fc188 ph login

By MIKE CATALINI CHATHAM, N.J. (AP) — That buzzing coming out of New Jersey? It’s unclear if it’s drones or something else, but for sure the nighttime sightings are producing tons of talk, a raft of conspiracy theories and craned necks looking skyward. Cropping up on local news and social media sites around Thanksgiving, the saga of the drones reported over New Jersey has reached incredible heights. This week seems to have begun a new, higher-profile chapter: Lawmakers are demanding (but so far not getting) explanations from federal and state authorities about what’s behind them. Gov. Phil Murphy wrote to President Joe Biden asking for answers. New Jersey’s new senator, Andy Kim, spent Thursday night on a drone hunt in rural northern New Jersey, and posted about it on X. But perhaps the most fantastic development is the dizzying proliferation of conspiracies — none of which has been confirmed or suggested by federal and state officials who say they’re looking into what’s happening. It has become shorthand to refer to the flying machines as drones, but there are questions about whether what people are seeing are unmanned aircraft or something else. Some theorize the drones came from an Iranian mothership. Others think they are the Secret Service making sure President-elect Donald Trump’s Bedminster property is secure. Others worry about China. The deep state. And on. In the face of uncertainty, people have done what they do in 2024: Create a social media group. The Facebook page, New Jersey Mystery Drones — let’s solve it , has nearly 44,000 members, up from 39,000 late Thursday. People are posting their photo and video sightings, and the online commenters take it from there. One video shows a whitish light flying in a darkened sky, and one commenter concludes it’s otherworldly. “Straight up orbs,” the person says. Others weigh in to say it’s a plane or maybe a satellite. Another group called for hunting the drones literally, shooting them down like turkeys. (Do not shoot at anything in the sky, experts warn.) Trisha Bushey, 48, of Lebanon Township, New Jersey, lives near Round Valley Reservoir where there have been numerous sightings. She said she first posted photos online last month wondering what the objects were and became convinced they were drones when she saw how they moved and when her son showed her on a flight tracking site that no planes were around. Now she’s glued to the Mystery Drones page, she said. “I find myself — instead of Christmas shopping or cleaning my house — checking it,” she said. She doesn’t buy what the governor said, that the drones aren’t a risk to public safety. Murphy told Biden on Friday that residents need answers. The federal Homeland Security Department and FBI also said in a joint statement they have no evidence that the sightings pose “a national security or public safety threat or have a foreign nexus.” “How can you say it’s not posing a threat if you don’t know what it is?” she said. “I think that’s why so many people are uneasy.” Then there’s the notion that people could misunderstand what they’re seeing. William Austin is the president of Warren County Community College, which has a drone technology degree program, and is coincidentally located in one of the sighting hotspots. Austin says he has looked at videos of purported drones and that airplanes are being misidentified as drones. He cited an optical effect called parallax, which is the apparent shift of an object when viewed from different perspectives. Austin encouraged people to download flight and drone tracker apps so they can better understand what they’re looking at. Nonetheless, people continue to come up with their own theories. “It represents the United States of America in 2024,” Austin said. “We’ve lost trust in our institutions, and we need it.” Federal officials echo Austin’s view that many of the sightings are piloted aircraft such as planes and helicopters being mistaken for drones, according to lawmakers and Murphy. That’s not really convincing for many, though, who are homing in on the sightings beyond just New Jersey and the East Coast, where others have reported seeing the objects. For Seph Divine, 34, another member of the drone hunting group who lives in Eugene, Oregon, it feels as if it’s up to citizen sleuths to solve the mystery. He said he tries to be a voice of reason, encouraging people to fact check their information, while also asking probing questions. “My main goal is I don’t want people to be caught up in the hysteria and I also want people to not just ignore it at the same time,” he said. “Whether or not it’s foreign military or some secret access program or something otherworldly, whatever it is, all I’m saying is it’s alarming that this is happening so suddenly and so consistently for hours at a time,” he added. Associated Press reporter Hallie Golden in Seattle contributed to this report.fc188 ph login 。

A Windows zero-day security vulnerability under active exploit leads Microsoft's December 2024 Patch Tuesday security update, which hardly constitutes a sleigh of festive tidings for security admins: A stocking stuffed with 71 patches. The tech giant unwrapped CVEs in Windows and Windows Components, Office and Office Components, SharePoint Server, Hyper-V, Defender for Endpoint, and System Center Operations Manager. This year's holiday-season entry brings the total number of patches for the year to 1,020, Redmond's second-most voluminous year for fixes after 2020's 1,250. Out of this month's CVEs, 16 are rated as critical. The actively exploited bug is tracked as CVE-2024-49138 (CVSS 7.8), a moderate-severity flaw in the Windows Common Log File System (CLFS) Driver. “CLFS is a logging service that supports user and kernel-mode operations,” explained Henry Smith, senior security engineer at Automox, in an emailed analysis. "While the details are still limited, the root cause likely ties back to improper data validation. ... Early indicators suggest that attackers might exploit this bug by using Windows APIs to manipulate log files or corrupt log data, triggering the vulnerability." The potential impact is substantial, he added, given that an exploit leads to SYSTEM-level privileges on Windows Server. When paired with a remote code execution (RCE) bug, it's a perfect recipe for completely taking over a PC. Related: Microsoft NTLM Zero-Day to Remain Unpatched Until April Satnam Narang, senior staff research engineer at Tenable, noted via email that ransomware operators in particular have "developed a penchant for exploiting CLFS elevation-of-privilege flaws over the last few years." He noted, "unlike advanced persistent threat (APT) groups that typically focus on precision and patience, ransomware operators and affiliates are focused on the smash-and-grab tactics by any means necessary. By using elevation-of-privilege flaws like this one in CLFS, ransomware affiliates can move through a given network in order to steal and encrypt data and begin extorting their victims." The critical-severity CVE-2024-49112 (CVSS 9.8) is perhaps the most concerning CVE in this month's stocking of misery. It's an unauthenticated RCE issue in the Windows Lightweight Directory Access Protocol (LDAP). According to Dustin Childs at the Zero Day Initiative (ZDI), cyberattackers can exploit the bug to compromise Domain Controllers by sending a specially crafted set of LDAP calls. Related: Microsoft Expands Access to Windows Recall AI Feature "Code execution occurs at the level of the LDAP service, which is elevated, but not SYSTEM," Childs wrote in a blog post on Dec. 10 . "Microsoft provides some ... interesting mitigation advice. They recommend disconnecting Domain Controllers from the Internet. While that would stop this attack, I'm not sure how practical that would be for most enterprises. I recommend testing and deploying the patch quickly." Another critical RCE vulnerability to address quickly is CVE-2024-49117 (CVSS 8.8) in Windows Hyper-V. An exploit would allow someone on a guest virtual machine (VM) to execute code on the underlying host OS, or perform a cross-VM attack. "The good news here is that the attacker does need to be authenticated," Childs noted. "The bad news is that the attacker only requires basic authentication — nothing elevated. If you are running Hyper-V or have hosts on a Hyper-V server, you'll definitely want to get this patched quickly." A total of nine critical bugs affect Windows Remote Desktop Services, with one ( CVE-2024-49132 , CVSS 8.1) allowing RCE by exploiting a use-after-free memory condition. "The exploit requires precise timing, making it an advanced attack," Ryan Braunstein, security manager at Automox, said via email. "Specifically, if a user connects through the Remote Desktop Gateway role, an attacker could intentionally trigger the use-after-free scenario. Successfully exploited, this vulnerability can allow attackers to execute their code remotely, gaining control of the system." Related: Open Source Security Priorities Get a Reshuffle That means exploitation is on the difficult side, but Braunstein cautioned that "over time, it's likely that cyberattackers develop tools that simplify the attack process. Until then, there are no effective workarounds, making immediate patching your best chance to mitigate this risk." There are also eight other critical vulnerabilities that rate 8.1 on the CVSS scale in Remote Desktop Services, including five other UAF bugs ( CVE-2024-49115 , CVE-2024-49116 , CVE-2024-49108 , CVE-2024-49106 , and CVE-2024-49128 ); CVE-2024-49123 , which involves sensitive data storage in improperly locked memory; CVE-2024-49120 , an insecure default variable initialization flaw; and CVE-2024-49119 , arising from improper resource handling during RDP sessions. "These vulnerabilities underscore persistent issues in RDP components , including memory management, timing, and operational handling," said Mike Walters, president and co-founder of Action1, via email. “[With] varied root causes, [it shows that] attackers can exploit different facets of RDP services. Organizations should avoid exposing RDP services to the global Internet and implement robust security controls to mitigate risks. These flaws further prove the dangers of leaving RDP open and unprotected." Security experts also flagged two other bugs for security admins to add to their holiday checklists , including an EoP vulnerability in the Windows Resilient File System (ReFS). Resilient File System (ReFS) is a file system designed for enhanced scalability and fault tolerance for virtualization environments, databases, and backups. It offers data resilience, storage efficiency, and improved performance. " CVE-2024-49093 (CVSS 8.8) revolves around a scope change that allows an attacker to elevate privileges from a low-privilege app container environment," explained Seth Hoyt, senior security engineer at Automox, via email. "Normally, app containers are designed to limit a process's ability to access files, memory, and other resources. Exploiting this vulnerability enables attackers to escape those confines, gaining broader system-level access. This means they can interact with files, processes, and memory previously out of reach." From there, cyberattackers could move laterally across the environment, he added. The final lump of coal called out by researchers this month is an RCE vulnerability in Musik ( CVE-2024-49063 ), a research project on AI-created music. “We've been wondering what bugs in AI would look like, and so far, they look like deserialization vulnerabilities," ZDI's Childs said. "That's what we have here. An attacker could gain code execution by crafting a payload that executes upon deserialization. Neat." Tara Seals has 20+ years of experience as a journalist, analyst and editor in the cybersecurity, communications and technology space. Prior to Dark Reading, Tara was Editor in Chief at Threatpost, and prior to that, the North American news lead for Infosecurity Magazine. She also spent 13 years working for Informa (formerly Virgo Publishing), as executive editor and editor-in-chief at publications focused on both the service provider and the enterprise arenas. A Texas native, she holds a B.A. from Columbia University, lives in Western Massachusetts with her family and is on a never-ending quest for good Mexican food in the Northeast.

Everyone knows the best accompaniment to Thanksgiving turkey, and all the trimmings, is the one thing that makes this holiday truly special: wall-to-wall live sports! I'm going to watch Thanksgiving Day sports on TV – and not just the NFL – around the clock and you can join me on my streaming odyssey with this, my (pretty ambitious) 24-hour Thanksgiving viewing schedule. Below, I've compiled all the best Thanksgiving Day games, from football to soccer , boxing, golf , snooker and cricket – along with the best Thanksgiving and Black Friday deals for each streaming service you'll need. Ready? Here we go... THURSDAY, NOVEMBER 28, 2024 (All times ET) 2:30 a.m. South Africa vs Sri Lanka – Test Cricket You're not going to find much sports on TV at this crazy hour but if you insist on getting up seriously early on Thanksgiving because you've forgotten to brine the turkey or you just can't sleep, then let's try a little gentle Test cricket from sunny South Africa as we pull ourselves together. It's Day 2 of the second Test but you probably don't know how the game works anyway, so who cares? Just enjoy the sound of the clunk of leather on willow as you rub the sleep from your eyes. Don't worry, the proper sports start soon. Willow TV via Sling TV ( save 50% – $10 for your first month ) 5 a.m. Eastern SC vs Sydney – AFC Champions League soccer Look, U.S. athletes are still asleep, so sports from the other side of the world are all we're getting right now. You've just managed two and a half hours of cricket, how bad can a soccer match between a team from Hong Kong and Australia really be? Maybe don't answer that. Look, it's this or Jeonbuk Hyundai Motors vs Dynamic Herb Cebu. Believe me, this is the better option. Sydney F.C. have some players that used to be good! Paramount+ ( save 76% – $2.99/mo for your first two months ) 6:45 a.m. Live racing from Taunton – U.K. horse racing OK. Everyone else in the house is going to start getting up soon. This might be our last chance of watching some pretty fringe sports before the late evening. This race meeting from Somerset, U.K. (not far from where the summer Glastonbury Festival takes place) is going to take us to a seriously muddy corner of Great Britain while we eat our cornflakes. Just thank your lucky stars you're not trackside in the cold and you can switch over whenever you like. If you need to spice things up, there's always the option of checking out the odds... Free on ITVX in the U.K. ( save 71% on NordVPN and watch from anywhere ) 8 a.m. Spanish Open – Ladies European Tour golf I'd like to tell you that this is going to be a classic but it's Day 1 of the Spanish Open and, with Nelly Korda, Lilia Vu or other U.S. athletes not involved, it's going to be one for the purists. If British horse racing didn't put you to sleep, then this one might. That or maybe get to peeling the potatoes. You've got an hour. There's a big fight next... Fox via Sling TV ( get your first month from only $20 ) 9 a.m. Gib vs Slim – Misfit boxing The biggest YouTuber beef since KSI vs Logan Paul gets underway at Misfit 019 in Qatar today. American Slim Albaher is unbeaten (7-0) and fights, having served up a plateful of punches against Salt Papi (Nathaniel Bustamente to his friends) last time out. Saudi AnEnson Gib, with just the one defeat to Jake Paul on his record, returns after a unanimous decision vs Jarvis back in 2023. The sport of kings or boxing's latest freakshow? Not sure, but it's a great excuse to crack into the drinks and snacks supplies. DAZN ( save up to 50% for Black Friday ) 11 a.m. UK Championship Snooker – Last 16 The Gibs vs Slim main event doesn't actually get into the ring until 5 p.m.. If the quality of the undercard has the consistency of my mother-in-law's gravy, then we might want to switch between the boxing and the snooker championships in the U.K.. It's one of the big three events in the snooker calendar and, if you've never watched the masters of the baize before, then give it a try. It's a game of extreme skill like no other and a very nice pace for background viewing if your guests are insisting on actually talking to you. Matchroom.live (Fans in the U.K. can watch for free on BBC iPlayer ) 12:30 p.m. Chicago Bears vs Detroit Lions – NFL Ah, finally, an American sport! Customarily little more than stuffing, the Lions are the best team in the NFL right now, and look primed to break a seven-year Thanksgiving Day losing streak this time around. While Thomas Brown has already had a positive impact on Caleb Williams, it’s the Bears defense that’s largely to blame for their five-game skid. You might want to think about putting the turkey in the oven... CBS via Fubo ( reduced from $79.99 to $49.99 for Black Friday ) 1:30 p.m. South Carolina vs Iowa State – College Football Or, you could watch College Football . UCLA ended top-ranked South Carolina’s historic winning streak last weekend courtesy of a 77-62 stunner, which means the body-language and hindsight merchants will be out in force for the Thanksgiving clash with No.8 Iowa State. This is a whole different kind of pressure for the national champions. Fox via Sling TV ( get your first month from only $20 ) 3 p.m. Man Utd vs Bodo/Glimt – Europa League soccer Talking of turkey, never underestimate Manchester United's ability to gobble up a smaller team. Norwegian champions Bodo/Glimt will be dreaming of stuffing the Red Devils but new coach Ruben Amorim, who led Sporting Lisbon to a sensational 4-1 thrashing of Man City a matter of weeks ago, will want to improve on his first game in charge which was a rather bland 1-1 draw against Ipswich. Paramount Plus ( save 76% – $2.99/mo for your first two months ) 3 p.m. Tottenham vs Roma – Europa League soccer Getting hungry? There's yet more European football to be served up – namely a mouthwatering showdown between England's Tottenham Hotspur and Italy's Roma. Spurs' last six games have included wins over Man City (twice) and Aston Villa, and defeats to Ipswich, Crystal Palace and Galatasaray. My point? Ange Postecoglou’s men aren’t so much inconsistent as mind-bogglingly volatile. There's no telling what we'll see today but expect some great entertainment! Paramount Plus ( save 76% – $2.99/mo for your first two months ) 4:30 p.m. Giants vs Cowboys – NFL My turkey is burnt to a crisp but that's ok, because my butt is well and truly glued to the couch for another helping of NFL. Dallas might be the 14th seed in the NFC (a distant 3rd in the NFC East) with seven games to play, but their near-miraculous victory over the Commanders has given them a huge lift. Better yet for Texas, the hapless Giants have incomprehensibly picked Tommy DeVito ahead of Drew Lock in the aftermath of Daniel Jones’ departure. Fox via Sling TV in selected cities ( get your first month from only $20 ) 8:20 p.m. Dolphins vs Packers – NFL The Dolphins looked as lifeless as my half-eaten sweet potato pie a month ago. But Tua Tagovailoa’s return has been the ultimate second helping, delivering three straight wins and reviving their playoff hopes. Now the 8th seed in the AFC, they’re preparing to face the NFC’s 6th-seeded Packers in what’s shaping up to be the Thanksgiving Day game of the year. But while the Dolphins are heating up, there’s one thing they can’t seem to handle: the cold. And Lambeau Field? That place is going to be colder than my Aunt Linda’s casserole that she insists on bringing every year. NBC via Sling TV (first month half-price) in selected cities / Fubo ( save $30 ) 11: 30 p.m. Australian Open – DP World Tour golf If the game winds down in the fourth quarter with either the Dolphins or Green Bay running away with it, you might want a change channel ahead of the final whistle. The good news is that sports on the other side of the planet are picking up about now. The DP World Tour is Down Under for the Australian Open. Ryggs Johnston, of the USA, is one of the early tees on what's Friday over there. The 24-year-old former Arizona Sun Devil is a relative newbie to the pro tour but it's been a season of promise so far. Maybe a little Thanksgiving spirit on his side is all he needs to push for something special? Peacock ( save 76% – get a whole year for $19.99 ) 12 a.m. Katompa vs Sabelo – South African boxing Still with me? Good, because South African boxing is about to be the best thing you've never watched. 'African Nights' pitches undefeated Congolese prodigy Ardy 'The Eagle' Katompa (6-0) against South Africa's Sabelo Ngebinyana (15-9-2) in a huge super-bantamweight bust-up at Sandton Shui Hall, Johannesburg. A win for Katompa could set the young buck on the path to boxing superstardom. DAZN ( save up to 50% for Black Friday ) Ok, it's bedtime. But there's a ton more Thanksgiving sports on TV this weekend and like 'The Eagle', I don't plan on throwing in the towel. Join me tomorrow if you think you can go again... More from Tom's GuideFoxy Brown reportedly messaged DJ Akademiks on social media while he was discussing the recent allegation against Jay-Z for a live stream. She apparently asked Akademiks to, "Miss me with the f*ckery." Jay has already denied the allegation, which stems from an amendment to a lawsuit previously filed against Diddy , earlier this year. In it, an anonymous woman accuses the Roc Nation founder of allegedly raping her at an afterparty for the 2000 MTV VMAs when she was just 13 years old. "She DM'd me like 20 minutes ago. She says, 'Miss me with the f*ckery, Ak.' with the little heart, heart, hearts. I'm like, 'Oh my God. Foxy f*cks with me.' But I don't know what that means," Ak began. From there he advised her: "Now is the time to just be quiet. If you're speaking at all, it kind of says that maybe you got some sh*t. We all know and believe Foxy's just a real chick. She just not finna... But if you're not coming out to say, 'Yo, I love Jay. He's a great guy. He ain't do nothing.' It's gonna be taken as either you're being silenced or you're itching to tell us something." Read More: Drake Trolls Kendrick: Disses & Drama In Hip-Hop’s Top Feud Jay Z and Foxy Brown during Jay-Z Celebrates the 10th Anniversary of "Reasonable Doubt" - Inside at Rainbow Room in New York, United States. (Photo by Shareif Ziyadat/FilmMagic) As the clip of Akademiks circulated on social media, fans complained about the way he's covered the recent allegation against Jay-Z. "I wish everyone will cancel AK he has literally tried to destroy every black celebrity like come on with the bs. If foxy said it’s nothing then that should be it," one user on X (formerly Twitter) wrote. Another added: "I mean damn. She has said the same thing for years and people still run with narrative. Just like they run with 'Jay met Beyonce at 16.' Met? Yeah. Dating? Nah. But since they met at that age, they had to be dating according to 'people.'" Jay-Z and his attorney, Alex Spiro, have already taken legal action against the lawyer representing the accuser. They allege he's tried to extort Jay with the unfounded allegations. Check out DJ Akademiks' full breakdown of Foxy Brown's DM below. Read More: Best Comments On HotNewHipHop From The Drake & Kendrick Lamar SagaF-16 Sortie Tests Writer’s Mettle On Supersonic Training Mission