iain.davidson100 has added a photo to the pool:

OLYMPUS DIGITAL CAMERA

Donkere wolken trokken donderdagmiddag over het Kansas City Stadium, uren voor de aftrap van Nederland tegen Tunesië.

Beastie Boys

Vanillasludge posted a photo:

Sakata

Vanillasludge posted a photo:

Joetsu

Vanillasludge has added a photo to the pool:

Joetsu

Sí, se puede – yes, we can – was the chant that rang out from the sea of 55,000 yellow shirts as Ecuador’s final group match kicked off.

Despite a flat start to their World Cup campaign, there was a genuine belief that an upset against a full-strength Germany was possible. They had no other choice: having been shut out by Eloy Room’s heroics for Curaçao, Sebastián Beccacece’s side had to win to progress. Gonzalo Plata’s 77th-minute strike sparked wild and emotional celebrations, assuring their place in the last 32 as a best third-placed team – and a first knockout match since 2006.

Continue reading...

International Maritime Organization says safety guarantees must be confirmed before ships can move again

A United Nations agency has paused the evacuation of ships through the strait of Hormuz after the British military said a vessel was hit by a projectile off the coast of Oman following the passage of several tankers that used a route backed by the UN.

The head of the UN’s International Maritime Organization said on Thursday that the plan to move stranded ships out of the Persian Gulf through the strait would be on hold until the agency could confirm safety guarantees for the ships on the evacuation list and in the region.

Continue reading...

Côte d’Ivoire surviving the World Cup group stage for the first time, in the year of our football gods 2026, is one of those tidbits that sounds like it should not be true, and yet here we are.

An underwhelming 2-0 victory, courtesy of Nicolas Pépé’s double, put the Ivorians through to the last 32 as group runners-up. But it was an imprecise contest here in Philadelphia, the cradle of American democracy – such as it is. All the same, a spirited Curaçao leave their first World Cup.

Continue reading...

A new self-destructing backdoor called Mistic used in intrusions since April appears to be linked to a criminal gang that compromises corporate networks and then sells that access to ransomware groups, according to security researchers. This backdoor, also tracked as MLTBackdoor, was first documented by Zscaler earlier this month, with the security shop suggesting the novel malware is “likely used in ransomware attacks to establish a foothold for lateral movement.” In a Wednesday threat brief, Symantec and Carbon Black threat hunters say the backdoor has been used to access multiple organizations' networks over the past few months, including those in insurance, education, IT, and professional services. Additionally, the security sleuths reported, “Mistic may be linked to the financially motivated initial access broker (IAB) tracked publicly as KongTuke (which we track as Woodgnat) and it was used in one intrusion that also involved the group's ModeloRAT remote access trojan.” KongTuke and other IABs don’t deliver the final payload – such as ransomware – to compromised companies. Rather, they break into company systems, and then sell that foothold to other criminals, like ransomware gangs. Symantec and Carbon Black arrived at their low-confidence attribution after at least one case where Mistic was deployed in close proximity to ModeloRAT, the Python-based remote access trojan KongTuke also developed. KongTuke has previously been linked to attacks from various ransomware crews including Qilin, Interlock, Rhysida, Akira, 8Base, and Black Basta. “Our Threat Hunter Team has separately observed ModeloRAT used in attacks that deployed Qilin ransomware, linking this tool to ransomware deployment,” Symantec and Carbon Black noted. Plus, Zscaler reported Mistic being delivered in a multi-stage ClickFix infection chain, which is another pointer to KongTuke, as the group is known to use that initial access technique. In one case that Symantec and Carbon Black responded to, Mistic was side-loaded through a legitimate file, MpExtMs.exe, and then loaded from a DLL named EndpointDlp.dll, which likely helped the backdoor blend in with legitimate software. Mistic has all the usual backdoor functionality: It can upload, download, move, rename, and delete files. It can also create new folders, and check for additional commands from the attacker-controlled command-and-control (C2) server. But here’s the stealthy part: it can run remote payloads from C2 directly in memory – so it doesn’t write malicious files to the hard drive – which helps it dodge file-based detection in antivirus and endpoint detection products. When the mission is accomplished, it then terminates and deletes itself. “The fact that Mistic executes in memory and also has a kill switch built in means that it is very stealthy, potentially allowing for long-term, stealthy access for attackers,” the threat hunters wrote. ®