CISA is releasing this cybersecurity advisory to warn organizations that malicious cyber actors are exploiting CVE-2022-22954 and CVE-2022-22960. These vulnerabilities affect versions of VMware products. Successful exploitation permits malicious actors to trigger a server-side template injection that may result in remote code execution or escalation of privileges to root level access. Based on this activity, CISA expects malicious cyber actors to quickly develop a capability to exploit newly released VMware vulnerabilities CVE-2022-22972 and CVE-2022-22973 in the same impacted VMware products. AA22-138B Alert, Technical Details, and Mitigations AA22-138B.stix Emergency Directive 22-03 Mitigate VMware Vulnerabilities VMware Security Advisory VMSA-2022-0011 VMware Security Advisory VMSA-2022-0014 All organizations should report incidents and anomalous activity to CISA's 24/7 Operations Center at email@example.com or (888) 282-0870 and to the FBI via your local FBI field office or the FBI's 24/7 CyWatch at (855) 292-3937 or CyWatch@fbi.gov.
Apache Kafka® isn't just for day jobs according to Danica Fine (Senior Developer Advocate, Confluent). It can be used to make life easier at home, too!Building out a practical Apache Kafka® data pipeline is not always complicated—it can be simple and fun. For Danica, the idea of building a Kafka-based data pipeline sprouted with the need to monitor the water level of her plants at home. In this episode, she explains the architecture of her hardware-oriented project and discusses how she integrates, processes, and enriches data using ksqlDB and Kafka Connect, a Raspberry Pi running Confluent's Python client, and a Telegram bot. Apart from the script on the Raspberry Pi, the entire project was coded within Confluent Cloud.Danica's model Kafka pipeline begins with moisture sensors in her plants streaming data that is requested by an endless for-loop in a Python script on her Raspberry Pi. The Pi in turn connects to Kafka on Confluent Cloud, where the plant data is sent serialized as Avro. She carefully modeled her data, sending an ID along with a timestamp, a temperature reading, and a moisture reading. On Confluent Cloud, Danica enriches the streaming plant data, which enters as a ksqlDB stream, with metadata such as moisture threshold levels, which is stored in a ksqlDB table.She windows the streaming data into 12-hour segments in order to avoid constant alerts when a threshold has been crossed. Alerts are sent at the end of the 12-hour period if a threshold has been traversed for a consistent time period within it (one hour, for example). These are sent to the Telegram API using Confluent Cloud's HTTP Sink Connector, which pings her phone when a plant's moisture level is too low.Potential future project improvement plans include visualizations, adding another Telegram bot to register metadata for new plants, adding machine learning to anticipate watering needs, and potentially closing the loop by pushing data backto the Raspberry Pi, which could power a visual indicator on the plants themselves. EPISODE LINKSGitHub: raspberrypi-houseplantsData Pipelines 101 courseTips for Streaming Data Pipelines ft. Danica FineWatch the video version of this podcastDanica Fine's TwitterKris Jenkins' TwitterStreaming Audio Playlist Join the Confluent CommunityLearn more with Kafka tutorials, resources, and guides at Confluent DeveloperLive demo: Intro to Event-Driven Microservices with ConfluentUse PODCAST100 to get an additional $100 of free Confluent Cloud usage (details)
John Durham is the special counsel who was assigned to investigate the alleged spying that was done against Donald Trump's campaign back in 2016. And after remaining relatively quiet for the better part of the last two and a half years, Durham's investigation appears to be ramping up big time. In fact, the first day of the jury trial just began against Michael Sussmann, the former Clinton campaign lawyer currently being charged for lying to the FBI. And this trial is beginning to reveal some of the details surrounding what was really happening inside of the FBI during the period of time when Trump's campaign was being spied on, and at the same time that the national media in this country were banging the drumbeat of “Russian collusion.” ⭕️ Sign up for our NEWSLETTER and stay in touch
This joint cybersecurity advisory was coauthored by the cybersecurity authorities of the US, Canada, New Zealand, the Netherlands, and the UK. Cyber actors routinely exploit poor security configurations, weak controls, and other poor cyber hygiene practices to gain initial access or as part of other tactics to compromise a victim's system. This joint Cybersecurity Advisory identifies commonly exploited controls and practices, and includes best practices to mitigate these risks. AA22-137A Alert, Technical Details, and Mitigations White House Executive Order on Improving the Nation's Cybersecurity NCSC-NL Factsheet: Prepare for Zero Trust NCSC-NL Guide to Cyber Security Measures N-able Blog: Intrusion Detection System (IDS): Signature vs. Anomaly-Based NCSC-NL Guide to Cyber Security Measures National Institute of Standards and Technology SP 800-123 – Keeping Servers Secured NCSC-UK Guidance – Phishing Attacks: Defending Your Organisation Open Web Application Security Project (OWASP) Proactive Controls: Enforce Access Controls All organizations should report incidents and anomalous activity to CISA's 24/7 Operations Center at firstname.lastname@example.org or (888) 282-0870 and to the FBI via your local FBI field office or the FBI's 24/7 CyWatch at (855) 292-3937 or CyWatch@fbi.gov.
On this episode: The ”Poddin' Next Door" crew opens with LGBT issues, YSL RICO, the GOAT Kendrick Lamar album review, Streaming Loophole, and much much more… Listen on most Digital Streaming Platforms. Apple, Amazon, Spotify, Google…… Follow + Subscribe: Instagram - @poddinnextdoor YouTube - Poddin' Next Door
Table of Contents: PRAYER TO NEUTRALIZE OCCULT RITUALS Psalm 77—When Your Discouraged Remember all the Good Things the Lord has Done Supreme Court Reportedly Votes to Overturn Roe v. Wade–Let States Protect Babies From Abortion What is Despicable about ROE is that All the Governments of Men Obeyed SCOTUS for 49 Years while the Preborn…
Table of Contents: Elon Musk Says He's ‘Ok' With Ending Up In Hell, Claims ‘The Vast Majority Of All Humans Ever Born Will Be There' Elon Musk's Tesla covers travel costs for workers seeking abortions Pretend Rebel Billionaire Elon Musk Twitter DIGITAL ID Agenda Elon Musk Is Evil It Begins! First Human Trials Start for…
Ch1: National gas prices continued their staggering rise this weekend, with drivers in Vancouver told to brace for as much as $2.34 per litre at the pumps. Guest: David Macdonald, Senior Economist at Policy Alternatives Ch2: New York authorities on Sunday were investigating how a white 18-year-old, who the governor said had been on the radar of authorities since high school, was able to shoot 10 people to death in a Black neighborhood grocery store. Guest: Reggie Cecchini, Global News Washington Correspondent. Ch3: British Columbia's public safety minister says an automated alert system will be in place in June to notify residents of dangerously high temperatures like last year's fatal heat dome. Guest: Barbara Roden, Mayor of Ashcroft Ch4: The B.C. government is set to spend three quarters of a billion dollars to build a brand new Royal BC Museum in Victoria. Guest: Melanie Mark, BC Minister for Tourism, Culture, and Art. Ch5: Amtrak will postpone restoring its Cascades passenger-train service between Seattle and Vancouver, B.C., until possibly December due to a lack of personnel. Guest: Anthony Perl, Professor of Political Science and Urban Studies at SFU See omnystudio.com/listener for privacy information.
Perth residents are being warned there are likely to be delays in ambulances responding to emergency calls for the second time in a week. St John WA issued a public alert warning of “extremely high demand” impacting response times shortly before 3.30pm on Sunday. “St John is about to alert the public via social media messaging the service is experiencing extremely high demand for ambulances in metropolitan Perth,” St John said in a statement. “It is likely there will be a delay in an ambulance reaching people who call Triple Zero. See omnystudio.com/listener for privacy information.
Episode 373: The Stock Market has been selling off for 6 weeks...here's what I'm doing. Sign up for free ALERTs & Market Commentary at: https://www.investablewealth.com/subscribe/ ------------------------------------------------------
Fresh alerts have been issued for parts of South East Queensland, with flooding now forcing residents to head to higher ground; Scott Morrison is expected to announce his plan to crack down on foreign criminals, as Anthony Albanese commits millions of dollars to protecting the Great Barrier Reef; and a veteran scuba diver and superyacht tour guide has been charged over Tuesday's bungled cocaine shipment that left a man dead at the Port of Newcastle. Presented by Jodie Spears. More news across the day on 7NEWS.com.au and 7Plus. See acast.com/privacy for privacy and opt-out information.
The cybersecurity authorities of the UK, Australia, Canada, New Zealand, and the US have observed a recent increase in malicious cyber activity against managed service providers (MSPs). Allied cybersecurity authorities expect state-sponsored cyber actors to increase their targeting of MSPs in an attempt to exploit provider-customer trust relationships. This advisory includes security guidance tailored for both MSPs and their customers. AA22-131A Alert, Technical Details, and Mitigations Technical Approaches to Uncovering and Remediating Malicious Activity Mitigations and Hardening Guidance for MSPs and Small- and Mid-sized Businesses APTs Targeting IT Service Provider Customers ACSC's Managed Service Providers: How to manage risk to customer networks Global Targeting of Enterprise Managed Service Providers Cyber Security Considerations for Consumers of Managed Services How to Manage Your Security When Engaging a Managed Service Provider Kaseya Ransomware Attack: Guidance for Affected MSPs and their Customers Baseline Cyber Security Controls for Small and Medium Organizations Actions to take when the cyber threat is heightened Top 10 IT Security Action Items to Protect Internet Connected Networks and Information CCCS's Alert: Malicious Cyber Activity Targeting Managed Service Providers CISA Cybersecurity Alert: APT Activity Exploiting MSPs (2018) CISA Cyber Essentials and CISA Cyber Resource Hub Improving Cybersecurity of Managed Service Providers Shields Up Technical Guidance All organizations should report incidents and anomalous activity to CISA's 24/7 Operations Center at email@example.com or (888) 282-0870 and to the FBI via your local FBI field office or the FBI's 24/7 CyWatch at (855) 292-3937 or CyWatch@fbi.gov.
Kevin and Mykie are chatting up the latest pop culture headlines for May Nerd Alerts! From trailer talk and ridiculous reboots to video game shenanigans and stage plays, join us as we assume our positions about some of the nerdy news happening now! Get to listening!
1. Pinterest Launches New ‘TV Studio' App - Pinterest continues to expand its video capabilities, discreetly releasing the 'Pinterest TV Studio' app on both the Apple and Google Play stores earlier this week, albeit it is now only available to a limited number of users. With multiple camera capability, greater editing tools, and more, this program is meant to help live-stream creators improve their broadcasting setups.2. TikTok Pulse - A New Option For Brands- TikTok Pulse is a new contextual advertising option, which means that your adverts will appear in the top 4% of all videos on the platform.Your advertising can appear next to content in a user's For You stream, for example.It gives you the ability to engage with the groups that are most relevant to you by allowing you to choose the category where your adverts appear. Currently, TikTok will offer 12 categories of Pulse for brands to choose where to show their content. Some of the categories included (but not all encompassing) are: Beauty Fashion Cooking Gaming TikTok will apply an in-house inventory filter to ensure that your adverts appear next to high-quality content. They make certain that the content displayed is authenticated and of the greatest brand suitability on the site.You'll be able to assess that impact in several ways, including through third-party verification. You'll have access to these tools for post campaign measurement.Source: https://newsroom.tiktok.com/en-us/tiktok-pulse-is-bringing-brands-closer-to-community-and-entertainment 3. Google Ends Support For Some Image and Video Sitemap Extensions - Google has announced that certain image and video sitemap extensions will be phased out. After assessing the value of the tags, Google decided to phase out the use of these sitemap extensions. After August 6, 2022, the deprecated tags and attributes will no longer be valid. In addition, the documentation for the deprecated tags and attributes has been removed. If publishers opt to leave the discontinued tags in their sitemaps, there will be no penalty or negative consequences.These are the discontinued tags and attributes: autoplay and allow_embed of the tag tag and its attributes tag and its attributes Read the Official Notice of Image and Video Sitemap Deprecations here.4. What Is The Reason For Core Web Vitals Scores Flux? - Google's John Mueller explains why fundamental web vitals scores fluctuate despite the fact that online pages remain unchanged. There are two types of core web vitals scores, according to John:a. Field Data - These are the primary web vitals scores that are collected from real-world visitors to a website. The goal of Field Data is to display the real-world user experience of actual site users.b.Lab Data - These are the main web vitals scores that a simulated visit generates. A Google Lighthouse bot will visit the page being tested, and an algorithm will simulate the visit as if it were made on a mobile phone with a slow internet connection.And Google uses Field data for the core web vitals score.According to John Mueller, there are a slew of other elements that influence the basic web vitals scores, and many of them are out of our control.Google's Web.dev website provides an explanation of why field data is always changing and not necessarily consistent from month to month.Source: https://youtu.be/p9CTwNA66V0 5. Google Answers If Meta Description Matters For Rankings - The question of whether a meta description can be used to impact search rankings was answered by Google's John Mueller.John Mueller answered:“So the meta description is primarily used as a snippet in the search results page. And that's not something that we would use for ranking. But obviously, having a good snippet on a search results page, that can make it more interesting for people to actually visit your page when they see your page ranking in the search results.”Source: https://youtu.be/p9CTwNA66V0?t=1607 6. Meta Updates Reels Monetization Options to Better Incentivize Creators - YouTube already has its Partner Program, which serves as a complement to Shorts, as well as its Shorts Fund, and TikTok just took its first steps toward a revenue share program for top creators. And now, Meta is sweetening the deal for Reels with an update to its Reels Play Bonus program, which will restructure its payouts process, as well as a new 'Challenges' option for Facebook Reels, which will give you more possibilities to make money from your short movies.Meta hasn't given a detailed explanation of how its calculations will change, but the upgrade appears to be targeted at rewarding smaller-scale entrepreneurs rather than the huge players who take up all of the money.For example, if someone has a million followers, reaching whatever engagement requirement set for Reels incentives will be considerably easier for them, which disadvantages rising stars and those wanting to establish themselves in the field. By taking into account unpredictability and possibly compensating producers based on some form of engagement per viewer ratio, the program could become more egalitarian and encouraging.In addition, Meta is launching "Challenges" on Facebook, which is "a new incentive that lets Reels Play bonus program creators uncover new methods to earn up to $4,000 in a given month."While creator funding programs sounds awesome, they are not scalable. Thus Meta announced that:“Building on the strong advertising and revenue sharing foundation we've established with in-stream ads, we've been rolling out overlay ads in Reels on Facebook, and we're starting to test them with a wider set of creators, (beyond the in-stream ads program) to expand availability to more creators and open up more high quality inventory for advertisers on our platform.”7. Meta Is Adding New Ad Formats And Tools For Small Businesses - During National Small Business Week, Meta added new lead generation and content sharing options for small businesses. Over 70% of people want to be able to engage with businesses in the same way they communicate with friends and family: through messaging, according to Meta. Meta is using this new data to create Facebook and Instagram advertising that can be created directly from the WhatsApp Business app. The mailbox receives the second messaging update. By combining all messaging systems into one inbox, Meta is simplifying business communications. It will also include WhatsApp messages in the future. The most recent messaging update allows you to deliver promotional message adverts straight through the Meta Business Suite to clients who have opted into communication.Meta is also introducing a slew of new tools to assist businesses in capturing and managing leads on the platform. Quote Requests on Instagram, Lead Filtering with Instant Forms, Creative Flexibility, Gated Content, and Partner Integrations are some of the features available. On Instagram, the Quote Request is presently being tested with a few businesses. It basically lets businesses to put a "Get Quote" button to their Instagram profile as well as stickers to their Instagram Stories. Lead screening will be available to businesses in the near future. This will be accomplished by going over the answers to a multiple-choice question. Meta is also putting its Instant Form to the test in order to improve personalisation. Selected firms can experiment with adding pictures and content to their Instant Forms, providing more visual information to consumers.Companies will soon be allowed to access gated content. SMBs can provide resources to leads when they fill out the Lead Ad form by providing gated content. This allows the user to stay on the platform without leaving it.While all of these elements are currently in testing, Meta is having a conference called Conversations on May 19th to further discuss them. You'll be able to get additional information on the above tools and services once you've registered.Source: https://www.facebook.com/business/news/introducing-new-ads-and-messaging-tools-for-small-businesses 8. LinkedIn Updates Their Content Ranking Algorithm - LinkedIn now allows users to filter out stuff that they aren't interested in. Individual postings can be marked as "I don't want to see this," and content from specific authors can be minimized. Users will also be able to control how much political content appears in their news feed. It will try to prioritize quality postings and activities over comments or actions that members will not find beneficial.LinkedIn's feed will now show more of: Posts, videos and other content relevant to users' individual interests Opportunities for authentic engagement Safe and productive conversations that adhere to community guidelines LinkedIn's feed will show less of: Irrelevant updates, i.e., a connection's comment on the post of someone you're not connected to Politically oriented posts (if you choose to) Alerts – users will no longer be notified of every position change or update in their network Low-quality clickbait posts designed for interactions Polls from people you don't know Source: https://blog.linkedin.com/2022/may/5/keeping-your-feed-relevant-and-productive
Episode 372: There's a global economic crisis but it might be a windfall for the USA. Sign up for free ALERTs & Market Commentary at: https://www.investablewealth.com/subscribe/ ------------------------------------------------------
Ch1: Extraverts are highly sociable — they really care about their relationships, and possess outstanding social skills. Well, that's how extraverts are generally portrayed. But, according to new work, that's not exactly how other people see them. Guest: Hanne Collins, Doctoral Student, Organizational Behavior at Harvard Business School. Ch2: The Surrey Board of Trade is not happy with the way the BC Government is setting out to pursue and address the issues repeat offenders are causing businesses. Guest: Anita Huberman, CEO Surrey Board of Trade. Ch3: People in British Columbia will soon get alerts on their phones when a forest fire or a catastrophic flood might threaten their home and force them to evacuate. Guest: Barbara Roden, Mayor of the Village of Ashcroft Ch4: Some disappointing job numbers for B-C today. After an 8-month streak of gains, April say the provincial economy lose 2000 jobs, and the unemployment rate went from 5.1% in March to 5.4% in April. Guest: Ravi Kahlon, Minister of Employment and Jobs/Economic Recovery. See omnystudio.com/listener for privacy information.
Episode 371: Consumers haven't run out of money yet. Sign up for my free ALERTs & Market Commentary at: https://www.investablewealth.com/subscribe/ ------------------------------------------------------
Table of Contents: STRATEGIC WARFARE PRAYER!!!! We are Fearfully and Wonderfully Made–Fetal-Maternal Microchimerism For pregnancy–The supplements that are essential for your baby Prayer Alert!!–EMERGENCY GLOBAL GOV'T ALERT: Threat to national sovereignty set to go down May 22-28 at WHO World Health Assembly–World Health Organization Is Preparing Vote To Strip The US (And 194 Other Nations) Of…
Table of Contents: Beta Testing For the Rest of the World–Nigeria Blocks 73 MILLION Smart Phones For No Digital ID Italy Announces Rollout of Dystopian ‘Social Credit System' to ‘Conserve Resources'– First of its Kind in the EU – Compliant Citizens Will Be Rewarded for ‘Good Behavior' Demonic “Creature-Like Thing” Exits Jab Victim: 32 Year…
This week is Part II of our "New Laws" for 2022 series. We talk about bills regarding ECOs & TDOs, Marcus Alerts, Financial Exploitation, Law Enforcement Firearms, Retired Law Enforcement Officers, and Facial Recognition Technology.
On this episode: The ”Poddin' Next Door" crew opens with the usual banter and slappers for your head tops, Elon D-Riding, Willow writing Tupac, and other topics. Thanks for the support. Listen on most Digital Streaming Platforms. Apple, Amazon, Spotify, Google…… Follow + Subscribe: Instagram - @poddinnextdoor YouTube - Poddin' Next Door