Saturday, September 24, 2022

BAD MATH, BAD POLITICS

 It's a long story 



Science Be Dammed | UAPress - University of Arizona

uapress.arizona.edu › book › science-be-...
Science Be Dammed is an alarming reminder of the high stakes in the management—and perils in the mismanagement—of water in the western United States.
Aug 17, 2021 · Science Be Dammed is an alarming reminder of the high stakes in the management—and perils in the mismanagement—of water in the western ...
Publisher: University of Arizona Press
Publication Date: August 17th, 2021 
 
VIDEOS 

✓ 



"Science Be Dammed is an alarming reminder of the high stakes in the management--and perils in the mismanagement--of water in the western United States. It seems deceptively simple: even when clear evidence was available that the Colorado River could not sustain ambitious dreaming and planning by decision-makers throughout the twentieth century, river planners and political operatives irresponsibly made the least sustainable and most dangerous long-term decisions.

Arguing that the science of the early twentieth century can shed new light on the mistakes at the heart of the over-allocation of the Colorado River, authors Eric Kuhn and John Fleck delve into rarely reported early studies, showing that scientists warned as early as the 1920s that there was not enough water for the farms and cities boosters wanted to build. Contrary to a common myth that the authors of the Colorado River Compact did the best they could with limited information, Kuhn and Fleck show that development boosters selectively chose the information needed to support their dreams, ignoring inconvenient science that suggested a more cautious approach.


Today water managers are struggling to come to terms with the mistakes of the past. Focused on both science and policy, Kuhn and Fleck unravel the tangled web that has constructed the current crisis. With key decisions being made now, including negotiations for rules governing how the Colorado River water will be used after 2026, Science Be Dammed offers a clear-eyed path forward by looking back.

Understanding how mistakes were made is crucial to understanding our contemporary problems. Science Be Dammed offers important lessons in the age of climate change about the necessity of seeking out the best science to support the decisions we make." 


www.vox.com

How a 100-year-old miscalculation drained the Colorado River

Benji Jones@BenjiSJones
14 - 17 minutes

John Fleck, writer-in-residence at the University of New Mexico’s Utton Center and co-author of the 2021 book Science Be Dammed: How Ignoring Inconvenient Science Drained the Colorado River.
Karl Flessa 

"By now, you may have heard that the Colorado River is drying up.

The river’s flow is down by about 20 percent, compared to the 1900s, and the two largest reservoirs it feeds are less than a third full. The water in Lake Mead, the nation’s biggest reservoir, has dropped more than 150 feet in the last two decades, leaving little water for the more than 40 million people who depend on the river. . .

 ". . .Ignoring the best science of the time, officials claimed the river could provide about 20 million acre-feet per year (an acre-foot is the amount of water needed to fill an acre with one foot of water), according to the 2021 book Science Be Dammed: How Ignoring Inconvenient Science Drained the Colorado River. That number was way too high, the authors write, meaning that officials promised states water that simply didn’t exist.

They had conjured up a larger Colorado River than nature could actually provide,” wrote authors Eric Kuhn, a retired water official, and John Fleck, a writer and former director of the University of New Mexico’s Water Resources Program. “The twenty-first century’s problems on the river are the inevitable result of critical decisions made by water managers and politicians who ignored the science available at the time.”

I spoke to co-author John Fleck about how officials in the past miscalculated so badly, and where we go now.. .

Benji Jones

Why was it so inconvenient to be realistic about the amount of water in the river?

John Fleck

The promise of a lot of water made the political deal-making easier. You could divide up the river and say to each of the seven states: “You want to irrigate a whole bunch of acres? Plenty for you. You want to pump a bunch of water across the desert of California? Plenty for you.” You didn’t have to have hard conversations about what life under limitation was going to be like.

Benji Jones

How big was the difference between what LaRue measured and what the negotiators ultimately used to divvy up the river’s water in the 1922 Colorado River Compact?

John Fleck

Negotiators believed — and negotiated a deal that said — there was as much as 20 million acre-feet flowing from the river each year. LaRue’s estimate was closer to 15 million. Today, we know it’s 12 million. But that’s the climate change world. It was a big gap.

Benji Jones

Is that gap ultimately why we’re in this position today? Basically, 100 years ago, regulators over-allocated water of the Colorado River, based on faulty numbers?

John Fleck

Yes. You have communities across the West who made good-faith decisions to build cities, farms, canals, and dams based on what they thought was a promise of water. They were told that there was enough water. That turns out to have been bogus.✓ 

. . .The difficulty is at the political interface. It is difficult for a hypothetical governor to go before their voters and provide them with bad news about water. What a governor really needs to say is: “We have a lot less water, we have to change.”

[The 100-year-old Colorado River Compact, wrong numbers and all, is still the primary agreement upon which management of the Colorado River is based.] 

READ MORE

RELATED CONTENT

FREE WEBINAR: Science Be Dammed - American Water Resources Association

www.awra.org › AWRA › 2020_Webinars
Eric Kuhn is the retired General Manager of the Colorado River Water Conservation District and co-author with John Fleck of Science Be Dammed: How Ignoring

at No comments:

BLEEPING: Batches of Files, Filters, Bug Exploitations...The usual routine you know by now

 Whew! Weehh!! Another week that wazzz

www.bleepingcomputer.com

The Week in Ransomware - September 23rd 2022 - LockBit leak

Lawrence Abrams
9 - 11 minutes

Man saying oops in a red background

This week we saw some embarrassment for the LockBit ransomware operation when their programmer leaked a ransomware builder for the LockBit 3.0 encryptor.

Running the ransomware builder is simple and quickly creates an encryptor, private/public encryption keys, and a decryptor by just running a batch file.

The LockBit 3.0 ransomware builder makes it easy for any would-be threat actor to roll out their own operation simply by modifying the enclosed configuration file to use custom ransom notes.

Ransomware operations were launched in the past from the leaks of the Babuk ransomware builder and Conti source code.

Other research this week shows how the BlackMatter ransomware gang continues to evolve its operation by upgrading its data exfiltration tool for double-extortion attacks.

This week, we also learned more about ransomware attacks, including those on the New York Racing Association and a New York ambulance service.

Contributors and those who provided new ransomware information and stories this week include: @struppigel, @DanielGallagher, @demonslay335, @malwrhunterteam, @Seifreed, @malwareforme, @fwosar, @BleepinComputer, @FourOctets, @billtoulas, @jorntvdw, @PolarToffee, @Ionut_Ilascu, @VK_Intel, @LawrenceAbrams, @serghei, @S2W_Official, @GeeksCyber, @BroadcomSW, @pcrisk, @3xp0rtblog, @vxunderground, @PogoWasRight, @AhnLab_SecuInfo, and @zscaler.

September 17th 2022

New York ambulance service discloses data breach after ransomware attack

Empress EMS (Emergency Medical Services), a New York-based emergency response and ambulance service provider, has disclosed a data breach that exposed customer information.

September 19th 2022

New STOP Ransomware variants

PCrisk found new STOP ransomware variants that append the .aawt, .aabn, .aamv, and .aayu extension.

New Phobos variant

PCrisk found a new Phobos ransomware variant that appends the .duck extension and drops a ransom note named info.txt and info.hta.

New VoidCrypt variant

PCrisk found a new VoidCrypt ransomware variant that appends the .Joker extension and drops a ransom note named Decryption-Guide.txt and Decryption-Guide.HTA.

New VSOP variant

PCrisk found a new VSOP ransomware variant that appends the .minex extension and drops a ransom note named readme.txt.

September 20th 2022

Hive ransomware claims attack on New York Racing Association

The Hive ransomware operation claimed responsibility for an attack on the New York Racing Association (NYRA), which previously disclosed that a cyber attack on June 30, 2022, impacted IT operations and website availability and compromised member data.

New BlackBit ransomware

PCrisk found a ransomware called BlackBit that appends the .BlackBit extension and drops a ransom notes named Restore-My-Files.txt and info.hta.

September 21st 2022

LockBit ransomware builder leaked online by “angry developer”

The LockBit ransomware operation has suffered a breach, with an allegedly disgruntled developer leaking the builder for the gang's newest encryptor.

Technical Analysis of Crytox Ransomware

The threat actor using Crytox ransomware has been active since at least 2020, but has received significantly less attention than many other ransomware families. In September 2021, the Netherlands-based company RTL publicly acknowledged that they were compromised by the threat actor. The company paid Crytox 8,500 euros. Compared with current ransom demands, this amount is relatively low. Unlike most ransomware groups, the Crytox threat actor does not perform double extortion attacks where data is both encrypted and held for ransom.

September 22nd 2022

BlackCat ransomware’s data exfiltration tool gets an upgrade

The BlackCat ransomware (aka ALPHV) isn't showing any signs of slowing down, and the latest example of its evolution is a new version of the gang's data exfiltration tool used for double-extortion attacks.

Quick Overview of Leaked LockBit 3.0 (Black) builder program

Build.bat creates an RSA public/private key pair by executing Keygen.exe, and Builder.exe that generates a LockBit 3.0 ransomware using the generated key pair.

A technical analysis of the leaked LockBit 3.0 builder

This is our analysis of the LockBit 3.0 builder that was leaked online on September 21, 2022.

Ransomware disguised as GTA 6 source code

MalwareHunterTeam found a few ransomware samples pretending to be GTA 6 source code.

Ransomware disguised as GTA 6 source code

New Zeppelin variant

PCrisk found a new Zeppelin ransomware variant that appends the .ORCA extension and drops the HOW_TO_RECOVER_DATA.hta ransom note.

September 23rd 2022

New STOP Ransomware variants

PCrisk found new STOP ransomware variants that append the .ofoq, .ofww, and .oflg extension.

FARGO Ransomware (Mallox) Being Distributed to Vulnerable MS-SQL Servers

The ASEC analysis team is constantly monitoring malware distributed to vulnerable MS-SQL servers. The analysis team has recently discovered the distribution of FARGO ransomware that is targeting vulnerable MS-SQL servers. Along with GlobeImposter, FARGO is one of the prominent ransomware that targets vulnerable MS-SQL servers. In the past, it was also called the Mallox because it used the file extension .mallox.

That's it for this week! Hope everyone has a nice weekend!!

✓✓ This is a developing story ...

www.bleepingcomputer.com

YouTube down: Live streams hit by worldwide outage

Sergiu Gatlan
5 - 7 minutes

YouTube

YouTube is currently experiencing a worldwide outage, with thousands of reports saying they cannot access live streams.

While the company has yet to acknowledge the issue, user reports shared on DownDetector show that most of those affected by this ongoing outage have problems with video streaming and accessing the YouTube website.

When attempting to access YouTube streams, users see black screens with a loading animation and error messages asking to "please try again later."  

. . .

Internet monitoring organization NetBlocks also confirmed that YouTube is experiencing a global outage that impacts live streams.

NetBlocks added that this incident is unrelated to "country-level internet disruptions or filtering."

Note: YouTube is experiencing international outages with live streams impacted; incident not related to country-level internet disruptions or filtering #YouTubeDown pic.twitter.com/Jay24MxBlL

— NetBlocks (@netblocks) September 23, 2022

It is unknown at the moment if this is planned maintenance activity, a problem with YouTube's servers, or if the outage is related to malicious activity."

Related Articles:

New malware bundle self-spreads through YouTube gaming videos

Zoom outage left users unable to sign in or join meetings

Microsoft Azure outage knocks Ubuntu VMs offline after buggy update

Microsoft 365 outage triggered by Meraki firewall false positive

UK NHS suffers outage after cyberattack on managed service provider

READ MORE

TOP ARTICLE This is a developing story and will be updated as more information is revealed.


www.bleepingcomputer.com

UK Police arrests teen believed to be behind Uber, Rockstar hacks

Lawrence Abrams
8 - 9 minutes

Person under arrest

The City of London police announced on Twitter today the arrest of a British 17-year-old teen suspected of being involved in recent cyberattacks.

In a short tweet shared by law enforcement, the teen was arrested in Oxfordshire as part of a hacking investigation supported by the UK's National Crime Agency.

"On the evening of Thursday 22 September 2022, the City of London Police arrested a 17-year-old in Oxfordshire on suspicion of hacking, as part of an investigation supported by the @NCA_UK’s National Cyber Crime Unit (NCCU).

He remains in police custody" - City of London Police.

BleepingComputer has reached out to the NCA and City of London police to learn more about this investigation.

NCA referred us to the City of London, stating it was their investigation, while the latter said they have no further information to share and any new information that would be posted on Twitter.

✓✓ BleepingComputer also reached out to the FBI regarding the suspect’s possible involvement in the Uber attack but has not immediately received a response. . . 

Journalist Matthew Keys says that it was a 17-year-old boy who was arrested over the hack of Rockstar, and likely Uber.

UPDATE: Arrest of 17-year-old by police in the United Kingdom over hack of Rockstar and possibly Uber was done in concert with an investigation conducted by the FBI, according to a source with knowledge of the matter.

— Matthew Keys (@MatthewKeysLive) September 23, 2022

However, as the suspect is a minor, their name cannot be released by law enforcement under UK law."

 

LATEST ARTICLES

  • Sophos
    Security

    Sophos warns of new firewall RCE bug exploited in attacks

    Sophos warned today that a critical code injection security vulnerability in the company's Firewall product is being exploited in the wild.

  • NPM
    Security

    npm packages used by crypto exchanges compromised

    Multiple npm packages published by the crypto exchange, dYdX, and used by at least 44 cryptocurrency projects, appear to have been compromised. Powered by the Ethereum blockchain, dydX is a decentralized exchange platform offering perpetual trading options for over 35 popular cryptocurrencies including Bitcoin (BTC) and Ether (ETH).

  • Signal
    Security, Technology

    Signal calls on users to run proxies for bypassing Iran blocks

    Signal is urging its global community to help people in Iran stay connected with each other and the rest of the world by volunteering proxies to bypass the aggressive restrictions imposed by the Iranian regime.


    • at No comments:

    Friday, September 23, 2022

    Home-Grown Cartoons + Imported Reporting Talent from The Midwest

     Just one to whet your funny bone from -and then one more!

    ABOUT US

    Amplifying the voices of Arizonans whose stories are unheard; shining a light on the relationships between people, power and policy; and holding public officials to account. 



    ✓  Fontes accused his opponent of playing politics instead of respecting the will of the voters, while Finchem accused Fontes of making up election law, repeatedly referencing an opinion piece by Laurie Roberts of the Arizona Republic. In the column, she accused Fontes of making up election law in March 2020, when he decided to mail ballots to all registered Democrats who had not yet voted in the presidential primary, amid the start of the COVID-19 pandemic. A court ultimately blocked him.

    www.azmirror.com

    Mark Finchem's fealty to the 'Big Lie' was center stage in debate with Adrian Fontes

    By: Caitlin Sievers - September 23, 2022 6:00 am 
     
    Caitlin Sievers
    Caitlin Sievers

    Caitlin joined the Arizona Mirror in 2022 with almost 10 years of experience as a reporter and editor, holding local government leaders accountable from newsrooms across the West and Midwest. She's won statewide awards in Nebraska, Indiana and Wisconsin for reporting, photography and commentary.

    MORE FROM AUTHOR

    6 - 7 minutes

    Mark Finchem, the Republican candidate for secretary of state who has built his campaign on baseless claims the 2020 election was marred by fraud, continually dodged questions and spouted conspiracy theories in a televised debate Thursday night. 

    His Democratic opponent, Adrian Fontes, said voters will have to make the choice between “laws and lies.” 

    Fontes, a former Maricopa County recorder who lost his re-election bid in 2020, framed November’s election as a referendum on democracy. 

    “Democracy is a decision, and as you’ve seen tonight, that decision could be no more clear,” Fontes said. “You can decide between community building and stability or conspiracy theories and cantankerousness.” 

    READ MORE  | 




    at No comments:

    Why I Love Crazy AriZona: "Honest Abe" Hamadeh, GOP candidate for Attorney General


    Intro: "...Hamadeh has made the Big Lie central to his campaign, pushing the lie that the 2020 election was stolen from Trump and saying that he would not have certified the 2020 election, despite no credible evidence of fraud that affected the results.

    And he isn’t the only candidate who has worked with fake electors: Republican U.S. Senate candidate Blake Masters has hired two fake electors, according to his campaign finance reports


    Abe Hamadeh took a donation from a fake elector, then gave him a leadership role

    By: - September 22, 2022 7:12 am

    Michael Ward joined his wife, Kelli Ward, at a primary election night watch party in Scottsdale in 2016. Both were fake Trump electors in 2020 and are facing subpoenas from the U.S. Department of Justice, and Michael has a leadership role in GOP attorney general candidate Abe Hamadeh's campaign. Photo by Gage Skidmore | Wikimedia Commons/CC BY-SA 2.0

    Republican candidate for Attorney General Abe Hamadeh accepted a $1,000 donation from a fake elector and then three months later appointed the elector to a position within his campaign


     

    Dr. Michael Ward, the husband of Arizona Republican Party chairwoman Kelli Ward, was one of 11 people who signed a bogus document in December 2020 claiming former President Donald Trump won Arizona’s Electoral College votes in the 2020 election.


    The fraudulent elector document was organized by the Arizona Republican Party on behalf of Trump’s campaign, which encouraged similar efforts in other battleground states that Trump lost, as part of a plan to let congressional Republicans reject Joe Biden’s win and install Trump for a second term. . .


    A to Z

    Abe Hamadeh took a donation from a fake elector, then gave him a leadership role

    By: - September 22, 2022 7:12 am

    Michael Ward joined his wife, Kelli Ward, at a primary election night watch party in Scottsdale in 2016. Both were fake Trump electors in 2020 and are facing subpoenas from the U.S. Department of Justice, and Michael has a leadership role in GOP attorney general candidate Abe Hamadeh's campaign. Photo by Gage Skidmore | Wikimedia Commons/CC BY-SA 2.0

    Republican candidate for Attorney General Abe Hamadeh accepted a $1,000 donation from a fake elector and then three months later appointed the elector to a position within his campaign

    Dr. Michael Ward, the husband of Arizona Republican Party chairwoman Kelli Ward, was one of 11 people who signed a bogus document in December 2020 claiming former President Donald Trump won Arizona’s Electoral College votes in the 2020 election.


    The fraudulent elector document was organized by the Arizona Republican Party on behalf of Trump’s campaign, which encouraged similar efforts in other battleground states that Trump lost, as part of a plan to let congressional Republicans reject Joe Biden’s win and install Trump for a second term. 

    GET THE MORNING HEADLINES DELIVERED TO YOUR INBOX


    In June, Ward donated     $1,000 to Hamadeh’s campaign. About three weeks later, the U.S. Department of Justice issued subpoenas to both Wards relating to the fake elector scheme

    Exactly three months after Ward made his contribution, the campaign announced on Twitter the formation of a Veteran’s Advisory Team to help guide Hamadeh’s campaign on veterans’ issues. Ward was one of the seven members.

     
     . . .Hamadeh’s campaign did not respond to requests for comment about Ward’s involvement with the campaign, if his contribution had any impact and their thoughts on Ward’s conspiratorial beliefs regarding the election and others. Hamadeh’s campaign website also touts an endorsement from Ward. 

    Ward is a known purveyor of Trump’s “Big Lie” and other conspiracy theories, many involving former President Bill Clinton and his wife, Hillary Clinton. . ." 

    READ MORE 

    VIDEOS

    at No comments:
    Subscribe to: Comments (Atom)