de

New FakeCall Malware Variant Hijacks Android Devices for Fraudulent Banking Calls

Cybersecurity researchers have discovered a new version of a well-known Android malware family dubbed FakeCall that employs voice phishing (aka vishing) techniques to trick users into parting with their personal information. "FakeCall is an extremely sophisticated Vishing attack that leverages malware to take almost complete control of the mobile device, including the interception of incoming




de

Critical Flaws in Ollama AI Framework Could Enable DoS, Model Theft, and Poisoning

Cybersecurity researchers have disclosed six security flaws in the Ollama artificial intelligence (AI) framework that could be exploited by a malicious actor to perform various actions, including denial-of-service, model poisoning, and model theft. "Collectively, the vulnerabilities could allow an attacker to carry out a wide-range of malicious actions with a single HTTP request, including




de

Synology Urges Patch for Critical Zero-Click RCE Flaw Affecting Millions of NAS Devices

Taiwanese network-attached storage (NAS) appliance maker Synology has addressed a critical security flaw impacting DiskStation and BeePhotos that could lead to remote code execution. Tracked as CVE-2024-10443 and dubbed RISK:STATION by Midnight Blue, the zero-day flaw was demonstrated at the Pwn2Own Ireland 2024 hacking contest by security researcher Rick de Jager. RISK:STATION is an "




de

FBI Seeks Public Help to Identify Chinese Hackers Behind Global Cyber Intrusions

The U.S. Federal Bureau of Investigation (FBI) has sought assistance from the public in connection with an investigation involving the breach of edge devices and computer networks belonging to companies and government entities. "An Advanced Persistent Threat group allegedly created and deployed malware (CVE-2020-12271) as part of a widespread series of indiscriminate computer intrusions designed




de

VEILDrive Attack Exploits Microsoft Services to Evade Detection and Distribute Malware

An ongoing threat campaign dubbed VEILDrive has been observed taking advantage of legitimate services from Microsoft, including Teams, SharePoint, Quick Assist, and OneDrive, as part of its modus operandi. "Leveraging Microsoft SaaS services — including Teams, SharePoint, Quick Assist, and OneDrive — the attacker exploited the trusted infrastructures of previously compromised organizations to




de

Canada Orders TikTok to Shut Down Canadian Operations Over Security Concerns

The Canadian government on Wednesday ordered ByteDance-owned TikTok to dissolve its operations in the country, citing national security risks, but stopped short of instituting a ban on the popular video-sharing platform. "The decision was based on the information and evidence collected over the course of the review and on the advice of Canada's security and intelligence community and other




de

Malicious PyPI Package ‘Fabrice’ Found Stealing AWS Keys from Thousands of Developers

Cybersecurity researchers have discovered a malicious package on the Python Package Index (PyPI) that has racked up thousands of downloads for over three years while stealthily exfiltrating developers' Amazon Web Services (AWS) credentials. The package in question is "fabrice," which typosquats a popular Python library known as "fabric," which is designed to execute shell commands remotely over




de

A Hacker's Guide to Password Cracking

Defending your organization’s security is like fortifying a castle—you need to understand where attackers will strike and how they’ll try to breach your walls. And hackers are always searching for weaknesses, whether it’s a lax password policy or a forgotten backdoor. To build a stronger defense, you must think like a hacker and anticipate their moves. Read on to learn more about hackers'




de

North Korean Hackers Target Crypto Firms with Hidden Risk Malware on macOS

A threat actor with ties to the Democratic People's Republic of Korea (DPRK) has been observed targeting cryptocurrency-related businesses with a multi-stage malware capable of infecting Apple macOS devices. Cybersecurity company SentinelOne, which dubbed the campaign Hidden Risk, attributed it with high confidence to BlueNoroff, which has been previously linked to malware families such as




de

New CRON#TRAP Malware Infects Windows by Hiding in Linux VM to Evade Antivirus

Cybersecurity researchers have flagged a new malware campaign that infects Windows systems with a Linux virtual instance containing a backdoor capable of establishing remote access to the compromised hosts. The "intriguing" campaign, codenamed CRON#TRAP, starts with a malicious Windows shortcut (LNK) file likely distributed in the form of a ZIP archive via a phishing email. "What makes the CRON#




de

The vCISO Academy: Transforming MSPs and MSSPs into Cybersecurity Powerhouses

We’ve all heard a million times: growing demand for robust cybersecurity in the face of rising cyber threats is undeniable. Globally small and medium-sized businesses (SMBs) are increasingly targeted by cyberattacks but often lack the resources for full-time Chief Information Security Officers (CISOs). This gap is driving the rise of the virtual CISO (vCISO) model, offering a cost-effective




de

Bitcoin Fog Founder Sentenced to 12 Years for Cryptocurrency Money Laundering

The 36-year-old founder of the Bitcoin Fog cryptocurrency mixer has been sentenced to 12 years and six months in prison for facilitating money laundering activities between 2011 and 2021. Roman Sterlingov, a dual Russian-Swedish national, pleaded guilty to charges of money laundering and operating an unlicensed money-transmitting business earlier this March. The U.S. Department of Justice (DoJ)




de

The ROI of Security Investments: How Cybersecurity Leaders Prove It

Cyber threats are intensifying, and cybersecurity has become critical to business operations. As security budgets grow, CEOs and boardrooms are demanding concrete evidence that cybersecurity initiatives deliver value beyond regulation compliance. Just like you wouldn’t buy a car without knowing it was first put through a crash test, security systems must also be validated to confirm their value.




de

New GootLoader Campaign Targets Users Searching for Bengal Cat Laws in Australia

In an unusually specific campaign, users searching about the legality of Bengal Cats in Australia are being targeted with the GootLoader malware. "In this case, we found the GootLoader actors using search results for information about a particular cat and a particular geography being used to deliver the payload: 'Are Bengal Cats legal in Australia?,'" Sophos researchers Trang Tang, Hikaru Koike,




de

5 Ways Behavioral Analytics is Revolutionizing Incident Response

Behavioral analytics, long associated with threat detection (i.e. UEBA or UBA), is experiencing a renaissance. Once primarily used to identify suspicious activity, it’s now being reimagined as a powerful post-detection technology that enhances incident response processes. By leveraging behavioral insights during alert triage and investigation, SOCs can transform their workflows to become more




de

North Korean Hackers Target macOS Using Flutter-Embedded Malware

Threat actors with ties to the Democratic People's Republic of Korea (DPRK aka North Korea) have been found embedding malware within Flutter applications, marking the first time this tactic has been adopted by the adversary to infect Apple macOS devices. Jamf Threat Labs, which made the discovery based on artifacts uploaded to the VirusTotal platform earlier this month, said the Flutter-built




de

New Phishing Tool GoIssue Targets GitHub Developers in Bulk Email Campaigns

Cybersecurity researchers are calling attention to a new sophisticated tool called GoIssue that can be used to send phishing messages at scale targeting GitHub users. The program, first marketed by a threat actor named cyberdluffy (aka Cyber D' Luffy) on the Runion forum earlier this August, is advertised as a tool that allows criminal actors to extract email addresses from public GitHub




de

Iranian Hackers Use "Dream Job" Lures to Deploy SnailResin Malware in Aerospace Attacks

The Iranian threat actor known as TA455 has been observed taking a leaf out of a North Korean hacking group's playbook to orchestrate its own version of the Dream Job campaign targeting the aerospace industry by offering fake jobs since at least September 2023. "The campaign distributed the SnailResin malware, which activates the SlugResin backdoor," Israeli cybersecurity company ClearSky said




de

WHY COMPETITION IS RELEVANT TO SELF-DEFENSE

Recently saw this on YouTube, from a grandmaster competition shooter who is also in law enforcement. I agree with him. I’ve said for years that while a shooting match is not a gunfight, a gunfight most certainly is a shooting match. Competition experience makes shooting under pressure the norm. Wyatt Earp competed in the informal […]




de

THE LAW AND THE FACTS ARE ON OUR SIDE, BUT WE SHOULD BE USING EMOTION, TOO

Historically, both law and facts are on the gun owners’ side of the “gun control” debate, and the Other Side had relied largely on emotion.  I respectfully submit that emotion is something our side should play to, as well. I made that point recently at the 2024 Gun Rights Policy Conference in San Diego last […]




de

SUICIDE PREVENTION

While participating in a Zoom conference with other members of the New Hampshire Firearms Safety Coalition, of which I’ve been a proud member for a quarter century or so, I was reminded that I have not addressed here a topic NHFSC has strongly and successfully focused upon: suicide prevention. The organization was founded by the […]




de

CATCH THE NEW SECOND AMENDMENT FOUNDATION VIDEO

The Second Amendment Foundation has released a 22-minute video celebrating its fifty years of fighting for gun owners’ civil rights. Some of those who’ve been along for most or all of the ride, including founder Alan Gottlieb, give insight into how far we’ve come.  See it here:




de

Wk3/4: Better late than dead

The difficulty of this weeknotes things is that entire weeks can go by without anything interesting happening. That’s…




de

Geekcode 2022

Another even year, another odd Geekcode. The Geekcode is a very old tradition. It was written by Robert…




de

2022 in Video Games

I’ve played some computer games in 2022. Here are some words about some of them. Final Fantasy 14…




de

Trump Embraces RFK Jr.’s Views on Vaccines, Fluoride

In the waning days of his campaign, former President Donald Trump has further embraced some of Robert F. Kennedy Jr.’s incorrect or controversial views on health, including vaccines and fluoride.

The post Trump Embraces RFK Jr.’s Views on Vaccines, Fluoride appeared first on FactCheck.org.




de

Posts Spread Unfounded Claim of Race-Based Threat of Violence in Georgia

Posts shared on Facebook make an unfounded claim of racially motivated threats of violence in Gwinnett County, Georgia, "from now until the Inauguration." The county sheriff's office said it had "not received any information indicating threats to any group(s) on or after election day."

The post Posts Spread Unfounded Claim of Race-Based Threat of Violence in Georgia appeared first on FactCheck.org.




de

Trump Makes Unsupported Claim About ‘Massive CHEATING’ in Philadelphia

Former President Donald Trump posted to social media an unsupported claim about "massive CHEATING" in Philadelphia, which he claimed had drawn the attention of law enforcement. The Philadelphia Police Department, the Philadelphia district attorney, a Republican city council member and the Pennsylvania Department of State all refuted the claim.

The post Trump Makes Unsupported Claim About ‘Massive CHEATING’ in Philadelphia appeared first on FactCheck.org.




de

The Devils


Needless to say, I was giddy at the thought of getting an early read of Joe Abercrombie's newest novel months before its pub date. The Age of Madness trilogy was pretty bleak, even by the author's standards. Lord Grimdark is not known for his romantasy or cozy fantasy works and it's safe to say that his last series truly delivered on the grimdark front. From the blurb, it appeared that Abercrombie went for a more humorous style and tone for this new one and I for one was looking forward to that. As mentioned in my review of The Wisdom of Crowds, I felt that it was a bit too high-handed with the social commentary and a bit overdone with Judge's cruelty and the Great Change in general.

The Devils is indeed a more fun and entertaining novel. Not a light read per se, but lighter than what Abercrombie has accustomed to with the First Law books. Sure, the narrative is snarky and filled with jokes and hilarious scenes, but à la Abercrombie there is nevertheless plenty of blood and gore to go along with the "lighter" elements of the tale. I doubt that The Devils will end up on the ballot for the World Fantasy Award, yet I can assure you that it's the most fun you'll have reading SFF in 2025!

Here's the blurb:

A brand-new epic fantasy from New York Times bestselling author Joe Abercrombie, featuring a notorious band of anti-heroes on a delightfully bloody and raucous journey.

Holy work sometimes requires unholy deeds.

Brother Diaz has been summoned to the Sacred City, where he is certain a commendation and grand holy assignment awaits him. But his new flock is made up of unrepentant murderers, practitioners of ghastly magic, and outright monsters. The mission he is tasked with will require bloody measures from them all in order to achieve its righteous ends.

Elves lurk at our borders and hunger for our flesh, while greedy princes care for nothing but their own ambitions and comfort. With a hellish journey before him, it's a good thing Brother Diaz has the devils on his side.


It's difficult to judge how good/bad the worldbuilding is. As was the case with The Blade Itself, Abercrombie doesn't reveal a whole lot about this alternate Europe and the rest of the world. Perhaps subsequent installments will flesh out the world a bit more, as was the case with the First Law trilogy. But that remains to be seen. The author keeps his cards rather close to his chest in this first volume and only provides enough information so that readers can follow what's going on. The Devils is set in a universe where the great Roman Empire, the one that ruled the Mediterranean and much of Europe, Western Asia, and North Africa, never came to be. Rome was conquered by Carthage and became part of its empire, until Carthage was swalloed by the opening of a gate to Hell that went terribly wrong. There is a schism between the Church of the West, which is matriarchal and follows the Saviour (who was a woman), and the Church of the East, which patriarchal and follows the Father of the Saviour. There is no Muslim/Islam analog, for some reason. The Holy Land is occupied by elves, against whom the Crusades were fought. Prophecies seem to indicate that the elves will return once more to destroy the world, which is why something must be done to reconcile the Church under one creed so that the elven menace can be faced by a united front.

Brother Diaz, a craven monk with little to recommend him, is summoned to the Holy City, where he's press-ganged into becoming the head of the Chapel of the Holy Expediency. Though it goes against its precepts, the Church understands that sometimes one must fight fire with fire. As stated in the cover blurb, holy work sometimes requires unholy deeds. The Chapel of the Holy Expediency is comprised of evil elements that should have been put to death. Instead of being burned at the stake, they were given the opportunity to atone for their crimes by serving Her Holiness. A lost scion of  the royal family of Troy has been found. Brother Diaz and his flock must return her to the fabled city of splendors so she can ascend the Serpent Throne, and in so doing perhaps heal the rift and reunite the Eastern and the Western branches of the Church. The problem is that everyone with a claim to the crown will stop at nothing to kill the girl and ascend the Serpent Throne. And Troy is a long way from Rome. To make matters worse, all Brother Diaz has to rely on are the street urchin who is to somehow become empress, a cursed Knight Templar, a geriatric vampire, a jack-of-all-trades woman who's seen it all, a supposedly flesh-eating elf, a self-important necromancer, and a sex-crazed Norse female werewolf. What can possibly go wrong along the way? Why everything, of course!

It's obvious that Abercrombie decided that he was going to have fun writing this one, so buckle up because this is going to be one heck of a ride. Forget about the dark and dismal atmosphere of the Age of Madness, The Devils will have you chuckling and then laughing out loud in basically every single chapter. As is the author's wont, characterization remains this novel's best facet. Everyone gets a POV other than Baptiste, which makes me wonder why. This is another character-driven effort and Abercrombie sure came up with a motley crew of flawed men and women. Understandably, Alex, would-be Empress of the East if they can somehow survive this shit show and reach Troy and put her on the throne, is sort of the main protagonist. I say sort of because there is a nice balance between most of the perspectives and everyone shares the limelight. And though I've more or less enjoyed everyone's POV, with the exception of Vigga who was always a bit over-the-top for my liking, I have to admit that Balthazar Sham Ivam Draxi is probably my favorite Abercrombie protagonist other than the inimitable Sand dan Glokta. True, these characters are not always the sharpest tools in the shed, but they each get their moment to shine and it's nice to see that each dog has its day. In true Abercrombie fashion, the author plays with our expectations and pulls the rug from under our feet a number of times. Even with a more humorous style and tone, Joe Abercrombie will always be Joe Abercrombie.

Having said that, I do believe that he went a bit overboard with the jokes and the snarky bits. And yet, to be honest, The Devils is that kind of work. It's meant to be a fun and thrilling ride and this is exactly what it is. Some sequences move more fluidly than others, yet pace is never really an issue. Some scenes only seem to exist for comedic purposes and don't necessarily add much to the story itself, true. But who cares in the end? You're having a good time from the first to the very last page.

Mark your calendar. The Devils is sure to be a hit next spring!

The final verdict: 8/10

For more info about this title, follow this Amazon Associate link.




de

The FTC comes after neobank Dave for misleading marketing, hidden fees




de

Law enforcement operation takes down 22,000 malicious IP addresses worldwide




de

AI decodes oinks and grunts to keep pigs happy




de

Man who made 'depraved' child images with AI jailed




de

Australia plans social media ban for under-16s




de

X is the latest social media site letting 3rd parties use your data to train AI models




de

How to get funding from deluded, self-congratulating investors

From 1997 to 2012 just 1% of VC funded companies had female founders. Three of those companies were mine. People tell me it’s much better for women now, but statistically, this is BS. I raised money for a startup recently, and here’s what I found works best for female founders: Get a male cofounder. Women raising money without […]

The post How to get funding from deluded, self-congratulating investors appeared first on Penelope Trunk Careers.
















de

Lost World reviews video

Reviews of The Cure's Songs of a Lost World. Video sent out by The Cure via Whatsapp.




de

Lost World Deluxe Digital Download

Update: Now available in the UK store too, but only until midnight tonight (Nov. 7th).

It's now available in the EU and AU shops as well.


Available from The Cure shop (US only, but there are ways around that):

THE CURE SONGS OF A LOST WORLD (DELUXE) DIGITAL DOWNLOAD (MP3 & FLAC)

US $4.99

DELUXE DIGITAL ALBUM FEATURES SONGS OF A LOST WORLD STANDARD TRACKLIST PLUS FIVE LIVE BONUS TRACKS RECORDED AT SHORELINE AMPHITHEATER IN 2023.

TRACKLIST:

1.ALONE

2.AND NOTHING IS FOREVER

3.A FRAGILE THING

4.WARSONG

5.DRONE:NODRONE

6.I CAN NEVER SAY GOODBYE

7.ALL I EVER AM

8.ENDSONG

9.ALONE : LIVE @ SHORELINE AMPHITHEATER 2023

10.AND NOTHING IS FOREVER : LIVE @ SHORELINE AMPHITHEATER 2023

11.A FRAGILE THING : LIVE @ SHORELINE AMPHITHEATER 2023

12.I CAN NEVER SAY GOODBYE : LIVE @ SHORELINE AMPHITHEATER 2023

13.ENDSONG : LIVE @ SHORELINE AMPHITHEATER 2023

LIVE @ SHORELINE AMPHITHEATER 2023