|
X-He-Spam-Score: -1.9
|
|
Return-Path: <bounce+b82545.7bdc18-lapor=turnbackhoax.id@m.ghost.io>
|
|
Delivered-To: dropbox@plan.io
|
|
Received: from m.launch.gmbh ([127.0.0.1])
|
|
by m.launch.gmbh with LMTP
|
|
id yNtWKAG9mWd7ZjcAJzdhvw
|
|
(envelope-from <bounce+b82545.7bdc18-lapor=turnbackhoax.id@m.ghost.io>)
|
|
for <dropbox@plan.io>; Wed, 29 Jan 2025 06:30:41 +0100
|
|
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on m.launch.gmbh
|
|
X-Spam-Level:
|
|
X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00,DKIM_SIGNED,
|
|
DKIM_VALID,DMARC_PASS,HTML_IMAGE_RATIO_06,HTML_MESSAGE,LOTS_OF_MONEY,
|
|
RCVD_IN_DNSWL_NONE,RCVD_IN_MSPIKE_H2,SPF_FAIL,SPF_FAIL_IGNORE,
|
|
SPF_HELO_NONE,T_KAM_HTML_FONT_INVALID,T_SCC_BODY_TEXT_LINE,URIBL_SBL_A
|
|
autolearn=ham autolearn_force=no version=3.4.6
|
|
X-Spam-Report:
|
|
* -0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at
|
|
* https://www.dnswl.org/, no trust
|
|
* [64.90.62.164 listed in list.dnswl.org]
|
|
* -1.9 BAYES_00 BODY: Bayes spam probability is 0 to 1%
|
|
* [score: 0.0000]
|
|
* 0.1 URIBL_SBL_A Contains URL's A record listed in the Spamhaus SBL
|
|
* blocklist
|
|
* [URIs: email.m.ghost.io]
|
|
* 0.0 RCVD_IN_MSPIKE_H2 RBL: Average reputation (+2)
|
|
* [64.90.62.164 listed in wl.mailspike.net]
|
|
* -0.1 DMARC_PASS DMARC check passed
|
|
* 5.0 SPF_FAIL SPF check failed
|
|
* 0.0 SPF_HELO_NONE SPF: HELO does not publish an SPF Record
|
|
* 0.0 HTML_IMAGE_RATIO_06 BODY: HTML has a low ratio of text to image
|
|
* area
|
|
* 0.0 HTML_MESSAGE BODY: HTML included in message
|
|
* 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily
|
|
* valid
|
|
* -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature
|
|
* -0.0 T_SCC_BODY_TEXT_LINE No description available.
|
|
* 0.0 LOTS_OF_MONEY Huge... sums of money
|
|
* 0.0 T_KAM_HTML_FONT_INVALID Test for Invalidly Named or Formatted
|
|
* Colors in HTML
|
|
* -5.0 SPF_FAIL_IGNORE Planio Inbox does not consider SPF FAILS on
|
|
* redirects
|
|
X-Spam-Score: -1.9
|
|
Authentication-Results: m.launch.gmbh; dmarc=pass (p=none dis=none) header.from=ghost.io
|
|
Authentication-Results: m.launch.gmbh; spf=fail smtp.mailfrom=m.ghost.io
|
|
Authentication-Results: m.launch.gmbh;
|
|
dkim=pass (2048-bit key; unprotected) header.d=m.ghost.io header.i=@m.ghost.io header.a=rsa-sha256 header.s=mailgun header.b=Dh5WjxEO;
|
|
dkim-atps=neutral
|
|
Envelope-to: inbox+rlxc+36be+hoax-clearing-center@plan.io
|
|
Received: from pdx1-sub0-mail-mx205.dreamhost.com (fltr-in2.mail.dreamhost.com [64.90.62.164])
|
|
(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
|
|
key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256)
|
|
(No client certificate requested)
|
|
by m.launch.gmbh (Postfix) with ESMTPS id D5ADB1689F4
|
|
for <inbox+rlxc+36be+hoax-clearing-center@plan.io>; Wed, 29 Jan 2025 06:30:40 +0100 (CET)
|
|
Received: from postfix-inbound-v2-11.inbound.mailchannels.net (inbound-egress-7.mailchannels.net [23.83.220.5])
|
|
(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
|
|
key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256)
|
|
(No client certificate requested)
|
|
by pdx1-sub0-mail-mx205.dreamhost.com (Postfix) with ESMTPS id 4YjW2j3VTpz3pCd
|
|
for <lapor@turnbackhoax.id>; Tue, 28 Jan 2025 21:30:37 -0800 (PST)
|
|
ARC-Seal: i=1; s=arc-2022; d=mailchannels.net; t=1738128636; a=rsa-sha256;
|
|
cv=none;
|
|
b=HmudO5njXB5ewaiYKyADHMdlWTFgRx63YdLhKlN4V+ISdF+cQXMbFcsog3XsPHADWzdwR8
|
|
JTJ17uTF/bJ021kTcHHe/Dx71+UlrL1lN3hdZ21/LXZKCYr9pwpcBQvHK9jGLDmTJrLJ0q
|
|
2YGfAprCQyA8BssUM5Scduc84jYnXy/rFBouuqexnqfAGSukpwmrmuGzqFiOLNUQWbairf
|
|
t0XStK8uIlvfjb7GU8alg4ztC4cwcaNZJF0TdC6N2f+xGLnDQ1HCVKNVZMwe8hInnvjUoc
|
|
/oaJOrr2PqXJSlHxpmyAK+IGfPLYLix6NYLClrcW1ofR9YByQi+NncyEF0cvSg==
|
|
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed;
|
|
d=mailchannels.net;
|
|
s=arc-2022; t=1738128636;
|
|
h=from:from:sender:sender:reply-to:subject:subject:date:date:
|
|
message-id:message-id:to:to:cc:mime-version:mime-version:
|
|
content-type:content-type:list-unsubscribe:list-unsubscribe-post:
|
|
dkim-signature; bh=CPEWUmOySSeiB3e7dju5eb0XZUnFSrrUAmHE9PtWYO0=;
|
|
b=B5pkloRyslHCTEjU6y2OjhUw4Dl5UUpX2Uyj9Jzm+Jyko4aVuZF0kvnc+TPVTuqNo/TqF2
|
|
NqUB121ujqD/jItR/AxWs+RSguwticE72N+BS6j3OpcYZpC8jCrW9wlw8nz5SdAnP027cv
|
|
AAgu7L/MhswouYOfxEGotgMkzd1qqNV0SgNcCpGHmyEA8L0OIL7TtQnqex9uUTx6iDtti7
|
|
qkWm7YCp6tBup5ujAWqdzjJiybdYdreIJSQ8Y3J1/JC8h1AY4ij1SHJIj9u+k5NEqs3t3W
|
|
A+2LOAcNRzUVXde+HoDQnpK09thTh2Wm1sA/2ZVj17yEMnquCV0F+1as80cscg==
|
|
ARC-Authentication-Results: i=1;
|
|
inbound-rspamd-867ff87c44-mkwtl;
|
|
none
|
|
X-Message-ID: cOxWq0wCSQ62kioTmOqSk9pM
|
|
Received: from relay9.ghost.io (relay9.ghost.io [143.55.233.111])
|
|
(using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256)
|
|
by 100.116.68.241 (trex/6.10.3);
|
|
Wed, 29 Jan 2025 05:30:36 +0000
|
|
Authentication-Results: inbound.mailchannels.net;
|
|
spf=pass
|
|
smtp.mailfrom=bounce+b82545.7bdc18-lapor=turnbackhoax.id@m.ghost.io;
|
|
dkim=pass header.d=m.ghost.io;
|
|
dmarc=pass (policy=none; pct=100; status=pass);
|
|
arc=none
|
|
Received-SPF: pass (dmarc-service-69cd7677ff-rx9dc: domain of m.ghost.io
|
|
designates 143.55.233.111 as permitted sender) client-ip=143.55.233.111;
|
|
envelope-from=bounce+b82545.7bdc18-lapor=turnbackhoax.id@m.ghost.io;
|
|
helo=relay9.ghost.io;
|
|
DKIM-Signature: a=rsa-sha256; v=1; c=relaxed/relaxed; d=m.ghost.io; q=dns/txt; s=mailgun; t=1738128635; x=1738135835;
|
|
h=Message-Id: List-Unsubscribe-Post: List-Unsubscribe: To: To: From: From: Subject: Subject: Content-Type: Mime-Version: Date: Sender: Sender;
|
|
bh=CPEWUmOySSeiB3e7dju5eb0XZUnFSrrUAmHE9PtWYO0=;
|
|
b=Dh5WjxEOh7oARkooujhrf9cPqvVZGISlHO4gEfRxYPzU8q3dv7OE6CvqNH7GRghHUaM9eZSAlNKZekvPBumjUOUS4pXxySFw08huTYXTT/13tHwc6CSUDI9lFGtbMcvkk/xcI4giubh1OlyWg9vFNHdfSrDpcYQbvi0TdB6DK5FetYAoF523EseAtbpOfy1HWBMuzEr7Ot2F+xS9f0aG4I1owE4u7orCcrTwlJkE17IJemMYGQm9f8Gr+Yn1ZiGixIbKDTK7dbIdxw8yeHY7VzayO/qgY7AuYFNyQH+6aX+BouErNSgjIKmrgBVV80xW+/RuaAu56WLaCNZCUO8vew==
|
|
X-Mailgun-Sending-Ip: 143.55.233.111
|
|
X-Mailgun-Sending-Ip-Pool-Name: Bulk - Standard
|
|
X-Mailgun-Sending-Ip-Pool: 6155d7ba935d084321777411
|
|
X-Mailgun-Sid: WyIzODUwYiIsImxhcG9yQHR1cm5iYWNraG9heC5pZCIsIjdiZGMxOCJd
|
|
Received: by 46a200c12593 with HTTP id 6799bcfb306985a0430a991b; Wed, 29 Jan 2025
|
|
05:30:34 GMT
|
|
X-Mailgun-Batch-Id: 6799bcfaad2997d35038ba65
|
|
Sender: risky-biz=ghost.io@m.ghost.io
|
|
Date: Wed, 29 Jan 2025 05:30:34 +0000
|
|
Mime-Version: 1.0
|
|
Content-Type: multipart/alternative;
|
|
boundary="e0afef55d7e1e7ab802be292cd3c5cfee2e057b815c9b086e36a6c9f72d1"
|
|
Subject: Risky Bulletin: EU sanctions three GRU hackers
|
|
From: Risky.Biz <risky-biz@ghost.io>
|
|
To: lapor@turnbackhoax.id
|
|
X-Mailgun-Tag: bulk-email
|
|
X-Mailgun-Tag: ghost-email
|
|
X-Mailgun-Tag: blog-1041185
|
|
X-Mailgun-Track-Opens: true
|
|
X-Mailgun-Deliver-By: Wed, 29 Jan 2025 05:30:31 +0000
|
|
List-Unsubscribe: <https://news.risky.biz/unsubscribe/?uuid=1a80b145-9ce5-407e-b496-c57050db16ff&key=b42b9394aa843f18196f4ef71cbb26d29e72298989fd79444a9147b6e32ee87b&newsletter=102a29ad-4bfc-4105-8645-703ba0268482>,
|
|
<mailto:u+mq6toytemmytqjtfnvqws3bnnfsd2nrxhe4wey3gguydcnzugyzdambqgfswmn3gmvscm2b5mvqtamrtmi3giztfgu2diyzuga2tmmbxhaydczldg43gcmjzgy2cm2j5giydenjqgezdsmbvgmydgnbomntgczddmezgcmtfmu4dcy3cgastimdnfztwq33toqxgs3zgoi6wyylqn5zcknbqor2xe3tcmfrww2dpmf4c42leez2d2ytvnrvs2zlnmfuwyjtuhvtwq33toqwwk3lbnfwcm5b5mjwg6zzngeydimjrha2sm5r5gi@m.ghost.io>
|
|
List-Unsubscribe-Post: List-Unsubscribe=One-Click
|
|
X-Mailgun-Variables: {"email-id": "6799bcf50174620001ef7fed"}
|
|
Message-Id: <20250129053034.cfadca2a2ee81cb0@m.ghost.io>
|
|
|
|
--e0afef55d7e1e7ab802be292cd3c5cfee2e057b815c9b086e36a6c9f72d1
|
|
Content-Type: text/plain; charset="utf-8"
|
|
Content-Transfer-Encoding: quoted-printable
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
=C2=A0
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
https://news.risky.biz/r/d84c11e4?m=3D1a80b145-9ce5-407e-b496-c57050db16ff
|
|
|
|
|
|
Risky Business News [https://news.risky.biz/r/bb76e5b8?m=3D1a80b145-9ce5-40=
|
|
7e-b496-c57050db16ff]
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Risky Bulletin: EU sanctions three GRU hackers [https://news.risky.biz/r/8f=
|
|
5a8e6e?m=3D1a80b145-9ce5-407e-b496-c57050db16ff]
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
By Catalin Cimpanu =E2=80=A2 29 Jan 2025
|
|
|
|
|
|
View in browser [https://news.risky.biz/r/31d13ecd?m=3D1a80b145-9ce5-407e-b=
|
|
496-c57050db16ff]
|
|
|
|
|
|
|
|
|
|
View in browser [https://news.risky.biz/r/dd98dc86?m=3D1a80b145-9ce5-407e-b=
|
|
496-c57050db16ff]
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
This newsletter is brought to you by asset inventory and network visibility=
|
|
company=C2=A0runZero [https://news.risky.biz/r/d72f6556?m=3D1a80b145-9ce5-=
|
|
407e-b496-c57050db16ff]. You can subscribe to an audio version of this news=
|
|
letter as a podcast by searching for "Risky Business" in your podcatcher or=
|
|
subscribing via this RSS feed [https://news.risky.biz/r/0781873b?m=3D1a80b=
|
|
145-9ce5-407e-b496-c57050db16ff].
|
|
|
|
|
|
|
|
https://risky.biz/RBNEWS382/ [https://news.risky.biz/r/6787a62a?m=3D1a80b14=
|
|
5-9ce5-407e-b496-c57050db16ff]
|
|
|
|
The European Union has sanctioned three Russian military hackers for their =
|
|
role in cyberattacks against Estonian government agencies in 2020.
|
|
|
|
Sanctions [https://news.risky.biz/r/5ec63192?m=3D1a80b145-9ce5-407e-b496-c5=
|
|
7050db16ff] were levied against Yuriy Denisov, Nikolay Korchagin, and Vital=
|
|
y Shevchenko.
|
|
|
|
The three are officers in Unit 29155 in Russia's military intelligence serv=
|
|
ice, also known as the GRU.
|
|
|
|
The EU says [https://news.risky.biz/r/5b2b0d5e?m=3D1a80b145-9ce5-407e-b496-=
|
|
c57050db16ff] the three stole classified information and sensitive data fro=
|
|
m at least three Estonian ministries, such as the Ministry of Economic Affa=
|
|
irs and Communications, the Ministry of Social Affairs, and the Ministry of=
|
|
Foreign Affairs.
|
|
|
|
The sanctions come four months after the Estonian government publicly attri=
|
|
buted [https://news.risky.biz/r/0a8501b0?m=3D1a80b145-9ce5-407e-b496-c57050=
|
|
db16ff] the 2020 hack to GRU Unit 29155.
|
|
|
|
Two of the sanctioned hackers were also indicted [https://news.risky.biz/r/=
|
|
26c86b33?m=3D1a80b145-9ce5-407e-b496-c57050db16ff] in September by the US g=
|
|
overnment for a more recent hacking campaign that targeted NATO countries p=
|
|
roviding military aid to Ukraine.
|
|
|
|
The three are part of what is informally considered one of Russia's most el=
|
|
ite military intelligence units.
|
|
|
|
GRU Unit 29155 [https://news.risky.biz/r/a91c34ec?m=3D1a80b145-9ce5-407e-b4=
|
|
96-c57050db16ff] has operated in secret since 2008, and its main objective =
|
|
for most of its existence has been assassinations and sabotage on foreign s=
|
|
oil.
|
|
|
|
The unit has been linked to explosions at Czech ammo depots in 2014, an att=
|
|
empted coup in Montenegro in 2016, the 2018 poisoning of former GRU officer=
|
|
Sergei Skripal in the UK, and a 2020 bounty program that paid the Taliban =
|
|
tens of thousands of USD for each US and NATO soldier killed in Afghanistan=
|
|
=2E
|
|
|
|
Recent reports have also tentatively linked the unit to the notorious Havan=
|
|
a Syndrome [https://news.risky.biz/r/7c7c1b00?m=3D1a80b145-9ce5-407e-b496-c=
|
|
57050db16ff] that impacted the US diplomats at embassies across the world.
|
|
|
|
A September 2024 UK NCSC report [https://news.risky.biz/r/64cdd2fa?m=3D1a80=
|
|
b145-9ce5-407e-b496-c57050db16ff] found that the unit had also set up a cyb=
|
|
er division with offensive cyber operations back in 2020=E2=80=94suggesting=
|
|
the Estonian cyberattacks might have been one of its first operations.
|
|
|
|
While the group operated in secrecy for most of its life, things changed af=
|
|
ter Russia invaded Ukraine, with the group taking a far more active and vis=
|
|
ible role. Its main cyber operation was the deployment of the WhisperGate d=
|
|
ata wiper [https://news.risky.biz/r/e9ccd626?m=3D1a80b145-9ce5-407e-b496-c5=
|
|
7050db16ff] ahead of Russia's invasion of Ukraine as part of an operation t=
|
|
hat attempted to sabotage and prevent the Ukrainian government from reactin=
|
|
g to the Kremlin's ground invasion.
|
|
|
|
In infosec nomenclature, the unit's cyber operations are tracked under code=
|
|
names such as Ember Bear, Cadet Blizzard, Frozenvista, UNC2589, and UAC-005=
|
|
6.
|
|
|
|
|
|
Risky Business Podcasts
|
|
|
|
Risky Business is now on YouTube with video versions of our main podcasts. =
|
|
Below is our latest weekly show with Pat and Adam at the helm!
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
=C2=A0
|
|
|
|
|
|
|
|
|
|
[https://news.risky.biz/r/8b375213?m=3D1a80b145-9ce5-407e-b496-c57050db16ff=
|
|
]
|
|
|
|
|
|
|
|
|
|
----------------------------------------
|
|
|
|
|
|
Breaches, hacks, and security incidents
|
|
|
|
DeepSeek cyberattack: Chinese AI company DeepSeek has limited new user regi=
|
|
strations after the company experienced what the company described as "larg=
|
|
e-scale malicious attacks [https://news.risky.biz/r/34cdab02?m=3D1a80b145-9=
|
|
ce5-407e-b496-c57050db16ff]" on its newly launched genAI services. The atta=
|
|
ck took place on the same day the company's app overtook ChatGPT on app sto=
|
|
res, and as US AI stock prices fell by up to 20%. The attack is believed to=
|
|
be a combination of DDoS attacks and API abuse.
|
|
|
|
MegaFon cyberattack: Ukraine's military intelligence agency GUR has alleged=
|
|
ly carried out disruptive cyberattacks against three Russian telecom provid=
|
|
ers=E2=80=94MegaFon, Yota, and NetByNet. [Additional coverage in The New Vo=
|
|
ice of Ukraine [https://news.risky.biz/r/d70ffbca?m=3D1a80b145-9ce5-407e-b4=
|
|
96-c57050db16ff]]
|
|
|
|
Doxbin leak: More than 435,000 email addresses shared on Doxbin have leaked=
|
|
and added to the Have I Been Pwned database [https://news.risky.biz/r/f2f4=
|
|
ce1a?m=3D1a80b145-9ce5-407e-b496-c57050db16ff].
|
|
|
|
|
|
General tech and privacy
|
|
|
|
Edge tests scareware blocker: Microsoft is testing [https://news.risky.biz/=
|
|
r/1d9bbdaa?m=3D1a80b145-9ce5-407e-b496-c57050db16ff] a new Edge security fe=
|
|
ature designed to detect and block scareware popups. The feature uses machi=
|
|
ne learning to detect popups and text typically found on scareware and tech=
|
|
support scams and warn users about the risks. The feature was initially an=
|
|
nounced during last year's Microsoft Ignite developer conference.
|
|
|
|
Bitwarden improves account security: Password manager app Bitwarden is addi=
|
|
ng a new security feature [https://news.risky.biz/r/f16f7c15?m=3D1a80b145-9=
|
|
ce5-407e-b496-c57050db16ff] to user accounts where 2FA is not enabled. The =
|
|
company will require email verification codes whenever users log into their=
|
|
account from an unrecognized device. The new feature is meant to prevent t=
|
|
hreat actors from adding and using stolen accounts on their own devices.
|
|
|
|
New Signal sync options: Secure messaging service Signal will now let users=
|
|
sync messages [https://news.risky.biz/r/df81fcbc?m=3D1a80b145-9ce5-407e-b4=
|
|
96-c57050db16ff] across all linked devices.
|
|
|
|
KuCoin to leave US market: Cryptocurrency exchange KuCoin has reached a set=
|
|
tlement [https://news.risky.biz/r/b0039187?m=3D1a80b145-9ce5-407e-b496-c570=
|
|
50db16ff] with the US Department of Justice and will leave the US market fo=
|
|
r two years after it was caught operating an unlicensed money-transmitting =
|
|
business. The company has agreed to pay $297 million, representing a regula=
|
|
tory fine and forfeiture for its failure to implement anti-money laundering=
|
|
(AML) and know-your-customer (KYC) protocols. KuCoin will be allowed to re=
|
|
-enter the US market after fixing all issues and registering with US author=
|
|
ities. KuCoin was one of the world's largest crypto exchanges when the Just=
|
|
ice Department started an investigation into its operations.
|
|
|
|
YouTube hour-long unskippable ads: After users started reporting receiving =
|
|
60-minute ads [https://news.risky.biz/r/089d5256?m=3D1a80b145-9ce5-407e-b49=
|
|
6-c57050db16ff] on YouTube, Google sent a statement [https://news.risky.biz=
|
|
/r/00ef6469?m=3D1a80b145-9ce5-407e-b496-c57050db16ff] to journalists that t=
|
|
he company is dead serious about going about ad blockers.
|
|
|
|
Meta takes down Linux groups: Starting somewhere around January 19, Meta's =
|
|
AI-based moderation tool started flagging [https://news.risky.biz/r/9f17d65=
|
|
e?m=3D1a80b145-9ce5-407e-b496-c57050db16ff] Facebook groups for Linux-relat=
|
|
ed discussions as malicious and taking them down.
|
|
|
|
|
|
Government, politics, and policy
|
|
|
|
EU plans to ban console sales to Russia: The EU plans to ban the sales of v=
|
|
ideo game consoles to Russia after reports that the Russian military had us=
|
|
ed console kits to control drones used in Ukraine. According to the Financi=
|
|
al Times [https://news.risky.biz/r/26df52de?m=3D1a80b145-9ce5-407e-b496-c57=
|
|
050db16ff], the ban is expected to be part of a new sanctions package that =
|
|
the EU will pass next month. Microsoft, Nintendo, and Sony halted sales of =
|
|
new consoles to Russia after its invasion of Ukraine in 2022. The ban is ai=
|
|
med at companies that re-sell devices to Russia. The Kremlin was expecting =
|
|
a ban and had touted a plan to build its own gaming console for almost a ye=
|
|
ar.
|
|
|
|
Poland accuses Russia of buying disinfo over the dark web: The Polish gover=
|
|
nment says Russian intelligence services are using the dark web to recruit =
|
|
Polish citizens to spread disinformation ahead of the country's presidentia=
|
|
l election in May. Citizens are allegedly offered up to =E2=82=AC4,000 to s=
|
|
pread anti-EU propaganda on social media. Russian intelligence services FSB=
|
|
and GRU are allegedly involved in the campaign, which began at the start o=
|
|
f last year. [Additional coverage in Euromaidan Press [https://news.risky.b=
|
|
iz/r/c5af5ce4?m=3D1a80b145-9ce5-407e-b496-c57050db16ff]]
|
|
|
|
US ROUTERS Act: Two US senators have introduced a bill that would instruct =
|
|
the US Department of Commerce to study the national security risks associat=
|
|
ed with routers and modems manufactured overseas. The bill aims to identify=
|
|
devices that may be under the control of foreign adversary governments and=
|
|
block their sale in the US. The new bill is named the Removing Our Unsecur=
|
|
e Technologies to Ensure Reliability and Security, or the ROUTERS Act [http=
|
|
s://news.risky.biz/r/4fd231a7?m=3D1a80b145-9ce5-407e-b496-c57050db16ff], an=
|
|
d is sponsored by Senators Marsha Blackburn (R-Tenn.) and Ben Ray Luj=C3=A1=
|
|
n (D-N.M.). [Additional coverage in CyberScoop [https://news.risky.biz/r/02=
|
|
53efb6?m=3D1a80b145-9ce5-407e-b496-c57050db16ff]]
|
|
|
|
US Insure Cybersecurity Act: Two US senators have re-introduced the Insure =
|
|
Cybersecurity Act, a bill that would direct the US National Institute of St=
|
|
andards and Technology to create guidelines and clear guidance of how cyber=
|
|
security insurance should work. The guidelines should be available for both=
|
|
issuers, agents, and brokers, but also for their customers. [Additional co=
|
|
verage in CyberScoop [https://news.risky.biz/r/0d16ae91?m=3D1a80b145-9ce5-4=
|
|
07e-b496-c57050db16ff]]
|
|
|
|
US TP-Link ban coming this year: After rumors surfaced last year that the U=
|
|
S government was looking into banning TP-Link, a new leak suggests the ban =
|
|
is expected next year. [Additional coverage in CNBC [https://news.risky.biz=
|
|
/r/f96ccf69?m=3D1a80b145-9ce5-407e-b496-c57050db16ff]]
|
|
|
|
French data breach trends: In its yearly report [https://news.risky.biz/r/f=
|
|
62c0085?m=3D1a80b145-9ce5-407e-b496-c57050db16ff], France's data protection=
|
|
agency says that most breaches occur due to the same and recurring securit=
|
|
y flaws and usually take place at third-party contractors.
|
|
|
|
|
|
Sponsor section
|
|
|
|
In this Risky Business News sponsor interview, Catalin Cimpanu talks with r=
|
|
unZero founder and CEO HD Moore about the company's latest capability, a fe=
|
|
ature called Inside-Out Attack Surface Management that takes internal finge=
|
|
rprints and scans the internet to discover possible exposures.
|
|
|
|
|
|
|
|
https://risky.biz/RBNEWSSI69/ [https://news.risky.biz/r/48914ced?m=3D1a80b1=
|
|
45-9ce5-407e-b496-c57050db16ff]
|
|
|
|
|
|
Arrests, cybercrime, and threat intel
|
|
|
|
OTP Agency admins sentenced: A UK judge has sentenced to prison [https://ne=
|
|
ws.risky.biz/r/dd2c3e3f?m=3D1a80b145-9ce5-407e-b496-c57050db16ff] the three=
|
|
administrators of OTP Agency [https://news.risky.biz/r/7a3e72cd?m=3D1a80b1=
|
|
45-9ce5-407e-b496-c57050db16ff], a web service that allowed cybercriminals =
|
|
to intercept one-time passcodes. One administrator was sentenced to two yea=
|
|
rs and eight months, while the other two received a one-year sentence. The =
|
|
three were arrested in March 2021, a month after the site was featured in a=
|
|
Brian Krebs article [https://news.risky.biz/r/c0641d96?m=3D1a80b145-9ce5-4=
|
|
07e-b496-c57050db16ff] on the rising market for OTP token thefts. The OTP A=
|
|
gency service allowed threat actors to enter a victim's phone number, initi=
|
|
ate a call posing as a bank, and request victims to share an OTP token from=
|
|
their banking app.
|
|
|
|
Major sextortionist extradited to US: US officials have extradited [https:/=
|
|
/news.risky.biz/r/6d443dbe?m=3D1a80b145-9ce5-407e-b496-c57050db16ff] a 24-y=
|
|
ear-old Nigerian man for a sextortion scheme that resulted in financial los=
|
|
ses and even the death by suicide of a minor. Officials say Hassanbunhussei=
|
|
n Abolore Lawal is responsible for the death of Gavin Guffey, a 17-year-old=
|
|
from Rock Hill who took his life in July 2022. Lawal posed as women online=
|
|
to lure victims into private chats and send sexually explicit images of th=
|
|
emselves. The suspect used the images to extort victims for money. Lawal fa=
|
|
ces life in prison on multiple charges, including child exploitation.
|
|
|
|
GDLockerSec group: KELA has published a profile on GDLockerSec [https://new=
|
|
s.risky.biz/r/9bb9d3ab?m=3D1a80b145-9ce5-407e-b496-c57050db16ff], a group t=
|
|
hat emerged this month and started encrypting AWS buckets and asking victim=
|
|
s for ransoms.
|
|
|
|
> "KELA's investigation indicates that GDLockerSec is an amateur group that=
|
|
relies heavily on exaggerated claims to inflate its reputation within the =
|
|
cybercrime ecosystem. The group's tactics suggest a lack of sophistication,=
|
|
with poor operational security, copying another ransomware website, and un=
|
|
verified claims being a recurring pattern in their activities. Their relian=
|
|
ce on self-promotion, rather than verifiable achievements, underscores thei=
|
|
r struggle to gain legitimacy among more established ransomware groups. Fur=
|
|
ther analysis points to potential ties to both Morocco and Algeria, as infe=
|
|
rred from user aliases, messaging activity, and possible geographical indic=
|
|
ators linked to the group's members."
|
|
|
|
Accounts for sale market: DomainTools looks at online cybercrime networks u=
|
|
sing hijacked websites to promote their accounts-for-sale services [https:/=
|
|
/news.risky.biz/r/094cb7f8?m=3D1a80b145-9ce5-407e-b496-c57050db16ff].
|
|
|
|
|
|
Malware technical reports
|
|
|
|
Hellcat ransomware: Cato Networks looks at a new RaaS platform named Hellca=
|
|
t [https://news.risky.biz/r/d3adbe81?m=3D1a80b145-9ce5-407e-b496-c57050db16=
|
|
ff] that launched last October and has already listed close to a dozen vict=
|
|
ims on its leak site.
|
|
|
|
Arcus Media ransomware: Halcyon researchers have published an analysis of a=
|
|
new RaaS platform named Arcus Media [https://news.risky.biz/r/a6523ba6?m=
|
|
=3D1a80b145-9ce5-407e-b496-c57050db16ff]. The group launched in April 2024 =
|
|
and runs a very private affiliate program.
|
|
|
|
CS to Lockbit: The DFIR Report team has published an analysis [https://news=
|
|
=2Erisky.biz/r/8842d994?m=3D1a80b145-9ce=
|
|
5-407e-b496-c57050db16ff] of a Lockbi=
|
|
t ransomware infection that came in via an initial infection with Cobalt St=
|
|
rike.
|
|
|
|
Windows Locker (XDS): CyFirma researchers have spotted a new ransomware str=
|
|
ain going by the boring name of Windows Locker [https://news.risky.biz/r/a3=
|
|
6cf1ed?m=3D1a80b145-9ce5-407e-b496-c57050db16ff], sometimes referred to as =
|
|
the XDS.
|
|
|
|
ODAT: Trustwave has published a breakdown of how the ODAT [https://news.ris=
|
|
ky.biz/r/6a389b2d?m=3D1a80b145-9ce5-407e-b496-c57050db16ff] (Oracle Databas=
|
|
e Attacking Tool) malware works to exploit and steal data from Oracle DBs.
|
|
|
|
Aquabot: Akamai researchers have found a new version [https://news.risky.bi=
|
|
z/r/4c5a456b?m=3D1a80b145-9ce5-407e-b496-c57050db16ff] of the Aquabot IoT m=
|
|
alware (a Mirai variant) that is currently exploiting Mitel SIP phones usin=
|
|
g CVE-2024-41710 [https://news.risky.biz/r/a1b64966?m=3D1a80b145-9ce5-407e-=
|
|
b496-c57050db16ff], a command injection vulnerability that affects Mitel mo=
|
|
dels.
|
|
|
|
> "This malware exhibits a behavior we have never before seen with a Mirai =
|
|
variant: a function (report_kill) to report back to the command and control=
|
|
(C2) when a kill signal was caught on the infected device. We have not see=
|
|
n any response from the C2 as of the date of this blog post."
|
|
|
|
TorNet: Cisco Talos has discovered a new backdoor named TorNet [https://new=
|
|
s.risky.biz/r/7cf1e9cc?m=3D1a80b145-9ce5-407e-b496-c57050db16ff]. The malwa=
|
|
re is part of a campaign from a known financially motivated malspam group. =
|
|
It's obviously called TorNet because it uses Tor for its C&C servers.
|
|
|
|
> "The actor also disconnects the victim machine from the network before dr=
|
|
opping the payload and then connects it back to the network, allowing them =
|
|
to evade detection by cloud antimalware solutions."
|
|
|
|
Phorpiex: The Phorpiex (Trik) malware [https://news.risky.biz/r/32636164?m=
|
|
=3D1a80b145-9ce5-407e-b496-c57050db16ff] is still alive and delivering Lock=
|
|
bit ransomware payloads to infected systems.
|
|
|
|
Xloader: Zscaler researchers have published part one [https://news.risky.bi=
|
|
z/r/79c4f451?m=3D1a80b145-9ce5-407e-b496-c57050db16ff] of their analysis of=
|
|
v6 and v7 of the Xloader malware.
|
|
|
|
|
|
Sponsor section
|
|
|
|
Senior Sales Engineer Ali Cheikh demonstrates runZero to Risky Business hos=
|
|
t Patrick Gray. runZero is a cyber asset management tool that combines acti=
|
|
ve scanning, passive discovery, and API integrations to discover IT, OT, an=
|
|
d IoT assets (both managed and unmanaged) across your network, including cl=
|
|
oud, mobile, and remote environments.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
=C2=A0
|
|
|
|
|
|
|
|
|
|
[https://news.risky.biz/r/e28f1de4?m=3D1a80b145-9ce5-407e-b496-c57050db16ff=
|
|
]
|
|
|
|
|
|
|
|
|
|
|
|
APTs, cyber-espionage, and info-ops
|
|
|
|
APT-C-60 (DarkHotel): Qihoo 360 has published a report on APT-C-60 [https:/=
|
|
/news.risky.biz/r/f42121a3?m=3D1a80b145-9ce5-407e-b496-c57050db16ff], a Sou=
|
|
th Korean APT group also known as DarkHotel and Pseudo Hunter. The report c=
|
|
overs newer malware samples used by the group in recent operations.
|
|
|
|
ScatterBrain: Google Mandiant has published a technical analysis of Scatter=
|
|
Brain [https://news.risky.biz/r/0cb921ef?m=3D1a80b145-9ce5-407e-b496-c57050=
|
|
db16ff], a code obfuscation toolkit used by APT41 for its POISONPLUG.SHADOW=
|
|
backdoor.
|
|
|
|
UAC-0063: Bitdefender has spotted a new cyber-espionage campaign linked to =
|
|
Russian cyber-espionage group UAC-0063 [https://news.risky.biz/r/67f0fb2e?m=
|
|
=3D1a80b145-9ce5-407e-b496-c57050db16ff] that targets organizations across =
|
|
Central Asia and European countries such as Germany, Romania, the UK, and t=
|
|
he Netherlands. The attacks used weaponized Microsoft Word documents, HATVI=
|
|
BE malware loader, custom-built malware, and other sophisticated techniques=
|
|
to infiltrate government institutions and embassies. Sekoia has also publi=
|
|
shed [https://news.risky.biz/r/974f7a0e?m=3D1a80b145-9ce5-407e-b496-c57050d=
|
|
b16ff] a report on the same campaign, too.
|
|
|
|
|
|
Vulnerabilities, security research, and bug bounty
|
|
|
|
Military cyber honeypot: A team of academics from Penn State University in =
|
|
the US is building a honeypot [https://news.risky.biz/r/c543272e?m=3D1a80b1=
|
|
45-9ce5-407e-b496-c57050db16ff] designed to mimic military-style networks. =
|
|
The network will use fake equipment designed to lure foreign threat actors =
|
|
and record their every move. The project is being built using a $557,000 gr=
|
|
ant from the US military.
|
|
|
|
DeepSeek R1 jailbreak: KELA researchers have jailbroken [https://news.risky=
|
|
=2Ebiz/r/a92ffff8?m=3D1a80b145-9ce5-407e=
|
|
-b496-c57050db16ff] DeepSeek's new R1=
|
|
AI model and used it to generate malicious content, such as "ransomware de=
|
|
velopment, fabrication of sensitive content, and detailed instructions for =
|
|
creating toxins and explosive devices."
|
|
|
|
Apple zero-day: Apple has patched an actively exploited zero-day in its iOS=
|
|
[https://news.risky.biz/r/00da8ed3?m=3D1a80b145-9ce5-407e-b496-c57050db16f=
|
|
f] and macOS [https://news.risky.biz/r/376611f5?m=3D1a80b145-9ce5-407e-b496=
|
|
-c57050db16ff] operating systems. Tracked as CVE-2025-24085, the vulnerabil=
|
|
ity resides in Apple's Core Media processing framework. Apple says attacker=
|
|
s can abuse malicious media files to elevate their privileges on targeted s=
|
|
ystems.
|
|
|
|
Fortinet zero-day write-up: watchTowr Labs has published a technical deep d=
|
|
ive [https://news.risky.biz/r/cd6e68e6?m=3D1a80b145-9ce5-407e-b496-c57050db=
|
|
16ff] of a recently patched Fortinet zero-day (CVE-2024-55591 [https://news=
|
|
=2Erisky.biz/r/782eb19f?m=3D1a80b145-9ce5-407e-b496-c57050db16ff]).
|
|
|
|
D-Link RCE vulnerability: D-Link has patched [https://news.risky.biz/r/4797=
|
|
2ce9?m=3D1a80b145-9ce5-407e-b496-c57050db16ff] an RCE vulnerability in its =
|
|
DLS wireless routers reported by Italian security research Max. See Max's t=
|
|
wo-part write-up on the bug here [https://news.risky.biz/r/8bcd24b7?m=3D1a8=
|
|
0b145-9ce5-407e-b496-c57050db16ff] and here [https://news.risky.biz/r/5991e=
|
|
b76?m=3D1a80b145-9ce5-407e-b496-c57050db16ff].
|
|
|
|
NVIDIA patches: NVIDIA has released a security update [https://news.risky.b=
|
|
iz/r/72489f13?m=3D1a80b145-9ce5-407e-b496-c57050db16ff] to patch seven issu=
|
|
es in its display driver. More from Edera [https://news.risky.biz/r/f10c8d9=
|
|
e?m=3D1a80b145-9ce5-407e-b496-c57050db16ff].
|
|
|
|
VxWorks vulnerability: SEC Consult researchers have found that the Wind Riv=
|
|
er VxWorks RTOS uses weak password hashing algorithms [https://news.risky.b=
|
|
iz/r/af16d343?m=3D1a80b145-9ce5-407e-b496-c57050db16ff].
|
|
|
|
> "For VxWorks 6.9, they incorrectly claimed the system uses 5,000 iteratio=
|
|
ns of SHA-256 for password hashing, despite our proof of concept demonstrat=
|
|
ing that it uses only a single iteration. They downplayed the severity of t=
|
|
his issue, citing the product's End of Life (EOL) in three months as justif=
|
|
ication for inaction. For VxWorks 7, the vendor dismissed the need for furt=
|
|
her improvements, stating it was 'appropriate for an embedded system.' The =
|
|
vendor told us they are treating the issue as a "feature request" but were =
|
|
unable to provide a timeline for the implementation."
|
|
|
|
New Apple CPU side-channel attacks: Academics have discovered two new side-=
|
|
channel attacks [https://news.risky.biz/r/a559baef?m=3D1a80b145-9ce5-407e-b=
|
|
496-c57050db16ff] against Apple CPUs that can leak sensitive data from the =
|
|
processor's memory. Named SLAP (Speculation Attacks via Load Address Predic=
|
|
tion) and FLOP (False Load Output Predictions), the attacks impact Apple's =
|
|
line of A and M CPUs. Affected devices include all Mac laptops sold after 2=
|
|
022, all Mac desktops sold after 2023, and all iPhones sold after 2021. Bot=
|
|
h attacks can be performed via a web browser. Apple has told researchers it=
|
|
plans to address both attacks in an upcoming security update. The team beh=
|
|
ind the attacks has found almost a dozen side-channel attacks [https://news=
|
|
=2Erisky.biz/r/790e8656?m=3D1a80b145-9ce=
|
|
5-407e-b496-c57050db16ff] in modern C=
|
|
PUs, such as Meltdown, Spectre, SGX Fail, and RAMBleed.
|
|
|
|
|
|
Infosec industry
|
|
|
|
New tool=E2=80=94gitC2: Offensive security engineer Offalltn has released g=
|
|
itC2 [https://news.risky.biz/r/c8f52f01?m=3D1a80b145-9ce5-407e-b496-c57050d=
|
|
b16ff], a C2 tool that uses a GitHub repository to execute commands through=
|
|
its issues tracker.
|
|
|
|
New tool=E2=80=94ExtensionHound: Software engineer Amram Englander has rele=
|
|
ased ExtensionHound [https://news.risky.biz/r/391c7fd5?m=3D1a80b145-9ce5-40=
|
|
7e-b496-c57050db16ff], a security analysis tool that identifies DNS queries=
|
|
made by browser extensions.
|
|
|
|
Acquisition news: Automated endpoint management platform NinjaOne is acquir=
|
|
ing [https://news.risky.biz/r/a0eb977f?m=3D1a80b145-9ce5-407e-b496-c57050db=
|
|
16ff] cloud data backup and recovery platform Dropsuite.
|
|
|
|
Threat/trend reports: Apteco [https://news.risky.biz/r/c28a4f01?m=3D1a80b14=
|
|
5-9ce5-407e-b496-c57050db16ff], Cloudflare [https://news.risky.biz/r/50aa9f=
|
|
86?m=3D1a80b145-9ce5-407e-b496-c57050db16ff], France's CNIL agency [https:/=
|
|
/news.risky.biz/r/aed31de3?m=3D1a80b145-9ce5-407e-b496-c57050db16ff], Fores=
|
|
cout [https://news.risky.biz/r/07eb9da8?m=3D1a80b145-9ce5-407e-b496-c57050d=
|
|
b16ff], Obsidian Security [https://news.risky.biz/r/fc9255bd?m=3D1a80b145-9=
|
|
ce5-407e-b496-c57050db16ff], Rapid7 [https://news.risky.biz/r/522dd1c7?m=3D=
|
|
1a80b145-9ce5-407e-b496-c57050db16ff], and Recorded Future [https://news.ri=
|
|
sky.biz/r/fb3db884?m=3D1a80b145-9ce5-407e-b496-c57050db16ff] have published=
|
|
reports and summaries covering various infosec trends and industry threats=
|
|
=2E
|
|
|
|
|
|
Risky Business Podcasts
|
|
|
|
In this podcast, Tom Uren and Adam Boileau talk about the continued importa=
|
|
nce of hack and leak operations. They didn't really affect the recent US pr=
|
|
esidential election, but they are still a powerful tool for vested interest=
|
|
s to influence public policy.
|
|
|
|
|
|
|
|
https://risky.biz/SRB106/ [https://news.risky.biz/r/5dcd987d?m=3D1a80b145-9=
|
|
ce5-407e-b496-c57050db16ff]
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
=C2=A0
|
|
|
|
|
|
|
|
|
|
[https://news.risky.biz/r/b4319a57?m=3D1a80b145-9ce5-407e-b496-c57050db16ff=
|
|
]
|
|
|
|
|
|
|
|
|
|
|
|
|
|
In this edition of Between Two Nerds, Tom Uren and The Grugq talk about the=
|
|
evolution of Russian cyber operations during its invasion of Ukraine.
|
|
|
|
|
|
|
|
https://risky.biz/BTN105/ [https://news.risky.biz/r/06ff769c?m=3D1a80b145-9=
|
|
ce5-407e-b496-c57050db16ff]
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
=C2=A0
|
|
|
|
|
|
|
|
|
|
[https://news.risky.biz/r/2b028f94?m=3D1a80b145-9ce5-407e-b496-c57050db16ff=
|
|
]
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Risky.Biz =C2=A9 2025 =E2=80=93 Unsubscribe [https://news.risky.biz/unsubsc=
|
|
ribe/?uuid=3D1a80b145-9ce5-407e-b496-c57050db16ff&key=3Db42b9394aa843f18196=
|
|
f4ef71cbb26d29e72298989fd79444a9147b6e32ee87b&newsletter=3D102a29ad-4bfc-41=
|
|
05-8645-703ba0268482]
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
=C2=A0
|
|
|
|
|
|
|
|
|
|
|
|
|
|
--e0afef55d7e1e7ab802be292cd3c5cfee2e057b815c9b086e36a6c9f72d1
|
|
Content-Type: text/html; charset="utf-8"
|
|
Content-Transfer-Encoding: quoted-printable
|
|
|
|
<!doctype html>
|
|
<html>
|
|
<head>
|
|
<meta name=3D"viewport" content=3D"width=3Ddevice-width">
|
|
<meta http-equiv=3D"Content-Type" content=3D"text/html; charset=3DU=
|
|
TF-8">
|
|
<!--[if mso]><xml><o:OfficeDocumentSettings><o:PixelsPerInch>96</o:=
|
|
PixelsPerInch><o:AllowPNG/></o:OfficeDocumentSettings></xml><![endif]-->
|
|
<title>Risky Bulletin: EU sanctions three GRU hackers</title>
|
|
<style>
|
|
=2Epost-title-link {
|
|
display: block;
|
|
margin-top: 32px;
|
|
color: #15212A;
|
|
text-align: center;
|
|
line-height: 1.1em;
|
|
}
|
|
=2Epost-title-link-left {
|
|
text-align: left;
|
|
}
|
|
=2Eview-online-link {
|
|
word-wrap: none;
|
|
white-space: nowrap;
|
|
color: #738a94;
|
|
text-decoration: underline !important;
|
|
}
|
|
=2Ekg-nft-link {
|
|
display: block;
|
|
text-decoration: none !important;
|
|
color: #15212A !important;
|
|
font-family: inherit !important;
|
|
font-size: 14px;
|
|
line-height: 1.3em;
|
|
padding-top: 4px;
|
|
padding-right: 20px;
|
|
padding-left: 20px;
|
|
padding-bottom: 4px;
|
|
}
|
|
=2Ekg-twitter-link {
|
|
display: block;
|
|
text-decoration: none !important;
|
|
color: #15212A !important;
|
|
font-family: inherit !important;
|
|
font-size: 15px;
|
|
padding: 8px;
|
|
line-height: 1.3em;
|
|
}
|
|
=2Ekg-audio-link {
|
|
color: #738a94 !important;
|
|
}
|
|
@media only screen and (max-width: 620px) {
|
|
table.body {
|
|
width: 100%;
|
|
min-width: 100%;
|
|
}
|
|
|
|
.hide-mobile {
|
|
display: none;
|
|
}
|
|
|
|
.mobile-only {
|
|
display: initial !important;
|
|
}
|
|
|
|
.hide-desktop {
|
|
display: initial !important;
|
|
}
|
|
|
|
.desktop-only {
|
|
display: none !important;
|
|
}
|
|
|
|
table.body p,
|
|
table.body ul,
|
|
table.body ol,
|
|
table.body td {
|
|
font-size: 16px;
|
|
}
|
|
|
|
table.body .post-excerpt {
|
|
font-size: 16px !important;
|
|
}
|
|
|
|
table.body .kg-callout-card {
|
|
padding: 16px 24px !important;
|
|
}
|
|
|
|
table.body .kg-callout-text {
|
|
font-size: 16px !important;
|
|
line-height: 1.5em !important;
|
|
}
|
|
|
|
table.body pre {
|
|
white-space: pre-wrap !important;
|
|
word-break: break-word !important;
|
|
}
|
|
|
|
table.body .content {
|
|
padding: 0 !important;
|
|
}
|
|
|
|
table.body .container {
|
|
padding: 0 !important;
|
|
width: 100% !important;
|
|
}
|
|
|
|
table.body .main {
|
|
border-spacing: 10px 0 !important;
|
|
border-left-width: 0 !important;
|
|
border-radius: 0 !important;
|
|
border-right-width: 0 !important;
|
|
}
|
|
|
|
table.body .btn table {
|
|
width: 100% !important;
|
|
}
|
|
|
|
table.body .btn a {
|
|
width: 100% !important;
|
|
}
|
|
|
|
table.body .img-responsive {
|
|
height: auto !important;
|
|
max-width: 100% !important;
|
|
width: auto !important;
|
|
}
|
|
|
|
table.body .site-icon {
|
|
padding-top: 0 !important;
|
|
}
|
|
|
|
table.body .site-info {
|
|
padding-top: 24px !important;
|
|
}
|
|
|
|
table.body .post-title-link {
|
|
margin-top: 24px !important;
|
|
}
|
|
|
|
table.body .post-meta-wrapper {
|
|
padding-bottom: 24px !important;
|
|
}
|
|
|
|
table.body .site-icon img {
|
|
width: 36px !important;
|
|
height: 36px !important;
|
|
}
|
|
|
|
table.body .site-url a {
|
|
font-size: 13px !important;
|
|
padding-bottom: 16px !important;
|
|
}
|
|
|
|
table.body .post-meta,
|
|
table.body .post-meta-date {
|
|
white-space: normal !important;
|
|
font-size: 13px !important;
|
|
line-height: 1.2em;
|
|
}
|
|
|
|
table.body .post-meta,
|
|
table.body .view-online {
|
|
width: 100% !important;
|
|
}
|
|
|
|
table.body .post-meta-left,
|
|
table.body .post-meta-left.view-online {
|
|
width: 100% !important;
|
|
text-align: left !important;
|
|
}
|
|
|
|
table.body .post-meta.view-online-mobile {
|
|
display: table-row !important;
|
|
}
|
|
|
|
table.body .post-meta-left.view-online-mobile,
|
|
table.body .post-meta-left.view-online-mobile .view-online {
|
|
text-align: left !important;
|
|
}
|
|
|
|
table.body .post-meta.view-online.desktop {
|
|
display: none !important;
|
|
}
|
|
|
|
table.body .view-online {
|
|
text-decoration: underline;
|
|
}
|
|
|
|
table.body .footer p,
|
|
table.body .footer p span {
|
|
font-size: 13px !important;
|
|
}
|
|
|
|
table.body .view-online-link,
|
|
table.body .footer,
|
|
table.body .footer a {
|
|
font-size: 13px !important;
|
|
}
|
|
|
|
table.body .post-title a {
|
|
font-size: 26px !important;
|
|
line-height: 1.1em !important;
|
|
}
|
|
|
|
table.feedback-buttons {
|
|
display: table !important;
|
|
width: 100% !important;
|
|
max-width: 390px;
|
|
}
|
|
|
|
table.feedback-buttons img {
|
|
display: inherit !important;
|
|
}
|
|
|
|
table.body .feedback-button-text {
|
|
display: none!important;
|
|
}
|
|
|
|
table.body .latest-posts-header {
|
|
font-size: 12px !important;
|
|
}
|
|
|
|
table.body .latest-post-title {
|
|
padding-right: 8px !important;
|
|
}
|
|
|
|
table.body .latest-post h4,
|
|
table.body .latest-post h4 span {
|
|
padding: 4px 0 6px !important;
|
|
font-size: 15px !important;
|
|
}
|
|
|
|
table.body .latest-post-excerpt,
|
|
table.body .latest-post-excerpt a,
|
|
table.body .latest-post-excerpt span {
|
|
font-size: 13px !important;
|
|
line-height: 1.2 !important;
|
|
}
|
|
|
|
table.body .subscription-box h3 {
|
|
font-size: 14px !important;
|
|
}
|
|
|
|
table.body .subscription-box p,
|
|
table.body .subscription-box p span {
|
|
font-size: 13px !important;
|
|
}
|
|
|
|
table.body .subscription-details,
|
|
table.body .manage-subscription {
|
|
display: inline-block;
|
|
width: 100%;
|
|
text-align: left !important;
|
|
font-size: 13px !important;
|
|
}
|
|
|
|
table.body .subscription-details {
|
|
padding-bottom: 12px;
|
|
}
|
|
|
|
table.body .kg-bookmark-card {
|
|
width: 90vw;
|
|
}
|
|
|
|
table.body .kg-bookmark-thumbnail {
|
|
display: none !important;
|
|
}
|
|
|
|
table.body .kg-bookmark-metadata span {
|
|
font-size: 13px !important;
|
|
}
|
|
|
|
table.body .kg-embed-card {
|
|
max-width: 90vw !important;
|
|
}
|
|
|
|
table.body h1 {
|
|
font-size: 32px !important;
|
|
line-height: 1.3em !important;
|
|
}
|
|
|
|
table.body h2,
|
|
table.body h2 span {
|
|
font-size: 26px !important;
|
|
line-height: 1.22em !important;
|
|
}
|
|
|
|
table.body h3 {
|
|
font-size: 21px !important;
|
|
line-height: 1.25em !important;
|
|
}
|
|
|
|
table.body h4 {
|
|
font-size: 19px !important;
|
|
line-height: 1.3em !important;
|
|
}
|
|
|
|
table.body h5 {
|
|
font-size: 16px !important;
|
|
line-height: 1.4em !important;
|
|
}
|
|
|
|
table.body h6 {
|
|
font-size: 16px !important;
|
|
line-height: 1.4em !important;
|
|
}
|
|
|
|
table.body blockquote {
|
|
font-size: 16px !important;
|
|
line-height: 1.6em;
|
|
margin-bottom: 0;
|
|
}
|
|
|
|
table.body blockquote p {
|
|
margin-right: 15px !important;
|
|
margin-left: 15px !important;
|
|
}
|
|
|
|
table.body blockquote.kg-blockquote-alt {
|
|
border-left: 0 none !important;
|
|
margin: 0 !important;
|
|
font-size: 18px !important;
|
|
line-height: 1.4em !important;
|
|
}
|
|
|
|
table.body blockquote.kg-blockquote-alt p {
|
|
margin-right: 20px !important;
|
|
margin-left: 20px !important;
|
|
}
|
|
|
|
table.body hr {
|
|
margin: 2em 0 !important;
|
|
}
|
|
|
|
table.body .kg-header-card.kg-v2 span {
|
|
font-size: inherit !important;
|
|
}
|
|
|
|
table.body .kg-header-card.kg-v2 .kg-header-card-content {
|
|
padding-top: 64px !important;
|
|
padding-bottom: 64px !important;
|
|
}
|
|
|
|
table.body .kg-header-card.kg-v2 .kg-header-card-image + .kg-header-card-=
|
|
content {
|
|
padding-top: 52px !important;
|
|
padding-bottom: 52px !important;
|
|
}
|
|
|
|
table.body .kg-header-card.kg-v2 .kg-header-card-heading {
|
|
font-size: 2.2em !important;
|
|
line-height: 1.1 !important;
|
|
}
|
|
|
|
table.body .kg-header-card.kg-v2 .kg-header-card-subheading {
|
|
line-height: 1.3em !important;
|
|
}
|
|
|
|
.feature-image-caption {
|
|
font-size: 13px!important;
|
|
}
|
|
|
|
.kg-card-figcaption {
|
|
font-size: 13px!important;
|
|
}
|
|
|
|
.kg-card-figcaption p,
|
|
=2Ekg-card-figcaption p span {
|
|
font-size: 13px!important;
|
|
}
|
|
}
|
|
@media all {
|
|
.subscription-details p.hidden {
|
|
display: none !important;
|
|
}
|
|
|
|
.ExternalClass {
|
|
width: 100%;
|
|
}
|
|
|
|
.ExternalClass,
|
|
=2EExternalClass p,
|
|
=2EExternalClass span,
|
|
=2EExternalClass font,
|
|
=2EExternalClass td,
|
|
=2EExternalClass div {
|
|
line-height: 100%;
|
|
}
|
|
|
|
.apple-link a {
|
|
color: inherit !important;
|
|
font-family: inherit !important;
|
|
font-size: inherit !important;
|
|
font-weight: inherit !important;
|
|
line-height: inherit !important;
|
|
text-decoration: none !important;
|
|
}
|
|
|
|
#MessageViewBody a {
|
|
color: inherit;
|
|
text-decoration: none;
|
|
font-size: inherit;
|
|
font-family: inherit;
|
|
font-weight: inherit;
|
|
line-height: inherit;
|
|
}
|
|
|
|
.btn-primary table td:hover {
|
|
background-color: #34495e !important;
|
|
}
|
|
|
|
.btn-primary a:hover {
|
|
background-color: #34495e !important;
|
|
border-color: #34495e !important;
|
|
}
|
|
}
|
|
</style>
|
|
</head>
|
|
<body style=3D"background-color: #fff; font-family: -apple-system, Blin=
|
|
kMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-serif, &=
|
|
#39;Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI Symbol&=
|
|
#39;; -webkit-font-smoothing: antialiased; font-size: 18px; line-height: 1.=
|
|
4; margin: 0; padding: 0; -ms-text-size-adjust: 100%; -webkit-text-size-adj=
|
|
ust: 100%; color: #15212A;"><img width=3D"1" height=3D"1" alt=3D"" src=3D"h=
|
|
ttp://email.m.ghost.io/o/eJw8zsFuwyAMgOGnKbdEtoFgDn4YwKZBTceUpdMef1IPPf6HX_=
|
|
pUUtWG7EwweUbizUdnzzKOZahsKefaegRMYSMAQOupm7pdkqfYK3LvW-SQM2hCY1Xj3ky5uCEEF=
|
|
AEpQ_Tgw9p60VaokBljq3AL8Fzv-_y51jHdKUf5nuctwPU6v2ppj32Wv3Wou6S-jsfyRrlL3sen=
|
|
6jHvC0JA5Oh-hf4DAAD__4o7PuM">
|
|
<span class=3D"preheader" style=3D"color: transparent; display: non=
|
|
e; height: 0; max-height: 0; max-width: 0; opacity: 0; overflow: hidden; ms=
|
|
o-hide: all; visibility: hidden; width: 0;">In other news: OTP Agency admin=
|
|
s sentenced to prison; Apple fixes first 2025 zero-day; DeepSeek limits reg=
|
|
istrations after cyberattack.</span>
|
|
<table role=3D"presentation" border=3D"0" cellpadding=3D"0" cellspa=
|
|
cing=3D"0" class=3D"body" width=3D"100%" style=3D"border-collapse: separate=
|
|
; mso-table-lspace: 0pt; mso-table-rspace: 0pt; background-color: #fff; wid=
|
|
th: 100%;" bgcolor=3D"#fff">
|
|
<!-- Outlook doesn't respect max-width so we need an extra cent=
|
|
ered table -->
|
|
<!--[if mso]>
|
|
<tr>
|
|
<td>
|
|
<center>
|
|
<table border=3D"0" cellpadding=3D"0" cellspacing=
|
|
=3D"0" width=3D"600">
|
|
<![endif]-->
|
|
<tr>
|
|
<td style=3D"font-family: -apple-system, BlinkMacSystemFont=
|
|
, 'Segoe UI', Roboto, Helvetica, Arial, sans-serif, 'Apple Colo=
|
|
r Emoji', 'Segoe UI Emoji', 'Segoe UI Symbol'; font-siz=
|
|
e: 18px; vertical-align: top; color: #15212A;" valign=3D"top"> </td>
|
|
<td class=3D"container" style=3D"font-family: -apple-system=
|
|
, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-se=
|
|
rif, 'Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI S=
|
|
ymbol'; font-size: 18px; vertical-align: top; color: #15212A; display: =
|
|
block; max-width: 600px; margin: 0 auto;" valign=3D"top">
|
|
<div class=3D"content" style=3D"box-sizing: border-box;=
|
|
display: block; margin: 0 auto; max-width: 600px;">
|
|
<!-- START CENTERED WHITE CONTAINER -->
|
|
<table role=3D"presentation" border=3D"0" cellpaddi=
|
|
ng=3D"0" cellspacing=3D"0" class=3D"main" width=3D"100%" style=3D"border-co=
|
|
llapse: separate; mso-table-lspace: 0pt; mso-table-rspace: 0pt; background:=
|
|
#ffffff; border-radius: 3px; border-spacing: 20px 0; width: 100%;">
|
|
|
|
<!-- START MAIN CONTENT AREA -->
|
|
<tr>
|
|
<td class=3D"wrapper" style=3D"font-family:=
|
|
-apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, =
|
|
Arial, sans-serif, 'Apple Color Emoji', 'Segoe UI Emoji', &=
|
|
#39;Segoe UI Symbol'; font-size: 18px; vertical-align: top; color: #152=
|
|
12A; box-sizing: border-box;" valign=3D"top">
|
|
<table role=3D"presentation" border=3D"=
|
|
0" cellpadding=3D"0" cellspacing=3D"0" width=3D"100%" style=3D"border-colla=
|
|
pse: separate; mso-table-lspace: 0pt; mso-table-rspace: 0pt; width: 100%;">
|
|
|
|
<tr class=3D"site-info-row">
|
|
<td class=3D"site-info" wid=
|
|
th=3D"100%" align=3D"center" style=3D"font-family: -apple-system, BlinkMacS=
|
|
ystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-serif, 'A=
|
|
pple Color Emoji', 'Segoe UI Emoji', 'Segoe UI Symbol';=
|
|
font-size: 18px; vertical-align: top; color: #15212A; padding-top: 32px;" =
|
|
valign=3D"top">
|
|
<table role=3D"presenta=
|
|
tion" border=3D"0" cellpadding=3D"0" cellspacing=3D"0" style=3D"border-coll=
|
|
apse: separate; mso-table-lspace: 0pt; mso-table-rspace: 0pt; width: 100%;"=
|
|
width=3D"100%">
|
|
<tr>
|
|
<td class=
|
|
=3D"site-icon" style=3D"font-family: -apple-system, BlinkMacSystemFont, =
|
|
9;Segoe UI', Roboto, Helvetica, Arial, sans-serif, 'Apple Color Emo=
|
|
ji', 'Segoe UI Emoji', 'Segoe UI Symbol'; font-size: 18=
|
|
px; vertical-align: top; color: #15212A; padding-bottom: 8px; padding-top: =
|
|
8px; text-align: center; border-radius: 3px;" valign=3D"top" align=3D"cente=
|
|
r"><a href=3D"https://news.risky.biz/r/d84c11e4?m=3D1a80b145-9ce5-407e-b496=
|
|
-c57050db16ff" style=3D"color: #727272; text-decoration: none; overflow-wra=
|
|
p: anywhere;" target=3D"_blank"><img src=3D"https://news.risky.biz/content/=
|
|
images/2024/01/rbicon.png" alt=3D"Risky.Biz" border=3D"0" width=3D"44" heig=
|
|
ht=3D"44" style=3D"border: none; -ms-interpolation-mode: bicubic; max-width=
|
|
: 100%; width: 44px; height: 44px; border-radius: 3px;"></a></td>
|
|
</tr>
|
|
<tr>
|
|
<td class=
|
|
=3D"site-url site-url-bottom-padding" style=3D"font-family: -apple-system, =
|
|
BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-seri=
|
|
f, 'Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI Sym=
|
|
bol'; vertical-align: top; color: #15212A; font-size: 16px; letter-spac=
|
|
ing: -0.1px; font-weight: 700; text-transform: uppercase; text-align: cente=
|
|
r; padding-bottom: 12px;" valign=3D"top" align=3D"center"><div style=3D"wid=
|
|
th: 100% !important;"><a href=3D"https://news.risky.biz/r/bb76e5b8?m=3D1a80=
|
|
b145-9ce5-407e-b496-c57050db16ff" class=3D"site-title" style=3D"text-decora=
|
|
tion: none; color: #15212A; overflow-wrap: anywhere;" target=3D"_blank">Ris=
|
|
ky Business News</a></div></td>
|
|
</tr>
|
|
|
|
</table>
|
|
</td>
|
|
</tr>
|
|
|
|
<tr>
|
|
<td class=3D"post-title pos=
|
|
t-title-with-excerpt post-title-left" style=3D"font-family: -apple-system, =
|
|
BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-seri=
|
|
f, 'Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI Sym=
|
|
bol'; vertical-align: top; color: #15212A; font-size: 36px; line-height=
|
|
: 1.1em; font-weight: 700; padding-bottom: 8px; text-align: left;" valign=
|
|
=3D"top" align=3D"left">
|
|
<a href=3D"https://news=
|
|
=2Erisky.biz/r/8f5a8e6e?m=3D1a80b145-9c=
|
|
e5-407e-b496-c57050db16ff" class=3D"po=
|
|
st-title-link post-title-link-left" style=3D"text-decoration: none; display=
|
|
: block; margin-top: 32px; color: #15212A; line-height: 1.1em; text-align: =
|
|
left; overflow-wrap: anywhere;" target=3D"_blank">Risky Bulletin: EU sancti=
|
|
ons three GRU hackers</a>
|
|
</td>
|
|
</tr>
|
|
<tr>
|
|
<td style=3D"font-family: -=
|
|
apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Ar=
|
|
ial, sans-serif, 'Apple Color Emoji', 'Segoe UI Emoji', =
|
|
9;Segoe UI Symbol'; font-size: 18px; vertical-align: top; color: #15212=
|
|
A; width: 100%;" width=3D"100%" valign=3D"top">
|
|
<table class=3D"post-me=
|
|
ta-wrapper" role=3D"presentation" border=3D"0" cellpadding=3D"0" cellspacin=
|
|
g=3D"0" width=3D"100%" style=3D"border-collapse: separate; mso-table-lspace=
|
|
: 0pt; mso-table-rspace: 0pt; width: 100%; padding-bottom: 32px;">
|
|
<tr>
|
|
<td height=3D"2=
|
|
0" class=3D"post-meta post-meta-left" style=3D"font-family: -apple-system, =
|
|
BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-seri=
|
|
f, 'Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI Sym=
|
|
bol'; vertical-align: top; color: #738a94; font-size: 13px; font-weight=
|
|
: 400; text-align: left; padding: 0;" valign=3D"top" align=3D"left">
|
|
By Catalin =
|
|
Cimpanu • <span class=3D"post-meta-date" style=3D"white-space: nowra=
|
|
p;">29 Jan 2025 </span>
|
|
</td>
|
|
<td class=3D"po=
|
|
st-meta post-meta-left view-online desktop" style=3D"font-family: -apple-sy=
|
|
stem, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, san=
|
|
s-serif, 'Apple Color Emoji', 'Segoe UI Emoji', 'Segoe =
|
|
UI Symbol'; vertical-align: top; color: #738a94; font-size: 13px; font-=
|
|
weight: 400; text-align: right;" valign=3D"top" align=3D"right">
|
|
<a href=3D"=
|
|
https://news.risky.biz/r/31d13ecd?m=3D1a80b145-9ce5-407e-b496-c57050db16ff"=
|
|
class=3D"view-online-link" style=3D"word-wrap: none; white-space: nowrap; =
|
|
color: #738a94; overflow-wrap: anywhere; text-decoration: underline;" targe=
|
|
t=3D"_blank">View in browser</a>
|
|
</td>
|
|
</tr>
|
|
<tr class=3D"post-m=
|
|
eta post-meta-left view-online-mobile" style=3D"color: #738a94; font-size: =
|
|
13px; font-weight: 400; text-align: left; display: none;" align=3D"left">
|
|
<td height=3D"2=
|
|
0" class=3D"view-online" style=3D"font-family: -apple-system, BlinkMacSyste=
|
|
mFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-serif, 'Apple=
|
|
Color Emoji', 'Segoe UI Emoji', 'Segoe UI Symbol'; ver=
|
|
tical-align: top; color: #738a94; font-size: 13px; font-weight: 400; text-a=
|
|
lign: center;" valign=3D"top" align=3D"center">
|
|
<a href=3D"=
|
|
https://news.risky.biz/r/dd98dc86?m=3D1a80b145-9ce5-407e-b496-c57050db16ff"=
|
|
class=3D"view-online-link" style=3D"word-wrap: none; white-space: nowrap; =
|
|
color: #738a94; overflow-wrap: anywhere; text-decoration: underline;" targe=
|
|
t=3D"_blank">View in browser</a>
|
|
</td>
|
|
</tr>
|
|
</table>
|
|
</td>
|
|
</tr>
|
|
|
|
<tr class=3D"post-content-row">
|
|
<td class=3D"post-content-sans-=
|
|
serif" style=3D"font-family: -apple-system, BlinkMacSystemFont, 'Segoe =
|
|
UI', Roboto, Helvetica, Arial, sans-serif, 'Apple Color Emoji',=
|
|
'Segoe UI Emoji', 'Segoe UI Symbol'; vertical-align: top; =
|
|
font-size: 17px; line-height: 1.5em; color: #15212A; padding-bottom: 20px; =
|
|
border-bottom: 1px solid #e5eff5; max-width: 600px;" valign=3D"top">
|
|
<!-- POST CONTENT START -->
|
|
<p style=3D"margin: 0 0 1.5=
|
|
em 0; line-height: 1.6em;"><strong style=3D"font-weight: 700;"><em>This new=
|
|
sletter is brought to you by asset inventory and network visibility company=
|
|
 </em></strong><a href=3D"https://news.risky.biz/r/d72f6556?m=3D1a80b1=
|
|
45-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #7=
|
|
27272; text-decoration: underline;" target=3D"_blank"><strong style=3D"font=
|
|
-weight: 700;"><em>runZero</em></strong></a><strong style=3D"font-weight: 7=
|
|
00;"><em>. You can subscribe to an audio version of this newsletter as a po=
|
|
dcast by searching for "Risky Business" in your podcatcher or sub=
|
|
scribing via </em></strong><a href=3D"https://news.risky.biz/r/0781873b?m=
|
|
=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; =
|
|
color: #727272; text-decoration: underline;" target=3D"_blank"><strong styl=
|
|
e=3D"font-weight: 700;"><em>this RSS feed</em></strong></a><strong style=3D=
|
|
"font-weight: 700;"><em>. </em></strong></p><div class=3D"kg-card kg-embed-=
|
|
card" style=3D"margin: 0 0 1.5em; padding: 0;">
|
|
<iframe frameborder=3D"0" style=3D"width: 100%; height: 156px;" srcdoc=
|
|
=3D"
|
|
=20
|
|
<!DOCTYPE html>
|
|
<html>
|
|
<head>
|
|
<title>Risky Business Player</title>
|
|
</head>
|
|
<body>
|
|
|
|
<!-- Include the Google Font Inter -->
|
|
<style>
|
|
@import url("https://fonts.googleapis.com/css2?family=3DInter:wght@400=
|
|
;700&display=3Dswap");
|
|
|
|
body {
|
|
margin: 0px;
|
|
}
|
|
|
|
=2Eaudio-player {
|
|
font-family: "Inter", sans-serif;
|
|
}
|
|
|
|
=2Eicon {
|
|
background-image: url("https://risky.biz/static/img/icons/subscrib=
|
|
e-icons.svg");
|
|
display: block;
|
|
width: 33px;
|
|
height: 33px;
|
|
background-size: 528px 111px;
|
|
}
|
|
|
|
}
|
|
</style>
|
|
|
|
<!-- Audio player -->
|
|
<div class=3D"audio-player" style=3D"display: flex; flex-=
|
|
direction: column; gap: 5px; padding-top: 0px; padding-bottom: 20px; backgr=
|
|
ound: rgb(244, 244, 239); background: linear-gradient(0deg, rgba(244, 244, =
|
|
239, 1) 0%, rgba(244, 244, 239, 0) 100%); border-radius: 8px; border: 1px s=
|
|
olid #d7d7d7; width: calc(100% - 1px) min-width: 350px;">
|
|
<audio class=3D"audioElement" preload=3D"none"&g=
|
|
t;
|
|
<source src=3D"https://dts.podtrac.com/redirect.mp3/media3.=
|
|
risky.biz/RBNEWS382.mp3" type=3D"audio/mpeg">
|
|
Your browser does not support the audio element.
|
|
</audio>
|
|
|
|
<!-- Title -->
|
|
<div style=3D"background: #666666; color: #FEFEFE; font-size: 1=
|
|
4px; padding-left: 5%; padding-right: 5%; padding-top: 10px; padding-bottom=
|
|
: 10px; border-top-left-radius: 8px; border-top-right-radius: 8px; white-sp=
|
|
ace: nowrap; overflow: hidden; text-overflow: ellipsis; margin-bottom: 10px=
|
|
;">
|
|
<a style=3D"color:#FEFEFE; text-decoration: none;" tar=
|
|
get=3D"_new" href=3D"https://risky.biz/RBNEWS382/">R=
|
|
isky Bulletin: EU sanctions three GRU hackers</a>
|
|
</div>
|
|
|
|
<!-- Player Controls and Progress Bar -->
|
|
<div style=3D"display: flex; align-items: center; justify-conte=
|
|
nt: center; gap: 10px; width: 90%; margin: 0 auto;">
|
|
<button type=3D"button" class=3D"playPauseBtn&quo=
|
|
t; style=3D"color: #1e1e1e; background-color: #FAFAFA; font-size: 18px=
|
|
; border: none; padding: 10px; border-radius: 8px; cursor: pointer; height:=
|
|
42px; width: 42px; text-align: center; display: flex; align-items: center;=
|
|
justify-content: center;">&#9654;</button>
|
|
<input type=3D"range" style=3D"flex-grow: 1; -web=
|
|
kit-appearance: none; height: 5px; background: #ddd; border-radius: 8px; ou=
|
|
tline: none; cursor: pointer;" class=3D"progressBar" value=
|
|
=3D"0" min=3D"0" max=3D"100" />
|
|
<span style=3D"font-size: 12px; font-weight: 200;" cla=
|
|
ss=3D"currentTime">0:00</span> /=20
|
|
=20
|
|
=20
|
|
=20
|
|
=20
|
|
<span style=3D"font-size: 12px; font-weight: 200;&qu=
|
|
ot; class=3D"duration">
|
|
6:18
|
|
</span>
|
|
</div>
|
|
|
|
<!-- Subscribe Buttons -->
|
|
<div style=3D"width: 90%; display: flex; justify-content: space=
|
|
-between; align-items: center; padding-left: 5%;">
|
|
<div style=3D"padding-right:20px;" class=3D"subTe=
|
|
xt">
|
|
<strong>Subscribe &nbsp;</strong>
|
|
</div>
|
|
=20
|
|
<div style=3D"display: flex; align-items: center; gap: 6px;=
|
|
margin: 0; flex-grow: 1;" class=3D"subContainer">
|
|
<!-- Apple Podcast Icon -->
|
|
<a href=3D"https://podcasts.apple.com/au/podcast/risky-=
|
|
business-news/id1621305970"
|
|
style=3D"background-position: 48px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon apple-podcast"></a>
|
|
<!-- Overcast Icon -->
|
|
<a href=3D"https://overcast.fm/itunes1621305970"
|
|
style=3D"background-position: 141px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon overcast-podcast"></a>
|
|
|
|
<!-- Pocket Casts Icon -->
|
|
<a href=3D"https://pca.st/yicebxgl"
|
|
style=3D"background-position: 234px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon pocketcast-podcast"></a>
|
|
<!-- Spotify Icon -->
|
|
<a href=3D"https://open.spotify.com/show/0BdExoUZqbGsBY=
|
|
jt6QZl4Q"
|
|
style=3D"background-position: 420px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon spotify-podcast"></a>
|
|
<!-- RSS Icon -->
|
|
<a href=3D"https://risky.biz/feeds/risky-business-news&=
|
|
quot;
|
|
style=3D"background-position: 327px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon rss-podcast"></a>
|
|
</div>
|
|
=20
|
|
|
|
=20
|
|
<a href=3D"https://risky.biz">
|
|
<img src=3D"https://risky.biz/static/img/RB_Site_Logo.svg&=
|
|
quot; alt=3D"Logo"
|
|
style=3D"margin-left: 0; height: 32px; display: block; pa=
|
|
dding-right: 5%;"
|
|
id=3D"logo" class=3D"logo playerLogo">
|
|
</a>
|
|
<script>
|
|
document.addEventListener("DOMContentLoaded", function () {
|
|
const players =3D document.querySelectorAll(".audio-player&quo=
|
|
t;);
|
|
|
|
function resizeElements(player) {
|
|
const logo =3D player.querySelector(".logo");
|
|
const subscribeIcons =3D player.querySelectorAll(".icon&qu=
|
|
ot;);
|
|
const subscribeContainer =3D player.querySelector(".subCon=
|
|
tainer"); // Select subContainer by class
|
|
const subText =3D player.querySelector(".subText"); /=
|
|
/ Select subText by class
|
|
|
|
if (player.offsetWidth <=3D 425) {
|
|
// Hide logo
|
|
if (logo) {
|
|
logo.style.display =3D "none";
|
|
}
|
|
} else if (player.offsetWidth <=3D 500) {
|
|
// Show logo and scale logo and icons to 70%
|
|
if (logo) {
|
|
logo.style.display =3D "block";
|
|
logo.style.transform =3D "scale(0.7)";
|
|
logo.style.transformOrigin =3D "center";
|
|
logo.style.verticalAlign =3D "middle";
|
|
}
|
|
subscribeIcons.forEach(icon =3D> {
|
|
icon.style.transform =3D "scale(0.7)";
|
|
icon.style.transformOrigin =3D "center";
|
|
icon.style.verticalAlign =3D "middle";
|
|
});
|
|
|
|
// Remove padding from subText and set font-size to 12px
|
|
if (subText) {
|
|
subText.style.padding =3D "0";
|
|
subText.style.fontSize =3D "12px";
|
|
}
|
|
|
|
// Set gap in subContainer to 0px
|
|
if (subscribeContainer) {
|
|
subscribeContainer.style.gap =3D "0px";
|
|
}
|
|
} else {
|
|
// Reset scaling, alignment, and visibility
|
|
if (logo) {
|
|
logo.style.display =3D "block";
|
|
logo.style.transform =3D "scale(1)";
|
|
logo.style.verticalAlign =3D "baseline";
|
|
}
|
|
subscribeIcons.forEach(icon =3D> {
|
|
icon.style.transform =3D "scale(1)";
|
|
icon.style.verticalAlign =3D "baseline";
|
|
});
|
|
|
|
// Reset padding and font-size in subText
|
|
if (subText) {
|
|
subText.style.padding =3D "0 20px"; // Defaul=
|
|
t padding
|
|
subText.style.fontSize =3D "inherit"; // Defa=
|
|
ult font-size
|
|
}
|
|
|
|
// Reset gap in subContainer
|
|
if (subscribeContainer) {
|
|
subscribeContainer.style.gap =3D "6px"; // De=
|
|
fault gap
|
|
}
|
|
}
|
|
}
|
|
|
|
function handleResize() {
|
|
players.forEach(player =3D> {
|
|
resizeElements(player);
|
|
});
|
|
}
|
|
|
|
// Run on initial load and resize
|
|
handleResize();
|
|
window.addEventListener("resize", handleResize);
|
|
});
|
|
</script>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
</div>
|
|
</div>
|
|
|
|
|
|
<script>
|
|
// Custom Audio Player
|
|
document.addEventListener("DOMContentLoaded", function () {
|
|
const players =3D document.querySelectorAll(".audio-player");
|
|
|
|
players.forEach(function (player) {
|
|
// Skip if already initialized
|
|
if (player.dataset.initialized =3D=3D=3D "true") return;
|
|
|
|
// Mark player as initialized
|
|
player.dataset.initialized =3D "true";
|
|
=20
|
|
const audio =3D player.querySelector(".audioElement");
|
|
const playPauseBtn =3D player.querySelector(".playPauseBtn&quo=
|
|
t;);
|
|
const progressBar =3D player.querySelector(".progressBar"=
|
|
);
|
|
const currentTimeEl =3D player.querySelector(".currentTime&quo=
|
|
t;);
|
|
const durationEl =3D player.querySelector(".duration");
|
|
|
|
if (!audio || !playPauseBtn || !progressBar || !currentTimeEl || !d=
|
|
urationEl) {
|
|
console.error("One or more player elements not found:"=
|
|
;, { audio, playPauseBtn, progressBar, currentTimeEl, durationEl });
|
|
return;=20
|
|
}
|
|
|
|
playPauseBtn.addEventListener("click", () =3D> {
|
|
if (audio.paused) {
|
|
audio.play();
|
|
playPauseBtn.textContent =3D "⏸";=20
|
|
|
|
// GA4 event for starting audio
|
|
gtag("event", "audio_play", {
|
|
"content_title": "Risky Bulletin: EU s=
|
|
anctions three GRU hackers",
|
|
"content_type": "audio"
|
|
});
|
|
} else {
|
|
audio.pause();
|
|
playPauseBtn.textContent =3D "▶";
|
|
}
|
|
});
|
|
|
|
audio.addEventListener("timeupdate", () =3D> {
|
|
if (audio.duration) {
|
|
progressBar.value =3D (audio.currentTime / audio.duration) =
|
|
* 100;
|
|
currentTimeEl.textContent =3D formatTime(audio.currentTime)=
|
|
;
|
|
}
|
|
});
|
|
|
|
audio.addEventListener("loadedmetadata", () =3D> {
|
|
durationEl.textContent =3D formatTime(audio.duration);
|
|
});
|
|
|
|
progressBar.addEventListener("input", () =3D> {
|
|
if (audio.duration) {
|
|
audio.currentTime =3D (progressBar.value / 100) * audio.dur=
|
|
ation;
|
|
}
|
|
});
|
|
|
|
function formatTime(seconds) {
|
|
const minutes =3D Math.floor(seconds / 60);
|
|
const secs =3D Math.floor(seconds % 60);
|
|
return `${minutes}:${secs < 10 ? "0" : ""=
|
|
;}${secs}`;
|
|
}
|
|
});
|
|
});
|
|
|
|
</script>
|
|
</body>
|
|
</html>
|
|
|
|
|
|
"></iframe>
|
|
</div><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><a href=3D"http=
|
|
s://news.risky.biz/r/6787a62a?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" sty=
|
|
le=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underline;"=
|
|
target=3D"_blank"><span style=3D"white-space: pre-wrap;">https://risky.biz=
|
|
/RBNEWS382/</span></a></p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6=
|
|
em;">The European Union has sanctioned three Russian military hackers for t=
|
|
heir role in cyberattacks against Estonian government agencies in 2020.</p>=
|
|
<p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><a href=3D"https://ne=
|
|
ws.risky.biz/r/5ec63192?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"=
|
|
overflow-wrap: anywhere; color: #727272; text-decoration: underline;" targe=
|
|
t=3D"_blank">Sanctions</a> were levied against <strong style=3D"font-weight=
|
|
: 700;">Yuriy Denisov</strong>, <strong style=3D"font-weight: 700;">Nikolay=
|
|
Korchagin</strong>, and <strong style=3D"font-weight: 700;">Vitaly Shevche=
|
|
nko</strong>.</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;">The =
|
|
three are officers in Unit 29155 in Russia's military intelligence serv=
|
|
ice, also known as the <strong style=3D"font-weight: 700;">GRU</strong>.</p=
|
|
><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;">The <a href=3D"https=
|
|
://news.risky.biz/r/5b2b0d5e?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" styl=
|
|
e=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underline;" =
|
|
target=3D"_blank">EU says</a> the three stole classified information and se=
|
|
nsitive data from at least three Estonian ministries, such as the Ministry =
|
|
of Economic Affairs and Communications, the Ministry of Social Affairs, and=
|
|
the Ministry of Foreign Affairs.</p><p style=3D"margin: 0 0 1.5em 0; line-=
|
|
height: 1.6em;">The sanctions come four months after the Estonian governmen=
|
|
t <a href=3D"https://news.risky.biz/r/0a8501b0?m=3D1a80b145-9ce5-407e-b496-=
|
|
c57050db16ff" style=3D"overflow-wrap: anywhere; color: #727272; text-decora=
|
|
tion: underline;" target=3D"_blank">publicly attributed</a> the 2020 hack t=
|
|
o GRU Unit 29155.</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;">=
|
|
Two of the sanctioned hackers were <a href=3D"https://news.risky.biz/r/26c8=
|
|
6b33?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anyw=
|
|
here; color: #727272; text-decoration: underline;" target=3D"_blank">also i=
|
|
ndicted</a> in September by the US government for a more recent hacking cam=
|
|
paign that targeted NATO countries providing military aid to Ukraine.</p><d=
|
|
iv class=3D"kg-card kg-image-card" style=3D"margin: 0 0 1.5em; padding: 0;"=
|
|
><img src=3D"https://news.risky.biz/content/images/2025/01/GRU.png" class=
|
|
=3D"kg-image" alt loading=3D"lazy" width=3D"600" height=3D"351" style=3D"bo=
|
|
rder: none; -ms-interpolation-mode: bicubic; max-width: 100%; display: bloc=
|
|
k; margin: 0 auto; height: auto; width: auto;"></div><p style=3D"margin: 0 =
|
|
0 1.5em 0; line-height: 1.6em;">The three are part of what is informally co=
|
|
nsidered one of Russia's most elite military intelligence units.</p><p =
|
|
style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><a href=3D"https://news.=
|
|
risky.biz/r/a91c34ec?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"ove=
|
|
rflow-wrap: anywhere; color: #727272; text-decoration: underline;" target=
|
|
=3D"_blank">GRU Unit 29155</a> has operated in secret since 2008, and its m=
|
|
ain objective for most of its existence has been assassinations and sabotag=
|
|
e on foreign soil.</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"=
|
|
>The unit has been linked to explosions at Czech ammo depots in 2014, an at=
|
|
tempted coup in Montenegro in 2016, the 2018 poisoning of former GRU office=
|
|
r Sergei Skripal in the UK, and a 2020 bounty program that paid the Taliban=
|
|
tens of thousands of USD for each US and NATO soldier killed in Afghanista=
|
|
n.</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;">Recent reports =
|
|
have also tentatively linked the unit to the notorious <a href=3D"https://n=
|
|
ews.risky.biz/r/7c7c1b00?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D=
|
|
"overflow-wrap: anywhere; color: #727272; text-decoration: underline;" targ=
|
|
et=3D"_blank">Havana Syndrome</a> that impacted the US diplomats at embassi=
|
|
es across the world.</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em=
|
|
;">A September 2024 <a href=3D"https://news.risky.biz/r/64cdd2fa?m=3D1a80b1=
|
|
45-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #7=
|
|
27272; text-decoration: underline;" target=3D"_blank">UK NCSC report</a> fo=
|
|
und that the unit had also set up a cyber division with offensive cyber ope=
|
|
rations back in 2020—suggesting the Estonian cyberattacks might have=
|
|
been one of its first operations.</p><p style=3D"margin: 0 0 1.5em 0; line=
|
|
-height: 1.6em;">While the group operated in secrecy for most of its life, =
|
|
things changed after Russia invaded Ukraine, with the group taking a far mo=
|
|
re active and visible role. Its main cyber operation was the deployment of =
|
|
the <a href=3D"https://news.risky.biz/r/e9ccd626?m=3D1a80b145-9ce5-407e-b49=
|
|
6-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #727272; text-deco=
|
|
ration: underline;" target=3D"_blank">WhisperGate data wiper</a> ahead of R=
|
|
ussia's invasion of Ukraine as part of an operation that attempted to s=
|
|
abotage and prevent the Ukrainian government from reacting to the Kremlin&#=
|
|
39;s ground invasion.</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6e=
|
|
m;">In infosec nomenclature, the unit's cyber operations are tracked un=
|
|
der codenames such as Ember Bear, Cadet Blizzard, Frozenvista, UNC2589, and=
|
|
UAC-0056.</p><h3 id=3D"risky-business-podcasts" style=3D"margin-top: 0; fo=
|
|
nt-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, H=
|
|
elvetica, Arial, sans-serif, 'Apple Color Emoji', 'Segoe UI Emo=
|
|
ji', 'Segoe UI Symbol'; line-height: 1.11em; font-weight: 700; =
|
|
text-rendering: optimizeLegibility; margin: 1.5em 0 0.5em 0; font-size: 26p=
|
|
x;"><strong style=3D"font-weight: 800;"><em>Risky Business Podcasts</em></s=
|
|
trong></h3><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><em>Risky =
|
|
Business is now on YouTube with video versions of our main podcasts. Below =
|
|
is our latest weekly show with Pat and Adam at the helm!</em></p><div class=
|
|
=3D"kg-card kg-embed-card" style=3D"margin: 0 0 1.5em; padding: 0;"><!--[if=
|
|
!mso !vml]-->
|
|
<a class=3D"kg-video-preview" href=3D"https://news.risky.biz/r/=
|
|
8b375213?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" aria-label=3D"Play video=
|
|
" style=3D"background-color: #1d1f21; background-image: radial-gradient(cir=
|
|
cle at center, #5b5f66, #1d1f21); display: block; overflow-wrap: anywhere; =
|
|
color: #727272; mso-hide: all; text-decoration: none;" target=3D"_blank">
|
|
<table cellpadding=3D"0" cellspacing=3D"0" border=3D"0" wid=
|
|
th=3D"100%" background=3D"https://i.ytimg.com/vi/AsjcZAqdNYw/hqdefault.jpg"=
|
|
role=3D"presentation" style=3D"border-collapse: separate; mso-table-lspace=
|
|
: 0pt; mso-table-rspace: 0pt; width: 100%; background-size: cover; min-heig=
|
|
ht: 200px; background: url('https://i.ytimg.com/vi/AsjcZAqdNYw/hqdefaul=
|
|
t.jpg') left top / cover; mso-hide: all;">
|
|
<tbody><tr style=3D"mso-hide: all">
|
|
<td width=3D"25%" style=3D"font-family: -apple-syst=
|
|
em, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-=
|
|
serif, 'Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI=
|
|
Symbol'; font-size: 18px; vertical-align: top; color: #15212A; visibil=
|
|
ity: hidden; mso-hide: all;" valign=3D"top">
|
|
<img src=3D"https://img.spacergif.org/v1/150x45=
|
|
0/0a/spacer.png" alt width=3D"100%" border=3D"0" style=3D"border: none; -ms=
|
|
-interpolation-mode: bicubic; max-width: 100%; display: block; height: auto=
|
|
; opacity: 0; visibility: hidden; mso-hide: all;" height=3D"auto">
|
|
</td>
|
|
<td width=3D"50%" align=3D"center" valign=3D"middle=
|
|
" style=3D"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI=
|
|
9;, Roboto, Helvetica, Arial, sans-serif, 'Apple Color Emoji', '=
|
|
;Segoe UI Emoji', 'Segoe UI Symbol'; font-size: 18px; color: #1=
|
|
5212A; vertical-align: middle; mso-hide: all;">
|
|
<div class=3D"kg-video-play-button" style=3D"he=
|
|
ight: 2em; width: 3em; margin: 0 auto; border-radius: 10px; padding: 1em 0.=
|
|
8em 0.6em 1em; font-size: 1em; background-color: rgba(0,0,0,0.85); mso-hide=
|
|
: all;"><div style=3D"display: block; width: 0; height: 0; margin: 0 auto; =
|
|
line-height: 0px; border-color: transparent transparent transparent white; =
|
|
border-style: solid; border-width: 0.8em 0 0.8em 1.5em; mso-hide: all;"></d=
|
|
iv></div>
|
|
</td>
|
|
<td width=3D"25%" style=3D"font-family: -apple-syst=
|
|
em, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-=
|
|
serif, 'Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI=
|
|
Symbol'; font-size: 18px; vertical-align: top; color: #15212A; mso-hid=
|
|
e: all;" valign=3D"top"> </td>
|
|
</tr>
|
|
</tbody></table>
|
|
</a>
|
|
<!--[endif]-->
|
|
|
|
<!--[if vml]>
|
|
<v:group xmlns:v=3D"urn:schemas-microsoft-com:vml" xmlns:w=3D"u=
|
|
rn:schemas-microsoft-com:office:word" coordsize=3D"600,450" coordorigin=3D"=
|
|
0,0" href=3D"https://youtu.be/AsjcZAqdNYw" style=3D"width:600px;height:450p=
|
|
x;">
|
|
<v:rect fill=3D"t" stroked=3D"f" style=3D"position:absolute=
|
|
;width:600;height:450;"><v:fill src=3D"https://i.ytimg.com/vi/AsjcZAqdNYw/h=
|
|
qdefault.jpg" type=3D"frame"/></v:rect>
|
|
<v:oval fill=3D"t" strokecolor=3D"white" strokeweight=3D"4p=
|
|
x" style=3D"position:absolute;left:261;top:186;width:78;height:78"><v:fill =
|
|
color=3D"black" opacity=3D"30%" /></v:oval>
|
|
<v:shape coordsize=3D"24,32" path=3D"m,l,32,24,16,xe" fillc=
|
|
olor=3D"white" stroked=3D"f" style=3D"position:absolute;left:289;top:208;wi=
|
|
dth:30;height:34;" />
|
|
</v:group>
|
|
<![endif]--></div><hr style=3D"position: relative; display: blo=
|
|
ck; width: 100%; margin: 3em 0; padding: 0; height: 1px; border: 0; border-=
|
|
top: 1px solid #e5eff5;"><h3 id=3D"breaches-hacks-and-security-incidents" s=
|
|
tyle=3D"margin-top: 0; font-family: -apple-system, BlinkMacSystemFont, '=
|
|
;Segoe UI', Roboto, Helvetica, Arial, sans-serif, 'Apple Color Emoj=
|
|
i', 'Segoe UI Emoji', 'Segoe UI Symbol'; line-height: 1=
|
|
=2E11em; font-weight: 700; text-renderi=
|
|
ng: optimizeLegibility; margin: 1.5em=20=
|
|
0 0.5em 0; font-size: 26px;"><strong style=3D"font-weight: 800;">Breaches, =
|
|
hacks, and security incidents</strong></h3><p style=3D"margin: 0 0 1.5em 0;=
|
|
line-height: 1.6em;"><strong style=3D"font-weight: 700;">DeepSeek cyberatt=
|
|
ack:</strong> Chinese AI company DeepSeek has limited new user registration=
|
|
s after the company experienced what the company described as "<a href=
|
|
=3D"https://news.risky.biz/r/34cdab02?m=3D1a80b145-9ce5-407e-b496-c57050db1=
|
|
6ff" style=3D"overflow-wrap: anywhere; color: #727272; text-decoration: und=
|
|
erline;" target=3D"_blank">large-scale malicious attacks</a>" on its n=
|
|
ewly launched genAI services. The attack took place on the same day the com=
|
|
pany's app overtook ChatGPT on app stores, and as US AI stock prices fe=
|
|
ll by up to 20%. The attack is believed to be a combination of DDoS attacks=
|
|
and API abuse.</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><s=
|
|
trong style=3D"font-weight: 700;">MegaFon cyberattack:</strong> Ukraine'=
|
|
;s military intelligence agency GUR has allegedly carried out disruptive cy=
|
|
berattacks against three Russian telecom providers—MegaFon, Yota, an=
|
|
d NetByNet. [<em>Additional coverage in </em><a href=3D"https://news.risky.=
|
|
biz/r/d70ffbca?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-=
|
|
wrap: anywhere; color: #727272; text-decoration: underline;" target=3D"_bla=
|
|
nk"><em>The New Voice of Ukraine</em></a>]</p><p style=3D"margin: 0 0 1.5em=
|
|
0; line-height: 1.6em;"><strong style=3D"font-weight: 700;">Doxbin leak:</=
|
|
strong> More than 435,000 email addresses shared on Doxbin have leaked and =
|
|
added to the <a href=3D"https://news.risky.biz/r/f2f4ce1a?m=3D1a80b145-9ce5=
|
|
-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #727272; =
|
|
text-decoration: underline;" target=3D"_blank">Have I Been Pwned database</=
|
|
a>.</p><h3 id=3D"general-tech-and-privacy" style=3D"margin-top: 0; font-fam=
|
|
ily: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Helveti=
|
|
ca, Arial, sans-serif, 'Apple Color Emoji', 'Segoe UI Emoji'=
|
|
;, 'Segoe UI Symbol'; line-height: 1.11em; font-weight: 700; text-r=
|
|
endering: optimizeLegibility; margin: 1.5em 0 0.5em 0; font-size: 26px;"><s=
|
|
trong style=3D"font-weight: 800;">General tech and privacy</strong></h3><p =
|
|
style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"font-we=
|
|
ight: 700;">Edge tests scareware blocker:</strong> Microsoft is <a href=3D"=
|
|
https://news.risky.biz/r/1d9bbdaa?m=3D1a80b145-9ce5-407e-b496-c57050db16ff"=
|
|
style=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underli=
|
|
ne;" target=3D"_blank">testing</a> a new Edge security feature designed to =
|
|
detect and block scareware popups. The feature uses machine learning to det=
|
|
ect popups and text typically found on scareware and tech support scams and=
|
|
warn users about the risks. The feature was initially announced during las=
|
|
t year's Microsoft Ignite developer conference.</p><div class=3D"kg-car=
|
|
d kg-image-card" style=3D"margin: 0 0 1.5em; padding: 0;"><img src=3D"https=
|
|
://news.risky.biz/content/images/2025/01/scareware-blocker.webp" class=3D"k=
|
|
g-image" alt loading=3D"lazy" width=3D"600" height=3D"311" style=3D"border:=
|
|
none; -ms-interpolation-mode: bicubic; max-width: 100%; display: block; ma=
|
|
rgin: 0 auto; height: auto; width: auto;"></div><div class=3D"kg-card kg-im=
|
|
age-card" style=3D"margin: 0 0 1.5em; padding: 0;"><img src=3D"https://news=
|
|
=2Erisky.biz/content/images/2025/01/sc=
|
|
areware-alert.png" class=3D"kg-image" a=
|
|
lt loading=3D"lazy" width=3D"600" height=3D"375" style=3D"border: none; -ms=
|
|
-interpolation-mode: bicubic; max-width: 100%; display: block; margin: 0 au=
|
|
to; height: auto; width: auto;"></div><p style=3D"margin: 0 0 1.5em 0; line=
|
|
-height: 1.6em;"><strong style=3D"font-weight: 700;">Bitwarden improves acc=
|
|
ount security:</strong> Password manager app Bitwarden is adding a <a href=
|
|
=3D"https://news.risky.biz/r/f16f7c15?m=3D1a80b145-9ce5-407e-b496-c57050db1=
|
|
6ff" style=3D"overflow-wrap: anywhere; color: #727272; text-decoration: und=
|
|
erline;" target=3D"_blank">new security feature</a> to user accounts where =
|
|
2FA is not enabled. The company will require email verification codes whene=
|
|
ver users log into their account from an unrecognized device. The new featu=
|
|
re is meant to prevent threat actors from adding and using stolen accounts =
|
|
on their own devices.</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6e=
|
|
m;"><strong style=3D"font-weight: 700;">New Signal sync options:</strong> S=
|
|
ecure messaging service Signal will now let users <a href=3D"https://news.r=
|
|
isky.biz/r/df81fcbc?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"over=
|
|
flow-wrap: anywhere; color: #727272; text-decoration: underline;" target=3D=
|
|
"_blank">sync messages</a> across all linked devices.</p><p style=3D"margin=
|
|
: 0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"font-weight: 700;">KuC=
|
|
oin to leave US market:</strong> Cryptocurrency exchange KuCoin has <a href=
|
|
=3D"https://news.risky.biz/r/b0039187?m=3D1a80b145-9ce5-407e-b496-c57050db1=
|
|
6ff" style=3D"overflow-wrap: anywhere; color: #727272; text-decoration: und=
|
|
erline;" target=3D"_blank">reached a settlement</a> with the US Department =
|
|
of Justice and will leave the US market for two years after it was caught o=
|
|
perating an unlicensed money-transmitting business. The company has agreed =
|
|
to pay $297 million, representing a regulatory fine and forfeiture for its =
|
|
failure to implement anti-money laundering (AML) and know-your-customer (KY=
|
|
C) protocols. KuCoin will be allowed to re-enter the US market after fixing=
|
|
all issues and registering with US authorities. KuCoin was one of the worl=
|
|
d's largest crypto exchanges when the Justice Department started an inv=
|
|
estigation into its operations.</p><p style=3D"margin: 0 0 1.5em 0; line-he=
|
|
ight: 1.6em;"><strong style=3D"font-weight: 700;">YouTube hour-long unskipp=
|
|
able ads:</strong> After users started reporting receiving <a href=3D"https=
|
|
://news.risky.biz/r/089d5256?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" styl=
|
|
e=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underline;" =
|
|
target=3D"_blank">60-minute ads</a> on YouTube, Google sent a <a href=3D"ht=
|
|
tps://news.risky.biz/r/00ef6469?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" s=
|
|
tyle=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underline=
|
|
;" target=3D"_blank">statement</a> to journalists that the company is dead =
|
|
serious about going about ad blockers.</p><p style=3D"margin: 0 0 1.5em 0; =
|
|
line-height: 1.6em;"><strong style=3D"font-weight: 700;">Meta takes down Li=
|
|
nux groups:</strong> Starting somewhere around January 19, Meta's AI-ba=
|
|
sed moderation tool <a href=3D"https://news.risky.biz/r/9f17d65e?m=3D1a80b1=
|
|
45-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #7=
|
|
27272; text-decoration: underline;" target=3D"_blank">started flagging</a> =
|
|
Facebook groups for Linux-related discussions as malicious and taking them =
|
|
down.</p><div class=3D"kg-card kg-image-card" style=3D"margin: 0 0 1.5em; p=
|
|
adding: 0;"><img src=3D"https://news.risky.biz/content/images/2025/01/Scott=
|
|
=2Epng" class=3D"kg-image" alt loadin=
|
|
g=3D"lazy" width=3D"597" height=3D"215"=20=
|
|
style=3D"border: none; -ms-interpolation-mode: bicubic; max-width: 100%; di=
|
|
splay: block; margin: 0 auto; height: auto; width: auto;"></div><h3 id=3D"g=
|
|
overnment-politics-and-policy" style=3D"margin-top: 0; font-family: -apple-=
|
|
system, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, s=
|
|
ans-serif, 'Apple Color Emoji', 'Segoe UI Emoji', 'Sego=
|
|
e UI Symbol'; line-height: 1.11em; font-weight: 700; text-rendering: op=
|
|
timizeLegibility; margin: 1.5em 0 0.5em 0; font-size: 26px;"><strong style=
|
|
=3D"font-weight: 800;">Government, politics, and policy</strong></h3><p sty=
|
|
le=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"font-weigh=
|
|
t: 700;">EU plans to ban console sales to Russia:</strong> The EU plans to =
|
|
ban the sales of video game consoles to Russia after reports that the Russi=
|
|
an military had used console kits to control drones used in Ukraine. Accord=
|
|
ing to the <a href=3D"https://news.risky.biz/r/26df52de?m=3D1a80b145-9ce5-4=
|
|
07e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #727272; te=
|
|
xt-decoration: underline;" target=3D"_blank">Financial Times</a>, the ban i=
|
|
s expected to be part of a new sanctions package that the EU will pass next=
|
|
month. Microsoft, Nintendo, and Sony halted sales of new consoles to Russi=
|
|
a after its invasion of Ukraine in 2022. The ban is aimed at companies that=
|
|
re-sell devices to Russia. The Kremlin was expecting a ban and had touted =
|
|
a plan to build its own gaming console for almost a year.</p><p style=3D"ma=
|
|
rgin: 0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"font-weight: 700;"=
|
|
>Poland accuses Russia of buying disinfo over the dark web:</strong> The Po=
|
|
lish government says Russian intelligence services are using the dark web t=
|
|
o recruit Polish citizens to spread disinformation ahead of the country'=
|
|
;s presidential election in May. Citizens are allegedly offered up to  =
|
|
AC;4,000 to spread anti-EU propaganda on social media. Russian intelligence=
|
|
services FSB and GRU are allegedly involved in the campaign, which began a=
|
|
t the start of last year. [<em>Additional coverage in </em><a href=3D"https=
|
|
://news.risky.biz/r/c5af5ce4?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" styl=
|
|
e=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underline;" =
|
|
target=3D"_blank"><em>Euromaidan Press</em></a>]</p><p style=3D"margin: 0 0=
|
|
1.5em 0; line-height: 1.6em;"><strong style=3D"font-weight: 700;">US ROUTE=
|
|
RS Act:</strong> Two US senators have introduced a bill that would instruct=
|
|
the US Department of Commerce to study the national security risks associa=
|
|
ted with routers and modems manufactured overseas. The bill aims to identif=
|
|
y devices that may be under the control of foreign adversary governments an=
|
|
d block their sale in the US. The new bill is named the Removing Our Unsecu=
|
|
re Technologies to Ensure Reliability and Security, or the <a href=3D"https=
|
|
://news.risky.biz/r/4fd231a7?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" styl=
|
|
e=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underline;" =
|
|
target=3D"_blank">ROUTERS Act</a>, and is sponsored by Senators Marsha Blac=
|
|
kburn (R-Tenn.) and Ben Ray Luján (D-N.M.). [<em>Additional coverage i=
|
|
n </em><a href=3D"https://news.risky.biz/r/0253efb6?m=3D1a80b145-9ce5-407e-=
|
|
b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #727272; text-d=
|
|
ecoration: underline;" target=3D"_blank"><em>CyberScoop</em></a>]</p><p sty=
|
|
le=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"font-weigh=
|
|
t: 700;">US Insure Cybersecurity Act:</strong> Two US senators have re-intr=
|
|
oduced the Insure Cybersecurity Act, a bill that would direct the US Nation=
|
|
al Institute of Standards and Technology to create guidelines and clear gui=
|
|
dance of how cybersecurity insurance should work. The guidelines should be =
|
|
available for both issuers, agents, and brokers, but also for their custome=
|
|
rs. [<em>Additional coverage in </em><a href=3D"https://news.risky.biz/r/0d=
|
|
16ae91?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: an=
|
|
ywhere; color: #727272; text-decoration: underline;" target=3D"_blank"><em>=
|
|
CyberScoop</em></a>]</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em=
|
|
;"><strong style=3D"font-weight: 700;">US TP-Link ban coming this year:</st=
|
|
rong> After rumors surfaced last year that the US government was looking in=
|
|
to banning TP-Link, a new leak suggests the ban is expected next year. [<em=
|
|
>Additional coverage in </em><a href=3D"https://news.risky.biz/r/f96ccf69?m=
|
|
=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; =
|
|
color: #727272; text-decoration: underline;" target=3D"_blank"><em>CNBC</em=
|
|
></a>]</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong sty=
|
|
le=3D"font-weight: 700;">French data breach trends:</strong> In its <a href=
|
|
=3D"https://news.risky.biz/r/f62c0085?m=3D1a80b145-9ce5-407e-b496-c57050db1=
|
|
6ff" style=3D"overflow-wrap: anywhere; color: #727272; text-decoration: und=
|
|
erline;" target=3D"_blank">yearly report</a>, France's data protection =
|
|
agency says that most breaches occur due to the same and recurring security=
|
|
flaws and usually take place at third-party contractors.</p><h3 id=3D"spon=
|
|
sor-section" style=3D"margin-top: 0; font-family: -apple-system, BlinkMacSy=
|
|
stemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-serif, 'Ap=
|
|
ple Color Emoji', 'Segoe UI Emoji', 'Segoe UI Symbol'; =
|
|
line-height: 1.11em; font-weight: 700; text-rendering: optimizeLegibility; =
|
|
margin: 1.5em 0 0.5em 0; font-size: 26px;"><strong style=3D"font-weight: 80=
|
|
0;"><em>Sponsor section</em></strong></h3><p style=3D"margin: 0 0 1.5em 0; =
|
|
line-height: 1.6em;"><em>In this Risky Business News sponsor interview, Cat=
|
|
alin Cimpanu talks with runZero founder and CEO HD Moore about the company&=
|
|
#39;s latest capability, a feature called Inside-Out Attack Surface Managem=
|
|
ent that takes internal fingerprints and scans the internet to discover pos=
|
|
sible exposures.</em></p><div class=3D"kg-card kg-embed-card" style=3D"marg=
|
|
in: 0 0 1.5em; padding: 0;">
|
|
<iframe frameborder=3D"0" style=3D"width: 100%; height: 156px;" srcdoc=
|
|
=3D"
|
|
=20
|
|
<!DOCTYPE html>
|
|
<html>
|
|
<head>
|
|
<title>Risky Business Player</title>
|
|
</head>
|
|
<body>
|
|
|
|
<!-- Include the Google Font Inter -->
|
|
<style>
|
|
@import url("https://fonts.googleapis.com/css2?family=3DInter:wght@400=
|
|
;700&display=3Dswap");
|
|
|
|
body {
|
|
margin: 0px;
|
|
}
|
|
|
|
=2Eaudio-player {
|
|
font-family: "Inter", sans-serif;
|
|
}
|
|
|
|
=2Eicon {
|
|
background-image: url("https://risky.biz/static/img/icons/subscrib=
|
|
e-icons.svg");
|
|
display: block;
|
|
width: 33px;
|
|
height: 33px;
|
|
background-size: 528px 111px;
|
|
}
|
|
|
|
}
|
|
</style>
|
|
|
|
<!-- Audio player -->
|
|
<div class=3D"audio-player" style=3D"display: flex; flex-=
|
|
direction: column; gap: 5px; padding-top: 0px; padding-bottom: 20px; backgr=
|
|
ound: rgb(244, 244, 239); background: linear-gradient(0deg, rgba(244, 244, =
|
|
239, 1) 0%, rgba(244, 244, 239, 0) 100%); border-radius: 8px; border: 1px s=
|
|
olid #d7d7d7; width: calc(100% - 1px) min-width: 350px;">
|
|
<audio class=3D"audioElement" preload=3D"none"&g=
|
|
t;
|
|
<source src=3D"https://dts.podtrac.com/redirect.mp3/media3.=
|
|
risky.biz/RBNEWSSI69.mp3" type=3D"audio/mpeg">
|
|
Your browser does not support the audio element.
|
|
</audio>
|
|
|
|
<!-- Title -->
|
|
<div style=3D"background: #666666; color: #FEFEFE; font-size: 1=
|
|
4px; padding-left: 5%; padding-right: 5%; padding-top: 10px; padding-bottom=
|
|
: 10px; border-top-left-radius: 8px; border-top-right-radius: 8px; white-sp=
|
|
ace: nowrap; overflow: hidden; text-overflow: ellipsis; margin-bottom: 10px=
|
|
;">
|
|
<a style=3D"color:#FEFEFE; text-decoration: none;" tar=
|
|
get=3D"_new" href=3D"https://risky.biz/RBNEWSSI69/">=
|
|
Sponsored: runZero on Inside-Out Attack Surface Management</a>
|
|
</div>
|
|
|
|
<!-- Player Controls and Progress Bar -->
|
|
<div style=3D"display: flex; align-items: center; justify-conte=
|
|
nt: center; gap: 10px; width: 90%; margin: 0 auto;">
|
|
<button type=3D"button" class=3D"playPauseBtn&quo=
|
|
t; style=3D"color: #1e1e1e; background-color: #FAFAFA; font-size: 18px=
|
|
; border: none; padding: 10px; border-radius: 8px; cursor: pointer; height:=
|
|
42px; width: 42px; text-align: center; display: flex; align-items: center;=
|
|
justify-content: center;">&#9654;</button>
|
|
<input type=3D"range" style=3D"flex-grow: 1; -web=
|
|
kit-appearance: none; height: 5px; background: #ddd; border-radius: 8px; ou=
|
|
tline: none; cursor: pointer;" class=3D"progressBar" value=
|
|
=3D"0" min=3D"0" max=3D"100" />
|
|
<span style=3D"font-size: 12px; font-weight: 200;" cla=
|
|
ss=3D"currentTime">0:00</span> /=20
|
|
=20
|
|
=20
|
|
=20
|
|
=20
|
|
<span style=3D"font-size: 12px; font-weight: 200;&qu=
|
|
ot; class=3D"duration">
|
|
10:11
|
|
</span>
|
|
</div>
|
|
|
|
<!-- Subscribe Buttons -->
|
|
<div style=3D"width: 90%; display: flex; justify-content: space=
|
|
-between; align-items: center; padding-left: 5%;">
|
|
<div style=3D"padding-right:20px;" class=3D"subTe=
|
|
xt">
|
|
<strong>Subscribe &nbsp;</strong>
|
|
</div>
|
|
=20
|
|
<div style=3D"display: flex; align-items: center; gap: 6px;=
|
|
margin: 0; flex-grow: 1;" class=3D"subContainer">
|
|
<!-- Apple Podcast Icon -->
|
|
<a href=3D"https://podcasts.apple.com/au/podcast/risky-=
|
|
business-news/id1621305970"
|
|
style=3D"background-position: 48px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon apple-podcast"></a>
|
|
<!-- Overcast Icon -->
|
|
<a href=3D"https://overcast.fm/itunes1621305970"
|
|
style=3D"background-position: 141px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon overcast-podcast"></a>
|
|
|
|
<!-- Pocket Casts Icon -->
|
|
<a href=3D"https://pca.st/yicebxgl"
|
|
style=3D"background-position: 234px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon pocketcast-podcast"></a>
|
|
<!-- Spotify Icon -->
|
|
<a href=3D"https://open.spotify.com/show/0BdExoUZqbGsBY=
|
|
jt6QZl4Q"
|
|
style=3D"background-position: 420px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon spotify-podcast"></a>
|
|
<!-- RSS Icon -->
|
|
<a href=3D"https://risky.biz/feeds/risky-business-news&=
|
|
quot;
|
|
style=3D"background-position: 327px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon rss-podcast"></a>
|
|
</div>
|
|
=20
|
|
|
|
=20
|
|
<a href=3D"https://risky.biz">
|
|
<img src=3D"https://risky.biz/static/img/RB_Site_Logo.svg&=
|
|
quot; alt=3D"Logo"
|
|
style=3D"margin-left: 0; height: 32px; display: block; pa=
|
|
dding-right: 5%;"
|
|
id=3D"logo" class=3D"logo playerLogo">
|
|
</a>
|
|
<script>
|
|
document.addEventListener("DOMContentLoaded", function () {
|
|
const players =3D document.querySelectorAll(".audio-player&quo=
|
|
t;);
|
|
|
|
function resizeElements(player) {
|
|
const logo =3D player.querySelector(".logo");
|
|
const subscribeIcons =3D player.querySelectorAll(".icon&qu=
|
|
ot;);
|
|
const subscribeContainer =3D player.querySelector(".subCon=
|
|
tainer"); // Select subContainer by class
|
|
const subText =3D player.querySelector(".subText"); /=
|
|
/ Select subText by class
|
|
|
|
if (player.offsetWidth <=3D 425) {
|
|
// Hide logo
|
|
if (logo) {
|
|
logo.style.display =3D "none";
|
|
}
|
|
} else if (player.offsetWidth <=3D 500) {
|
|
// Show logo and scale logo and icons to 70%
|
|
if (logo) {
|
|
logo.style.display =3D "block";
|
|
logo.style.transform =3D "scale(0.7)";
|
|
logo.style.transformOrigin =3D "center";
|
|
logo.style.verticalAlign =3D "middle";
|
|
}
|
|
subscribeIcons.forEach(icon =3D> {
|
|
icon.style.transform =3D "scale(0.7)";
|
|
icon.style.transformOrigin =3D "center";
|
|
icon.style.verticalAlign =3D "middle";
|
|
});
|
|
|
|
// Remove padding from subText and set font-size to 12px
|
|
if (subText) {
|
|
subText.style.padding =3D "0";
|
|
subText.style.fontSize =3D "12px";
|
|
}
|
|
|
|
// Set gap in subContainer to 0px
|
|
if (subscribeContainer) {
|
|
subscribeContainer.style.gap =3D "0px";
|
|
}
|
|
} else {
|
|
// Reset scaling, alignment, and visibility
|
|
if (logo) {
|
|
logo.style.display =3D "block";
|
|
logo.style.transform =3D "scale(1)";
|
|
logo.style.verticalAlign =3D "baseline";
|
|
}
|
|
subscribeIcons.forEach(icon =3D> {
|
|
icon.style.transform =3D "scale(1)";
|
|
icon.style.verticalAlign =3D "baseline";
|
|
});
|
|
|
|
// Reset padding and font-size in subText
|
|
if (subText) {
|
|
subText.style.padding =3D "0 20px"; // Defaul=
|
|
t padding
|
|
subText.style.fontSize =3D "inherit"; // Defa=
|
|
ult font-size
|
|
}
|
|
|
|
// Reset gap in subContainer
|
|
if (subscribeContainer) {
|
|
subscribeContainer.style.gap =3D "6px"; // De=
|
|
fault gap
|
|
}
|
|
}
|
|
}
|
|
|
|
function handleResize() {
|
|
players.forEach(player =3D> {
|
|
resizeElements(player);
|
|
});
|
|
}
|
|
|
|
// Run on initial load and resize
|
|
handleResize();
|
|
window.addEventListener("resize", handleResize);
|
|
});
|
|
</script>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
</div>
|
|
</div>
|
|
|
|
|
|
<script>
|
|
// Custom Audio Player
|
|
document.addEventListener("DOMContentLoaded", function () {
|
|
const players =3D document.querySelectorAll(".audio-player");
|
|
|
|
players.forEach(function (player) {
|
|
// Skip if already initialized
|
|
if (player.dataset.initialized =3D=3D=3D "true") return;
|
|
|
|
// Mark player as initialized
|
|
player.dataset.initialized =3D "true";
|
|
=20
|
|
const audio =3D player.querySelector(".audioElement");
|
|
const playPauseBtn =3D player.querySelector(".playPauseBtn&quo=
|
|
t;);
|
|
const progressBar =3D player.querySelector(".progressBar"=
|
|
);
|
|
const currentTimeEl =3D player.querySelector(".currentTime&quo=
|
|
t;);
|
|
const durationEl =3D player.querySelector(".duration");
|
|
|
|
if (!audio || !playPauseBtn || !progressBar || !currentTimeEl || !d=
|
|
urationEl) {
|
|
console.error("One or more player elements not found:"=
|
|
;, { audio, playPauseBtn, progressBar, currentTimeEl, durationEl });
|
|
return;=20
|
|
}
|
|
|
|
playPauseBtn.addEventListener("click", () =3D> {
|
|
if (audio.paused) {
|
|
audio.play();
|
|
playPauseBtn.textContent =3D "⏸";=20
|
|
|
|
// GA4 event for starting audio
|
|
gtag("event", "audio_play", {
|
|
"content_title": "Sponsored: runZero o=
|
|
n Inside-Out Attack Surface Management",
|
|
"content_type": "audio"
|
|
});
|
|
} else {
|
|
audio.pause();
|
|
playPauseBtn.textContent =3D "▶";
|
|
}
|
|
});
|
|
|
|
audio.addEventListener("timeupdate", () =3D> {
|
|
if (audio.duration) {
|
|
progressBar.value =3D (audio.currentTime / audio.duration) =
|
|
* 100;
|
|
currentTimeEl.textContent =3D formatTime(audio.currentTime)=
|
|
;
|
|
}
|
|
});
|
|
|
|
audio.addEventListener("loadedmetadata", () =3D> {
|
|
durationEl.textContent =3D formatTime(audio.duration);
|
|
});
|
|
|
|
progressBar.addEventListener("input", () =3D> {
|
|
if (audio.duration) {
|
|
audio.currentTime =3D (progressBar.value / 100) * audio.dur=
|
|
ation;
|
|
}
|
|
});
|
|
|
|
function formatTime(seconds) {
|
|
const minutes =3D Math.floor(seconds / 60);
|
|
const secs =3D Math.floor(seconds % 60);
|
|
return `${minutes}:${secs < 10 ? "0" : ""=
|
|
;}${secs}`;
|
|
}
|
|
});
|
|
});
|
|
|
|
</script>
|
|
</body>
|
|
</html>
|
|
|
|
|
|
"></iframe>
|
|
</div><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><a href=3D"http=
|
|
s://news.risky.biz/r/48914ced?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" sty=
|
|
le=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underline;"=
|
|
target=3D"_blank"><span style=3D"white-space: pre-wrap;">https://risky.biz=
|
|
/RBNEWSSI69/</span></a></p><h3 id=3D"arrests-cybercrime-and-threat-intel" s=
|
|
tyle=3D"margin-top: 0; font-family: -apple-system, BlinkMacSystemFont, '=
|
|
;Segoe UI', Roboto, Helvetica, Arial, sans-serif, 'Apple Color Emoj=
|
|
i', 'Segoe UI Emoji', 'Segoe UI Symbol'; line-height: 1=
|
|
=2E11em; font-weight: 700; text-renderi=
|
|
ng: optimizeLegibility; margin: 1.5em=20=
|
|
0 0.5em 0; font-size: 26px;"><strong style=3D"font-weight: 800;">Arrests, c=
|
|
ybercrime, and threat intel</strong></h3><p style=3D"margin: 0 0 1.5em 0; l=
|
|
ine-height: 1.6em;"><strong style=3D"font-weight: 700;">OTP Agency admins s=
|
|
entenced:</strong> A UK judge has <a href=3D"https://news.risky.biz/r/dd2c3=
|
|
e3f?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywh=
|
|
ere; color: #727272; text-decoration: underline;" target=3D"_blank">sentenc=
|
|
ed to prison</a> the three administrators of <a href=3D"https://news.risky.=
|
|
biz/r/7a3e72cd?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-=
|
|
wrap: anywhere; color: #727272; text-decoration: underline;" target=3D"_bla=
|
|
nk">OTP Agency</a>, a web service that allowed cybercriminals to intercept =
|
|
one-time passcodes. One administrator was sentenced to two years and eight =
|
|
months, while the other two received a one-year sentence. The three were ar=
|
|
rested in March 2021, a month after the site was featured in a <a href=3D"h=
|
|
ttps://news.risky.biz/r/c0641d96?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" =
|
|
style=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underlin=
|
|
e;" target=3D"_blank">Brian Krebs article</a> on the rising market for OTP =
|
|
token thefts. The OTP Agency service allowed threat actors to enter a victi=
|
|
m's phone number, initiate a call posing as a bank, and request victims=
|
|
to share an OTP token from their banking app.</p><div class=3D"kg-card kg-=
|
|
image-card" style=3D"margin: 0 0 1.5em; padding: 0;"><img src=3D"https://ne=
|
|
ws.risky.biz/content/images/2025/01/OTP.png" class=3D"kg-image" alt loading=
|
|
=3D"lazy" width=3D"563" height=3D"285" style=3D"border: none; -ms-interpola=
|
|
tion-mode: bicubic; max-width: 100%; display: block; margin: 0 auto; height=
|
|
: auto; width: auto;"></div><p style=3D"margin: 0 0 1.5em 0; line-height: 1=
|
|
=2E6em;"><strong style=3D"font-weight: 7=
|
|
00;">Major sextortionist extradited t=
|
|
o US:</strong> US officials have <a href=3D"https://news.risky.biz/r/6d443d=
|
|
be?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" rel=3D"noreferrer" style=3D"ov=
|
|
erflow-wrap: anywhere; color: #727272; text-decoration: underline;" target=
|
|
=3D"_blank">extradited</a> a 24-year-old Nigerian man for a sextortion sche=
|
|
me that resulted in financial losses and even the death by suicide of a min=
|
|
or. Officials say Hassanbunhussein Abolore Lawal is responsible for the dea=
|
|
th of Gavin Guffey, a 17-year-old from Rock Hill who took his life in July =
|
|
2022. Lawal posed as women online to lure victims into private chats and se=
|
|
nd sexually explicit images of themselves. The suspect used the images to e=
|
|
xtort victims for money. Lawal faces life in prison on multiple charges, in=
|
|
cluding child exploitation.</p><p style=3D"margin: 0 0 1.5em 0; line-height=
|
|
: 1.6em;"><strong style=3D"font-weight: 700;">GDLockerSec group:</strong> K=
|
|
ELA has published a profile on <a href=3D"https://news.risky.biz/r/9bb9d3ab=
|
|
?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere=
|
|
; color: #727272; text-decoration: underline;" target=3D"_blank">GDLockerSe=
|
|
c</a>, a group that emerged this month and started encrypting AWS buckets a=
|
|
nd asking victims for ransoms.</p><blockquote style=3D"margin: 0; padding: =
|
|
0; border-left: #727272 2px solid; font-size: 17px; font-weight: 500; line-=
|
|
height: 1.6em; letter-spacing: -0.2px;"><p style=3D"line-height: 1.6em; mar=
|
|
gin: 2em 25px; font-size: 1em; padding: 0;"><em>"KELA's investigat=
|
|
ion indicates that GDLockerSec is an amateur group that relies heavily on e=
|
|
xaggerated claims to inflate its reputation within the cybercrime ecosystem=
|
|
=2E The group's tactics suggest a l=
|
|
ack of sophistication, with poor opera=
|
|
tional security, copying another ransomware website, and unverified claims =
|
|
being a recurring pattern in their activities. Their reliance on self-promo=
|
|
tion, rather than verifiable achievements, underscores their struggle to ga=
|
|
in legitimacy among more established ransomware groups. Further analysis po=
|
|
ints to potential ties to both Morocco and Algeria, as inferred from user a=
|
|
liases, messaging activity, and possible geographical indicators linked to =
|
|
the group's members."</em></p></blockquote><p style=3D"margin: 0 0=
|
|
1.5em 0; line-height: 1.6em;"><strong style=3D"font-weight: 700;">Accounts=
|
|
for sale market:</strong> DomainTools looks at online cybercrime networks =
|
|
using hijacked websites to promote their <a href=3D"https://news.risky.biz/=
|
|
r/094cb7f8?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap=
|
|
: anywhere; color: #727272; text-decoration: underline;" target=3D"_blank">=
|
|
accounts-for-sale services</a>.</p><div class=3D"kg-card kg-image-card" sty=
|
|
le=3D"margin: 0 0 1.5em; padding: 0;"><img src=3D"https://news.risky.biz/co=
|
|
ntent/images/2025/01/Reddit.webp" class=3D"kg-image" alt loading=3D"lazy" w=
|
|
idth=3D"512" height=3D"384" style=3D"border: none; -ms-interpolation-mode: =
|
|
bicubic; max-width: 100%; display: block; margin: 0 auto; height: auto; wid=
|
|
th: auto;"></div><h3 id=3D"malware-technical-reports" style=3D"margin-top: =
|
|
0; font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Robo=
|
|
to, Helvetica, Arial, sans-serif, 'Apple Color Emoji', 'Segoe U=
|
|
I Emoji', 'Segoe UI Symbol'; line-height: 1.11em; font-weight: =
|
|
700; text-rendering: optimizeLegibility; margin: 1.5em 0 0.5em 0; font-size=
|
|
: 26px;"><strong style=3D"font-weight: 800;">Malware technical reports</str=
|
|
ong></h3><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong styl=
|
|
e=3D"font-weight: 700;">Hellcat ransomware:</strong> Cato Networks looks at=
|
|
a new RaaS platform named <a href=3D"https://news.risky.biz/r/d3adbe81?m=
|
|
=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; =
|
|
color: #727272; text-decoration: underline;" target=3D"_blank">Hellcat</a> =
|
|
that launched last October and has already listed close to a dozen victims =
|
|
on its leak site.</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;">=
|
|
<strong style=3D"font-weight: 700;">Arcus Media ransomware:</strong> Halcyo=
|
|
n researchers have published an analysis of a new RaaS platform named <a hr=
|
|
ef=3D"https://news.risky.biz/r/a6523ba6?m=3D1a80b145-9ce5-407e-b496-c57050d=
|
|
b16ff" style=3D"overflow-wrap: anywhere; color: #727272; text-decoration: u=
|
|
nderline;" target=3D"_blank">Arcus Media</a>. The group launched in April 2=
|
|
024 and runs a very private affiliate program.</p><div class=3D"kg-card kg-=
|
|
image-card" style=3D"margin: 0 0 1.5em; padding: 0;"><img src=3D"https://ne=
|
|
ws.risky.biz/content/images/2025/01/Arcus.png" class=3D"kg-image" alt loadi=
|
|
ng=3D"lazy" width=3D"600" height=3D"411" style=3D"border: none; -ms-interpo=
|
|
lation-mode: bicubic; max-width: 100%; display: block; margin: 0 auto; heig=
|
|
ht: auto; width: auto;"></div><p style=3D"margin: 0 0 1.5em 0; line-height:=
|
|
1.6em;"><strong style=3D"font-weight: 700;">CS to Lockbit:</strong> The DF=
|
|
IR Report team has published an <a href=3D"https://news.risky.biz/r/8842d99=
|
|
4?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywher=
|
|
e; color: #727272; text-decoration: underline;" target=3D"_blank">analysis<=
|
|
/a> of a Lockbit ransomware infection that came in via an initial infection=
|
|
with Cobalt Strike.</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em=
|
|
;"><strong style=3D"font-weight: 700;">Windows Locker (XDS):</strong> CyFir=
|
|
ma researchers have spotted a new ransomware strain going by the boring nam=
|
|
e of <a href=3D"https://news.risky.biz/r/a36cf1ed?m=3D1a80b145-9ce5-407e-b4=
|
|
96-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #727272; text-dec=
|
|
oration: underline;" target=3D"_blank">Windows Locker</a>, sometimes referr=
|
|
ed to as the XDS.</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;">=
|
|
<strong style=3D"font-weight: 700;">ODAT:</strong> Trustwave has published =
|
|
a breakdown of how the <a href=3D"https://news.risky.biz/r/6a389b2d?m=3D1a8=
|
|
0b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color:=
|
|
#727272; text-decoration: underline;" target=3D"_blank">ODAT</a> (Oracle D=
|
|
atabase Attacking Tool) malware works to exploit and steal data from Oracle=
|
|
DBs.</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong styl=
|
|
e=3D"font-weight: 700;">Aquabot:</strong> Akamai researchers have found a <=
|
|
a href=3D"https://news.risky.biz/r/4c5a456b?m=3D1a80b145-9ce5-407e-b496-c57=
|
|
050db16ff" style=3D"overflow-wrap: anywhere; color: #727272; text-decoratio=
|
|
n: underline;" target=3D"_blank">new version</a> of the Aquabot IoT malware=
|
|
(a Mirai variant) that is currently exploiting Mitel SIP phones using <a h=
|
|
ref=3D"https://news.risky.biz/r/a1b64966?m=3D1a80b145-9ce5-407e-b496-c57050=
|
|
db16ff" style=3D"overflow-wrap: anywhere; color: #727272; text-decoration: =
|
|
underline;" target=3D"_blank">CVE-2024-41710</a>, a command injection vulne=
|
|
rability that affects Mitel models.</p><blockquote style=3D"margin: 0; padd=
|
|
ing: 0; border-left: #727272 2px solid; font-size: 17px; font-weight: 500; =
|
|
line-height: 1.6em; letter-spacing: -0.2px;"><p style=3D"line-height: 1.6em=
|
|
; margin: 2em 25px; font-size: 1em; padding: 0;"><em>"<strong style=3D=
|
|
"font-weight: 700;">This malware exhibits a behavior we have never before s=
|
|
een with a Mirai variant</strong>: a function (report_kill) to report back =
|
|
to the command and control (C2) when a kill signal was caught on the infect=
|
|
ed device. We have not seen any response from the C2 as of the date of this=
|
|
blog post."</em></p></blockquote><p style=3D"margin: 0 0 1.5em 0; lin=
|
|
e-height: 1.6em;"><strong style=3D"font-weight: 700;">TorNet:</strong> Cisc=
|
|
o Talos has discovered a new backdoor named <a href=3D"https://news.risky.b=
|
|
iz/r/7cf1e9cc?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-w=
|
|
rap: anywhere; color: #727272; text-decoration: underline;" target=3D"_blan=
|
|
k">TorNet</a>. The malware is part of a campaign from a known financially m=
|
|
otivated malspam group. It's obviously called TorNet because it uses To=
|
|
r for its C&C servers.</p><blockquote style=3D"margin: 0; padding: 0; b=
|
|
order-left: #727272 2px solid; font-size: 17px; font-weight: 500; line-heig=
|
|
ht: 1.6em; letter-spacing: -0.2px;"><p style=3D"line-height: 1.6em; margin:=
|
|
2em 25px; font-size: 1em; padding: 0;"><em>"The actor also disconnect=
|
|
s the victim machine from the network before dropping the payload and then =
|
|
connects it back to the network, allowing them to evade detection by cloud =
|
|
antimalware solutions."</em></p></blockquote><p style=3D"margin: 0 0 1=
|
|
=2E5em 0; line-height: 1.6em;"><strong=
|
|
style=3D"font-weight: 700;">Phorpiex:<=
|
|
/strong> The <a href=3D"https://news.risky.biz/r/32636164?m=3D1a80b145-9ce5=
|
|
-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #727272; =
|
|
text-decoration: underline;" target=3D"_blank">Phorpiex (Trik) malware</a> =
|
|
is still alive and delivering Lockbit ransomware payloads to infected syste=
|
|
ms.</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong style=
|
|
=3D"font-weight: 700;">Xloader:</strong> Zscaler researchers have published=
|
|
<a href=3D"https://news.risky.biz/r/79c4f451?m=3D1a80b145-9ce5-407e-b496-c=
|
|
57050db16ff" style=3D"overflow-wrap: anywhere; color: #727272; text-decorat=
|
|
ion: underline;" target=3D"_blank">part one</a> of their analysis of v6 and=
|
|
v7 of the Xloader malware.</p><div class=3D"kg-card kg-image-card" style=
|
|
=3D"margin: 0 0 1.5em; padding: 0;"><img src=3D"https://news.risky.biz/cont=
|
|
ent/images/2025/01/Xloader.png" class=3D"kg-image" alt loading=3D"lazy" wid=
|
|
th=3D"600" height=3D"292" style=3D"border: none; -ms-interpolation-mode: bi=
|
|
cubic; max-width: 100%; display: block; margin: 0 auto; height: auto; width=
|
|
: auto;"></div><h3 id=3D"sponsor-section-1" style=3D"margin-top: 0; font-fa=
|
|
mily: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvet=
|
|
ica, Arial, sans-serif, 'Apple Color Emoji', 'Segoe UI Emoji=
|
|
9;, 'Segoe UI Symbol'; line-height: 1.11em; font-weight: 700; text-=
|
|
rendering: optimizeLegibility; margin: 1.5em 0 0.5em 0; font-size: 26px;"><=
|
|
strong style=3D"font-weight: 800;"><em>Sponsor section</em></strong></h3><p=
|
|
style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><em>Senior Sales Engine=
|
|
er Ali Cheikh demonstrates runZero to Risky Business host Patrick Gray. run=
|
|
Zero is a cyber asset management tool that combines active scanning, passiv=
|
|
e discovery, and API integrations to discover IT, OT, and IoT assets (both =
|
|
managed and unmanaged) across your network, including cloud, mobile, and re=
|
|
mote environments.</em></p><div class=3D"kg-card kg-embed-card" style=3D"ma=
|
|
rgin: 0 0 1.5em; padding: 0;"><!--[if !mso !vml]-->
|
|
<a class=3D"kg-video-preview" href=3D"https://news.risky.biz/r/=
|
|
e28f1de4?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" aria-label=3D"Play video=
|
|
" style=3D"background-color: #1d1f21; background-image: radial-gradient(cir=
|
|
cle at center, #5b5f66, #1d1f21); display: block; overflow-wrap: anywhere; =
|
|
color: #727272; mso-hide: all; text-decoration: none;" target=3D"_blank">
|
|
<table cellpadding=3D"0" cellspacing=3D"0" border=3D"0" wid=
|
|
th=3D"100%" background=3D"https://i.ytimg.com/vi/HFKlipfI0AM/hqdefault.jpg"=
|
|
role=3D"presentation" style=3D"border-collapse: separate; mso-table-lspace=
|
|
: 0pt; mso-table-rspace: 0pt; width: 100%; background-size: cover; min-heig=
|
|
ht: 200px; background: url('https://i.ytimg.com/vi/HFKlipfI0AM/hqdefaul=
|
|
t.jpg') left top / cover; mso-hide: all;">
|
|
<tbody><tr style=3D"mso-hide: all">
|
|
<td width=3D"25%" style=3D"font-family: -apple-syst=
|
|
em, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-=
|
|
serif, 'Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI=
|
|
Symbol'; font-size: 18px; vertical-align: top; color: #15212A; visibil=
|
|
ity: hidden; mso-hide: all;" valign=3D"top">
|
|
<img src=3D"https://img.spacergif.org/v1/150x45=
|
|
0/0a/spacer.png" alt width=3D"100%" border=3D"0" style=3D"border: none; -ms=
|
|
-interpolation-mode: bicubic; max-width: 100%; display: block; height: auto=
|
|
; opacity: 0; visibility: hidden; mso-hide: all;" height=3D"auto">
|
|
</td>
|
|
<td width=3D"50%" align=3D"center" valign=3D"middle=
|
|
" style=3D"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI=
|
|
9;, Roboto, Helvetica, Arial, sans-serif, 'Apple Color Emoji', '=
|
|
;Segoe UI Emoji', 'Segoe UI Symbol'; font-size: 18px; color: #1=
|
|
5212A; vertical-align: middle; mso-hide: all;">
|
|
<div class=3D"kg-video-play-button" style=3D"he=
|
|
ight: 2em; width: 3em; margin: 0 auto; border-radius: 10px; padding: 1em 0.=
|
|
8em 0.6em 1em; font-size: 1em; background-color: rgba(0,0,0,0.85); mso-hide=
|
|
: all;"><div style=3D"display: block; width: 0; height: 0; margin: 0 auto; =
|
|
line-height: 0px; border-color: transparent transparent transparent white; =
|
|
border-style: solid; border-width: 0.8em 0 0.8em 1.5em; mso-hide: all;"></d=
|
|
iv></div>
|
|
</td>
|
|
<td width=3D"25%" style=3D"font-family: -apple-syst=
|
|
em, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-=
|
|
serif, 'Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI=
|
|
Symbol'; font-size: 18px; vertical-align: top; color: #15212A; mso-hid=
|
|
e: all;" valign=3D"top"> </td>
|
|
</tr>
|
|
</tbody></table>
|
|
</a>
|
|
<!--[endif]-->
|
|
|
|
<!--[if vml]>
|
|
<v:group xmlns:v=3D"urn:schemas-microsoft-com:vml" xmlns:w=3D"u=
|
|
rn:schemas-microsoft-com:office:word" coordsize=3D"600,450" coordorigin=3D"=
|
|
0,0" href=3D"https://www.youtube.com/watch?v=3DHFKlipfI0AM" style=3D"width:=
|
|
600px;height:450px;">
|
|
<v:rect fill=3D"t" stroked=3D"f" style=3D"position:absolute=
|
|
;width:600;height:450;"><v:fill src=3D"https://i.ytimg.com/vi/HFKlipfI0AM/h=
|
|
qdefault.jpg" type=3D"frame"/></v:rect>
|
|
<v:oval fill=3D"t" strokecolor=3D"white" strokeweight=3D"4p=
|
|
x" style=3D"position:absolute;left:261;top:186;width:78;height:78"><v:fill =
|
|
color=3D"black" opacity=3D"30%" /></v:oval>
|
|
<v:shape coordsize=3D"24,32" path=3D"m,l,32,24,16,xe" fillc=
|
|
olor=3D"white" stroked=3D"f" style=3D"position:absolute;left:289;top:208;wi=
|
|
dth:30;height:34;" />
|
|
</v:group>
|
|
<![endif]--></div><h3 id=3D"apts-cyber-espionage-and-info-ops" =
|
|
style=3D"margin-top: 0; font-family: -apple-system, BlinkMacSystemFont, =
|
|
9;Segoe UI', Roboto, Helvetica, Arial, sans-serif, 'Apple Color Emo=
|
|
ji', 'Segoe UI Emoji', 'Segoe UI Symbol'; line-height: =
|
|
1.11em; font-weight: 700; text-rendering: optimizeLegibility; margin: 1.5em=
|
|
0 0.5em 0; font-size: 26px;"><strong style=3D"font-weight: 800;">APTs, cyb=
|
|
er-espionage, and info-ops</strong></h3><p style=3D"margin: 0 0 1.5em 0; li=
|
|
ne-height: 1.6em;"><strong style=3D"font-weight: 700;">APT-C-60 (DarkHotel)=
|
|
:</strong> Qihoo 360 has published a report on <a href=3D"https://news.risk=
|
|
y.biz/r/f42121a3?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflo=
|
|
w-wrap: anywhere; color: #727272; text-decoration: underline;" target=3D"_b=
|
|
lank">APT-C-60</a>, a South Korean APT group also known as DarkHotel and Ps=
|
|
eudo Hunter. The report covers newer malware samples used by the group in r=
|
|
ecent operations.</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;">=
|
|
<strong style=3D"font-weight: 700;">ScatterBrain:</strong> Google Mandiant =
|
|
has published a technical analysis of <a href=3D"https://news.risky.biz/r/0=
|
|
cb921ef?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: a=
|
|
nywhere; color: #727272; text-decoration: underline;" target=3D"_blank">Sca=
|
|
tterBrain</a>, a code obfuscation toolkit used by APT41 for its POISONPLUG.=
|
|
SHADOW backdoor.</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><=
|
|
strong style=3D"font-weight: 700;">UAC-0063:</strong> Bitdefender has spott=
|
|
ed a new cyber-espionage campaign linked to Russian cyber-espionage group <=
|
|
a href=3D"https://news.risky.biz/r/67f0fb2e?m=3D1a80b145-9ce5-407e-b496-c57=
|
|
050db16ff" style=3D"overflow-wrap: anywhere; color: #727272; text-decoratio=
|
|
n: underline;" target=3D"_blank">UAC-0063</a> that targets organizations ac=
|
|
ross Central Asia and European countries such as Germany, Romania, the UK, =
|
|
and the Netherlands. The attacks used weaponized Microsoft Word documents, =
|
|
HATVIBE malware loader, custom-built malware, and other sophisticated techn=
|
|
iques to infiltrate government institutions and embassies. Sekoia has also =
|
|
<a href=3D"https://news.risky.biz/r/974f7a0e?m=3D1a80b145-9ce5-407e-b496-c5=
|
|
7050db16ff" style=3D"overflow-wrap: anywhere; color: #727272; text-decorati=
|
|
on: underline;" target=3D"_blank">published</a> a report on the same campai=
|
|
gn, too.</p><div class=3D"kg-card kg-image-card" style=3D"margin: 0 0 1.5em=
|
|
; padding: 0;"><img src=3D"https://news.risky.biz/content/images/2025/01/UA=
|
|
C.png" class=3D"kg-image" alt loading=3D"lazy" width=3D"600" height=3D"233"=
|
|
style=3D"border: none; -ms-interpolation-mode: bicubic; max-width: 100%; d=
|
|
isplay: block; margin: 0 auto; height: auto; width: auto;"></div><h3 id=3D"=
|
|
vulnerabilities-security-research-and-bug-bounty" style=3D"margin-top: 0; f=
|
|
ont-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, =
|
|
Helvetica, Arial, sans-serif, 'Apple Color Emoji', 'Segoe UI Em=
|
|
oji', 'Segoe UI Symbol'; line-height: 1.11em; font-weight: 700;=
|
|
text-rendering: optimizeLegibility; margin: 1.5em 0 0.5em 0; font-size: 26=
|
|
px;"><strong style=3D"font-weight: 800;">Vulnerabilities, security research=
|
|
, and bug bounty</strong></h3><p style=3D"margin: 0 0 1.5em 0; line-height:=
|
|
1.6em;"><strong style=3D"font-weight: 700;">Military cyber honeypot:</stro=
|
|
ng> A team of academics from Penn State University in the US is <a href=3D"=
|
|
https://news.risky.biz/r/c543272e?m=3D1a80b145-9ce5-407e-b496-c57050db16ff"=
|
|
style=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underli=
|
|
ne;" target=3D"_blank">building a honeypot</a> designed to mimic military-s=
|
|
tyle networks. The network will use fake equipment designed to lure foreign=
|
|
threat actors and record their every move. The project is being built usin=
|
|
g a $557,000 grant from the US military.</p><p style=3D"margin: 0 0 1.5em 0=
|
|
; line-height: 1.6em;"><strong style=3D"font-weight: 700;">DeepSeek R1 jail=
|
|
break:</strong> KELA researchers have <a href=3D"https://news.risky.biz/r/a=
|
|
92ffff8?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: a=
|
|
nywhere; color: #727272; text-decoration: underline;" target=3D"_blank">jai=
|
|
lbroken</a> DeepSeek's new R1 AI model and used it to generate maliciou=
|
|
s content, such as "<em>ransomware development, fabrication of sensiti=
|
|
ve content, and detailed instructions for creating toxins and explosive dev=
|
|
ices</em>."</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><=
|
|
strong style=3D"font-weight: 700;">Apple zero-day:</strong> Apple has patch=
|
|
ed an actively exploited zero-day in its <a href=3D"https://news.risky.biz/=
|
|
r/00da8ed3?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap=
|
|
: anywhere; color: #727272; text-decoration: underline;" target=3D"_blank">=
|
|
iOS</a> and <a href=3D"https://news.risky.biz/r/376611f5?m=3D1a80b145-9ce5-=
|
|
407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #727272; t=
|
|
ext-decoration: underline;" target=3D"_blank">macOS</a> operating systems. =
|
|
Tracked as CVE-2025-24085, the vulnerability resides in Apple's Core Me=
|
|
dia processing framework. Apple says attackers can abuse malicious media fi=
|
|
les to elevate their privileges on targeted systems.</p><p style=3D"margin:=
|
|
0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"font-weight: 700;">Fort=
|
|
inet zero-day write-up:</strong> watchTowr Labs has published a <a href=3D"=
|
|
https://news.risky.biz/r/cd6e68e6?m=3D1a80b145-9ce5-407e-b496-c57050db16ff"=
|
|
style=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underli=
|
|
ne;" target=3D"_blank">technical deep dive</a> of a recently patched Fortin=
|
|
et zero-day (<a href=3D"https://news.risky.biz/r/782eb19f?m=3D1a80b145-9ce5=
|
|
-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #727272; =
|
|
text-decoration: underline;" target=3D"_blank">CVE-2024-55591</a>).</p><p s=
|
|
tyle=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"font-wei=
|
|
ght: 700;">D-Link RCE vulnerability:</strong> D-Link has <a href=3D"https:/=
|
|
/news.risky.biz/r/47972ce9?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=
|
|
=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underline;" t=
|
|
arget=3D"_blank">patched</a> an RCE vulnerability in its DLS wireless route=
|
|
rs reported by Italian security research Max. See Max's two-part write-=
|
|
up on the bug <a href=3D"https://news.risky.biz/r/8bcd24b7?m=3D1a80b145-9ce=
|
|
5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #727272;=
|
|
text-decoration: underline;" target=3D"_blank">here</a> and <a href=3D"htt=
|
|
ps://news.risky.biz/r/5991eb76?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" st=
|
|
yle=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underline;=
|
|
" target=3D"_blank">here</a>.</p><p style=3D"margin: 0 0 1.5em 0; line-heig=
|
|
ht: 1.6em;"><strong style=3D"font-weight: 700;">NVIDIA patches:</strong> NV=
|
|
IDIA has released a <a href=3D"https://news.risky.biz/r/72489f13?m=3D1a80b1=
|
|
45-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #7=
|
|
27272; text-decoration: underline;" target=3D"_blank">security update</a> t=
|
|
o patch seven issues in its display driver. More from <a href=3D"https://ne=
|
|
ws.risky.biz/r/f10c8d9e?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"=
|
|
overflow-wrap: anywhere; color: #727272; text-decoration: underline;" targe=
|
|
t=3D"_blank">Edera</a>.</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.=
|
|
6em;"><strong style=3D"font-weight: 700;">VxWorks vulnerability:</strong> S=
|
|
EC Consult researchers have found that the Wind River VxWorks RTOS uses <a =
|
|
href=3D"https://news.risky.biz/r/af16d343?m=3D1a80b145-9ce5-407e-b496-c5705=
|
|
0db16ff" style=3D"overflow-wrap: anywhere; color: #727272; text-decoration:=
|
|
underline;" target=3D"_blank">weak password hashing algorithms</a>.</p><bl=
|
|
ockquote style=3D"margin: 0; padding: 0; border-left: #727272 2px solid; fo=
|
|
nt-size: 17px; font-weight: 500; line-height: 1.6em; letter-spacing: -0.2px=
|
|
;"><p style=3D"line-height: 1.6em; margin: 2em 25px; font-size: 1em; paddin=
|
|
g: 0;"><em>"For VxWorks 6.9, they incorrectly claimed the system uses =
|
|
5,000 iterations of SHA-256 for password hashing, despite our proof of conc=
|
|
ept demonstrating that it uses only a single iteration. They downplayed the=
|
|
severity of this issue, citing the product's End of Life (EOL) in thre=
|
|
e months as justification for inaction. For VxWorks 7, the vendor dismissed=
|
|
the need for further improvements, stating it was 'appropriate for an =
|
|
embedded system.' The vendor told us they are treating the issue as a &=
|
|
quot;feature request" but were unable to provide a timeline for the im=
|
|
plementation."</em></p></blockquote><p style=3D"margin: 0 0 1.5em 0; l=
|
|
ine-height: 1.6em;"><strong style=3D"font-weight: 700;">New Apple CPU side-=
|
|
channel attacks:</strong> Academics have discovered <a href=3D"https://news=
|
|
=2Erisky.biz/r/a559baef?m=3D1a80b145-9c=
|
|
e5-407e-b496-c57050db16ff" style=3D"ov=
|
|
erflow-wrap: anywhere; color: #727272; text-decoration: underline;" target=
|
|
=3D"_blank">two new side-channel attacks</a> against Apple CPUs that can le=
|
|
ak sensitive data from the processor's memory. Named SLAP (Speculation =
|
|
Attacks via Load Address Prediction) and FLOP (False Load Output Prediction=
|
|
s), the attacks impact Apple's line of A and M CPUs. Affected devices i=
|
|
nclude all Mac laptops sold after 2022, all Mac desktops sold after 2023, a=
|
|
nd all iPhones sold after 2021. Both attacks can be performed via a web bro=
|
|
wser. Apple has told researchers it plans to address both attacks in an upc=
|
|
oming security update. The team behind the attacks has found almost a <a hr=
|
|
ef=3D"https://news.risky.biz/r/790e8656?m=3D1a80b145-9ce5-407e-b496-c57050d=
|
|
b16ff" style=3D"overflow-wrap: anywhere; color: #727272; text-decoration: u=
|
|
nderline;" target=3D"_blank">dozen side-channel attacks</a> in modern CPUs,=
|
|
such as Meltdown, Spectre, SGX Fail, and RAMBleed.</p><div class=3D"kg-car=
|
|
d kg-image-card" style=3D"margin: 0 0 1.5em; padding: 0;"><img src=3D"https=
|
|
://news.risky.biz/content/images/2025/01/SLAP.png" class=3D"kg-image" alt l=
|
|
oading=3D"lazy" width=3D"600" height=3D"357" style=3D"border: none; -ms-int=
|
|
erpolation-mode: bicubic; max-width: 100%; display: block; margin: 0 auto; =
|
|
height: auto; width: auto;"></div><h3 id=3D"infosec-industry" style=3D"marg=
|
|
in-top: 0; font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI=
|
|
9;, Roboto, Helvetica, Arial, sans-serif, 'Apple Color Emoji', '=
|
|
;Segoe UI Emoji', 'Segoe UI Symbol'; line-height: 1.11em; font-=
|
|
weight: 700; text-rendering: optimizeLegibility; margin: 1.5em 0 0.5em 0; f=
|
|
ont-size: 26px;"><strong style=3D"font-weight: 800;">Infosec industry</stro=
|
|
ng></h3><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong style=
|
|
=3D"font-weight: 700;">New tool—gitC2:</strong> Offensive security e=
|
|
ngineer Offalltn has released <a href=3D"https://news.risky.biz/r/c8f52f01?=
|
|
m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere;=
|
|
color: #727272; text-decoration: underline;" target=3D"_blank">gitC2</a>, =
|
|
a C2 tool that uses a GitHub repository to execute commands through its iss=
|
|
ues tracker.</p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><stro=
|
|
ng style=3D"font-weight: 700;">New tool—ExtensionHound:</strong> Sof=
|
|
tware engineer Amram Englander has released <a href=3D"https://news.risky.b=
|
|
iz/r/391c7fd5?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-w=
|
|
rap: anywhere; color: #727272; text-decoration: underline;" target=3D"_blan=
|
|
k">ExtensionHound</a>, a security analysis tool that identifies DNS queries=
|
|
made by browser extensions.</p><p style=3D"margin: 0 0 1.5em 0; line-heigh=
|
|
t: 1.6em;"><strong style=3D"font-weight: 700;">Acquisition news:</strong> A=
|
|
utomated endpoint management platform NinjaOne is <a href=3D"https://news.r=
|
|
isky.biz/r/a0eb977f?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"over=
|
|
flow-wrap: anywhere; color: #727272; text-decoration: underline;" target=3D=
|
|
"_blank">acquiring</a> cloud data backup and recovery platform Dropsuite.</=
|
|
p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><strong style=3D"fo=
|
|
nt-weight: 700;">Threat/trend reports:</strong> <a href=3D"https://news.ris=
|
|
ky.biz/r/c28a4f01?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overfl=
|
|
ow-wrap: anywhere; color: #727272; text-decoration: underline;" target=3D"_=
|
|
blank">Apteco</a>, <a href=3D"https://news.risky.biz/r/50aa9f86?m=3D1a80b14=
|
|
5-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #72=
|
|
7272; text-decoration: underline;" target=3D"_blank">Cloudflare</a>, <a hre=
|
|
f=3D"https://news.risky.biz/r/aed31de3?m=3D1a80b145-9ce5-407e-b496-c57050db=
|
|
16ff" style=3D"overflow-wrap: anywhere; color: #727272; text-decoration: un=
|
|
derline;" target=3D"_blank">France's CNIL agency</a>, <a href=3D"https:=
|
|
//news.risky.biz/r/07eb9da8?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=
|
|
=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underline;" t=
|
|
arget=3D"_blank">Forescout</a>, <a href=3D"https://news.risky.biz/r/fc9255b=
|
|
d?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywher=
|
|
e; color: #727272; text-decoration: underline;" target=3D"_blank">Obsidian =
|
|
Security</a>, <a href=3D"https://news.risky.biz/r/522dd1c7?m=3D1a80b145-9ce=
|
|
5-407e-b496-c57050db16ff" style=3D"overflow-wrap: anywhere; color: #727272;=
|
|
text-decoration: underline;" target=3D"_blank">Rapid7</a>, and <a href=3D"=
|
|
https://news.risky.biz/r/fb3db884?m=3D1a80b145-9ce5-407e-b496-c57050db16ff"=
|
|
style=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underli=
|
|
ne;" target=3D"_blank">Recorded Future</a> have published reports and summa=
|
|
ries covering various infosec trends and industry threats.</p><div class=3D=
|
|
"kg-card kg-image-card" style=3D"margin: 0 0 1.5em; padding: 0;"><img src=
|
|
=3D"https://news.risky.biz/content/images/2025/01/R7.png" class=3D"kg-image=
|
|
" alt loading=3D"lazy" width=3D"600" height=3D"315" style=3D"border: none; =
|
|
-ms-interpolation-mode: bicubic; max-width: 100%; display: block; margin: 0=
|
|
auto; height: auto; width: auto;"></div><h3 id=3D"risky-business-podcasts-=
|
|
1" style=3D"margin-top: 0; font-family: -apple-system, BlinkMacSystemFont, =
|
|
'Segoe UI', Roboto, Helvetica, Arial, sans-serif, 'Apple Color =
|
|
Emoji', 'Segoe UI Emoji', 'Segoe UI Symbol'; line-heigh=
|
|
t: 1.11em; font-weight: 700; text-rendering: optimizeLegibility; margin: 1.=
|
|
5em 0 0.5em 0; font-size: 26px;"><strong style=3D"font-weight: 800;"><em>Ri=
|
|
sky Business Podcasts</em></strong></h3><p style=3D"margin: 0 0 1.5em 0; li=
|
|
ne-height: 1.6em;"><em>In this podcast, Tom Uren and Adam Boileau talk abou=
|
|
t the continued importance of hack and leak operations. They didn't rea=
|
|
lly affect the recent US presidential election, but they are still a powerf=
|
|
ul tool for vested interests to influence public policy.</em></p><div class=
|
|
=3D"kg-card kg-embed-card" style=3D"margin: 0 0 1.5em; padding: 0;">
|
|
<iframe frameborder=3D"0" style=3D"width: 100%; height: 156px;" srcdoc=
|
|
=3D"
|
|
=20
|
|
<!DOCTYPE html>
|
|
<html>
|
|
<head>
|
|
<title>Risky Business Player</title>
|
|
</head>
|
|
<body>
|
|
|
|
<!-- Include the Google Font Inter -->
|
|
<style>
|
|
@import url("https://fonts.googleapis.com/css2?family=3DInter:wght@400=
|
|
;700&display=3Dswap");
|
|
|
|
body {
|
|
margin: 0px;
|
|
}
|
|
|
|
=2Eaudio-player {
|
|
font-family: "Inter", sans-serif;
|
|
}
|
|
|
|
=2Eicon {
|
|
background-image: url("https://risky.biz/static/img/icons/subscrib=
|
|
e-icons.svg");
|
|
display: block;
|
|
width: 33px;
|
|
height: 33px;
|
|
background-size: 528px 111px;
|
|
}
|
|
|
|
}
|
|
</style>
|
|
|
|
<!-- Audio player -->
|
|
<div class=3D"audio-player" style=3D"display: flex; flex-=
|
|
direction: column; gap: 5px; padding-top: 0px; padding-bottom: 20px; backgr=
|
|
ound: rgb(244, 244, 239); background: linear-gradient(0deg, rgba(244, 244, =
|
|
239, 1) 0%, rgba(244, 244, 239, 0) 100%); border-radius: 8px; border: 1px s=
|
|
olid #d7d7d7; width: calc(100% - 1px) min-width: 350px;">
|
|
<audio class=3D"audioElement" preload=3D"none"&g=
|
|
t;
|
|
<source src=3D"https://dts.podtrac.com/redirect.mp3/media3.=
|
|
risky.biz/SRB106.mp3" type=3D"audio/mpeg">
|
|
Your browser does not support the audio element.
|
|
</audio>
|
|
|
|
<!-- Title -->
|
|
<div style=3D"background: #666666; color: #FEFEFE; font-size: 1=
|
|
4px; padding-left: 5%; padding-right: 5%; padding-top: 10px; padding-bottom=
|
|
: 10px; border-top-left-radius: 8px; border-top-right-radius: 8px; white-sp=
|
|
ace: nowrap; overflow: hidden; text-overflow: ellipsis; margin-bottom: 10px=
|
|
;">
|
|
<a style=3D"color:#FEFEFE; text-decoration: none;" tar=
|
|
get=3D"_new" href=3D"https://risky.biz/SRB106/">Srsl=
|
|
y Risky Biz: Why two hats are better than two heads</a>
|
|
</div>
|
|
|
|
<!-- Player Controls and Progress Bar -->
|
|
<div style=3D"display: flex; align-items: center; justify-conte=
|
|
nt: center; gap: 10px; width: 90%; margin: 0 auto;">
|
|
<button type=3D"button" class=3D"playPauseBtn&quo=
|
|
t; style=3D"color: #1e1e1e; background-color: #FAFAFA; font-size: 18px=
|
|
; border: none; padding: 10px; border-radius: 8px; cursor: pointer; height:=
|
|
42px; width: 42px; text-align: center; display: flex; align-items: center;=
|
|
justify-content: center;">&#9654;</button>
|
|
<input type=3D"range" style=3D"flex-grow: 1; -web=
|
|
kit-appearance: none; height: 5px; background: #ddd; border-radius: 8px; ou=
|
|
tline: none; cursor: pointer;" class=3D"progressBar" value=
|
|
=3D"0" min=3D"0" max=3D"100" />
|
|
<span style=3D"font-size: 12px; font-weight: 200;" cla=
|
|
ss=3D"currentTime">0:00</span> /=20
|
|
=20
|
|
=20
|
|
=20
|
|
=20
|
|
<span style=3D"font-size: 12px; font-weight: 200;&qu=
|
|
ot; class=3D"duration">
|
|
19:48
|
|
</span>
|
|
</div>
|
|
|
|
<!-- Subscribe Buttons -->
|
|
<div style=3D"width: 90%; display: flex; justify-content: space=
|
|
-between; align-items: center; padding-left: 5%;">
|
|
<div style=3D"padding-right:20px;" class=3D"subTe=
|
|
xt">
|
|
<strong>Subscribe &nbsp;</strong>
|
|
</div>
|
|
=20
|
|
<div style=3D"display: flex; align-items: center; gap: 6px;=
|
|
margin: 0; flex-grow: 1;" class=3D"subContainer">
|
|
<!-- Apple Podcast Icon -->
|
|
<a href=3D"https://podcasts.apple.com/au/podcast/risky-=
|
|
business-news/id1621305970"
|
|
style=3D"background-position: 48px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon apple-podcast"></a>
|
|
<!-- Overcast Icon -->
|
|
<a href=3D"https://overcast.fm/itunes1621305970"
|
|
style=3D"background-position: 141px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon overcast-podcast"></a>
|
|
|
|
<!-- Pocket Casts Icon -->
|
|
<a href=3D"https://pca.st/yicebxgl"
|
|
style=3D"background-position: 234px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon pocketcast-podcast"></a>
|
|
<!-- Spotify Icon -->
|
|
<a href=3D"https://open.spotify.com/show/0BdExoUZqbGsBY=
|
|
jt6QZl4Q"
|
|
style=3D"background-position: 420px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon spotify-podcast"></a>
|
|
<!-- RSS Icon -->
|
|
<a href=3D"https://risky.biz/feeds/risky-business-news&=
|
|
quot;
|
|
style=3D"background-position: 327px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon rss-podcast"></a>
|
|
</div>
|
|
=20
|
|
|
|
=20
|
|
<a href=3D"https://risky.biz">
|
|
<img src=3D"https://risky.biz/static/img/RB_Site_Logo.svg&=
|
|
quot; alt=3D"Logo"
|
|
style=3D"margin-left: 0; height: 32px; display: block; pa=
|
|
dding-right: 5%;"
|
|
id=3D"logo" class=3D"logo playerLogo">
|
|
</a>
|
|
<script>
|
|
document.addEventListener("DOMContentLoaded", function () {
|
|
const players =3D document.querySelectorAll(".audio-player&quo=
|
|
t;);
|
|
|
|
function resizeElements(player) {
|
|
const logo =3D player.querySelector(".logo");
|
|
const subscribeIcons =3D player.querySelectorAll(".icon&qu=
|
|
ot;);
|
|
const subscribeContainer =3D player.querySelector(".subCon=
|
|
tainer"); // Select subContainer by class
|
|
const subText =3D player.querySelector(".subText"); /=
|
|
/ Select subText by class
|
|
|
|
if (player.offsetWidth <=3D 425) {
|
|
// Hide logo
|
|
if (logo) {
|
|
logo.style.display =3D "none";
|
|
}
|
|
} else if (player.offsetWidth <=3D 500) {
|
|
// Show logo and scale logo and icons to 70%
|
|
if (logo) {
|
|
logo.style.display =3D "block";
|
|
logo.style.transform =3D "scale(0.7)";
|
|
logo.style.transformOrigin =3D "center";
|
|
logo.style.verticalAlign =3D "middle";
|
|
}
|
|
subscribeIcons.forEach(icon =3D> {
|
|
icon.style.transform =3D "scale(0.7)";
|
|
icon.style.transformOrigin =3D "center";
|
|
icon.style.verticalAlign =3D "middle";
|
|
});
|
|
|
|
// Remove padding from subText and set font-size to 12px
|
|
if (subText) {
|
|
subText.style.padding =3D "0";
|
|
subText.style.fontSize =3D "12px";
|
|
}
|
|
|
|
// Set gap in subContainer to 0px
|
|
if (subscribeContainer) {
|
|
subscribeContainer.style.gap =3D "0px";
|
|
}
|
|
} else {
|
|
// Reset scaling, alignment, and visibility
|
|
if (logo) {
|
|
logo.style.display =3D "block";
|
|
logo.style.transform =3D "scale(1)";
|
|
logo.style.verticalAlign =3D "baseline";
|
|
}
|
|
subscribeIcons.forEach(icon =3D> {
|
|
icon.style.transform =3D "scale(1)";
|
|
icon.style.verticalAlign =3D "baseline";
|
|
});
|
|
|
|
// Reset padding and font-size in subText
|
|
if (subText) {
|
|
subText.style.padding =3D "0 20px"; // Defaul=
|
|
t padding
|
|
subText.style.fontSize =3D "inherit"; // Defa=
|
|
ult font-size
|
|
}
|
|
|
|
// Reset gap in subContainer
|
|
if (subscribeContainer) {
|
|
subscribeContainer.style.gap =3D "6px"; // De=
|
|
fault gap
|
|
}
|
|
}
|
|
}
|
|
|
|
function handleResize() {
|
|
players.forEach(player =3D> {
|
|
resizeElements(player);
|
|
});
|
|
}
|
|
|
|
// Run on initial load and resize
|
|
handleResize();
|
|
window.addEventListener("resize", handleResize);
|
|
});
|
|
</script>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
</div>
|
|
</div>
|
|
|
|
|
|
<script>
|
|
// Custom Audio Player
|
|
document.addEventListener("DOMContentLoaded", function () {
|
|
const players =3D document.querySelectorAll(".audio-player");
|
|
|
|
players.forEach(function (player) {
|
|
// Skip if already initialized
|
|
if (player.dataset.initialized =3D=3D=3D "true") return;
|
|
|
|
// Mark player as initialized
|
|
player.dataset.initialized =3D "true";
|
|
=20
|
|
const audio =3D player.querySelector(".audioElement");
|
|
const playPauseBtn =3D player.querySelector(".playPauseBtn&quo=
|
|
t;);
|
|
const progressBar =3D player.querySelector(".progressBar"=
|
|
);
|
|
const currentTimeEl =3D player.querySelector(".currentTime&quo=
|
|
t;);
|
|
const durationEl =3D player.querySelector(".duration");
|
|
|
|
if (!audio || !playPauseBtn || !progressBar || !currentTimeEl || !d=
|
|
urationEl) {
|
|
console.error("One or more player elements not found:"=
|
|
;, { audio, playPauseBtn, progressBar, currentTimeEl, durationEl });
|
|
return;=20
|
|
}
|
|
|
|
playPauseBtn.addEventListener("click", () =3D> {
|
|
if (audio.paused) {
|
|
audio.play();
|
|
playPauseBtn.textContent =3D "⏸";=20
|
|
|
|
// GA4 event for starting audio
|
|
gtag("event", "audio_play", {
|
|
"content_title": "Srsly Risky Biz: Why=
|
|
two hats are better than two heads",
|
|
"content_type": "audio"
|
|
});
|
|
} else {
|
|
audio.pause();
|
|
playPauseBtn.textContent =3D "▶";
|
|
}
|
|
});
|
|
|
|
audio.addEventListener("timeupdate", () =3D> {
|
|
if (audio.duration) {
|
|
progressBar.value =3D (audio.currentTime / audio.duration) =
|
|
* 100;
|
|
currentTimeEl.textContent =3D formatTime(audio.currentTime)=
|
|
;
|
|
}
|
|
});
|
|
|
|
audio.addEventListener("loadedmetadata", () =3D> {
|
|
durationEl.textContent =3D formatTime(audio.duration);
|
|
});
|
|
|
|
progressBar.addEventListener("input", () =3D> {
|
|
if (audio.duration) {
|
|
audio.currentTime =3D (progressBar.value / 100) * audio.dur=
|
|
ation;
|
|
}
|
|
});
|
|
|
|
function formatTime(seconds) {
|
|
const minutes =3D Math.floor(seconds / 60);
|
|
const secs =3D Math.floor(seconds % 60);
|
|
return `${minutes}:${secs < 10 ? "0" : ""=
|
|
;}${secs}`;
|
|
}
|
|
});
|
|
});
|
|
|
|
</script>
|
|
</body>
|
|
</html>
|
|
|
|
|
|
"></iframe>
|
|
</div><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><a href=3D"http=
|
|
s://news.risky.biz/r/5dcd987d?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" sty=
|
|
le=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underline;"=
|
|
target=3D"_blank"><span style=3D"white-space: pre-wrap;">https://risky.biz=
|
|
/SRB106/</span></a></p><div class=3D"kg-card kg-embed-card" style=3D"margin=
|
|
: 0 0 1.5em; padding: 0;"><!--[if !mso !vml]-->
|
|
<a class=3D"kg-video-preview" href=3D"https://news.risky.biz/r/=
|
|
b4319a57?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" aria-label=3D"Play video=
|
|
" style=3D"background-color: #1d1f21; background-image: radial-gradient(cir=
|
|
cle at center, #5b5f66, #1d1f21); display: block; overflow-wrap: anywhere; =
|
|
color: #727272; mso-hide: all; text-decoration: none;" target=3D"_blank">
|
|
<table cellpadding=3D"0" cellspacing=3D"0" border=3D"0" wid=
|
|
th=3D"100%" background=3D"https://i.ytimg.com/vi/RNw5NCYSeG8/hqdefault.jpg"=
|
|
role=3D"presentation" style=3D"border-collapse: separate; mso-table-lspace=
|
|
: 0pt; mso-table-rspace: 0pt; width: 100%; background-size: cover; min-heig=
|
|
ht: 200px; background: url('https://i.ytimg.com/vi/RNw5NCYSeG8/hqdefaul=
|
|
t.jpg') left top / cover; mso-hide: all;">
|
|
<tbody><tr style=3D"mso-hide: all">
|
|
<td width=3D"25%" style=3D"font-family: -apple-syst=
|
|
em, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-=
|
|
serif, 'Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI=
|
|
Symbol'; font-size: 18px; vertical-align: top; color: #15212A; visibil=
|
|
ity: hidden; mso-hide: all;" valign=3D"top">
|
|
<img src=3D"https://img.spacergif.org/v1/150x45=
|
|
0/0a/spacer.png" alt width=3D"100%" border=3D"0" style=3D"border: none; -ms=
|
|
-interpolation-mode: bicubic; max-width: 100%; display: block; height: auto=
|
|
; opacity: 0; visibility: hidden; mso-hide: all;" height=3D"auto">
|
|
</td>
|
|
<td width=3D"50%" align=3D"center" valign=3D"middle=
|
|
" style=3D"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI=
|
|
9;, Roboto, Helvetica, Arial, sans-serif, 'Apple Color Emoji', '=
|
|
;Segoe UI Emoji', 'Segoe UI Symbol'; font-size: 18px; color: #1=
|
|
5212A; vertical-align: middle; mso-hide: all;">
|
|
<div class=3D"kg-video-play-button" style=3D"he=
|
|
ight: 2em; width: 3em; margin: 0 auto; border-radius: 10px; padding: 1em 0.=
|
|
8em 0.6em 1em; font-size: 1em; background-color: rgba(0,0,0,0.85); mso-hide=
|
|
: all;"><div style=3D"display: block; width: 0; height: 0; margin: 0 auto; =
|
|
line-height: 0px; border-color: transparent transparent transparent white; =
|
|
border-style: solid; border-width: 0.8em 0 0.8em 1.5em; mso-hide: all;"></d=
|
|
iv></div>
|
|
</td>
|
|
<td width=3D"25%" style=3D"font-family: -apple-syst=
|
|
em, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-=
|
|
serif, 'Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI=
|
|
Symbol'; font-size: 18px; vertical-align: top; color: #15212A; mso-hid=
|
|
e: all;" valign=3D"top"> </td>
|
|
</tr>
|
|
</tbody></table>
|
|
</a>
|
|
<!--[endif]-->
|
|
|
|
<!--[if vml]>
|
|
<v:group xmlns:v=3D"urn:schemas-microsoft-com:vml" xmlns:w=3D"u=
|
|
rn:schemas-microsoft-com:office:word" coordsize=3D"600,450" coordorigin=3D"=
|
|
0,0" href=3D"https://www.youtube.com/watch?v=3DRNw5NCYSeG8" style=3D"width:=
|
|
600px;height:450px;">
|
|
<v:rect fill=3D"t" stroked=3D"f" style=3D"position:absolute=
|
|
;width:600;height:450;"><v:fill src=3D"https://i.ytimg.com/vi/RNw5NCYSeG8/h=
|
|
qdefault.jpg" type=3D"frame"/></v:rect>
|
|
<v:oval fill=3D"t" strokecolor=3D"white" strokeweight=3D"4p=
|
|
x" style=3D"position:absolute;left:261;top:186;width:78;height:78"><v:fill =
|
|
color=3D"black" opacity=3D"30%" /></v:oval>
|
|
<v:shape coordsize=3D"24,32" path=3D"m,l,32,24,16,xe" fillc=
|
|
olor=3D"white" stroked=3D"f" style=3D"position:absolute;left:289;top:208;wi=
|
|
dth:30;height:34;" />
|
|
</v:group>
|
|
<![endif]--></div><p style=3D"margin: 0 0 1.5em 0; line-height:=
|
|
1.6em;"></p><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><em>In t=
|
|
his edition of Between Two Nerds, Tom Uren and The Grugq talk about the evo=
|
|
lution of Russian cyber operations during its invasion of Ukraine.</em></p>=
|
|
<div class=3D"kg-card kg-embed-card" style=3D"margin: 0 0 1.5em; padding: 0=
|
|
;">
|
|
<iframe frameborder=3D"0" style=3D"width: 100%; height: 156px;" srcdoc=
|
|
=3D"
|
|
=20
|
|
<!DOCTYPE html>
|
|
<html>
|
|
<head>
|
|
<title>Risky Business Player</title>
|
|
</head>
|
|
<body>
|
|
|
|
<!-- Include the Google Font Inter -->
|
|
<style>
|
|
@import url("https://fonts.googleapis.com/css2?family=3DInter:wght@400=
|
|
;700&display=3Dswap");
|
|
|
|
body {
|
|
margin: 0px;
|
|
}
|
|
|
|
=2Eaudio-player {
|
|
font-family: "Inter", sans-serif;
|
|
}
|
|
|
|
=2Eicon {
|
|
background-image: url("https://risky.biz/static/img/icons/subscrib=
|
|
e-icons.svg");
|
|
display: block;
|
|
width: 33px;
|
|
height: 33px;
|
|
background-size: 528px 111px;
|
|
}
|
|
|
|
}
|
|
</style>
|
|
|
|
<!-- Audio player -->
|
|
<div class=3D"audio-player" style=3D"display: flex; flex-=
|
|
direction: column; gap: 5px; padding-top: 0px; padding-bottom: 20px; backgr=
|
|
ound: rgb(244, 244, 239); background: linear-gradient(0deg, rgba(244, 244, =
|
|
239, 1) 0%, rgba(244, 244, 239, 0) 100%); border-radius: 8px; border: 1px s=
|
|
olid #d7d7d7; width: calc(100% - 1px) min-width: 350px;">
|
|
<audio class=3D"audioElement" preload=3D"none"&g=
|
|
t;
|
|
<source src=3D"https://dts.podtrac.com/redirect.mp3/media3.=
|
|
risky.biz/BTN105.mp3" type=3D"audio/mpeg">
|
|
Your browser does not support the audio element.
|
|
</audio>
|
|
|
|
<!-- Title -->
|
|
<div style=3D"background: #666666; color: #FEFEFE; font-size: 1=
|
|
4px; padding-left: 5%; padding-right: 5%; padding-top: 10px; padding-bottom=
|
|
: 10px; border-top-left-radius: 8px; border-top-right-radius: 8px; white-sp=
|
|
ace: nowrap; overflow: hidden; text-overflow: ellipsis; margin-bottom: 10px=
|
|
;">
|
|
<a style=3D"color:#FEFEFE; text-decoration: none;" tar=
|
|
get=3D"_new" href=3D"https://risky.biz/BTN105/">Betw=
|
|
een Two Nerds: The evolution of Russia's cyber operations in Ukraine<=
|
|
;/a>
|
|
</div>
|
|
|
|
<!-- Player Controls and Progress Bar -->
|
|
<div style=3D"display: flex; align-items: center; justify-conte=
|
|
nt: center; gap: 10px; width: 90%; margin: 0 auto;">
|
|
<button type=3D"button" class=3D"playPauseBtn&quo=
|
|
t; style=3D"color: #1e1e1e; background-color: #FAFAFA; font-size: 18px=
|
|
; border: none; padding: 10px; border-radius: 8px; cursor: pointer; height:=
|
|
42px; width: 42px; text-align: center; display: flex; align-items: center;=
|
|
justify-content: center;">&#9654;</button>
|
|
<input type=3D"range" style=3D"flex-grow: 1; -web=
|
|
kit-appearance: none; height: 5px; background: #ddd; border-radius: 8px; ou=
|
|
tline: none; cursor: pointer;" class=3D"progressBar" value=
|
|
=3D"0" min=3D"0" max=3D"100" />
|
|
<span style=3D"font-size: 12px; font-weight: 200;" cla=
|
|
ss=3D"currentTime">0:00</span> /=20
|
|
=20
|
|
=20
|
|
=20
|
|
=20
|
|
<span style=3D"font-size: 12px; font-weight: 200;&qu=
|
|
ot; class=3D"duration">
|
|
29:28
|
|
</span>
|
|
</div>
|
|
|
|
<!-- Subscribe Buttons -->
|
|
<div style=3D"width: 90%; display: flex; justify-content: space=
|
|
-between; align-items: center; padding-left: 5%;">
|
|
<div style=3D"padding-right:20px;" class=3D"subTe=
|
|
xt">
|
|
<strong>Subscribe &nbsp;</strong>
|
|
</div>
|
|
=20
|
|
<div style=3D"display: flex; align-items: center; gap: 6px;=
|
|
margin: 0; flex-grow: 1;" class=3D"subContainer">
|
|
<!-- Apple Podcast Icon -->
|
|
<a href=3D"https://podcasts.apple.com/au/podcast/risky-=
|
|
business-news/id1621305970"
|
|
style=3D"background-position: 48px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon apple-podcast"></a>
|
|
<!-- Overcast Icon -->
|
|
<a href=3D"https://overcast.fm/itunes1621305970"
|
|
style=3D"background-position: 141px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon overcast-podcast"></a>
|
|
|
|
<!-- Pocket Casts Icon -->
|
|
<a href=3D"https://pca.st/yicebxgl"
|
|
style=3D"background-position: 234px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon pocketcast-podcast"></a>
|
|
<!-- Spotify Icon -->
|
|
<a href=3D"https://open.spotify.com/show/0BdExoUZqbGsBY=
|
|
jt6QZl4Q"
|
|
style=3D"background-position: 420px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon spotify-podcast"></a>
|
|
<!-- RSS Icon -->
|
|
<a href=3D"https://risky.biz/feeds/risky-business-news&=
|
|
quot;
|
|
style=3D"background-position: 327px 96px;"
|
|
target=3D"_new"
|
|
class=3D"icon rss-podcast"></a>
|
|
</div>
|
|
=20
|
|
|
|
=20
|
|
<a href=3D"https://risky.biz">
|
|
<img src=3D"https://risky.biz/static/img/RB_Site_Logo.svg&=
|
|
quot; alt=3D"Logo"
|
|
style=3D"margin-left: 0; height: 32px; display: block; pa=
|
|
dding-right: 5%;"
|
|
id=3D"logo" class=3D"logo playerLogo">
|
|
</a>
|
|
<script>
|
|
document.addEventListener("DOMContentLoaded", function () {
|
|
const players =3D document.querySelectorAll(".audio-player&quo=
|
|
t;);
|
|
|
|
function resizeElements(player) {
|
|
const logo =3D player.querySelector(".logo");
|
|
const subscribeIcons =3D player.querySelectorAll(".icon&qu=
|
|
ot;);
|
|
const subscribeContainer =3D player.querySelector(".subCon=
|
|
tainer"); // Select subContainer by class
|
|
const subText =3D player.querySelector(".subText"); /=
|
|
/ Select subText by class
|
|
|
|
if (player.offsetWidth <=3D 425) {
|
|
// Hide logo
|
|
if (logo) {
|
|
logo.style.display =3D "none";
|
|
}
|
|
} else if (player.offsetWidth <=3D 500) {
|
|
// Show logo and scale logo and icons to 70%
|
|
if (logo) {
|
|
logo.style.display =3D "block";
|
|
logo.style.transform =3D "scale(0.7)";
|
|
logo.style.transformOrigin =3D "center";
|
|
logo.style.verticalAlign =3D "middle";
|
|
}
|
|
subscribeIcons.forEach(icon =3D> {
|
|
icon.style.transform =3D "scale(0.7)";
|
|
icon.style.transformOrigin =3D "center";
|
|
icon.style.verticalAlign =3D "middle";
|
|
});
|
|
|
|
// Remove padding from subText and set font-size to 12px
|
|
if (subText) {
|
|
subText.style.padding =3D "0";
|
|
subText.style.fontSize =3D "12px";
|
|
}
|
|
|
|
// Set gap in subContainer to 0px
|
|
if (subscribeContainer) {
|
|
subscribeContainer.style.gap =3D "0px";
|
|
}
|
|
} else {
|
|
// Reset scaling, alignment, and visibility
|
|
if (logo) {
|
|
logo.style.display =3D "block";
|
|
logo.style.transform =3D "scale(1)";
|
|
logo.style.verticalAlign =3D "baseline";
|
|
}
|
|
subscribeIcons.forEach(icon =3D> {
|
|
icon.style.transform =3D "scale(1)";
|
|
icon.style.verticalAlign =3D "baseline";
|
|
});
|
|
|
|
// Reset padding and font-size in subText
|
|
if (subText) {
|
|
subText.style.padding =3D "0 20px"; // Defaul=
|
|
t padding
|
|
subText.style.fontSize =3D "inherit"; // Defa=
|
|
ult font-size
|
|
}
|
|
|
|
// Reset gap in subContainer
|
|
if (subscribeContainer) {
|
|
subscribeContainer.style.gap =3D "6px"; // De=
|
|
fault gap
|
|
}
|
|
}
|
|
}
|
|
|
|
function handleResize() {
|
|
players.forEach(player =3D> {
|
|
resizeElements(player);
|
|
});
|
|
}
|
|
|
|
// Run on initial load and resize
|
|
handleResize();
|
|
window.addEventListener("resize", handleResize);
|
|
});
|
|
</script>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
</div>
|
|
</div>
|
|
|
|
|
|
<script>
|
|
// Custom Audio Player
|
|
document.addEventListener("DOMContentLoaded", function () {
|
|
const players =3D document.querySelectorAll(".audio-player");
|
|
|
|
players.forEach(function (player) {
|
|
// Skip if already initialized
|
|
if (player.dataset.initialized =3D=3D=3D "true") return;
|
|
|
|
// Mark player as initialized
|
|
player.dataset.initialized =3D "true";
|
|
=20
|
|
const audio =3D player.querySelector(".audioElement");
|
|
const playPauseBtn =3D player.querySelector(".playPauseBtn&quo=
|
|
t;);
|
|
const progressBar =3D player.querySelector(".progressBar"=
|
|
);
|
|
const currentTimeEl =3D player.querySelector(".currentTime&quo=
|
|
t;);
|
|
const durationEl =3D player.querySelector(".duration");
|
|
|
|
if (!audio || !playPauseBtn || !progressBar || !currentTimeEl || !d=
|
|
urationEl) {
|
|
console.error("One or more player elements not found:"=
|
|
;, { audio, playPauseBtn, progressBar, currentTimeEl, durationEl });
|
|
return;=20
|
|
}
|
|
|
|
playPauseBtn.addEventListener("click", () =3D> {
|
|
if (audio.paused) {
|
|
audio.play();
|
|
playPauseBtn.textContent =3D "⏸";=20
|
|
|
|
// GA4 event for starting audio
|
|
gtag("event", "audio_play", {
|
|
"content_title": "Between Two Nerds: T=
|
|
he evolution of Russia's cyber operations in Ukraine",
|
|
"content_type": "audio"
|
|
});
|
|
} else {
|
|
audio.pause();
|
|
playPauseBtn.textContent =3D "▶";
|
|
}
|
|
});
|
|
|
|
audio.addEventListener("timeupdate", () =3D> {
|
|
if (audio.duration) {
|
|
progressBar.value =3D (audio.currentTime / audio.duration) =
|
|
* 100;
|
|
currentTimeEl.textContent =3D formatTime(audio.currentTime)=
|
|
;
|
|
}
|
|
});
|
|
|
|
audio.addEventListener("loadedmetadata", () =3D> {
|
|
durationEl.textContent =3D formatTime(audio.duration);
|
|
});
|
|
|
|
progressBar.addEventListener("input", () =3D> {
|
|
if (audio.duration) {
|
|
audio.currentTime =3D (progressBar.value / 100) * audio.dur=
|
|
ation;
|
|
}
|
|
});
|
|
|
|
function formatTime(seconds) {
|
|
const minutes =3D Math.floor(seconds / 60);
|
|
const secs =3D Math.floor(seconds % 60);
|
|
return `${minutes}:${secs < 10 ? "0" : ""=
|
|
;}${secs}`;
|
|
}
|
|
});
|
|
});
|
|
|
|
</script>
|
|
</body>
|
|
</html>
|
|
|
|
|
|
"></iframe>
|
|
</div><p style=3D"margin: 0 0 1.5em 0; line-height: 1.6em;"><a href=3D"http=
|
|
s://news.risky.biz/r/06ff769c?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" sty=
|
|
le=3D"overflow-wrap: anywhere; color: #727272; text-decoration: underline;"=
|
|
target=3D"_blank"><span style=3D"white-space: pre-wrap;">https://risky.biz=
|
|
/BTN105/</span></a></p><div class=3D"kg-card kg-embed-card" style=3D"margin=
|
|
: 0 0 1.5em; padding: 0;"><!--[if !mso !vml]-->
|
|
<a class=3D"kg-video-preview" href=3D"https://news.risky.biz/r/=
|
|
2b028f94?m=3D1a80b145-9ce5-407e-b496-c57050db16ff" aria-label=3D"Play video=
|
|
" style=3D"background-color: #1d1f21; background-image: radial-gradient(cir=
|
|
cle at center, #5b5f66, #1d1f21); display: block; overflow-wrap: anywhere; =
|
|
color: #727272; mso-hide: all; text-decoration: none;" target=3D"_blank">
|
|
<table cellpadding=3D"0" cellspacing=3D"0" border=3D"0" wid=
|
|
th=3D"100%" background=3D"https://i.ytimg.com/vi/e49QGvfSWoU/hqdefault.jpg"=
|
|
role=3D"presentation" style=3D"border-collapse: separate; mso-table-lspace=
|
|
: 0pt; mso-table-rspace: 0pt; width: 100%; background-size: cover; min-heig=
|
|
ht: 200px; background: url('https://i.ytimg.com/vi/e49QGvfSWoU/hqdefaul=
|
|
t.jpg') left top / cover; mso-hide: all;">
|
|
<tbody><tr style=3D"mso-hide: all">
|
|
<td width=3D"25%" style=3D"font-family: -apple-syst=
|
|
em, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-=
|
|
serif, 'Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI=
|
|
Symbol'; font-size: 18px; vertical-align: top; color: #15212A; visibil=
|
|
ity: hidden; mso-hide: all;" valign=3D"top">
|
|
<img src=3D"https://img.spacergif.org/v1/150x45=
|
|
0/0a/spacer.png" alt width=3D"100%" border=3D"0" style=3D"border: none; -ms=
|
|
-interpolation-mode: bicubic; max-width: 100%; display: block; height: auto=
|
|
; opacity: 0; visibility: hidden; mso-hide: all;" height=3D"auto">
|
|
</td>
|
|
<td width=3D"50%" align=3D"center" valign=3D"middle=
|
|
" style=3D"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI=
|
|
9;, Roboto, Helvetica, Arial, sans-serif, 'Apple Color Emoji', '=
|
|
;Segoe UI Emoji', 'Segoe UI Symbol'; font-size: 18px; color: #1=
|
|
5212A; vertical-align: middle; mso-hide: all;">
|
|
<div class=3D"kg-video-play-button" style=3D"he=
|
|
ight: 2em; width: 3em; margin: 0 auto; border-radius: 10px; padding: 1em 0.=
|
|
8em 0.6em 1em; font-size: 1em; background-color: rgba(0,0,0,0.85); mso-hide=
|
|
: all;"><div style=3D"display: block; width: 0; height: 0; margin: 0 auto; =
|
|
line-height: 0px; border-color: transparent transparent transparent white; =
|
|
border-style: solid; border-width: 0.8em 0 0.8em 1.5em; mso-hide: all;"></d=
|
|
iv></div>
|
|
</td>
|
|
<td width=3D"25%" style=3D"font-family: -apple-syst=
|
|
em, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-=
|
|
serif, 'Apple Color Emoji', 'Segoe UI Emoji', 'Segoe UI=
|
|
Symbol'; font-size: 18px; vertical-align: top; color: #15212A; mso-hid=
|
|
e: all;" valign=3D"top"> </td>
|
|
</tr>
|
|
</tbody></table>
|
|
</a>
|
|
<!--[endif]-->
|
|
|
|
<!--[if vml]>
|
|
<v:group xmlns:v=3D"urn:schemas-microsoft-com:vml" xmlns:w=3D"u=
|
|
rn:schemas-microsoft-com:office:word" coordsize=3D"600,450" coordorigin=3D"=
|
|
0,0" href=3D"https://www.youtube.com/watch?v=3De49QGvfSWoU" style=3D"width:=
|
|
600px;height:450px;">
|
|
<v:rect fill=3D"t" stroked=3D"f" style=3D"position:absolute=
|
|
;width:600;height:450;"><v:fill src=3D"https://i.ytimg.com/vi/e49QGvfSWoU/h=
|
|
qdefault.jpg" type=3D"frame"/></v:rect>
|
|
<v:oval fill=3D"t" strokecolor=3D"white" strokeweight=3D"4p=
|
|
x" style=3D"position:absolute;left:261;top:186;width:78;height:78"><v:fill =
|
|
color=3D"black" opacity=3D"30%" /></v:oval>
|
|
<v:shape coordsize=3D"24,32" path=3D"m,l,32,24,16,xe" fillc=
|
|
olor=3D"white" stroked=3D"f" style=3D"position:absolute;left:289;top:208;wi=
|
|
dth:30;height:34;" />
|
|
</v:group>
|
|
<![endif]--></div>
|
|
<!-- POST CONTENT END -->
|
|
|
|
</td>
|
|
</tr>
|
|
</table>
|
|
</td>
|
|
</tr>
|
|
|
|
<!-- END MAIN CONTENT AREA -->
|
|
|
|
|
|
|
|
|
|
<tr>
|
|
<td class=3D"wrapper" align=3D"center" styl=
|
|
e=3D"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Ro=
|
|
boto, Helvetica, Arial, sans-serif, 'Apple Color Emoji', 'Segoe=
|
|
UI Emoji', 'Segoe UI Symbol'; font-size: 18px; vertical-align:=
|
|
top; color: #15212A; box-sizing: border-box;" valign=3D"top">
|
|
<table role=3D"presentation" border=3D"=
|
|
0" cellpadding=3D"0" cellspacing=3D"0" width=3D"100%" style=3D"border-colla=
|
|
pse: separate; mso-table-lspace: 0pt; mso-table-rspace: 0pt; width: 100%; p=
|
|
adding-top: 40px; padding-bottom: 30px;">
|
|
<tr>
|
|
<td class=3D"footer" style=3D"f=
|
|
ont-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, =
|
|
Helvetica, Arial, sans-serif, 'Apple Color Emoji', 'Segoe UI Em=
|
|
oji', 'Segoe UI Symbol'; vertical-align: top; color: #738a94; m=
|
|
argin-top: 20px; text-align: center; padding-bottom: 10px; padding-top: 10p=
|
|
x; padding-left: 30px; padding-right: 30px; line-height: 1.5em; font-size: =
|
|
13px;" valign=3D"top" align=3D"center">Risky.Biz © 2025 – <a hr=
|
|
ef=3D"https://news.risky.biz/unsubscribe/?uuid=3D1a80b145-9ce5-407e-b496-c5=
|
|
7050db16ff&key=3Db42b9394aa843f18196f4ef71cbb26d29e72298989fd79444a9147b6e3=
|
|
2ee87b&newsletter=3D102a29ad-4bfc-4105-8645-703ba0268482" style=3D"overflow=
|
|
-wrap: anywhere; color: #738a94; text-decoration: underline; font-size: 13p=
|
|
x;" target=3D"_blank">Unsubscribe</a></td>
|
|
</tr>
|
|
|
|
</table>
|
|
</td>
|
|
</tr>
|
|
|
|
</table>
|
|
<!-- END CENTERED WHITE CONTAINER -->
|
|
</div>
|
|
</td>
|
|
<td style=3D"font-family: -apple-system, BlinkMacSystemFont=
|
|
, 'Segoe UI', Roboto, Helvetica, Arial, sans-serif, 'Apple Colo=
|
|
r Emoji', 'Segoe UI Emoji', 'Segoe UI Symbol'; font-siz=
|
|
e: 18px; vertical-align: top; color: #15212A;" valign=3D"top"> </td>
|
|
</tr>
|
|
|
|
<!--[if mso]>
|
|
</table>
|
|
</center>
|
|
</td>
|
|
</tr>
|
|
<![endif]-->
|
|
</table>
|
|
</body>
|
|
</html>
|
|
|
|
--e0afef55d7e1e7ab802be292cd3c5cfee2e057b815c9b086e36a6c9f72d1--
|
.