Sophia Antipolis, 30 April 2024

The ETSI TeraFlowSDN community is proud to announce the third release of TeraFlowSDN, an innovative and robust SDN orchestrator and controller, delivering a fully featured Network Automation Platform. In this latest release, TeraFlowSDN enhances its capabilities with the integration of an Optical SDN controller, expanding device support to include gNMI and OpenConfig protocols. It also features enriched network integrations for end-to-end orchestration like IP over DWDM, L3VPN, MEC, and network topology exposure. The management of network topologies is improved with the addition of a new BGP-LS speaker able to discover the topologies, and a new Forecaster component is introduced, providing predictive insights for network management. These additions substantially augment the versatility and management capabilities of the TeraFlowSDN platform.

Read More...

Starts: Thu, 28 Nov 2024 18:30:00 -0500
11/28/2024 05:30:00PM
Location: Montreal, Canada

The CISA Known Exploited Vulnerabilities (KEV) catalog and enhanced logging guidelines are among the new measurement tools added for the 2024 State and Local Cybersecurity Grant Program.

Last month, the Department of Homeland Security announced the availability of $279.9 million in grant funding for the Fiscal Year (FY) 2024 State and Local Cybersecurity Grant Program (SLCGP). Now in its third year, the four-year, $1 billion program provides funding for State, Local and Territorial (SLT) governments to implement cybersecurity solutions that address the growing threats and risks to their information systems. Applications must be submitted by December 3, 2024.

While there are no significant modifications to the program for FY 2024, the Federal Emergency Management Agency (FEMA), which administers SLCGP in coordination with the Cybersecurity and Infrastructure Security Agency (CISA), identified key changes, some of which we highlight below:

The FY 2024 NOFO adds CISA’s KEV catalog as a new performance measure and recommended resource

The FY 2024 notice of funding opportunity (NOFO) adds the CISA Known Exploited Vulnerabilities (KEV) catalog as a recommended resource to encourage governments to regularly view information related to cybersecurity vulnerabilities confirmed by CISA, prioritizing those exploited in the wild. In addition, CISA has added “Addressing CISA-identified cybersecurity vulnerabilities” to the list of performance measures it will collect through the duration of the program.

Tenable offers fastest, broadest coverage of CISA’s KEV catalog

At Tenable, our goal is to help organizations identify their cyber exposure gaps as accurately and quickly as possible. To achieve this goal, we have research teams around the globe working to provide precise and prompt coverage for new threats as they are discovered. Tenable monitors and tracks additions to the CISA KEV catalog on a daily basis and prioritizes developing new detections where they do not already exist.

Tenable updates the KEV coverage of its vulnerability management products — Tenable Nessus, Tenable Security Center and Tenable Vulnerability Management — allowing organizations to use KEV catalog data as an additional prioritization metric when figuring out what to fix first. The ready availability of this data in Tenable products can help agencies meet the SLCGP performance measures. This blog offers additional information on Tenable’s coverage of CISA’s KEV catalog.

FY 2024 NOFO adds “Adopting Enhanced Logging” as a new performance measure

The FY 2024 NOFO also adds “Adopting Enhanced Logging” to the list of performance measures CISA will collect throughout the program duration.

How Tenable’s library of compliance audits can help with Enhanced Logging

Tenable's library of Compliance Audits, including Center for Internet Security (CIS) and Defense Information Systems Agency (DISA), allows organizations to assess systems for compliance, including ensuring Enhanced Logging is enabled. Tenable's vulnerability management tools enable customers to easily schedule compliance scans. Users can choose from a continuously updated library of built-in audits or upload custom audits. By conducting these scans regularly, organizations can ensure their systems are secure and maintain compliance with required frameworks.

FY 2024 NOFO continues to require applicants to address program objectives in their applications

As with previous years, the FY 2024 NOFO sets four program objectives. Applicants must address at least one of the following in their applications:

• Objective 1: Develop and establish appropriate governance structures, including by developing, implementing, or revising Cybersecurity Plans, to improve capabilities to respond to cybersecurity incidents, and ensure operations.
• Objective 2: Understand their current cybersecurity posture and areas for improvement based on continuous testing, evaluation, and structured assessments.
• Objective 3: Implement security protections commensurate with risk.
• Objective 4: Ensure organization personnel are appropriately trained in cybersecurity, commensurate with responsibility.

How Tenable can help agencies meet Objective 2 of the program

Tenable is uniquely positioned to help SLTs meet Objective 2 through the Tenable One Exposure Management Platform. In addition to analyzing traditional IT environments, Tenable One analyzes cloud instances, web applications, critical infrastructure environments, identity access and privilege solutions such as Active Directory and more — including highly dynamic assets like mobile devices, virtual machines and containers. Once the complete attack surface is understood, the Tenable One platform applies a proactive risk-based approach to managing exposure, allowing SLT agencies to successfully meet each of the sub-objectives outlined in Objective 2 (see table below).

Source: Tenable, October 2024

Tenable One deployment options offer flexibility for SLT agencies

Tenable offers SLT agencies flexibility in their implementation models to help them best meet the requirements and objectives outlined as part of the SLCGP. Deployment models include:

• Centralized risk-based vulnerability program managed by a state Department of Information Technology (DoIT)
• Multi-entity projects
• Decentralized deployments of Tenable One managed by individual municipalities,
• Managed Security Service Provider (MSSP) models that allow agencies to rapidly adopt solutions by utilizing Tenable’s Technology Partner network.

Whole-of-state approach enables state-wide collaboration and cooperation

A “whole-of-state” approach — which enables state-wide collaboration to improve the cybersecurity posture of all stakeholders — allows state governments to share resources to support cybersecurity programs for local government entities, educational institutions and other organizations. Shared resources increase the level of defense for SLTs both individually and as a community and reduce duplication of work and effort. States get real-time visibility into all threats and deploy a standard strategy and toolset to improve cyber hygiene, accelerate incident response and reduce statewide risk. For more information, read Protecting Local Government Agencies with a Whole-of-State Cybersecurity Approach.

FY 2024 NOFO advises SLT agencies to adopt key cybersecurity best practices

As in previous years, the FY 2024 NOFO again recommends SLT agencies adopt key cybersecurity best practices. To do this, they are required to consult the CISA Cross-Sector Cybersecurity Performance Goals (CPGs) throughout their development of plans and projects within the program. This is also a statutory requirement for receiving grant funding.

How Tenable One can help agencies meet the CISA CPGs

The CISA CPGs are a prioritized subset of cybersecurity practices aimed at meaningfully reducing risk to critical infrastructure operations and the American people. They provide a common set of IT and operational technology (OT) fundamental cybersecurity best practices to help SLT agencies address some of the most common and impactful cyber risks. Learn more about how Tenable One can help agencies meet the CISA CPGs here.

Learn more

• $1 Billion State and Local Cybersecurity Grant Program Now Open for Applicants
• Protecting Local Government Agencies with a Whole-of-State Cybersecurity Approach
• How to Meet FY 2023 U.S. State and Local Cybersecurity Grant Program Objectives
• New U.S. SLCGP Cybersecurity Plan Requirement: Adopt Cybersecurity Best Practices Using CISA's CPGs
• Study: Tenable Offers Fastest, Broadest Coverage of CISA's KEV Catalog

CISA is warning about a spear-phishing campaign that spreads malicious RDP files. Plus, OWASP is offering guidance about deepfakes and AI security. Meanwhile, cybercriminals have amplified their use of malware for fake software-update attacks. And get the latest on CISA’s international plan, Interpol’s cyber crackdown and ransomware trends.

Dive into six things that are top of mind for the week ending Nov. 8.

1 - CISA: Beware of nasty spear-phishing campaign

Proactively restrict outbound remote-desktop protocol (RDP) connections. Block transmission of RDP files via email. Prevent RDP file execution.

Those are three security measures cyber teams should proactively take in response to an ongoing and “large scale” email spear-phishing campaign targeting victims with malicious RDP files, according to the U.S. Cybersecurity and Infrastructure Security Agency (CISA).

A foreign threat actor is carrying out the campaign. Several vertical sectors, including government and IT, are being targeted.

“Once access has been gained, the threat actor may pursue additional activity, such as deploying malicious code to achieve persistent access to the target’s network,” CISA’s alert reads.
 

Other CISA recommendations include:

• Adopt phishing-resistant multi-factor authentication (MFA), such as FIDO tokens, and try to avoid SMS-based MFA
• Educate users on how to spot suspicious emails
• Hunt for malicious activity in your network looking for indicators of compromise (IoCs) and tactics, techniques and procedures

Although CISA didn’t name the hacker group responsible for this campaign, its alert includes links to related articles from Microsoft and AWS that identify it as Midnight Blizzard. Also known as APT29, this group is affiliated with Russia’s government.

To get more details, check out the CISA alert “Foreign Threat Actor Conducting Large-Scale Spear-Phishing Campaign with RDP Attachments.”

For more information about securing RDP tools:

• “Commonly Exploited Protocols: Remote Desktop Protocol (RDP)” (Center for Internet Security)
• “What is remote desktop protocol (RDP)?” (TechTarget)
• “Wondering Whether RDP IS Secure? Here's a Guide to Remote Desktop Protocol” (AllBusiness)
• “Why remote desktop tools are facing an onslaught of cyber threats” (ITPro)
• “'Midnight Blizzard' Targets Networks With Signed RDP Files” (Dark Reading)

2 - OWASP issues AI security resources

How should your organization respond to deepfakes? What’s the right way of establishing a center of excellence for AI security in your organization? Where can you find a comprehensive guide of tools to secure generative AI applications?

These questions are addressed in a new set of resources for AI security from the Open Worldwide Application Security Project’s OWASP Top 10 for LLM Application Security Project. 

The new resources are meant to help organizations securely adopt, develop and deploy LLM and generative AI systems and applications “with a comprehensive strategy encompassing governance, collaboration and practical tools,” OWASP said in a statement.

These are the new resources:

• “The Guide for Preparing and Responding to Deepfake Events,” which unpacks four types of deepfake schemes – financial fraud, job interview fraud, social engineering and misinformation – and offers guidance about each one in these areas:
  • preparation
  • detection and analysis
  • containment eradication and recovery
  • post-incident activity
• “The LLM and GenAI Center of Excellence Guide,” which aims to help CISOs and fellow organization leaders create a center of excellence for generative AI security that facilitates collaboration among various teams, including security, legal, data science and operations, so they can develop:
  • Generative AI security policies
  • Risk assessment and management processes
  • Training and awareness
  • Research and development
• “The AI Security Solution Landscape Guide,” which offers security teams a comprehensive catalog of open source and commercial tools for securing LLMs and generative AI applications.

To get more details, read OWASP’s announcement “OWASP Dramatically Expands GenAI Security Guidance.”

For more information about protecting your organization against deepfakes:

• “How to prevent deepfakes in the era of generative AI” (TechTarget)
• “Deepfake scams escalate, hitting more than half of businesses” (Cybersecurity Dive)
• “The AI Threat: Deepfake or Deep Fake? Unraveling the True Security Risks” (SecurityWeek)
• “How deepfakes threaten biometric security controls” (TechTarget)
• “Deepfakes break through as business threat” (CSO)

3 - Fake update variants dominate list of top malware in Q3

Hackers are doubling down on fake software-update attacks.

That’s the main takeaway from the Center for Internet Security’s list of the 10 most prevalent malware used during the third quarter.

Malware variants used to carry out fake browser-update attacks took the top four spots on the list: SocGholish, LandUpdate808, ClearFake and ZPHP. Collectively, they accounted for 77% of the quarter’s malware infections. It's the first time LandUpdate808 and ClearFake appear on this quarterly list.

^{(Source: “Top 10 Malware Q3 2024”, Center for Internet Security, October 2024)}

In a fake software-update attack, a victim gets duped into installing a legitimate-looking update for, say, their preferred browser, that instead infects their computers with malware.

Here’s the full list, in descending order:

• SocGholish, a downloader distributed through malicious websites that tricks users into downloading it by offering fake software updates 
• LandUpdate808, a JavaScript downloader distributed through malicious websites via fake browser updates
• ClearFake, another JavaScript downloader used for fake browser-update attacks
• ZPHP, another JavaScript downloader used for fake software-update attacks
• Agent Tesla, a remote access trojan (RAT) that captures credentials, keystrokes and screenshots
• CoinMiner, a cryptocurrency miner that spreads using Windows Management Instrumentation (WMI)
• Arechclient2, also known as SectopRAT, is a .NET RAT whose capabilities include multiple stealth functions
• Mirai, a malware botnet that compromises IoT devices to launch DDoS attacks
• NanoCore, a RAT that spreads via malspam as a malicious Excel spreadsheet
• Lumma Stealer, an infostealer used to swipe personally identifiable information (PII), credentials, cookies and banking information

To get more information, the CIS blog “Top 10 Malware Q3 2024” offers details, context and indicators of compromise for each malware strain.

For details on fake update attacks:

• “Fake browser updates spread updated WarmCookie malware” (BleepingComputer)
• “Beware: Fake Browser Updates Deliver BitRAT and Lumma Stealer Malware” (The Hacker News)
• “Hackers Use Fake Browser Updates for AMOS Malware Attacks Targeting Mac Users” (MSSP Alert)
• “Malware crooks find an in with fake browser updates, in case real ones weren't bad enough” (The Register)
• “Fake Google Chrome errors trick you into running malicious PowerShell scripts” (BleepingComputer)

VIDEO

Fake Chrome Update Malware (The PC Security Channel)

4 - CISA’s first international plan unveiled

CISA has released its first-ever international plan, which outlines a strategy for boosting the agency’s collaboration with cybersecurity agencies from other countries.

Aligning cybersecurity efforts and goals with international partners is critical for tackling cyberthreats in the U.S. and abroad, according to the agency.

The three core pillars of CISA’s “2025 - 2026 International Strategic Plan” are:

• Help make more resilient other countries’ assets, systems and networks that impact U.S. critical infrastructure
• Boost the integrated cyber defenses of the U.S. and its international partners against their shared global cyberthreats
• Unify the coordination of international activities to strengthen cyberdefenses collectively

The plan will allow CISA to “reduce risk to the globally interconnected and interdependent cyber and physical infrastructure that Americans rely on every day,” CISA Director Jen Easterly said in a statement.

5 - Interpol hits phishers, ransomware gangs, info stealers

Interpol and its partners took down 22,000 malicious IP addresses and seized thousands of servers, laptops, and mobile phones used by cybercriminals to conduct phishing scams, deploy ransomware and steal information.

The four-month global operation, titled Synergia II and announced this week, involved law enforcement agencies and private-sector partners from 95 countries and netted 41 arrests.

“Together, we’ve not only dismantled malicious infrastructure but also prevented hundreds of thousands of potential victims from falling prey to cybercrime,” Neal Jetton, Director of Interpol’s Cybercrime Directorate, said in a statement.

In Hong Kong, more than 1,000 servers were taken offline, while authorities in Macau, China took another 291 servers offline. Meanwhile, in Estonia, authorities seized 80GB of server data, which is now being analyzed for links to phishing and banking malware.

For more information about global cybercrime trends:

• “AI-Powered Cybercrime Cartels on the Rise in Asia” (Dark Reading)
• “AI Now a Staple in Phishing Kits Sold to Hackers” (MSSP Alert)
• “The Business of Cybercrime Explodes” (BankDirector)
• “Nation state actors increasingly hide behind cybercriminal tactics and malware” (CSO)

6 - IST: Ransomware attacks surged in 2023

Ransomware gangs went into hyperdrive last year, increasing their attacks by 73% compared with 2022, according to the non-profit think tank Institute for Security and Technology (IST).

The IST attributes the sharp increase in attacks to a shift by ransomware groups to “big game hunting” – going after prominent, large organizations with deep pockets. 

“Available evidence suggests that government and industry actions taken in 2023 were not enough to significantly reduce the profitability of the ransomware model,” reads an IST blog.

Global Ransomware Incidents in 2023

Another takeaway: The ransomware-as-a-service (RaaS) model continued to prove extremely profitable in 2023, and it injected dynamism into the ransomware ecosystem. 

The RaaS model prompted ransomware groups “to shift allegiances, form new groups, or iterate existing variants,” the IST blog reads.

The industry sector that ransomware groups hit the hardest was construction, followed by hospitals and healthcare, and by IT services and consulting. Financial services and law offices rounded out the top five.

To learn more about ransomware trends:

• “Ransomware Is ‘More Brutal’ Than Ever in 2024” (Wired)
• “Ransomware on track for record profits, even as fewer victims pay” (SC Magazine)
• “How Can I Protect Against Ransomware?” (CISA)
• “How to prevent ransomware in 6 steps” (TechTarget)
• “Steps to Help Prevent & Limit the Impact of Ransomware” (Center for Internet Security)

"Humanity pushes back! The Survey Corps develops a risky gambit— have Eren in Titan form attempt to repair Wall Rose, reclaiming human territory from the monsters for the first time in a century. But Titan-Eren's self-control is far from perfect, and when he goes on a rampage, not even Armin can stop him! With the survival of humanity on his massive shoulders, will Eren be able to return to his senses, or will he lose himself forever?"-- Page [4] of cover.

As if seventh grade isn't hard enough, Truth Trendon learns she has to wear a back brace to help her worsening scoliosis. She decides gravity is to blame for curving her spine and ruining her life. Thanks for nothing, Isaac Newton! Truth's brace is hard plastic, tight, and uncomfortable. She has to wear a t-shirt under it and bulky clothes over it, making her feel both sweaty and unfashionable. She's terrified that her classmates are going to find out about it. But it's hard keeping it a secret (especially when gym class is involved), and secrets quickly turn into lies. When Truth's crush entrusts her with a big secret of his own, it leads to even more lying. Add to that a fight with her best friend, a looming school-wide presentation, and mean rumors, and it's a recipe for disaster. As Truth navigates the ups and downs of middle school, can she learn to accept her true self, curvy spine and all?

Beth Taylor is a young girl growing up in Sydney with her parents and grandmother, and aspiring to become a doctor when she graduates. But in one tragic moment, Beth's life will be changed forever. She moves on with her life--now alone--and fate brings her to meet Chad, the dashing real estate entrepreneur from Los Angeles, and her life is complete again. Then a tragic accident happens, and Beth is thrown back into her grief of earlier years. The story follows her path through the process of grief and loss. Through this, Beth is left at rock bottom, and Chad, as her rock, works tirelessly to help her through the pain. Full circle is experienced by Beth when she is trying to heal and meets a person that may be the key to her survival.

More than 20 million face acute food insecurity.

The post Disabled workers lose out on £4.3k a year due to pay gap appeared first on Personnel Today.

There seems to be headlines about floods, wildfires, or hurricanes every week. Scientists say this might be the new normal — that climate change is making natural disasters more and more common.

Tatyana Deryugina is a leading expert on the economics of natural disasters — how we respond to them, how they affect the economy, and how they change our lives. And back when Tatyana first started researching natural disasters she realized that there's a lot we don't know about their long-term economic consequences. Especially about how individuals and communities recover.

Trying to understand those questions of how we respond to natural disasters is a big part of Tatyana's research. And her research has some surprising implications for how we should be responding to natural disasters.

This episode was hosted and reported by Jeff Guo. It was produced by Emma Peaslee and edited by Jess Jiang. It was fact checked by Sierra Juarez and engineered by Josephine Nyounai. Alex Goldmark is our executive producer.

Help support Planet Money and get bonus episodes by subscribing to Planet Money+ in Apple Podcasts or at plus.npr.org/planetmoney.

Learn more about sponsor message choices: podcastchoices.com/adchoices

NPR Privacy Policy

The report finds an arts teacher shortage, gaps in public involvement and capacity issues holding back the full potential of the arts education measure.

I'm very excited to depart for Japan on Sunday for the first time in five years! The week of November 11, I'll be part of Katie Anderson‘s Japan Study Trip, this time after five previous trips between 2012 and 2019 with Kaizen Institute and Honsha Consulting. Read my posts about past trips. Each time, I've learned something new, visited new companies, and met new people — and have just enjoyed everything about being in Japan. […]

The post Reflecting on my First Time Meeting Isao Yoshino in Japan — 2012 by Mark Graban appeared first at Lean Blog.

Posted by CISA on Mar 21

Posted by CISA on Mar 21

Posted by CISA on Mar 23

This episode covers the topic of agile testing. Michael interviews Lisa Crispin as an practionier and book author on agile testing. We cover several topics ranging from the role of the tester in agile teams, over test automation strategy and regression testing, to continuous integration.

Dmitry Jeremov and Svetlana Isakova speak to Matthew Farwell about the Kotlin programming language.

Vivek Ravisankar, the CEO and founder of HackerRank spoke with SE Radio’s Kishore Bhatia about automated coding skills assessments and the HackeRank platform. Topics include: HackerRank as a coding skills assessment platform and how such platforms help in skills assessments and coding interviews - both for developers and employers. The interview also covers the journey from developer learning to getting assessed & recruited through these platforms. Learning from Vivek’s experience giving coding interviews and automating the process of technical screening for Hiring Software Engineers.

When hurricanes Helene and Milton decimated multiple states, incarcerated people were left to fend for themselves. That can’t happen again.

A coalition of churches has achieved some successes in resisting and mitigating against rent gouging and displacement after Hurricane Ian.

Your restoration company could find itself in a PR disaster of its own in your local community should something go awry. Are you ready?

Hiring the right people through good interviewing and vetting processes can help you choose the best possible people to represent your company moving forward, and avoid PR crises.

Earthvisionz announces the launch of several new visualization tools to help disaster recovery professionals. 

It goes without question the use of drones – both in business and for recreation – has truly taken off over the last few years. Now equipped with technology like cameras, thermal imaging capabilities, and even computers, drones are being used in industries across the board.

In the March issue of R&R, Phil walked through his industry predictions from 2018 and revealed how he scored on each. His predictions included labor shortages and wage increases, industry pricing challenges, more TPA influence, growth of outside groups, and projections on weather-related events. To see how he fared, check out his March article! This month, he’s sharing his predictions for 2019!

An appraisal clause proves a useful tool as claims become more often contested.

Ivan Turner, CEO of Show Me Restoration, gives us a glimpse into a chapter of his book “The Confessions of a Serial Restorer” that is pending a publishing date within the first quarter of this year!

Introducing new video series Unlocking Training Success with Lisa Lavender! A comprehensive video series for effective learning.

Building on research conducted in 2018 on the clear and positive link between high levels of psychological safety and a strong teamwork culture, Richard Smith, Professor of Strategic Management and Deputy Dean (Programmes) at the SMU Lee Kong Chian School of Business, has now dug deeper by focusing on diversity. How does closing the gender gap within organisations in Asian countries impact overall company performance? Are employees more productive, or less, with a sense of belonging to the workplace? In this podcast, Professor Smith discusses the key findings of his research conducted in collaboration with consultancy group Great Place to Work Institute Singapore. The rigorous study, one of the largest in Asia to highlight gender differences, surveyed over 400,000 employees from more than 800 organisations located across eight countries in the Asia Pacific.

Psychological Procedures and Tests approved by the Division of Disability Determinations, Florida Department of Health.

Following is the current text of the Americans with Disabilities Act of 1990 [ADA], as amended.

Washington, D.C. -- Radio and television stations are not adequately compensated for their news content on technology platforms because of an imbalance in market power, according to a new study released today by BIA Advisory Services. The study found that each year broadcasters lose nearly $2 billion in value that they generate for two of the largest technology platforms through publication of their valuable content – particularly local news.

WASHINGTON, DC -- Fourteen members of the House of Representatives and three Senators have added their support to the Local Radio Freedom Act (LRFA) opposing "any new performance fee, tax, royalty, or other charge" on local broadcast radio stations bringing the number of cosponsors to 138 in the House and 18 in the Senate. The National Religious Broadcasters (NRB) expressed their support for the resolution, which signals members of Congress's opposition to any potential legislation that imposes new performance royalties on broadcast radio stations for music airplay, in a letter to congressional leaders on June 11.

WASHINGTON, D.C. -- The National Association of Broadcasters (NAB) released a new NAB Podcast episode today featuring a discussion between NAB President and CEO Curtis LeGeyt and Federal Emergency Management Agency (FEMA) Administrator Deanne Criswell about the importance of emergency preparedness. Their conversation highlighted how broadcasters help disaster relief agencies prepare, inform and serve local communities during this year’s hurricane and wildfire seasons.

WASHINGTON, D.C. -- A bipartisan group of 27 U.S. senators, led by Sens. Brian Schatz (D-HI) and Todd Young (R-IN), sent a letter today to Federal Communications Chairwoman Jessica Rosenworcel urging the Commission to take an active role in expediting the continued rollout of the Next Generation TV standard, also known as ATSC 3.0. With over 60% of Americans in range of a Next Gen TV signal, the senators note that, “a successful ATSC 3.0 transition should be a priority of the FCC going forward to ensure that local broadcasters can continue to best serve their communities as a trusted source of local news.”

WASHINGTON, D.C. – In response to the effort by Sens.Ted Cruz (R-TX), Edward Markey (D-MA) and Ben Ray Luján (D-NM) to pass the AM Radio for Every Vehicle Act in the Senate by unanimous consent, the following statement can be attributed to NAB President and CEO Curtis LeGeyt:

Washington, D.C. – In response to the announcement that House Energy and Commerce Committee Chairwoman Cathy McMorris Rodgers (WA) and Ranking Member Frank Pallone (NJ) will hold a legislative hearing April 30 titled “Draft Legislation to Preserve Americans’ Access to AM Radio,” the following statement can be attributed to NAB President and CEO Curtis LeGeyt:

Washington, D.C. – In response to the announcement that the House Energy and Commerce Subcommittee on Innovation, Data and Commerce will hold a markup of legislation to preserve Americans’ access to AM in automobiles, the following statement can be attributed to NAB President and CEO Curtis LeGeyt:

Sorry I'm not a better classical guitar player. I used to be decent.

Ok straight up I want to say that this is my version that I came up with when I was a kid. I like this, and I don't want anyone pestering me about how its not accurate and all that. It is accurate, its just an interpretation. The problem with most versions of this song is that they are draggy and depressing. This song was meant to be "uppety", because it is a song of joy.

Its a great piece because its a very old Christmas song from France, but it can be played all year round because of its structural diversity I guess you could say.

Real quick:

As mentioned at Wikipedia, this song was first published in the year 1553, and was not meant to be sung as a Christmas song, but rather a song to celebrate French nobility. Though the song contains religious lyrics, and respectively not everyone is in to that, they are still really beautiful. If you wish to know more about it you can check out the Wikipedia page here.

TABS


BRING A TORCH JEANETTE ISABELLA (this is the original file - sorry about its presentation)

|--------------------------------------|---------------------------------|
|--3-------------------0--1--0--------|--3-------------------0---------|
|------0--0-----0--2------------2----|------0--0-----0--2-----2---0--|
|------------4------0--------0--------|------------4------0---------0--|
|--------------------------------------|---------------------------------|
|--3------3---------2--------3--------|--3------3---------2---------3--|

|--------------------------------|------------------------------------|
|--3----3--3--1--0--0----------|------------------------------------|
|------0---------------2--0--0-|-------------------5-----5---4--2--|
|--5--5----------------------0--|--4---2h4h5-0-0-----------0--0--|
|--------------------------------|------------------0----0-----------|
|--3-------3--3-----3--------3--|-------0-----3---5--5------3--2--|

|---------------------------------------------------------------------|
|--------------------0----0-----3----0-------------------------------|
|--0----------2--------5-----2------------2--0----------2-----------|
|--2----------0--------------0---------------2----------0-----------|
|---------------------------------------------------------------------|
|--0----------2-----3--------2-------0-------0----------2-----------|
|__staccato__| |__staccato__|

|-------------------------------------------------------------------|
|--0-----0-----3----------------------------------------------------|
|-----5-----2-----0------0------------------------------------------|o
|-----------0-----0-----0-0-----------------------------------------|o
|-------------------------------------------------------------------|
|--3--------2-----3----3---3----------------------------------------|

Transport / Logistic issues / Storage capacity issues

Room 21, Parliament Buildings

Room 21, Parliament Buildings

The Committee for Infrastructure has expressed its disappointment at a Translink fare hike at their last meeting before the election.

Centara Hotels & Resorts launches Love Isaan offers valid for a limited time at three hotels in the northeastern region.

https://www.theguardian.com/world/2024/nov/11/first-edition-cop29-climate-crisis-donald-trump US election | Donald Trump has been declared the winner in Arizona, completing the Republicans’ clean sweep of the so-called swing states and rubbing salt in Democrats’ wounds as it was announced that the president-elect is scheduled to meet with Joe Biden at the White House on Wednesday to discuss the presidential handover. Trump reportedly spoke on the […]

Emilio Estevez shot to fame in the 1980s as a member of the Brat Pack, but then virtually disappeared from Hollywood movies.

Resolution 61 - (Rev. Geneva, 2022) - Countering and combating misappropriation and misuse of international telecommunication numbering resources

Resolution 70 - (Rev. Geneva, 2022) - Telecommunication/information and communication technology accessibility for persons with disabilities

Requirement for disaster relief mobile message service