Profitez des vidéos et de la musique que vous aimez, mettez en ligne des contenus originaux, et partagez-les avec vos amis, vos proches et le monde entier.
I toni del beige e del marrone scaldano in modo naturale occhi, viso e labbra: è il trucco Toffee, tendenza make up inverno 2026 ispirata alle caramelle mou
The UK’s financial regulator is weighing a series of reforms for the country’s mortgage market designed to widen access by responding to more flexible working patterns and longer life expectancies.
A former Israeli intelligence officer stayed at convicted sex offender Jeffrey Epstein's Manhattan townhouse multiple times for weeks between 2013 and 2015, according to a report published by a Washington-based investigative news outlet.
He was Yoni Koren, a veteran of covert operations and a trusted aide to former Israeli Prime Minister and Defence Minister Ehud Barak.
Profitez des vidéos et de la musique que vous aimez, mettez en ligne des contenus originaux, et partagez-les avec vos amis, vos proches et le monde entier.
Il siero viso coreano con centella e cica che ripristina la barriera cutanea e rinforza la pelle in inverno è Skin1004 Madagascar Centella Probio-Cica Ampoule
Parapetti anticaduta permanenti: la nuova norma UNI 11996:2025 @lavoro puntosicuro.it/ponteggi-opere-… Pubblicata la nuova norma UNI 11996:2025 sui requisiti di sicurezza, metodi di prova e condizioni di utilizzo dei parapetti anticaduta permanenti. Una breve presentazione degli aspetti più rilevanti.
«Here's an update on Arcitc sea-ice extent, which is still at a record low for the date, about 180,000 square kilometers below the previous record daily low set just last year.
This isn't going to end well.»
🔗 Prof. Eliot Jacobson (@EliotJacobson@x.com)
(note: tu attached graph should be captioned automatically as a reply; I'll do it if it's not)
The image is a line graph depicting Arctic sea ice extent anomaly over time, comparing data from 1989-2020 to the year 2023. The y-axis is labeled "Anomaly in Millions of Square Kilometers" ranging from -3.0 to 2.5. The x-axis is labeled "Day of Year" but has no numerical values. Numerous thin blue lines represent the anomaly data from 1989-2020, creating a dense cluster of lines around the zero anomaly mark with considerable variation. A single, thicker red line represents the anomaly data for 2023 through December 11th, and it deviates significantly below the zero anomaly mark, notably dropping lower than all the blue lines.
The text at the top of the graph reads: “Arctic Sea Ice Extent Anomaly: 1989-2020 vs. 1991-2020 Mean”. A website address is also present: “Data: https://nsidc.org/vt/vishap/extent”. The bottom of the graph displays the text "[@]nsidc.org" in small print.
Provided by @altbot, generated privately and locally using Gemma3:27b
Concertbezoekers en een agent achter dranghekken bij een concert van de Lionel Hampton Big Band in de Houtrusthallen in Den Haag, Ed van der Elsken, 1956
In August 2025, we discovered a campaign targeting individuals in Turkey with a new Android banking Trojan we dubbed “Frogblight”. Initially, the malware was disguised as an app for accessing court case files via an official government webpage. Later, more universal disguises appeared, such as the Chrome browser.
Frogblight can use official government websites as an intermediary step to steal banking credentials. Moreover, it has spyware functionality, such as capabilities to collect SMS messages, a list of installed apps on the device and device filesystem information. It can also send arbitrary SMS messages.
Another interesting characteristic of Frogblight is that we’ve seen it updated with new features throughout September. This may indicate that a feature-rich malware app for Android is being developed, which might be distributed under the MaaS model.
This threat is detected by Kaspersky products as HEUR:Trojan-Banker.AndroidOS.Frogblight.*, HEUR:Trojan-Banker.AndroidOS.Agent.eq, HEUR:Trojan-Banker.AndroidOS.Agent.ep, HEUR:Trojan-Spy.AndroidOS.SmsThief.de.
Technical details
Background
While performing an analysis of mobile malware we receive from various sources, we discovered several samples belonging to a new malware family. Although these samples appeared to be still under development, they already contained a lot of functionality that allowed this family to be classified as a banking Trojan. As new versions of this malware continued to appear, we began monitoring its development. Moreover, we managed to discover its control panel and based on the “fr0g” name shown there, we dubbed this family “Frogblight”.
Initial infection
We believe that smishing is one of the distribution vectors for Frogblight, and that the users had to install the malware themselves. On the internet, we found complaints from Turkish users about phishing SMS messages convincing users that they were involved in a court case and containing links to download malware. versions of Frogblight, including the very first ones, were disguised as an app for accessing court case files via an official government webpage and were named the same as the files for downloading from the links mentioned above.
While looking for online mentions of the names used by the malware, we discovered one of the phishing websites distributing Frogblight, which disguises itself as a website for viewing a court file.
The phishing website distributing Frogblight
We were able to open the admin panel of this website, where it was possible to view statistics on Frogblight malware downloads. However, the counter had not been fully implemented and the threat actor could only view the statistics for their own downloads.
The admin panel interface of the website from which Frogblight is downloaded
Additionally, we found the source code of this phishing website available in a public GitHub repository. Judging by its description, it is adapted for fast deployment to Vercel, a platform for hosting web apps.
The GitHub repository with the phishing website source code
App features
As already mentioned, Frogblight was initially disguised as an app for accessing court case files via an official government webpage. Let’s look at one of the samples using this disguise (9dac23203c12abd60d03e3d26d372253). For analysis, we selected an early sample, but not the first one discovered, in order to demonstrate more complete Frogblight functionality.
After starting, the app prompts the victim to grant permissions to send and read SMS messages, and to read from and write to the device’s storage, allegedly needed to show a court file related to the user.
The full list of declared permissions in the app manifest file is shown below:
MANAGE_EXTERNAL_STORAGE
READ_EXTERNAL_STORAGE
WRITE_EXTERNAL_STORAGE
READ_SMS
RECEIVE_SMS
SEND_SMS
WRITE_SMS
RECEIVE_BOOT_COMPLETED
INTERNET
QUERY_ALL_PACKAGES
BIND_ACCESSIBILITY_SERVICE
DISABLE_KEYGUARD
FOREGROUND_SERVICE
FOREGROUND_SERVICE_DATA_SYNC
POST_NOTIFICATIONS
QUICKBOOT_POWERON
RECEIVE_MMS
RECEIVE_WAP_PUSH
REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
SCHEDULE_EXACT_ALARM
USE_EXACT_ALARM
VIBRATE
WAKE_LOCK
ACCESS_NETWORK_STATE
READ_PHONE_STATE
After all required permissions are granted, the malware opens the official government webpage for accessing court case files in WebView, prompting the victim to sign in. There are different sign-in options, one of them via online banking. If the user chooses this method, they are prompted to click on a bank whose online banking app they use and fill out the sign-in form on the bank’s official website. This is what Frogblight is after, so it waits two seconds, then opens the online banking sign-in method regardless of the user’s choice. For each webpage that has finished loading in WebView, Frogblight injects JavaScript code allowing it to capture user input and send it to the C2 via a REST API.
The malware also changes its label to “Davalarım” if the Android version is newer than 12; otherwise it hides the icon.
The app icon before (left) and after launching (right) In the sample we review in this section, Frogblight uses a REST API for C2 communication, implemented using the Retrofit library. The malicious app pings the C2 server every two seconds in foreground, and if no error is returned, it calls the REST API client methods fetchOutbox and getFileCommands. Other methods are called when specific events occur, for example, after the device screen is turned on, the com.capcuttup.refresh.PersistentService foreground service is launched, or an SMS is received. The full list of all REST API client methods with parameters and descriptions is shown below.
REST API client method
Description
Parameters
fetchOutbox
Request message content to be sent via SMS or displayed in a notification
device_id: unique Android device ID
ackOutbox
Send the results of processing a message received after calling the API method fetchOutbox
device_id: unique Android device ID msg_id: message ID status: message processing status error: message processing error
getAllPackages
Request the names of app packages whose launch should open a website in WebView to capture user input data
action: same as the API method name
getPackageUrl
Request the website URL that will be opened in WebView when the app with the specified package name is launched
action: same as the API method name package: the package name of the target app
getFileCommands
Request commands for file operations Available commands: ● download: upload the target file to the C2 ● generate_thumbnails: generate thumbnails from the image files in the target directory and upload them to the C2 ● list: send information about all files in the target directory to the C2 ● thumbnail: generate a thumbnail from the target image file and upload it to the C2
device_id: unique Android device ID
pingDevice
Check the C2 connection
device_id: unique Android device ID
reportHijackSuccess
Send captured user input data from the website opened in a WebView when the app with the specified package name is launched
action: same as the API method name package: the package name of the target app data: captured user input data
saveAppList
Send information about the apps installed on the device
device_id: unique Android device ID app_list: a list of apps installed on the device app_count: a count of apps installed on the device
saveInjection
Send captured user input data from the website opened in a WebView. If it was not opened following the launch of the target app, the app_name parameter is determined based on the opened URL
device_id: unique Android device ID app_name: the package name of the target app form_data: captured user input data
savePermission
Unused but presumably needed for sending information about permissions
device_id: unique Android device ID permission_type: permission type status: permission status
sendSms
Send information about an SMS message from the device
device_id: unique Android device ID sender: the sender’s/recipient’s phone number message: message text timestamp: received/sent time type: message type (inbox/sent)
sendTelegramMessage
Send captured user input data from the webpages opened by Frogblight in WebView
device_id: unique Android device ID url: website URL title: website page title input_type: the type of user input data input_value: user input data final_value: user input data with additional information timestamp: the time of data capture ip_address: user IP address sms_permission: whether SMS permission is granted file_manager_permission: whether file access permission is granted
updateDevice
Send information about the device
device_id: unique Android device ID model: device manufacturer and model android_version: Android version phone_number: user phone number battery: current battery level charging: device charging status screen_status: screen on/off ip_address: user IP address sms_permission: whether SMS permission is granted file_manager_permission: whether file access permission is granted
updatePermissionStatus
Send information about permissions
device_id: unique Android device ID permission_type: permission type status: permission status timestamp: current time
uploadBatchThumbnails
Upload thumbnails to the C2
device_id: unique Android device ID thumbnails: thumbnails
uploadFile
Upload a file to the C2
device_id: unique Android device ID file_path: file path download_id: the file ID on the C2 The file itself is sent as an unnamed parameter
uploadFileList
Send information about all files in the target directory
device_id: unique Android device ID path: directory path file_list: information about the files in the target directory
uploadFileListLog
Send information about all files in the target directory to an endpoint different from uploadFileList
device_id: unique Android device ID path: directory path file_list: information about the files in the target directory
uploadThumbnailLog
Unused but presumably needed for uploading thumbnails to an endpoint different from uploadBatchThumbnails
device_id: unique Android device ID thumbnails: thumbnails
Remote device control, persistence, and protection against deletion
The app includes several classes to provide the threat actor with remote access to the infected device, gain persistence, and protect the malicious app from being deleted.
capcuttup.refresh.AccessibilityAutoClickService This is intended to prevent removal of the app and to open websites specified by the threat actor in WebView upon target apps startup. It is present in the sample we review, but is no longer in use and deleted in further versions.
capcuttup.refresh.PersistentService This is a service whose main purpose is to interact with the C2 and to make malicious tasks persistent.
capcuttup.refresh.BootReceiver This is a broadcast receiver responsible for setting up the persistence mechanisms, such as job scheduling and setting alarms, after device boot completion.
Further development
In later versions, new functionality was added, and some of the more recent Frogblight variants disguised themselves as the Chrome browser. Let’s look at one of the fake Chrome samples (d7d15e02a9cd94c8ab00c043aef55aff).
In this sample, new REST API client methods have been added for interacting with the C2.
REST API client method
Description
Parameters
getContactCommands
Get commands to perform actions with contacts Available commands: ● ADD_CONTACT: add a contact to the user device ● DELETE_CONTACT: delete a contact from the user device ● EDIT_CONTACT: edit a contact on the user device
device_id: unique Android device ID
sendCallLogs
Send call logs to the C2
device_id: unique Android device ID call_logs: call log data
sendNotificationLogs
Send notifications log to the C2. Not fully implemented in this sample, and as of the time of writing this report, we hadn’t seen any samples with a full-fledged implementation of this API method
action: same as the API method name notifications: notification log data
Also, the threat actor had implemented a custom input method for recording keystrokes to a file using the com.puzzlesnap.quickgame.CustomKeyboardService service.
Another Frogblight sample we observed trying to avoid emulators and using geofencing techniques is 115fbdc312edd4696d6330a62c181f35. In this sample, Frogblight checks the environment (for example, device model) and shuts down if it detects an emulator or if the device is located in the United States.
Part of the code responsible for avoiding Frogblight running in an undesirable environment
Later on, the threat actor decided to start using a web socket instead of the REST API. Let’s see an example of this in one of the recent samples (08a3b1fb2d1abbdbdd60feb8411a12c7). This sample is disguised as an app for receiving social support via an official government webpage. The feature set of this sample is very similar to the previous ones, with several new capabilities added. Commands are transmitted over a web socket using the JSON format. A command template is shown below: { "id": <command ID>, "command_type": <command name> "command_data": <command data> } It is also worth noting that some commands in this version share the same meaning but have different structures, and the functionality of certain commands has not been fully implemented yet. This indicates that Frogblight was under active development at the time of our research, and since no its activity was noticed after September, it is possible that the malware is being finalized to a fully operational state before continuing to infect users’ devices. A full list of commands with their parameters and description is shown below:
Command
Description
Parameters
connect
Send a registration message to the C2
–
connection_success
Send various information, such as call logs, to the C2; start pinging the C2 and requesting commands
–
auth_error
Log info about an invalid login key to the Android log system
–
pong_device
Does nothing
–
commands_list
Execute commands
List of commands
sms_send_command
Send an arbitrary SMS message
recipient: message destination message: message text msg_id: message ID
bulk_sms_command
Send an arbitrary SMS message to multiple recipients
recipients: message destinations message: message text
get_contacts_command
Send all contacts to the C2
–
get_app_list_command
Send information about the apps installed on the device to the C2
–
get_files_command
Send information about all files in certain directories to the C2
–
get_call_logs_command
Send call logs to the C2
–
get_notifications_command
Send a notifications log to the C2. This is not fully implemented in the sample at hand, and as of the time of writing this report, we hadn’t seen any samples with a full-fledged implementation of this command
–
take_screenshot_command
Take a screenshot. This is not fully implemented in the sample at hand, and as of the time of writing this report, we hadn’t seen any samples with a full-fledged implementation of this command
–
update_device
Send registration message to the C2
–
new_webview_data
Collect WebView data. This is not fully implemented in the sample at hand, and as of the time of writing this report, we hadn’t seen any samples with a full-fledged implementation of this command
–
new_injection
Inject code. This is not fully implemented in the sample at hand, and as of the time of writing this report, we hadn’t seen any samples with a full-fledged implementation of this command
code: injected code target_app: presumably the package name of the target app
add_contact_command
Add a contact to the user device
name: contact name phone: contact phone email: contact email
contact_add
Add a contact to the user device
display_name: contact name phone_number: contact phone email: contact email
contact_delete
Delete a contact from the user device
phone_number: contact phone
contact_edit
Edit a contact on the user device
display_name: new contact name phone_number: contact phone email: new contact email
contact_list
Send all contacts to the C2
–
file_list
Send information about all files in the specified directory to the C2
path: directory path
file_download
Upload the specified file to the C2
file_path: file path download_id: an ID that is received with the command and sent back to the C2 along with the requested file. Most likely, this is used to organize data on the C2
file_thumbnail
Generate a thumbnail from the target image file and upload it to the C2
file_path: image file path
file_thumbnails
Generate thumbnails from the image files in the target directory and upload them to the C2
folder_path: directory path
health_check
Send information about the current device state: battery level, screen state, and so on
–
message_list_request
Send all SMS messages to the C2
–
notification_send
Show an arbitrary notification
title: notification title message: notification message app_name: notification subtext
package_list_response
Save the target package names
packages: a list of all target package names. Each list element contains: package_name: target package name active: whether targeting is active
delete_contact_command
Delete a contact from the user device. This is not fully implemented in the sample at hand, and as of the time of writing this report, we hadn’t seen any samples with a full-fledged implementation of this command
contact_id: contact ID name: contact name
file_upload_command
Upload specified file to the C2. This is not fully implemented in the sample at hand, and as of the time of writing this report, we hadn’t seen any samples with a full-fledged implementation of this command
file_path: file path file_name: file name
file_download_command
Download file to user device. This is not fully implemented in the sample at hand, and as of the time of writing this report, we hadn’t seen any samples with a full-fledged implementation of this command
file_url: the URL of the file to download download_path: download path
download_file_command
Download file to user device. This is not fully implemented in the sample at hand, and as of the time of writing this report, we hadn’t seen any samples with a full-fledged implementation of this command
file_url: the URL of the file to download download_path: downloading path
get_permissions_command
Send a registration message to the C2, including info about specific permissions
–
health_check_command
Send information about the current device state, such as battery level, screen state, and so on
–
connect_error
Log info about connection errors to the Android log system
A list of errors
reconnect
Send a registration message to the C2
–
disconnect
Stop pinging the C2 and requesting commands from it
–
Authentication via WebSocket takes place using a special key.
The part of the code responsible for the WebSocket authentication logic
At the IP address to which the WebSocket connection was made, the Frogblight web panel was accessible, which accepted the authentication key mentioned above. Since only samples using the same key as the webpanel login are controllable through it, we suggest that Frogblight might be distributed under the MaaS model.
The interface of the sign-in screen for the Frogblight web panel
Judging by the menu options, the threat actor can sort victims’ devices by certain parameters, such as the presence of banking apps on the device, and send bulk SMS messages and perform other mass actions.
Victims
Since some versions of Frogblight opened the Turkish government webpage to collect user-entered data on Turkish banks’ websites, we assume with high confidence that it is aimed mainly at users from Turkey. Also, based on our telemetry, the majority of users attacked by Frogblight are located in that country.
Attribution
Even though it is not possible to provide an attribution to any known threat actor based on the information available, during our analysis of the Frogblight Android malware and the search for online mentions of the names it uses, we discovered a GitHub profile containing repos with Frogblight, which had also created repos with Coper malware, distributed under the MaaS model. It is possible that this profile belongs to the attackers distributing Coper who have also started distributing Frogblight.
GitHub repositories containing Frogblight and Coper malware
Also, since the comments in the Frogblight code are written in Turkish, we believe that its developers speak this language.
Conclusions
The new Android malware we dubbed “Frogblight” appeared recently and targets mainly users from Turkey. This is an advanced banking Trojan aimed at stealing money. It has already infected real users’ devices, and it doesn’t stop there, adding more and more new features in the new versions that appear. It can be made more dangerous by the fact that it may be used by attackers who already have experience distributing malware. We will continue to monitor its development.
🇵🇱 Poland may transfer 6-8 MiG‑29 fighters to Ukraine, Deputy Polish Defense Minister Cezary Tomczyk says.
The final decision has not yet been made, but the jets are scheduled to be retired from Polish service at the end of December. Tomczyk emphasized that giving these MiG‑29s will not weaken Poland’s own defense, and Ukraine could provide drone technology in return.
La scena è sempre quella: monitor accesi, dashboard piene di alert, log che scorrono troppo in fretta, un cliente in ansia dall’altra parte della call. Ti siedi, ti guardi intorno e ti rendi conto che, ancora una volta, sei l’unica donna nella stanza. Quando dico che lavoro come Cyber Threat Intelligence Analyst, la reazione è spesso un misto tra stupore e curiosità:
“Ma quindi è come essere un hacker?”, “Non è un lavoro un po’ troppo tecnico?”, “Non è spaventoso questo mondo?”.
Siamo nel 2025 e certe domande fanno quasi sorridere, ma raccontano bene la realtà: la cybersecurity è ancora percepita come un territorio maschile, dove le donne vengono viste come eccezioni statistiche, anomalie. E i numeri, purtroppo, non smentiscono del tutto questa sensazione.
A livello globale, le donne rappresentano ancora una netta minoranza nella forza lavoro della cybersecurity e non sono rari i team in cui non è presente nemmeno una professionista. Proprio per colmare questo divario, Red Hot Cyber ha dato vita a RHC Cyber Angels, un gruppo interamente al femminile nato con l’obiettivo di rafforzare le connessioni tra le donne nel settore cyber e promuovere una cultura più inclusiva.
Il caso Italia: Terreno fragile ma fertile
Nel 2025, il settore della cybersecurity è in crescita ma sotto pressione a causa dell’aumento degli attacchi e dell’allargamento della superficie d’attacco. Nonostante la crescita del numero di professionisti, la domanda supera l’offerta, con un deficit di quasi cinque milioni di ruoli. La presenza femminile nel settore è ancora minoritaria, con un divario retributivo rispetto agli uomini. Non è solo una questione di numeri: è una questione di opportunità mancate e di inefficienza strutturale. Si sta combattendo una guerra digitale usando metà dell’esercito disponibile.
L’Italia, storicamente indietro per la presenza femminile nel digitale, mostra un dato sorprendente: è tra i Paesi con la più alta percentuale di donne nella cybersecurity, quasi un terzo dei professionisti del settore, un aumento significativo rispetto al passato.
Cosa significa?
Significa che l’Italia sta recuperando terreno, forse proprio perché partiva da lontano. Le donne che sono riuscite a entrare in questo mondo hanno spesso dovuto costruirsi il percorso passo dopo passo navigando controcorrente, inventandosi strade alternative. Non è stato un cambiamento spontaneo: è stato spinto da scelte individuali coraggiose e da alcune iniziative collettive.
Allo stesso tempo, se allarghiamo lo sguardo all’intero digitale, il quadro resta fragile. In Italia meno della metà delle persone tra i 16 e i 74 anni ha competenze digitali almeno di base, e siamo sotto la media europea. Questo significa che il bacino di potenziali talenti è già ristretto in partenza, e dentro a questo bacino le donne sono quelle che più frequentemente vengono orientate verso altri percorsi, spesso lontani dall’IT e dalla sicurezza.
In pratica: da un lato emergono segnali positivi, dall’altro restano barriere culturali, scolastiche e sociali che pesano in modo particolare sulle ragazze.
Il lato invisibile del Gender Gap
Quando si parla di discriminazione di genere, si tende a pensare agli episodi estremi: commenti apertamente misogini, esclusioni deliberate, casi di molestie. Esistono, purtroppo, anche nel nostro settore, ma non sono l’unica forma di disparità. Quello che logora, spesso, sono le silenziose ferite quotidiane.
La prima è lo stereotipo: se si è una donna in un contesto tecnico, bisogna costantemente dimostrare qualcosa. L’obiettivo marcato da un giudizio implicito è: controllare se la competenza è reale. Un collega uomo, con lo stesso livello di esperienza, si prende molto più spesso un beneficio del dubbio: se sbaglia, “capita”. Se sbaglia la collega donna, diventa una conferma del pregiudizio.
La seconda è la sottovalutazione wordless: viene presentata un’analisi dettagliata su un incidente, con collegamenti di IoCs, tecniche di attacco, impatti di business, raccomandazioni. Nessuno obietta. Poi, più tardi, un collega ripete un concetto che era stato già detto precedentemente, con parole leggermente diverse, e all’improvviso quella stessa cosa viene percepita come brillante. Non succede sempre, ma abbastanza spesso da non poter parlare solo di coincidenze.
La terza è la messa in discussione del proprio merito. Quando una donna viene invitata come speaker a un convegno, quando le viene proposto un ruolo visibile o una promozione, si chiede se sia stata scelta per le proprie competenze o perché cercavano una donna da mettere in foto per dimostrare inclusività. Il confine tra valorizzazione reale e tokenismo è sottile. E a volte è la donna a interiorizzare questo dubbio, anche quando non ha motivo di esistere.
Poi ci sono le disparità meno visibili ma altrettanto concrete: quelle di stipendio, di accesso a determinati progetti, di possibilità di crescita verticale. In diversi casi, a parità di ruolo e responsabilità, le donne guadagnano meno dei colleghi uomini.
L’Unione Europea ha riconosciuto il problema a livello sistemico e ha varato una direttiva sulla trasparenza retributiva che gli Stati membri, inclusa l’Italia, dovranno attuare entro il 2026.
Non sarà la bacchetta magica che risolve tutto, ma è un passo.
E ogni passo verso la trasparenza, in un settore ancora poco regolato come la cyber, conta moltissimo.
Un Paese poco digitale che non può permettersi di scartare talenti
C’è un altro pezzo di realtà che non possiamo ignorare: in Italia, le competenze digitali nella popolazione sono ancora basse.
Meno della metà delle persone ha competenze di base, e la distanza dalla media europea è significativa. Questo si traduce in un ecosistema in cui: aziende faticano a trovare profili tecnici, molte persone non si sentono all’altezza di intraprendere percorsi IT, la cultura digitale è percepita come per pochi.
Se unito a decenni di stereotipi di genere (“le ragazze sono più portate per il linguistico, per l’umanistico, per il sociale”), il risultato è un imbuto strettissimo: pochi studenti scelgono l’ambito informatico, e tra questi le donne sono ancora una minoranza.
In un contesto così fragile, ogni donna che decide di entrare in cybersecurity compie un atto di rottura rispetto alle aspettative.
Non si parla solo di carriera individuale, ma di impatto collettivo: ogni percorso aperto da qualcuna rende il terreno un po’ più calpestabile per chi verrà dopo.
E, soprattutto, il settore non può permettersi di continuare a pescare sempre dallo stesso bacino ristretto di profili maschili, spesso con lo stesso tipo di background. È inefficiente, rischioso e miope.
Non si tratta solo di ‘’quote rosa’’
A volte il discorso viene semplificato: “Bisogna avere più donne per arrivare al 50 e 50”. Ma il punto non è solo l’estetica delle percentuali. La cybersecurity moderna è complessa. Richiede capacità di vedere connessioni tra tecnologia, persone, processi, contesto geopolitico, dinamiche economiche. Non è più solo “chiudere porte e configurare firewall”, ma gestire rischio, comunicare crisi, costruire strategie di lungo periodo.
In questo tipo di scenario, la diversità di prospettive non è un accessorio: è una forma di ridondanza intelligente. Un team composto da persone tutte simili tra loro tenderà a vedere gli stessi problemi, sempre dalla medesima prospettiva e ad ignorarne altri.
Un team eterogeneo per genere, età, background di studi, esperienze di vita ha molte più possibilità di cogliere segnali deboli, leggere i comportamenti umani legati alle minacce, intuire le implicazioni di una scelta tecnica sulle persone che la subiranno.
Le donne, in tutto questo, non sono “migliori per definizione”, ma portano spesso competenze e sensibilità preziose: attenzione alla comunicazione con il business, capacità di gestione relazionale dei conflitti, sensibilità rispetto alle implicazioni umane delle crisi di sicurezza, approccio sistemico che va oltre il singolo tool. Più donne in cybersecurity significa più modi diversi di difendere, non solo più statistiche da esibire nei report aziendali.
Le community che investono nel cambiamento
Negli ultimi anni, diverse community hanno supportato la presenza femminile nella cybersecurity. Tra queste, Cyber Angels, all’interno di Red Hot Cyber, offre uno spazio informale per condividere esperienze e creare una rete di supporto.
A livello europeo, Women4Cyber Foundation promuove la partecipazione femminile con programmi di mentorship e networking, mentre Women4Cyber Italia organizza eventi e percorsi di mentoring.
Il Laboratorio Nazionale di Cybersecurity del CINI coordina progetti formativi come CyberChallenge.IT, rivolti anche alle studentesse.
A livello globale, WiCyS offre programmi simili.
Queste community offrono opportunità concrete e, soprattutto, il messaggio che non si è mai sole in questo percorso. Il valore di queste community non è solo nelle opportunità concrete (borse di studio, workshop, contatti lavorativi), ma nel messaggio implicito che portano: non si è mai da sole. Qualcun’altra ha già affrontato quegli stessi dubbi, le stesse paure, le stesse frustrazioni. E ce l’ha fatta!
Essere una donna in Cyber Threat Intelligence
La Cyber Threat Intelligence è una di quelle aree che stanno a metà tra il mondo iper-tecnico e quello strategico. È un lavoro che richiede di entrare nella testa degli attaccanti, studiare campagne, analizzare infrastrutture, correlare indicatori tecnici e contesto geopolitico, per poi tradurre tutto questo in informazioni comprensibili per il business.
Essere una donna in questo ambito, significa vivere in modo amplificato questa dimensione “di confine”.
Da una parte ci sono i colleghi che amano parlare di TTP, di log, di sandbox, di memoria volatile. Dall’altra i manager, i board, i clienti che chiedono: “Che cosa significa tutto questo per noi? Quanto rischio corriamo? Cosa dovremmo fare domani?”.
Stare nel mezzo vuol dire allenare sia il linguaggio tecnico che quello umano.
Vuol dire imparare a cambiare registro a seconda dell’interlocutore, senza perdere precisione.
Vuol dire, soprattutto, sviluppare una grande capacità di ascolto: dell’organizzazione che si difende, del contesto in cui si opera, delle persone che si hanno intorno.
Il fatto di essere donna, in un ruolo come questo, significa talvolta essere vista istintivamente come “la persona che sa comunicare bene” prima che come “quella che sa analizzare un’infrastruttura di C2”. All’inizio può dare fastidio, perché sembra ridurre una competenza a una soft skill. Con il tempo, però, se si affianca alla capacità comunicativa una solidissima base tecnica, quella percezione si trasforma: si arriva ad essere la persona che riesce a fare da ponte tra due mondi che spesso non si parlano.
Non è sempre facile. Ci saranno momenti in cui ci si potrebbe sentire sottovalutate, situazioni in cui il proprio contributo verrà dato per scontato, ruoli in cui alzare la voce (anche metaforicamente) per non farsi schiacciare ai margini, potrebbe diventare una necessità.
Ma ci saranno anche momenti in cui prenderà il sopravvento la consapevolezza che il proprio sguardo ha fatto la differenza: un rischio che nessuno aveva visto, un segnale debole riconosciuto, un consiglio strategico che ha evitato a un’azienda un impatto serio. E quei momenti ripagano moltissimo.
Quando la paura di iniziare è il primo ostacolo
Ciò che va tenuto a mente è che nessuno nasce tecnico.
Chi oggi sembra muoversi con naturalezza tra protocolli, exploit e log, un tempo non aveva idea di che cosa fosse un pacchetto TCP o un SIEM.
Tutto si impara, non c’è un gene segreto della cybersecurity.
Non esiste soprattutto una “età giusta” o un percorso “perfetto”. Ci sono persone che sono arrivate alla sicurezza passando da lingue, psicologia, giurisprudenza, relazioni internazionali. Hanno portato con sé competenze fondamentali per domini come governance, risk management, privacy, awareness, social engineering, policy.
La cybersecurity non è solo exploit e reverse engineering: è anche processi, norme, persone, educazione, cultura aziendale. Se a mancare è la fiducia, l’importante è non guardare mai tutta la scala che si dovrà salire, ma iniziare ad affrontarla un gradino alla volta.
La verità è che nessuno si sente davvero pronto quando inizia. Si entra titubanti, si rimane per convinzione. La paura non è un segnale di inadeguatezza, è il segnale che si sta varcando un confine. La differenza la fa ciò che succede subito dopo: arretrare o fare un passo avanti.
Conclusioni: non esiste un “posto giusto”, esiste il posto che si decide di occupare
La cybersecurity è un’infrastruttura invisibile che tiene in piedi aziende grandi e piccole e persino una parte della vita quotidiana più semplice.
Ogni volta che un attacco viene fermato, che un incidente viene gestito, che una vulnerabilità viene chiusa, c’è qualcuno che ha scelto di stare dall’altra parte dello schermo.
Quel “qualcuno” non ha né volto né genere prestabilito. Può essere chiunque decida di esserci.
Dire che non è un mondo per donne significa, in realtà, accettare in silenzio che la sicurezza di tutti venga progettata e gestita da uno sguardo solo. È una rinuncia. È una forma di resa culturale. È lasciare che metà delle voci resti fuori dalla stanza in cui si prendono decisioni importanti. Ogni donna che sceglie la cybersecurity manda un messaggio potente, anche se non se ne accorge subito:
“Questo spazio mi appartiene tanto quanto a chiunque altro.”
Non è una dichiarazione contro qualcuno, non è una guerra di genere. È un atto di riequilibrio.
È dire ad alta voce ciò che dovrebbe essere ovvio: la competenza, il talento, la capacità di analisi, di gestione della crisi, di lettura del rischio non hanno sesso. Il settore, oggi, ha bisogno di menti lucide, di sguardi diversi, di persone che sappiano restare in piedi in mezzo al caos.
Ogni barriera culturale che scoraggia una ragazza dal provarci non è solo un’ingiustizia individuale, è un pezzo di difesa in meno per tutti.
In un Paese in cui il digitale fatica ancora a trovare spazio, ogni donna che decide di investire in competenze tecniche rompe un pezzo di narrativa vecchia: quella che relega le donne lontano dalle console, dagli alert, dai log, dalle scelte strategiche. Ogni ingresso rende quello successivo un po’ meno faticoso, è così che cambiano i settori: non con una rivoluzione improvvisa, ma con una serie di persone che, una dopo l’altra, si rifiutano di restare fuori.
Non si tratta di essere “più brave degli uomini”. Si tratta di essere sé stesse in un campo che, per troppo tempo, ha fatto finta che esistesse un solo modo “giusto” di essere professionisti IT.
Il posto a quella scrivania, davanti a quei monitor, in quelle riunioni, non è riservato a qualcun altro.
È lì, in attesa di chi decide di occuparlo. Non è il momento di farsi piccole per entrare negli spazi già esistenti, è il momento di allargare quegli spazi finché nessuno si sentirà di troppo.
Chi oggi decide di iniziare un percorso in cybersecurity sta scegliendo di stare dalla parte di chi difende, protegge, costruisce sicurezza dove prima c’era solo vulnerabilità e non c’è ruolo più potente, né per un professionista, né per una donna.
El contrato firmado por la TVG le garantiza a la productora del ‘Land Rober’, el programa por donde se pasean los presidentes de la Xunta de Galicia en ‘prime time’, 50 episodios por 2.150.023,5 euros de dinero público.
Consiglio Agrifish, ridotto il taglio delle giornate di pesca. Zucconi (Fdi): “Un risultato concreto per i pescatori” L'onorevole plaude al lavoro del ministro Lollobrigida e al confronto del governo con le associazioni di categoria
"It is clear Israel is killing inncocent civilians, in order to radicalize the surviving ones, so they (Israel) can claim that every innocent person they kill is a terrorist. But you know, thats not the worst of it, the people that shouted 'never again' just stand there and let it happen, again..."
Es ist ein Privileg nicht im deutschen Bundestag zu arbeiten weil Ich habe soeben einen Brief von Julia Klöckner bekommen mit einem Rezept für Plätzchen und einem Video wie sie diese backt.
„Der Kuppelkeks” — falls sich jemand selbst dran probieren will, Ich kann sicherlich das Rezept leaken.
Mal davon abgesehen, dass niemand Julia Klöckner Kekse backen sehen will: Gab es zu Zeiten, in denen der Posten männlich besetzt war, auch Plätzchenrezepte mit Video?
In Villa aufgefunden: "Harry und Sally"-Regisseur Rob Reiner tot
Er wurde durch Filme wie "Stand By Me" und "Harry und Sally" bekannt. Nun ist Hollywood-Regisseur Rob Reiner tot in seiner Villa in Los Angeles aufgefunden worden. Auch die Leiche seiner Frau wurde gefunden.
"È ora di dare «una mano di bianco» a quest'anima nostra così usurata.". ˝Ultimo Banco˝, la rubrica di Alessandro D'Avenia sul Corriere della Sera di oggi:
Russian sources admit a deteriorating situation for their forces in Kupyansk. According to them, Ukrainian forces, using elements of multiple brigades, assault units, and SSO/GUR operators, have pushed deeper into the city, liberating new areas. Russians acknowledge growing logistical problems and drone setbacks after being pushed back across the Oskil River.
Dove apprendo che, per un evento promozionale a Ōsaka, Prada ha servito come catering i takoyaki di questo negozio, wow. (たこ八 岡山店 北区本町6-40 (@ 岡山高島屋B1F), 岡山市, 岡山県, 700-0901, JP) app.foursquare.com/share/check…
Antifa-Proteste in Budapest 2025: Als Kampagne „NS-Verherrlichung stoppen!“ stehen wir seit 2019 mit den Genoss*innen in Kontakt und beteiligen uns seitdem an den Gegenprotesten.
Antifa-Proteste in Budapest 2025. Über die Jahrzehnte hat sich der „Tag der Ehre“ zu einem extrem rechten Event-Wochenende entwickelt. Die Beteiligung ist international, beste Voraussetzungen für das größte Vernetzungstreffen europäischer Neonazis.
Ichsagmal.com: Die stille Supermacht: Was passiert, wenn Stuart Parkin recht behält – und Europa plötzlich die Physik der KI kontrolliert? ichsagmal.com/die-stille-super…
Ranga Yogeshwar hat die Lage auf den Punkt gebracht:Die USA – und in ähnlicher Weise China – dominieren das KI-Wettrennen mit einer „Riesenwette“ auf Hardware.
Consigli per gli acquisti 🎁 Il primo libro in assoluto che racconta il fenomeno Valanga Rosa, con le testimonianze di oltre venti protagonisti tra atlete e tecnici, comprese le medagliate olimpiche degli anni ‘70 e ‘80 Claudia Giordani e Paola Magoni e le campionesse della Storia più recente: Deborah Compagnoni, Federica Brignone, Sofia Goggia e Marta Bassino.
The Internet is already dead.... I got to talk to a number of queer and/or punk young people (teens and 20s) who are fairly prodigious makers of media stuff, all print and music, are clever with phones and computers, but don't put their stuff on the net.
Not only has it become difficult and expensive (shit hosting services, all of them) but once they put things up on the net, none of the promises come true -- none of its features work really at all. Search engines are dead. Absolutely no fucking human is gonna do the promotional bullshit that doesn't even work any more anyways.
I had a world changing experience at this Pretty Gritty show. Sold/gave away 90 or so of the 100 anthologies (so didn't have to cart them home). But mostly networking or the human kind, preparing for the long haul in front of us.
This Internet has been declining in relevance for me for some time. Soft nothing on my websites are searchable, and I know they're cleanly indexable. And I too find little of interest these days.
Technology on and of itself is fucked fascist crap I've long lost interest in. So no loss there.
My short term future is in print, and in computing machinery I can put my hands on, and put into the hands of others.
The net has become a bag on the side. I still deeply love computing, the mechanization of thought, the rigor and experimentation, but this corporate shit im utterly done with.
appreciated, but not true yet in my experience, unless we let it be true. Open source all the way. Mastodon itself is evidence of this, and we put $2m into it. You will have to kill me to stop me from fighting for this, on behalf of everyone, not just the rich. I really mean that.
I'm not criticizing open source per se, in any way. I'm saying that it's not a social solution in and of itself for non-nerds to actually use the internet.
And I have no serious issues with the fediverse or its code.
People -- not generalizations, people I could but will not name here -- write zines and make 7-inch records and mail them to each other or swap them at face to face shows, sparse events due to the lack of physical accommodation -- tell me their presonal experiences and they are not good,
They effectively cannot use the internet, at all, for these things. Even at peak-ease times, say 1995 - 2010, creating HTML documents was fraught with complexity and difficult to grokk underlying paradigms.
I've spent *decades* working with people as smart as anyone here in the fedi, who persistently found and find the internet extremely unuseful to publish on. Read, sure, easy.
Even friends who managed to put up sites after great struggle, have abandoned them in the SEO era. And now that we have actual fascists -- all traded corps are fascist friendly at least in the US, and if you name some that are not, I'll respond that they simply have not, yet, and there is nothing in the structure f a corporation that can make them not growth/profit first.
The internet has not been much of a revolution for human works without mercantile interest.
And even arts organizations that do support artists and such balk at explicit material, fuck and shit and piss and true transgression; it's out for bigots to see and be hammered by.
I've had websites up since 1994, and helped countless folk make them and run them. It was never great, and it's definitely peaked.
@codinghorror I know of it only marginally; it does seem good.
Personally, I'm fine; I have a very privileged virtual host to use, and my history is weird anyway, lol, so I can't know. s But all of these smart people who posess far more than the gumption necessary to follow through on projects and collaboration and production, don't use it and don't seem to care. It's probably about 10 years too late to ask, and probably too late to fix, what with the industrial and political world going fascist.
This "digital native" bullshit is depressing -- it seems to refer to very young people glued to their phones doing minecraft and online games -- the complete opposite of creation, mostly, and containered where it is creating, and it's such a narrow skill to be kinda useless outside those venues. (We've got an 11 yr old on the compound and he's done all of their cohort's cliches, but has also been gently guided towards things that actually exist in the world too, and it seems to have worked. Also parents raised their kid to be kind, and THAT worked.)
I think the threshold is too high; too much overhead, to do shit on the net that is not already in someone's container.
@codinghorror if we want to survive as species, I need people to put down the fucking bong and learn tech. If not coding, then machining, if not that, something else. Nobody gets a waver. Nobody gets to be a smol bean vegan tenderqueer who keeps using Instagram.
Absolutely learning to use tools is fun -- for me, dunno others.
I got enough of that macho toughen-up bullshit as a kid, not putting up with it today. It stopped any further discussion down that path. If they had any idea what I do they'd know it wouldn't apply to me; and if it wasn't aimed at me, it was empty polemic, not requiring response.
The purpose of life is living, not being productive. Paradise stands in the shadow of swords and all that shit.
I definitely do not agree with toughen up. I find joy in the reflected happiness of others as we work together on a goal that matters.. for all of us 💛
Agreed! Diversity means we do not automatically understand what others do. Anyone working towards what they think makes the world better is a damn good thing.
Some years back Google switched from surfacing "useful stuff that matches keywords" to "the most popular pages with some of those keywords", and that pretty much broke any new website or useful site getting found. Dunno if it's been fixed (don't use Google anymore because it AI summaries everything, even more useless).
@maxime_andre @ai6yr My first thought would be you’d need a tiny fraction of the money that’s been incinerated in AI and data centers.
Suppose for a moment that we take one percent of all the money they’re burning and distribute it to libraries everywhere and give them basically the resources to hire enough processing power and connectivity and tell him go forth and build us a search system and let them figure out how to get it done
@GhostOnTheHalfShell @maxime_andre The thing is, these tools already exist. They don't need to be developed... They just need to not be wrapped in crap.
@ai6yr Up until a few weeks ago, the Google site was able to understand "-15 f to c" as: convert -15 degree f to degree c. They recently broke that... Still works on duckduckgo...
@ai6yr as you said, they used to deliver useful stuff, that also was correct. These days it is what is popular or brings them the most profit. Accuracy does not matter anymore ...
The Internet Archive should be a natural home for some of this stuff, but there needs to be some legitimate movement to redemocratize the Internet before it becomes another abandoned shopping mall you can’t skateboard in.
Moin ☕️, sobald #GEAS in Kraft tritt, will die #Bundesregierung die #Grenzkontrollen einstellen. Kein Grund zur Freude. Nationales Unrecht wird dann halt zum Markenzeichen der gesamten #EU. Incl. Internierung in Drittstaaten - Ruanda-Modell. taz.de/Europaeische... Habt einen schönen Montag
Giuseppe Pinelli ferroviere ed un anarchico, animatore del Circolo anarchico Ponte della Ghisolfa. Morì, a Milano, nella notte tra il 15 e 16 dicembre 1969, precipitando da una finestra della …
Eccomunque io pensavo che oggi fosse il 16 (=scadenze) MA INVECE E' SOLO IL 15!!! Ho già aperto 14 link di notizie assolutamente inutili da leggere da Fima a Ciondo (CITAZIONE ALTISSIMISSIMA)
The third trip in my recent series of London photo walks with my friend Catherine is a bit of a retread of one of our older, very successful walks from a few years ago. My first visit to Borough Ma…
Montagsherz ist eine Aktion von Wortperlen. Hierbei fotografiert man Herzen, die einem über den Weg „laufen“ oder die man auch selbst herstellt, aus jeglichem Material – Holz, Metall, Lebensmittel,…
Ecco a sorpresa un'altra stronzata colossale di #YouTube (non nuova, in realtà, ma è credo la prima volta che mi capita come oggi) che ho dovuto subire stamattina, come se il solito mio carico non bastasse... 👹 Ho visto che NewPipe sul tablet mi dava errore ad estrarre i video, e allora boh... _sarà marcio lui_, ho pensato, _provo ad usare il browser_... e YouTube sul browser ben pensato di fare la stessa identica stronzata, però qui l'errore è chiaro ed insultante: "_ACCEDI PER CONFERMARE DI NON ESSERE UN ROBOT!!!_"... 🗡️🤬💣 GOOGLE, MA COME CAZZO SI FA??? Ma vi sembra una cosa normale pretendere di accedere per guardare qualsiasi video (non si tratta di video limitati ai minori o cose del genere), perché il vostro server di merda ha deciso che il mio indirizzo IP è marcio o qualcosa del genere? AOOOO, io la mattina mentre faccio colazione mi devo guardare YouTube, e voi vi dovete fare gli stracazzacci dei vostri!!! 🤮 Tra l'altro questo errore, è incredibile, ma è persistente... sia sul sito mobile che quello desktop di YouTube... addirittura negli iframe embeddati su altri siti, cosa che per me supera davvero l'assurdo, perché neanche le altre Big Tech fanno questo schifo! (E quindi no, usare Proxatore o Bing non è stato possibile.) 😵 Ancora più stranamente, però, di tutti i browser che ho sul tablet, su Firefox e solo su Firefox ha funzionato pur senza login... quindi lì ho potuto guardare un video alla fine... anche se è molto scomodo, perché il PiP è rotto lì, e la modalità split screen di Android è un troiaio, e io dovevo scrivere una nota nel mentre, e quindi è stato brutto, aaaa... 😭
Intanto, come se non fosse mai abbastanza, Google negli ultimi pochi giorni ha fatto l'ennesima stronzata... che non so se colpisce solo il mio indirizzo IP, ma temo di no, perché prima già lo faceva ad altri: 4 volte su 5, la pagina HTML dei video di YouTube è COMPLETAMENTE PRIVA DI METADATI UTILI... restituisce un'immagine generica, nessuna descrizione utile, e un titolo vuoto. 😐 ...Cioè, che cazzo? Nemmeno Meta fa questa porcheria, vaffanculo!!! Questo significa che è praticamente impossibile condividere un video qui in un post su Sharkey ed avere l'anteprima funzionante, ma così come è impossibile salvarmeli in un gestore di segnalibri, come faccio ormai da mesi e mesi. 😭 Qui in foto è come appaiono 'sti maledetti video su Shiori, quando il server restituisce i dati stronzi... e io devo stare lì a fare refresh del link finché non me la da buona! Oh miseria, oh Alphabeth di merda... sto davvero con le pezze nel culo ora, che manco posso catalogarmi in pace i video che consumo!!! 🤬 #YouTube
![The image is a black and white photograph depicting a group of people, likely at an event such as a concert or gathering. The individuals are seen in various states of animated expression; some appear to be cheering or clapping, while others have their hands raised with open palms, possibly signaling excitement or engagement.
There's a diverse range of clothing styles visible among the crowd, suggesting that this was perhaps not taken at an organized event where formal attire is required. The individuals' expressions and gestures convey enthusiasm and elation.
The setting appears to be indoors, as indicated by what seems like artificial lighting illuminating the subjects from above or behind them. A railing can also be seen in the foreground, possibly indicating that this group was seated on a balcony or an elevated platform within the venue where they are located.
Additional context for this image comes from a caption mentioning "Concertbezoekers en een agent achter dranghekken bij een concert van de Lionel Hampton Big Band in de Houtrusthallen in Den Haag" by Ed van der Elsken, dated 1956. This indicates that the photograph is of people attending a performance by the Lionel Hampton Big Band at an event called "Houtrusthalles," which likely refers to the Rijnsburgse Horst Halleu (RHS). It also suggests that Ed van der Elsken, possibly the photographer or associated wi [...]](https://poliverso.org/photo/preview/640/68260630 "The image is a black and white photograph depicting a group of people, likely at an event such as a concert or gathering. The individuals are seen in various states of animated expression; some appear to be cheering or clapping, while others have their hands raised with open palms, possibly signaling excitement or engagement.
There's a diverse range of clothing styles visible among the crowd, suggesting that this was perhaps not taken at an organized event where formal attire is required. The individuals' expressions and gestures convey enthusiasm and elation.
The setting appears to be indoors, as indicated by what seems like artificial lighting illuminating the subjects from above or behind them. A railing can also be seen in the foreground, possibly indicating that this group was seated on a balcony or an elevated platform within the venue where they are located.
Additional context for this image comes from a caption mentioning \"Concertbezoekers en een agent achter dranghekken bij een concert van de Lionel Hampton Big Band in de Houtrusthallen in Den Haag\" by Ed van der Elsken, dated 1956. This indicates that the photograph is of people attending a performance by the Lionel Hampton Big Band at an event called \"Houtrusthalles,\" which likely refers to the Rijnsburgse Horst Halleu (RHS). It also suggests that Ed van der Elsken, possibly the photographer or associated wi [...]")
Altbot
in reply to Eudaimon ꙮ • • •Here's an alt-text description of the image:
The image is a line graph depicting Arctic sea ice extent anomaly over time, comparing data from 1989-2020 to the year 2023. The y-axis is labeled "Anomaly in Millions of Square Kilometers" ranging from -3.0 to 2.5. The x-axis is labeled "Day of Year" but has no numerical values. Numerous thin blue lines represent the anomaly data from 1989-2020, creating a dense cluster of lines around the zero anomaly mark with considerable variation. A single, thicker red line represents the anomaly data for 2023 through December 11th, and it deviates significantly below the zero anomaly mark, notably dropping lower than all the blue lines.
The text at the top of the graph reads: “Arctic Sea Ice Extent Anomaly: 1989-2020 vs. 1991-2020 Mean”. A website address is also present: “Data: https://nsidc.org/vt/vishap/extent”. The bottom of the graph displays the text "[@]nsidc.org" in small print.
Provided by @altbot, generated privately and locally using Gemma3:27b
🌱 Energy used: 0.172 Wh