A security researcher posted private chat messages between members of the Conti ransomware group, providing valuable insight into which vulnerabilities are leveraged by the group and affiliates in their cyber attacks. The Conti ransomware group has earned a reported $180 million in profits by leasing their Ransomware-as-a-Service (RaaS) model to cripple cyber-infrastructure in vulnerable organizations. Tenable has published a variety of content to assist customers with identifying the vulnerabilities leveraged by the Conti ransomware group and its affiliates.

Conti and their affiliates have had a particularly devastating impact on healthcare services, including at least 16 U.S. health and emergency networks. Conti attacked Ireland’s Health Service Executive (HSE), demanding a $20 million dollar ransom, which the HSE refused to pay, opting instead to shut down IT services for mitigation efforts.

Tenable’s 2021 Threat Landscape Retrospective report revealed that 24.7% of healthcare data breaches were the result of ransomware attacks, and ransomware itself was responsible for 38% of all breaches last year. The leaked data revealed that Conti and its affiliates have been exploiting a number of vulnerabilities. There are also reports that Conti and its affiliates have targeted vulnerabilities in the Fortinet FortiOS found in Fortinet’s SSL VPN devices to gain initial access to target environments. 

Organizations are often breached from legacy vulnerabilities present in the IT infrastructure of small companies they have recently acquired. The analysis of the ContiLeaks data identifies the vulnerabilities that are being actively exploited, enabling security managers to prioritize mitigation. 

The Security Response Team (SRT) of Tenable Research has analyzed the ContiLeaks data to ensure customers are fully informed of their vulnerability to Conti RaaS attacks. The SRT also provides breakdowns for the latest vulnerabilities in the Tenable Blog. Tenable Research has released over 165,000 plugins and leads the industry on CVE coverage. Tenable's SRT team continuously works to help organizations prioritize and create remediation plans for the new threats, which often leave very little time for reflection.

This report contains the following chapters:

Executive Summary Chapter - Contains information from the ContiLeaks Dashboard that uses the CVE and Plugin Family filters to display counts of the vulnerabilities and assets that have been affected by ContiLeaks.

Linux Chapter - Contains charts and tables that group together ContiLeaks related CVEs for all Linux Operating Systems and includes an IP Detail for the hosts identified.

Windows Chapter - Contains charts and tables that group together ContiLeaks related CVEs for all Windows Operating Systems and includes an IP Detail for the hosts identified.

Other Chapter - Contains charts and tables that group together ContiLeaks related CVEs for all "Other" Operating Systems and includes an IP Detail for the hosts identified.

Achieving women’s empowerment beyond income and asset increases: What do we still need to know?

How development organizations think about gender.

The post Achieving women’s empowerment beyond income and asset increases: What do we still need to know? appeared first on IFPRI.

Agronomy and Policy Solutions for Effective Implementation of the African Fertilizer and Soil Health Action Plan

CGIAR is pleased to support our regional and national partners in their implementation of the action plan emerging from the May 2024 African Fertilizer and Soil Health (AFSH) Summit. As the seventh policy seminar in the CGIAR series on Strengthening Food Systems Resilience, this event will examine the outcomes of the AFSH Summit and consider […]

The post Agronomy and Policy Solutions for Effective Implementation of the African Fertilizer and Soil Health Action Plan appeared first on IFPRI.

The downsides of emergency trade measures.

scPROTEIN: a versatile deep graph contrastive learning framework for single-cell proteomics embedding  Nature.com

If you are heading to the Chicago Half Marathon, let CTA be your ride there or to any of your destinations across town. Customers can save money by purchasing an unlimited rides pass, either the 1-Day ($5) – far more economical and convenient than the price of gas and parking - or the 3-Day ($15) pass – a real budget-saving move.

The post Fertility at work: Employers can make all the difference appeared first on Personnel Today.

This summer, the Supreme Court struck down Biden's plan to forgive student loan debt for millions of borrowers. Except, on the same day Biden first announced that plan, he also unveiled another, the SAVE plan. And though SAVE sounded less significant than Biden's big forgiveness pledge, it's still alive and could erase even more student debt.

SAVE is officially a loan repayment plan. But through a few seemingly minor yet powerful provisions, many more low-income borrowers will end up paying little or nothing until, eventually, their loans will be forgiven. Even many higher-income borrowers will see some of their debts erased.

In this episode, we explain the history of income-driven repayment. And how borrowers could end up paying less than they might expect once payments resume in October. You can read more from NPR's Cory Turner's here.

This episode was hosted by Cory Turner and Kenny Malone. It was produced by Emma Peaslee, and edited by Molly Messick. It was fact-checked by Sierra Juarez, and engineered by Robert Rodriguez. Alex Goldmark is Planet Money's executive producer.

Help support Planet Money and get bonus episodes by subscribing to Planet Money+ in Apple Podcasts or at plus.npr.org/planetmoney.

Always free at these links: Apple Podcasts, Spotify, Google Podcasts, NPR One or anywhere you get podcasts.

Find more Planet Money: Facebook / Instagram / TikTok / Our weekly Newsletter.

Music: Universal Production Music - "Nola Strut," "Funky Ride," and "The Down Low Disco King"

Learn more about sponsor message choices: podcastchoices.com/adchoices

NPR Privacy Policy

Remember pagers? They were huge in the 80s — these little devices that could receive short messages. Sir Mix-A-Lot even had a song about them! But then cell phones came along, and pagers more or less became obsolete.

Except there's one group of people who still carry pagers: medical doctors. At a surprisingly large number of hospitals, the pager remains the backbone of communication. Need to ask a doctor a question? Page them. Need to summon a doctor to an emergency? Page them. And then... wait for them to call you back.

Almost everyone agrees that pagers are a clunky and error-prone way for doctors to communicate. So why do so many hospitals still rely on them?On today's show: A story about two doctors who hatched a plan to finally rid their hospital of pagers. And the surprising lessons they learned about why some obsolete technologies can be so hard to replace.

This episode was hosted by Jeff Guo and Nick Fountain. It was produced by Sam Yellowhorse Kesler. It was edited by Keith Romer and fact-checked by Sierra Juarez. It was engineered by Robert Rodriguez with help from Maggie Luthar. Alex Goldmark is Planet Money's executive producer.

Help support Planet Money and get bonus episodes by subscribing to Planet Money+ in Apple Podcasts or at plus.npr.org/planetmoney.

Learn more about sponsor message choices: podcastchoices.com/adchoices

NPR Privacy Policy

Frontman BJ Barham talks about working with producer Shooter Jennings and tackling the complexity of Southern identity on the band's new album.

Learn more about sponsor message choices: podcastchoices.com/adchoices

NPR Privacy Policy

TORONTO, ON — A new study shows that while the Greater Toronto Area (GTA) has significantly reduced some of the toxins that contribute to smog, the city continues to violate the Canada-wide standards for ozone air pollution. Smog, which can cause or aggravate health problems such as asthma, emphysema and chronic bronchitis, is produced by […]

TORONTO, ON – Many plants are self-fertilizing, meaning they act as both mother and father to their own seeds. This strategy – known as selfing – guarantees reproduction but, over time, leads to reduced diversity and the accumulation of harmful mutations. A new study published in the scientific journal Nature Genetics shows that these negative […]

On this episode, we share a story about resilience, survival, and one child’s experience in the holocaust. Stick around after the story for an interview with Albert Hepner, where we’ll talk to him about his life after the war, what we can take away from his experiences, and so much more. This episode is hosted by director and producer Michelle Jalowski, who also directed Albert’s story.

Storyteller:

Albert Hepner

The presentation will discuss Walk-Up Metrology—the capability and utilization of a vision and multi-sensor system to be effective for a wide range of measurement applications.

The Digital Twin Consortium (DTC) Composability Framework provides a transformative approach to digital twin system development, focusing on interoperability, security, trustworthiness, scalability, and design reuse to align with businesses’ objectives and evolving needs.

RUMPLESTILTSKIN LIMITED EDITION PRINT by Scott Gustafson is a(n) Limited Edition. The Edition is Limited to Limited to 2750 pcs

A set of programs to assemble and manipulate binary and object files for the aarch64 target

ObjectWeb utility Ant tasks library

ObjectWeb utility Ant tasks library

ObjectWeb utility Ant tasks library

A research team from York University have been working on developing more practical and streamlined devices to assist humans with everyday movements, such as standing and sitting. The objective was to determine if energy could be regenerated in prosthetic devices during these movements, similar to the way in which hybrid electric vehicles recover waste heat from braking and convert it into useable energy.

Greenheck has added three new models to its line of high-performance residential energy recovery ventilators (ERVs).

Here’s an answer for contractors wondering, “How do I effectively sell air movement and ventilation efficiency, and why should I?”

Airflow takes the path of least resistance through buildings, often leaving much of the air stagnant and unaffected. A new IAQ strategy is needed.

This product features multicolored Chroma LEDs that allow users to choose from 24 hues with the included wall control.

HVLS fans offer an affordable and effective solution for large-scale ventilation, as well as demonstrating success in smaller applications.

Nothing lasts forever. This old adage holds true, especially when it comes to HVAC coils.

New technology has made air handlers more efficient and much quieter, and when paired with heat pumps, a great all-electric and sustainable option.

Residential air movement and ventilation can be a challenge that requires multiple callbacks. There is a way to fix that, though.

Many homeowners may underestimate the importance of proper ventilation, which a lack of could cause discomfort and higher energy bills.

 “Technology’s not going to solve everything, but you need to know how to use it,” Nelson Valderrama, CEO of Intuilize, told HVACR distribution professionals during the recent Heating, Air-conditioning & Refrigeration Distributors International conference.

Know what type of detector you are using, know how to use it, and ensure it’s capable of detecting leaks by calibrating it on a regular basis.

With more than a trillion dollars designated from the Infrastructure Investment and Jobs Act (IIJA) starting to hit the wider economic field, HVAC contractors and the utility industry should be aware of how to cash in.

Is reducing a facility's energy consumption by over 130,000 kWh annually through HVAC optimization possible?

In this episode we discuss REST (Representational State Transfer) with Stefan Tilkov. We started out by discussing the 5 steps to REST: IDs, links, Standard Methods, multiple representations and stateless communication. We then looked at how to use HTTP for REST, and discussed about how to use it for Web Services. We then we discussed whether and how to use REST for enterprise applications, and not just for apps on the internet. We concluded the discussion with a couple of recommendations.

Micro services is an emerging trend in software architecture that focuses on small, lightweight applications as a means to avoid large, unmaintainable, monolithic systems. This approach allows for individual technology stacks for each component and more resilient systems. Micro services uses well-known communication schemes such as REST but also require new technologies for the implementation. […]

Efforts to invest in “care, not cops” continue in advance of the 2024 election—albeit at a slower pace than in 2020.

In the face of catastrophic climate change and the genocide in Gaza, can the world afford to hold a spectacle such as the Olympics?

Sonya Massey's killing is a reminder that police do not keep Black women, nor Black disabled people, safe, says activist Cat Brooks.

Flexibility, utilisation value and energy saving are the three main requirements for utility buildings (administration, office and public buildings, schools, hospitals, etc.). Apart from recouping investment costs, so-called life-cycle costs are also becoming increasingly important. These are made up of... Read more

The post Potential Energy Savings In Utility Buildings Using EIB appeared first on EEP - Electrical Engineering Portal.

Every nation has numerous vital facilities that are largely dependent on electricity to function. Infrastructures that are critical to a quick response to outages include the public health system, the communications sector, and government services like emergency first responders. Nonetheless,... Read more

The post How (should) power utilities handle grid failures by utilizing mobile substations appeared first on EEP - Electrical Engineering Portal.

Energy meters are one of the most important components for monitoring and data acquisition in a power system network with roles in every part of the power system network, from the generation to the commercialized end-users, through multiple transmission and... Read more

The post Energy metering in LV/MV substations and utilities: Dos and don’ts in installation and operation appeared first on EEP - Electrical Engineering Portal.

The aging process starts the moment new substation equipment is put into service; how quickly it happens depends on a number of factors, including the equipment’s use, the environment, the quality of maintenance, and many more. However, things aren’t the... Read more

The post Substation Equipment Maintenance: Often Neglected Until Something Big Drops Dead appeared first on EEP - Electrical Engineering Portal.

The newest addition to KEEN Utility’s lineup, the San Jose 90° work boot, is designed for stability on ladders, scaffolding, and slick surfaces. With aluminum safety toes, a KEEN.DRY waterproof membrane, and air-infused cushioning, this updated style provides lightweight protection and slip resistance.

You will never guess where you can find a wide selection of biblical quotations when you visit Harrisburg. Well, yeah, the bible. But I’m talking a building. It’s the State Capitol of all places–hard to believe in this day and age where there is always someone looking to be offended. PA Rep. Kathy Rapp, a Republican out of the northwestern part of the state, put out a nice booklet that is complete with the verses and the scenes that accompany those verses. Many are in the Governor’s reception room, House chambers and Senate chambers. Rapp stated in the first page of her book “Pennsylvania’s history and heritage is rooted in religious significance. From William Penn’s own vision and statement of establishing a Holy Experiment, to the first laws proposed by the General Assembly, to the first section of the first Constitution, the Charter of Privileges, entitled the freedom of conscience, our founders based their way of life on religious convictions. There are verses from the Old Testament, including Isaiah 42:1,4,7,10 “Behold my servant whom I uphold to pen the blind eyes, to bring out the prisoners from the prison, and them that sit in darkness out of the prison house. Sing unto the Lord a new song ye that go down to the sea.” There are also several from the New Testament and the Gospels, like Matthew 5:10 “Blessed are they which are persecuted for righteousness sake.” No, this would not happen today. Not with the hyper-politically correct world we live in. In fact, it’s kind of surprising no one has fought to take it down. Maybe they have and I don’t know it. For example… There’s a case involving Lehigh County and the cross on its county seal that was added in 1944. It was fine then, but of course it had to offend somebody eventually. Yep. It did. The Wisconsin-based Freedom From Religion Foundation—how they came across the symbol is beyond me—joined four Lehigh County residents and filed a lawsuit. According to the Morning Call, they argued “the seal was a violation of their first amendment rights.” U.S. District Judge Edward G. Smith agreed with the folks who were offended. He ruled in September that Lehigh Co. would have to change it on flags, cars or other property but could keep it on older documents. The County appealed to the Third Circuit U.S. Court of Appeals, which is waiting for the U.S. Supreme Court to act on a similar case before it makes a ruling.  

Catholic adoption agencies across the state have been curtailing or stopping their work altogether as a result of a policy by the Wolf Administration that would take away a lot of their power to decide who would be the best parents for adoption. PA Rep. Dave Zimmerman (R-Lancaster) says there is still hope that a religious exemption will be granted by lawmakers for organizations. “A number of us in the House actually held up the budget because of a religious exemption, related to the Foster care and adoption,” Zimmerman told me in his Lancaster district office. Despite their determined efforts the Governor held firm and it was kept out. “They took the religious exemption out, which means an adoption agency would have to work with any type of family arrangements, whether it’s a man and wife, or an LGBT couple. They would have to work with all of those.” Zimmerman and several of his colleagues would like to see the exemption established. They have an agreement from House and Senate leadership to run bills in the fall to make that happen. “This is just one area. So the question is ‘what’s next?’” Zimmerman said. “I believe that our country and our state were established on religious liberty, religious freedom. We need to have these religious exemptions available to business and family throughout our state. It’s very important.” Zimmerman said another issue that drew debate in the last session was the compulsory age for education. The current law requires children between the ages of eight and 17 to be in school. But new regulations installed in one of the budget codes would expand that from six to 18. Zimmerman was one of the lawmakers who opposed the change. “There are a lot of issues with that,” he said. “Some children are just not ready at six. What about someone who graduates early? What about—in our district—the Plain community that gets work permits at 15?  None of that has been really addressed at this point, so there are some real concerns about the compulsory age.” The age change was something that was being pushed by the Governor, Zimmerman said. Even though it was placed in the budget, he says there will be an effort in the fall to get the change modified. ‘I also look at it as a liberties issue,” Zimmerman added. “The parents can probably make a better decision on their children than government.” Zimmerman remains very committed to pro-life issues. He voted for the Down Syndrome Protection Act and has signed on as a co-sponsor to Rep. Stephanie Borowicz’s (R-Centre, Clinton) “heartbeat” abortion bill, which he hopes to see introduced in the fall.

Cross-border linkages among national stock markets have been strengthening over time, aided by free capital flows and the advancement in information technology. The use of electronic trading, which reduces cost and increases the speed of international financial transactions, has helped to advance this trend. Additionally, the deregulation of equity markets and liberalisation of financial accounts in emerging economies increase their connectedness with world markets. In this podcast, Professor of Economics and Statistics Chow Hwee Kwan from the SMU School of Economics, discusses the key findings of her research on the growing financial linkages in the region, and how it enhances the understanding of the interactions among national stock markets.

Tide evo’s debut will begin a new chapter in laundry's evolution, from soap to detergents to powders to liquids to PODS, and now, to fiber tiles.

Winpak will utilize NOVA’s recycled polyethylene (rPE) to manufacture and distribute high-quality packaging materials for the protection of perishable foods, beverages, and personal care products.