Image by GLODY MURHABAZI/AFP via Getty ImagesIn the Democratic Republic of Congo, a mysterious illness has killed a ton of people,particularly women and children and officials are struggling to get it under control.As theAssociated Press reports, a flu-like disease began spreading in southwestern Congo in November, where affected patients reported anemia, cough, headaches, fever, and trouble breathing.Rmy Saki, the deputy health minister of the Kwango province where the outbreak is taking place, toldthe AP that between 67 and 143 have died from the strange illness though it remains unclear, obviously, what the full death toll is."A team of epidemiological experts is expected in the region," Saki said, "to take samples and identify the problem."AsReuters reports, cases continue to rise in the Panzi health zone where the outbreak is taking place."Panzi is a rural health zone," society leader Cephorien Manzanza toldReuters, "so there is a problem with the supply of medicines."In a press conference over the weekend, provincial health minister Apollinaire Yumba told reporters that the country is calling on international partners to send medical aid. He also added that people in the affected regions are being advised to not touch the dead so that they can avoid contamination from this unknown disease.The officials told reporters that people are dying alone at home from the strange illness because they don't have access to treatment, and that women and children have been most seriously affected by the illness. The World Health Organization, meanwhile, was reportedly alerted to the situation last week.This outbreak comes at a terrible time for the DRC, which is at the heart of a virulent mpox epidemic and has reported suspected cases of ebola in recent months.One of the five poorest nations in the world, Congo is often plagued by disease outbreaks because its people lack access to basic medical care.Nonetheless, it's jarring that there hasn't been more immediate aid in this strange respiratory outbreak, given that the world is only now beginning to recoup from the COVID-19 pandemic.More on outbreaks: Trump's Health Guy Linked to Measles Outbreak That Killed Dozens of ChildrenShare This Article

Image by John Nacion / Variety via GettyRx/MedicinesDonald Trump's top pick to lead Medicare, the celebrity doctor Mehmet Oz, has at least one glaring conflict of interest: that he was sponsored by the company that makes Ozempic.As theWashington Post reports, the drug's manufacturer, Novo Nordisk, not only hosted multiple infomercials hosted by Ozon his eponymous talk show, but was also a major marketing partner of Sharecare, a digital health company Oz runs with Oprah Winfrey and WebMD founder Jeff Arnold.Though a Novo spokesperson told the newspaper that the company ended its relationship with Oz or Sharecare and that he is no longer a stakeholder, the talk show host continues to extoll the drugs' benefits in his newsletter and advertise collagen supplements that can supposedly help with "Ozempic face," which occurs when people lose weight rapidly from these medicines.Whether he still has financial ties to Novo or not, that relationship could, per former Office of Government Ethics head Walter Shaub, Jr., "create a disincentive to do the job the American people need done by the person in his position."Though financial conflicts of interest are not at all new to politics, this one is particularly tricky because Ozempic and its weight loss sister drug Wegovy are currently not covered by Medicare or Medicaid and can end up costing nearly $1,000 per month without insurance. Should proposals to get them covered by the government come across his desk, Oz's financial ties to the multi-billion-dollar company behind them could easily complicate that decision."The situation could be an ethical morass," Shaub told WaPo, "unless he is truly willing to alter his finances and business dealing."In statements to the newspaper, neither Oz's spokesperson nor another from the Trump-Vance transition team directly addressed the matter at hand.Nick Clemens, the celebrity doctor's personal spokesperson for the transition team, told the paper that Oz "will work to expand access, improve care, and get Americans the best results in the world for every dollar spent on health care.""All nominees and appointees will comply with the ethical obligations of their respective agencies," transition representative Brian Hughes told the newspaper.In direct opposition to Oz's championing of the drug stands Robert F. Kennedy, Jr., Trump's Health Department pick who once toldFox News that Novo is "counting on selling it to Americans because we are so stupid and so addicted to drugs."Between those non-rebuttal statements and the anti-pharma stance of Oz's potential boss, the Ozempic battle could be poised to get messy if both men are confirmed, that is, which has already been shakey with Trump's chaotic nominees.More on Ozempic politics: Wait, Why Is Novo Selling Weight Loss Drugs for So Cheap in China?Share This Article

Dec 04, 2024Ravie LakshmananCyber Espionage / MalwareThe Russia-linked advanced persistent threat (APT) group known as Turla has been linked to a previously undocumented campaign that involved infiltrating the command-and-control (C2) servers of a Pakistan-based hacking group named Storm-0156 to conduct its own operations since 2022.The activity, first observed in December 2022, is the latest instance of the nation-state adversary "embedding themselves" in another group's malicious operations to further their own objectives and cloud attribution efforts, Lumen Technologies Black Lotus Labs said."In December 2022, Secret Blizzard initially gained access to a Storm-0156 C2 server and by mid-2023 had expanded their control to a number of C2s associated with the Storm-0156 actor," the company said in a report shared with The Hacker News.By leveraging their access to these servers, Turla has been found to take advantage of the intrusions already orchestrated by Storm-0156 to deploy custom malware families referred to as TwoDash and Statuezy in a select number of networks related to various Afghan government entities. TwoDash is a bespoke downloader, whereas Statuezy is a trojan that monitors and logs data saved to the Windows clipboard.The Microsoft Threat Intelligence team, which has also released its findings into the campaign, said Turla has put to use infrastructure tied to Storm-0156, which overlaps with activity clusters tracked as SideCopy and Transparent Tribe."Secret Blizzard command-and-control (C2) traffic emanated from Storm-0156 infrastructure, including infrastructure used by Storm-0156 to collate exfiltrated data from campaigns in Afghanistan and India," Microsoft said in a coordinated report shared with the publication.Turla, also known by the names Blue Python, Iron Hunter, Pensive Ursa, Secret Blizzard (formerly Krypton), Snake, SUMMIT, Uroburos, Venomous Bear, and Waterbug, is assessed to be affiliated with Russia's Federal Security Service (FSB).Active for nearly 30 years, the threat actor employs a diverse and sophisticated toolset, including Snake, ComRAT, Carbon, Crutch, Kazuar, HyperStack (aka BigBoss), and TinyTurla. It primarily targets government, diplomatic, and military organizations.The group also has a history of hijacking other threat actor's infrastructure for its own purposes. In October 2019, the U.K. and U.S. governments revealed Turla's exploitation of an Iranian threat actor's backdoors to advance their own intelligence requirements."Turla accessed and used the command-and-control (C2) infrastructure of Iranian APTs to deploy their own tools to victims of interest," the U.K. National Cyber Security Centre (NCSC) noted at the time. The Windows maker has since identified the Iranian hacking group to be OilRig.Then in January 2023, Google-owned Mandiant noted that Turla had piggybacked on attack infrastructure used by a commodity malware called ANDROMEDA to deliver its own reconnaissance and backdoor tools to targets in Ukraine.The third instance of Turla repurposing a different attacker's tool was documented by Kaspersky in April 2023, when the Tomiris backdoor attributed to a Kazakhstan-based threat actor tracked as Storm-0473 was used to deploy QUIETCANARY in September 2022."The frequency of Secret Blizzard's operations to co-opt or commandeer the infrastructure or tools of other threat actors suggests that this is an intentional component of Secret Blizzard's tactics and techniques," Microsoft noted.The latest attack campaign detected by Black Lotus Labs and Microsoft shows that the threat actor utilized Storm-0156 C2 servers to deploy backdoors onto Afghan government devices, while in India, they targeted C2 servers hosting exfiltrated data from Indian military and defense-related institutions.The compromise of Storm-0156 C2 servers has also enabled Turla to commandeer the former's backdoors such as Crimson RAT and a previously undocumented Golang implant dubbed Wainscot. Black Lotus Labs told The Hacker News that it's currently not known how the servers were compromised in the first place.Specifically, Redmond said it observed Turla using a Crimson RAT infection that Storm-0156 had established in March 2024 to download and execute TwoDash in August 2024. Also deployed in victim networks alongside TwoDash is another custom downloader called MiniPocket that connects to a hard-coded IP address/port using TCP to retrieve and run a second-stage binary.The Kremlin-backed attackers are further said to have laterally moved to the Storm-0156 operator's workstation by likely abusing a trust relationship to obtain valuable intelligence pertaining to their tooling, C2 credentials, as well as exfiltrated data collected from prior operations, signaling a significant escalation of the campaign."This allows Secret Blizzard to collect intelligence on Storm-0156's targets of interest in South Asia without targeting those organizations directly," Microsoft said."Taking advantage of the campaigns of others allows Secret Blizzard to establish footholds on networks of interest with relatively minimal effort. However, because these initial footholds are established on another threat actor's targets of interest, the information obtained through this technique may not align entirely with Secret Blizzard's collection priorities."Found this article interesting? Follow us on Twitter and LinkedIn to read more exclusive content we post.SHARE

Dec 04, 2024Ravie LakshmananVulnerability / RansomwareVeeam has released security updates to address a critical flaw impacting Service Provider Console (VSPC) that could pave the way for remote code execution on susceptible instances.The vulnerability, tracked as CVE-2024-42448, carries a CVSS score of 9.9 out of a maximum of 10.0. The company noted that the bug was identified during internal testing."From the VSPC management agent machine, under the condition that the management agent is authorized on the server, it is possible to perform Remote Code Execution (RCE) on the VSPC server machine," Veeam said in an advisory.Another defect patched by Veeam relates to a vulnerability (CVE-2024-42449, CVSS score: 7.1) that could be abused to leak an NTLM hash of the VSPC server service account and delete files on the VSPC server machine.Both the identified vulnerabilities affect Veeam Service Provider Console 8.1.0.21377 and all earlier versions of 7 and 8 builds. They have been addressed in version 8.1.0.21999.Veeam further said there are no mitigations to fix the problems, and that the only solution is to upgrade to the latest version of the software.With flaws in Veeam products being abused by threat actors to deploy ransomware, it's imperative that users take action to secure their instances as soon as possible.Found this article interesting? Follow us on Twitter and LinkedIn to read more exclusive content we post.SHARE

Every year,journalists break down movie releases intowinners and losers the films that became blockbusters, and the ones that flopped with audiences.Thats just one side of the story.It is undeniably true thatInside Out 2 was the biggest movie of 2024, and thatDeadpool & Wolverine,Despicable Me 4, andDune: Part Twowere all among the top hits of the year. Itisntnecessarily true, though, that those movies were thebest movies of the yearthough. (If you had to take your kids toDespicable Me 4, you know what Im talking about.)Plenty of very worthy films struggled at the box office this year. Sadly, a few were outright bombs. That doesnt mean they werebad. Theres any number of reasons why they failed to connect with moviegoers beyond their overall quality. Maybe their marketing was uninspired. Maybestreaming is just an unstoppable juggernaut at this point.As apreemptive counter narrativeto all the inevitable TheWorst Box Office Flops of 2024 pieces youll see in the days and weeks ahead here is the opposite; here are thebest flops of the year. All of these movies were money losers some quite significantly. They were also, by turns, bold, daring, funny, beautiful, andextremely entertaining.Over time, audienceswill find these films at home on Blu-ray and streaming. Their reputations will gradually improve. Eventually, theyll all probably be considered cult classics. Why not get that process started right now? Here are my picks for the best bombs of 2024. If you missed them in theaters ... you might want to do something about that.The Best Box Office Flops of 2024These movies were all money losers. They all deserved better.READ MORE: The Best Box Office Flops of 2023Get our free mobile appThe Worst Movie Adaptations of Famous Broadway MusicalsSometimes the dream of a movie adaptation of your favorite musical turns into a nightmare.

Skeleton Crew starts with the now-familiar franchise logo filled with a lineup of helmets and robot faces. But this version is different. It includes Rex, the droid that piloted the ship in the original version of the classic Disneyland ride Star Tours as well as several other characters who appeal directly to kids. Thats becauseSkeleton Crew is a live-actionStar Warsshow aimed directly at a child audience.But thats just one of the many Easter eggs,Star Warssecrets, and little details you probably missed in the two-episode premiere ofSkeleton Crew.In our latestStar Wars videos, well give you full breakdowns of both halves of the premiere. Well compare the opening of the first episode to the opening ofA New Hope, talk about how this episode shares some interesting similarities with George Lucas pre-Star Wars filmAmerican Graffiti, and what that story we see on that datapad is about and how it connects to the larger story ofSkeleton Crew.First, check out all the Easter eggs inSkeleton CrewEpisode 1...And here are all the Easter eggs in Skeleton Crew Episode 2:If you liked that video about all of the Easter eggs in the Skeleton Crew premiere, check out more of our videos below, including one about the one sentence that ruined Star Wars, one on Daisy RidleysStar Wars movie and the state ofStar Warscinema in 2024, and one onDarth Plagueis cameo in Star Wars: The Acolyte and why it is maybe the single most important event in the entire season. Plus, theres tons more over at ScreenCrushs YouTube channel. Be sure to subscribe to catch all our future episodes.The new Star Wars TV show, Skeleton Crew premieresnew episodes weeklyon Disney+.Sign up for Disney+ here.10 TV Show Flops That Turned Out to Be Huge HitsUniversally beloved TV shows aren't always universally beloved from episode one.Gallery Credit: Emma Stefansky

OpenCraft - https://opencraft.com/Headquarters: Fully remote company (worldwide, incorporated in France)Do you care about contributing to open-source and other community causes? We do too! : )OpenCraft is looking for a sales engineer who can learn to speak with authority on the services we provide.Open-sourceWe are a team of veteran open-source developers, working on educational and community-based projects in an open-first environment and we are looking for a team member who can help us manage client relationships and handle sales.Our team focuses on custom software development and large scale deployments of the Open edX Platform. Since the product were providing is very technical, and most of our leads are technical managers, we require our sales engineer to have strong engineering fundamentals in order to speak with authority on our services.This team member will act as a quick reference for engineering questions and ballpark estimates, work with other engineers on the team to build proposals, and be the first team member most leads meet. They will guide the sales process from start to finish. The work you do will impact learners all around the world.Remote-firstUnlike companies who reluctantly started to accept remote workers recently, we have embraced it from day 1. For the past 10+ years, we have based and refined our way of working around remote-friendly workflows, from the ground up. No day-long video meetings, mandatory work hours, or risk of being forced back into an office one day -- as long as you have a good internet connection, its none of our business where you work from. :)We are all working remotely, from all continents (except Antarctica, at least so far - applicants welcome!). We use remote-friendly and timezone-agnostic workflows based on asynchronous principles and good documentation practices.For this sales position, you will need to schedule time to meet with clients, which are mostly in US time zones. As long as your schedule can overlap enough with the US to consistently hold meetings with prospects, you can work where you like.Online educationWe are one of the main contributors to the Open edX project, the main open-source MOOC platform created by MIT, Harvard and many other top universities. It powers sites like edX.org, the MIT Open Learning Library, and the national online learning platform for France. We provide development and hosting for institutions like Harvard Medical School, Harvard LabXchange, Cloudera, Autodesk, and several governments. We are not affiliated with edX.org, but we contribute and work with them on various projects.Contracting termsThis is a part-time to full-time, permanent contract position, billable hourly. We aim for long-term relationships -- once in, almost all team members stay for many years.We care about paying fairly:Team members set their own compensation level, which is paid based on hours worked (no unpaid overtime!).When determining your rate, we will expect you to factor in benefits (vacation, healthcare, purchase budgets, etc.) - the idea is to let you pick the benefits that are useful to you, rather than offer one-size-fits-all packages that arent always very valuable.We also proactively apply generous raises team-wide, based on the company results at the end of each year. See the details about how we approach compensation in our handbook.We also firmly believe in work-life balance: as long as you deliver what you commit to, there is a lot of latitude in how much work you can choose to accept. We are open to time commitments anywhere in the 20h to 40h/week range, and highly discourage working more than that. Its important to have time to ourselves, as well as having some slack, and there are diminishing returns in working more anyway.Culture and Work StyleWe are a highly collaborative development team working in an agile environment. We have built a mostly flat organization, composed of 30 senior software developers with a handful of support staff. You will be working with highly competent individuals who take responsibility for their work, and the same will be expected of you.We belong to self-organized teams, so management doesnt interfere with our day-to-day responsibilities and leadership is situational. You will lead some projects and join others. You will have a great deal of discretion in the work that you do and much of your work will be publicly viewable. Team members are continually learning from each other, and we place an emphasis on sustainable work practices and mental health. We help each other out when the unexpected happens and give kudos and recognition for work well done.Camaraderie is strong, standards are high, and so is the retention rate. We invest in documentation and automation so that redundant work is minimized and team members can focus on more interesting problems. The work is completely remote most planning is done asynchronously, and the sprint process itself is iteratively improved. We focus on minimizing meetings so when they do happen its for productive reasons. In order to make sure we still get some face time, we schedule optional social events to talk, play games, and engage in other activities. We also meet yearly in person at the Open edX Conference, and use the opportunity to meet everyone, along with the rest of the community, and do a team retreat.OpenCraft runs on the open first principle. Most of our conversations, code, and policies are publicly viewable.Our handbook, like much of our work, is publicly viewable and you can find it at https://handbook.opencraft.com/.You can also visit our forums at https://forum.opencraft.com/.We welcome applicants of all genders and ethnicities.Basic Requirements:Experience in sales and customer account managementMust have made contributions to open source projectsExperience with:DjangoReact or a similar frontend frameworkREST APIsDockerLinuxAt least one RDBMS like MySQL, PostgreSQL, or SQLite.GitComfortable with holding meetings, performing presentations and speaking publiclyStrong English communication skills, both written and spokenStrong interpersonal skillsFamiliarity with tools like Trello, Jira, and GitLabComfort with working with a mostly asynchronous team (most communications will be over email)Can-do attitudeAttention to detailNice to Have:These items are a plus and stronger consideration will be given to candidates who can meet these:Knowledge of the education academia and industry - especially online learning, MOOCs or the Open edX online course platformExperience Participating in collaborative online communities - eg. forums, games, open sourceBlog post and/or copywriting experienceFamiliarity with project planning tools like Jira, Trello, or GitLabProficiency with Google Sheets or other Spreadsheet programsHow to Apply for this PositionVisit this link to fill out our form and apply! -> https://admin.typeform.com/form/aJWqr0H3/create?block=cf3fef7e-2717-4a54-9dc4-05074c69c95a

Die hey contact heroes stehen fr echte Innovationen im Kundenservice! Wir haben uns auf die Bereitstellung erstklassiger Kundenservice-Lsungen spezialisiert hat. Mit ber 500 Agent/innen sind wir in mittlerweiel 17 Lndern rund um die Uhr und rund um den Globus im Einsatz.Wir sind stolz darauf, eine Plattform zu schaffen, das von Teamarbeit, Kreativitt und kontinuierlicher Weiterentwicklung geprgt ist. Werde Teil unserer Community und helfen Sie uns dabei, die Zukunft des Kundenservice zu gestalten!"Wir sind stets auf der Suche nach talentierten und kreativen Kpfen, die Lust haben, an spannenden Projekten mitzuwirken. Bei uns erwartet dich ein dynamisches Arbeitsumfeld, spannende Projekte, eine Zusammenarbeit auf Augenhhe und die Mglichkeit, deine Fhigkeiten weiterzuentwickeln.Und der Erfolg gibt uns recht, wir wachsen weiter und suchen rund 100 weitere EU-Freelancer (m/w/d) fr neue Inbound-Projekte unserer Auftraggeber.AufgabenDeine Mission:Annahme und mglichst fallabschlieende Bearbeitung eingehender Anrufe,Professionelle und serviceorientierte Kommunikation mit den Kunden,Erfassung und Dokumentation der Kundenanliegen im CRM-System,Sicherstellung einer hohen Servicequalitt und Kundenzufriedenheit.QualifikationDein Profil:Du erfllst die Vorraussetzung als Freelancer zu arbeiten,Du verfgst ber mindestens 6 Monate Erfahrung im Kundenservice,Dein Arbeits-/Wohnort liegt innerhalb der EU,Du hast sehr gute Deutschkenntnisse (C1/C2 nachweisbar),Eigenstndige Arbeitsweise und hohe Zuverlssigkeit,Du hast einen Arbeitsplatz der fr Dritte nicht einsehbar ist, Du verfgst ber einen Schreibtisch, einen Brostuhl, und die erforderliche Hardware (PC, zwei Monitore, Maus/Tastatur, Webcam, Headset),Du hast eine stabile Internetverbindung mit mindestens 50 Mbit/s (per Kabel).BenefitsUnser Angebot:Einen fairen Vertrag und eine angemessene Vergtung deiner Freelancer-Leistung,Die Perspektive einer langfristigen Partnerschaft,Eine Zusammenarbeit auf (echter) Augenhhe,Eine umfangreiche und persnliche Einarbeitung.Klingt gut? Dann freuen wir uns auf deine Nachricht! Related Jobs See more Customer Support jobs

Comment blanchir de l'argent ?

If theres one piece of advice Id share, its this...