According to sources, patients on the emergency at Nair Hospital are now being diverted to other municipal hospitals – mainly KEM and Sion Hospital.The restoration of MRI machine at Nair hospital is going on, and it will be in operation soon, he added. Due to the closure of MRI machine at Nair Hospital, the waiting list for outside patients is likely to increase further,” said an official.There are six BMC hospitals – KEM, Nair, Sion, Cooper, Kandivali Shatabdi and Govandi Shatabdi – which have MRI test facility.Following the mishap at Nair, the MRI test facility is now available at only five civic hospitals.

The restoration of MRI machine at Nair hospital is going on, and it will be in operation soon, he added. Mumbai: With the MRI machine at Nair Hospital being shut after the mishap, patients have been diverted to other municipal hospitals resulting in a rise in the number of people, who are on waiting list for MRI tests. 

This has resulted in increased pressure at these hospitals for MRI tests. Every day, about 35 MRI tests are carried out at the civic hospitals. Due to the cheaper rates, municipal hospitals are always preferred by patients for MRI tests.On Saturday evening, Rajesh Maru, after getting sucked into an MRI machine, had inhaled the liquid oxygen, due to which he died on the spot. Following the incident, the machine has not been in operation and is likely to remain shut for few more days. They are carried at only Rs 2,500 at civic hospitals as against the charges of Rs 7000-12,000 at private hospitals

Hide Comments | Add Comment

This monitoring component has an almost identical structure to the service component.For the anti-AV and anti-VM solution, there are four DLL and three Named Pipe identifiers stored in both service and monitor components:However, only the monitor component makes use of these and, moreover, the code responsible for opening module handles is flawed: it will only try to open cmdvrt32.bat’ which is similar in structure to the one examined for the service component.For many businesses, the situation may not be much better: legacy PoS systems are often based on variations of the Windows XP kernel and, in large retailers, may be present on hundreds or even thousands of devices.dat'.All five message types are logged to the {Machine ID}.TimelinesAs the underlying intent of the malware became clear to, Forcepoint attempted to identify further samples from the same family to determine whether this was something new (and possibly still being tested before deployment) or part of an ongoing campaign.A Set of Two — Service & MonitorBehavioural analysis of the initial sample Forcepoint discovered, a file named logmeinumon.ConclusionDiscovering a unique piece of malware is a rare event these days and UDPoS, while unusual, is not a new concept.dat and saves a hash of the 'trp' message to udwupd.dll – a library related to Comodo security products – and nothing else.001. This data is written to a local file called ‘PCi.001.Point of Sale malware has been around for some time and has been deployed against a broad range of businesses from retailers to hotel groups.exe’.Note: Forcepoint has been in contact with LogMeIn throughout this investigation to help determine whether their services or products may have been abused as part of the malware deployment process. It does this via a batch file with a semi-random filename embedding standard Windows commands for file and service operations.001.22.115. However, enabling reporting on your credit card activity (many banks offer SMS, Push, and email alerts) can greatly reduce the time of discovery – and therefore recovery – if abuse does occur.It is unclear at present whether this is a reflection of the malware still being in a relatively early stage of development/testing or a straightforward error on the part of the developers. Forcepoint Labs has discovered a new piece of POS malware.dat’ in the same directory where the executables are deployed.These efforts revealed another service component, but unfortunately not the corresponding monitor nor the parent 7-Zip SFX archive.bat process, while ‘ping’ is a heartbeat message sent to the C2 every 60 minutes. Whether this is a sign that authors of the malware were not successful in deploying it at first or whether these are two different campaigns cannot be fully determined at this time due to the lack of additional executables.'Info' messages - as its name suggests - are purely informational and are despatched alongside 'ping' messages:{PCNAME}; {USERNAME}; [NS:IP {C2URL}:{C2IP}]The 'note' and 'trp' message types required further analysis and relate to the core functionality of the malware.. These sorts of malware generally make up the majority of incoming malicious samples and are, from a researcher's standpoint, typically not very interesting.jpg’ and sent to the C2 server via DNS. This randomly generated identifier is used as {Machine ID} in all of the DNS queries detailed below.dat file prior to transmission.php/?udpool={Machine ID}The first time the malware is run, it also generates a batch file called ‘infobat.Evasive ManoeuvresDespite maintaining a small footprint – only 88kb in size – the monitor component is a multi-threaded application which creates five different threads after its initialisation code is completed.115. These processes are checked against an embedded and pre-defined blacklist of common system process and browser names with only ones not present on the list being scanned.{Message Type}. In the current era of mass malware it's becoming increasingly rare to find something beyond the ‘usual suspects’ Forcepoint sees being spread by high-profile botnets on a regular basis: Dridex spread by Necurs, the ever-increasing number of ransomware families, cryptocurrency miners, credential stealers… the list goes on.xxxxwhere {Machine ID} is always 15 characters long, {Message Type} is taken from a set of pre-defined strings, and the actual message components "xxxx" can vary in length, but never exceed 31 characters. No evidence of this was found and it appears that the use of LogMeIn-themed filenames and C2 domain by the actors behind the malware is a simple ‘camouflage’ technique.xxxx.xxxx.dat, the number of total processes with successful extraction to hdwid.The overall impression is of a piece of malware inspired by the success of (and some of the better ideas and techniques employed by) its predecessors.‘LogmeinServicePackLogmeinServicePack_5.exe – which Forcepoint has called the service component – is responsible for setting up the malware by placing files into the System32LogMeInUpdService directory and creating a new system service for persistence. Once finished it passes over execution to the monitoring component by launching ‘logmeinumon.The malware steals card details, specifically magnetic strip data so likely more targeted in countries where chip and pin is prevalent.As UDPoS highlights, exfiltrating stolen credit card data can and will result in unusual patterns of activity on the machines (DNS traffic in this case).However, in amongst the digital haystack there exists the occasional needle: Forcepoint recently came across a sample apparently disguised as a LogMeIn service pack which generated notable amounts of 'unusual' DNS requests. Investigating the functionality spread across the additional threads revealed a process designed to collect Track 1 and Track 2 payment card data by scraping the memory of running processes. Interestingly, this second service component was named ‘Intel Upgrade Services’ and apparently intended to masquerade as an Intel update as opposed to a LogMeIn update. This file is a 7-Zip self-extracting archive containing ‘LogmeinServicePack_5.On the other hand, DNS-based communication and data exfiltration is genuinely unusual – although not unique – and can be quite effective.115.If Track 1/2 data is found in memory it will be extracted as is, converted to and sent as a 'trp' message. By identifying and reacting to these patterns, businesses – both PoS terminal owners and suppliers - can close down this sort of attack sooner.xxxx.The ‘bin’ messages are used to transmit the initial burst of data gathered into PCi.Forcepoint’s analysis identified five possible values for the {Message Type} field: bin, info, ping, trp, and note. Beyond the faulty evasion code noted above, using data files written to disk instead of working predominantly in memory – besides leaving unnecessary trails – is rarely the trademark of bleeding edge malware and, equally, there are more advanced ways of fingerprinting a PC and generating a report.kdl, presumably for the purpose of keeping track of what's already been submitted to the C2 server. Again, this file uses a number of standard Windows commands to create a comprehensive fingerprint of the infected machine containing network, system, route, and process related information.Based on the compilation dates of the executables, the Intel-themed sample was created about two weeks prior to the LogMeIn one.Whether this is intended for use later for lateral movement is unclear, but this information alone would be sufficient to treat this executable as malicious: the network map, list of running processes and list of installed security updates is highly valuable information. However, this appears to be a new family which Forcepoint is currently calling 'UDPoS' owing to its heavy use of UDP-based DNS traffic. A 'note' message will be also generated and transmitted with the following content:[IP: (redacted)] - String found in: processname. Nearly all companies have firewalls and other protections in place to monitor and filter TCP- and UDP-based communications, however DNS is still often treated differently providing a golden opportunity to leak data.exe, its content is extracted to the %TEMP% directory and ‘LogmeinServicePack_5.exe’ automatically launched using 7-Zip's built in RunProgram feature. At the time of writing, it's unclear whether the malware is currently being used in campaigns in the wild, although the coordinated use of LogMeIn-themed filenames and C2 URLs, coupled with evidence of an earlier Intel-themed variant, suggest that it may well be. While Windows POSReady is in extended support until January 2019, it is still fundamentally an operating system which is # seventeen years old this year.Upon executing update. Details of these files are in the table below. This initialisation code is mainly responsible for decrypting and decoding the malware's internal strings, attempting to carry out an anti-AV/VM check, and either creating or loading an existing ‘Machine ID’ stored in a file called ‘hdwid.Investigation of the C2 revealed it also to be hosting the original dropper file, update.exe, showed it contacting a similarly LogMeIn-themed C2 server hosted by a Swiss-based VPS provider (details below - note the use of an ‘L’ rather than an ‘I’ in the spelling of logmeln).exe -The malware further logs this process name to a file called sinf. That said, the method used in this sample does appear to get the job done.Detection rates for the malware are still very low for the monitor component at the time of writing.exe. Once complete, a flag is set in 'hdwidAlso make sure that you get a raincoat that would complement most outfits and make you look fashionably dry!Convertible pantsWhile you’re on a road trip, you might sometimes experience unpredictable temperature and this is when convertible pants that turn into trousers come in handy.

Hide Comments | Add Comment

Now it has been revealed that online porn has triggered a record rise in the number of men opting for fillers to make their penis look bigger. Clinics have reported a 70 per cent rise in number of people seeking the injections over the past three years.Meanwhile experts expressed concern over the injection which has a chemical used to sooth wrinkles. 

Hide Comments | Add Comment

Carboxytherapy could potentially be a new and effective means of fat reduction. It still needs to be optimised, though, so it's long-lasting," said lead author, Dr Murad Alam.Benefits of this non-invasive approach are diminished downtime, avoidance of scarring and perceived safety.Carboxytherapy has been performed with a few clinical studies, suggesting it may provide a lasting improvement in abdominal contours. 

Hide Comments | Add Comment

Coal is the nation’s most important fuel source and 70 per cent of power generation in CIL comes from coal. India is the world’s fifth largest coal producer, and yet the country imports around 150 million tonnes of coal worth about Rs 1 lakh crores. The Narendra Modi Cabinet’s decision earlier this week to denationalise the coal industry is as historic as Indira Gandhi’s move to nationalise coal mining in 1973. But whether the present decision is worthwhile will depend, of course, on whether letting the private sector back lives up to its promise of raising efficiency in coal production, and enhancing productivity and production, at least to the extent of covering domestic demand, introduction of modern tech and injection of adequate private investment in a competitive climate.

When coal automatic liquid soft packaging machines Suppliers was entirely in private hands before 1973, the results were a sorry mess in terms of production and adequacy of investment, as well as keeping up with internationally available technologies, to say nothing of the deplorable conditions of life for workers in the mines concentrated in eastern India, as well as mines safety. Reports of that era make for shocking reading.In many respects, a sea change has been brought about as a consequence of nationalisation. Coal India Ltd is a public sector "navratna”. But there can be no gainsaying that inefficiencies that are typical of the public sector — for well-known reasons — plague coal mining as well.There can be no doubt that the situation must be fixed. Coal is the nation’s most important fuel source and 70 per cent of power generation in CIL comes from coal. India is the world’s fifth largest coal producer, and yet the country imports around 150 million tonnes of coal worth about Rs 1 lakh crores.It is to be hoped that the situation will improve when private players come in. The government has indicated an auction route for the acquiring of mines. It must ensure, however, that players taking part in the auction do not game the process by forming cartels. Moreover, with private players in, the government must have a strong regulator.

The regulator’s job must be not only to ensure fair competition, but also to facilitate the introduction of adequate levels of technologies in not just mining but also beneficiation (as the average Indian coal has around 45 per cent ash content, as against 25-30 per cent in the leading coal-producing countries), and the raising of efficiency. In the absence of these, bringing in private players would not have done much good.

In the end, the real test will be if we are able to eliminate imports of reasonable quality of coal. Private industry now is far more capable than it was some half a century ago. Its assets base is much stronger, it is more modern and better managed professionally. At present, the temptation to wholly privatise coal by closing down CIL must be avoided. The future performance of private companies in coal is an unknown quantity for now.Coal is the nation’s most important fuel source and 70 per cent of power generation in CIL comes from coal. India is the world’s fifth largest coal producer, and yet the country imports around 150 million tonnes of coal worth about Rs 1 lakh crores. The Narendra Modi Cabinet’s decision earlier this week to denationalise the coal industry is as historic as Indira Gandhi’s move to nationalise coal mining in 1973. But whether the present decision is worthwhile will depend, of course, on whether letting the private sector back lives up to its promise of raising efficiency in coal production, and enhancing productivity and production, at least to the extent of covering domestic demand, introduction of modern tech and injection of adequate private investment in a competitive climate.

When coal automatic liquid soft packaging machines Suppliers was entirely in private hands before 1973, the results were a sorry mess in terms of production and adequacy of investment, as well as keeping up with internationally available technologies, to say nothing of the deplorable conditions of life for workers in the mines concentrated in eastern India, as well as mines safety. Reports of that era make for shocking reading.In many respects, a sea change has been brought about as a consequence of nationalisation. Coal India Ltd is a public sector "navratna”. But there can be no gainsaying that inefficiencies that are typical of the public sector — for well-known reasons — plague coal mining as well.There can be no doubt that the situation must be fixed. Coal is the nation’s most important fuel source and 70 per cent of power generation in CIL comes from coal. India is the world’s fifth largest coal producer, and yet the country imports around 150 million tonnes of coal worth about Rs 1 lakh crores.It is to be hoped that the situation will improve when private players come in.

The government has indicated an auction route for the acquiring of mines. It must ensure, however, that players taking part in the auction do not game the process by forming cartels. Moreover, with private players in, the government must have a strong regulator.The regulator’s job must be not only to ensure fair competition, but also to facilitate the introduction of adequate levels of technologies in not just mining but also beneficiation (as the average Indian coal has around 45 per cent ash content, as against 25-30 per cent in the leading coal-producing countries), and the raising of efficiency. In the absence of these, bringing in private players would not have done much good.In the end, the real test will be if we are able to eliminate imports of reasonable quality of coal. Private industry now is far more capable than it was some half a century ago. Its assets base is much stronger, it is more modern and better managed professionally. At present, the temptation to wholly privatise coal by closing down CIL must be avoided. The future performance of private companies in coal is an unknown quantity for now.

Hide Comments | Add Comment