What is 'twee' and why is TikTok debating its return?

What is 'twee' and why is TikTok debating its return?

In 2021, TikTok unseated Google as the most popular domain on the Internet, and now it's looking like it'll take over Instagram as the ultimate home for fashion influencers. 

With one of the largest audiences on the planet, TikTok is responsible for the rise and fall of many a trend. When TikTok speaks, people listen. Lately, however, TikTok fashionistas have been divided over the potential resurgence of a very specific and iconic trend: twee. 

@flashesofstyle How are we feeling about this resurgence? Idk yet 😅 #twee#tweestyle#tweefashion#fypシ#fyp♬ Why Do You Let Me Stay Here? - She & Him

Even if you're unfamiliar with the word, you'll likely recognize the look. Think early 2013 ModCloth aesthetic -- swooping bangs, Peter Pan collars, cutesy cardigans, skater skirts with patterned tights, red lipstick, ukuleles and typewriters. 

Essentially, look at almost any image of Zooey Deschanel circa 2011-2014 to be smacked in the face with twee, or hipster fashion. It was an incredibly popular aesthetic, especially among the Tumblr crowd.

@steffydegref It's back, and I've been waiting forever. #twee#indie#indiesleaze#tumblr♬ Why Do You Let Me Stay Here? - She & Him

On the one hand, some users are adamant that the trend is returning, warning fashion followers to ready their ballet flats and berets. Others, however, are dismissing it as the latest in a line of TikTok algorithm bubbles destined to burn itself out on speculation and drama. 

Regardless of whether it's back, though, it's already facing backlash. So why is an aesthetic causing so much division? 

Here's the thing: It's not really about fashion at all. When you boil it down, the underlying issues of the debate aren't based on clothing choices. They're based on deceptive algorithms, negative online behavior and the fear of a cyclical internet. 

The TikTok bubble effect

TikTok's algorithm is designed to know you better than you know yourself. It serves you endless customized videos that pay attention to your interactions, all to ensure you see the exact content you'll enjoy most. 

But the funny thing about humans is that we actually have a very poor understanding of scale and relevance outside of our own bubbles. So, if you're getting inundated with a particular sound or trend on TikTok, your brain will likely think that it's a much bigger deal than it is. 

Despite not having that many actual videos comparatively -- just under 7,000 for the main TikTok sound -- the twee revival debate is causing real-world trend forecasters to pay attention. Why? Because, as was the case when TikTok witches caused a real-world fuss by "hexing the moon," even microcosms and pockets of the internet have the capacity to create great social influence and change. 

What's so scary about twee?

The initial wave of twee came at a time when Tumblr popularity was paramount -- the more reblogs you had on a cutesy photo with a poetic caption, the more indie and iconic you were. It was an attitude as much as a fashion movement, similar to what we'd now call hipsters.

Unfortunately, however, it also came with some deeply concerning attitudes toward body types and elitism.

@wannabehayleywilliams We still have time, audio still has less than 550 videos under it. #tumblr#2014tumblr#aesthetic#twee♬ Why Do You Let Me Stay Here? - She & Him

Between 2011 and 2014, Tumblr had itself a serious eating disorder and self harm problem, with countless blogs devoted to promoting and striving for anorexia and "thinspiration." Coinciding with the peak of twee popularity, the aesthetic went hand-in-hand with harmful "thinspo" propaganda – anyone who wasn't thin enough wasn't considered "twee" so much as "frumpy." It was elitist and dangerous.

As a result, the lingering perception of twee and indie sleaze for people who were on Tumblr in those days is often one of perilously thin legs clad in tights or sepia-toned cardigans covering self-harm scars.

We've learned a lot since the Tumblr days. We grew out of the mustache trend, we learned that Tom was the real villain in classic twee film (500) Days of Summer, but the Internet hasn't fully caught up with body neutrality and progress. 

To this day, social media sites struggle to keep a lid on pro-anorexia content, with Instagram coming under fire for its failure to protect teens from that sort of content as recently as last month.

With TikTok already having faced similar issues, people noticing the resurgence of twee are concerned that, while we may dust off the cardigans and tights, we haven't come far enough to leave the harmful attitudes behind. 

@rebxtat Maybe sharing a hot take whilst cleaning out my fish tank x #twee♬ Why Do You Let Me Stay Here? - She & Him

@vonmunster i looked like this and listened to chelsea grin #twee#indie#tumblr♬ Why Do You Let Me Stay Here? - She & Him

Do we need to worry about this?

As is so often the case online, the discourse surrounding the twee debate is bigger than the debate itself. What started as a simple trend revival has grown legs in part due to the attention that naysayers have brought upon it.

But as for whether we should be worried, it really comes down to how much faith people have in their own capacity to regulate content and how much they trust social media to keep the dangerous ideas at bay. 

The concern is that if the negative associations with twee come back alongside the trend, there could be microcosms and TikTok algorithm bubbles circulating the same dangerous ideas and mentalities that caused such uproar on Tumblr. 

In an article from The Guardian, it's suggested that TikTok could actually end up being more dangerous because of the demographic of its users. It's not hard to circumnavigate word restrictions -- we've already seen users get around TikTok censorship with intentional spelling mistakes -- and with so many young users it's a concern.

Sure, there may not be that many videos about it now, but for the people who live within that bubble, it feels big, and the power of teenage girl influence shouldn't be underestimated. 

Let's just remember for a moment that nobody is arguing the merits of the actual clothes, though I'm sure nobody wants twee revival to venture into mustache-core again. Nobody is scared of a plaid skirt and tights combo. 

But given the damage that the wider twee-thinspo Tumblr pairing did in the early 2010s, it's little wonder people are apprehensive.

---

Source

Tags:

• Is Tiktok Is Social Media
• Do Well On Tiktok Or Twitter
• Is Tiktok Down Twitter
• Tiktok Worse Than Twitter
• Difference Between Twitter And Tiktok
• Why Is Tik Tok So Controversial
• Twee Whatsapp Accounts Op 1 Pc
• What Is Two And Five
• What Is Two And A Half Hours From Now
• What Is Rsv
• What Is Monkeypox

Who can get monkeypox vaccine can i get a monkeypox vaccine the one who needs you here s who i am camp here s how here s hopin instrumental here sdk here string powershell

Here's Who Needs a Monkeypox Vaccine, and What We Know About It

Here's Who Needs a Monkeypox Vaccine, and What We Know About It

What's happening

The monkeypox vaccine is available to people at higher risk of getting the disease, but supply has been limited. To stretch out more doses, the US is starting to administer the vaccine in a slightly different way that requires a smaller dose.

Why it matters

Vaccination is an important tool to slow the monkeypox outbreak happening in the US and other countries. Access to vaccines is crucial for people most at risk.

What it means for you

Some men who have sex with men are eligible for the vaccine, as are other people who may've been exposed to monkeypox.

The vaccine Jynneos is being given out a little differently now in some places. If you're eligible for a monkeypox vaccine, you might be getting a shot under a top layer of skin, instead of deeper into your arm. That's because the US Food and Drug Administration authorized intradermal injection for the monkeypox vaccine this month, which is an effort to increase the US supply of vaccine up to five times since intradermal injection requires a much smaller dose than one given subcutaneously.

Also called "dose-sparing," intradermal types of injections aren't new to health care. But the change in medical guidance on how the monkeypox vaccine can be administered reflects a shortage of Jynneos that's plagued the vaccine rollout since it began. Health officials have touted a national stockpile of vaccines that work against monkeypox as well as smallpox, but getting them out to states and into the arms of people who need them has been a challenge. 

According to a report from The New York Times, a hurdle in the monkeypox vaccine rollout (besides limited supply of Jynneos) is that the federal system being used to move vaccines to states and cities is different from the system local health officials are used to, which is run by the US Centers for Disease Control and Prevention and is already linked to state databases. The current system states are using for the monkeypox vaccine is made for mass vaccine rollouts where every person would need a vaccine (like a smallpox bioterrorism event), and it's been difficult in some states for local health officials to track their orders or get to the site where the doses have been delivered, the Times reports.

But federal health officials are confident in the new intradermal vaccination method, which they say gives an immune response similar to that of the traditional method. But it still requires two doses, about 28 days apart. One-dose priority policies for the vaccine, which could potentially delay a second dose, have been put in place in cities like San Francisco and New York City, which make up a large portion of the country's monkeypox cases. 

Here's what we know about monkeypox vaccination.

Read more:  Monkeypox: What to Know About Variants, Symptoms and More

Who can get a monkeypox vaccine? 

Exact criteria for who should get a monkeypox vaccine depend on the city or state people live in and how widespread the outbreak is there, but men who have sex with men and who have had multiple or anonymous sexual partners in the last two weeks are eligible in cities like New York. That's because gay and bisexual men are currently at higher risk in the outbreak, though anyone with close contact to monkeypox can get the disease. You may also be eligible if you were recently exposed to someone with monkeypox.  

According to the CDC, you meet the criteria for a monkeypox vaccine if: 

• You're a contact of someone who has monkeypox or you were identified as possibly exposed via contact tracing. 
  
• You had a sexual partner within the last two weeks who has monkeypox.
• You've had multiple sexual partners in the last two weeks in an area with a high number of monkeypox cases.
• You are a lab or health care worker who's around orthopox viruses, including in animals. 

If you think you qualify for a vaccine or were exposed to monkeypox, contact your local health department or doctor's office to find an appointment in your area. You can also book an appointment for the vaccine online, a process that'll walk you through the eligibility criteria. Here is New York City's vaccine appointment website. You can make an appointment and find a vaccine in San Francisco by calling one of the city's clinics or visiting its drop-in location. 

Colematt/Getty Images

What is intradermal vaccination? 

Intradermal vaccination is a method that injects the vaccine under a more shallow layer of skin, typically on the inner side of the forearm. This should produce a "noticeable pale elevation of the skin," according to the US Centers for Disease Control and Prevention. Counties including Los Angeles county and Fulton county in Georgia (where Atlanta is) have already transitioned to intradermal injections, according to the White House.

Most vaccines we get these days go either into the muscle in our arm (intramuscular injection) or into the fatty tissue under our skin (subcutaneous injection), like Jynneos has been given so far. Subcutaneous injection of Jynneos is the only authorized method of vaccination for people younger than 18. If you get the monkeypox vaccine intradermally, you'll still need two doses.

When the FDA authorized the new vaccine method, the agency referenced a study published in 2015 that found that a smallpox vaccine given intradermally gave a similar immune response in people compared to the vaccine given subcutaneously. 

What are the monkeypox vaccines? 

The US has two vaccines in its national stockpile that work against monkeypox. Jynneos is currently being given out to people before an exposure, as well as after an exposure, as it's a newer vaccine that's safe for most people. 

Jynneos (made by Bavarian Nordic) is a new-generation vaccine approved by the US Food and Drug Administration in 2019 for monkeypox and smallpox. It's a two-dose vaccine, with each shot given about four weeks apart. It uses a weakened virus and is approved for adults 18 and older who are at high risk of getting monkeypox or smallpox.

Because of limited supply, it's likely you'll only be able to book an appointment for the first dose for the time being. In New York City, for example, health officials say you'll be contacted if you received a first dose about the second dose in the coming weeks. 

Side effects of Jynneos may include typical temporary vaccine side effects, including headache, chills and fatigue. There can also be some pain and swelling around the injection site, which can result in what some are reporting as a temporary swollen lump around the injection site. 

ACAM2000 is a second-generation smallpox vaccine that also works against monkeypox. According to the CDC, ACAM2000 is a derivative of Dryvax, which helped eradicate smallpox. (The two diseases are closely related and both caused by orthopoxviruses, which makes this possible.) If necessary, the US Department of Health and Human Services said it's also prepared to ship out the ACAM2000 vaccine, which is in greater supply than Jynneos but remains a second choice in the monkeypox response because it has a side effect profile that isn't safe for certain people.

ACAM2000 is administered differently than the typical vaccine shot we're used to, including intradermal injection. It's given by dipping a needle into a vaccine solution which will then be "pricked" several times on the upper arm. It will cause a localized infection (a "pox"), prompting an immune response. 

While ACAM2000 doesn't cause smallpox, it contains live vaccina virus, which isn't suitable for everyone. It could be unsafe for immunocompromised people, pregnant folks and those with certain heart or skin diseases, like eczema.

Smallpox was declared eliminated from the world in 1980. The US stopped routine vaccination against it in 1972, though some health care workers or people who work in labs may have had the vaccine. Historically, according to the CDC, smallpox vaccines were 95% effective against infection and protect you for about three to five years, and after that protection starts to wane. 

Because of this, it's possible people born before the early 1970s who got the smallpox vaccine might have some cross-protective immunity against monkeypox, according to the WHO, but there is "little immunity" to younger people living in non-endemic countries because they've had no exposure to a similar virus.

Read more: Monkeypox: What Gay and Bisexual Men Need to Know

A smallpox vaccine scar. People born before the mid-1970s might have such a scar. Jynneos, a newer-generation monkeypox and smallpox vaccine, is not the same type of vaccine as the one used to eradicate smallpox and doesn't leave a scar. 

Picture Alliance/Getty Images

How effective are the vaccines against monkeypox? How long do they take to work? 

Giving Jynneos within four days of a monkeypox exposure is the best option for stopping the onset of the disease, according to the CDC. If it's given four to 14 days after an exposure, the CDC says, Jynneos may not prevent monkeypox but will likely reduce the severity of symptoms. However, this information was published when Jynneos was given only the "standard" way (subcutaneous injection). 

The CDC says that the Jynneos vaccine takes two weeks (14 days) after the second dose for immunity to build, and that ACAM2000 takes four weeks for maximum immunity. Though many people are receiving only the first dose of Jynneos at this time, early research suggests that one dose will still offer some protection, at least for a shorter period of time. 

Because the US outbreak of monkeypox is so new, there's no data yet on exactly how effective the vaccines will be in the current situation, according to the CDC. 

You should still self-isolate if you develop symptoms of monkeypox after getting vaccinated, such as a rash. 

A computer image of a monkeypox virus.

Uma Shankar Sharma/Getty Images

Why does the US have a stockpile of monkeypox vaccines? 

The US has a stockpile of Jynneos and ACAM2000 on hand not because the country was worried about an outbreak of monkeypox (which has been endemic in some African countries for years), but in case smallpox becomes a public threat again. Smallpox was declared eliminated in the 1980s, and the last natural outbreak in the US happened in 1949. But smallpox is usually much more severe than monkeypox, and officials worry it could be used as biological warfare. 

"The stockpile was created in the event of a biological weapons attack on the United States with smallpox," Dr. Amesh Adalja, an infectious-disease expert and senior scholar at the Johns Hopkins Center for Health Security said. In this event, health officials would not be rationing vaccines or using only the newer-generation vaccine, according to Adalja. 

"If there was a smallpox attack, we would be using whatever vaccines we have to be able to deal with it," he added. 

Why is there a monkeypox vaccine supply issue? 

The supply of Jynneos, the newer vaccine specifically approved to prevent monkeypox, has been in particularly short supply.

Officials who spoke to The New York Times said the supply issue is partly because the government waited too long to ask Bavarian Nordic, which makes Jynneos, to bottle and fill the vaccine order the US had already purchased. 

Another report by the Times alleges that the US national stockpile of monkeypox and smallpox vaccines dwindled because the government never replaced the expired doses and instead put money into technology that would extend their shelf life. Part of the reason for this was that the government created the stockpile not for monkeypox but for smallpox, which is a more contagious and often more serious disease officials fear could be used in biological warfare against the US. 

The US Department of Health and Human Services didn't respond to a request for comment on the reports.

The information contained in this article is for educational and informational purposes only and is not intended as health or medical advice. Always consult a physician or other qualified health provider regarding any questions you may have about a medical condition or health objectives.

---

Source

Here's Who Needs a Monkeypox Vaccine, and What We Know About It

Here's Who Needs a Monkeypox Vaccine, and What We Know About It

What's happening

The monkeypox vaccine is available to people at higher risk of getting the disease, but supply has been limited. To stretch out more doses, the US is starting to administer the vaccine in a slightly different way that requires a smaller dose.

Why it matters

Vaccination is an important tool to slow the monkeypox outbreak happening in the US and other countries. Access to vaccines is crucial for people most at risk.

What it means for you

Some men who have sex with men are eligible for the vaccine, as are other people who may've been exposed to monkeypox.

The vaccine Jynneos is being given out a little differently now in some places. If you're eligible for a monkeypox vaccine, you might be getting a shot under a top layer of skin, instead of deeper into your arm. That's because the US Food and Drug Administration authorized intradermal injection for the monkeypox vaccine this month, which is an effort to increase the US supply of vaccine up to five times since intradermal injection requires a much smaller dose than one given subcutaneously.

Also called "dose-sparing," intradermal types of injections aren't new to health care. But the change in medical guidance on how the monkeypox vaccine can be administered reflects a shortage of Jynneos that's plagued the vaccine rollout since it began. Health officials have touted a national stockpile of vaccines that work against monkeypox as well as smallpox, but getting them out to states and into the arms of people who need them has been a challenge. 

According to a report from The New York Times, a hurdle in the monkeypox vaccine rollout (besides limited supply of Jynneos) is that the federal system being used to move vaccines to states and cities is different from the system local health officials are used to, which is run by the US Centers for Disease Control and Prevention and is already linked to state databases. The current system states are using for the monkeypox vaccine is made for mass vaccine rollouts where every person would need a vaccine (like a smallpox bioterrorism event), and it's been difficult in some states for local health officials to track their orders or get to the site where the doses have been delivered, the Times reports.

But federal health officials are confident in the new intradermal vaccination method, which they say gives an immune response similar to that of the traditional method. But it still requires two doses, about 28 days apart. One-dose priority policies for the vaccine, which could potentially delay a second dose, have been put in place in cities like San Francisco and New York City, which make up a large portion of the country's monkeypox cases. 

Here's what we know about monkeypox vaccination.

Read more:  Monkeypox: What to Know About Variants, Symptoms and More

Who can get a monkeypox vaccine? 

Exact criteria for who should get a monkeypox vaccine depend on the city or state people live in and how widespread the outbreak is there, but men who have sex with men and who have had multiple or anonymous sexual partners in the last two weeks are eligible in cities like New York. That's because gay and bisexual men are currently at higher risk in the outbreak, though anyone with close contact to monkeypox can get the disease. You may also be eligible if you were recently exposed to someone with monkeypox.  

According to the CDC, you meet the criteria for a monkeypox vaccine if: 

• You're a contact of someone who has monkeypox or you were identified as possibly exposed via contact tracing. 
  
• You had a sexual partner within the last two weeks who has monkeypox.
• You've had multiple sexual partners in the last two weeks in an area with a high number of monkeypox cases.
• You are a lab or health care worker who's around orthopox viruses, including in animals. 

If you think you qualify for a vaccine or were exposed to monkeypox, contact your local health department or doctor's office to find an appointment in your area. You can also book an appointment for the vaccine online, a process that'll walk you through the eligibility criteria. Here is New York City's vaccine appointment website. You can make an appointment and find a vaccine in San Francisco by calling one of the city's clinics or visiting its drop-in location. 

Colematt/Getty Images

What is intradermal vaccination? 

Intradermal vaccination is a method that injects the vaccine under a more shallow layer of skin, typically on the inner side of the forearm. This should produce a "noticeable pale elevation of the skin," according to the US Centers for Disease Control and Prevention. Counties including Los Angeles county and Fulton county in Georgia (where Atlanta is) have already transitioned to intradermal injections, according to the White House.

Most vaccines we get these days go either into the muscle in our arm (intramuscular injection) or into the fatty tissue under our skin (subcutaneous injection), like Jynneos has been given so far. Subcutaneous injection of Jynneos is the only authorized method of vaccination for people younger than 18. If you get the monkeypox vaccine intradermally, you'll still need two doses.

When the FDA authorized the new vaccine method, the agency referenced a study published in 2015 that found that a smallpox vaccine given intradermally gave a similar immune response in people compared to the vaccine given subcutaneously. 

What are the monkeypox vaccines? 

The US has two vaccines in its national stockpile that work against monkeypox. Jynneos is currently being given out to people before an exposure, as well as after an exposure, as it's a newer vaccine that's safe for most people. 

Jynneos (made by Bavarian Nordic) is a new-generation vaccine approved by the US Food and Drug Administration in 2019 for monkeypox and smallpox. It's a two-dose vaccine, with each shot given about four weeks apart. It uses a weakened virus and is approved for adults 18 and older who are at high risk of getting monkeypox or smallpox.

Because of limited supply, it's likely you'll only be able to book an appointment for the first dose for the time being. In New York City, for example, health officials say you'll be contacted if you received a first dose about the second dose in the coming weeks. 

Side effects of Jynneos may include typical temporary vaccine side effects, including headache, chills and fatigue. There can also be some pain and swelling around the injection site, which can result in what some are reporting as a temporary swollen lump around the injection site. 

ACAM2000 is a second-generation smallpox vaccine that also works against monkeypox. According to the CDC, ACAM2000 is a derivative of Dryvax, which helped eradicate smallpox. (The two diseases are closely related and both caused by orthopoxviruses, which makes this possible.) If necessary, the US Department of Health and Human Services said it's also prepared to ship out the ACAM2000 vaccine, which is in greater supply than Jynneos but remains a second choice in the monkeypox response because it has a side effect profile that isn't safe for certain people.

ACAM2000 is administered differently than the typical vaccine shot we're used to, including intradermal injection. It's given by dipping a needle into a vaccine solution which will then be "pricked" several times on the upper arm. It will cause a localized infection (a "pox"), prompting an immune response. 

While ACAM2000 doesn't cause smallpox, it contains live vaccina virus, which isn't suitable for everyone. It could be unsafe for immunocompromised people, pregnant folks and those with certain heart or skin diseases, like eczema.

Smallpox was declared eliminated from the world in 1980. The US stopped routine vaccination against it in 1972, though some health care workers or people who work in labs may have had the vaccine. Historically, according to the CDC, smallpox vaccines were 95% effective against infection and protect you for about three to five years, and after that protection starts to wane. 

Because of this, it's possible people born before the early 1970s who got the smallpox vaccine might have some cross-protective immunity against monkeypox, according to the WHO, but there is "little immunity" to younger people living in non-endemic countries because they've had no exposure to a similar virus.

Read more: Monkeypox: What Gay and Bisexual Men Need to Know

A smallpox vaccine scar. People born before the mid-1970s might have such a scar. Jynneos, a newer-generation monkeypox and smallpox vaccine, is not the same type of vaccine as the one used to eradicate smallpox and doesn't leave a scar. 

Picture Alliance/Getty Images

How effective are the vaccines against monkeypox? How long do they take to work? 

Giving Jynneos within four days of a monkeypox exposure is the best option for stopping the onset of the disease, according to the CDC. If it's given four to 14 days after an exposure, the CDC says, Jynneos may not prevent monkeypox but will likely reduce the severity of symptoms. However, this information was published when Jynneos was given only the "standard" way (subcutaneous injection). 

The CDC says that the Jynneos vaccine takes two weeks (14 days) after the second dose for immunity to build, and that ACAM2000 takes four weeks for maximum immunity. Though many people are receiving only the first dose of Jynneos at this time, early research suggests that one dose will still offer some protection, at least for a shorter period of time. 

Because the US outbreak of monkeypox is so new, there's no data yet on exactly how effective the vaccines will be in the current situation, according to the CDC. 

You should still self-isolate if you develop symptoms of monkeypox after getting vaccinated, such as a rash. 

A computer image of a monkeypox virus.

Uma Shankar Sharma/Getty Images

Why does the US have a stockpile of monkeypox vaccines? 

The US has a stockpile of Jynneos and ACAM2000 on hand not because the country was worried about an outbreak of monkeypox (which has been endemic in some African countries for years), but in case smallpox becomes a public threat again. Smallpox was declared eliminated in the 1980s, and the last natural outbreak in the US happened in 1949. But smallpox is usually much more severe than monkeypox, and officials worry it could be used as biological warfare. 

"The stockpile was created in the event of a biological weapons attack on the United States with smallpox," Dr. Amesh Adalja, an infectious-disease expert and senior scholar at the Johns Hopkins Center for Health Security said. In this event, health officials would not be rationing vaccines or using only the newer-generation vaccine, according to Adalja. 

"If there was a smallpox attack, we would be using whatever vaccines we have to be able to deal with it," he added. 

Why is there a monkeypox vaccine supply issue? 

The supply of Jynneos, the newer vaccine specifically approved to prevent monkeypox, has been in particularly short supply.

Officials who spoke to The New York Times said the supply issue is partly because the government waited too long to ask Bavarian Nordic, which makes Jynneos, to bottle and fill the vaccine order the US had already purchased. 

Another report by the Times alleges that the US national stockpile of monkeypox and smallpox vaccines dwindled because the government never replaced the expired doses and instead put money into technology that would extend their shelf life. Part of the reason for this was that the government created the stockpile not for monkeypox but for smallpox, which is a more contagious and often more serious disease officials fear could be used in biological warfare against the US. 

The US Department of Health and Human Services didn't respond to a request for comment on the reports.

The information contained in this article is for educational and informational purposes only and is not intended as health or medical advice. Always consult a physician or other qualified health provider regarding any questions you may have about a medical condition or health objectives.

---

Source

Tags:

• Here S Who Needs A Monkeypox Vaccine And Drugs
• Here S Who Needs A 1099
• Here S Who Needs A Trust
• Here S Who Needs To File
• Here S Who Needs A Fourth
• Here S Where I Stand Here S Who I Am
• Here S A Brief Summary In Internet Speak

A guide to air fryers everything to know before you get a storage a guide to air fryers everything to know before getting a guide to air fryers everything to know before starting a guide to air fryers everything to know before you visit a guide to air fryers everything to know before watching air quality index a guide to air quality a guide to air force heraldry a guide to air signs a guide to airfield pavement design and evaluation a guide to recognizing your saints a guide to home based covid treatment writing fiction a guide to narrative craft what s happening to me a guide to puberty a guide to naturalization a guide to recognizing your saints a guide for representative payees what is a guide word

A Guide to Air Fryers: Everything to Know Before You Buy

---

A Guide to Air Fryers: Everything to Know Before You Buy

Air fryers  have made a whole lot of noise in the kitchen appliance space over these past few years. If you've become a little air fry-curious, there are some questions you might want to have answered before you invest in yet another small kitchen appliance. If starting from scratch, you'll want to know exactly what an air fryer does and how it's used. Does an air fryer actually fry? And are air fryers healthier than normal ovens? Also, what can you make in an air fryer, and which type of air fryer oven is best for your cooking habits? Most importantly, is an air fryer worth buying with so many other kitchen appliances available, or are these trendy countertop cookers just a bunch of hot air?

Whether or not an air fryer is right for you is ultimately a decision you'll have to make. But as someone with the chance to try much of the latest kitchen gadgetry, I can say that the air fryer is one of my personal favorite small appliance additions. It's one I fire up at least a few times each week and recommend to folks who are considering buying one. Air fryers cook in a way that nothing else in my kitchen does. They're also incredibly simple to operate and easy to clean. What's more, air fryers don't cost very much, especially if you know what you want and what to look for.

In this air fryer explainer and buying guide, I'll explore the best uses for the trendy air fryer, and break down the various types of air fry ovens along with average costs to help you make a more informed purchase. 

First, a little background.

What is an air fryer?

Contrary to the name, an air fryer doesn't actually fry at all. Instead, the air fryer works more like a convection oven, circulating hot air with a fan. The main difference between a regular convection oven and an air fryer is that the air fryer fan blows faster and the compartment in which food is cooked is often (but not always) smaller. Because of these two things, all that hot air hits food more rapidly and so it doesn't lose as much heat in transit. Most air fryers come with a grated rack or perforated basket so the air can travel through and hit the food on all sides.

The perforated basket helps the hot air hit food on all sides and crisp evenly. 

Getty

This fast, hot roasting or "super convection" will quickly brown chicken, potatoes, frozen snacks, veggies and fish without overcooking the inside. That's very similar to how deep-frying works, which is where both the comparison and name come from. 

While it isn't the case for everything, I've air-fried many foods that taste nearly identical to if they'd been deep-fried. In fact, some things taste better (in my opinion) since they are not saturated with heavy oil which can overpower the flavor of the food.

Are air fryers healthy?

It all depends on what you're making in your air fryer but cooking something in an air fryer is almost universally healthier than deep-frying or pan-frying it in oil. Less oil means less fat and fewer calories too.

What can you cook in an air fryer?

If you think about the best fried foods -- chicken wings, fried chicken, french fries, mozzarella sticks -- those are all great candidates for an air fryer. You'll get similarly crispy and browned outsides with insides that don't overcook. 

The Instant Pot Duo Crisp air fryer and multicooker turned out some excellent air-fried chicken.

David Watsky/CNET

An air fryer can actually do quite a bit more than a solo air fryer since it's really an oven. You can cook fish (salmon is a popular air fryer pick), vegetables, pizza and bread. You can also warm food or reheat leftovers and much more. 

Some of my all-time favorites to cook in an air fryer include "fried" chicken with the skin on; just a quick dredging of egg and seasoned flour and then 25 minutes on high. I also love potato wedges in the air fryer as well as Brussels sprouts, dumplings (with a light coating of oil), and seasoned mushrooms with chopped garlic. 

Read more: Air frying vs. oven baking: Which cooking method is best?

Do you need to use oil in an air fryer?

Short answer: No, you don't need oil. But some foods do well with a light spray or coating of cooking oil. Vegetables including green beans, broccoli, asparagus, and even potatoes will dry out if you blast them in an air fryer so a light spritz of avocado or olive oil can go a long way. 

Remember, you're still using far less oil than deep-frying or even pan-frying in which food sits in oil or is submerged the entire time it's cooking. Anything with some inherent oil content, like chicken or salmon, will have plenty of natural oil to baste itself while cooking.

When air frying vegetables, a light coating of oil goes a long way.

Getty

How much do air fryers cost?

Like anything else, you can pay a whole lot for an air fryer but in our experience, the most expensive air fryers aren't necessarily the best. A basic air fryer is actually not a terribly complex machine so you really needn't break the bank. Small no-frills air fryer models start at $25 or $30 and I've found they will do a serviceable job. That said, if you bump up another $30 or $40 you're going to get a better build, sharper look and generally a bit more power too.

At the high end are the hybrid countertop ovens with air fry functions. These can go as high as $300 but you can get less advanced models from bargain brands or ones that are on sale for around $150.

How big should an air fryer be? About a quart per person, but bigger isn't always better.

If you're cooking for one or two people a 2- or 3-quart air fryer should be large enough. From there, I would suggest adding a quart of capacity for every person that you're regularly cooking for. So, if you plan to air fry for five people on a regular basis, spring for a 5-quart model. 

Size matters when it comes to air fryer prowess but maybe not in the way you expected. A smaller air fryer means food is going to get blasted faster and more often than inside a larger model where the air has further to travel and more time to lose heat. I've found that small and powerful air fryers including the Magic Bullet 2-5-quart model and Instant Pot's Duo Crisp (which actually has a small air frying capacity once you load the air fry basket in) work exceptionally well and very quickly. 

The smaller air fryers mean less overall capacity so you may have to cook in batches.

I find that smaller air fryers like Magic Bullet's 2-5-quart model ($60) do an excellent job but the trade-off is less cooking space.

Magic Bullet

Using medium chicken thighs as a unit measurement, a 2.5-quart air fryer can fit three thighs. A 5-quart model will comfortably fit six thighs and so on. If you spring for a hybrid oven with multiple racks, you can cook as many as 10 or 12 chicken thighs at once, but it will take longer than with a smaller air fryer

What are the different types of air fryers?

Solo air fryer: Best for most people (and most budget-friendly)

The most basic of air fryers looks like a small robot. They are generally just a cylindrical base with a basket to hold the food that pulls in and out. These come as small as two quarts and can be as big as six or seven. These models come with digital controls or manual dials. There are also air fryers with dual compartments so you can make two types of food at different temps simultaneously. Ninja makes a particularly good one with two 4-quart cooking baskets (8 quarts overall).

Solo air fryers are the least expensive too, and they can be had for as little as $30. I'd say if you just want to try air frying but don't want to commit a lot of money or kitchen space, opt for one of these. 

Ninja's basic air fryer oven is one of the best we've tested.

CNET/Ninja

Read more:  The best air fryers in 2022

Air frying toaster oven: Bake, broil, roast and toast

These models look and function much like a standard countertop toaster oven but they have an air fry function as well. An advanced version is almost like adding a second main oven to your kitchen since they can broil, roast, bake, toast and much more. Some even come with a rotisserie function. For someone who hosts Thanksgiving or big family gatherings, the extra oven space these provide may feel like a godsend. Plus, they air fry; although due to their larger size, these models usually don't cook as quickly or quite as intensely as smaller solo air fryer ovens. 

Breville makes an excellent (and large) model as do KitchenAid and Cuisinart. My favorite in a test of these types air frying toaster ovens was Ninja's Foodi, which blasted chicken wings and french fries to crispy golden perfection -- I suspect that was large in part due to the smaller cooking cavity which helps the air fry function work properly. It also made wonderful broiled salmon and perfect toast.

These air fryers start at around $150 and go up from there.

If you're shopping for a countertop toaster, why not get one that air fries too?

CNET/KitchenAid

Read more: Best countertop oven and air fryer in 2022

Air fryer and multicooker: An air fryer that does it all

These are the most advanced and versatile air fryers and they do a whole lot more than air fry. Think Instant Pot but with an air fryer function as well. Ninja's Foodi multicooker and the Instant Pot Duo Crisp are two popular models, and if you want an air fryer and multicooker or pressure cooker but don't have a lot of kitchen space to relinquish, one of these is a great option. I've used the 6-quart Duo Crisp a bunch and find it works really well, turning out some of the most delicious fried chicken ever (with no frying at all.) These models generally retail for about $175 to $250

Air fryer attachment for your Instant Pot is a great option

If you already have an Instant Pot, you can buy an Instant Pot air fryer lid ($90) to attach or a Mealthy ($60) which will clamp on top and air fry food down below. I found the air fryer lids work exceptionally well, although they don't have a large capacity for cooking.

The Duo Crisp is a powerful air fryer but it's also a pressure cooker, slow cooker, rice cooker and more. 

CNET/Instant Pot

Read more: Best Instant Pots of 2022

Should you get a digital air fryer over analog? Meh, not really.

This depends on your personal preference but the controls don't have much to do with the performance or end result. Digital air fryers have presets for things like chicken wings, french fries, fish and such, but I find that even if the presets exist, it takes me just a few runs to learn how long things need and the correct temperatures, and I end up bypassing them anyways. Digital air fryers tend to cost a bit more and you run the risk of the panel shorting out, but having a digital readout of the temp and cook time can be nice. 

So which is the best air fryer?

Another question that depends on your needs and budget. Fortunately, we've tested the best air fryers in 2022 and the best air frying toaster ovens with picks in various sizes, styles and prices to help you decide.

More kitchen recommendations

---

Source

Behind the frame beyond the flames behind the frame walkthrough behind the frame review behind the fame behind the frame switch behind the name behind the chair behind the curve behind the music

Behind the 'Flame' malware spying on Mideast computers (FAQ)

Behind the 'Flame' malware spying on Mideast computers (FAQ)

The Flame worm that has targeted computers in the Middle East is being called "the most sophisticated cyberweapon yet unleashed" by Kaspersky Lab researchers who discovered it. Lurking on computers for at least five years, the malware has the ability to steal data, eavesdrop on conversations, and take screen captures of instant message exchanges, making it dangerous to any victim. But a possible link to malware found on computers in Iran's oil sector has experts saying it's got to be the work of a nation-state.

CNET talked with Roel Schouwenberg, senior researcher at Kaspersky, the company that uncovered the malware, to find out who is behind it and how dangerous it really is.

What is Flame?
Flame is a sophisticated attack toolkit that leaves a backdoor, or Trojan, on computers and can propagate itself through a local network, like a computer worm does. Kaspersky Lab suspects it may use a critical Windows vulnerability, but that has not been confirmed, according to a Kaspersky blog post. Flame can sniff network traffic, take screenshots, record audio conversations, log keystrokes and gather information about discoverable Bluetooth devices nearby and turn the infected computer into a discoverable Bluetooth device. The attackers can upload additional modules for further functionality. There are about 20 modules that have been discovered and researchers are looking into what they all do. The package of modules comprises nearly 20 megabytes, over 3,000 lines of code, and includes libraries for compression, database manipulation, multiple methods of encryption, and batch scripting.

The malware is named after one of the main modules that is responsible for attacking and infecting additional computers. There are multiple versions circulating, which are communicating with as many as 80 different command-and-control servers. Kaspersky has an updated technical analysis here and McAfee's technical blog post is here. This report on the malware, from the Laboratory of Cryptography and System Security (CrySyS Lab) at Budapest University of Technology and Economics, refers to the threat as "sKyWIper."

"Flame is very modular. Basically a target will get infected with the main component and then the attackers will only upload modules to the target as they see fit," Schouwenberg said. "We assume that we don't have all the modules that exist in the wild."

How does it spread?
Flame spreads within a network via a USB thumb drive, network shares, or a shared printer spool vulnerability, but spreads only when instructed to do so by the attackers. It's unclear what the initial point of entry is. "We expect to find a spear phishing e-mail with a Zero-Day exploit," Schouwenberg said.

Since we first published this FAQ, Microsoft has revealed that Flame gained a foothold by spoofing one of the company's own security certificates. Specifically, the virus tapped into rogue certificates for Microsoft's Terminal Server that appeared to be signed by the company and were therefore seen as legitimate. Microsoft has released security advisory describing the steps it's taking to remove the risk, including the issuance of a Windows patch to fix the security hole.

How long has Flame been around?
"We have the first confirmed report of Flame in the wild in 2010, but there is circumstantial evidence that dates it back to 2007 and some speculate it may go back further than that," Schouwenberg said Kaspersky Lab researchers discovered the malware several weeks ago after being asked by the United National's International Telecommunication Union for help in uncovering malware dubbed "Wiper" that was stealing and deleting sensitive information on computers in Iran's oil sector.

How does Flame relate to Wiper?
"Wiper could be a Flame module that is uploaded to a target machine when the attackers want to wipe the data from the computer. There is no evidence to link the two together, but the timing is coincidental," Schouwenberg said. "So, we have an open mind to Wiper being a Flame plug-in." Iran's National Computer Emergency Response Team (CERT), which is called "Maher," said software to detect Flame was sent to companies in that country at the beginning of May and a removal tool is ready now. Recent incidents of mass data loss in Iran "could be the outcome of some installed module of this threat," the center said, speculating that attacks in which data from Iran's gas company computers may have been linked to Flame. Officials in Iran suspect that Wiper and Flame are somehow linked, the Associated Press reports.

Why wasn't Flame discovered earlier? Whoever created Flame took extreme efforts to write the code so that it would evade detection for as long as possible. "Clearly it's another multimillion-dollar project with government funding, so one of the top priorities has been stealth," Schouwenberg said. While a later variant of Stuxnet was detected because it spread aggressively, Flame only spreads after it is instructed to do so remotely. Flame is unusually large in size and uses an uncommon scripting language, Lua, so it doesn't look malicious at first glance. "Flame authors have adopted the concept of hiding in plain sight," he said. Because Flame doesn't use a rootkit technology, free anti-rootkit tools won't be able to detect it. "Finding it is going to be more complicated," according to Schouwenberg.

Who created the malware?

It's unclear who wrote and distributed the malware, but Schouwenberg said researchers believe it was a nation-state or someone hired by a nation-state because of the advanced nature of the threat. Just because the code is in English does not mean that an English-speaking country is behind it, he said when asked if he thought the U.S. and/or Israel are behind this malware as is believed with Stuxnet. Meanwhile, liberal Jewish blog Tikun Olam

cites an unidentified "senior Israeli source"

as confirming that Israeli cyber warfare experts created Flame to "infiltrate the computers of individuals in Iran, Israel, Palestine and elsewhere who are engaged in activities that interest Israel's secret police including military intelligence."

Is it related to Stuxnet and Duqu? Flame shares some characteristics with two previous types of malware that targeted critical infrastructure systems and which used the same technology platform: Stuxnet and Duqu. Schouwenberg thinks the same entities are behind Flame. For instance, Flame and Stuxnet both spread via USB drive using the "Autorun" method and a .LNK file that triggers an infection when a directory is opened. Flame also can replicate through local networks using a Windows-based shared printer vulnerability that was exploited by Stuxnet as well. Kaspersky hasn't uncovered Flame using any previously unknown vulnerabilities, called "Zero-Days," but since Flame has infected fully patched Windows 7 systems through the network, there may be a high-risk Zero-Day being exploited. "We are operating under the assumption right now that basically Flame and Stuxnet were two parallel projects commissioned by the same nation-sate or states. The Stuxnet platform was created by one team or company and Flame by another tea m or company, and both teams had access to this common set of exploits," he said. Flame is 20 times larger than Stuxnet, which was previously believed to be the most sophisticated piece of malware ever.

How serious is this?
Kaspersky researchers believe there is much more to Flame than they know now. "We operate on the assumption there are other modules we don't know about, which could elevate Flame from cyber espionage to cybersabotage," Schouwenberg said. "Given the conservative method of spreading, we assume that the vast majority of infections we are seeing are intended targets ... The amount of manpower required to maintain this operation is very significant. Flame uses more than 80 C&C (Command and Control) servers, which we haven't seen before. This shows the amount of resources committed to this project."

Who is being targeted with Flame?
The highest proportion of infections are in Iran, followed by "Israel/Palestine," Sudan, Syria, Lebanon, Saudi Arabia and Egypt, according to Kaspersky. Symantec says the primary targets are in "the Palestinian West Bank, Hungary, Iran and Lebanon." "With Flame, we haven't been able to say what binds all the targets together other than that they are in the same geographical region," Schouwenberg said. "We are trying to work with incident response teams globally to contact these victims and find out more, but right now we don't know what type of data has been stolen." Victims include educational institutions, state-related organizations and individuals.

How widespread is Flame?
So far there are only estimates as to how widespread Flame infections are. Kaspersky researchers have seen between 300 and 400 infections on customer computers reporting back to them, but researchers speculate there could be more than 1,000 infected computers worldwide. Most of the infections are in Iran and other countries in the Middle East. There are a few in the U.S., and Schouwenberg said those could be due to someone in the Middle East using a virtual private network based in the U.S. to circumvent Internet filters in that country as opposed to genuine infections on U.S.-based computers. "We're looking into sinkholing (taking control of) some of the Command and Control servers and getting data from there to have a more accurate reflection of infections," Schouwenberg said.

Here are the countries with the most Flame infections discovered by Kaspersky. Securelist

Does it affect me?
Most of the major antivirus software now detects Flame, so updating your security software will protect you. Kaspersky also has offered tips for manually removing the malware. The software is not designed to steal financial data and does not seem targeted at consumers, so chances are your computer is safe.

What does this all mean?
While Flame represents another sophisticated cyber espionage attack, it's not exactly a harbinger of cyberwar. Countries have been conducting cyber espionage for years, but it wasn't until Stuxnet, with its links to the U.S. and Israel, that a Western country was fingered by researchers. Stuxnet is believed to have been designed to sabotage Iran's nuclear program after diplomatic and other efforts had failed. That said, Flame does show that sophisticated attacks on critical infrastructure are happening, and succeeding. "The good news is that like Stuxnet, Flame appears to be highly targeted," Eric Byres, chief technology officer and co-founder of Tofino Industrial Security, writes in a blog post. "But the bad news is that this worm clearly indicates that industry, especially the energy industry, is now a key target in a rapidly growing world of sophisticated, government sponsored malware."

"You could call it military-grade malware, which is obviously a class above (other malware) and generally these are covert operations so remaining stealth is top-most priority," Schouwenberg said. "In the end, it was anti-malware that found this type of attack."

Editors' note: This FAQ was originally published May 30 at 2:40 p.m. PT. It has been updated since then with additional information, including on May 30 the Tikun Olam report of a source saying that Israel is behind Flame, and on June 4 with with details on Microsoft's security advisory to address the spread of Flame through rogue Microsoft security certificates.

---

Source

https://tiramishu-love.blogr.my.id/

.

Behind the frame behind the frame game behind the frame ending explained behind the frame steam behind the frame switch behind the frame download behind the frame wiki behind the steel curtain behind the falls behind the chair behind the frame behind the surname behind the music

Behind the 'Flame' malware spying on Mideast computers (FAQ)

---

Behind the 'Flame' malware spying on Mideast computers (FAQ)

The Flame worm that has targeted computers in the Middle East is being called "the most sophisticated cyberweapon yet unleashed" by Kaspersky Lab researchers who discovered it. Lurking on computers for at least five years, the malware has the ability to steal data, eavesdrop on conversations, and take screen captures of instant message exchanges, making it dangerous to any victim. But a possible link to malware found on computers in Iran's oil sector has experts saying it's got to be the work of a nation-state.

CNET talked with Roel Schouwenberg, senior researcher at Kaspersky, the company that uncovered the malware, to find out who is behind it and how dangerous it really is.

What is Flame?
Flame is a sophisticated attack toolkit that leaves a backdoor, or Trojan, on computers and can propagate itself through a local network, like a computer worm does. Kaspersky Lab suspects it may use a critical Windows vulnerability, but that has not been confirmed, according to a Kaspersky blog post. Flame can sniff network traffic, take screenshots, record audio conversations, log keystrokes and gather information about discoverable Bluetooth devices nearby and turn the infected computer into a discoverable Bluetooth device. The attackers can upload additional modules for further functionality. There are about 20 modules that have been discovered and researchers are looking into what they all do. The package of modules comprises nearly 20 megabytes, over 3,000 lines of code, and includes libraries for compression, database manipulation, multiple methods of encryption, and batch scripting.

The malware is named after one of the main modules that is responsible for attacking and infecting additional computers. There are multiple versions circulating, which are communicating with as many as 80 different command-and-control servers. Kaspersky has an updated technical analysis here and McAfee's technical blog post is here. This report on the malware, from the Laboratory of Cryptography and System Security (CrySyS Lab) at Budapest University of Technology and Economics, refers to the threat as "sKyWIper."

"Flame is very modular. Basically a target will get infected with the main component and then the attackers will only upload modules to the target as they see fit," Schouwenberg said. "We assume that we don't have all the modules that exist in the wild."

How does it spread?
Flame spreads within a network via a USB thumb drive, network shares, or a shared printer spool vulnerability, but spreads only when instructed to do so by the attackers. It's unclear what the initial point of entry is. "We expect to find a spear phishing e-mail with a Zero-Day exploit," Schouwenberg said.

Since we first published this FAQ, Microsoft has revealed that Flame gained a foothold by spoofing one of the company's own security certificates. Specifically, the virus tapped into rogue certificates for Microsoft's Terminal Server that appeared to be signed by the company and were therefore seen as legitimate. Microsoft has released security advisory describing the steps it's taking to remove the risk, including the issuance of a Windows patch to fix the security hole.

How long has Flame been around?
"We have the first confirmed report of Flame in the wild in 2010, but there is circumstantial evidence that dates it back to 2007 and some speculate it may go back further than that," Schouwenberg said Kaspersky Lab researchers discovered the malware several weeks ago after being asked by the United National's International Telecommunication Union for help in uncovering malware dubbed "Wiper" that was stealing and deleting sensitive information on computers in Iran's oil sector.

How does Flame relate to Wiper?
"Wiper could be a Flame module that is uploaded to a target machine when the attackers want to wipe the data from the computer. There is no evidence to link the two together, but the timing is coincidental," Schouwenberg said. "So, we have an open mind to Wiper being a Flame plug-in." Iran's National Computer Emergency Response Team (CERT), which is called "Maher," said software to detect Flame was sent to companies in that country at the beginning of May and a removal tool is ready now. Recent incidents of mass data loss in Iran "could be the outcome of some installed module of this threat," the center said, speculating that attacks in which data from Iran's gas company computers may have been linked to Flame. Officials in Iran suspect that Wiper and Flame are somehow linked, the Associated Press reports.

Why wasn't Flame discovered earlier? Whoever created Flame took extreme efforts to write the code so that it would evade detection for as long as possible. "Clearly it's another multimillion-dollar project with government funding, so one of the top priorities has been stealth," Schouwenberg said. While a later variant of Stuxnet was detected because it spread aggressively, Flame only spreads after it is instructed to do so remotely. Flame is unusually large in size and uses an uncommon scripting language, Lua, so it doesn't look malicious at first glance. "Flame authors have adopted the concept of hiding in plain sight," he said. Because Flame doesn't use a rootkit technology, free anti-rootkit tools won't be able to detect it. "Finding it is going to be more complicated," according to Schouwenberg.

Who created the malware?

It's unclear who wrote and distributed the malware, but Schouwenberg said researchers believe it was a nation-state or someone hired by a nation-state because of the advanced nature of the threat. Just because the code is in English does not mean that an English-speaking country is behind it, he said when asked if he thought the U.S. and/or Israel are behind this malware as is believed with Stuxnet. Meanwhile, liberal Jewish blog Tikun Olam

cites an unidentified "senior Israeli source"

as confirming that Israeli cyber warfare experts created Flame to "infiltrate the computers of individuals in Iran, Israel, Palestine and elsewhere who are engaged in activities that interest Israel's secret police including military intelligence."

Is it related to Stuxnet and Duqu? Flame shares some characteristics with two previous types of malware that targeted critical infrastructure systems and which used the same technology platform: Stuxnet and Duqu. Schouwenberg thinks the same entities are behind Flame. For instance, Flame and Stuxnet both spread via USB drive using the "Autorun" method and a .LNK file that triggers an infection when a directory is opened. Flame also can replicate through local networks using a Windows-based shared printer vulnerability that was exploited by Stuxnet as well. Kaspersky hasn't uncovered Flame using any previously unknown vulnerabilities, called "Zero-Days," but since Flame has infected fully patched Windows 7 systems through the network, there may be a high-risk Zero-Day being exploited. "We are operating under the assumption right now that basically Flame and Stuxnet were two parallel projects commissioned by the same nation-sate or states. The Stuxnet platform was created by one team or company and Flame by another tea m or company, and both teams had access to this common set of exploits," he said. Flame is 20 times larger than Stuxnet, which was previously believed to be the most sophisticated piece of malware ever.

How serious is this?
Kaspersky researchers believe there is much more to Flame than they know now. "We operate on the assumption there are other modules we don't know about, which could elevate Flame from cyber espionage to cybersabotage," Schouwenberg said. "Given the conservative method of spreading, we assume that the vast majority of infections we are seeing are intended targets ... The amount of manpower required to maintain this operation is very significant. Flame uses more than 80 C&C (Command and Control) servers, which we haven't seen before. This shows the amount of resources committed to this project."

Who is being targeted with Flame?
The highest proportion of infections are in Iran, followed by "Israel/Palestine," Sudan, Syria, Lebanon, Saudi Arabia and Egypt, according to Kaspersky. Symantec says the primary targets are in "the Palestinian West Bank, Hungary, Iran and Lebanon." "With Flame, we haven't been able to say what binds all the targets together other than that they are in the same geographical region," Schouwenberg said. "We are trying to work with incident response teams globally to contact these victims and find out more, but right now we don't know what type of data has been stolen." Victims include educational institutions, state-related organizations and individuals.

How widespread is Flame?
So far there are only estimates as to how widespread Flame infections are. Kaspersky researchers have seen between 300 and 400 infections on customer computers reporting back to them, but researchers speculate there could be more than 1,000 infected computers worldwide. Most of the infections are in Iran and other countries in the Middle East. There are a few in the U.S., and Schouwenberg said those could be due to someone in the Middle East using a virtual private network based in the U.S. to circumvent Internet filters in that country as opposed to genuine infections on U.S.-based computers. "We're looking into sinkholing (taking control of) some of the Command and Control servers and getting data from there to have a more accurate reflection of infections," Schouwenberg said.

Here are the countries with the most Flame infections discovered by Kaspersky. Securelist

Does it affect me?
Most of the major antivirus software now detects Flame, so updating your security software will protect you. Kaspersky also has offered tips for manually removing the malware. The software is not designed to steal financial data and does not seem targeted at consumers, so chances are your computer is safe.

What does this all mean?
While Flame represents another sophisticated cyber espionage attack, it's not exactly a harbinger of cyberwar. Countries have been conducting cyber espionage for years, but it wasn't until Stuxnet, with its links to the U.S. and Israel, that a Western country was fingered by researchers. Stuxnet is believed to have been designed to sabotage Iran's nuclear program after diplomatic and other efforts had failed. That said, Flame does show that sophisticated attacks on critical infrastructure are happening, and succeeding. "The good news is that like Stuxnet, Flame appears to be highly targeted," Eric Byres, chief technology officer and co-founder of Tofino Industrial Security, writes in a blog post. "But the bad news is that this worm clearly indicates that industry, especially the energy industry, is now a key target in a rapidly growing world of sophisticated, government sponsored malware."

"You could call it military-grade malware, which is obviously a class above (other malware) and generally these are covert operations so remaining stealth is top-most priority," Schouwenberg said. "In the end, it was anti-malware that found this type of attack."

Editors' note: This FAQ was originally published May 30 at 2:40 p.m. PT. It has been updated since then with additional information, including on May 30 the Tikun Olam report of a source saying that Israel is behind Flame, and on June 4 with with details on Microsoft's security advisory to address the spread of Flame through rogue Microsoft security certificates.

---

Source