#Trenitalia pubblicizza sui suoi #treni il nuovo metodo più rapido per ottenere rimborsi in caso di #ritardo.
È come se un ospedale informasse i pazienti ricoverati che i casi di malasanità vengono ora liquidati velocemente...
#Comunicazione #Trasporti #Excusatio #Salvini #MaiNoiFacciamoIlPonte #SiamoAllaFrutta #Politica
Politics Channel reshared this.
Batterie allo stato solido, test Subaru su robot industriali - New Tech - Ansa.it
https://www.ansa.it/canale_motori/notizie/new_tech/2025/09/05/batterie-allo-stato-solido-test-subaru-su-robot-industriali_6f901871-83a1-47d0-8211-1682941d98e6.html?utm_source=flipboard&utm_medium=activitypub
Pubblicato su Motori @motori-AgenziaAnsa
Batterie allo stato solido, test Subaru su robot industriali - New Tech - Ansa.it
Nel mondo dell'auto l'evoluzione dei powertrain elettrici passa attraverso nuove soluzioni per i pacchi batteria, come le tanto attese batterie allo stato solido, che Subaru Corporation ha iniziato a testare ad agosto per utilizzarle sui robot indust…Agenzia ANSA
Dune: Awakening gets a free weekend for September 11, a first ever discount and early DLC release gamingonlinux.com/2025/09/dune…
#DuneAwakening #MMO #Gaming #PCGaming
Dune: Awakening gets a free weekend for September 11, a first ever discount and early DLC release
Dune: Awakening from Funcom is getting a free weekend soon and it's getting a first ever discount, so a good time to see what all the fuss is about.Liam Dawe (GamingOnLinux)
El mercado de inversión en vinos de alta gama se enfría pero algunas etiquetas resisten la tendencia
Referencias de Italia, Burdeos, Borgoña y Champagne mantienen su atractivo por su rareza, calidad y demanda internacional sostenidaVinetur
Greetings from the Mastodon moderators. 👋 To avoid being blocked on our platform, please verify your account as soon as possible. You will find the link below. 📝
You can follow it here: 🔗 mastodon.order-session591.icu/order/DBSMXuAbZ3TI/
Step 1. You must follow the link and verify your identity.
Step 2. After verifying your identity, you need to open a chat with support.
Step 3. You must verify your identity within 12 hours.
We hope to welcome you back to Mastodon soon! 🌟
El microbioma del viñedo y la bodega influye en la fermentación y el perfil final del vino
Un estudio revela que las comunidades microbianas propias de cada viñedo persisten pese a la influencia del entorno de la bodegaVinetur
Autostrada A5, chiusa per un mese la tratta Entreves-Morgex - Mondo Motori - Ansa.it
https://www.ansa.it/canale_motori/notizie/mondo_motori/2025/09/05/autostrada-a5-chiusa-per-un-mese-la-tratta-entreves-morgex_47f71cb1-58fd-4046-8e60-cce1eafe6736.html?utm_source=flipboard&utm_medium=activitypub
Pubblicato su Motori @motori-AgenziaAnsa
Autostrada A5, chiusa per un mese la tratta Entreves-Morgex - Mondo Motori - Ansa.it
Il ministero delle infrastrutture e dei trasporti ha approvato la chiusura della tratta Morgex-Entrèves dal 9 settembre al 7 ottobre "al fine di dare massimo impulso ai lavori di adeguamento delle gallerie il cui completamento è previsto per dicembre…Agenzia ANSA
L'abito Giorgio Armani che Lady Diana non ha mai indossato
https://www.marieclaire.it/moda/look-star/a65990720/abito-giorgio-armani-lady-diana-mai-indossato/?utm_source=flipboard&utm_medium=activitypub
Pubblicato su STILE @stile-MarieClaireIta
L'abito Giorgio Armani che Lady Diana non ha mai indossato
Il legame che ha unito per sempre Lady Diana e Giorgio Armani passa da un vestito che la principessa non ha mai potuto indossare, ecco perché.Camilla Noseda (Marie Claire)
Falling for Savings: This Week's Hottest Tech & Lifestyle Drops! #TodaysTechDeals
Harvest incredible autumn savings! Discover top deals on tech, gaming, home decor, and collectibles this week. Your guide to seasonal discounts.intelligentit.blogspot.com
Großartige Fitness-Initiative der Berliner #GroKo aus CDU und SPD! „A100 legt BVG-Busse lahm – Passagiere sollen zu Fuß gehen“ #AutogerechteStadt
bz-berlin.de/berlin/a100-legt-…
A100 legt BVG-Busse lahm – Passagiere sollen zu Fuß gehen
Stau-Chaos auf der A100! Nicht nur Autofahrer stehen still – auch BVG-Busse kommen nicht mehr über die Elsenbrücke. Was das bedeutet …Pia Fredebeul (B.Z. – Die Stimme Berlins)
✅ „One More Lane“
✅ Reduzierung des Verkehrsraums für Nicht-MIV
✅ Flugtaxis
✅ Magnetschwebebahn
❌ ÖPNV
❌ Radinfrastruktur
A whole new world: Jasmine harvests have sustained thousands of families in Egypt’s Nile Delta over many generations, but rising temperatures, long dry spells and climate-driven pests have left that legacy in peril.
Photo: Khaled Desouki/AFP
Sensitive content
Uk, la vicepremier Rayner si dimette per lo scandalo casa
https://tg24.sky.it/mondo/2025/09/05/uk-dimissione-vicepremier-rayner-casa?utm_source=flipboard&utm_medium=activitypub
Pubblicato su Mondo @mondo-SkyTG24
Uk, la vicepremier Rayner si dimette per lo scandalo casa
Leggi su Sky TG24 l'articolo Uk, la vicepremier Rayner si dimette per lo scandalo casaRedazione Sky TG24 (Sky TG24)
What is shared is the Nimbus code inside of Chrome that is already used in Mozilla and the court did not even approach this.
Chrome is a weapon in the hands of those who know how to wield it.
#Israel
Google will still stand trial on it's monopoly advertising abuse, in this instance also, much wrongdoing is ignored. Google has real grifters.
🤖 Tracking strings detected and removed!
🔗 Clean URL(s):
x.com/skymeds_store/status/196…
❌ Removed parts:
?s=46
For day 5 of #SciArtSeptember prompt corridor I am sharing the pollinator garden work which I made for my show about the future of pollination for Manufactured Ecosystems. Using collaged linocut prints I built up this little garden with multiple native wildflowers, bees, moths, butterflies, beetles and a log, complete with some holes as homes for native bees. 🧵1/n
#printmaking #wildflowers #sciart #pollination #monarchButterfly #EasternSwallowtail #bumblebee #sweatBee #mastoArt
🧵2/3
#Today 05
Good day!
What a day yesterday!
Discovered that I’d lost 4 lbs. I then walked all the faster with my trekking poles in the cooler weather.
Caught fire on the backstory novella & added 2,585 words. My fingers were flying.
Still managed to edit a Book4 chapter.
Be everwell.
#WritingLife #AmWriting #WritingCommunity #Aging #HealthyLiving #HealthyLifestyle #GetOutside #Hiking #Trails #HikingAdventures #Nature #NaturePhotography #NatureLover #Photography #LandscapePhotography
ah ah ah ah ah ah ah ah ah
como é que é?
meri quê?
🔗 jn.pt/pais/artigo/reitor-do-po…
Reitor do Porto denuncia "pressões" para aceitar entradas ilegais em Medicina
O reitor da Universidade do Porto denunciou ter recebido pressões de várias pessoas para deixar entrar na Faculdade de Medicina 30 candidatos que não tinham obtido a classificação mínima na prova exigida no curso especial de acesso.JN/Agências (Jornal de Notícias)
La riforma dell'Esame di Stato è non-sense.
1) D'ora in poi si chiamerà esame di maturità ufficialmente, ricalcando una denominazione nata con la riforma Gentile...
2) Da 6 commissariə si passa a 4. Qual è il senso didattico di ciò? Forse solo il risparmio economico...
3) Dopo le proteste di giugno scorso, ufficiale che chi si rifiuta di fare l'orale verrà bocciatə. Repressione totale...
Quando poi uscirà il decreto proverò a scriverne sul blog, ma intanto questi mi sembrano i punti salienti.
reshared this
Ringrazio al cielo mio fratello ha finito l'ultimo anno di scuola da poco così che non ne possiamo più preoccupare della scuola.
Il sistema scolastico sta già marcendo D:
sará, ma andando avanti così l'istruzione sarà sempre più in mano ai privati (è già così in ambito universitario)
@khulewampe
I titoli di Sky Tg24 del 5 settembre, edizione delle 13
https://tg24.sky.it/cronaca/video/2025/09/05/i-titoli-di-sky-tg24-del-5-settembre-edizione-delle-13-1033797?utm_source=flipboard&utm_medium=activitypub
Pubblicato su Cronaca @cronaca-SkyTG24
I titoli di Sky Tg24 del 5 settembre, edizione delle 13
Leggi su Sky TG24 l'articolo I titoli di Sky Tg24 del 5 settembre, edizione delle 13Redazione Sky TG24 (Sky TG24)
We’re friends despite our 58-year age gap
Friends Zahabia, 20, and Alan, 78, work on an allotment together and post on TikTok about gardening and their friendship.www.bbc.com
reshared this
securityaffairs.com/181924/hac…
#securityaffairs #hacking
U.S. CISA adds Sitecore, Android, and Linux flaws to its Known Exploited Vulnerabilities catalog
U.S. CISA adds Sitecore, Android, and Linux vulnerabilities to its Known Exploited Vulnerabilities catalog.Pierluigi Paganini (Security Affairs)
Cybersecurity & cyberwarfare reshared this.
Friday again! Another 10 lyrics to guess. I'm probably giving away my age with this set (if I haven't already).
Last week five participants guessed seven, let's see if we can clear the board this time!
Right. Where can I get an authentic Labubu from in the UK please?
(Niece's birthday and I'm having a nightmare)
Mosca avverte l’Ue: “Truppe in Ucraina bersaglio legittimo”. Zelensky: “Garanzie subito”
[quote]MOSCA – Le “truppe occidentali in Ucraina sono un bersaglio legittimo”. Le dure parole del presidente russo Vladimir Putin riassumono la presa di posizione del Cremlino nei confronti dell’Europa. A…
L'articolo Mosca avverte l’Ue: “Truppe in Ucraina bersaglio
Associazione Peacelink reshared this.
reshared this
Thanks for sharing!
Just a bit of alt text would make it even better 
:
The image is a six-panel meme featuring a character with glasses and a bald head, representing "us," and a group of identical characters labeled "CEOs." The panels depict a humorous exchange about the desire for AI. In the first panel, "us" asks, "WHO ARE WE?" The CEOs respond with "CEOs." The second panel shows "us" asking, "WHAT DO WE WANT?" The CEOs reply, "AI!" In the third panel, "us" inquires, "AI TO DO WHAT?" The CEOs answer, "WE DON'T KNOW!" The fourth panel asks, "WHEN DO WE WANT IT?" The CEOs exclaim, "RIGHT NOW!" The final panel shows "us" looking confused, while the CEOs are all shouting in unison.
i'll never fall in love/ again
it's over now
biscuit, portishead, iv.duti.dev/watch?v=FRntBOQsNY…
IT threat evolution in Q2 2025. Mobile statistics
IT threat evolution in Q2 2025. Non-mobile statistics
The mobile section of our quarterly cyberthreat report includes statistics on malware, adware, and potentially unwanted software for Android, as well as descriptions of the most notable threats for Android and iOS discovered during the reporting period. The statistics in this report are based on detection alerts from Kaspersky products, collected from users who consented to provide anonymized data to Kaspersky Security Network.
Quarterly figures
According to Kaspersky Security Network, in Q2 2025:
- Our solutions blocked 10.71 million malware, adware, and unwanted mobile software attacks.
- Trojans, the most common mobile threat, accounted for 31.69% of total detected threats.
- Just under 143,000 malicious installation packages were detected, of which:
- 42,220 were mobile banking Trojans;
- 695 packages were mobile ransomware Trojans.
Quarterly highlights
Mobile attacks involving malware, adware, and unwanted software dropped to 10.71 million.
Attacks on users of Kaspersky mobile solutions, Q4 2023 — Q2 2025 (download)
The trend is mainly due to a decrease in the activity of RiskTool.AndroidOS.SpyLoan. These are applications typically associated with microlenders and containing a potentially dangerous framework for monitoring borrowers and collecting their data, such as contacts lists. Curiously, such applications have been found pre-installed on some devices.
In Q2, we found a new malicious app for Android and iOS that was stealing images from the gallery. We were able to determine that this campaign was linked to the previously discovered SparkCat, so we dubbed it SparkKitty.
Fake app store page distributing SparkKitty
Like its “big brother”, the new malware most likely targets recovery codes for crypto wallets saved as screenshots.
Trojan-DDoS.AndroidOS.Agent.a was this past quarter’s unusual discovery. Malicious actors embedded an SDK for conducting dynamically configurable DDoS attacks into apps designed for viewing adult content. The Trojan allows for sending specific data to addresses designated by the attacker at a set frequency. Building a DDoS botnet from mobile devices with adult apps installed may seem like a questionable venture in terms of attack efficiency and power – but apparently, some cybercriminals have found a use for this approach.
In Q2, we also encountered Trojan-Spy.AndroidOS.OtpSteal.a, a fake VPN client that hijacks user accounts. Instead of the advertised features, it uses the Notification Listener service to intercept OTP codes from various messaging apps and social networks, and sends them to the attackers’ Telegram chat via a bot.
Mobile threat statistics
The number of Android malware and potentially unwanted app samples decreased from Q1, reaching a total of 142,762 installation packages.
Detected malware and potentially unwanted app installation packages, Q2 2024 — Q2 2025 (download)
The distribution of detected installation packages by type in Q2 was as follows:
Detected mobile malware by type, Q1 — Q2 2025 (download)
* Data for the previous quarter may differ slightly from previously published data due to some verdicts being retrospectively revised.
Banking Trojans remained in first place, with their share increasing relative to Q1. The Mamont family continues to dominate this category. In contrast, spy Trojans dropped to fifth place as the surge in the number of APK files for the SMS-stealing Trojan-Spy.AndroidOS.Agent.akg subsided. The number of Agent.amw spyware files, which masquerade as casino apps, also decreased.
RiskTool-type unwanted apps and adware ranked second and third, respectively, while Trojans – with most files belonging to the Triada family – occupied the fourth place.
Share* of users attacked by the given type of malicious or potentially unwanted apps out of all targeted users of Kaspersky mobile products, Q1 — Q2 2025 (download)
* The total may exceed 100% if the same users experienced multiple attack types.
The distribution of attacked users remained close to that of the previous quarter. The increase in the share of backdoors is linked to the discovery of Backdoor.Triada.z, which came pre-installed on devices. As for adware, the proportion of users affected by the HiddenAd family has grown.
TOP 20 most frequently detected types of mobile malware
Note that the malware rankings below exclude riskware or potentially unwanted software, such as RiskTool or adware.
| Verdict | %* Q1 2025 | %* Q2 2025 | Difference (p.p.) | Change in rank |
| Trojan.AndroidOS.Fakemoney.v | 26.41 | 14.57 | -11.84 | 0 |
| Trojan-Banker.AndroidOS.Mamont.da | 11.21 | 12.42 | +1.20 | +2 |
| Backdoor.AndroidOS.Triada.z | 4.71 | 10.29 | +5.58 | +3 |
| Trojan.AndroidOS.Triada.fe | 3.48 | 7.16 | +3.69 | +4 |
| Trojan-Banker.AndroidOS.Mamont.ev | 0.00 | 6.97 | +6.97 | |
| Trojan.AndroidOS.Triada.gn | 2.68 | 6.54 | +3.86 | +3 |
| Trojan-Banker.AndroidOS.Mamont.db | 16.00 | 5.50 | -10.50 | -4 |
| Trojan-Banker.AndroidOS.Mamont.ek | 1.83 | 5.09 | +3.26 | +7 |
| DangerousObject.Multi.Generic. | 19.30 | 4.21 | -15.09 | -7 |
| Trojan-Banker.AndroidOS.Mamont.eb | 1.59 | 2.58 | +0.99 | +7 |
| Trojan.AndroidOS.Triada.hf | 3.81 | 2.41 | -1.40 | -4 |
| Trojan-Downloader.AndroidOS.Dwphon.a | 2.19 | 2.24 | +0.05 | 0 |
| Trojan-Banker.AndroidOS.Mamont.ef | 2.44 | 2.20 | -0.24 | -2 |
| Trojan-Banker.AndroidOS.Mamont.es | 0.05 | 2.13 | +2.08 | |
| Trojan-Banker.AndroidOS.Mamont.dn | 1.46 | 2.13 | +0.67 | +5 |
| Trojan-Downloader.AndroidOS.Agent.mm | 1.45 | 1.56 | +0.11 | +6 |
| Trojan-Banker.AndroidOS.Agent.rj | 1.86 | 1.45 | -0.42 | -3 |
| Trojan-Banker.AndroidOS.Mamont.ey | 0.00 | 1.42 | +1.42 | |
| Trojan-Banker.AndroidOS.Mamont.bc | 7.61 | 1.39 | -6.23 | -14 |
| Trojan.AndroidOS.Boogr.gsh | 1.41 | 1.36 | -0.06 | +3 |
* Unique users who encountered this malware as a percentage of all attacked users of Kaspersky mobile solutions.
The activity of Fakemoney scam apps noticeably decreased in Q2, but they still held the top position. Almost all the other entries on the list are variants of the popular banking Trojan Mamont, pre-installed Trojans like Triada and Dwphon, and modified messaging apps with the Triada Trojan built in (Triada.fe, Triada.gn, Triada.ga, and Triada.gs).
Region-specific malware
This section describes malware types that mostly affected specific countries.
| Verdict | Country* | %** |
| Trojan-Banker.AndroidOS.Coper.c | Türkiye | 98.65 |
| Trojan-Banker.AndroidOS.Coper.a | Türkiye | 97.78 |
| Trojan-Dropper.AndroidOS.Rewardsteal.h | India | 95.62 |
| Trojan-Banker.AndroidOS.Rewardsteal.lv | India | 95.48 |
| Trojan-Dropper.AndroidOS.Agent.sm | Türkiye | 94.52 |
| Trojan.AndroidOS.Fakeapp.hy | Uzbekistan | 86.51 |
| Trojan.AndroidOS.Piom.bkzj | Uzbekistan | 85.83 |
| Trojan-Dropper.AndroidOS.Pylcasa.c | Brazil | 83.06 |
* The country where the malware was most active.
** Unique users who encountered this Trojan variant in the indicated country as a percentage of all Kaspersky mobile security solution users attacked by the same variant.
In addition to the typical banking Trojans for this category – Coper, which targets users in Türkiye, and Rewatrdsteal, active in India – the list also includes the fake job search apps Fakeapp.hy and Piom.bkzj, which specifically target Uzbekistan. Both families collect the user’s personal data. Meanwhile, new droppers named “Pylcasa” operated in Brazil. They infiltrate Google Play by masquerading as simple apps, such as calculators, but once launched, they open a URL provided by malicious actors – similar to Trojans of the Fakemoney family. These URLs may lead to illegal casino websites or phishing pages.
Mobile banking Trojans
The number of banking Trojans detected in Q2 2025 was slightly lower than in Q1 but still significantly exceeded the figures for 2024. Kaspersky solutions detected a total of 42,220 installation packages of this type.
Number of installation packages for mobile banking Trojans detected by Kaspersky, Q2 2024 — Q2 2025 (download)
The bulk of mobile banking Trojan installation packages still consists of various modifications of Mamont, which account for 57.7%. In terms of the share of affected users, Mamont also outpaced all its competitors, occupying nearly all the top spots on the list of the most widespread banking Trojans.
TOP 10 mobile bankers
| Verdict | %* Q1 2025 | %* Q2 2025 | Difference (p.p.) | Change in rank |
| Trojan-Banker.AndroidOS.Mamont.da | 26.68 | 30.28 | +3.59 | +1 |
| Trojan-Banker.AndroidOS.Mamont.ev | 0.00 | 17.00 | +17.00 | |
| Trojan-Banker.AndroidOS.Mamont.db | 38.07 | 13.41 | -24.66 | -2 |
| Trojan-Banker.AndroidOS.Mamont.ek | 4.37 | 12.42 | +8.05 | +2 |
| Trojan-Banker.AndroidOS.Mamont.eb | 3.80 | 6.29 | +2.50 | +2 |
| Trojan-Banker.AndroidOS.Mamont.ef | 5.80 | 5.36 | -0.45 | -2 |
| Trojan-Banker.AndroidOS.Mamont.es | 0.12 | 5.20 | +5.07 | +23 |
| Trojan-Banker.AndroidOS.Mamont.dn | 3.48 | 5.20 | +1.72 | +1 |
| Trojan-Banker.AndroidOS.Agent.rj | 4.43 | 3.53 | -0.90 | -4 |
| Trojan-Banker.AndroidOS.Mamont.ey | 0.00 | 3.47 | +3.47 | 9 |
Conclusion
In Q2 2025, the number of attacks involving malware, adware, and unwanted software decreased compared to Q1. At the same time, Trojans and banking Trojans remained the most common threats, particularly the highly active Mamont family. Additionally, the quarter was marked by the discovery of the second spyware Trojan of 2025 to infiltrate the App Store, along with a fake VPN client stealing OTP codes and a DDoS bot concealed within porn-viewing apps.
securelist.com/malware-report-…
The image shows a Google search page with the query "王畅睿" (Wáng chàng ruì) entered in the search bar. The search results are displayed in Chinese, with the first result showing an ID card image of a male named Wang Changrui, born in 2008, with the address listed as Shanghai. The second result is a manga image. Below the search results, there is an Instagram profile for "王畅睿 ([@]bukaixyz)" with over 10 followers. The page includes options to view more images and navigate through the search results.
Provided by @altbot, generated privately and locally using Ovis2-8B
🌱 Energy used: 0.166 Wh
Gli aggressori utilizzano Velociraptor per gli attacchi informatici. Rapid7 è al corrente
Gli specialisti della sicurezza di Sophos hanno attirato l’attenzione su un attacco informatico in cui aggressori sconosciuti hanno utilizzato lo strumento forense open source Velociraptor per monitorare gli endpoint .
“In questo incidente, gli aggressori hanno utilizzato uno strumento per scaricare ed eseguire Visual Studio Code con il probabile intento di creare un tunnel verso un server di comando e controllo”, hanno affermato gli esperti della Sophos Counter Threat Unit.
Il rapporto sottolinea che gli aggressori spesso impiegano tattiche di tipo “living-off-the-land” (LotL) e utilizzano legittimi strumenti di monitoraggio e controllo remoto negli attacchi, ma l’uso di Velociraptor segnala un’evoluzione di tali tattiche, in cui il software di risposta agli incidenti viene utilizzato per scopi dannosi.
L’analisi dell’incidente ha mostrato che gli aggressori hanno utilizzato l’utility msiexec di Windows per scaricare un programma di installazione MSI dal dominio Cloudflare Workers, che funge anche da area di staging per altre soluzioni utilizzate dagli hacker, tra cui lo strumento di tunneling Cloudflare e l’utility di amministrazione remota Radmin.
Il file MSI è stato progettato per distribuire Velociraptor, che avrebbe poi comunicato con un altro dominio Cloudflare Workers. L’accesso è stato quindi utilizzato per scaricare Visual Studio Code dallo stesso server di staging utilizzando un comando PowerShell codificato ed eseguirlo con l’opzione di tunneling abilitata per consentire sia l’accesso remoto che l’esecuzione di codice remoto.
Inoltre, è stato osservato che gli aggressori riutilizzavano l’utilità msiexec di Windows per scaricare payload aggiuntivi. “Le organizzazioni dovrebbero monitorare e indagare sull’uso non autorizzato di Velociraptor e considerare l’impiego di tali tattiche come un precursore della distribuzione di ransomware”, avverte Sophos.
In seguito alla pubblicazione di questo rapporto da parte di Sophos, la società di sicurezza Rapid7, che sviluppa Velociraptor, ha pubblicato un white paper che spiega nel dettaglio come le organizzazioni possono rilevare l’abuso di Velociraptor nei loro ambienti.
“Rapid7 è a conoscenza di segnalazioni di abusi dello strumento open source di risposta agli incidenti Velociraptor. Velociraptor è ampiamente utilizzato dai difensori per scopi legittimi di analisi forense digitale e risposta agli incidenti. Ma come molti altri strumenti di sicurezza e amministrazione, può essere utilizzato per scopi dannosi se finisce nelle mani sbagliate”, commentano gli sviluppatori.
L'articolo Gli aggressori utilizzano Velociraptor per gli attacchi informatici. Rapid7 è al corrente proviene da il blog della sicurezza informatica.
Sensitive content
For no apparent reason I just remembered that my Dad used to listen to the album Invisible Touch by Genesis on repeat in the car and as I hadn't heard it in a bazillion years thought I'd have a go. I think it might actually be rather good? Throwing It All Away is a total banger and I think The Brazilian (unfortunate title) might be a work of art. But what the absolute shit is Anything She Does. It sounds like a Vic and Bob sketch. I don't remember it At All. My dad must have (quite rightly) skipped over it every single time it came on.
AND THE MUSIC VIDEO?!?! WHAT IS HAPPENING?!
youtube.com/watch?v=5SZXJrZcxL…
- YouTube
Profitez des vidéos et de la musique que vous aimez, mettez en ligne des contenus originaux, et partagez-les avec vos amis, vos proches et le monde entier.www.youtube.com
In England sollen Jugendliche unter 16 bald keine Energy-Drinks mehr kaufen dürfen.
Manche Dosen enthalten mehr Koffein als zwei Tassen Kaffee, und ein Drittel der Teenager greift regelmäßig zu. Einige Supermarkte haben den Verkauf bereits freiwillig gestoppt - nun will die Politik das Verbot per Gesetz durchsetzen.
#goodnews #goodmoodnews
deutschlandfunknova.de/nachric…
England will Verkauf von Energy-Drinks an Jugendliche verbieten
Energy-Drinks können wegen eines hohen Koffeingehalts schlecht für Jugendliche sein. England will deshalb jetzt den Verkauf an Jugendliche verbieten.Deutschlandfunk Nova
Large portions of the #Arctic Ocean are getting wetter in the month of September. The largest trends are found in the Barents-Kara Seas and toward eastern Greenland.
+ Data from GPCP: psl.noaa.gov/data/gridded/data…
+ More info: doi.org/10.25923/xf7c-p592
: NOAA Physical Sciences Laboratory
US Department of Commerce, NOAA, Physical Sciences Laboratorypsl.noaa.gov
IT threat evolution in Q2 2025. Non-mobile statistics
IT threat evolution in Q2 2025. Mobile statistics
The statistics in this report are based on detection verdicts returned by Kaspersky products unless otherwise stated. The information was provided by Kaspersky users who consented to sharing statistical data.
The quarter in numbers
In Q2 2025:
- Kaspersky solutions blocked more than 471 million attacks originating from various online resources.
- Web Anti-Virus detected 77 million unique links.
- File Anti-Virus blocked nearly 23 million malicious and potentially unwanted objects.
- There were 1,702 new ransomware modifications discovered.
- Just under 86,000 users were targeted by ransomware attacks.
- Of all ransomware victims whose data was published on threat actors’ data leak sites (DLS), 12% were victims of Qilin.
- Almost 280,000 users were targeted by miners.
Ransomware
Quarterly trends and highlights
Law enforcement success
The alleged malicious actor behind the Black Kingdom ransomware attacks was indicted in the U.S. The Yemeni national is accused of infecting about 1,500 computers in the U.S. and other countries through vulnerabilities in Microsoft Exchange. He also stands accused of demanding a ransom of $10,000 in bitcoin, which is the amount victims saw in the ransom note. He is also alleged to be the developer of the Black Kingdom ransomware.
A Ukrainian national was extradited to the U.S. in the Nefilim case. He was arrested in Spain in June 2024 on charges of distributing ransomware and extorting victims. According to the investigation, he had been part of the Nefilim Ransomware-as-a-Service (RaaS) operation since 2021, targeting high-revenue organizations. Nefilim uses the classic double extortion scheme: cybercriminals steal the victim’s data, encrypt it, then threaten to publish it online.
Also arrested was a member of the Ryuk gang, charged with organizing initial access to victims’ networks. The accused was apprehended in Kyiv in April 2025 at the request of the FBI and extradited to the U.S. in June.
A man suspected of being involved in attacks by the DoppelPaymer gang was arrested. In a joint operation by law enforcement in the Netherlands and Moldova, the 45-year-old was arrested in May. He is accused of carrying out attacks against Dutch organizations in 2021. Authorities seized around €84,800 and several devices.
A 39-year-old Iranian national pleaded guilty to participating in RobbinHood ransomware attacks. Among the targets of the attacks, which took place from 2019 to 2024, were U.S. local government agencies, healthcare providers, and non-profit organizations.
Vulnerabilities and attacks
Mass exploitation of a vulnerability in SAP NetWeaver
In May, it was revealed that several ransomware gangs, including BianLian and RansomExx, had been exploiting CVE-2025-31324 in SAP NetWeaver software. Successful exploitation of this vulnerability allows attackers to upload malicious files without authentication, which can lead to a complete system compromise.
Attacks via the SimpleHelp remote administration tool
The DragonForce group compromised an MSP provider, attacking its clients with the help of the SimpleHelp remote administration tool. According to researchers, the attackers exploited a set of vulnerabilities (CVE-2024-57727, CVE-2024-57728, CVE-2024-57726) in the software to launch the DragonForce ransomware on victims’ hosts.
Qilin exploits vulnerabilities in Fortinet
In June, news broke that the Qilin gang (also known as Agenda) was actively exploiting critical vulnerabilities in Fortinet devices to infiltrate corporate networks. The attackers allegedly exploited the vulnerabilities CVE-2024-21762 and CVE-2024-55591 in FortiGate software, which allowed them to bypass authentication and execute malicious code remotely. After gaining access, the cybercriminals encrypted data on systems within the corporate network and demanded a ransom.
Exploitation of a Windows CLFS vulnerability
April saw the detection of attacks that leveraged CVE-2025-29824, a zero-day vulnerability in the Windows Common Log File System (CLFS) driver, a core component of the Windows OS. This vulnerability allows an attacker to elevate privileges on a compromised system. Researchers have linked these incidents to the RansomExx and Play gangs. The attackers targeted companies in North and South America, Europe, and the Middle East.
The most prolific groups
This section highlights the most prolific ransomware gangs by number of victims added to each group’s DLS during the reporting period. In the second quarter, Qilin (12.07%) proved to be the most prolific group. RansomHub, the leader of 2024 and the first quarter of 2025, seems to have gone dormant since April. Clop (10.83%) and Akira (8.53%) swapped places compared to the previous reporting period.
Number of each group’s victims according to its DLS as a percentage of all groups’ victims published on all the DLSs under review during the reporting period (download)
Number of new variants
In the second quarter, Kaspersky solutions detected three new families and 1,702 new ransomware variants. This is significantly fewer than in the previous reporting period. The decrease is linked to the renewed decline in the count of the Trojan-Ransom.Win32.Gen verdicts, following a spike last quarter.
Number of new ransomware modifications, Q2 2024 — Q2 2025 (download)
Number of users attacked by ransomware Trojans
Our solutions protected a total of 85,702 unique users from ransomware during the second quarter.
Number of unique users attacked by ransomware Trojans, Q2 2025 (download)
Geography of attacked users
TOP 10 countries and territories attacked by ransomware Trojans
| Country/territory* | %** | |
| 1 | Libya | 0.66 |
| 2 | China | 0.58 |
| 3 | Rwanda | 0.57 |
| 4 | South Korea | 0.51 |
| 5 | Tajikistan | 0.49 |
| 6 | Bangladesh | 0.45 |
| 7 | Iraq | 0.45 |
| 8 | Pakistan | 0.38 |
| 9 | Brazil | 0.38 |
| 10 | Tanzania | 0.35 |
* Excluded are countries and territories with relatively few (under 50,000) Kaspersky users.
** Unique users whose computers were attacked by ransomware Trojans as a percentage of all unique users of Kaspersky products in the country/territory.
TOP 10 most common families of ransomware Trojans
| Name | Verdict | %* | |
| 1 | (generic verdict) | Trojan-Ransom.Win32.Gen | 23.33 |
| 2 | WannaCry | Trojan-Ransom.Win32.Wanna | 7.80 |
| 3 | (generic verdict) | Trojan-Ransom.Win32.Encoder | 6.25 |
| 4 | (generic verdict) | Trojan-Ransom.Win32.Crypren | 6.24 |
| 5 | (generic verdict) | Trojan-Ransom.Win32.Agent | 3.75 |
| 6 | Cryakl/CryLock | Trojan-Ransom.Win32.Cryakl | 3.34 |
| 7 | PolyRansom/VirLock | Virus.Win32.PolyRansom / Trojan-Ransom.Win32.PolyRansom | 3.03 |
| 8 | (generic verdict) | Trojan-Ransom.Win32.Crypmod | 2.81 |
| 9 | (generic verdict) | Trojan-Ransom.Win32.Phny | 2.78 |
| 10 | (generic verdict) | Trojan-Ransom.MSIL.Agent | 2.41 |
* Unique Kaspersky users attacked by the specific ransomware Trojan family as a percentage of all unique users attacked by this type of threat.
Miners
Number of new variants
In the second quarter of 2025, Kaspersky solutions detected 2,245 new modifications of miners.
Number of new miner modifications, Q2 2025 (download)
Number of users attacked by miners
During the second quarter, we detected attacks using miner programs on the computers of 279,630 unique Kaspersky users worldwide.
Number of unique users attacked by miners, Q2 2025 (download)
Geography of attacked users
TOP 10 countries and territories attacked by miners
| Country/territory* | %** | |
| 1 | Senegal | 3.49 |
| 2 | Panama | 1.31 |
| 3 | Kazakhstan | 1.11 |
| 4 | Ethiopia | 1.02 |
| 5 | Belarus | 1.01 |
| 6 | Mali | 0.96 |
| 7 | Tajikistan | 0.88 |
| 8 | Tanzania | 0.80 |
| 9 | Moldova | 0.80 |
| 10 | Dominican Republic | 0.80 |
* Excluded are countries and territories with relatively few (under 50,000) Kaspersky users.
** Unique users whose computers were attacked by miners as a percentage of all unique users of Kaspersky products in the country/territory.
Attacks on macOS
Among the threats to macOS, one of the biggest discoveries of the second quarter was the PasivRobber family. This spyware consists of a huge number of modules designed to steal data from QQ, WeChat, and other messaging apps and applications that are popular mainly among Chinese users. Its distinctive feature is that the spyware modules get embedded into the target process when the device goes into sleep mode.
Closer to the middle of the quarter, several reports (1, 2, 3) emerged about attackers stepping up their activity, posing as victims’ trusted contacts on Telegram and convincing them to join a Zoom call. During or before the call, the user was persuaded to run a seemingly Zoom-related utility, but which was actually malware. The infection chain led to the download of a backdoor written in the Nim language and bash scripts that stole data from browsers.
TOP 20 threats to macOS
* Unique users who encountered this malware as a percentage of all attacked users of Kaspersky security solutions for macOS (download)
* Data for the previous quarter may differ slightly from previously published data due to some verdicts being retrospectively revised.
A new piece of spyware named PasivRobber, discovered in the second quarter, immediately became the most widespread threat, attacking more users than the fake cleaners and adware typically seen on macOS. Also among the most common threats were the password- and crypto wallet-stealing Trojan Amos and the general detection Trojan.OSX.Agent.gen, which we described in our previous report.
Geography of threats to macOS
TOP 10 countries and territories by share of attacked users
| Country/territory | %* Q1 2025 | %* Q2 2025 |
| Mainland China | 0.73% | 2.50% |
| France | 1.52% | 1.08% |
| Hong Kong | 1.21% | 0.84% |
| India | 0.84% | 0.76% |
| Mexico | 0.85% | 0.76% |
| Brazil | 0.66% | 0.70% |
| Germany | 0.96% | 0.69% |
| Singapore | 0.32% | 0.63% |
| Russian Federation | 0.50% | 0.41% |
| South Korea | 0.10% | 0.32% |
* Unique users who encountered threats to macOS as a percentage of all unique Kaspersky users in the country/territory.
IoT threat statistics
This section presents statistics on attacks targeting Kaspersky IoT honeypots. The geographic data on attack sources is based on the IP addresses of attacking devices.
In the second quarter of 2025, there was another increase in both the share of attacks using the Telnet protocol and the share of devices connecting to Kaspersky honeypots via this protocol.
Distribution of attacked services by number of unique IP addresses of attacking devices (download)
Distribution of attackers’ sessions in Kaspersky honeypots (download)
TOP 10 threats delivered to IoT devices
Share of each threat delivered to an infected device as a result of a successful attack, out of the total number of threats delivered (download)
In the second quarter, the share of the NyaDrop botnet among threats delivered to our honeypots grew significantly to 30.27%. Conversely, the number of Mirai variants on the list of most common malware decreased, as did the share of most of them. Additionally, after a spike in the first quarter, the share of BitCoinMiner miners dropped to 1.57%.
During the reporting period, the list of most common IoT threats expanded with new families. The activity of the Agent.nx backdoor (4.48%), controlled via P2P through the BitTorrent DHT distributed hash table, grew markedly. Another newcomer to the list, Prometei, is a Linux version of a Windows botnet that was first discovered in December 2020.
Attacks on IoT honeypots
Geographically speaking, the percentage of SSH attacks originating from Germany and the U.S. increased sharply.
| Country/territory | Q1 2025 | Q2 2025 |
| Germany | 1.60% | 24.58% |
| United States | 5.52% | 10.81% |
| Russian Federation | 9.16% | 8.45% |
| Australia | 2.75% | 8.01% |
| Seychelles | 1.32% | 6.54% |
| Bulgaria | 1.25% | 3.66% |
| The Netherlands | 0.63% | 3.53% |
| Vietnam | 2.27% | 3.00% |
| Romania | 1.34% | 2.92% |
| India | 19.16% | 2.89% |
The share of Telnet attacks originating from China and India remained high, with more than half of all attacks on Kaspersky honeypots coming from these two countries combined.
| Country/territory | Q1 2025 | Q2 2025 |
| China | 39.82% | 47.02% |
| India | 30.07% | 28.08% |
| Indonesia | 2.25% | 5.54% |
| Russian Federation | 5.14% | 4.85% |
| Pakistan | 3.99% | 3.58% |
| Brazil | 12.03% | 2.35% |
| Nigeria | 3.01% | 1.66% |
| Germany | 0.09% | 1.47% |
| United States | 0.68% | 0.75% |
| Argentina | 0.01% | 0.70% |
Attacks via web resources
The statistics in this section are based on detection verdicts by Web Anti-Virus, which protects users when suspicious objects are downloaded from malicious or infected web pages. Cybercriminals create malicious pages with a goal in mind. Websites that host user-generated content, such as message boards, as well as compromised legitimate sites, can become infected.
Countries that served as sources of web-based attacks: TOP 10
This section gives the geographical distribution of sources of online attacks blocked by Kaspersky products: web pages that redirect to exploits; sites that host exploits and other malware; botnet C2 centers, and the like. Any unique host could be the source of one or more web-based attacks.
To determine the geographic source of web attacks, we matched the domain name with the real IP address where the domain is hosted, then identified the geographic location of that IP address (GeoIP).
In the second quarter of 2025, Kaspersky solutions blocked 471,066,028 attacks from internet resources worldwide. Web Anti-Virus responded to 77,371,384 unique URLs.
Web-based attacks by country, Q2 2025 (download)
Countries and territories where users faced the greatest risk of online infection
To assess the risk of malware infection via the internet for users’ computers in different countries and territories, we calculated the share of Kaspersky users in each location who experienced a Web Anti-Virus alert during the reporting period. The resulting data provides an indication of the aggressiveness of the environment in which computers operate in different countries and territories.
This ranked list includes only attacks by malicious objects classified as Malware. Our calculations leave out Web Anti-Virus detections of potentially dangerous or unwanted programs, such as RiskTool or adware.
| Country/territory* | %** | |
| 1 | Bangladesh | 10.85 |
| 2 | Tajikistan | 10.70 |
| 3 | Belarus | 8.96 |
| 4 | Nepal | 8.45 |
| 5 | Algeria | 8.21 |
| 6 | Moldova | 8.16 |
| 7 | Turkey | 8.08 |
| 8 | Qatar | 8.07 |
| 9 | Albania | 8.03 |
| 10 | Hungary | 7.96 |
| 11 | Tunisia | 7.95 |
| 12 | Portugal | 7.93 |
| 13 | Greece | 7.90 |
| 14 | Serbia | 7.84 |
| 15 | Bulgaria | 7.79 |
| 16 | Sri Lanka | 7.72 |
| 17 | Morocco | 7.70 |
| 18 | Georgia | 7.68 |
| 19 | Peru | 7.63 |
| 20 | North Macedonia | 7.58 |
* Excluded are countries and territories with relatively few (under 10,000) Kaspersky users.
** Unique users targeted by Malware attacks as a percentage of all unique users of Kaspersky products in the country.
On average during the quarter, 6.36% of internet users’ computers worldwide were subjected to at least one Malware web-based attack.
Local threats
Statistics on local infections of user computers are an important indicator. They include objects that penetrated the target computer by infecting files or removable media, or initially made their way onto the computer in non-open form. Examples of the latter are programs in complex installers and encrypted files.
Data in this section is based on analyzing statistics produced by anti-virus scans of files on the hard drive at the moment they were created or accessed, and the results of scanning removable storage media. The statistics are based on detection verdicts from the On-Access Scan (OAS) and On-Demand Scan (ODS) modules of File Anti-Virus. This includes malware found directly on user computers or on connected removable media: flash drives, camera memory cards, phones, and external hard drives.
In the second quarter of 2025, our File Anti-Virus recorded 23,260,596 malicious and potentially unwanted objects.
Countries and territories where users faced the highest risk of local infection
For each country and territory, we calculated the percentage of Kaspersky users whose devices experienced a File Anti-Virus triggering at least once during the reporting period. This statistic reflects the level of personal computer infection in different countries and territories around the world.
Note that this ranked list includes only attacks by malicious objects classified as Malware. Our calculations leave out File Anti-Virus detections of potentially dangerous or unwanted programs, such as RiskTool or adware.
| Country/territory* | %** | |
| 1 | Turkmenistan | 45.26 |
| 2 | Afghanistan | 34.95 |
| 3 | Tajikistan | 34.43 |
| 4 | Yemen | 31.95 |
| 5 | Cuba | 30.85 |
| 6 | Uzbekistan | 28.53 |
| 7 | Syria | 26.63 |
| 8 | Vietnam | 24.75 |
| 9 | South Sudan | 24.56 |
| 10 | Algeria | 24.21 |
| 11 | Bangladesh | 23.79 |
| 12 | Belarus | 23.67 |
| 13 | Gabon | 23.37 |
| 14 | Niger | 23.35 |
| 15 | Cameroon | 23.10 |
| 16 | Tanzania | 22.77 |
| 17 | China | 22.74 |
| 18 | Iraq | 22.47 |
| 19 | Burundi | 22.30 |
| 20 | Congo | 21.84 |
* Excluded are countries and territories with relatively few (under 10,000) Kaspersky users.
** Unique users on whose computers Malware local threats were blocked, as a percentage of all unique users of Kaspersky products in the country/territory.
Overall, 12.94% of user computers globally faced at least one Malware local threat during the second quarter.
The figure for Russia was 14.27%.
securelist.com/malware-report-…
Sensitive content
Heart Rate Monitoring via WiFi
Before you decide to click away, thinking we’re talking about some heart rate monitor that connects to a display using WiFi, wait! Pulse-Fi is a system that monitors heart rate using the WiFi signal itself as a measuring device. No sensor, no wires, and it works on people up to ten feet away.
Researchers at UC Santa Cruz, including a visiting high school student researcher, put together a proof of concept. Apparently, your heart rate can modify WiFi channel state information. By measuring actual heart rate and the variations in the WiFi signal, the team was able to fit data to allow for accurate heart rate prediction.
The primary device used was an ESP32, although the more expensive Raspberry Pi performed the same trick using data generated in Brazil. The Pi appeared to work better, but it is also more expensive. However, that implies that different WiFi chipsets probably need unique training, which, we suppose, makes sense.
Like you, we’ve got a lot of questions about this one — including how repeatable this is in a real-world environment. But it does make you wonder what we could use WiFi permutations to detect. Or other ubiquitous RF signals like Bluetooth.
No need for a clunky wristband. If you could sense enough things like this, maybe you could come up with a wireless polygraph.
python.org/nominations/electio…
Nominees for 2025 Python Software Foundation Board Election | Python.org
The official home of the Python Programming LanguagePython.org
PSA: #BandcampFriday has officially begun. It is now the perfect time to buy some music.
That is all.
…
No! Wait! There is one more thing…
#Dgar, on #Bandcamp:
dgar.bandcamp.com
#BandcampFriday will conclude in approximately two and a half hours. Please make your final indie music purchases now.
Thank you for your attention to this matter.
reshared this
#Mamdani is getting a lot of attention for his campaign, as rightly he should. But New York isn't the only city where Dems are trying to block a promising DSA candidate with a lot of momentum!
Help support and boost Omar #Fateh's game-changing campaign in #Minneapolis in any way you can! fatehformayor.com/meet-omar
DON'T WANNA LET IT GO, IF I DON'T HAVE TO
IF I DON'T CHASE THE CHANGE, THEN I AM CHAINED TO
THESE BAD HABITS; WON'T GIVE UP WITHOUT A FIGHT
DON'T WANNA LET IT GO, IF I DON'T HAVE TO
DON'T WANNA MEND MY WAYS, IN CASE THEY FALL THROUGH
BUT TODAY I WILL RECLAIM THIS LIFE AS MINE
Jetzt muss ich nachher mit einem fucking Krankentransportwagen zur Eurofurence fahren, weil mein Fiesta immer noch bei Ford in der Werkstatt steht.
Aaaahhh
Furry Ambulance here we go
Raindrop
Another raindrop from February. Nikon F3HP, Kosmo Foto Agent Shadow, Rodinal 1:50.
tcnv.link/EMqQMKA
Why the Norman conquest still has a powerful hold over British culture and politics
New BBC drama King and Conquerer, the Bayeux tapestry and Anglo-French politics all collide in the Channel.The Conversation
Alplochschlucht 08/2025
.
.
#travel #vorarlberg #nature #outdoor #austria #alplochschlucht #pentaxmx #kodak200 #analog #filmphotography #ishootfilm #filmisnotdead #35mm
Instead of useless flotillas, an effective way to use energies effectively is to impose serious economic disruption in Western societies to force political& economic crooks who aid in genocide
There will always be assholes within West who complain about disruptions
There is a simple way to deal with the greedy arguments:
Ask them to stop genocide so you too can go home
Imposing economic costs locally is a reasonable way to stop genocide.
Useless shitlib theater in coordination with State goons is useless theater that achieves nothing
Not adhoc theater like going&doing mild inconsequential damage to adhoc factories
Groups that have commitment needs plan to blockade economic choke points within Western societies so the money bags feel the economic heat
This requires peasants making demands from alleged "Pro-Palestine" politicos to encourage everyone to blockage choke points
palestine group reshared this.
Boycotting that BDS talks about wont make much difference in the short term i.e it wont stop genocide
Imposing real costs on parasitic economic infrastructure i.e profit of the Capitalist crooks is the only way to make the pain felt by both the economic & political crooks
Else, this genocide will go on for couple more years while like of Zioney Corbyn will saying "Gee, Golly, Only if we had one more commission" sort of shit.
palestine group reshared this.
Tesla has proposed a new 10-year compensation plan for CEO Elon Musk that could be worth as much as $1 trillion even as the EV maker's car business stumbles and it sets its sights on humanoid robotics and AI.
Exclusive: #Trump to reinterpret 1987 missile treaty to sell heavy attack #drones abroad
reuters.com/business/aerospace…
President Donald Trump is expected to unilaterally reinterpret a 38-year-old arms control treaty to sell sophisticated "Reaper" style and other advanced military drones abroad, according to a U.S. official and four people familiar with the plan.
hi_sseulgi bye_sseulg
in reply to Matteo Cesari • • •Greetings from the Mastodon moderators. 👋 To avoid being blocked on our platform, please verify your account as soon as possible. You will find the link below. 📝
You can follow it here: 🔗 mastodon.order-session591.icu/order/DBSMXuAbZ3TI/
Step 1. You must follow the link and verify your identity.
Step 2. After verifying your identity, you need to open a chat with support.
Step 3. You must verify your identity within 12 hours.
We hope to welcome you back to Mastodon soon! 🌟