BC INTERNET
Saved by @Alex1Powell

FLASH: "Emergency Directive 21-01 calls on all federal civilian agencies to review their networks for indicators of compromise and disconnect or power down SolarWinds Orion products immediately."-@CISAgov Read more:

 CONTD: @CISAgov is responding to an exploit of Federally operated @solarwinds Orion products by malicious actors. They Issued an Emergency Directive to federal civilian agencies to review networks & DISCONNECT OR POWER DOWN ALL SOLARWINDS ORION PRODUCTS NOW!
CONTD: @FireEye discovered an attack trojanizing @solarwinds Orion biz software distributing malware named #SUNBURST.
The attacker’s use multiple techniques to evade detection/obscure activity. The campaign is widespread affecting public & private organizations around the world.
CONTD: The trojan version of a @SolarWinds Orion plug-in codename #SUNBURST. After a dormant period of up to 2 weeks, it retrieves & executes commands including transfering files, executing files, profile the system, reboot, & disable system services.... more
CONTD: #SUNBURST hides network traffic & stores recon within legitimate plugin configuration files allowing it to blend in with legitimate activity. The backdoor uses obfuscated blocklists to i.d. forensic & anti-virus tools running as processes, services, & drivers.... more
CONTD: Worldwide Victims With #SUNBURST Distributed March thru May 2020. @FireEye has detected this malware in government, consulting, tech, telecom & extractive entities in North America, Europe, Asia & the Middle East & anticipate there are additional victims.... more
CONTD: After #SUNBURST gains access the attacker group disguise their operations moving laterally in the compromised network. The attacker maintains a light malware footprint, instead preferring legitimate credentials & remote access for access through the victim’s environment.
CONTD: If @SolarWinds infrastructure is not isolated:
-Restrict scope of connectivity to endpoints from SolarWinds servers!
-Restrict the scope of accounts that have local administrator privileged on SolarWinds servers!
.... more
CONTD: If @solarwinds infrastructure is not isolated:
-Block Internet egress from servers or other endpoints with SolarWinds software.
-At MINIMUM changing passwords for accounts that have access to SolarWinds servers / infrastructure.
....more
CONTD: If @solarwinds manages networking infrastructure:
-Review network device configurations for unexpected / unauthorized modifications. This is a proactive measure due to the scope of SolarWinds functionality.
CONTD: @SolarWinds’ Customers;
-425+ of US Fortune 500 co's
-All of top 10 US telecom co's
-All 5 branches US Military
-Pentagon
-State Department
-NASA
-NSA
-USPS
-NOAA
-DOJ
-Office of POTUS
-Top 5 US accounting firms
-100's universities/colleges
List: https://t.co/N202UZdyjC

More from Internet

Fidato
Fidato
@tequieremos
Whatsapp will start forcing users to share personal data with Facebook which is it's parent company. It doesn't come as a surprise since all the major giants of Silicon valley; Google, Amazon, Facebook, Microsoft etc are deeply integrated with US intelligence agencies.

THREAD

In 2013, Edward Snowden, an employee of National Security Agency, revealed that the US govt was running a vast Internet surveillance program and tapping every major Silicon Valley platform and company— Facebook, Google, Apple, Amazon including mobile games like Angry Birds.

[1]

The most astonishing program revealed by Snowden’s disclosures is called PRISM, which involves a sophisticated on-demand data tap housed within the datacenters of the biggest and most respected names in Silicon Valley: Google, Apple, Facebook, Yahoo!, and Microsoft.

[2]

These devices allow the National Security Agency (NSA) to extract whatever the agency requires, including emails, attachments, chats, address books, files, photographs, audio files, search activity, and mobile phone location history.

[3]

Edward Snowden also revealed the Mass Metadata Surveillance System of America's National Security Agency (NSA) in his documents. Let's suppose if NSA had found someone dialing number of an al Qaeda member, and assume that this person had phoned 100 other people over the...

[4]
INTERNET
Elaine Hayes MCCT #MIEExpert \u2618
Elaine Hayes MCCT #MIE...
@e_hayes12
A thread on teaching live lessons using @MicrosoftTeams Meet Now function where students follow their normal timetable except online - will go into more detail on every point in a blog post later. Have used Teams for live teaching have supported over 100 live lessons since March

1. If you are using the desktop app, check you have the latest version of Teams so that you should have Breakout rooms enabled. Check by clicking your profile picture, then About - I have version 1.3.00.28779. If you have 1.2..., click on check for updates to get the latest


2. Set your entry routine. I get my students to enter with their microphone muted - you can also not allow attendees to unmute by opening the participants list, clicking the ellipsis and selecting that option.


3. Make sure students arrive as attendees - some organisations have this set up to automatically happen that only meeting organizer is the presenter and others are attendees. Can change this in the manage permissions menu to only me if not already set (opens in a web browser).


4. Classroom routine and expectations - first lesson I share my screen and show the students the raise hand function for when they want to ask questions, how to access the chat function and how to react to questions as opposed to typing answers
INTERNET
Advertisement
Jake Williams
Jake Williams
@MalwareJake
Twas the night before Christmas and all over the ‘net,
Not a creature was stirring except a few cyber threats
The firewalls were configured at the egress with care,
But that wouldn’t stop us from being hit by ransomware. 1/

The children were nestled all snug in their beds,
While attackers hit the web server and established a beachhead
Mama with her EDR and I with my IDS
Were ready to tackle this hot infosec mess. /2

Down in the SOC there arose such a clatter,
I logged into my dashboard to see what was the matter.
This thing had better work, it cost so much cash.
How in 2020 can this thing STILL require Flash?! 3/

The alerts lit up the dashboard, it produced such a glow
But it’s because the threshold for alerting was configured so low.
When what to my wondering eyes did appear,
But 300 false positive alarms. I thought “I’ll be here all year.” 4/

Then a little old DLL, signed by SolarWinds,
Was really the Russians, masters of supply chain break-ins.
We need some new vendors said the CISO, and the salespeople came. 5/
INTERNET
foone
foone
@Foone
time to get back to "repairing" old computers


The funny thing about making the 8-bit-guy into a meme about "repairing" computers with powertools is that the obvious heightening joke would, like, the "8 rounds guy", who fixes computers with firearms

but that would also be him, given that he's also a big gun enthusiast.

so it's inherently hard to satirize the repairing-computers-with-dremels guy, since they're also the guns-guy.

you'd have to go up to like a mythbusters level of overkill.

"this hard drive from 1986 won't spin up. We tried freezing it, tapping it with a rubber hammer, and opening the case to lower the friction... there's only one option left: GET OUT THE C4 EXPLOSIVES!"
INTERNET
Suzie Jabarian
Suzie Jabarian
@SuzieJabarian
*** THREAD ***

Three really useful Google Chrome extensions for Google Classroom.


1️⃣

Mote: voice notes and feedback.

This is an efficient tool for recording and posting verbal feedback. Mote is fully integrated into Google Docs, Slides, Sheets and Google Classroom. This makes it incredibly accessible and easy to use.

The mote icon (purple) appears in the 'private comments' box when you view submissions in GC. You simply click on the icon and record. With voice recording one click away, it is easy and quick to use. You only get 30 seconds but this encourages succinct, precise feedback.


It's great that you can view the document you are providing feedback on whilst recording. This helps to ensure specificity. For example, you can highlight specific examples from a student's work and then talk through them. This sort of thing prevents me from waffling, anyway.


There are other benefits too:
- Verbal feedback can be transcribed, with the option to review and change before posting.
- Mote supports transcription in more than 20 languages.
INTERNET

You May Also Like

Jaya_Upadhyaya
Jaya_Upadhyaya
@Jayalko1
SRI BANASHANKARI AMMAN, BANGALORE
#bharatmandir

Located in Southern Bangalore, this is one of the most popular places of worship in Bangalore City.
Devoted to Devi Banashankari, this shrine is visited specially during Rahukala which is believed to be an unfavorable time.


Somanna Shetty, a great devotee of Devi, brought this murti from Badami’s Banshankari Amma Kshetram.
It is said that many years ago, three ladies visited this shrine and requested the pujari to conduct puja for them. Since it was the inauspicious rahu kaal, the pujari refused.


However, upon their insistence, he conducted the puja. When he returned with prasadam, the ladies vanished. This made the people believe that they were none other than the Devi herself. Since then, the people perform poojas here during the Rahukaal.
@GunduHuDuGa


People use lemons as a diya. Lemons are cut from the centre and their pulps are removed, for pouring oil in them.
It is strongly believed that Devi removes all the troubles from the life of her devotees during the Rahukala although it is considered inauspicious for any pooja.
ALL
Aditya Shyam Jalan
Aditya Shyam Jalan
@Dr_Aditya_Jalan
A chartbook collection of 50 Examples from @Qullamaggie Sir's Swing Trading School.

https://t.co/kylxkesTmA

The entry points are marked with a orange arrow, 10,20 and 50 Daily Moving average are used and the commentary by @Qullamaggie sir is written on the chart itself.

The setups are breakout setups, where the stock makes a big move,
surfs (takes support) either on the 10,20 or the 50 MA,
Makes Higher Low's,
Forms a Tight Range with Narrow candles,
then
BREAKOUT's!!
QUALLAMAGGIE
Advertisement
Max Fagin
Max Fagin
@MaxFagin
November is here, and that means a massive shift is coming. And by "massive" I am of course referring to the redefinition of the kilogram unit of mass that the world has been building up to for more than 100 years. Let me explain:


1/ I've had an unhealthy fascination with metrology (the study of measurement) ever since my 2nd year as a physics major when I took a class devoted to duplicating historic physics experiments, so please indulge me for going into heavy detail (get it?) about the kilogram.

2/ So what actually *defines* a unit of measurement? If you're American, you probably know a mile is 5280 feet and a foot is 12 inches and an inch is 2.54 centimeters etc. But where does this chain of definitions end? Is it turtles all the way down?

3/ It's actually not! For all units (even the imperial units used in America) the answers all end with the Système International (SI) unit definitions established and maintained for over 100 years by the Bureau International des Poids et Mesures (BIMP) in France.

4/ At the base of this tower are the SI base units. Just 7 SI base units define every other unit in existence. They are:

Kilogram, kg (mass)
Meter, m (distance)
Second, s (time)
Kelvin, K (temp)
Ampere, A (electric current)
Candela, cd (luminous intensity)
Mole, mol (quantity)
SCIENCE
Noah Smith
Noah Smith
@Noahpinion
Remember: Just because an idea is old doesn't mean it's good.

Knowing whether old ideas are more likely to be good requires understanding whether conditions have changed in important ways.

Horse archery was an amazing method of warfare for over a thousand years...then people invented guns, and suddenly this great idea that had stood the test of time became obsolete.

Then again, when underlying conditions don't change much, tried-and-true approaches are probably better.

"Learning the lessons of history" usually just means assuming ergodicity and stationarity in an informal time-series model...

(end)
SOCIETY
Alex Oluwatobi
Alex Oluwatobi
@alexlobaloba
According to psychologists, there are four types of intelligence:

- Intelligence Quotient (IQ)
- Emotional Quotient (EQ)
- Social Quotient (SQ)
- Adversity Quotient (AQ)

1. IQ is the measure of one's ability to comprehend, solve maths; memorize things & recall subject matters.

2. EQ is the measure of your ability to maintain peace with others; keep to time; be responsible; be honest; respect boundaries; be humble, genuine, and considerate.

3. SQ is the measure of one's ability to build a network of friends & maintain it over a long period of time.

4. AQ is the measure of your ability to go through a rough patch in life and come out without losing your mind. It is a new paradigm and can be used to determine who will give up in face of troubles and may abandon their families.

Now to the very interesting & analytical part👇

People that have higher EQ & SQ tend to go further in life than those with high IQ but low EQ &SQ.

Most schools capitalize on improving IQ level while EQ & SQ are played down.

A man of high IQ can end up being employed by a man of high EQ & SQ even though he has an average IQ.

Your EQ represents your character; your SQ represents your charisma. Give in to habits that will improve these three Qs but more especially your EQ and SQ.

EQ and SQ make one manage better than the other.

Try not only to have a higher IQ but also to have higher EQ and SQ.
ALL