|
|
ans-serif, 'Apple Color Emoji', 'Segoe UI Emoji', 'Sego=
|
|
e UI Symbol'; line-height: 1.11em; font-weight: 700; text-rendering: op=
|
|
timizeLegibility; margin: 1.5em 0 0.5em 0; font-size: 26px;"><strong style=
|
|
=3D"font-weight: 800;"><em>Risky Business Podcasts</em></strong></h3><p sty=
|
|
le=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><em>In this podcast, Tom Ur=
|
|
en and Adam Boileau talk about the continued importance of hack and leak op=
|
|
erations. They didn't really affect the recent US presidential election=
|
|
, but they are still a powerful tool for vested interests to influence publ=
|
|
ic policy.</em></p><div class=3D"kg-card kg-embed-card" style=3D"margin: 0 =
|
|
0 1.5em; padding: 0;">
|
|
<iframe frameborder=3D"0" style=3D"width: 100%; height: 156px;" srcdoc=
|
|
=3D"
|
|
=20
|
|
<!DOCTYPE html>
|
|
<html>
|
|
<head>
|
|
<title>Risky Business Player</title>
|
|
</head>
|
|
<body>
|
|
|
|
<!-- Include the Google Font Inter -->
|
|
<style>
|
|
@import url("https://fonts.googleapis.com/css2?family=3DInter:wght@400=
|
|
;700&display=3Dswap");
|
|
|
|
body {
|
|
margin: 0px;
|
|
}
|
|
|
|
=2Eaudio-player {
|
|
font-family: "Inter", sans-serif;
|
|
}
|
|
|
|
=2Eicon {
|
|
background-image: url("https://risky.biz/static/img/icons/subscrib=
|
|
e-icons.svg");
|
|
display: block;
|
|
width: 33px;
|
|
height: 33px;
|
|
background-size: 528px 111px;
|
|
}
|
|
|
|
}
|
|
</style>
|
|
|
|
<!-- Audio player -->
|
|
<div class=3D"audio-player" style=3D"display: flex; flex-=
|
|
direction: column; gap: 5px; padding-top: 0px; padding-bottom: 20px; backgr=
|
|
ound: rgb(244, 244, 239); background: linear-gradient(0deg, rgba(244, 244, =
|
|
239, 1) 0%, rgba(244, 244, 239, 0) 100%); border-radius: 8px; border: 1px s=
|
|
olid #d7d7d7; width: calc(100% - 1px) min-width: 350px;">
|
|
<audio class=3D"audioElement" preload=3D"none"&g=
|
|
t;
|
|
<source src=3D"https://dts.podtrac.com/redirect.mp3/media3.=
|
|
risky.biz/SRB106.mp3" type=3D"audio/mpeg">
|
|
Your browser does not support the audio element.
|
|
</audio>
|
|
|
|
<!-- Title -->
|
|
<div style=3D"background: #666666; color: #FEFEFE; font-size: 1=
|
|
4px; padding-left: 5%; padding-right: 5%; padding-top: 10px; padding-bottom=
|
|
: 10px; border-top-left-radius: 8px; border-top-right-radius: 8px; white-sp=
|
|
ace: nowrap; overflow: hidden; text-overflow: ellipsis; margin-bottom: 10px=
|
|
;">
|
|
<a style=3D"color:#FEFEFE; text-decoration: none;" tar=
|
|
get=3D"_new" href=3D"https://risky.biz/SRB106/">Srsl=
|
|
y Risky Biz: Why two hats are better than two heads</a>
|
|
</div>
|
|
|
|
<!-- Player Controls and Progress Bar -->
|
|
<div style=3D"display: flex; align-items: center; justify-conte=
|
|
nt: center; gap: 10px; width: 90%; margin: 0 auto;">
|
|
<button type=3D"button" class=3D"playPauseBtn&quo=
|
|
t; style=3D"color: #1e1e1e; background-color: #FAFAFA; font-size: 18px=
|
|
; border: none; padding: 10px; border-radius: 8px; cursor: pointer; height:=
|
|
42px; width: 42px; text-align: center; display: flex; align-items: center;=
|
|
justify-content: center;">&#9654;</button>
|
|
<input type=3D"range" style=3D"flex-grow: 1; -web=
|
|
kit-appearance: none; height: 5px; background: #ddd; border-radius: 8px; ou=
|
|
tline: none; cursor: pointer;" class=3D"progressBar" value=
|
|
=3D"0" min=3D"0" max=3D"100" />
|
|
<span style=3D"font-size: 12px; font-weight: 200;" cla=
|
|
ss=3D"currentTime">0:00</span> /=20
|
|
=20
|
|
=20
|
|
=20
|
|
=20
|
|
<span style=3D"font-size: 12px; font-weight: 200;&qu=
|
|
ot; class=3D"duration">
|
|
19:48
|
|
</span>
|
|
</div>
|
|
|
|
<!-- Subscribe Buttons -->
|
|
<div style=3D"width: 90%; display: flex; justify-content: space=
|
|
-between; align-items: center; padding-left: 5%;">
|
|
<div style=3D"padding-right:20px;" class=3D"subTe=
|
|
xt">
|
|
<strong>Subscribe &nbsp;</strong>
|
|
</div>
|
|
=20
|
|
<div style=3D"display: flex; align-items: center; gap: 6px;=
|
|
margin: 0; flex-grow: 1;" class=3D"subContainer">
|
|
<!-- Apple Podcast Icon -->
|
|
<a href=3D"https://podcasts.apple.com/au/podcast/risky-=
|
|
business-news/id1621305970"
|
|
style=3D"background-position: 48px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon apple-podcast"></a>
|
|
<!-- Overcast Icon -->
|
|
<a href=3D"https://overcast.fm/itunes1621305970"
|
|
style=3D"background-position: 141px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon overcast-podcast"></a>
|
|
|
|
<!-- Pocket Casts Icon -->
|
|
<a href=3D"https://pca.st/yicebxgl"
|
|
style=3D"background-position: 234px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon pocketcast-podcast"></a>
|
|
<!-- Spotify Icon -->
|
|
<a href=3D"https://open.spotify.com/show/0BdExoUZqbGsBY=
|
|
jt6QZl4Q"
|
|
style=3D"background-position: 420px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon spotify-podcast"></a>
|
|
<!-- RSS Icon -->
|
|
<a href=3D"https://risky.biz/feeds/risky-business-news&=
|
|
quot;
|
|
style=3D"background-position: 327px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon rss-podcast"></a>
|
|
</div>
|
|
=20
|
|
|
|
=20
|
|
<a href=3D"https://risky.biz">
|
|
<img src=3D"https://risky.biz/static/img/RB_Site_Logo.svg&=
|
|
quot; alt=3D"Logo"
|
|
style=3D"margin-left: 0; height: 32px; display: block; pa=
|
|
dding-right: 5%;"
|
|
id=3D"logo" class=3D"logo playerLogo">
|
|
</a>
|
|
<script>
|
|
document.addEventListener("DOMContentLoaded", function () {
|
|
const players =3D document.querySelectorAll(".audio-player&quo=
|
|
t;);
|
|
|
|
function resizeElements(player) {
|
|
const logo =3D player.querySelector(".logo");
|
|
const subscribeIcons =3D player.querySelectorAll(".icon&qu=
|
|
ot;);
|
|
const subscribeContainer =3D player.querySelector(".subCon=
|
|
tainer"); // Select subContainer by class
|
|
const subText =3D player.querySelector(".subText"); /=
|
|
/ Select subText by class
|
|
|
|
if (player.offsetWidth <=3D 425) {
|
|
// Hide logo
|
|
if (logo) {
|
|
logo.style.display =3D "none";
|
|
}
|
|
} else if (player.offsetWidth <=3D 500) {
|
|
// Show logo and scale logo and icons to 70%
|
|
if (logo) {
|
|
logo.style.display =3D "block";
|
|
logo.style.transform =3D "scale(0.7)";
|
|
logo.style.transformOrigin =3D "center";
|
|
logo.style.verticalAlign =3D "middle";
|
|
}
|
|
subscribeIcons.forEach(icon =3D> {
|
|
icon.style.transform =3D "scale(0.7)";
|
|
icon.style.transformOrigin =3D "center";
|
|
icon.style.verticalAlign =3D "middle";
|
|
});
|
|
|
|
// Remove padding from subText and set font-size to 12px
|
|
if (subText) {
|
|
subText.style.padding =3D "0";
|
|
subText.style.fontSize =3D "12px";
|
|
}
|
|
|
|
// Set gap in subContainer to 0px
|
|
if (subscribeContainer) {
|
|
subscribeContainer.style.gap =3D "0px";
|
|
}
|
|
} else {
|
|
// Reset scaling, alignment, and visibility
|
|
if (logo) {
|
|
logo.style.display =3D "block";
|
|
logo.style.transform =3D "scale(1)";
|
|
logo.style.verticalAlign =3D "baseline";
|
|
}
|
|
subscribeIcons.forEach(icon =3D> {
|
|
icon.style.transform =3D "scale(1)";
|
|
icon.style.verticalAlign =3D "baseline";
|
|
});
|
|
|
|
// Reset padding and font-size in subText
|
|
if (subText) {
|
|
subText.style.padding =3D "0 20px"; // Defaul=
|
|
t padding
|
|
subText.style.fontSize =3D "inherit"; // Defa=
|
|
ult font-size
|
|
}
|
|
|
|
// Reset gap in subContainer
|
|
if (subscribeContainer) {
|
|
subscribeContainer.style.gap =3D "6px"; // De=
|
|
fault gap
|
|
}
|
|
}
|
|
}
|
|
|
|
function handleResize() {
|
|
players.forEach(player =3D> {
|
|
resizeElements(player);
|
|
});
|
|
}
|
|
|
|
// Run on initial load and resize
|
|
handleResize();
|
|
window.addEventListener("resize", handleResize);
|
|
});
|
|
</script>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
</div>
|
|
</div>
|
|
|
|
|
|
<script>
|
|
// Custom Audio Player
|
|
document.addEventListener("DOMContentLoaded", function () {
|
|
const players =3D document.querySelectorAll(".audio-player");
|
|
|
|
players.forEach(function (player) {
|
|
// Skip if already initialized
|
|
if (player.dataset.initialized =3D=3D=3D "true") return;
|
|
|
|
// Mark player as initialized
|
|
player.dataset.initialized =3D "true";
|
|
=20
|
|
const audio =3D player.querySelector(".audioElement");
|
|
const playPauseBtn =3D player.querySelector(".playPauseBtn&quo=
|
|
t;);
|
|
const progressBar =3D player.querySelector(".progressBar"=
|
|
);
|
|
const currentTimeEl =3D player.querySelector(".currentTime&quo=
|
|
t;);
|
|
const durationEl =3D player.querySelector(".duration");
|
|
|
|
if (!audio || !playPauseBtn || !progressBar || !currentTimeEl || !d=
|
|
urationEl) {
|
|
console.error("One or more player elements not found:"=
|
|
;, { audio, playPauseBtn, progressBar, currentTimeEl, durationEl });
|
|
return;=20
|
|
}
|
|
|
|
playPauseBtn.addEventListener("click", () =3D> {
|
|
if (audio.paused) {
|
|
audio.play();
|
|
playPauseBtn.textContent =3D "⏸";=20
|
|
|
|
// GA4 event for starting audio
|
|
gtag("event", "audio_play", {
|
|
"content_title": "Srsly Risky Biz: Why=
|
|
two hats are better than two heads",
|
|
"content_type": "audio"
|
|
});
|
|
} else {
|
|
audio.pause();
|
|
playPauseBtn.textContent =3D "▶";
|
|
}
|
|
});
|
|
|
|
audio.addEventListener("timeupdate", () =3D> {
|
|
if (audio.duration) {
|
|
progressBar.value =3D (audio.currentTime / audio.duration) =
|
|
* 100;
|
|
currentTimeEl.textContent =3D formatTime(audio.currentTime)=
|
|
;
|
|
}
|
|
});
|
|
|
|
audio.addEventListener("loadedmetadata", () =3D> {
|
|
durationEl.textContent =3D formatTime(audio.duration);
|
|
});
|
|
|
|
progressBar.addEventListener("input", () =3D> {
|
|
if (audio.duration) {
|
|
audio.currentTime =3D (progressBar.value / 100) * audio.dur=
|
|
ation;
|
|
}
|
|
});
|
|
|
|
function formatTime(seconds) {
|
|
const minutes =3D Math.floor(seconds / 60);
|
|
const secs =3D Math.floor(seconds % 60);
|
|
return `${minutes}:${secs < 10 ? "0" : ""=
|
|
;}${secs}`;
|
|
}
|
|
});
|
|
});
|
|
|
|
</script>
|
|
</body>
|
|
</html>
|
|
|
|
|
|
"></iframe>
|
|
</div><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><a href=3D"http=
|
|
s://news.risky.biz/r/76b9d335?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" sty=
|
|
le=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underline;"=
|
|
target=3D"_blank"><span style=3D"white-space: pre-wrap;">https://risky.biz=
|
|
/SRB106/</span></a></p><div class=3D"kg-card kg-embed-card" style=3D"margin=
|
|
: 0 0 1.5em; padding: 0;"><!--[if !mso !vml]-->
|
|
<a class=3D"kg-video-preview" href=3D"https://news.risky.biz/r/=
|
|
2a0818f8?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" aria-label=3D"Play video=
|
|
" style=3D"background-color: #1d1f21; background-image: radial-gradient(cir=
|
|
cle at center, #5b5f66, #1d1f21); display: block; overflow-wrap: anywhere; =
|
|
color: #727272; mso-hide: all; text-decoration: none;" target=3D"_blank">
|
|
<table cellpadding=3D"0" cellspacing=3D"0" border=3D"0" wid=
|
|
th=3D"100%" background=3D"https://i.ytimg.com/vi/RNw5NCYSeG8/hqdefault.jpg"=
|
|
role=3D"presentation" style=3D"border-collapse: separate; mso-table-lspace=
|
|
: 0pt; mso-table-rspace: 0pt; width: 100%; background-size: cover; min-heig=
|
|
ht: 200px; background: url('https://i.ytimg.com/vi/RNw5NCYSeG8/hqdefaul=
|
|
t.jpg') left top / cover; mso-hide: all;">
|
|
<tbody><tr style=3D"mso-hide: all">
|
|
<td width=3D"25%" style=3D"font-family: -apple-syst=
|
|
em, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-=
|
|
serif, 'Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI=
|
|
Symbol'; font-size: 18px; vertical-align: top; color: #15212A; visibil=
|
|
ity: hidden; mso-hide: all;" valign=3D"top">
|
|
<img src=3D"https://img.spacergif.org/v1/150x45=
|
|
0/0a/spacer.png" alt width=3D"100%" border=3D"0" style=3D"border: none; -ms=
|
|
-interpolation-mode: bicubic; max-width: 100%; display: block; height: auto=
|
|
; opacity: 0; visibility: hidden; mso-hide: all;" height=3D"auto">
|
|
</td>
|
|
<td width=3D"50%" align=3D"center" valign=3D"middle=
|
|
" style=3D"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI=
|
|
9;, Roboto, Helvetica, Arial, sans-serif, 'Apple Color Emoji', '=
|
|
;Segoe UI Emoji', 'Segoe UI Symbol'; font-size: 18px; color: #1=
|
|
5212A; vertical-align: middle; mso-hide: all;">
|
|
<div class=3D"kg-video-play-button" style=3D"he=
|
|
ight: 2em; width: 3em; margin: 0 auto; border-radius: 10px; padding: 1em 0.=
|
|
8em 0.6em 1em; font-size: 1em; background-color: rgba(0,0,0,0.85); mso-hide=
|
|
: all;"><div style=3D"display: block; width: 0; height: 0; margin: 0 auto; =
|
|
line-height: 0px; border-color: transparent transparent transparent white; =
|
|
border-style: solid; border-width: 0.8em 0 0.8em 1.5em; mso-hide: all;"></d=
|
|
iv></div>
|
|
</td>
|
|
<td width=3D"25%" style=3D"font-family: -apple-syst=
|
|
em, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-=
|
|
serif, 'Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI=
|
|
Symbol'; font-size: 18px; vertical-align: top; color: #15212A; mso-hid=
|
|
e: all;" valign=3D"top"> </td>
|
|
</tr>
|
|
</tbody></table>
|
|
</a>
|
|
<!--[endif]-->
|
|
|
|
<!--[if vml]>
|
|
<v:group xmlns:v=3D"urn:schemas-microsoft-com:vml" xmlns:w=3D"u=
|
|
rn:schemas-microsoft-com:office:word" coordsize=3D"600,450" coordorigin=3D"=
|
|
0,0" href=3D"https://www.youtube.com/watch?v=3DRNw5NCYSeG8" style=3D"width:=
|
|
600px;height:450px;">
|
|
<v:rect fill=3D"t" stroked=3D"f" style=3D"position:absolute=
|
|
;width:600;height:450;"><v:fill src=3D"https://i.ytimg.com/vi/RNw5NCYSeG8/h=
|
|
qdefault.jpg" type=3D"frame"/></v:rect>
|
|
<v:oval fill=3D"t" strokecolor=3D"white" strokeweight=3D"4p=
|
|
x" style=3D"position:absolute;left:261;top:186;width:78;height:78"><v:fill =
|
|
color=3D"black" opacity=3D"30%" /></v:oval>
|
|
<v:shape coordsize=3D"24,32" path=3D"m,l,32,24,16,xe" fillc=
|
|
olor=3D"white" stroked=3D"f" style=3D"position:absolute;left:289;top:208;wi=
|
|
dth:30;height:34;" />
|
|
</v:group>
|
|
<![endif]--></div><p style=3D"margin: 0 0 1.5em 0; line-height:=
|
|
1.6em;"><em>In this edition of Between Two Nerds, Tom Uren and The Grugq t=
|
|
alk about the evolution of Russian cyber operations during its invasion of =
|
|
Ukraine.</em></p><div class=3D"kg-card kg-embed-card" style=3D"margin: 0 0 =
|
|
1.5em; padding: 0;">
|
|
<iframe frameborder=3D"0" style=3D"width: 100%; height: 156px;" srcdoc=
|
|
=3D"
|
|
=20
|
|
<!DOCTYPE html>
|
|
<html>
|
|
<head>
|
|
<title>Risky Business Player</title>
|
|
</head>
|
|
<body>
|
|
|
|
<!-- Include the Google Font Inter -->
|
|
<style>
|
|
@import url("https://fonts.googleapis.com/css2?family=3DInter:wght@400=
|
|
;700&display=3Dswap");
|
|
|
|
body {
|
|
margin: 0px;
|
|
}
|
|
|
|
=2Eaudio-player {
|
|
font-family: "Inter", sans-serif;
|
|
}
|
|
|
|
=2Eicon {
|
|
background-image: url("https://risky.biz/static/img/icons/subscrib=
|
|
e-icons.svg");
|
|
display: block;
|
|
width: 33px;
|
|
height: 33px;
|
|
background-size: 528px 111px;
|
|
}
|
|
|
|
}
|
|
</style>
|
|
|
|
<!-- Audio player -->
|
|
<div class=3D"audio-player" style=3D"display: flex; flex-=
|
|
direction: column; gap: 5px; padding-top: 0px; padding-bottom: 20px; backgr=
|
|
ound: rgb(244, 244, 239); background: linear-gradient(0deg, rgba(244, 244, =
|
|
239, 1) 0%, rgba(244, 244, 239, 0) 100%); border-radius: 8px; border: 1px s=
|
|
olid #d7d7d7; width: calc(100% - 1px) min-width: 350px;">
|
|
<audio class=3D"audioElement" preload=3D"none"&g=
|
|
t;
|
|
<source src=3D"https://dts.podtrac.com/redirect.mp3/media3.=
|
|
risky.biz/BTN105.mp3" type=3D"audio/mpeg">
|
|
Your browser does not support the audio element.
|
|
</audio>
|
|
|
|
<!-- Title -->
|
|
<div style=3D"background: #666666; color: #FEFEFE; font-size: 1=
|
|
4px; padding-left: 5%; padding-right: 5%; padding-top: 10px; padding-bottom=
|
|
: 10px; border-top-left-radius: 8px; border-top-right-radius: 8px; white-sp=
|
|
ace: nowrap; overflow: hidden; text-overflow: ellipsis; margin-bottom: 10px=
|
|
;">
|
|
<a style=3D"color:#FEFEFE; text-decoration: none;" tar=
|
|
get=3D"_new" href=3D"https://risky.biz/BTN105/">Betw=
|
|
een Two Nerds: The evolution of Russia's cyber operations in Ukraine<=
|
|
;/a>
|
|
</div>
|
|
|
|
<!-- Player Controls and Progress Bar -->
|
|
<div style=3D"display: flex; align-items: center; justify-conte=
|
|
nt: center; gap: 10px; width: 90%; margin: 0 auto;">
|
|
<button type=3D"button" class=3D"playPauseBtn&quo=
|
|
t; style=3D"color: #1e1e1e; background-color: #FAFAFA; font-size: 18px=
|
|
; border: none; padding: 10px; border-radius: 8px; cursor: pointer; height:=
|
|
42px; width: 42px; text-align: center; display: flex; align-items: center;=
|
|
justify-content: center;">&#9654;</button>
|
|
<input type=3D"range" style=3D"flex-grow: 1; -web=
|
|
kit-appearance: none; height: 5px; background: #ddd; border-radius: 8px; ou=
|
|
tline: none; cursor: pointer;" class=3D"progressBar" value=
|
|
=3D"0" min=3D"0" max=3D"100" />
|
|
<span style=3D"font-size: 12px; font-weight: 200;" cla=
|
|
ss=3D"currentTime">0:00</span> /=20
|
|
=20
|
|
=20
|
|
=20
|
|
=20
|
|
<span style=3D"font-size: 12px; font-weight: 200;&qu=
|
|
ot; class=3D"duration">
|
|
29:28
|
|
</span>
|
|
</div>
|
|
|
|
<!-- Subscribe Buttons -->
|
|
<div style=3D"width: 90%; display: flex; justify-content: space=
|
|
-between; align-items: center; padding-left: 5%;">
|
|
<div style=3D"padding-right:20px;" class=3D"subTe=
|
|
xt">
|
|
<strong>Subscribe &nbsp;</strong>
|
|
</div>
|
|
=20
|
|
<div style=3D"display: flex; align-items: center; gap: 6px;=
|
|
margin: 0; flex-grow: 1;" class=3D"subContainer">
|
|
<!-- Apple Podcast Icon -->
|
|
<a href=3D"https://podcasts.apple.com/au/podcast/risky-=
|
|
business-news/id1621305970"
|
|
style=3D"background-position: 48px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon apple-podcast"></a>
|
|
<!-- Overcast Icon -->
|
|
<a href=3D"https://overcast.fm/itunes1621305970"
|
|
style=3D"background-position: 141px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon overcast-podcast"></a>
|
|
|
|
<!-- Pocket Casts Icon -->
|
|
<a href=3D"https://pca.st/yicebxgl"
|
|
style=3D"background-position: 234px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon pocketcast-podcast"></a>
|
|
<!-- Spotify Icon -->
|
|
<a href=3D"https://open.spotify.com/show/0BdExoUZqbGsBY=
|
|
jt6QZl4Q"
|
|
style=3D"background-position: 420px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon spotify-podcast"></a>
|
|
<!-- RSS Icon -->
|
|
<a href=3D"https://risky.biz/feeds/risky-business-news&=
|
|
quot;
|
|
style=3D"background-position: 327px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon rss-podcast"></a>
|
|
</div>
|
|
=20
|
|
|
|
=20
|
|
<a href=3D"https://risky.biz">
|
|
<img src=3D"https://risky.biz/static/img/RB_Site_Logo.svg&=
|
|
quot; alt=3D"Logo"
|
|
style=3D"margin-left: 0; height: 32px; display: block; pa=
|
|
dding-right: 5%;"
|
|
id=3D"logo" class=3D"logo playerLogo">
|
|
</a>
|
|
<script>
|
|
document.addEventListener("DOMContentLoaded", function () {
|
|
const players =3D document.querySelectorAll(".audio-player&quo=
|
|
t;);
|
|
|
|
function resizeElements(player) {
|
|
const logo =3D player.querySelector(".logo");
|
|
const subscribeIcons =3D player.querySelectorAll(".icon&qu=
|
|
ot;);
|
|
const subscribeContainer =3D player.querySelector(".subCon=
|
|
tainer"); // Select subContainer by class
|
|
const subText =3D player.querySelector(".subText"); /=
|
|
/ Select subText by class
|
|
|
|
if (player.offsetWidth <=3D 425) {
|
|
// Hide logo
|
|
if (logo) {
|
|
logo.style.display =3D "none";
|
|
}
|
|
} else if (player.offsetWidth <=3D 500) {
|
|
// Show logo and scale logo and icons to 70%
|
|
if (logo) {
|
|
logo.style.display =3D "block";
|
|
logo.style.transform =3D "scale(0.7)";
|
|
logo.style.transformOrigin =3D "center";
|
|
logo.style.verticalAlign =3D "middle";
|
|
}
|
|
subscribeIcons.forEach(icon =3D> {
|
|
icon.style.transform =3D "scale(0.7)";
|
|
icon.style.transformOrigin =3D "center";
|
|
icon.style.verticalAlign =3D "middle";
|
|
});
|
|
|
|
// Remove padding from subText and set font-size to 12px
|
|
if (subText) {
|
|
subText.style.padding =3D "0";
|
|
subText.style.fontSize =3D "12px";
|
|
}
|
|
|
|
// Set gap in subContainer to 0px
|
|
if (subscribeContainer) {
|
|
subscribeContainer.style.gap =3D "0px";
|
|
}
|
|
} else {
|
|
// Reset scaling, alignment, and visibility
|
|
if (logo) {
|
|
logo.style.display =3D "block";
|
|
logo.style.transform =3D "scale(1)";
|
|
logo.style.verticalAlign =3D "baseline";
|
|
}
|
|
subscribeIcons.forEach(icon =3D> {
|
|
icon.style.transform =3D "scale(1)";
|
|
icon.style.verticalAlign =3D "baseline";
|
|
});
|
|
|
|
// Reset padding and font-size in subText
|
|
if (subText) {
|
|
subText.style.padding =3D "0 20px"; // Defaul=
|
|
t padding
|
|
subText.style.fontSize =3D "inherit"; // Defa=
|
|
ult font-size
|
|
}
|
|
|
|
// Reset gap in subContainer
|
|
if (subscribeContainer) {
|
|
subscribeContainer.style.gap =3D "6px"; // De=
|
|
fault gap
|
|
}
|
|
}
|
|
}
|
|
|
|
function handleResize() {
|
|
players.forEach(player =3D> {
|
|
resizeElements(player);
|
|
});
|
|
}
|
|
|
|
// Run on initial load and resize
|
|
handleResize();
|
|
window.addEventListener("resize", handleResize);
|
|
});
|
|
</script>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
</div>
|
|
</div>
|
|
|
|
|
|
<script>
|
|
// Custom Audio Player
|
|
document.addEventListener("DOMContentLoaded", function () {
|
|
const players =3D document.querySelectorAll(".audio-player");
|
|
|
|
players.forEach(function (player) {
|
|
// Skip if already initialized
|
|
if (player.dataset.initialized =3D=3D=3D "true") return;
|
|
|
|
// Mark player as initialized
|
|
player.dataset.initialized =3D "true";
|
|
=20
|
|
const audio =3D player.querySelector(".audioElement");
|
|
const playPauseBtn =3D player.querySelector(".playPauseBtn&quo=
|
|
t;);
|
|
const progressBar =3D player.querySelector(".progressBar"=
|
|
);
|
|
const currentTimeEl =3D player.querySelector(".currentTime&quo=
|
|
t;);
|
|
const durationEl =3D player.querySelector(".duration");
|
|
|
|
if (!audio || !playPauseBtn || !progressBar || !currentTimeEl || !d=
|
|
urationEl) {
|
|
console.error("One or more player elements not found:"=
|
|
;, { audio, playPauseBtn, progressBar, currentTimeEl, durationEl });
|
|
return;=20
|
|
}
|
|
|
|
playPauseBtn.addEventListener("click", () =3D> {
|
|
if (audio.paused) {
|
|
audio.play();
|
|
playPauseBtn.textContent =3D "⏸";=20
|
|
|
|
// GA4 event for starting audio
|
|
gtag("event", "audio_play", {
|
|
"content_title": "Between Two Nerds: T=
|
|
he evolution of Russia's cyber operations in Ukraine",
|
|
"content_type": "audio"
|
|
});
|
|
} else {
|
|
audio.pause();
|
|
playPauseBtn.textContent =3D "▶";
|
|
}
|
|
});
|
|
|
|
audio.addEventListener("timeupdate", () =3D> {
|
|
if (audio.duration) {
|
|
progressBar.value =3D (audio.currentTime / audio.duration) =
|
|
* 100;
|
|
currentTimeEl.textContent =3D formatTime(audio.currentTime)=
|
|
;
|
|
}
|
|
});
|
|
|
|
audio.addEventListener("loadedmetadata", () =3D> {
|
|
durationEl.textContent =3D formatTime(audio.duration);
|
|
});
|
|
|
|
progressBar.addEventListener("input", () =3D> {
|
|
if (audio.duration) {
|
|
audio.currentTime =3D (progressBar.value / 100) * audio.dur=
|
|
ation;
|
|
}
|
|
});
|
|
|
|
function formatTime(seconds) {
|
|
const minutes =3D Math.floor(seconds / 60);
|
|
const secs =3D Math.floor(seconds % 60);
|
|
return `${minutes}:${secs < 10 ? "0" : ""=
|
|
;}${secs}`;
|
|
}
|
|
});
|
|
});
|
|
|
|
</script>
|
|
</body>
|
|
</html>
|
|
|
|
|
|
"></iframe>
|
|
</div><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><a href=3D"http=
|
|
s://news.risky.biz/r/e6b529cf?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" sty=
|
|
le=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underline;"=
|
|
target=3D"_blank"><span style=3D"white-space: pre-wrap;">https://risky.biz=
|
|
/BTN105/</span></a></p><div class=3D"kg-card kg-embed-card" style=3D"margin=
|
|
: 0 0 1.5em; padding: 0;"><!--[if !mso !vml]-->
|
|
<a class=3D"kg-video-preview" href=3D"https://news.risky.biz/r/=
|
|
b647ab86?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" aria-label=3D"Play video=
|
|
" style=3D"background-color: #1d1f21; background-image: radial-gradient(cir=
|
|
cle at center, #5b5f66, #1d1f21); display: block; overflow-wrap: anywhere; =
|
|
color: #727272; mso-hide: all; text-decoration: none;" target=3D"_blank">
|
|
<table cellpadding=3D"0" cellspacing=3D"0" border=3D"0" wid=
|
|
th=3D"100%" background=3D"https://i.ytimg.com/vi/e49QGvfSWoU/hqdefault.jpg"=
|
|
role=3D"presentation" style=3D"border-collapse: separate; mso-table-lspace=
|
|
: 0pt; mso-table-rspace: 0pt; width: 100%; background-size: cover; min-heig=
|
|
ht: 200px; background: url('https://i.ytimg.com/vi/e49QGvfSWoU/hqdefaul=
|
|
t.jpg') left top / cover; mso-hide: all;">
|
|
<tbody><tr style=3D"mso-hide: all">
|
|
<td width=3D"25%" style=3D"font-family: -apple-syst=
|
|
em, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-=
|
|
serif, 'Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI=
|
|
Symbol'; font-size: 18px; vertical-align: top; color: #15212A; visibil=
|
|
ity: hidden; mso-hide: all;" valign=3D"top">
|
|
<img src=3D"https://img.spacergif.org/v1/150x45=
|
|
0/0a/spacer.png" alt width=3D"100%" border=3D"0" style=3D"border: none; -ms=
|
|
-interpolation-mode: bicubic; max-width: 100%; display: block; height: auto=
|
|
; opacity: 0; visibility: hidden; mso-hide: all;" height=3D"auto">
|
|
</td>
|
|
<td width=3D"50%" align=3D"center" valign=3D"middle=
|
|
" style=3D"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI=
|
|
9;, Roboto, Helvetica, Arial, sans-serif, 'Apple Color Emoji', '=
|
|
;Segoe UI Emoji', 'Segoe UI Symbol'; font-size: 18px; color: #1=
|
|
5212A; vertical-align: middle; mso-hide: all;">
|
|
<div class=3D"kg-video-play-button" style=3D"he=
|
|
ight: 2em; width: 3em; margin: 0 auto; border-radius: 10px; padding: 1em 0.=
|
|
8em 0.6em 1em; font-size: 1em; background-color: rgba(0,0,0,0.85); mso-hide=
|
|
: all;"><div style=3D"display: block; width: 0; height: 0; margin: 0 auto; =
|
|
line-height: 0px; border-color: transparent transparent transparent white; =
|
|
border-style: solid; border-width: 0.8em 0 0.8em 1.5em; mso-hide: all;"></d=
|
|
iv></div>
|
|
</td>
|
|
<td width=3D"25%" style=3D"font-family: -apple-syst=
|
|
em, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-=
|
|
serif, 'Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI=
|
|
Symbol'; font-size: 18px; vertical-align: top; color: #15212A; mso-hid=
|
|
e: all;" valign=3D"top"> </td>
|
|
</tr>
|
|
</tbody></table>
|
|
</a>
|
|
<!--[endif]-->
|
|
|
|
<!--[if vml]>
|
|
<v:group xmlns:v=3D"urn:schemas-microsoft-com:vml" xmlns:w=3D"u=
|
|
rn:schemas-microsoft-com:office:word" coordsize=3D"600,450" coordorigin=3D"=
|
|
0,0" href=3D"https://www.youtube.com/watch?v=3De49QGvfSWoU" style=3D"width:=
|
|
600px;height:450px;">
|
|
<v:rect fill=3D"t" stroked=3D"f" style=3D"position:absolute=
|
|
;width:600;height:450;"><v:fill src=3D"https://i.ytimg.com/vi/e49QGvfSWoU/h=
|
|
qdefault.jpg" type=3D"frame"/></v:rect>
|
|
<v:oval fill=3D"t" strokecolor=3D"white" strokeweight=3D"4p=
|
|
x" style=3D"position:absolute;left:261;top:186;width:78;height:78"><v:fill =
|
|
color=3D"black" opacity=3D"30%" /></v:oval>
|
|
<v:shape coordsize=3D"24,32" path=3D"m,l,32,24,16,xe" fillc=
|
|
olor=3D"white" stroked=3D"f" style=3D"position:absolute;left:289;top:208;wi=
|
|
dth:30;height:34;" />
|
|
</v:group>
|
|
<![endif]--></div>
|
|
<!-- POST CONTENT END -->
|
|
|
|
</td>
|
|
</tr>
|
|
</table>
|
|
</td>
|
|
</tr>
|
|
|
|
<!-- END MAIN CONTENT AREA -->
|
|
|
|
|
|
|
|
|
|
<tr>
|
|
<td class=3D"wrapper" align=3D"center" styl=
|
|
e=3D"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Ro=
|
|
boto, Helvetica, Arial, sans-serif, 'Apple Color Emoji', 'Segoe=
|
|
UI Emoji', 'Segoe UI Symbol'; font-size: 18px; vertical-align:=
|
|
top; color: #15212A; box-sizing: border-box;" valign=3D"top">
|
|
<table role=3D"presentation" border=3D"=
|
|
0" cellpadding=3D"0" cellspacing=3D"0" width=3D"100%" style=3D"border-colla=
|
|
pse: separate; mso-table-lspace: 0pt; mso-table-rspace: 0pt; width: 100%; p=
|
|
adding-top: 40px; padding-bottom: 30px;">
|
|
<tr>
|
|
<td class=3D"footer" style=3D"f=
|
|
ont-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, =
|
|
Helvetica, Arial, sans-serif, 'Apple Color Emoji', 'Segoe UI Em=
|
|
oji', 'Segoe UI Symbol'; vertical-align: top; color: #738a94; m=
|
|
argin-top: 20px; text-align: center; padding-bottom: 10px; padding-top: 10p=
|
|
x; padding-left: 30px; padding-right: 30px; line-height: 1.5em; font-size: =
|
|
13px;" valign=3D"top" align=3D"center">Risky.Biz © 2025 – <a hr=
|
|
ef=3D"https://news.risky.biz/unsubscribe/?uuid=3D1a80b145-9ce5-407e-b496-c5=
|
|
7050db16ff&key=3Db42b9394aa843f18196f4ef71cbb26d29e72298989fd79444a9147b6e3=
|
|
2ee87b&newsletter=3D102a29ad-4bfc-4105-8645-703ba0268482" style=3D"overflow=
|
|
-wrap: anywhere; color: #738a94; text-decoration: underline; font-size: 13p=
|
|
x;" target=3D"_blank">Unsubscribe</a></td>
|
|
</tr>
|
|
|
|
</table>
|
|
</td>
|
|
</tr>
|
|
|
|
</table>
|
|
<!-- END CENTERED WHITE CONTAINER -->
|
|
</div>
|
|
</td>
|
|
<td style=3D"font-family: -apple-system, BlinkMacSystemFont=
|
|
, 'Segoe UI', Roboto, Helvetica, Arial, sans-serif, 'Apple Colo=
|
|
r Emoji', 'Segoe UI Emoji', 'Segoe UI Symbol'; font-siz=
|
|
e: 18px; vertical-align: top; color: #15212A;" valign=3D"top"> </td>
|
|
</tr>
|
|
|
|
<!--[if mso]>
|
|
</table>
|
|
</center>
|
|
</td>
|
|
</tr>
|
|
<![endif]-->
|
|
</table>
|
|
</body>
|
|
</html>
|
|
|
|
--60ee574c50bc56e8b98e0e7037c196c1bf7ffb630b4184fc10d7ff77e48e--
|
.