Feed aggregator

RICH REVIEWS: The New Day: Power of Positivity # 1

First Comics News - Wed, 07/07/2021 - 21:31

Title: The New Day: Power of Positivity # 1
Publisher: BOOM! Studios
Written by: Evan Narcisse & Austin Walker
Illustrated by: Daniel Bayliss
Lettered by: DC Hopkins
Cover: Daniel Bayliss
Variant Covers by: Rahzzah, Oliver Barrett, and Griff
Price: $ 3.99 US
Rating: 3 out of 5 stars
Website: www.boom-studios.com
Comments: The art certainly does make it easy to tell which wrestlers are which. The art beautifully brings across the features of the wrestlers so you will recognize each one.
We take a look at the New Days childhood. They did not have easy ones.
In the ring Kofi and Big E alone were ok wrestlers as far as the audience was concerned they did not stand out. Xavier was unsure of who he was in the ring.
The issue does drag on about their childhood. More ring time would have been better. They are shown though being themselves which is always great to see. It is great to be one’s self and like for it as well.
We do get to see a few other wrestlrs in this issue but the New Day are the stars of this issue and are shown as going on their way becoming the stars of the show.

Categories: Comic Book Blogs


First Comics News - Wed, 07/07/2021 - 21:29
Five Fan-Focused Panels Will Highlight Batman: Fear State, DC Horror, Superman, Wonder Woman and Dark Nights: Death Metal

LOS ANGELES – July 7, 2021 – DC is pleased to announce it’s panel line-up for Comic-Con@Home. Throughout the weekend long event, All-Star writers and artists such as John Ridley, Mariko Tamaki, Tom Taylor, Grant Morrison and Becky Cloonan will give fans a sneak preview at the highly anticipated Batman: Fear State event, DC Horror line of comics, Wonder Woman’s 80th Anniversary celebrations, the exciting changes that are in store for the Man of Steel and much more. Fans are surely not going to want to miss DC’s exciting Comic-Con@Home panels.

The full slate of DC’s Comic-Con@Home panels are below:

Friday, July 23, 2021 at 1 p.m. PT/4 pm. ET
Gotham Group Editor Ben Abernathy brings together a rogues gallery of writers and artists to talk about what’s upcoming for everyone’s favorite Caped Crusader in Batman: Fear State. Joining Ben are John Ridley (The Other History of the DC Universe), Mariko Tamaki (Dark Detective), James Tynion IV(Batman), Stephanie Phillips (Batman: Urban Legends, Harley Quinn) and Tom Taylor (Batman: The Detective, Nightwing).

Friday, July 23, 2021 at 4 p.m. PT/7 p.m. ET
Join DC Editor Katie Kubert as she talks about the scariest stories in the Multiverse and beyond with James Tynion IV (The Nice House on the Lake), David Johnson-McGoldrick(The Conjuring: The Lover), Bill Sienkiewicz (The Conjuring: The Lover, 30 Days of Night), and Matthew Rosenberg (The Joker Presents: A Puzzlebox, Task Force Z). Find out what’s crawling out of nightmares and into the pages of DC’s horror comics this summer.

Saturday, July 24, 2021 at 11 a.m. PT/2 p.m. ET
DC Editor in Chief Marie Javins leads a super discussion with the super talented, multiple Eisner Award-nominated writers Tom Taylor (Superman: Son of Kal-El), Phillip Kennedy Johnson (Action Comics) and Grant Morrison (Superman and the Authority). Fans of both Clark and Jon Kent won’t want to miss this one!

Saturday, July 24, 2021 at 2 pm PT/5 p.m. ET
Discover the secret origin of the original soundtrack executive produced by Tyler Bates (John WickFranchise) inspired by DC’s best selling Dark Nights: Death Metal comics and graphic novels by Scott Snyder and Greg Capullo featuring panelists Scott Snyder, Tyler Bates, singer-songwriter Chelsea Wolfe, and Mastodon drummer Brann Dailor moderated by Gwarsenio Hall from Two Minutes to Late Night.

Sunday, July 25, 2021 at 11 a.m. PT/2 p.m. ET
DC Associate Editor Brittany Holzherr talks with the wonderful writers and artists mapping out the history and the future of the Amazonian princess—and the rest of the Wonder Women in the DC Multiverse. Tune in to hear what’s coming from Becky Cloonan(Wonder Woman), Michael Conrad(Wonder Woman), Stephanie Williams (Wonder Woman 1984), and Alitha Martinez (Immortal Wonder Woman).

Links to view the panels will be available when Comic-Con International announces its full weekend schedule. For more information about Comic-Con, visit www.comic-con.org.

Categories: Comic Book Blogs

The Trailer Park Boys F*ckin’ Comic Is Coming F*ckin’ Early!

First Comics News - Wed, 07/07/2021 - 21:21

Let’s kick things off with some excellent news:

The Trailer Park Boys: Get A F#c*ing Comic Book! is being released one week earlier! The boys are back (in comic book form) a bit sooner than expected! Pre-order the book now or run to your local comic shop on July 21, 2021, and grab up a copy before they’re sold out!

It’s so easy even a baby could do it. Or, as Ricky would say, “It’s not rocket appliances!”


Do you want retailer-exclusive variant covers? We gottem, baby!

WonderWorld Comics

Come See Us In Person (For The First Time In A Long Time!)

After a pretty uneventful 2020, we’re incredibly excited to be fully vaccinated and returning to society. There’s no better place in the world to mark our reintroduction to life outside the bubble than a comic convention! Lucky for us (and you), Planet Comicon Kansas City is happening!

We’re hoping you’ll join us IN PERSON at the Kansas City Convention Center on August 20-22, 2021. Check out the booth and get a chance to see Devil’s Due head honcho Josh Blaylock and superstar artist Travis Hymel as they emerge from 365 days quarantine.

If you’re like us, you might also be concerned about safety measures taken to ensure the con is super safe for everyone. The good news is that Planet Comicon Kansas City is every precaution to keep the con safe. They even laid out a comprehensive COVID Response plan which definitely eased any lingering COVID-related concerns.

Table/Booth info TBD. Check the Planet Comiccon Kansas City website

Categories: Comic Book Blogs

Clean Up and Update

The Splintered Realm - Wed, 07/07/2021 - 20:40

 A few Stalwart Age pieces of business and updates:

  • The print edition is still nigh. I am waiting on a physical copy so I can approve it before putting it live. I just want to make sure that everything looks good in print, and that the covers are lined up, before I start selling this. There are no 'do overs' on physical books.
  • Speaking of do-overs, I will be releasing an update to the game when the print edition goes live. The update will have a few relatively minor changes (see below). There will also be a link for the discounted print edition, for those who buy (or have already bought) the pdf.
  • Stat blocks are being updated with colons instead of hyphens between the attribute and the rating (Thanks, Rick, for the suggestion). I have updated the character archive on the Stalwart Age site with corrected stat blocks. I also upgraded Ro slightly to show he truly is at the peak of measurable game attributes. He is Ro, after all.
  • I am going to add a small tweak to the focus talent. I was toying with some rules for popularity when I was writing the game, because I really like that as a concept (as well as infamy for villains), but I didn't have a good way to plug it in in an economical way, and I also didn't like how it kind of becomes redundant with CHA. I realized a few days ago that I can leverage the focus talent to give you a +3 CHA bonus when you can use your name or reputation to your advantage. Villains then can access infamy, which grants a +3 CHA bonus to use their name and reputation to intimidate or coerce. It's a nice, clean, mechanically-sound way to solve the problem. I updated Doc's stat block with this talent. I thought about doing this for Simian Prime as well, but decided against it... I don't know that his reputation is greater than just the fact that he's a talking ape in a battle suit. Popularity/Infamy should be REALLY special.
  • There's new content on the Stalwart Age Page! There's a new adventure location (Junkyard Dawg's lair) on the resources tab, and there's a stat block for Junkyard Dawg on the characters tab. Of course, if you are a patron through Patreon, you already got these a few days ago... you can sign up as a patron to get early access to new content, and also to get some behind-the-scenes looks at my thought process as we build the game together going forward.  Just this week, patrons got to see Doc Stalwart 1994, met Harvyst, got a preview of content featuring Tessek the Terrible, and got to read the next two chapters in Doc's adventures. Those things will be rolling out on the Stalwart Age site in the next few weeks. 


First Comics News - Wed, 07/07/2021 - 20:23

Check out a new series of STAR WARS: WAR OF THE BOUNTY HUNTERS variant covers coming your way this August!

New York, NY— July 7, 2021 — STAR WARS: WAR OF THE BOUNTY HUNTERS, the crossover that’s overtaken the galaxy, heats up this August! The story, set after Star Wars: The Empire Strikes Back, revealed that on route to Jabba the Hutt, Boba Fett lost the carbonite-encased Han Solo and ignited an epic hunt between pursuers from all corners of the galaxy. The Rebellion, the Empire, the galaxy’s most notorious bounty hunters, and a few surprise players are all hot on the trail, and fans can see just how dangerous the hunt has become for their favorite characters on new WANTED POSTER VARIANTS COVERS by superstar artist David Nakayama.

Throughout the month of August, Nakayama’s stunning takes on Valance, Qi’ra, Doctor Aphra, Jango Fett, Boba Fett, and of course, Han Solo will grace the covers of the main STAR WARS: WAR OF THE BOUNTY HUNTERS limited series, the tie-in issues of your favorite ongoing Star Wars titles, and the upcoming one-shot, WAR OF THE BOUNTY HUNTERS: 4-LOM & ZUCKUSS #1.

Check them out now and collect all six WANTED POSTER VARIANT COVERS starting on August 4th!

On Sale 8/4

On Sale 8/11

On Sale 8/18

On Sale 8/25

Categories: Comic Book Blogs

Today Is BAD IDEA DAY and SLAY BELLS Is in Stores Now!

First Comics News - Wed, 07/07/2021 - 18:24


SLAY BELLS is on sale NOW in BAD IDEA Destination Stores around the world and to celebrate we’ve got all the activities planned!
Are you one of the amazing (but also crazy) fans camping out overnight to make sure you’re the first person to buy a copy of SLAY BELLS and get the First Copy Pin?

We salute you!

Don’t forget to take a picture with the gold pin and your copy of SLAY BELLS at your store and post it. Tag @badideahello, so that our crack social media team can amplify it and spread the word.

If you don’t get a pin, we still love you. Post a picture of SLAY BELLS on the shelf of your local comic shop or in a selfie, and we’ll show you that sweet social media love.

You’ll have to wait just a little longer for THE LOT #1. Due to a distribution issue many BAD IDEA Destination Stores will not be receiving their copies of THE LOT #1 until the week of 7/14/21. In order to keep things fair for those chasing the First Customer Gold Pin for THE LOT, we have moved the on-sale date for THE LOT #1 to Wednesday, July 14th. This means that neither the comic nor the First Customer Gold Pin for THE LOT #1 will be available tomorrow.
As a reminder, Rule #3 of being a Bad Idea Destination Store reads:

“Bad Idea comics can be offered for preorder but cannot be shipped to anyone before street date.”

As that street date has now changed, we want to thank you, our Destination Stores, for continuing to live up to the Bad Idea Rules and our fans for not tempting the Stores to break them.

Good luck this BAD IDEA DAY!

Remember, the BAD IDEA way also means no variants, no trades, no digital, select stores, perennially available Not First Printings, and approximately two comics a month – just monthly comics, sold in comic book shops. Goodbye, troubles. Hello, BAD IDEA SIMPLICITY™.

Categories: Comic Book Blogs

Why I Like Stalwart Age

The Splintered Realm - Wed, 07/07/2021 - 18:04

I know... it's my game, and I wrote it, so of COURSE I like it. That's kind of obvious.

But there are things that are baked in that are not necessarily intentional, but are cool side effects of the design philosophy I've employed. You can play the game 'out of the box' as is, or you can toolkit the whole thing and start tinkering. Someone over the Supers RPG forum on FB was asking about building custom powers for his character, and we ended up going through about four different ways he could solve the power set for his character. The game allows any of those pathways to work, and to customize the gift that best fits his character concept. Instead of having clear lines between gifts, there is significant bleed between some gifts so that two characters with different powers could do similar things; and two characters with similar powers could have them present in fundamentally different ways.

But the other benefit is that powers (and even origins) have various levels of complexity. In D+D, if you want to keep things simple, you play a fighter; if you want to have some complexity, play a Drow magic/user thief, and you'll have all sorts of fiddly things to play with. In many ways, Stalwart Age is that concept on adrenaline. Cyclops and the Thing are simple. You shoot stuff with your eye beams or you are big and tough and strong. Those are easy to conceive of, and easy to play. At the far end, you can have the Scarlet Witch, with myriad ways to apply her powers. I also like how 'comic-booky' this ends up being. I was reading through some old FF comics (from Byrne's run, of course) and in the letters column someone pointed out that Sue was more powerful now than she was before; the editor replied that she always had those powers, it was just that she (and JB by extension) were finding new ways to apply them. In comics, the powers of supers change depending on who is doing the writing; the powers as applied in the game change depending on how the player is interpreting them. How I use sonic energy control and how you use it might be different; we read the same small block of text and get different ideas about how this might work and the types of things we might do with it. This is actually not a weakness of the game; it is a strength because it better emulates the source material, and our shared experiences in spending time in that source material. 


First Comics News - Wed, 07/07/2021 - 17:55

PORTLAND, Ore 07/07/2021 — Today Image/Skybound revealed a first look at Stillwater By Zdarsky &
Pérez #9
, the newest pulse-pounding issue of the hit series from the superstar team of Chip Zdarsky, Ramón K Pérez, and Mike Spicer.

The new world order of Stillwater aims to cement their rule for life—and that means Ted is welcoming new visitors to the town. Unfortunately, that’s bad news for Faith… Can Ted keep his hold on Stillwater or will a new force topple his reign?

Stillwater By Zdarsky & Pérez #9 (Diamond Code MAY210205) will be available at  comic book shops  and digital platforms including Amazon Kindle, Apple Books, comiXology, and Google Play on Wednesday, August 4.

Plus, fans of Stillwater By Zdarsky & Pérez can’t miss the monumental Skybound X #2, featuring the debut of a major new Stillwater character and the unexpected secret origin of Galen, available in stores & digital platforms on Wednesday, July 14.

  • Skybound X #2 Cover A by Cliff Rathburn (MAY210042)
  • Skybound X #2 Cover B by Andrei Bressan (MAY210043)
  • Skybound X #2 Cover C by Tri Vuong & Irma Kniivila (MAY210044)

For more info and updates, visit  www.skybound.com.

Categories: Comic Book Blogs

Build Your Own Army with Fanware’s PREVIEWS Exclusive Nanoforce Star Trek Figures

First Comics News - Wed, 07/07/2021 - 17:50

(BALTIMORE, MD) — (July 6, 2021) — Diamond Comic Distributors has partnered with Fourth Castle Brands and FanWraps to bring fans a series of PREVIEWSExclusive Nanoforce Star Trek figures, featuring characters from Star Trek™ and Star Trek™: The Next Generation.

These colorful 2″ tall PREVIEWS Exclusive figures are ripe with detail and capture each fan favorite Star Trek character as if they were the space faring counterparts of the classic Army Men figures! Sculpted in digital 3D for high resolution detail, each set includes fan-favorite characters like Captain Kirk, Spock, Scotty, Captain Picard, and more.

The PREVIEWS Exclusive Fourth Castle and Fanwraps Star Trek (JUN208147, SRP: $24.95) and Star Trek: The Next Generation (JUN208144, SRP: $24.95) Nanoforce figures are available now for pre-order at your local comic shop via PULLBOX. Both sets have an expected release date of November 3, 2021.

Retailers interested in placing wholesale orders for this item and other PREVIEWSExclusive items are encouraged to contact Diamond’s New Accounts Department at newaccounts@diamondcomics.com.

See all images of the PREVIEWS Exclusive Star Trek: The Original Series Nanoforce Army Builder Figure Boxed Set

See all images of the PREVIEWS Exclusive Star Trek: The Next Generation Nanoforce Army Builder Figure Boxed Set


Categories: Comic Book Blogs

3 things the Kaseya attack can teach us about ransomware recovery

Malwarebytes - Wed, 07/07/2021 - 17:17

Only rarely do companies allow us a look inside their organization while they are recovering from a ransomware attack. Many find it more convenient to keep a low profile or to be secretive.

A positive exception to this is found in the Dutch managed service provider (MSP) VelzArt, one of the many unfortunate victims of Friday’s enormous, cascading supply-chain attack on Kaseya. The attack used a zero-day vulnerability to create a malicious Kasaya VSA update, which spread REvil ransomware to some of the MSPs that use it, and then on to the customers of those MSPs.

Instead of avoiding the limelight, VelzArt has blogged meticulously since Friday about how it and its customers were affected, and the steps it has taken to get them up and running.

VelzArt offers its customers a broad spectrum of ICT solutions, delivered using remote administration tools. One of those tools is Kaseya VSA. The company writes that it was in the process of switching to another remote administration platform at the time of the attack, but Kaseya software was still installed on some customers’ systems. Since Friday it has been working to recover those customers.

Here are five lessons we can all learn about recovering from ransomware, thanks to VelzArt’s admirable transparency.

1. Know when to communicate

Communication is key during times of crisis. VelzArt writes that after learning about the ongoing attacks in the evening of July 2, it immediately informed the customers it managed using Kaseya software by mail, phone, and newsletters. It also started the blog that became the basis for this article.

This open communication allowed it to triage more effectively. A production company that works 24/7 needs their servers more urgently in the weekend than a law firm that needs everything ready by Monday morning.

During the evening and night, VelzArt says it limited its customer contact to email, in order to prioritize actually getting the recovery procedures done. While it is understandable that anxious customers want to be kept informed, there has to be time for actually getting the work done.

2. Backups take time

Recovering from a ransomware attack normally means rebuilding everything from backups. And that makes backups a target for ransomware.

VelzArt writes that on most servers and some of the workstations, it was able to restore from backups without any major problems. However, stopping the attackers getting to the backups is only half the battle. Machines that have been attacked by ransomware may be harbouring other malware, so backups need to be loaded on to a clean machine, and that takes time: Restoring backups is not a quick fix.

VelzArt says that the servers that were taken offline to stop the attack had to be picked up from clients, checked, reinstalled, and then made ready for normal operations. The company writes that it took quite some effort to pull that off, with staff working in teams through the night. Extra power circuits had to be set up to handle the extra demand.

The company expected 70 percent of servers to be restored by the start of Tuesday. On Tuesday, they hoped to get started with gathering all the workstations that had a back-up option, and Wednesday would be the day to get the re-installed workstations back into their operational status, meaning they would get the necessary software installed, and connected to the network.

3. Help can come from unexpected places

Recovering from ransomware doesn’t just take time, it takes people, too. If you are recovering from a ransomware attack there is a good chance that you will need external help.

VelzArt writes that it worked with one customer on a trial for self-remediation. Because of a lack of information from Kaseya it was not sure how much work would be needed for every individual workstation. The company hoped that the trial would produce a method they could use with other customers.

On Sunday afternoon they asked customers to turn on their workstations, without logging in, stating that they found an automated way to restore workstations remotely. The activated workstations gave VelzArt an idea of what the impact of the attack had been. A warning was given to the customers that the reset procedure for the affected workstations would result in a total loss of local data and installed software. Basically, the system would be flattened and reinstalled.

By Monday morning the automated script it had worked out with the help of one willing company was ready to help the others.

VelzArt also noted that friendly competitors had offered to help them resolve the situation. An offer they were happy to tell their customers they had accepted, in order to speed up the recovery.

Insight from another victim

VelzArt’s unusual level of communication provides us with a rare insight in what a company has to go through when they’re recovering from a ransomware attack. Their transparency will help other victims and we wish them luck on a speedy recovery.

Although rare, there are other organizations that have gone public with the details of what it takes to recover from a ransomware attack.

In the latest episode of the Lock and Code podcast, host David Ruiz speaks to Ski Kacoroski—a system administrator with the Northshore School District in Washington state—about the immediate reaction, the planned response, and the long road to recovery from a ransomware attack. You can listen to it below, or on Apple PodcastsSpotify, and Google Podcasts.

This video cannot be displayed because your Functional Cookies are currently disabled.

To enable them, please visit our privacy policy and search for the Cookies section. Select “Click Here” to open the Privacy Preference Center and select “Functional Cookies” in the menu. You can switch the tab back to “Active” or disable by moving the tab to “Inactive.” Click “Save Settings.”

The post 3 things the Kaseya attack can teach us about ransomware recovery appeared first on Malwarebytes Labs.

Categories: Techie Feeds

Retooling & Modifying Mini Quest: Madness of the Mouther From One Shot RPG 'Pay What You Want' Adventure For Castles & Crusades rpg Campaigns

Swords & Stitchery - Wed, 07/07/2021 - 16:02
" In MADNESS OF THE MOUTHER, an unexpected attack at the market leads the characters beneath the city streets. In the hidden halls of an abandoned thieves guild, they find only death and the whispers of madness. What evil waits for them in the shadows? Will the characters survive?"David Dudka puts out a number of 'pay what you want' adventure  titles that according to One Shot Rpg their mission Needleshttp://www.blogger.com/profile/11243274667834930867noreply@blogger.com0
Categories: Tabletop Gaming Blogs

Game over: Apex Legends players locked out by protest message

Malwarebytes - Wed, 07/07/2021 - 14:44

Messages placed directly in or around games is a common hack technique. It can be used for trolling, phishing, scams, or anything else the message-placer can think of. Messages can also be placed in games for the purposes of advertising but that’s a tale for a different day.

Recently, players of Apex Legends have found themselves blocked from playing the game, thanks to said message placement. The multiplayer title had server playlists switched out for commentary on the state of Titanfall. This is an older game made by the same developers, Respawn Entertainment.

Levelling up a pyrrhic victory

Fans have complained for a while now that Titanfall has become unplayable due to hacks and cheaters. As such, this message – “Save Titanfall, TF1 is being attacked so is Apex” gave the same treatment to Apex Legends that Titanfall has been plagued by. Can’t play one game? Sorry, then you can’t play this game over here either. A sort of mutually assured destruction played out in games over screens.

Game developers Respawn have come out all digital guns blazing, claiming the attacks “achieved nothing of value”. This is because the messages referenced a campaign to “save” Titanfall which they were already aware of. Besides the extra work for the devs and a ruined weekend, the biggest reputation hit belongs to the Save Titanfall campaign. They’ve had to place a message at the top of their site which reads

IMPORTANT MESSAGE: This website, nor the Discord servers listed below, are in no way associated with the recent Apex Legends hack.

Plugging the DDoS gap in gaming

Ouch. DDoS attacks in video game land have been around forever. As the Respawn dev points out, solving such problems in gaming environments isn’t easy. Being locked out of multiplayer only games isn’t something the players can fix, so all eyes will be on the dev team to see what they can do about the current, occasional lack of a state of play.

It’s possible more antics will take place in Apex land until such time as Titanfall is back to full health, so gamers should be on their guard.

The post Game over: Apex Legends players locked out by protest message appeared first on Malwarebytes Labs.

Categories: Techie Feeds

UPDATED: Patch now! Emergency fix for PrintNightmare released by Microsoft

Malwarebytes - Wed, 07/07/2021 - 14:17

Last week we wrote about PrintNightmare, a vulnerability that was supposed to be patched but wasn’t. After June’s Patch Tuesday, researchers found that the patch did not work in every case, most notably on modern domain controllers. Yesterday, Microsoft issued a set of out-of-band patches that sets that aims to set that right by fixing the Windows Print Spooler Remote Code Execution vulnerability listed as CVE-2021-34527.

Serious problem

For Microsoft to publish an out-of-band patch a week before July’s Patch Tuesday shows just how serious the problem is.

PrintNightmare allows a standard user on a Windows network to execute arbitrary code on an affected machine, and to elevate their privileges as far as domain admin, by feeding a vulnerable machine a malicious printer driver. The problem was exacerbated by confusion around whether PrintNightmare was a known, patched problem or an entirely new problem. In the event it turned out to be a bit of both.

Last week the Cybersecurity and Infrastructure Security Agency (CISA) urged administrators to disable the Windows Print Spooler service in domain controllers and systems that don’t print.

However, the installation of the Domain Controller (DC) role adds a thread to the spooler service that is responsible for removing stale print queue objects. If the spooler service is not running on at least one domain controller in each site, then Active Directory has no means to remove old queues that no longer exist.

So, many organizations were forced to keep the Print Spooler service enabled on some domain controllers, leaving them at risk to attacks using this vulnerability.

Set of patches

Depending on the Windows version the patch will be offered as:

  • KB5004945 for Windows 10 version 2004, version 20H1, and version 21H1
  • KB5004946 for Windows 10 version 1909
  • KB5004947 for Windows 10 version 1809 and Windows Server 2019
  • KB5004949 for Windows 10 version 1803 which is not available yet
  • KB5004950 for Windows 10 version 1507
  • Older Windows versions (Windows 7 SP1, Windows 8.1 Server 2008 SP2, Windows Server 2008 R2 SP1, and Windows Server 2012 R2) will receive a security update that disallows users who are not administrators to install only signed print drivers to a print server.

Security updates have not yet been released for Windows 10 version 1607, Windows Server 2016, or Windows Server 2012, but they will also be released soon, according to Microsoft.

The updates are cumulative and contain all previous fixes as well as protections for CVE-2021-1675.

Not a complete fix

It is important to note that these patches and updates only tackle the remote code execution (RCE) part of the vulnerability. Several researchers have confirmed that the local privilege escalation (LPE) vector still works. This means that threat actors and already active malware can still locally exploit the vulnerability to gain SYSTEM privileges.


Microsoft recommends that you install this update immediately on all supported Windows client and server operating systems, starting with devices that currently host the print server role. You also have the option to configure the RestrictDriverInstallationToAdministrators registry setting to prevent non-administrators from installing signed printer drivers on a print server. See KB5005010 for more details.

“The attack vector and protections in CVE-2021-34527 reside in the code path that installs a printer driver to a Server. The workflow used to install a printer driver from a trusted print server on a client computer uses a different path. In summary, protections in CVE-2021-34527 including the RestrictDriverInstallationToAdministrators registry key do not impact this scenario.”

CISA encourages users and administrators to review the Microsoft Security Updates as well as CERT/CC Vulnerability Note VU #383432 and apply the necessary updates or workarounds.

Impact of the updates

So, the vulnerability lies in the normal procedure that allows users to install a printer driver on a server. A printer driver is in essence an executable like any other. And allowing users to install an executable of their choice is asking for problems. Especially combined with a privilege escalation vulnerability that anyone can use to act with SYSTEM privileges. The updates, patches, and some of the workarounds are all designed to limit the possible executables since they need to be signed printer drivers.

For a detailed and insightful diagram that shows GPO settings and registry keys administrators can check whether their systems are vulnerable, have a look at this flow chart diagram, courtesy of Will Dormann.

This is my current understanding of the #PrintNightmare exploitability flowchart.
There's a small disagreement between me and MSRC at the moment about UpdatePromptSettings vs. NoWarningNoElevationOnUpdate, but I think it doesn't matter much as I just have both for now. pic.twitter.com/huIghjwTFq

— Will Dormann (@wdormann) July 7, 2021 Information for users that applied 0patch

It is worth mentioning for the users that applied the PrintNightmare micropatches by 0patch that according to 0patch it is better not to install the Microsoft patches. They posted on Twitter that the Microsoft patches that only fix the RCE part of the vulnerability disable the 0patch micropatch which fixes both the LPE and RCE parts of the vulnerability.

If you're using 0patch against PrintNightmare, DO NOT apply the July 6 Windows Update! Not only does it not fix the local attack vector but it also doesn't fix the remote vector. However, it changes localspl.dll, which makes our patches that DO fix the problem stop applying. https://t.co/osoaxDVCoB

— 0patch (@0patch) July 7, 2021 Update July 9, 2021

Only a little more than 12 hours after the release a researcher has found an exploit that works on a patched system under special circumstances. Benjamin Delpy showed an exploit working against a Windows Server 2019 that had installed the out-of-band patch. In a demo Delpy shows that the update fails to fix vulnerable systems that use certain settings for a feature called point and print, which makes it easier for network users to obtain the printer drivers they need.

In Microsoft’s defense the advisory for CVE-2021-34527 contains a note in the FAQ stating that:

Point and Print is not directly related to this vulnerability, but certain configurations make systems vulnerable to exploitation.

Update July 14, 2021

The Cybersecurity and Infrastructure Security Agency’s (CISA) has issued Emergency Directive 21-04, “Mitigate Windows Print Spooler Service Vulnerability” because it is aware of active exploitation, by multiple threat actors, of the PrintNightmare vulnerability.

CISA has determined that this vulnerability poses an unacceptable risk to Federal Civilian Executive Branch agencies and requires emergency action. The actions CISA lists are required actions for the agencies. The determination that these actions are necessary is based on the current exploitation of this vulnerability by threat actors in the wild, the likelihood of further exploitation of the vulnerability, the prevalence of the affected software in the federal enterprise, and the high potential for a compromise of agency information systems. Exploitation of the vulnerability allows an attacker to remotely execute code with system level privileges enabling a threat actor to quickly compromise the entire identity infrastructure of a targeted organization.

The post UPDATED: Patch now! Emergency fix for PrintNightmare released by Microsoft appeared first on Malwarebytes Labs.

Categories: Techie Feeds

The Diary of River Song: Meet UNIT’s New Recruit!

Blogtor Who - Wed, 07/07/2021 - 14:00

Alex Kingston is back as Professor River Song in her ninth box set of full cast audio adventures from Big Finish Productions The Diary of River Song: New Recruit is due for release in October. And this ninth volume finds the Doctor’s time-travelling archaeologist wife back in the 1970s… or is it the 1980s? She’s […]

The post The Diary of River Song: Meet UNIT’s New Recruit! appeared first on Blogtor Who.

Categories: Doctor Who Feeds

The Book and The Spring

Ten Foot Pole - Wed, 07/07/2021 - 11:11
By Christopher Letzelter Anachronistes Press OSRIC Levels 4-7

PC’s get more than they bargained for when they undertake a quest to destroy a recently-captured tome of black magic. Standing in their way are an unforgiving desert, a cursed and ruined city, an ancient tomb, and a dried-up spring. Oh, and lots of unexpected foes and tricky situations, of course.

This 52 page adventure is a Real Deal lost city adventure, with over 350 rooms, primarily in two large multi-level dungeons. It is also, I think, nigh-unrunnable without devoting a couple of weeks, or months, of your life to it, illustrating just about every surface-level bad design decision possible. A major, major overhaul of this would turn it in to a classic of the genre.

The parties intro to this is much in the same format as G1; the armies of light have been going at it against the Evil Dudes and a group have returned with an evil artifact, a book that is indestructible. While everyone else is off waging war against the moat house and temple, the party is given the task of destroying the book, which the seers say can be done in a lost city out in the desert. 

A lost city with the tomb of an evil king (multi level dungeon) guarding by some good pilgrims, fending off incursions of an evil cult who are lairing in the palace of the evil wizard (multi-level dungeon) with some outbuildings to explore, an underground passage out StoneSky, and a couple of independent entities in the ruins, like a dragon and lamia … as well as the usual hangers on of vermin, undead, deserters and so on. The two major dungeons have over 150 rooms each, meaning we get about eight rooms per page … in an adventure that is pretty much, front to back, nothing but encounter keys with only a little front and back padding. It’s got some light Sumerian theming, which drew me to it in the first place. (Fun fact: in a con game, revealing you have a brand of Gilgamesh means you always get to play Gilgamesh!) 

In a world of mini-adventure and four-hour complete games, this is a complex adventure. This is more of an expedition, and a hard one at that, more akin to Gaxmoor or other products. You’re gonna need to bring everything with you and plan to stay for a few weeks, I suspect. Cause this place is FUCKING HARD. While the majority of the human factions are 1HD fighters (yeah! Great to see that!) there are a wide variety of 4 and 5hd monsters, numerous, along with hard traps and the like that are going to make multiple forays in to plays a necessity. And then, of course, the factions may hit you back while you camp. Or that dragon may come by for a snack. (Ok, dragonne, close enough.) Wanderers, while tending to be generic desert encounters, are checked twice a day and twice at night … which may give enough time for some recovery.  While I usually prefer my wanderers with a little more life in them, somehow the generic desert stuff like pit vipers, dust storms and nomads, seems to work well in this environment. I think it’s the slower/longer playstyle with established party camps that can lead to better emergent play opportunities. I understand shorter self-contained adventures are the norm these days, but this shows one of the strengths of a longer game … and, in contrast, what you need to do in a shorter game in order to help recreate that emergent vibe the longer ones help foster naturally.

This thing is a mess, from a layout and writing viewpoint.

Read-aloud can be a quarter of page long, and in italics, leading to both usability issues for the DM and “another droning room description” for the players. It can be sprinkled with overly dramatic language like “you feel tiny, helpless, and uneasy, as if someone or something is watching you.” … which commits the sin of telling instead of showing. Ideally you want to write a description that makes the players think they are tiny, helpless and uneasy, instead of telling them they are … and “you” is almost never appropriate in read-aloud because of this. It further dips in to simulationist territory with a lot of exact dimension and detail in the read-aloud, instead of leaving that for the party themselves to discover and thereby contributing to tearing down that key game element: the interactivity between players and DM as they explore and discover. “Two open portals beckon in the north edifice.” *eyeroll*

It engages in that favorite device of the hard adventure: gimping the players. No divination spells, creatures turn as two levels higher, and so on. The party has earned their abilities and they should be able to use them as such. Figure out another way or accept that for every divination spell cast to gain an edge there is a fireball not being cast. It also engages in something more natural. The heat causes issues for fighters in full armor. “This module will be that much more enjoyable for the players if you enforce these armor penalties.” Well … not in my experience. I get it. It’s trying for a naturalistic nerf and there’s a little simulationst thing going on here also. But, simulationism is only good in as much as it helps with the suspension of disbelief. And while I’m generally supportive of these more natural ways to nerf a party (the wizards tower is on top of a 1000’ high tree, fly if you can …) I don’t think I have ever seen heat or cold handled in an adventure in a way that is both not cumbersome and fun. It has always come across as punishment for playing the adventure. And in a level 4-7 adventure that is already quite hard? It just seems grueling, the party are no demi-god levels of powerful yet. Fuck, they might not even have fireball.

It does also engage in some other questionable design decisions, like a sepia snake sigil. Well done, there’s a cobra drawing on the wall so its not a throw away, I still raise my eyebrows at anything that seems like it’s trying to use the rules to create a in-game effect, rube goldberg style. (That’s a normal noun now, right? I mean, you don’t have to use it like a proper name? xerox VS Xerox?) And, of course, the required “you can’t open the door until you defeat the monster nonsense. I can think of one random monster encounter in the desert, with vultures, in which if you kill a vulture you are cursed. Just out of the blue. Step on a crack and break your mothers back. If you’re going to do this sort of thing then you need some hints or some way to telegraph it, or make it a conscious choice. LOTS of vultures around, you’re starving, and you know that they are sacred to Old Asshole the Very Active God of Punishing People Who Fuck With His Sacred Animals. Otherwise, this is just an arbitrary negative consequence … again, punished for playing the game.

DM text is long and confused as well. There’s a mix of in-line stats and stat blocks. While I’m not religious about either, I do find that the inline stats in this adventure just make things all the harder to scan. It could be the formatting selected and/or fonts and bolding, parens, etc. It seems to break over multiple lines, three or so, which causes you to lose what’s going on in the room. Then there’s the embedded history and backstory of the room. One room with gnolls, states “Their previous employers were more interested in building a temple stronghold and magical gain; this group is seeking a greater financial reward, and will fight heartily to keep the little bit they’ve plundered and stolen . One of the gnolls has just recently been grabbed and eaten by the inhab- itant of 12.” Well, ok, that adds nothing to the encounter at all. But that sort of thing does make digging through a simple gnoll encounter in to a pain in the ass to scan. And while treasure gets a good treatment, it tends to be ALL treasure that gets this. Even coins. Like CP and SP. “each gnoll has pouches or folds holding …” and “that is valued at …” and tons of other padding that does nothing for the comprehension of the adventure. Nothing positive that is. Ug, and we get LONG empty room descriptions. Simulationist again, above playability. “If anyone ventures past the entrance with a light they will see …” Uh huh. Just describe the fucking room man. This turns a nice and interesting little jaunt through the desert around the walls of the city, filled with sinkholes, in to a painful affair you have to fight through in order to run it. 

A disturbing number of encounters, the vast majority I’d say, do something like “they will have just spotted the characters” or they surprise the characters. Or they are waiting for the characters or something like that. And this leads to the bigger picture.

This place is too complex with no help for the DM to figure it out. There are NO summaries of what’s going oin in these place. Order of battle is mixed in to room descriptions tens of encounters away. “Frank will gather his friends in #21 if he hears sounds of battle in room 2 and will respond by …” ARRGGG!! This goes in room 2, or up front as a general reference! You can’t fucking run someonething like this. In these hundreds of rooms bases/lairs/dungeons, you need a summary of what’s going on, where things are, how things might go and so on. Given the amount of padding, figuring it out for yourself is going to take a hard core week with a highlight and a fresh notebook. 

And, frankly, I’m not going to fucking do that. I’m not going to buy an adventure and then burn an absurd amount of prep time in order to run it. Sure, big adventures DO need some prep time. But not this much man. I like the maps, clean and interesting. The adventuring environment is at least as interesting as most adventures and more so generally. But the usability and evocative writing here is just terrible. Yes, evocative writing is hard, I will give you that. 

Still, I’m so close to giving this No Regerts. A real deal lost city adventure, an expedition that feels titanic and varied. But fuck, it needs a COMPLETE overhaul in its writings and presentation. 

This is $9 at DriveThru. It’s sold in a weird way, with the encounters in one PDF and you have to buy a separate product to get the maps and wanderer tables, appendices, etc. SO you HAVE to have both of them to run this. And yet they are sold as two separate products. LAME! And, the preview doesn’t work. *sigh*


Blah blah blah blah reviewing everything on my wishlist as a pretext to not actually write the main book blah blah blah balh

Categories: Tabletop Gaming Blogs

Wednesday Comics: DC, October 1980 (wk 1, pt 1)

Sorcerer's Skull - Wed, 07/07/2021 - 11:00
I'm reading DC Comics' output from January 1980 (cover date) to Crisis! This week, I'm looking at the comics at newsstands on the week of July 10, 1980. 

Batman #328: Wolfman takes over as writer, and his first story is a nice little mystery, marred only by the fact that it's a pretty obvious one. A killer taunts Batman with a video where he confesses his guilt. The problem is, he's already been tried and found not guilty, so there's no way he could be touched legally. Batman vows to bring him to justice somehow by discovering why he committed the murder in the first place and how he got away with it. Meanwhile, the killer is wooing Harvey Dent's ex, and the man he murdered was supposedly the killer of Dent's former assistant. Already, I'm suspicious about the killer's identity. When a frantic visit to Two-Face's former plastic surgeon leads to the killer committing another murder in anger...well, his identity is certain. And we've still got a part two to go! The backup story teams Wolfman with Newton, and reveals something of Gordon's early days on the police force and a little bit about the origins of the batcave (that it was part of an old subway line). Both of these things will be rendered "noncanon" post-Crisis.

DC Comics Presents #26: Wolfman and Starlin give us a team-up of Green Lantern and Superman. This is interesting because we get two DC big guns, which is rare for this title. Jordan responds to a distress call from another green lantern, but it's a trap by a rather second rate Starlin cosmic baddie (something like a b-grade Eon in design). The creature steals Jordan's form, but then Superman shows up and defeats it, though he needs Hal's help to deal with some Kryptonite. Still, Superman is pretty dismissive of the power of the creature and the Green Lanterns. He calls Jordan's ring a "little green trinket." Starlin's art here is not up to his usual standards and his round-faced Superman is off-model, but it's not a bad story--though the New Teen Titans preview that follows by Wolfman and Perez really outshines it in terms of visual storytelling and interest. It's really just a tease, though.
The backup of is "What Ever Happened to...Sargon the Sorcerer." It reminds me of the "continuity clean-up" stories Roy Thomas did in Solo Avengers/Avengers Spotlight, undoing things done by other creators or otherwise reseting a character. It does explain Sargon's recentish appearances as a baddie, but it feels like it was written just for that purpose.

Flash #290: As is not uncommon with these Bates/Heck stories, the reveal of why Fiona Webb, Barry Allen's neighbor, thinks he is trying to kill her is both sort of convoluted and not as interesting as the setup. It seems Webb saw a mob hit and has under gone some extreme form of witness protection courtesy of King Faraday, where her memories of her previous life as Beverly Lewis were suppressed. Not suppressed enough, apparently, because the guy she testified against looked like Barry Allen, so when a master of disguise hitman named Saber-Tooth (no relation) comes after her, she attributes the danger to Allen. This story does have an interesting bit where Flash as to enter a computer to make its circuits print out the punch card on Beverly Lewis because the computer has (as apparently have all in U.S. law enforcement) been programmed not to release that info. 
The backup story by Conway and Perez/Smith continues Firestorm's origin and recent history. There's not much to it beyond the recap.

Ghosts #93: I feel like this title is declining in quality, but maybe its just in a temporary slump. It probably doesn't help that a couple of the stories feel like reprints due to using Golden Age artists Charles Nicholas and Jack Sparling on the stories. Both of these stories were written by Carl Wessler, whose work also dates back to the Golden Age. The first is about a boy and his ghostly grandfather teaming up to use a toy train and sympathetic magic to save his father from death on a sabotaged train track. The second is about a sadistic prisoner guard who takes a job at an old mental asylum only to find all the patients are ghosts. Only marginally better is the David Allikas/Tom Mandrake story about a fraternity hazing incident leading to a death and a plan to make the instigator of that death confess by means of a fake ghost ploy that turns out not to be fake! Wessler is back a third time with Henson for "The Flaming Phantoms of Frightmare Alley." The story is a confusing and ultimately pointless tale of a reporter that falls in love with a ghost then becomes a ghost himself in a car crash and the bystander that relates the story. It in no way lives up to its title.

G.I. Combat #222: We have the usual 3 Haunted Tank stories from Kanigher and Glanzman. "For Sale: 1 Tank Crew" sees our heroes at the mercy of black marketeers in occupied France who in the end have a change of heart. "God of Steel" has Bedouin raiders trying to use the tank and crew to take out a fort--which they are happy to oblige with when they find out its occupied by Germans. "Cold Meat--Hot War" has the Haunted Tank improbably plunging into the sewers after been blocked in by Drachenzähne and German artillery. Kanigher is always inventive and Glanzman's art is on point, but I'm just not much of a Haunted Tank fan. 
The other stories are a bit better, though none are really outstanding. "Angels--of Death" by Jan Laurie and Alfredo Falugi has a group of Pacific Theater nurses pitching in to launch a torpedo on a beleaguered sub. Boltinoff and Catan shift the action to Korea and have a group of Marines allowing themselves to get frozen in a river so they can use the ice as cover for a surprise attack. Despite the unlikely premise it's probably the best story of the issue. Control coldly sends a couple of trapeze artists on a suicide mission in the O.S.S. installment "Death is an Old Friend" by Kanigher and Cruz.

Jonah Hex #41: Again Fleischer's story has a TV Western morality play feel. Hex brings in the Jody Randolph gang and they're to wait in jail for the arrival of "Hanging Harrow" the local judge. The judge turns out to be a woman who feels she has to be stern in the enforcement of the law to prove yourself qualified for her position. Her real challenge at this point, though, is from her son Rodney who is smitten with a saloon girl, Vanessa. Ostensibly to get money for diamond earrings, Vanessa enlists Rodney in a plan to free the Randolph Gang for $10,000, but it's a set-up: Vanessa is actually the girl of Jody Randolph. Rodney accidentally kills a deputy in the jailbreak and so is forced to stay with the gang even when the truth is revealed. Hex shows up to kill the Randolph gang and apprehend Vanessa and Rodney. Judge Harrow presides over their trial, showing her usual lack of mercy even for her son. Hex rides out of town as Vanessa and Rodney swing from the gallows. Ayers is inked by De Zuniga here so that its hard to see much Ayers in it.
In the Scalphunter backup, man who tried to kill Scalphunter last issue is revealed to be a college professor interested in excavating a burial mound or "ghost hill" as Scalphunter calls it. His assistants proved unscrupulous and tried to kill him once they found valuable grave goods. Scalphunter is none too happy with the mound excavation, but helps the professor stop the thieves--but perhaps ultimately they are slain by the ghosts of the mound, as the ending is ambiguous. Conway's story here feels padded as last issue turns out largely to be filler.

Hunter I Published by Warren Publishing Adapted for The Astonishing Swordsmen & Sorcerers of Hyperborea rpg

Swords & Stitchery - Wed, 07/07/2021 - 04:38
"In a dystopic future, following a nightmarish war between the human race and a race of radiation-spawned mutants, human/mutant hybrid Demian Hunter stalks the remaining mutants left on Earth, determined to eradicate every last one of them...no matter what the cost to himself--or to the world. " Damian Hunter was created in Eerie #52 (November 1973), the character is a tortured half breed mutant Needleshttp://www.blogger.com/profile/11243274667834930867noreply@blogger.com0
Categories: Tabletop Gaming Blogs

The Loop Scoop #17: A Yarny Link Party!

Moogly - Wed, 07/07/2021 - 01:00

Loop Scoop #17 is so much fun! Craft something pretty for your home, for you, and for your friends with this fab set of free crochet patterns! And don’t forget to check out the new additions and links at the bottom as well, to help us decide what gets featured next round! What is The...

Read More

The post The Loop Scoop #17: A Yarny Link Party! appeared first on moogly. Please visit www.mooglyblog.com for this post. If you are viewing this on another site they have scraped the content from my website without permission. Thank you for your support.

Categories: Crochet Life

Kaseya CEO: “The impact of this incredibly sophisticated attack is very minimal”

Malwarebytes - Tue, 07/06/2021 - 21:21

The official YouTube channel of Kaseya, the latest organization attacked by no less than the criminals behind REvil ransomware, released a video of Fred Voccola, Kaseya’s CEO, giving a first-hand account of what happened during the attack, the facts on affected customers, and the next steps they’re taking to get clients back up and running as quickly as possible.

On Friday afternoon, the 2nd of June, Kaseya started receiving reports of “suspicious things happening,” Voccola said in the video.

“We weren’t quite sure exactly what it was, but as third parties, the community, our own monitoring customers, we started noticing some strange behaviors,” Voccola recounted in the video. “Within an hour, we immediately shut down VSA.”

The service shut down has painfully disrupted all their VSA users, but it was an easy decision to make and not without basis, Voccola said. “Our cybersecurity playbook states very clearly [that] the first thing to do is to protect and make sure anything that’s potentially dangerous doesn’t have a chance to harm multiple parties,” Voccola said.

Voccola said that, in part due to the modular nature of Kaseya’s security architecture, the company’s rapid response team—with extensive support from Homeland Security, the FBI, and the White House—managed to contain the breach to one module of IT Complete, Kaseya’s remote monitoring and management (RMM) module. The attack affected just one module of IT Complete out of the 27 modules.

That module includes approximately 50 of its approximately 37,000 customers, Voccola said. Kaseya’s customers are primarily managed service providers (MSPs), who outsource IT services to approximately 800,000 to a 1,000,000 SMBs around the world. Kaseya believes that those SMBs directly affected by the REvil ransomware attack are between 800 to 1,500 in number.

As for what Kaseya is doing now to get the affected RMM module back up and running, Voccola gave the “incredibly conservative” timeline of “in the coming hours” today, the 6th of July. (Update: as of 8:45 am on July 7, that update still has not taken place.)

If you’re a Kaseya client, you can get first-hand updates on the VSA incident here.

Voccola also directly addressed the 50 customers who were breached: “We hope this message does not sound like we’re diminishing it by saying less than 0.01 percent of our customers were breached… We are here to help.”

Kaseya’s CEO also imparted some advice for other organizations.

“When something happens, it’s how prepared the organization was, how quickly the organization is to admit something happened,” Voccola said. “Seek help from people and try to get focus on the customers and get information out there.”

The post Kaseya CEO: “The impact of this incredibly sophisticated attack is very minimal” appeared first on Malwarebytes Labs.

Categories: Techie Feeds


Subscribe to Furiously Eclectic People aggregator