Feed aggregator

Overwatch ‘Retribution’ Event Set To Begin

First Comics News - Tue, 04/10/2018 - 16:00

This week Blizzard Entertainment brings a new event to the world of Overwatch.  Titled “Retribution,” this prequel event will focus on the mysterious Blackwatch (the secretive side of Overwatch) and the mission that “changed everything.”  The event will take place on a new map based in Venice, Italy.   The Overwatch “Retribution” event runs April 10-30.

Official Synopsis: Travel eight years into the past and join Blackwatch as they seek to capture a high-ranking member of the Talon organization. Fight in the streets of Venice as Genji, Moira, McCree, or Reyes (later known as Reaper) to complete the mission and unlock pieces of the past with over 100 items from last year and 60 new ones—including highlight intros, emotes, sprays, and more.

New skins announced so far:

Blackwatch Moira


Talon Sombra

Talon Doomfist

Scion Hanzo

Specimen 28 Winston

Categories: Comic Book Blogs

Fandemic Tour comic con Makes National Debut in Sacramento June 22-24

First Comics News - Tue, 04/10/2018 - 15:17


Tickets on sale now for a weekend of fun with major celebrities, artists and cosplayers

Newly added celebrities include: Bruce Campbell (“Ash vs. Evil Dead”), Chris Sullivan, native of Sacramento, (“This is Us”, “Guardians of the Galaxy”), Robert England (“Nightmare on Elm Street”), Christian Kane (“The Librarians”, “Leverage”), James Marsters (“Buffy the Vampire Slayer”), Clare Kramer (“Buffy the Vampire Slayer”) and David Della Rocca (“Boondock Saints”).

(Los Angeles, Calif.) – Fandemic Tour, a new type of comic con, will bring their new tour to Sacramento this June. Brought to you by the same people who originally created Wizard World Comic Con, Sacramento will be their very first official city stop, followed up by Houston, Sept. 14-16, 2018 as a make-up due to Hurricane Harvey. Fandemic Tour will feature celebrities including: Norman Reedus (“The Walking Dead”, “The Boondock Saints”), Jeffrey Dean Morgan (“The Walking Dead”, “Magic City”), Michael Rooker (“Guardians of the Galaxy”, “The Walking Dead”, “Tombstone”,“Cliffhanger”, “Days of Thunder”), Sean Gunn (“Guardians of the Galaxy”, “Gilmore Girls”), Milo Ventimiglia (“This is Us”, “Heroes”, “Gilmore Girls”), Dave Bautista (“Guardians of the Galaxy”, “WWE Raw”, Sean Patrick Flanery (“The Boondock Saints”, “Powder”) and Jason David Frank (“Mighty Morphin Power Rangers”). Fandemic Tour is a brand new experiential convention weekend that will bring together celebrities, well-known and emerging comic artists, cosplayers of all shapes and sizes, and exhibitors with merchandise designed to offer something for every type of pop culture fan. All confirmed talent will make appearances on at least twodays of the weekend, and many will appear on all three days. All guest appearance dates are listed at www.FandemicTour.com.


Fandemic Tour will offer attendees the opportunity to purchase autographs and photo opportunities with their favorite celebrity talent and artists. Photos come in the form of 8×10” printouts.


In addition to celebrity acting talent, Fandemic Tour will boast a host of exciting guest artists suchas Neal Adams (Batman, X-Men), Phil Ortiz, animator from The Simpsons and Muppet Babies, Michael Golden ofMarvel and DC Studios fame, Rob Prior,amazingly talented two-handed live pop artist with notable credits (Game of Thrones, Star Wars: The Force Awakens), and Arthur Suydam (Deadpool, The Walking Dead).Other notable artists including: Renee Witterstaetter, Greg Horn, Mike DeCarlo, John Beatty, Rodney Ramos, Ric Meyers, Clinton Hobart, Buzz, Rags Morales and Jim Salicrup.


During the weekend,Fandemic Tour bring back the fan favorite Friday night “Drink and Draw”, a festival component that will allow fans to mingle, receive drawing instructions from an expert artist, and have an all-around fantastic evening of revelry while imbibing their favorite adult beverage.Saturday night will showcase one of the highlights of the weekend in the form of a Costume Contest, which will begin at 7:00 PM when the show floor closes. Guest judges will critique the best of the best in the cosplay world.The Costume Contest is open to all who are interested in participating.


“Fandemic Tour is something I’ve been thinking about for some time now, and it represents everything I think fans will want from a comic con event,” said Fandemic Tour CEO John Macaluso. Macaluso added, “We pledge to present an event that brings the highest tier celebrities, artists, and exhibitors and to create immersive programming that is both fun and educational. Our mission is simple: take care of the fans.”


Fandemic Tour is Macaluso’s first foray into the comic con space as an entrepreneur. Formerly the CEO of Wizard World, Macaluso is anxious to bring his unique brand of fan experience to Sacramento for the first time through Fandemic Tour. Macaluso noted, “Sacramento has a great comic con fan base and we are excited to share this new experiential event with them. Fandemic Tour is poised to bring the utmost in fan engagement to the Sacramento Convention Center for an interactive, fun-filled weekend.”


Fandemic Tour will continue to announce additional big-name guests in the coming weeks leading upto its inaugural event, June 22-24th at the Sacramento Convention Center in Sacramento, Calif.


GeneralAdmission tickets are available at the following price points:

$35— Friday Pass (Hours 3:00 p.m. – 8:00 p.m.)

$45— Saturday Pass (Hours  10:00 a.m. – 7:00 p.m.)

$40— Sunday Pass (Hours: (10:00 a.m. – 4:00 p.m.)

$75— Full Weekend Pass

$150Fandemic FanaticVIP (3-day pass, early admission, fast pass for photo ops/autographs, swag bag and VIP reserve seating at panels)

Tickets, celebrity packages and Photo Ops are available now at www.FandemicTour.com for

each day of the weekend.

Categories: Comic Book Blogs


First Comics News - Tue, 04/10/2018 - 15:14

The entire five-issue miniseries gets collected in paperback this May

PORTLAND, OR, 04/10/2018 — Ryan O’Sullivan (Turncoat, The Evil Within, Warhammer 40,000) and Plaid Klaus’ (Turncoat) sci-fi road trip miniseries VOID TRIP will be collected in a conveniently bingeable trade paperback this May from Image Comics.

Meet Ana and Gabe—the last two humans left alive in the galaxy.

They’re low on fuel, they’re low on food, and they’re low on psychedelic space froot, but they’re still determined to make it to the promised land: hippy-paradise super-planet Euphoria. VOID TRIP is the story of their journey, the friends and enemies they made along the way, and how the universe responded to those who dared to live freely within it.

“VOID TRIP aims to answer the question: ‘how can we be free in a universe that will always course-correct to limit us?’” said O’Sullivan. “This isn’t your typical adventure comic, with violence as the solution to every conflict. It’s a road trip story. Its main concern is exploring the human condition. It’s Jack Kerouac and Hunter S. Thompson meets Herman Melville and Cormac McCarthy. Expect laughter, tears, and existential dread in equal measure.”

VOID TRIP (ISBN: 978-1-5343-0668-4, Diamond code: MAR180629) hits comic book shops Wednesday, May 30th; the final order cutoff deadline for comics retailers is Monday, April 16th. It will be available in bookstores Tuesday, June 5th and can be preordered via Amazon, Barnes & Noble, Indiebound, Indigo, and Books-A-Million.

Categories: Comic Book Blogs

‘FakeUpdates’ campaign leverages multiple website platforms

Malwarebytes - Tue, 04/10/2018 - 15:00

A malware campaign which seems to have started at least since December 2017 has been gaining steam by enrolling a growing number of legitimate but compromised websites. Its modus operandi relies on social engineering users with fake but convincing update notifications.

Similar techniques were used by a group leveraging malvertising on high traffic websites such as Yahoo to distribute ad fraud malware. The patterns are also somewhat reminiscent of EITest’s HoeflerText campaign where hacked websites are scrambled and offer a font for download. More recently, there has been a campaign affecting Magento websites that also pushes fake updates (for the Flash Player) which delivers the AZORult stealer by abusing GitHub for hosting.

Today, we are looking at what we call the ‘FakeUpdates campaign’ and describing its intricate filtering and evasion techniques. One of the earliest examples we could find was reported by BroadAnalysis on December 20, 2017. The update file is not an executable but rather a script which is downloaded from DropBox, a legitimate file hosting service, as can be seen in the animation below.

Figure 1: A typical redirection to the ‘FakeUpdates’ scheme from a hacked site

This campaign affects multiple Content Management Systems (CMS) in somewhat similar ways. Several of the websites we checked were outdated and therefore vulnerable to malicious code injection. It is possible that attackers used the same techniques to build their inventory of compromised sites but we do not have enough information to confirm this theory.

WordPress and Joomla

Both WordPress and Joomla sites that were hacked bear the same kind of injection within their CMS’ JavaScript files.

Figure 2: A Compromised WordPress site pushing a fake Google Chrome update

Figure 3: A Compromised Joomla site pushing a fake Mozilla Firefox update

Some commonly injected files include the jquery.js and caption.js libraries where code is typically appended and can be spotted by doing a comparison with a clean copy of the same file.

Figure 4: Diffing a clean and suspicious copy of the same library

The additional blurb of code is responsible for the next chain of events that loads the fraudulent layer onto the website you are visiting. The image below shows a beautified version of the code injected in the CMS platforms, whose goal is to call the redirection URL:

Figure 5: Injected code responsible for the redirection

We wrote a simple crawler to browse a list of sites and then parsed the results. We were able to identify several hundred compromised WordPress and Joomla websites even after a small iteration through the list. Although we don’t have an exact number of sites that are affected, we surmise that it is in the thousands.

Figure 6: A partial list of compromised sites


Squarespace is another popular Content Management System that is also affected by the same campaign. This was pointed out by @Ring0x0 and we found a forum post dated February 28, where a Squarespace user is asking for help, saying “it basically redirected me to a full page “your version of chrome needs updating“”.

Figure 7: A Squarespace user reporting that their sites was tampered with

So I login to the admin panel and in the GIT HISTORY it shows that one of my users which has never even logged in before, has sent an upload: site-bundle.js last week, along with some other big list of files {sic}.

We dug deeper into these compromises and identified a slightly different redirection mechanism than the one used on WordPress or Joomla sites. With Squarespace, a blurb of JavaScript is injected directly into the site’s homepage instead.

Figure 8: Traffic showing a malicious redirection taking place on a Squarespace site

It pulls a source file from query[.]network that in turn retrieves bundle.js from boobahbaby[.]com:

Figure 9: The injected code present in hacked Squarespace sites 

bundle.js contains the same script we described earlier that is used to call the redirection URL:

Figure 10: The same redirection code used in WP and Joomla infections is used here

According to this PublicWWW query, a little over 900 SquareSpace sites have been injected with this malicious redirection code.

Figure 11: Identifying other hacked Squarespace sites using a string pattern

Redirection URL and filtering

All CMSes trigger redirection URIs with similar patterns that eventually load the fraudulent update theme. Based on our tests, the URIs have identifiers that apply to a particular CMS; for example cid=221 is associated with WordPress sites, while cid=208 with Joomla.

WordPress track.positiverefreshment[.]org/s_code.js?cid=221&v=8fdbe4223f0230a93678 track.positiverefreshment.org/s_code.js?cid=225&v=0bbea7365fbb07c7acb3 track.amishbrand[.]com/s_code.js?cid=205&v=c40bfeff70a8e1abc00f track.amishbrand.com/s_code.js?cid=228&v=e8bfa92965d1d880bac2 track.amishbrand[.]com/s_code.js?cid=234&v=59f4ba6c3cd7f37abedc track.amishbrand[.]com/s_code.js?cid=237&v=7e3403034b8bf0ac23c6 Joomla connect.clevelandskin[.]com/s_code.js?cid=208&v=e1acdea1ea51b0035267 track.positiverefreshment[.]org/s_code.js?cid=220&v=24eca7c911f5e102e2ba track.amishbrand[.]com/s_code.js?cid=226&v=4d25aa10a99a45509fa2 SquareSpace track.amishbrand[.]com/s_code.js?cid=232&v=47acc84c33bf85c5496d Open Journal Systems track.positiverefreshment[.]org/s_code.js?cid=223&v=7124cc38a60ff6cb920d Unknown CMS track.positiverefreshment[.]org/s_code.js?cid=211&v=7c6b1d9ec5023db2b7d9 track.positiverefreshment[.]org/s_code.js?cid=227&v=a414ad4ad38395fc3c3b

There are other interesting artifacts on this infrastructure, such as an ad rotator:


But if we focus on the redirection code itself, we notice that potential victims are fingerprinted and the ultimate redirection to the FakeUpdates template is conditional, in particular with only one hit per single IP address. The last JavaScript is responsible for creating the iframe URL to that next sequence.

Figure 12: Fingerprinting, cookie verification and iframe redirection are performed here

FakeUpdates theme

There are templates for the Chrome, Firefox and Internet Explorer browsers, the latter getting a bogus Flash Player update instead.

Click to view slideshow.

Figure 13: Attackers are targeting browsers with professional looking templates

The decoy pages are hosted on compromised hosts via sub-domains using URIs with very short life spans. Some of those domains have a live (and legitimate website) whereas others are simply parked:

Legitimate (shadowed) domain:


Figure 14: This property’s credentials have most likely been stolen and used to register a malicious subdomain

Parked domain:


Figure 15: Parked domains can hide ulterior motives

Final infection chain and payloads

The infection starts with the fake update disguised as a JavaScript file retrieved from the Dropbox file hosting service. The link to Dropbox, which is updated at regular intervals, is obfuscated inside of the the first web session belonging to the fake theme.

Figure 16: the fileURL variable contains the Dropbox URL

This JavaScript is heavily obfuscated to make static analysis very difficult and also to hide some crucial fingerprinting that is designed to evade virtual machines and sandboxes.

Figure 17: The malicious JavaScript downloaded from DropBox

According to this very good and detailed analysis of the JS file, this is because step2 of the victim’s profiling uses WScript.Network and WMI to collect system information (BIOS, manufacturer, architecture, MAC address, processes, etc) and eventually makes the decision to continue with the payload or end the script without delivering it.

A failed infection will only contain 2 callbacks to the C2 server:

Figure 18: A host that is not a genuine machine was detected and infection aborted

While a successful infection will contain 3 callbacks to the C2 server (including the payload):

Figure 19: When all checks pass, the user is served the payload

The encoded payload stream is decoded by wscript.exe and a malicious binary (Chrome_71.1.43.exe in this case), dropped in the %temp% folder. That file was digitally signed and also employed various evasion techniques (such as an immediate reboot) to defeat sandboxes.

Figure 20: A digitally signed file is no guarantee for safety

Upon examination, we determined that this is the Chtonic banking malware, a variant of ZeusVM. Once the system has restarted, Chtonic retrieves a hefty configuration file from 94.100.18[.]6/3.bin.

In a second replay attempt, we got the NetSupport Remote Access Tool, a commercial RAT instead. Its installation and configuration were already well covered in this blog. Once again, we noticed the heavy use of obfuscation throughout the delivery of this program that can be used for malicious purposes (file transfer, remote Desktop, etc.).

Figure 21: Traffic from the RAT infection, showing its backend server


This campaign relies on a delivery mechanism that leverages social engineering and abuses a legitimate file hosting service. The ‘bait’ file consists of a script rather than a malicious executable, giving the attackers the flexibility to develop interesting obfuscation and fingerprinting techniques.

Compromised websites were abused to not only redirect users but also to host the fake updates scheme, making their owners unwitting participants in a malware campaign. This is why it is so important to keep Content Management Systems up to date, as well as use good security hygiene when it comes to authentication.

Malwarebytes blocks the domains and servers used in this attack, as well as the final payload.

Indicators of compromise

Redirection infrastructure:

23.152.0[.]118 84.200.84[.]236 185.243.112[.]38 eventsbysteph[.]com query[.]network connect.clevelandskin[.]net connect.clevelandskin[.]org track.amishbrand[.]com track.positiverefreshment[.]org

Dropped binaries:


6f3b0068793b277f1d948e11fe1a1d1c1aa78600712ec91cd0c0e83ed2f4cf1f 94.100.18[.]6/3.bin

NetSupport RAT


The post ‘FakeUpdates’ campaign leverages multiple website platforms appeared first on Malwarebytes Labs.

Categories: Techie Feeds

Tarot#109 Skyclad Chrome & Glossy Shipping this week

First Comics News - Tue, 04/10/2018 - 14:40

Very Limited Editiion!
Jim has created this Enchanting digital painting of Raven for Tarot#109 Cover B. Here we present the Skyclad version for the a limited first printing Edition on Metal, Chrome and High Quality Cover stock.
Limited Edition Glossy Cover Stock Variant will be created, signed and numbered this Edition will be $50.

Only 15 Chrome Variants will be created, Cover -printed on rainbow shimmer cover stock. signed and numbered this Edition will be $75 (7 Left)

Click to Order your #109 Raven Skyclad Now!

Grab her Quick!

Also Shipping Tarot#50 Chrome & Glossy!

This one is on Hold and may be all sold out!

while supplies last!

Categories: Comic Book Blogs

James Bond: Casino Royale preview

First Comics News - Tue, 04/10/2018 - 14:33
James Bond: Casino Royale HC

writers: Ian Fleming, Van Jensen

artist: Dennis Calero

cover: Fay Dalton

FC | 160 pages | $24.99 | Teen+


Ian Fleming’s literary debut of British Secret Service agent 007 is stylishly adapted to the sequential art medium by Van Jensen and Dennis Calero in the official James Bond: Casino Royale graphic novel. Sent to a French casino in Royale-les-Eaux, Bond aims to eliminate the threat of the deadly Le Chiffre by bankrupting the ruthless SMERSH operative at the baccarat table. However, when the luck of the draw favors his enemy, 007 becomes the target of assassins and torturers in a high-stakes game of cat-and-mouse.

Categories: Comic Book Blogs

James Bond: Kill Chain preview

First Comics News - Tue, 04/10/2018 - 14:31

James Bond: Kill Chain HC

writer: Andy Diggle

artist: Luca Casalanguida

cover: Greg Smallwood

FC | 160 pages | $24.99 | Teen+


When a counterespionage operation in Rotterdam goes catastrophically wrong, James Bond finds himself in the crosshairs of a plot to smash NATO. Someone is assassinating allied agents, and 007 is the next target in the kill chain. Having kept the peace for decades, the old alliance is collapsing, pitting MI6 against its former ally – the CIA! Dynamite Entertainment proudly presents the return of writer Andy Diggle (James Bond: Hammerhead, The Losers, Green Arrow: Year One) and artist Luca Casalanguida (James Bond: Hammerhead) as they plot the return of James Bond’s oldest and deadliest foe: SMERSH!

Categories: Comic Book Blogs

On the Righteous

Hack & Slash - Tue, 04/10/2018 - 12:00
We are beset by a plague of the righteous.

That feeling is a glorious one, too often set aside by the unrelenting hostility and blunt reality of the real world. When are you within your body, when you are hungry, tired from hard labor, in struggle and pain, we no longer have the clarity of being righteous.

But when those things are set aside, deferred in the same way evolution is deferred by actions we take to dictate our convenience, oh how righteous we can become. There's even science in it. Even the worst of us believes he's above average. Nearly everyone who thinks that is wrong.

The reason this is important is because we are at or near an apogee. Things are, by every quantifiable metric, the best the have ever been. To note: Parents are half as likely to lose a child as they were in 1990. In thirty years, global poverty has dropped from 40 to 10%. [source] The world is so at peace, open warfare has almost been eliminated [source], Historically, violence has been all but eliminated [source][source], Nearly every human worldwide (6.5 billion) has access to drinkable water [source], in 1820, only 12% of all humans could read. Now over 83% can [source] World production has increased over 100 times in the last 200 years. [source] Access to electricity, food, I mean, it's nearly impossible for you to understand just how blinking wonderful ever little last damn thing is.

Your WarlordsBut there's a war on, and don't doubt that it's a war. Those waging it simply desire power and control. It isn't even about money—they have more than they need. This isn't imaginary. We are involved in a culture war. It's a war because harm is being done. There is a public space (the internet) and people are being driven away from it and livelihoods are being destroyed. We're beyond physical warfare, for now, we're engaged in a war of culture between various factions, who wish to co-op you for your own ends.

You see, the insanity that the culture war is thriving on, doesn't exist. Not to dismiss their concerns. But the realities of these situations is well educated, well meaning people, are gaining more and more power and resources to make things better and better for all people everywhere all the time. In all cases. Do you not believe me?

Behold, the infamous C-16! The Canadian "transgender law" of great dispute. No matter what you think, no one can read the discourse over the bill and claim for one second that the people discussing it aren't well-educated, well-meaning, and passionately interested in creating the best society possible.

So if you're caught up in this culture war, because you've voluntarily entered yourself into someone's system of control or perhaps have become a victim to it, driven out of spaces, harrassed, and just not involved because it's too difficult to bear the constant conflict, then, well, you are a sign that the culture war is winning and we are losing.

I was guilty of being a righteous man. It is a trait of youth, and now that I am older, I fear myself then. I think a smarter man than I am would also fear the righteous. They are so pure and certain in a world with no certainty. By it's nature, someone has to suffer from that.

One of the prime conflict of adulthood is assimilating into society. It's always been difficult to do so, perhaps more today without rites of passage and the changing world. Much easier to claim corruption of what came before and in your own certainty to attack the old world with fire. Those who would create this new better pure world (over our insanely good one) never imagine that the gun they wish to aim at others would ever be aimed at themselves.

I'm just a man, who like you, longs to not suffer indignity and maintain my pride. But that is not the way the world works. You cannot exist, they must have you within their control. Shared articles, advertisements, data mining, facebook and cambridge analytical. All lies to get you within a system of control.

And now that we're almost to the point of sounding like a paranoid rant. . . this is relevant to Dungeons and Dragons because-
Fire down belowThis is the nature of man. In a world of Dungeons & Dragons, you have, by definition, tremendous inequality. There are archmages with incalculable power, god-cults, hoards driven forth by demi-gods. One group of people is focused on their basic needs. Another, with power, immortality, and wealth—they can become the most righteous of all.

Secondly, it reminds us that the environments that we explore, ultimately are the workings of the nature of men. In a literal sense, it is a man who creates the adventure, so it is his depths you are exploring. In a more figurative sense, the real encounters in Dungeons and Dragons are those of thinking peoples. Peoples who not only have been co-opted into someones system of control, but also individuals who are human.
You shut your mouth
How can you say
I go about things the wrong way?
I am human and I need to be loved
Just like everybody else does

Many people have difficulty imagining that other people are truly different than them.A large portion of the world finds the idea of wiping with paper and sitting on toilets to be a disgusting practice. Ancient romans had no concept of hetero- or homo-sexuality, rather they viewed sexual preference (and sexual power dynamics) related to who was the penetrator or penetratee.

Yes, functionally we are all human. But the ways in which we approach and think about life are radically different. Those ancient peoples would seem alien. But to their thinking, their beliefs and logic are irrefutable.

When the players interact with someone, they are not a caricature. As different as they were, there were a million romans smarter then you. You know your well held beliefs? There are people with 50 more IQ points than you that hold the opposite beliefs for extremely logical reasons you may struggle to understand. Why is this not so for all people?

It is.

Your environments should be shaped by minds like these.
Your characters should have minds that make them people, not caricatures.
Your monsters should have interactions with characters that make them monstrous.
The worst monsters should be people. It isn't Tiamat that's the danger in Dragon Queen, it's her cult.

The game is a form of catharsis, one made all the more meaningful by real choices, choices that feel real when people are represented as people. The mechanical nature of this is simple. They should have concerns outside of whatever purpose they serve in the game, monsters and humans alike.

Oh, but why this topic? I've long passed a time of righteousness. I'm going to enter the culture war just as far as designing adventures that are easy to use and creativing evocative dungeons enters it. I'm not going to worry about how others or society might describe me. I know my truth, and how I'm viewed by other people—my own conscious will guide me, as difficult and treacherous a road that is. . .

Any day you're drawing dungeons is a good day. Relax, live your best life and enjoy. And I hope to see you free.

Hack & Slash FollowGoogle +NewsletterSupportDonate to end Cancer (5 Star Rating
Categories: Tabletop Gaming Blogs

Some Thoughts On Amazing Adventures Manual of Monsters By Jason Vey From Troll Lord Games

Swords & Stitchery - Tue, 04/10/2018 - 06:20
So today I got off the phone with one of my players & we've been discussing the pros & cons of  Amazing Adventures Manual of  Monsters by Jason Vey. Now I'm no stranger to Pulp & Golden Age superhero games I've run everything from Mercenaries, Spies, & Private Eyes to Call of Cthulhu along with Justice Inc. I've even done the run of White Wolf's Aberrant line straight down through TSR Marvel Needleshttp://www.blogger.com/profile/11243274667834930867noreply@blogger.com0
Categories: Tabletop Gaming Blogs

A week in security (April 02 – April 08)

Malwarebytes - Mon, 04/09/2018 - 15:16

Last week, we took a look at fake Whatsapp antics, dubious gaming extensions, and a huge Panera bread breach. There was also LockCrypt ransomware to contend with, we had a poke around Linkedin, and we published another Physician, protect thyself blog.

Other news

Stay safe, everyone!

The post A week in security (April 02 – April 08) appeared first on Malwarebytes Labs.

Categories: Techie Feeds

Inspired Shawls by Laura Zukaite Giveaway

Moogly - Mon, 04/09/2018 - 15:00

Inspired Shawls: 15 Creative Patterns for Year-Round Knitting is a lovely new knit pattern book has me absolutely drooling! Today I get to show off what you’ll find inside, and give away a copy to one lucky Moogly reader, courtesy of Dover Publications – and share a nifty discount code too! Disclaimer: This giveaway was [...]

The post Inspired Shawls by Laura Zukaite Giveaway appeared first on moogly. Please visit www.mooglyblog.com for this post. If you are viewing this on another site they have scraped the content from my website without permission. Thank you for your support.

Categories: Crochet Life

Labs CTNT report shows shift in threat landscape to cryptomining

Malwarebytes - Mon, 04/09/2018 - 13:00

It’s that time again! Time for the quarterly Malwarebytes Labs Cybercrime Tactics and Techniques report (aka the Labs CTNT report). To get a more complete picture of what’s been going on in cybercrime this quarter, the Labs team has combined intel and statistics gathered from January through March 2018 from our Intelligence, Research, and Data Science teams with telemetry from both our consumer and business products, which are deployed on millions of machines.

Here’s what we learned about cybercrime in the first quarter of 2018.

Cryptomining is king

Malicious cryptomining has taken over in 2018, and it’s leaving all other malware families behind. From drive-by mining attacks via browser to scams meant to drain users’ cryptowallets, cybercriminals are taking every opportunity to exploit the rising value and popularity of Bitcoin and other cryptocurrencies.

Even though adware retained its position as our number one consumer detection, it did so only by the skin of its teeth, as malware-based cryptomining is now nipping at its heels in the number two spot. In addition, detections of cryptomining malware for businesses increased by 27 percent over last quarter, bringing it up to the second-highest overall threat detection for businesses this quarter.

Ransomware and spyware try to keep up

But while cryptomining took over, it wasn’t the only game in town. Bad actors continued to experiment with ransomware development and distribution, and spyware kept climbing the charts, usurping hijackers as our number one business detection.

January and February saw unusually low consumer ransomware detections, but during the same timeframe, we saw GandCrab appear as the first ransomware to ask its victims for a cryptocurrency other than Bitcoin. Meanwhile, business ransomware detections are up by 28 percent, but the overall volume remains low, as the threat is unable to crack into the top 5 business detections this quarter.

Spyware became our number 1 detection for businesses this quarter, with an increase of 56 percent from the previous quarter. After a dip at the end of last quarter, spyware detections crept up in December, with January being our most heavily-detected month. The spike is likely due to a malspam campaign delivering the Emotet spyware. Shortly after the spike, spyware was observed dropping significantly near the end of the quarter.

Major vulnerabilities unearthed

The public disclosure of the Meltdown and Spectre vulnerabilities sent software and hardware vendors into a full-blown panic mode, releasing patch after patch to try and mitigate the damage. Cybercriminals capitalized on fear and uncertainty by using social engineering scams to trick users into uploading the latest “patches,” only to infect them with malware.

To read more about cryptomining’s takeover, other quarterly trends in cybercrime, and our predictions for next quarter, download the full Cybercrime Tactics and Techniques (CTNT) report.

The post Labs CTNT report shows shift in threat landscape to cryptomining appeared first on Malwarebytes Labs.

Categories: Techie Feeds

Gardens of Ynn

Ten Foot Pole - Mon, 04/09/2018 - 11:13

By Emmy Allen
Dying Stylishly Games
Level 3-5

The Gardens of Ynn is a point-crawl adventure set in an ever-shifting extradimensional garden. Each expedition generates its route as it explores, resulting in new vistas being unlocked with every visit.

This 79 page product is a method for generating freaky garden locations/pointcrawls in a an alternate “garden dimension.” Evocative writing helps lend a hand to the sunny just-a-little-bit-off character that lends an almost dreamy air to the locations. The gothic horror of a brightly lit victorian garden is fully on display. It also could do with some bolding, tighter writing for the DM mechanics, some cross-referencing, and, ultimately, is not an adventure but rather a location generator.

I’m having a hard time describing the environments this creates. I keep falling back to the “brightly lit gothic horror of VIctorian gardens” that I used in my summary. This thing does a great job of communicating that vibe. Not the full on gonzo of the more recent Alice movies, but rather the cartoon and/or the original Alice stories. Just a little off. And just a little creepy because of that. It’s a nice vibe, different, and certainly one of the most well-done in this genre.

This is a combination of the encounters and the writing. The locations are random, a combination of a location and a detail about it. The Wood – of Dead Birds. The glass-roofed cemetery. A smouldering hothouse. The combinations that are generated seem to work well together and being to spark your thinking when you roll them. Each has a small evocative description. “Fruit trees spaced out every few yards, coppiced so their branches start five feet above the ground. Trunks now gnarled and grizzled with age, branches extending into a tangled canopy that ends fifty feet up.” or “Steel frameworks hold up a tangle of overgrown vines, producing dappled shade beneath them.” or “The ground is littered with dead birds, as if they dropped out of the sky suddenly. Brightly coloured, their feather’ all broken and bedraggled.” To this might be added an event, or creature, or treasure, again, almost all of them with a terse and evocative description. From there is up’s to the DM to figure out why the formal orchard, littered with dead birds, has a treasure of gold coins in a wooden box, with the praying mantis creature wandering about. It all kind of works, for the almost dream-like, or slightly fever-induced, environment.

In all, about fifteen pages are devoted to each section; bestiary, locations, details, rando tables to spice things up, etc. One nice feature is that the main tables needed to generate a location are all grouped next to each other on adjacent pages. They could have used a cross-reference to the specific page number the text description appears on, in order to make the DM’s life a little easier.

There’s DM text for each entry also, and this is where things start to break down. It can get long, especially as the rooms get freakier the deeper you go in to the endless garden. Bolding, better use of whitespace, a tighter edit, would have all made a difference here.

The issue is, of course, running it at the table. You have a roll on the location table, and the details table. And maybe an event or creature. And then maybe looking up each of those entries (remember, no cross-references to page numbers on the tables), and then grokking the descriptions of each. And then tearing through the DM text, which can be a full page long for the more complex locations. It produces interesting results, but I have my doubts about running it at the table without longish pauses. I’d be interested in knowing about that aspect if anyone runs this.

It does so much right to creature the atmosphere. From the entryway being a chalk drawn door on a garden wall to various rumor-hooks about old books, half-remembered tales and the like. Higher numbers on the tables allow for d12 dice rolls when things are calm and d20’s when things get freaky, and so on, which is a nice duel-use feature.

But, it also is JUST a collection of tables. There’s nothing to put things together for a narrative. Something feels off about it. I was thinking about that, comparing it to my favorite adventure, from Fight On, the Upper Caves. That adventure is just some simple rooms. It has a couple of tough monsters, but no ‘Boss of the Level” or other overarching goal. It’s just an explore/loot adventure. That should be what this one is also, but they feel different from each other. Maybe it is the theming of certain sections in the Upper Caves that makes it feel different? I don’t know. The random treasure seems light for a gold-xp game, so maybe not “loot it.” At best, it seems like you could use this by placing another location or person/knowledge somewhere deep in it and make it a stepping stone for the party to get at their prize.

This is $3 on DriveThru. The preview shows you some of the intro text about the gardens and then the core tables for generating locations.

Categories: Tabletop Gaming Blogs

Are We Paying Enough Attention to Children in the Church?

Just Call Me Pastor - Mon, 04/09/2018 - 11:00

When my mother saw I was serious about answering a call to the ministry, she gave me only one word of advice. She said, “Don, be sure to pay attention to the children.”

I’m sure she meant: speak to them; inquire of their well-being; make a place for them in the life of the congregation; be sure they are instructed in the basics of the faith — all of which would seem excellent counsel.

My mother’s words were consistent with our Lord’s response when Jesus’ disciples thought him too busy to be bothered with children who were brought to him.

Jesus rebuked his followers, saying, “Let the little children come to me, and do not hinder them, for the kingdom of heaven belongs to such as these” (Matthew 19:14). He then gathered the little ones around him and blessed them.

My Mother’s advice was given in the mid-forties of the Twentieth Century and we are now nearly through the second decade of the Twenty-first Century. Things have changed in fundamental ways in 70 years!

In the intervening years many subcultures on our continent have rapidly secularized. That is, they no longer have  reverence for an Unseen Presence who rules over all.   Persons who accept this cultural shift seem to be grounding all reality in the present visible world only.

Still, I would say that my Mother’s few words two generations ago and our Lord’s attitude toward children remain the pattern for us today.

And based upon my years in ministry, I offer two of many possible concrete suggestions about the children among us in these secular times.

First, a congregation should take a hard look periodically at whether the Bible is being presented to children from their early years onward. Is it foundational to all family activities and church ministries?

That is, is the Bible being read daily in Christian homes, connecting church and home in religious practice? Are children learning the Bible’s timeless stories and their lessons — like the story of David and Goliath, Ruth and Naomi, and especially the stories of Jesus, and his words and miracles?

Against the apparent increase of “sophisticated” and widespread antagonism to the Christian faith, the Bible is the first line of defense as well as our guidebook, and our children need to be more rooted than ever in the Sacred Scriptures.

My second suggestion deals with the increasingly aggressive secularization of sex education in public schools, countering, even scorning, Christian teaching.

Affirmation of sexual practices contrary to both nature and Christian moral teaching is being taught more aggressively and explicitly in public schools.  For example, it’s reported that in some places sexual practices that are neither normal nor healthy are being presented with approval and even encouraged in the teaching of young children.

At the time of writing concerned parents in Canada, the United States and Australia are being called upon to treat April 23 as a “day out.” On that day children are to be kept home from their schools in protest.

Do our Lord’s words pertain in this? Bringing the little ones to Jesus must also include protecting them insofar as possible from instruction that would counter our Lord’s teaching and the authority of Holy Scripture.

It is now many years since I served as a pastor over a congregation. In reflection I’m sure my mother’s advice affected my thinking to the benefit of my congregations and their children.

If I were returned to the assignment of pastoring a church, I would be even more committed to heed my Mother’s advice to pay attention to the children and their need for both teaching and protection.

Photo credit: Philippe Put (via flickr.com)

Categories: Churchie Feeds

Modification Monday: Flight Cardigan

Knitted Bliss - Mon, 04/09/2018 - 11:00


Original Pattern: Seamless Saddle Shoulder Pullover Knitter Extraordinaire: Uncia (Ravelry, blog) Mods: Uncia changed the pullover pattern to be an open front cardigan with a cabled front band, and a horizontal cable band at the hem. Her project page has fantastic, detailed notes on how she made this cardigan, check out her project page here.

The post Modification Monday: Flight Cardigan appeared first on %%www.knittedbliss.com%%.

Categories: Knitting Feeds

Visit Skaro

Sorcerer's Skull - Mon, 04/09/2018 - 11:00
For those of you not familiar with Doctor Who lore (which I would imagine are vanshing few members of my audience, but still), Skaro is the homeworld of those plunger-armed, shrill-voiced robotic monsters, the Daleks.

According to the map, first appearing in The Dalek Book (1964), Skaro is almost D&D Outer Plane weird. Check out the named locales here:

Seas of Rust, Ooze, and Acid. The Lake of Mutations. The Radiation Range. All pretty dire stuff. Also, don't miss the note on the giant "serpents" of Darren that are really mutated earthworms!
If that's not enough, subterranean Skaro, is just as weird:

CCL #478 – June 2018 Solicitations

First Comics News - Mon, 04/09/2018 - 09:00

Chris goes over select hardcovers, trade paperbacks and collected editions from the June 2018 solicitations including:

  • Caliber Comics
    • Deadworld Archives Book 1
    • Last On The List GN
  • Abstract Studios
    • Terry Moore’s Echo Complete ED SC
  • Archie
    • Archie At Riverdale High Vol. 1
    • Cosmo The Complete Merry Martian
  • Dark Horse
    • The EC Archives: War Against Crime Volume 1 HC
    • Eerie Archives Volume 24 HC
    • Hercules: Adventures Of The Man-God Archive HC
    • Hellboy: The Complete Short Stories Volume 2 TP
  • IDW
    • The Unknown Anti-War Comics! by Steve Ditko
    • Star Hawks, Vol. 3: 1979–1981
    • Bill Sienkiewicz’s Mutants And Moon Knights Artifact Edition
  • Marvel
    • Hellstorm By Warren Ellis Omnibus HC
    • The Marvel Comics MCU Omnibus HC
    • Thor: Heroes Return Omnibus Vol. 2 HC
    • Guardians Of The Galaxy By Gerry Duggan Omnibus HC
    • Nova By Abnett & Lanning: The Complete Collection Vol. 1 TP
    • Amazing Spider-Man By David Michelinie & Todd McFarlane Omnibus HC
    • Tomb Of Dracula Omnibus Vol. 1 HC
    • Marvel Masterworks: The Invincible Iron Man Vol. 11 HC (Variant Edition Vol. 266)
    • Star Wars: Rogue One Adaptation HC
    • Ant-Man: Astonishing Origins TP
    • Star Wars Legends Epic Collection: The Original Marvel Years Vol. 3 TP
    • Doctor Strange: Damnation Complete Collection TP
    • Thanos Wins By Donny Cates TP
    • Nightmask: New Universe TP
    • Punisher: Shadowmasters TP
  • DC Comics
    • Absolute Flashpoint HC
    • Wonder Woman: The Golden Age Omnibus Vol. 3 HC
    • Wonder Woman By John Byrne Book Two HC
    • Ragman TP
    • Superman Blue Vol. 1 TP

CCL Slack Channel – free and open to anyone
CCL Podcast on Spotify
CCL Podcast on iTunes
CCL Podcast on Libsyn
CCL Twitter
DGTLcomics Twitter
CCL Podcast RSS Feed
CCL on eBay
This podcast direct .mp3 link
The Rorschach Test – Chris’s other podcast with Andy Tom and Brion Salazar

Categories: Comic Book Blogs


Looking For Group - Mon, 04/09/2018 - 04:00

The post 1181 appeared first on Looking For Group.

Categories: Web Comics

WrestleMania 34 resluts

First Comics News - Mon, 04/09/2018 - 03:40


Andre The Giant Memorial Battle Royal

Winner: Matt Hardy

WWE Cruiserweight Title Match

Cedric Alexander def. Mustafa Ali

Women’s Battle Royal
Winner: Naomi


WWE Intercontinental Title Triple Threat Match
Seth Rollins def. Finn Balor and The Miz (c)

SmackDown Women’s Title Match
Charlotte Flair (c) def. Asuka

United States Title Match
Jinder Mahal def. Randy Orton (c), Bobby Roode and Rusev

Mixed Tag Team Match
Ronda Rousey/Kurt Angle def. Triple H/Stephanie McMahon

SmackDown Tag Team Title Match
The Bludgeon Brothers def. The Usos (c) and The New Day

John Cena def. Elias

The Undertaker def. John Cena

Tag Team Match
Daniel Bryan/Shane McMahon def. Kevin Owens/Sami Zayn

RAW Women’s Title Match
Nia Jaxx def. Alexa Bliss (ccf)

WWE Title Match
AJ Styles (c) def. Shinsuke Nakamura

Raw Tag Team Title Match
Braun Strowman & Nichaolas def. The Bar

WWE Universal Title Match
Brock Lesnar (c) def. Roman Reigns

Categories: Comic Book Blogs

An Amazing Adventures Campaign Pitch & OSR Commentary

Swords & Stitchery - Mon, 04/09/2018 - 03:31
Earlier today  wasn't around on the inter webs instead I got a chance to steal away to a nearby town & speak with some friends about classic pulp magazines & comic books. We spoke at length over beers & game of Old Hammer Romans vs Saxons on the coast of Britain. My buddy Steve & I commanded the Roman scum against the Saxon dogs who were being run by Paul & his buddy Trevor. We were using a sixNeedleshttp://www.blogger.com/profile/11243274667834930867noreply@blogger.com0
Categories: Tabletop Gaming Blogs


Subscribe to Furiously Eclectic People aggregator