Category: housing

MIL-OSI USA: Disaster Recovery Centers to Permanently Close May 31; Resources Transitioning to New Locations

Source: US Federal Emergency Management Agency 2

strong>LOS ANGELES – The two Disaster Recovery Centers (DRCs) for the Los Angeles Wildfires are permanently closing Saturday, May 31, 2025, at 4 p.m. and federal resources will be transitioning to new locations.
Current DRC Locations and Hours
UCLA Research Park West 10850 West Pico Blvd. Los Angeles, CA 90064 Monday-Friday: 9 a.m. – 6 p.m. and Saturday: 9 a.m. – 4 p.m.
Altadena Disaster Recovery Center540 West Woodbury Rd. Altadena, CA 91001 Monday-Friday: 9 a.m. – 6 p.m. and Saturday: 9 a.m. – 4 p.m.
The Federal Emergency Management Agency (FEMA) and Small Business Administration (SBA) will be transitioning from the current DRC locations to county and city run facilities. Federal resources will be available at their new locations beginning Monday, June 2, 2025.
Services Will Continue at:
One Stop Rebuilding Center1828 Sawtelle Blvd.Los Angeles, CA 90025 Monday-Friday: 9 a.m. – 5 p.m. Closed weekends.
Altadena Community Center730 E. Altadena Dr.Altadena, CA 91001Monday-Friday: 9 a.m. – 5 p.m. Closed weekends.
If you applied for FEMA assistance, it’s important to stay in touch with FEMA to track and update your application should you receive an insurance settlement or denial and as your situation changes to work through any approval processes. FEMA representatives can explain available assistance programs and help you with resources for your recovery needs.
Rental Assistance is available for eligible individuals and families who were displaced by the wildfires. If you were displaced and need assistance covering housing costs, you should contact FEMA to determine your eligibility for this program.
SBA’s Customer Service Representatives are available at the Centers to answer questions, help applicants complete their disaster loan application, accept documents, and provide updates on an application’s status.
Additional Resources

California Governor’s Office of Emergency Services (CalOES)Resources offered by State agencies are available online and at some existing field offices. Survivors can find a complete list of recovery related services on the CA.gov/LAfires Recovery Services Finder page, including how to contact each agency and their office locations.
U.S. Army Corps of Engineers (USACE)For help answering questions regarding debris removal, please call: 213-308-8305. The call center is available daily from 6 a.m. to 6:30 p.m. For more information, you can also visit the USACE Los Angeles County Wildfire Debris Removal Mission.
One-Stop Permitting CentersFor unincorporated LA County communities, One-Stop Permit Centers are also available in Calabasas and Altadena for residents impacted by the Palisades and Eaton fires. LA County permitting agencies, including Fire Department, Regional Planning, Public Health, Public Works Geotechnical and Materials Engineering Division and Public Works Building and Safety, are available to guide owners and their representatives through the rebuild process and answer any questions they may have. Walk-ins are welcome and consultation appointments can be scheduled. More information including days and hours of operation, can be found here: recovery.lacounty.gov/rebuilding/one-stop-permit-centers.

Follow FEMA online, on X @FEMA or @FEMAEspanol, on FEMA’s Facebook page or Espanol page and at FEMA’s YouTube account. For preparedness information follow the Ready Campaign on X at @Ready.gov, on Instagram @Ready.gov or on the Ready Facebook page.

California is committed to supporting residents impacted by the Los Angeles Hurricane-Force Firestorm as they navigate the recovery process. Visit CA.gov/LAFires for up-to-date information on disaster recovery programs, important deadlines, and how to apply for assistance.

MIL OSI USA News –

May 22, 2025

MIL-OSI USA: Russian GRU Targeting Western Logistics Entities and Technology Companies

News In Brief – Source: US Computer Emergency Readiness Team

Executive Summary

This joint cybersecurity advisory (CSA) highlights a Russian state-sponsored cyber campaign targeting Western logistics entities and technology companies. This includes those involved in the coordination, transport, and delivery of foreign assistance to Ukraine. Since 2022, Western logistics entities and IT companies have faced an elevated risk of targeting by the Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center (85th GTsSS), military unit 26165—tracked in the cybersecurity community under several names (see “Cybersecurity Industry Tracking”). The actors’ cyber espionage-oriented campaign, targeting technology companies and logistics entities, uses a mix of previously disclosed tactics, techniques, and procedures (TTPs). The authoring agencies expect similar targeting and TTP use to continue.

Executives and network defenders at logistics entities and technology companies should recognize the elevated threat of unit 26165 targeting, increase monitoring and threat hunting for known TTPs and indicators of compromise (IOCs), and posture network defenses with a presumption of targeting.

This cyber espionage-oriented campaign targeting logistics entities and technology companies uses a mix of previously disclosed TTPs and is likely connected to these actors’ wide scale targeting of IP cameras in Ukraine and bordering NATO nations.

The following authors and co-sealers are releasing this CSA:

United States National Security Agency (NSA)
United States Federal Bureau of Investigation (FBI)
United Kingdom National Cyber Security Centre (NCSC-UK)
Germany Federal Intelligence Service (BND) Bundesnachrichtendienst
Germany Federal Office for Information Security (BSI) Bundesamt für Sicherheit in der Informationstechnik
Germany Federal Office for the Protection of the Constitution (BfV) Bundesamt für Verfassungsschutz
Czech Republic Military Intelligence (VZ) Vojenské zpravodajství
Czech Republic National Cyber and Information Security Agency (NÚKIB) Národní úřad pro kybernetickou a informační bezpečnost
Czech Republic Security Information Service (BIS) Bezpečnostní informační služba
Poland Internal Security Agency (ABW) Agencja Bezpieczeństwa Wewnętrznego
Poland Military Counterintelligence Service (SKW) Służba Kontrwywiadu Wojskowego
United States Cybersecurity and Infrastructure Security Agency (CISA)
United States Department of Defense Cyber Crime Center (DC3)
United States Cyber Command (USCYBERCOM)
Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC)
Canadian Centre for Cyber Security (CCCS)
Danish Defence Intelligence Service (DDIS) Forsvarets Efterretningstjeneste
Estonian Foreign Intelligence Service (EFIS) Välisluureamet
Estonian National Cyber Security Centre (NCSC-EE) Küberturvalisuse keskus
French Cybersecurity Agency (ANSSI) Agence nationale de la sécurité des systèmes d’information
Netherlands Defence Intelligence and Security Service (MIVD) Militaire Inlichtingen- en Veiligheidsdienst

Download the PDF version of this report:

Russian GRU Targeting Western Logistics Entities and Technology Companies (PDF, 1,081KB)

For a downloadable list of IOCs, visit:

Introduction

For over two years, the Russian GRU 85th GTsSS, military unit 26165—commonly known in the cybersecurity community as APT28, Fancy Bear, Forest Blizzard, BlueDelta, and a variety of other identifiers—has conducted this campaign using a mix of known tactics, techniques, and procedures (TTPs), including reconstituted password spraying capabilities, spearphishing, and modification of Microsoft Exchange mailbox permissions.
In late February 2022, multiple Russian state-sponsored cyber actors increased the variety of cyber operations for purposes of espionage, destruction, and influence—with unit 26165 predominately involved in espionage. [1] As Russian military forces failed to meet their military objectives and Western countries provided aid to support Ukraine’s territorial defense, unit 26165 expanded its targeting of logistics entities and technology companies involved in the delivery of aid. These actors have also targeted Internet-connected cameras at Ukrainian border crossings to monitor and track aid shipments.
Note: This advisory uses the MITRE ATT&CK® for Enterprise framework, version 17. See Appendix A: MITRE ATT&CK tactics and techniques for a table of the threat actors’ activity mapped to MITRE ATT&CK tactics and techniques. This advisory uses the MITRE D3FEND® framework, version 1.0.

Description of Targets

The GRU unit 26165 cyber campaign against Western logistics providers and technology companies has targeted dozens of entities, including government organizations and private/commercial entities across virtually all transportation modes: air, sea, and rail. These actors have targeted entities associated with the following verticals within NATO member states, Ukraine, and at international organizations:

Defense Industry
Transportation and Transportation Hubs (ports, airports, etc.)
Maritime
Air Traffic Management
IT Services

In the course of the targeting lifecycle, unit 26165 actors identified and conducted follow-on targeting of additional entities in the transportation sector that had business ties to the primary target, exploiting trust relationships to attempt to gain additional access [T1199].

The actors also conducted reconnaissance on at least one entity involved in the production of industrial control system (ICS) components for railway management, though a successful compromise was not confirmed [TA0043].

The countries with targeted entities include the following, as illustrated in Figure 1:

Bulgaria
Czech Republic
France
Germany
Greece
Italy
Moldova
Netherlands
Poland
Romania
Slovakia
Ukraine
United States

Figure 1: Countries with Targeted Entities

Initial Access TTPs

To gain initial access to targeted entities, unit 26165 actors used several techniques to gain initial access to targeted entities, including (but not limited to):

The actors abused vulnerabilities associated with a range of brands and models of small office/home office (SOHO) devices to facilitate covert cyber operations, as well as proxy malicious activity via devices with geolocation in proximity to the target [T1665]. [2]

Credential Guessing/Brute Force

Unit 26165 actors’ credential guessing [T1110.001] operations in this campaign exhibit some similar characteristics to those disclosed in the previous CSA “Russian GRU Conducting Global Brute Force Campaign to Compromise Enterprise and Cloud Environments.” [3] Based on victim network investigations, the current iteration of this TTP employs a similar blend of anonymization infrastructure, including the use of Tor and commercial VPNs [T1090.003]. The actors frequently rotated the IP addresses used to further hamper detection. All observed connections were made via encrypted TLS [T1573].

Spearphishing

GRU unit 26165 actors’ spearphishing emails included links [T1566.002] leading to fake login pages impersonating a variety of government entities and Western cloud email providers’ webpages. These webpages were typically hosted on free third-party services or compromised SOHO devices and often used legitimate documents associated with thematically similar entities as lures. The subjects of spearphishing emails were diverse and ranged from professional topics to adult themes. Phishing emails were frequently sent via compromised accounts or free webmail accounts [T1586.002, T1586.003]. The emails were typically written in the target’s native language and sent to a single targeted recipient.

Some campaigns employed multi-stage redirectors [T1104] verifying IP-geolocation [T1627.001] and browser fingerprints [T1627] to protect credential harvesting infrastructure or provide multifactor authentication (MFA) [T1111] and CAPTCHA relaying capabilities [T1056]. Connecting endpoints failing the location checks were redirected to a benign URL [T1627], such as msn.com. Redirector services used include:

Webhook[.]site
FrgeIO
InfinityFree
Dynu
Mocky
Pipedream
Mockbin[.]org

The actors also used spearphishing to deliver malware (including HEADLACE and MASEPIE) executables [T1204.002] delivered via third-party services and redirectors [T1566.002], scripts in a mix of languages [T1059] (including BAT [T1059.003] and VBScript [T1059.005]) and links to hosted shortcuts [T1204.001].

CVE Usage

Throughout this campaign, GRU unit 26165 weaponized an Outlook NTLM vulnerability (CVE-2023-23397) to collect NTLM hashes and credentials via specially crafted Outlook calendar appointment invitations [T1187]. [4],[5] These actors also used a series of Roundcube CVEs (CVE-2020-12641, CVE-2020-35730, and CVE-2021-44026) to execute arbitrary shell commands [T1059], gain access to victim email accounts, and retrieve sensitive data from email servers [T1114].

Since at least fall 2023, the actors leveraged a WinRAR vulnerability (CVE-2023-38831) allowing for the execution of arbitrary code embedded in an archive as a means of initial access [T1659]. The actors sent emails with malicious attachments [T1566.001] or embedded hyperlinks [T1566.002] that downloaded a malicious archive prepared using this CVE.

Post-Compromise TTPs

After an initial compromise using one of the above techniques, unit 26165 actors conducted contact information reconnaissance to identify additional targets in key positions [T1589.002]. The actors also conducted reconnaissance of the cybersecurity department [T1591], individuals responsible for coordinating transport [T1591.004], and other companies cooperating with the victim entity [T1591.002].

The actors used native commands and open source tools, such as Impacket and PsExec, to move laterally within the environment [TA0008]. Multiple Impacket scripts were used as .exe files, in addition to the python versions, depending on the victim environment. The actors also moved laterally within the network using Remote Desktop Protocol (RDP) [T1021.001] to access additional hosts and attempt to dump Active Directory NTDS.dit domain databases [T1003.003] using native Active Directory Domain Services commands, such as in Figure 2: Example Active Directory Domain Services command:

C:Windowssystem32ntdsutil.exe "activate instance ntds" ifm "create full C:temp[a-z]{3}" quit quit

Figure 2: Example Active Directory Domain Services command

Additionally, GRU unit 26165 actors used the tools Certipy and ADExplorer.exe to exfiltrate information from the Active Directory. The actors installed python [T1059.006] on infected machines to enable the execution of Certipy. Accessed files were archived in .zip files prior to exfiltration [T1560]. The actors attempted to exfiltrate archived data via a previously dropped OpenSSH binary [T1048].

Incident response investigations revealed that the actors would take steps to locate and exfiltrate lists of Office 365 users and set up sustained email collection. The actors used manipulation of mailbox permissions [T1098.002] to establish sustained email collection at compromised logistics entities, as detailed in a Polish Cybercommand blog. [6]

After initial authentication, unit 26165 actors would change accounts’ folder permissions and enroll compromised accounts in MFA mechanisms to increase the trust-level of compromised accounts and enable sustained access [T1556.006]. The actors leveraged python scripts to retrieve plaintext passwords via Group Policy Preferences [T1552.006] using Get-GPPPassword.py and a modified ldap-dump.py to enumerate the Windows environment [T1087.002] and conduct a brute force password spray [T1110.003] via Lightweight Directory Access Protocol (LDAP). The actors would additionally delete event logs through the wevtutil utility [T1070.001].

After gaining initial access to the network, the actors pursued further access to accounts with access to sensitive information on shipments, such as train schedules and shipping manifests. These accounts contained information on aid shipments to Ukraine, including:

sender,
recipient,
train/plane/ship numbers,
point of departure,
destination,
container registration numbers,
travel route, and
cargo contents.

In at least one instance, the actors attempted to use voice phishing [T1566.004] to gain access to privileged accounts by impersonating IT staff.

Malware

Unit 26165’s use of malware in this campaign ranged from gaining initial access to establishing persistence and exfiltrating data. In some cases, the attack chain resulted in multiple pieces of malware being deployed in succession. The actors used dynamic link library (DLL) search order hijacking [T1574.001] to facilitate malware execution. There were a number of known malware variants tied to this campaign against logistics sector victims, including:

HEADLACE [7]
MASEPIE [8]

While other malware variants, such as OCEANMAP and STEELHOOK, [8] were not directly observed targeting logistics or IT entities, their deployment against victims in other sectors in Ukraine and other Western countries suggest that they could be deployed against logistics and IT entities should the need arise.

Persistence

In addition to the abovementioned mailbox permissions abuse, unit 26165 actors also used scheduled tasks [T1053.005], run keys [T1547.001], and placed malicious shortcuts [T1547.009] in the startup folder to establish persistence.

Exfiltration

GRU unit 26165 actors used a variety of methods for data exfiltration that varied based on the victim environment, including both malware and living off the land binaries. PowerShell commands [T1059.001] were often used to prepare data for exfiltration; for example, the actors prepared zip archives [T1560.001] for upload to their own infrastructure.

The actors also used server data exchange protocols and Application Programming Interfaces (APIs) such as Exchange Web Services (EWS) and Internet Message Access Protocol (IMAP) [T1114.002] to exfiltrate data from email servers. In multiple instances, the actors used periodic EWS queries [T1119] to collect new emails sent and received since the last data exfiltration [T1029]. The actors typically used infrastructure in close geographic proximity to the victim. Long gaps between exfiltration, the use of trusted and legitimate protocols, and the use of local infrastructure allowed for long-term collection of sensitive data to go undetected.

Connections to Targeting of IP Cameras

In addition to targeting logistics entities, unit 26165 actors likely used access to private cameras at key locations, such as near border crossings, military installations, and rail stations, to track the movement of materials into Ukraine. The actors also used legitimate municipal services, such as traffic cams.

The actors targeted Real Time Streaming Protocol (RTSP) servers hosting IP cameras primarily located in Ukraine as early as March 2022 in a large-scale campaign, which included attempts to enumerate devices [T1592] and gain access to the cameras’ feeds [T1125]. Actor-controlled servers sent RTSP DESCRIBE requests destined for RTSP servers, primarily hosting IP cameras [T1090.002]. The DESCRIBE requests were crafted to obtain access to IP cameras located on logically distinct networks from that of the routers that received the request. The requests included Base64-encoded credentials for the RTSP server, which included publicly documented default credentials and likely generic attempts to brute force access to the devices [T1110]. An example of an RTSP request is shown in Figure 3.

DESCRIBE rtsp://[IP ADDRESS] RTSP/1.0

CSeq: 1

Authorization: Basic

User-Agent: WebClient

Accept: application/sdp

DESCRIBE rtsp://[IP ADDRESS] RTSP/1.0

CSeq: 2

Authorization: Digest username="admin", realm="[a-f0-9]{12}", algorithm="MD5", nonce="[a-f0-9]{32}", uri="", response="[a-f0-9]{32}"

User-Agent: WebClient

Accept: application/sdp

Figure 3: Example RTSP request

Successful RTSP 200 OK responses contained a snapshot of the IP camera’s image and IP camera metadata such as video codec, resolution, and other properties depending on the IP camera’s configuration.

From a sample available to the authoring agencies of over 10,000 cameras targeted via this effort, the geographic distribution of victims showed a strong focus on cameras in Ukraine and border countries, as shown in Table 1:

Table 1: Geographic distribution of targeted IP cameras
Country	Percentage of Total Attempts
Ukraine	81.0%
Romania	9.9%
Poland	4.0%
Hungary	2.8%
Slovakia	1.7%
Others	0.6%

Mitigation Actions

General Security Mitigations

Architecture and Configuration

Employ appropriate network segmentation [D3-NI] and restrictions to limit access and utilize additional attributes (such as device information, environment, and access path) when making access decisions [D3-AMED].
- Consider Zero Trust principles when designing systems. Base product choices on how those products can solve specific risks identified as part of the end-to-end design. [9]
Ensure that host firewalls and network security appliances (e.g., firewalls) are configured to only allow legitimately needed data flows between devices and servers to prevent lateral movement [D3-ITF]. Alert on attempts to connect laterally between host devices or other unusual data flows.
Use automated tools to audit access logs for security concerns and identify anomalous access requests [D3-RAPA].
For organizations using on-premises authentication and email services, block and alert on NTLM/SMB requests to external infrastructure [D3-OTF].
Utilize endpoint, detection, and response (EDR) and other cybersecurity solutions on all systems, prioritizing high value systems with large amounts of sensitive data such as mail servers and domain controllers [D3-PM] first.
- Perform threat and attack modeling to understand how sensitive systems may be compromised within an organization’s specific architecture and security controls. Use this to develop a monitoring strategy to detect compromise attempts and select appropriate products to enact this strategy.
Collect and monitor Windows logs for certain events, especially for events that indicate that a log was cleared unexpectedly [D3-SFA].
Enable optional security features in Windows to harden endpoints and mitigate initial access techniques [D3-AH]:
- Enable attack surface reduction rules to prevent executable content from email [D3-ABPI].
- Enable attack surface reduction rules to prevent execution of files from globally writeable directories, such as Downloads or %APPDATA% [D3-EAL].
- Unless users are involved in the development of scripts, limit the local execution of scripts (such as batch scripts, VBScript, JScript/JavaScript, and PowerShell [10]) to known scripts [D3-EI], and audit execution attempts.
- Disable Windows Host Scripting functionality and configure PowerShell to run in Constrained mode [D3-ACH].
Where feasible, implement allowlisting for applications and scripts to limit execution to only those needed for authorized activities, blocking all others by default [D3-EAL].
Consider using open source SIGMA rules as a baseline for detecting and alerting on suspicious file execution or command parameters [D3-PSA].
Use services that provide enhanced browsing services and safe link checking [D3-URA]. Significant reductions in successful spearphishing attempts were noted when email providers began offering link checking and automatic file detonation to block malicious content.
Where possible, block logins from public VPNs, including exit nodes in the same country as target systems, or, if they need to be allowed, alert on them for further investigation. Most organizations should not need to allow incoming traffic, especially logins to systems, from VPN services [D3-NAM].
Educate users to only use approved corporate systems for relevant government and military business and avoid the use of personal accounts on cloud email providers to conduct official business. Network administrators should also audit both email and web request logs to detect such activity.

Many organizations may not need to allow outgoing traffic to hosting and API mocking services, which are frequently used by GRU unit 26165. Organizations should consider alerting on or blocking the following services, with exceptions allowlisted for legitimate activity [D3-DNSDL].

*.000[.]pe
*.1cooldns[.]com
*.42web[.]io
*.4cloud[.]click
*.accesscan[.]org
*.bumbleshrimp[.]com
*.camdvr[.]org
*.casacam[.]net
*.ddnsfree[.]com
*.ddnsgeek[.]com
*.ddnsguru[.]com
*.dynuddns[.]com
*.dynuddns[.]net
*.free[.]nf
*.freeddns[.]org
*.frge[.]io
*.glize[.]com
*.great-site[.]net
*.infinityfreeapp[.]com
*.kesug[.]com
*.loseyourip[.]com
*.lovestoblog[.]com
*.mockbin[.]io
*.mockbin[.]org
*.mocky[.]io
*.mybiolink[.]io
*.mysynology[.]net
*.mywire[.]org
*.ngrok[.]io
*.ooguy[.]com
*.pipedream[.]net
*.rf[.]gd
*.urlbae[.]com
*.webhook[.]site
*.webhookapp[.]com
*.webredirect[.]org
*.wuaze[.]com

Heuristic detections for web requests to new subdomains, including of the above providers, may uncover malicious phishing activity [D3-DNRA]. Logging the requests for each sub-domain requested by users on a network, such as in DNS or firewall logs, may enable system administrators to identify new targeting and victims.

Identity and Access Management

Organizations should take measures to ensure strong access controls and mitigate against common credential theft techniques:

Use MFA with strong factors, such as passkeys or PKI smartcards, and require regular re-authentication [D3-MFA]. [11], [12] Strong authentication factors are not guessable using dictionary techniques, so they resist brute force attempts.
Implement other mitigations for privileged accounts: including limiting the number of admin accounts, considering using hardware MFA tokens, and regularly reviewing all privileged user accounts [D3-JFAPA].
Separate privileged accounts by role and alert on misuse of privileged accounts [D3-UAP]. For example, email administrator accounts should be different from domain administrator accounts.
Reduce reliance on passwords; instead, consider using services like single sign-on [D3-TBA].
- For organizations using on-premises authentication and email services, plan to disable NTLM entirely and migrate to more robust authentication processes such as PKI certificate authentication.
Do not store passwords in Group Policy Preferences (GPP). Remove all passwords previously included in GPP and change all passwords on the corresponding accounts [D3-CH]. [13]
Use account throttling or account lockout [D3-ANET]:
- Throttling is preferred to lockout. Throttling progressively increases time delay between successive login attempts.
- Account lockout can leave legitimate users unable to access their accounts and requires access to an account recovery process.
- Account lockout can provide a malicious actor with an easy way to launch a Denial of Service (DoS).
- If using lockout, then allowing 5 to 10 attempts before lockout is recommended.
Use a service to check for compromised passwords before using them [D3-SPP]. For example, “Have I Been Pwned” can be used to check whether a password has been previously compromised without disclosing the potential password.
Change all default credentials [D3-CRO] and disable protocols that use weak authentication (e.g., clear-text passwords or outdated and vulnerable authentication or encryption protocols) or do not support multi-factor authentication [D3-ACH] [D3-ET]. Always configure access controls carefully to ensure that only well-maintained and well-authenticated accounts have access. [13]

IP Camera Mitigations

The following mitigation techniques for IP cameras can be used to defend against this type of malicious activity:

Ensure IP cameras are currently supported. Replace devices that are out of support.
Apply security patches and firmware updates to all IP cameras [D3-SU].
Disable remote access to the IP camera, if unnecessary [D3-ITF].
Ensure cameras are protected by a security appliance, if possible, such as by using a firewall to prevent communication with the camera from IP addresses not on an allowlist [D3-NAM].
If remote access to IP camera feeds is required, ensure authentication is enabled [D3-AA] and use a VPN to connect remotely [D3-ET]. Use MFA for management accounts if supported [D3-MFA].
Disable Universal Plug and Play (UPnP), Peer-to-Peer (P2P), and Anonymous Visit features on IP cameras and routers [D3-NI].
Turn off other ports/services not in use (e.g., FTP, web interface, etc.) [D3-ACH].
If supported, enable authenticated RTSP access only [D3-AA].
Review all authentication activity for remote access to make sure it is valid and expected [D3-UBA]. Investigate any unexpected or unusual activity.
Audit IP camera user accounts to ensure they are an accurate reflection of your organization and that they are being used as expected [D3-UAP].
Configure, tune, and monitor logging—if available—on the IP camera.

Indicators of Compromise (IOCs)

Note: Specific IoCs may no longer be actor controlled, may themselves be compromised infrastructure or email accounts, or may be shared infrastructure such as public VPN or Tor exit nodes. Care should be taken when basing triaging logs or developing detection rules on these indicators. GRU unit 26165 almost certainly uses extensive further infrastructure and TTPs not specifically listed in this report.

Utilities and scripts

Legitimate utilities

Unauthorized or unusual use of the following legitimate utilities can be an indication of a potential compromise:

ntdsutil – A legitimate Windows executable used by threat actors to export contents of Active Directory
wevtutil – A legitimate Windows executable used by threat actors to delete event logs
vssadmin – A legitimate Windows executable possibly used by threat actors to make a copy of the server’s C: drive
ADexplorer – A legitimate window executable to view, edit, and backup Active Directory Certificate Services
OpenSSH – The Windows version of a legitimate open source SSH client
schtasks – A legitimate Windows executable used to create persistence using scheduled tasks
whoami – A legitimate Windows executable used to retrieve the name of the current user
tasklist – A legitimate Windows executable used to retrieve the list of running processes
hostname – A legitimate Windows executable used to retrieve the device name
arp – A legitimate Windows executable used to retrieve the ARP table for mapping the network environment
systeminfo – A legitimate Windows executable used to retrieve a comprehensive summary of device and operating system information
net – A legitimate Windows executable used to retrieve detailed user information
wmic – A legitimate Windows executable used to interact with Windows Management Instrumentation (WMI), such as to retrieve letters assigned to logical partitions on storage drives
cacls – A legitimate Windows executable used to modify permissions on files
icacls – A legitimate Windows executable used to modify permissions to files and handle integrity levels and ownership
ssh – A legitimate Windows executable used to establish network shell connections
reg – A legitimate Windows executable used to add to or modify the system registry

Note: Additional heuristics are needed for effective hunting for these and other living off the land (LOTL) binaries to avoid being overwhelmed by false positives if these legitimate management tools are used regularly. See the joint guide, Identifying and Mitigating Living Off the Land Techniques, for guidance on developing a multifaceted cybersecurity strategy that enables behavior analytics, anomaly detection, and proactive hunting, which are part of a comprehensive approach to mitigating cyber threats that employ LOTL techniques.

Malicious scripts

Certipy – An open source python tool for enumerating and abusing Active Directory Certificate Services
Get-GPPPassword.py – An open source python script for finding insecure passwords stored in Group Policy Preferences
ldap-dump.py – A script for enumerating user accounts and other information in Active Directory
Hikvision backdoor string: “YWRtaW46MTEK”

Suspicious command lines

While the following utilities are legitimate, and using them with the command lines shown may also be legitimate, these command lines are often used during malicious activities and could be an indication of a compromise:

edge.exe “-headless-new -disable-gpu”
ntdsutil.exe “activate instance ntds” ifm “create full C:temp[a-z]{3}” quit quit
ssh -Nf
schtasks /create /xml

Outlook CVE Exploitation IOCs

md-shoeb@alfathdoor[.]com[.]sa
jayam@wizzsolutions[.]com
accounts@regencyservice[.]in
m.salim@tsc-me[.]com
vikram.anand@4ginfosource[.]com
mdelafuente@ukwwfze[.]com
sarah@cosmicgold469[.]co[.]za
franch1.lanka@bplanka[.]com
commerical@vanadrink[.]com
maint@goldenloaduae[.]com
karina@bhpcapital[.]com
tv@coastalareabank[.]com
ashoke.kumar@hbclife[.]in
213[.]32[.]252[.]221
124[.]168[.]91[.]178
194[.]126[.]178[.]8
159[.]196[.]128[.]120

Commonly Used Webmail Providers

portugalmail[.]pt
mail-online[.]dk
email[.]cz
seznam[.]cz

Malicious Archive Filenames Involving CVE-2023-38831

calc.war.zip
news_week_6.zip
Roadmap.zip
SEDE-PV-2023-10-09-1_EN.zip
war.zip
Zeyilname.zip

Brute Forcing IP Addresses

Disclaimer: These IP addresses date June 2024 through August 2024. The authoring agencies recommend organizations investigate or vet these IP addresses prior to taking action, such as blocking.

June 2024	July 2024	August 2024
192[.]162[.]174[.]94	207[.]244[.]71[.]84	31[.]135[.]199[.]145	79[.]184[.]25[.]198	91[.]149[.]253[.]204
103[.]97[.]203[.]29	162[.]210[.]194[.]2	31[.]42[.]4[.]138	79[.]185[.]5[.]142	91[.]149[.]254[.]75
209[.]14[.]71[.]127		46[.]112[.]70[.]252	83[.]10[.]46[.]174	91[.]149[.]255[.]122
109[.]95[.]151[.]207		46[.]248[.]185[.]236	83[.]168[.]66[.]145	91[.]149[.]255[.]19
		64[.]176[.]67[.]117	83[.]168[.]78[.]27	91[.]149[.]255[.]195
		64[.]176[.]69[.]196	83[.]168[.]78[.]31	91[.]221[.]88[.]76
		64[.]176[.]70[.]18	83[.]168[.]78[.]55	93[.]105[.]185[.]139
		64[.]176[.]70[.]238	83[.]23[.]130[.]49	95[.]215[.]76[.]209
		64[.]176[.]71[.]201	83[.]29[.]138[.]115	138[.]199[.]59[.]43
		70[.]34[.]242[.]220	89[.]64[.]70[.]69	147[.]135[.]209[.]245
		70[.]34[.]243[.]226	90[.]156[.]4[.]204	178[.]235[.]191[.]182
		70[.]34[.]244[.]100	91[.]149[.]202[.]215	178[.]37[.]97[.]243
		70[.]34[.]245[.]215	91[.]149[.]203[.]73	185[.]234[.]235[.]69
		70[.]34[.]252[.]168	91[.]149[.]219[.]158	192[.]162[.]174[.]67
		70[.]34[.]252[.]186	91[.]149[.]219[.]23	194[.]187[.]180[.]20
		70[.]34[.]252[.]222	91[.]149[.]223[.]130	212[.]127[.]78[.]170
		70[.]34[.]253[.]13	91[.]149[.]253[.]118	213[.]134[.]184[.]167
		70[.]34[.]253[.]247	91[.]149[.]253[.]198
		70[.]34[.]254[.]245	91[.]149[.]253[.]20

Detections

Customized NTLM listener

rule APT28_NTLM_LISTENER {

meta:

description = "Detects NTLM listeners including APT28's custom one"

strings:

$command_1 = "start-process powershell.exe -WindowStyle hidden"

$command_2 = "New-Object System.Net.HttpListener"

$command_3 = "Prefixes.Add('http://localhost:8080/')"

$command_4 = "-match 'Authorization'"

$command_5 = "GetValues('Authorization')"

$command_6 = "Request.RemoteEndPoint.Address.IPAddressToString"

$command_7 = "@(0x4e,0x54,0x4c,0x4d, 0x53,0x53,0x50,0x00,0x02,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x28,0x00,0x00,0x01,0x82,0x00,0x00,0x11,0x22,0x33,0x44,0x55,0x66,0x77,0x88,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00)"

$command_8 = ".AllKeys"

$variable_1 = "$NTLMAuthentication" nocase

$variable_2 = "$NTLMType2" nocase

$variable_3 = "$listener" nocase

$variable_4 = "$hostip" nocase

$variable_5 = "$request" nocase

$variable_6 = "$ntlmt2" nocase

$variable_7 = "$NTLMType2Response" nocase

$variable_8 = "$buffer" nocase

condition:

5 of ($command_*)

or

all of ($variable_*)

}

HEADLACE shortcut

rule APT28_HEADLACE_SHORTCUT {

meta:

description = "Detects the HEADLACE backdoor shortcut dropper. Rule is meant for threat hunting."

strings:

$type = "[InternetShortcut]" ascii nocase

$url = "file://"

$edge = "msedge.exe"

$icon = "IconFile"

condition:

all of them

}

HEADLACE credential dialogbox phishing

rule APT28_HEADLACE_CREDENTIALDIALOG {

meta:

description = "Detects scripts used by APT28 to lure user into entering credentials"

strings:

$command_1 = "while($true)"

$command_2 = "Get-Credential $(whoami)"

$command_3 = "Add-Content"

$command_4 = ".UserName"

$command_5 = ".GetNetworkCredential().Password"

$command_6 = "GetNetworkCredential().Password.Length -ne 0"

condition:

5 of them

}

HEADLACE core script

rule APT28_HEADLACE_CORE {

meta:

description = "Detects HEADLACE core batch scripts"

strings:

$chcp = "chcp 65001" ascii

$headless = "start "" msedge --headless=new --disable-gpu" ascii

$command_1 = "taskkill /im msedge.exe /f" ascii

$command_2 = "whoami>"%programdata%" ascii

$command_3 = "timeout" ascii

$command_4 = "copy "%programdata%" ascii

$non_generic_del_1 = "del /q /f "%programdata%" ascii

$non_generic_del_3 = "del /q /f "%userprofile%Downloads" ascii

$generic_del = "del /q /f" ascii

condition:

(

$chcp

and

$headless

)

and

(

1 of ($non_generic_del_*)

or

($generic_del)

or

3 of ($command_*)

)

}

MASEPIE

rule APT28_MASEPIE {

meta:

description = "Detects MASEPIE python script"

strings:

$masepie_unique_1 = "os.popen('whoami').read()"

$masepie_unique_2 = "elif message == 'check'"

$masepie_unique_3 = "elif message == 'send_file':"

$masepie_unique_4 = "elif message == 'get_file'"

$masepie_unique_5 = "enc_mes('ok'"

$masepie_unique_6 = "Bad command!'.encode('ascii'"

$masepie_unique_7 = "{user}{SEPARATOR}{k}"

$masepie_unique_8 = "raise Exception("Reconnect"

condition:

3 of ($masepie_unique_*)

}

STEELHOOK

rule APT28_STEELHOOK {

meta:

description = "Detects APT28's STEELHOOK powershell script"

strings:

$s_1 = "$($env:LOCALAPPDATAGoogleChromeUser DataLocal State)"

$s_2 = "$($env:LOCALAPPDATAGoogleChromeUser DataDefaultLogin Data)"

$s_3 = "$($env:LOCALAPPDATAMicrosoftEdgeUser DataLocal State)"

$s_4 = "$($env:LOCALAPPDATAMicrosoftEdgeUser DataDefaultLogin Data)"

$s_5 = "os_crypt.encrypted_key"

$s_6 = "System.Security.Cryptography.DataProtectionScope"

$s_7 = "[system.security.cryptography.protectdata]::Unprotect"

$s_8 = "Invoke-RestMethod"

condition:

all of them

}

PSEXEC

rule GENERIC_PSEXEC {

meta:

description = "Detects SysInternals PSEXEC executable"

strings:

$sysinternals_1 = "SYSINTERNALS SOFTWARE LICENCE TERMS"

$sysinternals_2 = "/accepteula"

$sysinternals_3 = "SoftwareSysinternals"

$network_1 = "%sIPC$"

$network_2 = "%sADMIN$%s"

$network_3 = "DeviceLanmanRedirector%sipc$"

$psexec_1 = "PSEXESVC"

$psexec_2 = "PSEXEC-{}-"

$psexec_3 = "Copying %s to %s..."

$psexec_4 = "gPSINFSVC"

condition:

(

( uint16( 0x0 ) ==0x5a4d )

and

( uint16( uint32( 0x3c )) == 0x4550 )

)

and

filesize < 1024KB

and

(

( any of ($sysinternals_*) and any of ($psexec_*) )

or

( 2 of ($network_*) and 2 of ($psexec_*))

)

}

The cybersecurity industry provides overlapping cyber threat intelligence, IOCs, and mitigation recommendations related to GRU unit 26165 cyber actors. While not all encompassing, the following are the most notable threat group names related under MITRE ATT&CK G0007 and commonly used within the cybersecurity community:

APT28 [14]
Fancy Bear [14]
Forest Blizzard [14]
Blue Delta [15]

Note: Cybersecurity companies have different methods of tracking and attributing cyber actors, and this may not be a 1:1 correlation to the U.S. government’s understanding for all activity related to these groupings.

Further Reference

To search for the presence of malicious email messages targeting CVE-2023-23397, network defenders may consider using the script published by Microsoft: https://aka.ms/CVE-2023-23397ScriptDoc.

For the Impacket TTP, network defenders may consider using the following publicly available Impacket YARA detection rule:
https://github.com/Neo23x0/signature-base/blob/master/yara/gen_impacket_tools.yar

Works Cited

[1] Microsoft. Defending Ukraine: Early Lessons from the Cyber War. 2022. https://blogs.microsoft.com/on-the-issues/2022/06/22/defending-ukraine-early-lessons-from-the-cyber-war/
[2] FBI et al. Russian Cyber Actors Use Compromised Routers to Facilitate Cyber Operations. 2024. https://media.defense.gov/2024/Feb/27/2003400753/-1/-1/0/CSA-Russian-Actors-Use-Routers-Facilitate-Cyber_Operations.PDF
[3] NSA et al. Russian GRU Conducting Global Brute Force Campaign to Compromise Enterprise and Cloud Environments. 2021. https://media.defense.gov/2021/Jul/01/2002753896/-1/-1/0/CSA_GRU_GLOBAL_BRUTE_FORCE_CAMPAIGN_UOO158036-21.PDF
[4] ANSSI. Campagnes d'attaques du mode opératoire APT28 depuis 2021. 2023. https://cert.ssi.gouv.fr/cti/CERTFR-2023-CTI-009/
[5] ANSSI. Targeting and compromise of french entities using the APT28 intrusion set. 2025. https://cert.ssi.gouv.fr/cti/CERTFR-2025-CTI-007/
[6] Polish Cyber Command. Detecting Malicious Activity Against Microsoft Exchange Servers. 2023. https://www.wojsko-polskie.pl/woc/articles/aktualnosci-w/detecting-malicious-activity-against-microsoft-exchange-servers/
[7] IBM. Israel-Hamas Conflict Lures to Deliver Headlace Malware. 2023. https://securityintelligence.com/x-force/itg05-ops-leverage-israel-hamas-conflict-lures-to-deliver-headlace-malware/
[8] CERT-UA. APT28: From Initial Attack to Creating Domain Controller Threats in an Hour. 2023. https://cert.gov.ua/article/6276894
[9] NSA. Embracing a Zero Trust Security Model. 2021. https://media.defense.gov/2021/Feb/25/2002588479/-1/-1/0/CSI_EMBRACING_ZT_SECURITY_MODEL_UOO115131-21.PDF
[10] NSA et al. Keeping PowerShell: Security Measures to Use and Embrace. 2022. https://media.defense.gov/2022/Jun/22/2003021689/-1/-1/0/CSI_KEEPING_POWERSHELL_SECURITY_MEASURES_TO_USE_AND_EMBRACE_20220622.PDF
[11] National Institute of Standards and Technology (NIST). Special Publication 800-63B: Digital Identity Guidelines – Authentication and Lifecycle Management. 2020. https://pages.nist.gov/800-63-3/sp800-63b.html
[12] NSA. Selecting Secure Multi-factor Authentication Solutions. October 16, 2020. https://media.defense.gov/2024/Jul/31/2003515137/-1/-1/0/MULTIFACTOR_AUTHENTICATION_SOLUTIONS_UOO17091520.PDF
[13] NSA and CSA. NSA and CISA Red and Blue Teams Share Top Ten Cybersecurity Misconfigurations. 2023. https://media.defense.gov/2023/Oct/05/2003314578/-1/-1/0/JOINT_CSA_TOP_TEN_MISCONFIGURATIONS_TLP-CLEAR.PDF

[14] Department of Justice. Justice Department Conducts Court-Authorized Disruption of Botnet Controlled by the Russian Federation’s Main Intelligence Directorate of the General Staff (GRU). 2024. https://www.justice.gov/archives/opa/pr/justice-department-conducts-court-authorized-disruption-botnet-controlled-russian
[15] Recorded Future. GRU’s BlueDelta Targets Key Networks in Europe with Multi-Phase Espionage Campaigns. 2024. https://go.recordedfuture.com/hubfs/reports/CTA-RU-2024-0530.pdf

Disclaimer of endorsement

The information and opinions contained in this document are provided "as is" and without any warranties or guarantees. Reference herein to any specific commercial products, process, or service by trade name, trademark, manufacturer, or otherwise, does not constitute or imply its endorsement, recommendation, or favoring by the United States Government, and this guidance shall not be used for advertising or product endorsement purposes.

Purpose

This document was developed in furtherance of the authoring agencies’ cybersecurity missions, including their responsibilities to identify and disseminate threats and to develop and issue cybersecurity specifications and mitigations. This information may be shared broadly to reach all appropriate stakeholders.

Contact

United States organizations

National Security Agency (NSA)
Cybersecurity and Infrastructure Security Agency (CISA) and Federal Bureau of Investigation (FBI)
- U.S. organizations are encouraged to reporting suspicious or criminal activity related to information in this advisory to CISA via the agency’s Incident Reporting System, its 24/7 Operations Center (report@cisa.gov or 888-282-0870), or your local FBI field office. When available, please include the following information regarding the incident: date, time, and location of the incident; type of activity; number of people affected; type of equipment user for the activity; the name of the submitting company or organization; and a designated point of contact.
Department of Defense Cyber Crime Center (DC3)

United Kingdom organizations

Germany organizations

Czech Republic organizations

Poland organizations

Australian organizations

Visit cyber.gov.au or call 1300 292 371 (1300 CYBER 1) to report cybersecurity incidents and access alerts and advisories.

Canadian organizations

Estonia organizations

French organizations

French organizations are encouraged to report suspicious activity or incident related to information found in this advisory by contacting ANSSI/CERT-FR by email at cert-fr@ssi.gouv.fr or by phone at: 3218 or +33 9 70 83 32 18.

See Table 2 through Table 14 for all the threat actor tactics and techniques referenced in this advisory.

Table 2: Reconnaissance
Tactic/Technique Title	ID	Use
Reconnaissance	TA0043	Conducted reconnaissance on at least one entity involved in the production of ICS components for railway management.
Gather Victim Identity Information: Email Addresses	T1589.002	Conducted contact information reconnaissance to identify additional targets in key positions.
Gather Victim Org Information	T1591	Conducted reconnaissance of the cybersecurity department.
Gather Victim Org Information: Identify Roles	T1591.004	Conducted reconnaissance of individuals responsible for coordinating transport.
Gather Victim Org Information: Business Relationships	T1591.002	Conducted reconnaissance of other companies cooperating with the victim entity.
Gather Victim Host Information	T1592	Attempted to enumerate Real Time Streaming Protocol (RTSP) servers hosting IP cameras.

Table 3: Resource development
Tactic/Technique Title	ID	Use
Compromise Accounts: Email Accounts	T1586.002	Sent phishing emails using compromised accounts.
Compromise Accounts: Cloud Accounts	T1586.003	Sent phishing emails using compromised accounts.

Table 4: Initial Access
Tactic/Technique Title	ID	Use
Trusted Relationship	T1199	Conducted follow-on targeting of additional entities in the transportation sector that had business ties to the primary target, exploiting trust relationships to attempt to gain additional access.
Phishing	T1566	Used spearphishing for credentials and delivering malware to gain initial access to targeted entities.
Phishing: Spearphishing Attachment	T1566.001	Sent emails with malicious attachments.
Phishing: Spearphishing Link	T1566.002	Used spearphishing with included links to fake login pages. Sent emails with embedded hyperlinks that downloaded a malicious archive.
Phishing: Spearphishing Voice	T1566.004	Attempted to use voice phishing to gain access to privileged accounts by impersonating IT staff.
External Remote Services	T1133	Exploited Internet-facing infrastructure, including corporate VPNs, to gain initial access to targeted entities.
Exploit Public-Facing Application	T1190	Exploited public vulnerabilities and SQL injection to gain initial access to targeted entities.
Content Injection	T1659	Leveraged a WinRAR vulnerability allowing for the execution of arbitrary code embedded in an archive.

Table 5: Execution
Tactic/Technique Title	ID	Use
User Execution: Malicious Link	T1204.001	Used malicious links to hosted shortcuts in spearphishing.
User Execution: Malicious File	T1204.002	Delivered malware executables via spearphishing.
Scheduled Task/Job: Scheduled Task	T1053.005	Used scheduled tasks to establish persistence.
Command and Scripting Interpreter	T1059	Delivered scripts in spearphishing. Executed arbitrary shell commands.
Command and Scripting Interpreter: PowerShell	T1059.001	PowerShell commands were often used to prepare data for exfiltration.
Command and Scripting Interpreter: Windows Command Shell	T1059.003	Used BAT script in spearphishing.
Command and Scripting Interpreter: Visual Basic	T1059.005	Used VBScript in spearphishing.
Command and Scripting Interpreter: Python	T1059.006	Installed python on infected machines to enable the execution of Certipy.

Table 6: Persistence
Tactic/Technique Title	ID	Use
Account Manipulation: Additional Email Delegate Permissions	T1098.002	Used manipulation of mailbox permissions to establish sustained email collection.
Modify Authentication Process: Multi-Factor Authentication	T1556.006	Enrolled compromised accounts in MFA mechanisms to increase the trust-level of compromised accounts and enable sustained access.
Hijack Execution Flow: DLL Search Order Hijacking	T1574.001	Used DLL search order hijacking to facilitate malware execution.
Boot or Logon Autostart Execution: Registry Run Keys / Startup Folder	T1547.001	Used run keys to establish persistence.
Boot or Logon Autostart Execution: Shortcut Modification	T1547.009	Placed malicious shortcuts in the startup folder to establish persistence.

Table 7: Defense Evasion
Tactic/Technique Title	ID	Use
Indicator Removal: Clear Windows Event Logs	T1070.001	Deleted event logs through the wevtutil utility.

Table 8: Credential access
Tactic/Technique Title	ID	Use
Brute Force		Sent requests with Base64-encoded credentials for the RTSP server, which included publicly documented default credentials, and likely were generic attempts to brute force access to the devices.
Brute Force: Password Guessing	T1110.001	Used credential guessing to gain initial access to targeted entities.
Brute Force: Password Spraying	T1110.003	Used brute force to gain initial access to targeted entities. Conducted a brute force password spray via LDAP.
Multi-Factor Authentication Interception		Used multi-stage redirectors to provide MFA relaying capabilities in some campaigns.
Input Capture		Used multi-stage redirectors to provide CAPTCHA relaying capabilities in some campaigns.
Forced Authentication		Used an Outlook NTLM vulnerability to collect NTLM hashes and credentials via specially crafted Outlook calendar appointment invitations.
OS Credential Dumping: NTDS	T1003.003	Attempted to dump Active Directory NTDS.dit domain databases.
Unsecured Credentials: Group Policy Preferences	T1552.006	Retrieved plaintext passwords via Group Policy Preferences using Get-GPPPassword.py.

Table 9: Discovery
Tactic/Technique Title	ID	Use
Account Discovery: Domain Account	T1087.002	Used a modified ldap-dump.py to enumerate the Windows environment.

Table 10: Command and Control
Tactic/Technique Title	ID	Use
Hide Infrastructure	T1665	Abused SOHO devices to facilitate covert cyber operations, as well as proxy malicious activity, via devices with geolocation in proximity to the target.
Proxy: External Proxy	T1090.002	Actor-controlled servers sent RTSP DESCRIBE requests destined for RTSP servers.
Proxy: Multi-hop Proxy	T1090.003	Used Tor and commercial VPNs as part of their anonymization infrastructure
Encrypted Channel	T1573	Connected to victim infrastructure using encrypted TLS.
Multi-Stage Channels	T1104	Used multi-stage redirectors for campaigns.

Table 11: Defense evasion (mobile framework)
Tactic/Technique Title	ID	Use
Execution Guardrails		Used multi-stage redirectors to verify browser fingerprints in some campaigns.
Execution Guardrails: Geofencing	T1627.001	Used multi-stage redirectors to verify IP-geolocation in some campaigns.

Table 12: Lateral movement
Tactic/Technique Title	ID	Use
Lateral Movement		Used native commands and open source tools, such as Impacket and PsExec, to move laterally within the environment.
Remote Services: Remote Desktop Protocol	T1021.001	Moved laterally within the network using RDP.

Table 13: Collection
Tactic/Technique Title	ID	Use
Email Collection		Retrieved sensitive data from email servers.
Email Collection: Remote Email Collection	T1114.002	Used server data exchange protocols and APIs such as Exchange Web Services (EWS) and IMAP to exfiltrate data from email servers.
Automated Collection		Used periodic EWS queries to collect new emails.
Video Capture		Attempted to gain access to the cameras’ feeds.
Archive Collected Data		Accessed files were archived in .zip files prior to exfiltration.
Archive Collected Data: Archive via Utility	T1560.001	Prepared zip archives for upload to the actors’ infrastructure.

Table 14: Exfiltration
Tactic/Technique Title	ID	Use
Exfiltration Over Alternative Protocol		Attempted to exfiltrate archived data via a previously dropped OpenSSH binary.
Scheduled Transfer		Used periodic EWS queries to collect new emails sent and received since the last data exfiltration.

Appendix B: CVEs exploited

Table 15: Exploited CVE information
CVE	Vendor/Product	Details
CVE-2023-38831	RARLAB WinRAR	Allows execution of arbitrary code when a user attempts to view a benign file within a ZIP archive.
CVE-2023-23397	Microsoft Outlook	External actors could send specially crafted emails that cause a connection from the victim to an untrusted location of the actor’s control, leaking the Net-NTLMv2 hash of the victim that the actor could then relay to another service to authenticate as the victim.
CVE-2021-44026	Roundcube Webmail	Roundcube before 1.3.17 and 1.4.x before 1.4.12 is prone to a potential SQL injection via search or search params.
CVE-2020-35730	Roundcube Webmail	An XSS issue was discovered in Roundcube Webmail before 1.2.13, 1.3.x before 1.3.16 and 1.4.x before 1.4.10, where a plaintext email message with JavaScript in a link reference element is mishandled by linkref_addindex in rcube_string_replacer.php.
CVE-2020-12641	Roundcube Webmail	Roundcube Webmail before 1.4.4 allows arbitrary code execution via shell metacharacters in a configuration setting for im_convert_path or im_identify_path in rcube_image.php.

Appendix C: MITRE D3FEND Countermeasures

Table 16: MITRE D3FEND countermeasures
Countermeasure Title	ID	Details
Network Isolation		Employ appropriate network segmentation. Disable Universal Plug and Play (UPnP), Peer-to-Peer (P2P), and Anonymous Visit features on IP cameras and routers.
Access Mediation		Limit access and utilize additional attributes (such as device information, environment, and access path) when making access decisions. Configure access controls carefully to ensure that only well-maintained and well-authenticated accounts have access.
Inbound Traffic Filtering		Implement host firewall rules to block connections from other devices on the network, other than from authorized management devices and servers, to prevent lateral movement.
Resource Access Pattern Analysis		Use automated tools to audit access logs for security concerns and identify anomalous access requests.
Outbound Traffic Filtering		Block NTLM/SMB requests to external infrastructure.
Platform Monitoring		Install EDR/logging/cybersecurity solutions onto high value systems with large amounts of sensitive data such as mail servers and domain controllers.
System File Analysis		Collect and monitor Windows logs for certain events, especially for events that indicate that a log was cleared unexpectedly.
Application Hardening		Enable optional security features in Windows to harden endpoints and mitigate initial access techniques.
Application-based Process Isolation		Enable attack surface reduction rules to prevent executable content from email.
Executable Allowlisting		Enable attack surface reduction rules to prevent execution of files from globally writeable directories, such as Downloads or %APPDATA%.
Execution Isolation		Unless users are involved in the development of scripts, limit the execution of scripts (such as batch, JavaScript, and PowerShell) to known scripts.
Application Configuration Hardening		Disable Windows Host Scripting functionality and configure PowerShell to run in Constrained mode. Disable protocols that use weak authentication (e.g., clear-text passwords, or outdated and vulnerable authentication or encryption protocols) or do not support multi-factor authentication. Turn off other ports/services not in use (e.g., FTP, web interface, etc.).
Process Spawn Analysis		Use open source SIGMA rules as a baseline for detecting and alerting on suspicious file execution or command parameters.
URL Reputation Analysis		Use services that provide enhanced browsing services and safe link checking.
Network Access Mediation		Do not allow incoming traffic, especially logins to systems, from public VPN services. Where possible, logins from public VPNs, including exit nodes in the same country as target systems, should be blocked or, if allowed, alerted on for further investigation. Ensure cameras and other Internet of Things devices are protected by a security appliance, if possible.
DNS Denylisting	D3-DNSDL	Do not allow outgoing traffic to hosting and API mocking services frequently used by malicious actors.
Domain Name Reputation Analysis		Heuristic detections for web requests to new subdomains may uncover malicious phishing activity. Logging the requests for each sub-domain requested by users on a network, such as in DNS or firewall logs, may enable system administrators to identify new targeting and victims.
Multi-factor Authentication		Use MFA with strong factors and require regular re-authentication, especially for management accounts.
Job Function Access Pattern Analysis	D3-JFAPA	Implement other mitigations for privileged accounts: including limiting the number of admin accounts, considering using hardware MFA tokens, and regularly reviewing all privileged user accounts.
User Account Permissions		Separate privileged accounts by role and alert on misuse of privileged accounts. Audit user accounts on all devices to ensure they are an accurate reflection of your organization and that they are being used as expected.
Token-based Authentication		Reduce reliance on passwords; instead, consider using services like single sign-on.
Credential Hardening		Do not store passwords in Group Policy Preferences (GPP). Remove all passwords previously included in GPP and change all passwords on the corresponding accounts.
Authentication Event Threshholding		Use account throttling or account lockout. Throttling progressively increases time delay between successive login attempts. If using account lockout, allow between 5 to 10 attempts before lockout.
Strong Password Policy		Use a service to check for compromised passwords before using them.
Credential Rotation		Change all default credentials.
Encrypted Tunnels		Disable protocols that use weak authentication (e.g., clear-text passwords, or outdated and vulnerable authentication or encryption protocols). Use a VPN for remote connections to devices.
Software Update		Apply security patches and firmware updates to all devices. Ensure devices are currently supported. Replace devices that are end-of-life.
Agent Authentication		Ensure authentication is enabled for remote access to devices. If supported on IP cameras, enable authenticated RTSP access only.
User Behavior Analysis		Review all authentication activity for remote access to make sure it is valid and expected. Investigate any unexpected or unusual activity.

MIL OSI USA News -

May 22, 2025

MIL-OSI USA: Action Taken on Legislation by Governor Phil Scott – May 21, 2025
Source: US State of Vermont

Montpelier, Vt. – Governor Phil Scott announced action on the following bills, passed by the General Assembly.

On May 21, Governor Scott signed bills of the following titles:
- H.398, An act relating to the Vermont Economic Development Authority
- H.493, An act relating to making appropriations for the support of the government
- S.44, An act relating to authorization to enter into certain immigration agreements
- S.56, An act relating to creating an Office of New Americans
When signing H.493, Governor Scott sent the following letter to the General Assembly:

Dear Ms. Wrask:

Today, I’m signing H.493, An act relating to making appropriations for the support of government.

I appreciate that this budget makes important affordability investments – most notably the $77 million general fund transfer to the education fund to help stabilize property taxes this year, and $13.5 million in much needed, targeted tax relief for young families, lower income, working Vermonters and seniors on fixed incomes.

However, affordability must also be about getting state government and public education on a sustainable fiscal path; fixing systemic policy issues that make homebuilding, homeownership and rent far too expensive; and keeping and attracting the workers and employers we need for a strong economy. While I can support this budget, we have not yet done nearly enough to address these other areas.

Specifically, although this budget spends $30 million less in general fund base compared to the Senate version, it still spends $20 million more than my proposal. It also creates roughly 70 unique one-time appropriations. Neither would be sustainable under a more modest – and typical – revenue environment.

Outside of the budget, we must complete the work to transform our education system, starting with H.454, An act relating to transforming Vermont’s education governance, quality and finance systems. I proposed the $77 million transfer in the budget as a bridge to a structurally transformed and fiscally efficient public education system in the near term.

We need to follow through on reform.

And I urge the Legislature to pass the housing legislation I proposed at the start of the session so the housing Vermonters so desperately need can be built.

While not perfect, H.493 makes critical investments in affordability, housing, education and public safety. But we must focus on the policy bills that fix what’s broken so the funding can have its intended impact.

Sincerely,

/s/

Philip B. Scott

Governor

To view a complete list of action on bills passed during the 2025 legislative session, click here.

###

MIL OSI USA News –
May 22, 2025

MIL-OSI USA: DBEDT NEWS RELEASE: HAWAI‘I APRIL UNEMPLOYMENT RATE REMAINS AT 2.9 PERCENT

Source: US State of Hawaii

DBEDT NEWS RELEASE: HAWAI‘I APRIL UNEMPLOYMENT RATE REMAINS AT 2.9 PERCENT

Posted on May 20, 2025 in Latest Department News, Newsroom

STATE OF HAWAIʻI

KA MOKU ʻĀINA O HAWAIʻI

JOSH GREEN, M.D.
GOVERNOR

KE KIAʻĀINA

DEPARTMENT OF BUSINESS, ECONOMIC DEVELOPMENT AND TOURISM

KA ʻOIHANA HOʻOMOHALA PĀʻOIHANA, ʻIMI WAIWAI A HOʻOMĀKAʻIKAʻI

RESEARCH AND ECONOMIC ANALYSIS DIVISION

JAMES KUNANE TOKIOKA

DIRECTOR

KA LUNA HOʻOKELE

EUGENE TIAN

CHIEF STATE ECONOMIST

HAWAI‘I APRIL UNEMPLOYMENT RATE REMAINS AT 2.9 PERCENT

Jobs Increased by 17,000 Year-Over-Year

FOR IMMEDIATE RELEASE

May 20, 2025

HONOLULU — The Hawai‘i State Department of Business, Economic Development and Tourism (DBEDT) today announced that the seasonally adjusted unemployment rate for April was 2.9 percent, the same as in March. In April, 668,650 persons were employed and 19,650 were unemployed, for a total seasonally adjusted labor force of 688,300 statewide. Nationally, the seasonally adjusted unemployment rate was 4.2 percent in April, the same as in March.

The unemployment rate figures for the state of Hawai‘i and the U.S. in this release are seasonally adjusted in accordance with U.S. Bureau of Labor Statistics (BLS) methodology. The not-seasonally adjusted rate for the state was 2.5 percent in April, compared to 2.4 percent in March.

Industry Payroll Employment (Establishment Survey)

In a separate measure of employment, total nonagricultural jobs increased by 1,500 month-over-month, from March 2025 to April 2025. Job gains were experienced in Leisure & Hospitality (+1,900); Private Education & Health Services (+1,100); Trade, Transportation & Utilities (+500); Professional & Business Services (+400); Construction (+300); and Information (+100). Within Leisure & Hospitality, the rise in employment primarily occurred in Food Services & Drinking Places. Within Private Education & Health Services, the bulk of job gains were spread out over the subsectors of Health Care & Social Assistance. Employment in Manufacturing remained unchanged. Job losses occurred in Financial Activities (-200); and Other Services (-200). Government employment went down by 2,400 jobs, primarily due to below average over-the-month change in staffing at both the Department of Education and the University of Hawai‘i system. Year-over-year, nonfarm jobs have gone up by 17,000, or 2.7 percent.

Technical Notes:

Labor Force Components

The concepts and definitions used by the Local Area Unemployment Statistics (LAUS) program are the same as those used in the Current Population Survey for the national labor force data:

Civilian labor force. Included are all persons in the civilian noninstitutional population ages 16 and older classified as either employed or unemployed. (See the definitions below.)
Employed persons. These are all persons who, during the reference week (the week including the twelfth day of the month), (a) did any work as paid employees, worked in their own business or profession or on their own farm, or worked 15 hours or more as unpaid workers in an enterprise operated by a member of their family, or (b) were not working but who had jobs from which they were temporarily absent because of vacation, illness, bad weather, childcare problems, maternity or paternity leave, labor-management dispute, job training, or other family or personal reasons, whether or not they were paid for the time off or were seeking other jobs. Each employed person is counted only once, even if he or she holds more than one job.
Unemployed persons. Included are all persons who had no employment during the reference week, were available for work, except for temporary illness and had made specific efforts to find employment sometime during the four-week period ending with the reference week. Persons who were waiting to be recalled to a job from which they had been laid off need not have been looking for work to be classified as unemployed.
Unemployment rate. The unemployed percent of the civilian labor force [i.e., 100 times (unemployed/civilian labor force)].

Seasonal Adjustment

The seasonal fluctuations in the number of employed and unemployed persons reflect hiring and layoff patterns that accompany regular events such as the winter holiday season and the summer vacation season. These variations make it difficult to tell whether month-to-month changes in employment and unemployment are due to normal seasonal patterns or to changing economic conditions. Therefore, the BLS uses a statistical technique called seasonal adjustment to address these issues. This technique uses the history of the labor force data and the job count data to identify the seasonal movements and to calculate the size and direction of these movements. A seasonal adjustment factor is then developed and applied to the estimates to eliminate the effects of regular seasonal fluctuations on the data. Seasonally adjusted statistical series enable more meaningful data comparisons between months or with an annual average.

Current Population (Household) Survey (CPS)

A survey conducted for employment status in the week that includes the twelfth day of each month generates the unemployment rate statistics, which is a separate survey from the Establishment Survey that yields the industry job counts. The CPS survey contacts approximately 1,000 households in Hawai‘i to determine an individual’s current employment status. Employed persons consist of 1) all persons who did any work for pay or profit during the survey reference week, 2) all persons who did at least 15 hours of unpaid work in a family owned enterprise operated by someone in their household and 3) all persons who were temporarily absent from their regular jobs, whether they were paid or not. Persons considered unemployed are those that do not have a job, have actively looked for work in the prior four weeks and are available for work. Temporarily laid-off workers are counted as unemployed, whether or not they have engaged in a specific job-seeking activity. Persons not in the labor force are those who are not classified as employed or unemployed during the survey reference week.

Benchmark Changes to Local Area Unemployment Statistics Data

Statewide and sub-state data for 2019 to 2024 have revised inputs and data for 1990 to 2024 have been re-estimated to reflect revised population controls and model re-estimation.

Change to Monthly Employment Estimates

This release incorporates revised job count figures for the seasonally adjusted series. The revised data reflects historical corrections applied to unadjusted super sector or sector-level series dating back from 2018 through 2024. For years, analysts with the state of Hawai‘i Department of Labor and Industrial Relations Research and Statistics Office have developed monthly employment estimates for Hawai‘i and its metropolitan areas. These estimates were based on a monthly survey of Hawai‘i businesses and analysts’ knowledge about our local economies. Beginning with the production of preliminary estimates for March 2011, responsibility for the production of state and metropolitan area (MSA) estimates were transitioned from individual state agencies to the U.S. Bureau of Labor Statistics (BLS).

For Hawai‘i, this means the transition of statewide, Honolulu and Kahului-Wailuku MSA estimates for both the seasonally adjusted and not-seasonally adjusted areas are produced by BLS. State agencies will continue to provide the BLS with information on local events that may affect the estimates, such as strikes or large layoffs/hiring at businesses not covered by the survey and to disseminate and analyze the Current Employment Statistics (CES) estimates for local data users. BLS feels this change is designed to improve the cost efficiency of the CES program and to reduce the potential bias in state and area estimates. A portion of the cost savings generated by this change is slated to be directed toward raising survey response rates in future years, which will decrease the level of statistical error in the CES estimates. Until then, state analysts feel this change could result in increased month-to-month variability for the industry employment numbers, particularly for Hawai‘i’s counties and islands. BLS can be reached at 202-691-6555 for any questions about these estimates.

The not-seasonally adjusted job estimates for Hawai‘i County, Kaua‘i County, Maui, Moloka‘i and Lāna‘i are produced by the state of Hawai‘i Department of Business, Economic Development and Tourism.

Labor Force Estimates for Small Areas

Labor Force estimates for the islands within Maui County (Maui, Moloka‘i and Lānai) are produced by the state of Hawai‘i Department of Business, Economic Development and Tourism.

Seasonally Adjusted Labor Force and Unemployment Estimates for Honolulu and Maui County

BLS publishes smoothed seasonally adjusted civilian labor force and unemployment estimates for all metropolitan areas, which includes the City and County of Honolulu and Maui County.

BLS releases this data each month in the Metropolitan Area Employment and Unemployment news release. The schedule is available at http://www.bls.gov/news.release/metro.toc.htm.

Alternative Measures of Labor Underutilization

Alternative Measures of Labor Underutilization for States, Second Quarter of 2024 through First Quarter of 2025 Averages
Area	Measure
	Measure
	U-1	U-2	U-3	U-4	U-5	U-6

United States	1.5	2.0	4.1	4.3	5.0	7.7

Hawai‘i	0.7	1.2	3.0	3.1	3.9	6.2

The six alternative labor underutilization state measures based on the Current Population Survey (CPS) and compiled on a four-quarter moving-average basis defined as:

U-1, persons unemployed 15 weeks or longer, as a percent of the civilian labor force;

U-2, job losers and persons who completed temporary jobs, as a percent of the civilian labor force;

U-3, total unemployed, as a percent of the civilian labor force (this is the definition used for the official unemployment rate);

U-4, total unemployed plus discouraged workers, as a percent of the civilian labor force plus discouraged workers;

U-5, total unemployed, plus discouraged workers, plus all other marginally attached workers*, as a percent of the civilian labor force plus all marginally attached workers; and

U-6, total unemployed, plus all marginally attached workers, plus total employed part-time for economic reasons, as a percent of the civilian labor force plus all marginally attached workers.

*Individuals who want and are available for work, and who have looked for a job sometime in the prior 12 months (or since the end of their last job if they had one within the past 12 months) but were not counted as unemployed because they had not searched for work in the four weeks preceding the survey, for such reasons as childcare or transportation problems, for example. Discouraged workers are a subset of the marginally attached.

Please note that the state unemployment rates (U-3) that are shown are derived directly from the CPS. As a result, these U-3 measures may differ from the official state unemployment rates for the latest four-quarter period. The latter are estimates developed from statistical models that incorporate CPS estimates, as well as input data from other sources, such as state unemployment claims data.

# # #

Media contacts:

Dr. Eugene Tian

Chief State Economist

Research and Economic Analysis Division

Department of Business, Economic Development and Tourism, State of Hawai‘i

Phone: 808-586-2470

Email: [email protected]

Laci Goshi

Communications Officer

Department of Business, Economic Development and Tourism, State of Hawai‘i

Cell: 808-518-5480

Email: [email protected]

MIL OSI USA News –

May 22, 2025

MIL-OSI USA: Warner, Kaine & Bennet Secure DoD Fixes to Broken Military Moving System

US Senate News:

Source: United States Senator for Commonwealth of Virginia Mark R Warner
WASHINGTON – U.S. Sens. Mark R. Warner (D-VA), Tim Kaine (D-VA), and Michael Bennet (D-CO) issued the statement below after the Department of Defense (DoD) announced immediate modifications to the military’s broken moving system, which handles servicemember relocations. These modifications follow close advocacy by the senators, who have pushed for months to address the delays, poor communication, and repeated issues under the Global Household Goods Contract.
“Military members and their families sacrifice so much in service to our country, including every time they relocate and integrate into a new community. After pushing for months, we’re pleased to see the Department of Defense move to address ongoing challenges with the contract tasked with moving household goods for military members and families in the process of relocating.
“As these policy changes are implemented, we will continue to work with the Department of Defense and TRANSCOM to ensure that servicemembers and military families who are already well into the relocation process are not left in the lurch. Additionally, as these shifts put more pressure on federal employees to adapt to this change, we will continue to push for adequate federal staffing levels and against Trump’s senseless hiring freeze, which continues to prevent critical positions from being filled across government.”
In February, Sen. Warner requested a briefing from USTRANSCOM and sounded the alarm about missed household goods pickups, delivery issues, and communication difficulties with HomeSafe Alliance, the contractor responsible for the moves. Earlier this month, the lawmakers raised their concerns, reiterating the ongoing delays and confusion being faced by military families, and requesting additional information from TRANSCOM on its plan to address these issues.

MIL OSI USA News –

May 22, 2025
MIL-OSI: Synaptics Names Rahul Patel as President and Chief Executive Officer

Source: GlobeNewswire (MIL-OSI)

SAN JOSE, Calif., May 21, 2025 (GLOBE NEWSWIRE) — Synaptics® Incorporated (Nasdaq: SYNA) announced today that Rahul Patel has been appointed President and Chief Executive Officer, and a Director of the company. Patel succeeds Synaptics CFO Ken Rizvi, who has served as the company’s Interim CEO since February 2025. Rizvi will continue to serve as the company’s CFO.

With more than 30 years of leadership experience in the semiconductor industry, Patel has a proven track record of driving growth and product innovation, particularly in the areas of high-performance Edge-AI wireless connectivity solutions for handsets, tablets, PCs, wearables such as smartwatches and earbuds, IoT applications, and networking and broadband solutions for enterprises and home markets.

Prior to joining Synaptics, he spent a decade at Qualcomm, including most recently as SVP and Group General Manager of the Connectivity, Broadband, & Networking Group, where he was responsible for overseeing a multi-billion-dollar portfolio of wireless networking and connectivity business.

Prior to Qualcomm, Patel spent 13 years in various senior leadership roles at Broadcom, including serving as Senior Vice President and General Manager, Wireless Connectivity Group, where he played a pivotal role in expanding Broadcom’s Wi-Fi^®, Bluetooth^®, and GPS leadership across all market segments.

“On behalf of the Board of Directors, we are delighted to welcome Rahul as Synaptics’ next CEO. Rahul’s extensive semiconductor expertise and strong vision uniquely position him to accelerate our growth and innovation, steering us into our next chapter as we broaden our market reach,” said Nelson Chan, Chairman of Synaptics’ Board of Directors. “Rahul’s deep expertise with wireless connectivity, coupled with his proven track record of launching successful product lines and developing high-performing global teams, will be instrumental in advancing our technology roadmap and driving long-term growth. I’d like to sincerely thank Ken for his exceptional leadership as Interim CEO and for ensuring the seamless execution of our strategic initiatives during this transition period.”

“I am truly honored and excited to join Synaptics, a leader in high-performance Processing, Connectivity, and Sensing solutions,” said Rahul Patel. “Synaptics’ culture of innovation, exceptional engineering talent, and diversified portfolio of solutions uniquely position the company to excel. I look forward to working with the talented team at Synaptics to execute on our growth roadmap and deliver next-generation technology that brings unparalleled value to our customers, partners, and investors.”

About Synaptics Incorporated
Synaptics (Nasdaq: SYNA) is driving innovation in AI at the Edge, bringing AI closer to end users and transforming how we engage with intelligent connected devices, whether at home, at work, or on the move. As a go-to partner for forward-thinking product innovators, Synaptics powers the future with its cutting-edge Synaptics Astra™ AI-Native embedded compute, Veros™ wireless connectivity, and multimodal sensing solutions. We’re making the digital experience smarter, faster, more intuitive, secure, and seamless. From touch, display, and biometrics to AI-driven wireless connectivity, video, vision, audio, speech, and security processing, Synaptics is the force behind the next generation of technology enhancing how we live, work, and play. Follow Synaptics on LinkedIn, X, and Facebook, or visit www.synaptics.com.

Synaptics and the Synaptics logo are trademarks of Synaptics in the United States and/or other countries. All other marks are the property of their respective owners.

For further information, please contact:

Investor Relations
Munjal Shah 
Synaptics 
+1-408-518-7639
munjal.shah@synaptics.com

Media Contact 
Neeta Shenoy
Synaptics 
+1-408-425-2654
neeta.shenoy@synaptics.com

The MIL Network –

May 22, 2025
MIL-OSI: NextNRG Reports Q1 2025 Revenues up 147% Year-over-Year
Source: GlobeNewswire (MIL-OSI)

Triple-Digit Growth Highlights Execution of Integrated Energy Infrastructure Strategy

Q1 2025 Conference Call Scheduled for May 22, 2025 at 9:15 AM ET

MIAMI, May 21, 2025 (GLOBE NEWSWIRE) — NextNRG, Inc. (Nasdaq: NXXT), a pioneer in AI-driven energy innovation—transforming how energy is produced, managed and delivered through its advanced Utility Operating System, smart microgrid technology, wireless EV charging and on-demand mobile fuel delivery solutions— today announced financial results for the first quarter ended March 31, 2025, and provided a strategic update on its technology roadmap and growth trajectory.

The Company will host a conference call to discuss these results on May 22, 2025 at 9:15 AM ET. Dial-in details are as follows:

Selected Financial & Operational Highlights

Metric Q1 2025 (unaudited) Q1 2024 (unaudited)

Revenue $16.3M $6.6M

Gross Profit $518K $462K

“We entered 2025 with tremendous momentum and a clear roadmap to scale, and Q1 results are a reflection of that execution,” said Michael D. Farkas, CEO of NextNRG. “With triple-digit revenue growth, record-setting fuel volumes, and expanding margins, our core operations continue to exceed expectations. At the same time, we are advancing the next phase of our integrated energy strategy, with smart microgrid deployments and wireless EV charging programs progressing toward commercial launch.

We believe our hybrid platform—combining traditional fueling, electrification, and AI-driven grid intelligence—represents the future of distributed energy,” Farkas added. “As we continue executing on this vision, we are building an ecosystem capable of delivering reliable, intelligent, and sustainable infrastructure at national scale laying the foundation for enormous long-term SaaS-based recurring revenue streams.”

Recent Accomplishments
- Strong April Momentum Across Key Metrics: Preliminary April 2025 revenue reached $5.82 million, up 154% year-over-year. Volume increased 207%, underscoring sustained demand across multiple regions.
- Commercial Enterprise Expansion: Extended key existing relationships into Texas using a dedicated fleet portal for operational oversight, increasing engagement from enterprise clients seeking scalable site-level energy solutions.
- Oklahoma Market Entry: Expanded footprint into a seventh operational state under a long-term agreement with one of the country’s largest in-house fleet operators.
- Network Reach Strengthened: Grew national deployment capacity to 144 active vehicles servicing major logistics corridors across metro regions including California, Michigan, Tennessee, and the Southeastern U.S.
Q1 2025 Strategic and Operational Highlights
- Corporate Rebrand and Capital Formation: Completed $15 million public offering and corporate rebrand to NextNRG.
- Utility OS Rollout Underway: Initiated deployment of NextNRG’s AI-powered Utility Operating System to optimize microgrid efficiency, automate fleet energy delivery, and enable real-time energy management across new infrastructure projects.
- Smart Microgrids: On track to begin utility-scale microgrid deployment in Northern Florida in Q2 2025.
- EV Innovation: Planning launch of the largest bidirectional wireless EV charging pilot in Southern Florida later this year.
- Infrastructure Expansion with Strategic Acquisitions: Completed the Shell Oil mobile fleet acquisition and integration of Yoshi Mobility assets, boosting logistics capacity and infrastructure access.
- Geographic Growth in Four New Markets: Entered Phoenix, Austin, San Antonio, and Houston, furthering national service availability and support for new utility and municipal customers.
- Commercial Channel Maturation: Executed logistics support agreements with major national brands, reinforcing recurring delivery demand and infrastructure reliability.
- Fleet Partnerships: Initiated deliveries to the world’s largest e-commerce company under a multi-year agreement, significantly expanding the Company’s B2B revenue base.
First Quarter 2025 Performance
- Revenue reached $16.3 million, a 147% increase from $6.6 million in Q1 2024.
- Gallons delivered totaled 4.7 million, up 183% from 1.7 million in the prior-year quarter.
- Average fuel margin per gallon expanded to $0.71, compared to $0.65 in Q1 2024.
- Gross profit rose to $518,000, a 12% increase from $462,000 in the same period last year.
- Ended the quarter with $2.1 million in cash, a 31% year-over-year increase.
Looking Ahead: Scaling the Energy Intelligence Grid

NextNRG is focused on expanding its integrated platform across three infrastructure-aligned revenue streams:
1. Utility Operating System and Smart Microgrids: Deploying AI-driven grid management software and battery/solar microgrid systems through SaaS and power purchase agreements.
2. Wireless EV Charging: Advancing from R&D to commercial pilots with property owners, CPOs, and municipalities.
3. Mobile Energy Logistics: Scaling across sectors with centralized scheduling and recurring site-level optimization.
About NextNRG, Inc.
NextNRG, Inc. (NextNRG) is Powering What’s Next by implementing artificial intelligence (AI) and machine learning (ML) into renewable energy, next-generation energy infrastructure, battery storage, wireless electric vehicle (EV) charging and on-demand mobile fuel delivery to create an integrated ecosystem.

At the core of NextNRG’s strategy is its Utility Operating System, which leverages AI and ML to help make existing utilities’ energy management as efficient as possible, and the deployment of NextNRG smart microgrids, which utilize AI-driven energy management alongside solar power and battery storage to enhance energy efficiency, reduce costs and improve grid resiliency. These microgrids are designed to serve commercial properties, schools, hospitals, nursing homes, parking garages, rural and tribal lands, recreational facilities and government properties, expanding energy accessibility while supporting decarbonization initiatives.

NextNRG continues to expand its growing fleet of fuel delivery trucks and national footprint, including the acquisition of Yoshi Mobility’s fuel division and Shell Oil’s trucks, further solidifying its position as a leader in the on-demand fueling industry. NextNRG is also integrating sustainable energy solutions into its mobile fueling operations. The company hopes to be an integral part of assisting its fleet customers in their transition to EV, supporting more efficient fuel delivery while advancing clean energy adoption. The transition process is expected to include the deployment of NextNRG’s innovative wireless EV charging solutions.

To find out more visit: www.nextnrg.com

Forward-Looking Statements
This press release includes forward-looking statements within the meaning of the Private Securities Litigation Reform Act of 1995. Any statement describing NextNRG’s goals, expectations, financial or other projections, intentions, or beliefs is a forward-looking statement and should be considered an at-risk statement. Words such as “expect,” “intends,” “will,” and similar expressions are intended to identify forward-looking statements. Such statements are subject to certain risks and uncertainties, including, but not limited to, those related to NextNRG’s business and macroeconomic and geopolitical events. These and other risks are described in NextNRG’s filings with the Securities and Exchange Commission from time to time. NextNRG’s forward-looking statements involve assumptions that, if they never materialize or prove correct, could cause its results to differ materially from those expressed or implied by such forward-looking statements. Although NextNRG’s forward-looking statements reflect the good faith judgment of its management, these statements are based only on facts and factors currently known by NextNRG. Except as required by law, NextNRG undertakes no obligation to update any forward-looking statements for any reason. As a result, you are cautioned not to rely on these forward-looking statements.

Investor Relations Contact
NextNRG, Inc.
Sharon Cohen
SCohen@nextnrg.com

The MIL Network –
May 22, 2025
MIL-OSI Economics: Tawazun Council and Thales Sign Agreement to Establish Ground Master Air Surveillance Radar Production Facility in UAE
Source: Thales Group

Headline: Tawazun Council and Thales Sign Agreement to Establish Ground Master Air Surveillance Radar Production Facility in UAE

21 May 2025

Share this article
- As part of the Tawazun Economic Program, Thales Emarat Technologies announces its investment in a state-of-the-art factory to produce Ground Master series air surveillance radars.
- The facility is expected to be fully operational by 2027, enhancing the UAE’s sovereign and manufacturing capabilities.
- This strategic cooperation agreement signed between Tawazun Council and Thales aims to strengthen partnership and support local production.
Abu Dhabi, 20 May 2025 – Tawazun Council and Thales, have signed a cooperation agreement to produce locally advanced Ground Master series air surveillance radars. This agreement supports the UAE’s vision to boost local manufacturing and develop national defence capabilities.

The signing took place during the fourth edition of “Make it in the Emirates 2025,” with Matar Ali Al Romaithi, Sector Chief of Defence and Security Industry Affairs at Tawazun Council, and Abdelhafid Mordi, CEO of Thales in the UAE, alongside representatives from both sides.

This reflects Thales’ commitment to supporting the UAE’s vision of advancing manufacturing capabilities through innovation and industrial excellence.

The Ground Master radars are internationally recognized for their reliability, superior performance, mobility, and adaptability to diverse missions, positioning them amongst the world’s leading air surveillance and defence systems. The facility is scheduled to be fully operational by 2027, where it will assemble, test, and qualify advanced air surveillance radars to meet both domestic and export markets needs.

This factory will serve as a strategic asset, bolstering the UAE’s defence manufacturing capabilities, enhancing self-sufficiency in critical technologies, and providing flexibility to address varying operational requirements.

A core pillar of Thales Radar Centre of Excellence’s expansion is the development of Emirati talents. Thales places localization at the heart of its growth strategy through advanced training programs and sustainable professional career development, building specialized local expertise in advanced radar technologies in support of the UAE’s National Defence Strategy and its vision of a highly capable, future-ready national workforce. As the project is not only focused on building the radar system, but also on qualifying domestic suppliers, it further contributes to strengthening the national industrial base and promoting long-term self-reliance.

Commenting on the agreement, Matar Ali Al Romaithi, Sector Chief of Defence and Security Industry Affairs at Tawazun Council, said: “The expansion of Thales’ Radar Centre of Excellence reflects the strength of the UAE’s defence industrial strategy and its regional leadership in advanced technologies. This initiative enhances national capabilities in air surveillance radar systems while creating significant opportunities for local companies to grow, innovate, and compete globally.”

Abdelhafid Mordi, CEO of Thales in the UAE said: “Thales is proud to contribute to the growth of the UAE’s industrial defence ecosystem by advancing local capabilities, in-line with the national vision. The expansion of our Radar Centre of Excellence, through the establishment of a new production facility, marks a major milestone – from integration, testing, manufacturing to lifecycle support. This investment reinforces the UAE’s sovereignty in critical defence technologies, strengthens the national supply chain, embarks UAE talents and deepens local expertise in advanced radar systems.”

About Thales

Thales (Euronext Paris: HO) is a global leader in advanced technologies for the Defence, Aerospace, and Cyber & Digital sectors. Its portfolio of innovative products and services addresses several major challenges: sovereignty, security, sustainability and inclusion.

The Group invests more than €4 billion per year in Research & Development in key areas, particularly for critical environments, such as Artificial Intelligence, cybersecurity, quantum and cloud technologies.

Thales has more than 83,000 employees in 68 countries. In 2024, the Group generated sales of €20.6 billion.

About Thales in the UAE

Thales has been present in the UAE for 50 years, providing customers with technologically advanced solutions in Defence and Security, Digital Identity and Security, Aerospace, and Space industries.

Part of the Tawazun Economic Program, Thales Emarat Technologies (TET) is a fully-owned Thales Group entity that was established in 2019 to boost localization and the development of Emirati talent. It houses centres of excellence for critical systems and a variety of defence and digital aerospace technologies. Since its establishment in 2019, Tawazun Economic Council and TET have launched the Radar Centre of Excellence, the Defence Services Center and Digital Center of Excellence.
MIL OSI Economics –
May 22, 2025
MIL-OSI Video: Secretary Rubio testifies before the House Foreign Affairs Committee

Source: United States of America – Department of State (video statements)

Secretary of State Marco A. Rubio Opening Statement before the House Foreign Affairs Committee on the FY26 Department of State Budget Request on Capitol Hill, on May 21, 2025.

Transcript: https://www.state.gov/secretary-of-state-marco-rubio-before-the-house-committee-on-foreign-affairs-on-the-fy26-department-of-state-budget-request/

———-
Under the leadership of the President and Secretary of State, the U.S. Department of State leads America’s foreign policy through diplomacy, advocacy, and assistance by advancing the interests of the American people, their safety and economic prosperity. On behalf of the American people we promote and demonstrate democratic values and advance a free, peaceful, and prosperous world.

The Secretary of State, appointed by the President with the advice and consent of the Senate, is the President’s chief foreign affairs adviser. The Secretary carries out the President’s foreign policies through the State Department, which includes the Foreign Service, Civil Service and U.S. Agency for International Development.

Get updates from the U.S. Department of State at www.state.gov and on social media!
Facebook: https://www.facebook.com/statedept
X: https://x.com/StateDept
Instagram: https://www.instagram.com/statedept
Flickr: https://flickr.com/photos/statephotos/
Rumble: https://rumble.com/c/StateDept
Substack: https://statedept.substack.com

Watch on-demand State Department videos: https://video.state.gov/
Subscribe to The Week at State e-newsletter: https://public.govdelivery.com/accounts/USSTATEBPA/signup/32562

State Department website: https://www.state.gov/
Careers website: https://careers.state.gov/
White House website: https://www.whitehouse.gov/
Terms of Use: https://state.gov/tou

#StateDepartment #DepartmentofState #Diplomacy

https://www.youtube.com/watch?v=d0DoAkPbF3g

MIL OSI Video –

May 22, 2025
MIL-OSI United Nations: Experts of the Committee on the Rights of the Child Commend Romania on Deinstitutionalisation Process, Raise Questions on Corporal Punishment and Segregation in Education

Source: United Nations – Geneva

The Committee on the Rights of the Child today concluded its review of the combined sixth and seventh periodic reports of Romania, with Committee Experts commending the State on the deinstitutionalisation process of alternative care centres, while raising questions on the prevalence of corporal punishment and measures taken to combat segregation in education.

A Committee Expert said she was happy to hear about the programme for the deinstitutionalisation of alternative care centres; this was something Romania should be proud of, as well as all the foster arrangements being made, especially for children with disabilities.

Juliana Scerri Ferrante, Committee Expert and Country Taskforce Member, said there seemed to be a lack of parental education programmes around corporal punishment. How could the views of the child be respected if violence was accepted as a disciplinary measure? Could the Romanian Government take clear steps to train staff and promote child education? Philip Jaffe, Committee Vice-Chair and Country Taskforce Member, also noted that corporal punishment appeared to remain quite widespread despite being banned in 2004. What efforts were being made to lower the prevalence and change attitudes among parents and adults?

Mr. Jaffe asked what was being done to combat school segregation based on disability, special education needs, and family economic status? What improvements were being made to increase the improvement of vocational training for older children who may be leaving the school system? Were there any programmes which specifically targeted economically disadvantaged children?

The delegation said Romanian legislation completely prohibited violence against children, regardless of the environment. However, despite the legislation, which was fully aligned with United Nations Conventions, the State needed to fight against mentalities and traditions and to practically change the minds of parents and caregivers, who believed corporal punishment would discipline children better. Awareness-raising campaigns were being conducted for parents, and mechanisms including hotlines had been developed to support children, including the helpline 119. Authorities were obligated to launch investigations immediately concerning any allegations of violence against children.

The delegation said the Ministry of Education had taken steps to assist children with special educational needs, with the creation of frameworks offering them different kinds of support, based on the type of disability. Adaptive measures had been taken for Roma children, including stimulating their participation in early education and in summer kindergartens, supporting education in their current language, and translating schoolbooks in their mother tongue, among others. An increasing number of contracts between schools and the business sector had been recorded, including around 6,000 contracts in the school year 2023/2024.

Introducing the report, Helena Omna-Raicu, President of the National Authority for the Protection of Child Rights and Adoption of Romania and head of the delegation, said Romania’s path in recent years had been shaped by profound changes and emerging pressures, including the war in Ukraine and the arrival of thousands of children and families fleeing conflict. As a neighbouring country, Romania had mobilised rapidly to provide emergency care, protection, psychosocial support, and schooling to children regardless of their nationality.

Ms. Omna-Raicu said Romania had made significant progress in certain areas, including in the deinstitutionalisation process. Of the 167 residential placement centres operating in 2017, 149 had already been closed by the end of March 2025 and over 6,000 children were now benefiting from family-type alternative care. The remaining 18 placement centres would be closed soon.

In closing remarks, Rinchen Chophel, Committee Expert and Country Taskforce Coordinator, reiterated the Committee’s appreciation for the Government of Romania’s support to Ukrainian refugees, particularly children. Significant progress had been made from the last reporting period to the current one, with many looking forward beyond the dialogue.

In her closing remarks, Ms. Omna-Raicu, expressed deep gratitude for the dialogue. The Committee’s concerns regarding urban disparities were noted. Romania would treat the Committee’s recommendations as an opportunity for deeper transformation.

The delegation of Romania was comprised of representatives from the National Authority for the Protection of Child Rights and Adoption; the Ministry of Education and Research; the Ministry of Justice; the Ministry of Health; the Ministry of Labour, Family, Youth and Social Security; the Ministry of Foreign Affairs; the General Inspectorate of the Romanian Police; the General Inspectorate for Immigration; the National Administration of Penitentiaries; the Prosecutor’s Office; the National Health Insurance Authority; and the Permanent Mission of Romania to the United Nations Office at Geneva.

Summaries of the public meetings of the Committee can be found here, while webcasts of the public meetings can be found here. The programme of work of the Committee’s ninety-ninth session and other documents related to the session can be found here.

The Committee will next meet in public at 3 p.m. on Wednesday, 21 May to begin its consideration of the combined fifth and sixth periodic reports of Qatar (CRC/C/QAT/5-6).

Report

The Committee has before it the combined sixth and seventh periodic reports of Romania (CRC/C/ROU/6-7).

Presentation of Report

HELENA OMNA-RAICU, President of the National Authority for the Protection of Child Rights and Adoption of Romania and head of the delegation, said Romania’s path in recent years had been shaped by profound changes and emerging pressures, including the war in Ukraine and the arrival of thousands of children and families fleeing conflict. As a neighbouring country, Romania had mobilised rapidly to provide emergency care, protection, psychosocial support, and schooling to children regardless of their nationality. The State was proud to have established the first Blue Dot in the region at the border crossing with Ukraine and launched the use of the Child Protection Information Management System Primero in only a couple of months after the onset of the refugee crisis, ensuring registration and case management for almost 40,000 refugee children.

Several new national strategies had been developed for 2021-2027 which aimed to address child poverty and wellbeing, including the national strategy for the protection and promotion of children’s rights “protected children, safe Romania” 2023-2027, and the national strategy on social inclusion and poverty reduction 2022-2027, among others. Romania had also adopted and begun the implementation of the child guarantee national action plan 2023-2030, which aimed to reduce the number of children at risk of poverty or social exclusion by at least 500,000 by 2030. Romania had seen a measurable decline in the proportion of children at risk of poverty and social exclusion from 41.5 per cent in 2022 to 33.8 per cent in 2024.

In April 2024, law 100/2024 was approved which included specific amendments to several laws relevant for social assistance. The new emergency ordinance no. 96/2024, approved in June 2024 regarding the provision of humanitarian support and assistance by the Romanian State to foreign citizens or stateless persons in special situations coming from the area of the armed conflict in Ukraine, established the legal framework providing refugees with access to a wide range of key national statutory services. Another significant legislative change was enacted by amending law 272/2004 in December 2024, which now mandated the participation of children in public decision-making processes.

There had also been several significant programmes launched, including modernising the unique national number 119 for reporting cases of abuse, neglect, exploitation and any other form of violence against children; the development of community services for children and families to prevent separation and support the family reintegration of children from the special protection system; and the development of 200 integrated community centres and 150 daycare centres for children, among others. Despite these advances, challenges remained, including disparities between rural and urban areas.

However, Romania had made significant progress in certain areas, including in the deinstitutionalisation process. Of the 167 residential placement centres operating in 2017, 149 had already been closed by the end of March 2025 and over 6,000 children were now benefiting from family-type alternative care. The remaining 18 placement centres would be closed soon. The use of European Union structural funds had also supported the training of over 11,000 foster carers. A new programme had also been introduced, aimed to scale-up integrated community-services in 2,000 marginalised rural communities, combining social assistance, health, education, and other types of social support. Over 800 million euros of European Social Funds were planned for enhancing access to social services for the most vulnerable, including children and their families.

The State had also expanded support for children at risk of early school leaving by using the early warning mechanism in education, of which around 50,000 participants from 6,950 institutions had completed the training programme. Targeted policies had been developed that supported the reintegration of children who dropped out during the pandemic, and more resources were reaching schools in deprived communities. In health, the role of community nurses and Roma health mediators had grown, and work continued to improve access to services for vulnerable groups.

Pilot projects on mental health for children had laid the groundwork for more systemic change, with mental health services for children and adolescents being expanded. However, challenges remained in ensuring equitable access to quality services in rural and marginalised areas, addressing shortages of specialised personnel, and improving early identification and intervention for children with developmental delays or disabilities.

Romania was committed to reducing the number of children affected by poverty and social exclusion by at least 500,000. The State would also pursue the complete closure of old-type residential centres, with every child in alternative care placed in family-based or community settings. Romania was committed to translating the pledges made during the first-ever global ministerial conference on ending violence against children held at the end of 2024 in Bogota, Columbia, into realities for children.

In education, the State aimed to increase the early childhood education enrolment rate by at least 22 per cent for children aged zero to three and at least 95 per cent for children aged four to six. There would be a focus on improving mental health services for children and linking schools, families, and health providers more effectively, aiming to reduce preventable mortality by 20 per cent compared to 2021 levels for children of all ages. Finally, Romania would ensure that children had a role in shaping systems through participatory budgeting, monitoring, and children and youth-led policy platforms. Romania remained committed to fully implementing the Convention and to contributing to the global effort to advance child rights everywhere.

Questions by Committee Experts

RINCHEN CHOPHEL, Committee Expert and Country Taskforce Coordinator, said Romania had achieved a lot since the last report, which the Committee was happy about. Romania’s assistance to the Ukrainian refugees and children should be noted. There had been significant legislative achievements, particularly the amendments to law 272. What measures were in place to ensure effective implementation of the law? The national strategy on social inclusion and poverty reduction 2022-2027, and the child guarantee national action plan 2023-2030 were very welcome developments. How had these impacted on measures to promote and protect children? Had an assessment been undertaken to evaluate the impact of the national strategy.

While welcoming increased allocations to certain sectors, the Coordinator asked what measures were in place to develop a child-friendly budgeting process? What was the current status of the complaints mechanism in the country for reporting all forms of abuse and violence for children? What had been done to inform children of their right to file a complaint? Had professionals working with children been trained on receiving complaints concerning children and the Convention?

The establishment of the child Ombudsman in 2018 was a crucial step in the right direction, and the Government should be congratulated for that. What was the current status of the institution? How did it connect with children? The Committee noted the State party’s awareness raising activities on the Convention with appreciation, including the translation of the Committee’s general comments into Romanian. How did these efforts extend to rural children?

JULIANA SCERRI FERRANTE, Committee Expert and Country Taskforce Member, asked if the national strategy for school de-segregation been adopted? If not, then when would this occur? What measures had been taken to address hate speech? Did the permanent committee set up in every education unit offer a complaints mechanism to children? If not, how could children complain in schools?

What had been done to decrease discrimination against the Roma population? What efforts had been made to promote the inclusion of Roma in mainstream schooling? How was discrimination against children with disabilities tackled in education? There was concern that Romanian law did not define valid reasons on which minor marriages could be authorised and this was left to the discretion of the authorities. What training was provided to apply the best interests of the child? What approaches had been taken to reduce the preventable mortality of children under five years old? What was the position of the Romanian Government on the proposed amendment to law 272 regarding lesbian, gay, bisexual, transgender and intersex children?

There seemed to be a lack of parental education programmes around corporal punishment. How could the views of the child be respected if violence was accepted as a disciplinary measure? Could the Romanian Government take clear steps to train staff and promote child education? How were child labour laws enforced? How would the Romanian Government establish a child participation mechanism? Were refugee and asylum-seeking children involved in decisions which affected them? Were children provided information on their rights?

What measures were being taken to strengthen the capacity of the social welfare services? How were children with disabilities prioritised in reform measures? What was being done to combat the illicit transfer of children abroad? Had bilateral agreements been conducted in this regard? Was the Romanian Government carrying out measures to understand the impact of prison on children? How were they supported when their parents were incarcerated? What support was available for young people leaving institutional care?

SOPHIE KILADZE, Committee Chair and Country Taskforce Member, said the adoption of law 105/22 providing for automatic birth registration should be considered as positive. Could more information be provided about how the law worked in practice? Were there any plans to introduce a statelessness determination procedure? Was data on statelessness which concerned children disaggregated? What measures were in place to protect children from excessive screen use? How did Romania deal with artificial intelligence as a European Union member? Romania had one of the lowest levels of digital skills in the European Union; what measures were being undertaken to promote digital literacy among children, as well as parents?

PHILIP JAFFE, Committee Vice-Chair and Country Taskforce Member, said it was wonderful that strong pledges had been made at the global ministerial conference on ending violence against children in Bogota. How was Romania implementing its mission as a pathfinding global alliance country? It seemed Romanian children were in need of protection against high levels of physical and sexual violence. One of the pledges made in Bogota was to conduct a prevalence study on sexual abuse; had the State moved forward with this study? Were there dedicated teams drawing up the comprehensive framework and strategy which had been promised? One pledge had been to enhance children’s participation regarding issues of violence. What efforts had the Government made to ensure that there was a clear public understanding that all forms of violence against children needed to be reported?

Corporal punishment appeared to remain quite widespread despite being banned in 2004. What efforts were made to lower the prevalence and change attitudes among parents and adults? It was encouraging that Romania had been one of 40 countries to recently join a statement of the Human Rights Council, expressing children’s right to protection from corporal punishment. How was bullying and cyber bullying being addressed at all levels of legislative policy? Could more information about the child helplines be provided?

Was it true that around seven to eight per cent of girls in Romania were married before the age of 18, with that percentage rising to around 20 per cent in the Roma community? What was being done in response to this? Was it true that charges had been dropped against a 17-year-old boy who entered into a non-formal marriage with an 11-year-old girl? What policy was in practice in the health sector regarding surgical interventions and intersex children? What were the guidelines to protect their bodily integrity until these children were capable of providing consent?

Responses by the Delegation

The delegation said the law on child protection now included clear provisions which made it compulsory for public administrative bodies to involve children in consultations regarding issues which concerned them. The national strategy on children’s rights was recently adopted and another national action plan was elaborated; these plans were complimentary. This was a comprehensive package which would help the Government to better implement all necessary measures. An assessment of the national strategy had been undertaken. The State was now piloting a system which would indicate how to establish a model of financing where children would be considered as a different group that would benefit from a different budget.

The national programme for schooling in Romania ensured children received food support at schools to increase the enrolment rate and participation. School supplies were also provided for all school grades. Two hundred euros were provided for the purchase of technology, and remedial lessons were provided to students coming from disadvantaged communities. Recently, the scholarship system had been extended to encompass more disadvantaged groups.

Funds allocated to primary medical care had registered a continuous annual increase. Just last year, the fund allocated to primary care increased by 24 per cent. The national observatory was a big achievement for Romania and aimed to identify the children most at risk of being separated from their families, based on indicators. Training was being conducted on the use of the observatory to ensure the data provided was reliable.

The hearing of minors in justice proceedings took place in special rooms, and a psychologist was always required to be present. The new national strategy for the development of the judicial system provided for another 10 hearing rooms across the country. There were specially designated prosecutors to handle cases involving minors. The child Ombudsman was fully operational and cooperated with all institutions. It had a functioning complaints mechanism. If an incident was notified to the Ombudsman, an investigation started, which concluded with a set of recommendations sent to the institution responsible to correct the situation.

Civil society representatives were part of the consultative groups established at the national level. A methodology had been issued and piloted regarding identifying and banning segregation within the educational sector. The measures focused on ensuring an inclusive education. Any kind of discrimination on criteria such as ethnicity, religion or sex was completely forbidden within the educational system. Specific places in high schools were allocated for Roma students and students with disabilities. To ensure access to high quality education, educational services had been developed starting from early education to prevent early dropout and absenteeism.

A set of programmes had been introduced, including a monthly allowance for children up to the age of 18, as well as parental leave. There was also a minimum income support which supported families with children. Emergency ordinance no.96 was developed specifically for children from Ukraine and their families.

There was a dedicated intergovernmental group which addressed the subject of forced marriage, with the aim of drafting legislative projects in this regard. Concerning infant mortality and the number of deaths under one year of age, a regionalised system of care had been introduced to ensure each neonate was born in a medical unit which could provide the services necessary for their care, thereby reducing infant mortality. An important national programme was in place which contained around 15 interventions, established in partnership with the United Nations Children’s Fund. Another programme provided 900 neonatal incubators around the country.

A significant number of services had been established to help families in vulnerable situations. A special programme was launched last year on the minimum inclusion income, which focused on how to assist parents within the labour market. The State was aware of a lack of social assistance in rural areas, which was where the most vulnerable communities lived. Interventions were directed, including food packages, and local administrative capacities would be developed.

A programme had been developed which aimed to establish hearing rooms for children in courts, and 29 hearing rooms were completed in April 2024. The rooms were used by the Prosecutors and police officers when they had victims who were minors. The rooms were child-friendly and specially designed with toys. The child did not see the other people participating in the hearing. A new strategy adopted in 2025 provided for the need for an additional 10 hearing rooms in the near future.

All social services were functioning based on a set of minimum quality standards, which were verified by the national agency for social inspection. With the United Nations Children’s Fund, Romania was piloting a project which would identify and train foster families to care specifically for children with disabilities. A child entering the special protection system was prioritised to be reintegrated in a family environment. Adoption was considered the best solution in this regard, and this could only be decided by a court. Priority was offered to domestic adoption, but international adoption could be considered after one year.

Amendments had been made to allow special spaces for visits in prison with children. Such spaces were now available in all prison facilities within the Romanian penitentiary system. There were cooperation protocols in place with the United Nations Children’s Fund and Save the Children which supported parents to develop their parental skills and improve their relationship with their children. The State was aware of the need to develop programmes which addressed the needs of children and adults and improved the relationship within the family.

The Ministry of Education aimed to develop digital competencies among students and parents. During the pandemic, all students were provided with laptops and digital devices to keep up with the educational process. In a new initiative launched in partnership with Microsoft, the Ministry of Education had announced the development of a project concerning artificial intelligence for increasing the school performance of students. A project was also being implemented aimed at improving the digital skills of civil servants.

Romania had a dedicated national child help line. It was toll-free and operational 24/7. Those operating the calls were specialised counsellors who could refer the cases to the relevant authorities. Another helpline just referred cases to social services. The 119 helpline was a recent development, operational from any place in Romania and accessible to children and adults. After the first year, it had been well received and was being regularly used to inform on any situation concerning a child.

Rape of a minor and sexual assault against a minor had been introduced as acts within the Criminal Code. Rape committed by an adult against a minor under the age of 18 was punished by a prison sentence of between seven to 12 years.

Questions by Committee Experts

PHILIP JAFFE, Committee Vice-Chair and Country Taskforce Member, said one in 20 people in Romania held a disability certificate, with around 80,000 being children. What were the difficulties faced by certain groups of children to receive this certificate, including rural children? Were there any awareness-raising campaigns for rural minorities and poor families regarding their entitlement to services? Could more information be provided about Romania’s strategy for persons with disabilities? How were the number and expertise of professionals being scaled up? To what degree had the State embraced a human-rights approach to disability, as opposed to a medical model of disability? How many children were still left in institutions? When would such institutions all be closed?

There were two recent laws on pre-university education and higher education; could more information be provided about the implementation of these laws? What was the level of gross domestic product dedicated to education in Romania? Was there a direct pipeline to hear about the concerns of children within the education system and were these concerns taken seriously? What was being done to combat school segregation based on disability, special education needs, and family economic status? Figures suggested that 40 per cent of children with disabilities had limited access to education. What steps were being made to improve education for children under the age of three? What improvements were being made to increase the improvement of vocational training for older children who may be leaving the school system? Were there any programmes which specifically targeted economically disadvantaged children? What was the mission of the Ministry of Youth?

SOPHIE KILADZE, Committee Chair and Country Taskforce Member, asked if sufficient resources were dedicated to the capacity building of medical personnel? Did all children have access to health care, including health insurance? How were vaccinations promoted in the country? How was breast feeding promoted? Child obesity was an issue of concern; how was this combatted? Was there a hot meals programme?

Mental health was a very important issue. Was data on mental health being disaggregated, including on suicide? Was there a comprehensive strategy and action plan regarding the issue of mental health? Were quality mental health services available in rural and remote areas? According to alarming information, the country had the highest number of adolescent mothers across the European Union. What steps would the State undertake to prevent adolescent pregnancies and subsequent abortions? Would Romania make reproductive education part of the curriculum?

What measures were in place to address drugs or substance abuse? Were there treatments available for children? Romania had made substantial efforts for Ukrainian children and other groups of refugees. How would the State integrate these children long-term? Were there delays in the enrolment of refugee children and their families into the social services system? Would amendments be considered in the asylum law to end the detention of families at the legislative level? Did unaccompanied migrant children have access to services, including psychosocial support and disability services? Were there any barriers which could hinder access to education?

What measures were being undertaken to end child labour, including begging? What was being done to assist children in street situations? How were perpetrators investigated and brought to justice? Were there quality services for child victims of trafficking in place? Was the system of child justice established across the country? Were adequate financial resources allocated to it? Was free legal aid available to children in conflict with the law? Was the detention of children used only as a last resort? If yes, did it comply with international standards?

RINCHEN CHOPHEL, Committee Expert and Country Taskforce Coordinator, said one in five children were affected by severe material and social deprivation, which was concerning. What was the reality on the ground? The minimum social assistance package had been introduced; could more information be provided on it? Romania was increasingly vulnerable to droughts, heatwaves, floods and landslides, and it was also grappling with water pollution. How had the national strategies pertaining to climate change helped to address the challenges of the environment and climate change in the country? What measures were being adopted to take into account children’s needs and views in the development of specific policies, including disaster-preparedness plans? Were child rights impact assessments carried out when dealing with the business sector?

A Committee Expert asked what the national coverage of vaccinations was in the country? Romania had an epidemic of measles; how did the population react to vaccinations? How was confidence being built in vaccines? Were people familiar with the law on rape? What happened once the 30-day limit for registering births had elapsed?

Responses by the Delegation

Romanian legislation completely prohibited violence against children, regardless of the environment. However, despite the legislation, which was fully aligned with United Nations Conventions, the State needed to fight against mentalities and traditions and to practically change the minds of parents and caregivers, who believed corporal punishment would discipline children better. Awareness-raising campaigns were being conducted for parents, and mechanisms including hotlines had been developed to support children, including the helpline 119.

Authorities were obligated to launch investigations immediately concerning any allegations of violence against children. Romania was committed to continuing these efforts and to changing social norms and mentalities. The numbers of cases of violence against children was increasing, which meant people were becoming more aware of the issue and reporting it.

Since 2016, the methodology applied in Romania clearly distinguished between the concept of disability and special education needs. In Romania, the deinstitutionalisation process was one of the most important commitments of the Government, and the process was now concluding. Currently, out of the 167 residential centres operating in 2017, 149 had already been closed, and more than 6,000 children were benefiting from alternative care. The legal framework stated that no placement centre could operate without the approved closure plan. The deinstitutionalisation process also involved finding better alternative and family-based care for children. Only 18 placement centres remained in the process of being closed, and by 2026 no such centre would be operating in Romania. The State was still aiming to find family-style solutions for children with disabilities, and a project was being developed with the United Nations Children’s Fund to this end.

If a birth was declared after the 30-day deadline but less than one year after the birth, the birth certificate could be issued based on approval from the mayor. If the birth declaration was made more than one year after the birth, the certificate needed to be approved by the mayor and other administrative bodies.

More than 2.8 million students were enrolled in the 2023/2024 school year in Romania. For high school, there had been a significant decrease in dropouts from 2.5 per cent in 2017 to 0.8 per cent in 2024. Around 4.5 per cent of the budget was allocated to education. The Ministry of Education had taken steps to assist children with special educational needs, with the creation of frameworks offering them different kinds of support, based on the type of disability. For students with temporary special needs, the law of education presented special measures, including the implementation of schooling hospitals, or schooling at home for those who were required to be in hospital or at home for medical reasons.

Adaptive measures had been taken for Roma children, including stimulating their participation in early education and in summer kindergartens, supporting education in their current language, and translating schoolbooks in their mother tongue, among others. More than 66,000 teachers had been trained in digital and multimedia use. An increasing number of contracts between schools and the business sector had been recorded, around 6,000 contracts in the school year 2023/2024. Most teachers had been trained to create open educational resources. Significant funds had been allocated to modernising rest room facilities in schools.

Any student could submit complaints of discrimination via an established framework. Students benefitted from representation in the school system through several platforms. The national strategy for sustainable development issued the methodology of the “green week programme”, which contributed to preschoolers and students’ competence in understanding basic concepts of climate change, to initiate individual and protective action to protect the environment. Teachers were obliged to obtain 90 transferrable professional credits every five years, through attending courses offered by Romanian training houses.

In recent years, infant mortality had remained relatively stable in Romania. From 2023 to 2024, the number of doctors treating children increased by five per cent. Regarding children’s access to medical services, all children were insured in Romania and benefitted from basic medical services across all sectors of health care. The national health insurance fund also reimbursed certain services. The Ministry of Health had launched a vaccination campaign in partnership with the Red Cross, to raise awareness of parents; this had been accompanied by a “catch-up” vaccination schedule, resulting in 1,500 children being vaccinated. A protocol had been signed with the Orthodox Church to establish an active partnership to create a framework for anyone facing a possible cancer diagnosis, offering support.

World Breastfeeding Week was celebrated in August each year, as breastfeeding remained one of the most effective ways to provide children with the best start in life. Breast feeding recommendations had been developed with partners, including the World Health Organization, and were relayed to medical practitioners at the local level. Around 200 integrated community centres would be restructured, elevated and equipped. A television broadcast had been created to promote the importance of breastfeeding in the first six months of a child’s life.

Information and education campaigns had been carried out for children, parents and teachers about the benefits of a healthy diet and the consequences of unhealthy eating. Around 1,000 people had benefited from the campaign. Substance abuse could be detected by family doctors and psychological services could be recommended. The national health insurance house implemented the national mental health programme, providing treatment for persons with substance abuses, and ensuring specific treatment for patients with depressive disorders.

Questions by Committee Experts

RINCHEN CHOPHEL, Committee Expert and Country Taskforce Coordinator, said the Government had approved a social assistance programme in 2011 which targeted all communes, but was underfinanced; could more information be provided? The Environment Week presented was an excellent initiative; how was it being utilised?

JULIANA SCERRI FERRANTE, Committee Expert and Country Taskforce Member, asked if there were any supervision orders, where children remained with their family but were supervised? Were there age assessment procedures during the asylum procedure? What rights did children applying for asylum have? Could they appeal any decisions?

PHILIP JAFFE, Committee Vice-Chair and Country Taskforce Member, said according to research by the United Nations Children’s Fund, Romanian girls felt much lonelier than Romanian boys. Was there a reason for this gap?

SOPHIE KILADZE, Committee Chair and Country Taskforce Member, asked for clarification on case management coordination?

A Committee Expert noted the prevalence of women among the large delegation and asked if women generally had an important and high-profile position in Romania, or if this only occurred when discussing children? Had there been any programmes to prevent violence? Had the concept of gender been fully institutionalised? Were teachers trained in detecting signs of violence? What was the prevalence of child marriage in the country? What about figures for marriages which were not officially recorded? Had there been any programmes to prevent the phenomenon or sanctions?

Was there any mapping of the at-risk populations in the country of female genital mutilation? Was female genital mutilation prohibited in law? What was the most updated action on sexual exploitation? Was there any cross-border cooperation between Romania and neighbouring countries? Did Ukrainian children born in Romania have access to Romanian citizenship? Did rape victims have access to emergency contraception?

Another Expert asked about vaccinations from children aged zero to 12; was there distrust in the population when it came to vaccines? It seemed that tuberculosis was a public health issue. What was being done in the field of treatment? Were there children whose births had not been declared, particularly among refugees, Roma and migrants?

A Committee Expert asked about the new concept introduced by the Parliament on parental alienation. How had this concept been consulted on, particularly with children? How would the best interests of the child be ensured? What specific measures were being taken to reduce school dropout and improve access to quality education for Roma children? What mechanisms were in place to monitor and support Roma children who were at risk of dropping out?

Another Committee Expert said she was happy to hear about the programme for the deinstitutionalisation of alternative care centres; this was something Romania should be proud of, as well as all the foster arrangements being made, especially for children with disabilities. What was the State doing to support the families of children with disabilities, particularly those with severe disabilities?

Responses by the Delegation

The delegation said emergency contraception was available to those who had experienced sexual assault and could be obtained without a prescription. Adolescent pregnancies were a major concern for the Romanian public health system. Contraceptives and medical devices were provided free of charge through family centres and through gynaecological departments, where abortions were performed upon request. Romania was one of the first European countries to offer non-discriminatory HIV/AIDS treatment.

Refugees were granted a monthly allowance, one-month’s accommodation, and access to education for minors. Legislation in the field of asylum provided for beneficiaries to apply for family reunification when family members were not in Romania. Identity documents needed to be provided to prove family links. Family reunification of unaccompanied minors was carried out with the best interest of the child in mind. Minors from immigrant backgrounds benefitted from the same rights as minors who were Romanian citizens. Romanian language courses provided teaching support, textbooks and workbooks developed on linguistic levels according to the European Union framework. Priority for asylum applications was given to unaccompanied minors.

Medical forensic expertise was used when an asylum applicant could not prove their age and there were serious doubts about their ethnicity. The declared age of the asylum applicant was accepted if their refusal to undergo the medical expertise was based on compelling reasons. The assessment was performed with full respect for the minor’s dignity and in as least invasive way as possible.

Investigations in child and human trafficking were undertaken by specialists with supervision from specialised prosecutors. Through law 229/2024, the Romanian Parliament aimed to discourage sex tourism and the pimping of minors. More than 1,200 criminal cases had been identified regarding child trafficking. The General Inspectorate of Romanian Police organised regular sessions for border police and

non-governmental organizations, with the purpose of identifying victims. More than 125 trainings had been carried out to over 4,000 workers who may encounter trafficking victims through their work. The National Agency against Trafficking in Persons and the Directorate for Investigating Organised Crime had implemented a national action plan in the fight against human trafficking to improve the awareness of at-risk groups.

In 2024, prosecutors from the Directorate for Investigating Organised Crime took part in 35 seminars regarding identifying child victims, compensation for victims, international cooperation, and online sexual exploitation of children, among other topics. A public awareness campaign had been launched relating to sexual acts between adults and minors. The message stated that a sexual act committed against a minor of 16 years or under constituted rape, if the age gap was more than five years, and punishments applied.

According to Romanian legislation, minors benefited from free legal aid, whether they committed a crime, or if they were victims of a crime. The Romanian penal system limited sanctions in regard to minors, and measures for deprivation of liberty were only given as a last resort and could only be ordered by a court.

The integrated social services project aimed to develop the academic knowledge of professionals working in the social assistance field, and to develop concrete measures for vulnerable groups of people.

During “green week”, schools organised activities around several topics relating to the environment. These were uploaded on a specialised platform dedicated to education on climate change and varied from one educational cycle to another. The Ministry of Education had developed a programme, the mechanism of early-living alert, which focused on early education for Roma children.

In Romania, social services were obligated to identify children in a risk situation. Children could remain within families and be monitored by social services until the risks were removed. The parental alienation provision was introduced in all cases relating to violence and neglect. It was recommended that this provision be removed, as these measures should only be applied by the courts. There were many trainings offered to judges on methods relating to children’s rights. Social workers were also trained to provide necessary assistance to visiting parents. Social services could only assist; they could not intervene and solve disputes between parents.

Closing Remarks

RINCHEN CHOPHEL, Committee Expert and Country Taskforce Coordinator, reiterated the Committee’s appreciation for the Government of Romania’s support to Ukrainian refugees, particularly children. The State was encouraged to continue to undertake these activities which were important for solidarity for children. Significant progress had been made from the last reporting period to the current one, with many looking forward beyond the dialogue. This was an indication of the Government’s commitment towards children. As the country moved forward, it was important to put emphasis on implementation and ensure vulnerable children did not miss out.

HELENA OMNA-RAICU, President of the National Authority for the Protection of Child Rights and Adoption of Romania and head of the delegation, expressed deep gratitude for the dialogue. The delegation welcomed the Committee’s emphasis on equality, accountability and sustainability, and would underpin the next stage of the State’s deinstitutionalisation journey. The Committee’s concerns regarding urban disparities were noted. It was recognised that rights delayed were rights denied, and the State was committed to accelerating affirmative action. Romania would treat the Committee’s recommendations as an opportunity for deeper transformation.

SOPHIE KILADZE, Committee Chair, thanked the delegation for the fruitful dialogue and commended its members for their clear and comprehensive answers. Ms. Kiladze extended her best regards to the children of Romania.

___________

Produced by the United Nations Information Service in Geneva for use of the media;
not an official record. English and French versions of our releases are different as they are the product of two separate coverage teams that work independently.

CRC25.013E

MIL OSI United Nations News –

May 22, 2025
MIL-OSI New Zealand: Commonsense financial reforms underway
Source: NZ Music Month takes to the streets

Last night the Government took a major step toward restoring common sense to financial regulation, with the first readings of three important reform bills, says Commerce and Consumer Affairs Minister Scott Simpson.

“Our Government is delivering on its promise to make it easier for New Zealanders to access the financial services they need, whether it’s buying a home, growing a business, or simply managing everyday life,” says Mr Simpson.

“For too long, New Zealanders have been trapped by rules that are overly bureaucratic, unnecessarily repetitive, and sometimes just downright silly. Today, we’ve begun to fix that.”

The Credit Contracts and Consumer Finance Amendment Bill, the Financial Markets Conduct Amendment Bill, and the Financial Service Providers (Registration and Dispute Resolution) Amendment Bill are the first legislative steps in a broader package aimed at rewiring New Zealand’s financial services regulation. Together, they form part of a comprehensive overhaul that will rebalance the system to ensure consumer protection without stifling access to credit or innovation.

“For many Kiwis, the absurdity of past rules became clear when banks were forced to quiz them about what they’d been spending on takeaways or Netflix subscriptions before approving a mortgage. That wasn’t responsible lending, it was regulatory overreach.”

These three bills focus on addressing some of the most counterproductive aspects of the current law:
- Regulators empowered to take proactive action: The Financial Markets Authority will be given the tools needed to effectively oversee lending, banking and insurance markets to the benefit of consumers.
- Removing unnecessary personal liability: Senior managers and directors will no longer face personal liability for compliance failures. Responsibility will sit with the businesses, where it belongs.
- Streamlining licensing requirements: Financial service providers will no longer need to hold multiple overlapping conduct licences, reducing duplication and compliance costs across the sector.
- Improving dispute resolution services: The Bill strengthens oversight and independent governance of financial dispute resolution schemes, ensuring Kiwis can have confidence in fair, effective support when things go wrong.
- A fairer and more proportionate approach to non-disclosures: Another change, which will apply retrospectively for the period between 2015 and 2019, will enable the courts to apply greater discretion when a lender has failed to disclose certain information to consumers.
“These changes are pro-consumer, pro-competition, and pro-growth. They ensure that financial institutions are held to account without being tied up in needless red tape that drives up costs for everyone.”

The reform package delivers on a core part of the National-ACT coalition agreement to rewrite the Credit Contracts and Consumer Finance Act 2003.

“These changes are about enabling our economy to flourish. Financial regulation should protect people, not block their ambitions. This progress means we’re one step closer to a more dynamic, fair, and accessible financial system for all.”

Notes to editors

Fact sheet for the Bills is attached.

MIL OSI New Zealand News –
May 22, 2025
MIL-OSI USA: Missouri Man Sentenced to Over Nine Years in Prison for Church Arson

Source: US Justice – Antitrust Division

Headline: Missouri Man Sentenced to Over Nine Years in Prison for Church Arson

A Missouri man was sentenced yesterday to 111 months in prison by U.S. District Judge Matthew T. Schelp for the Eastern District of Missouri for burning down a Cape Girardeau, Missouri house of worship in 2021. He was also ordered to pay $6,968,223.36 in restitution for damages incurred by the church.

MIL OSI USA News –

May 22, 2025
MIL-OSI Global: Worker-led programs are tackling gender-based violence in supply chains, but they’re at risk

Source: The Conversation – Canada – By Genevieve LeBaron, Distinguished SFU Professor of Global Supply Chain Governance, Simon Fraser University

Gender-based violence and harassment is a widespread issue in supply chains. Women workers in garment manufacturing, food production and hospitality are routinely subjected to unwanted touching and sexual advances and inappropriate comments, while promotion and advancement are often conditional on sex. In the most severe cases, this abuse escalates to sexual assault and rape.

Despite decades of awareness and an International Labour Organization convention passed in 2019 and ratified by 49 countries, research indicates little progress has been made.

A 2024 report from Statistics Canada, for instance, has found that 47 per cent of women have experienced some form of harassment or sexual assault in the workplace.

Rates of gender-based violence and harassment are thought to be even higher in some countries and industries. In Bangladesh, a 2018 study found at least 60 per cent of garment workers had experienced it in the previous year. Another found 85 per cent of garment workers in Indonesia were concerned about sexual harassment at work.

In the face of such a persistent global issue, women working in garment supply chains have pioneered a highly effective solution for tackling gender-based violence and harassment.

Worker-led binding agreements

Supported by labour unions and organizations like the Asia Floor Wage Alliance, Worker Rights Consortium and Global Labor justice, women workers have led the development of legally binding agreements with brands and suppliers to eliminate gender-based violence and harassment.

The latest of these is called the Central Java Agreement for Gender Justice. Signed in July 2024, it covers 6,250 workers producing clothing for brands like Nike and Fanatics, Inc. under licenses with universities affiliated with the Worker Rights Consortium.

Worker Rights Consortium persuaded Fanatics, which is also licensed to produce apparel bearing the Nike logo, to enter into the agreement in response to complaints of gender-based violence and harassment at two garment factories in central Java, Indonesia, owned by the Korean-based firm Ontide.

This agreement creates a union-led program to address the problem at two Indonesian factories; if factory management does not comply, it risks losing business with Nike and Fanatics.

Building on success from India to Indonesia

The 2024 Central Java Agreement builds on and incorporates key features of previous worker-led agreements to address the issue.

In particular, it builds on the 2022 Dindigul Agreement to Eliminate Gender-Based Violence and Harassment in India and the 2019 Agreements to Eliminate Gender-Based Violence and Harassment in Lesotho.

The Dindigul agreement was led by an independent, majority-Dalit trade union run by women. It established a set of legally binding agreements with major garment companies including H&M Group, Gap Inc., PVH and Eastman Exports Global Clothing Ltd.

The Lesotho agreements involved brands such as Levi Strauss & Co., Nien Hsing Textile Co., unions, women’s rights advocates and labour organizations.

While each agreement is unique, they all adhere to the principles of worker-driven social responsibility.

Under this governance model, “worker organizations and unions, suppliers, and brand companies enter into enforceable and legally binding agreements” and “transnational corporations use their leverage and supply chain relationships to effect change amongst supplier worksites.”

A new model of accountability

These agreements include worker-led detection and remediation systems to address gender-based violence and harassment. For example, under the Lesotho agreement, workers can access a 24-hour hotline operated by a local women’s organization to lodge complaints or bring them directly to the unions involved in the agreement.

The Dindigul agreement also provides multiple channels for workers to raise complaints of gender-based violence and harassment, including shop floor monitors selected by the local union (one for every 25 workers). It also offers multiple avenues for raising complaints, including to the union or to sexual harassment committees required under Indian law.

Under the Central Java Agreement, workers can bring complaints to committees aimed at eliminating the problem, to shop floor monitors or their unions. Not only do each of the agreements permit workers to request independent investigations, they all provide a wide array of remedies in the case of any incidents and violations of freedom of association.

What sets these agreements apart from most other initiatives to combat gender-based violence and harassment in supply chains is that they actually work. One study of the two-year impact of the Dindigul Agreement by Cornell University’s Global Labor Institute found that 76 per cent of grievances were resolved in two weeks.

The report said the program “constituted a powerful monitoring mechanism, ensuring effective remediation and deterring violations” of both gender-based violence and harassment and freedom of association — briefly put, the right to voluntarily join or leave groups (like unions), and for those groups to pursue collective action.

Now, a key question is whether and to what extent these successful programs will continue to thrive and grow under the current “America First” agenda of the U.S. government.

Progress under threat

Despite their success, these worker-led initiatives face mounting challenges.

Labour organizations that support these agreements are under strain, with some potentially at high risk of collapsing. The U.S. Bureau of International Labor Affairs is cutting US$500 million in funding that supports labour enforcement efforts across 40 countries.

At the same time, company rollbacks of diversity, equity and inclusion programs are constraining, if not eliminating, the political space in which labour groups negotiate such agreements.

Tariffs and upheaval in global trade — especially efforts to redraw supply chains to evade costly tariffs — gives brands cover to withdraw commitments to worker-led initiatives and change sourcing patterns to circumvent them.

Within the United States, cuts and funding freezes — including to sexual assault prevention groups — are a worrying sign that support for preventing gender-based violence and harassment and helping its survivors are being undercut and failing.

If labour stakeholders lose the resources to support such initiatives, the impacts on women and workplaces within supply chains across the world will be devastating. These programs show that when workers lead, real change is possible, but they need continued investment and political support to survive.

Genevieve LeBaron receives funding from the Social Sciences and Humanities Research Council of Canada, Humanity United Foundation, and Ford Foundation.

Judy Fudge does not work for, consult, own shares in or receive funding from any company or organisation that would benefit from this article, and has disclosed no relevant affiliations beyond their academic appointment.

– ref. Worker-led programs are tackling gender-based violence in supply chains, but they’re at risk – https://theconversation.com/worker-led-programs-are-tackling-gender-based-violence-in-supply-chains-but-theyre-at-risk-255756

MIL OSI – Global Reports –

May 22, 2025
MIL-OSI Global: The distant dream of owning a home: Canada sees growing inequality in home ownership

Source: The Conversation – Canada – By Yushu Zhu, Assistant Professor, Urban Studies and Public Policy, Simon Fraser University

Home ownership is often seen as a symbol of success and is linked to various life opportunities, like starting a family or growing your wealth. It’s also often seen as the ultimate housing goal, while renting is seen as transitional. Eventually, everyone is expected to climb up the housing ladder from renting to owning.

Promoting home ownership is therefore at the centre of housing policy in many countries, including Canada. As of 2021, 67 per cent of Canadian households owned their home.

However, deteriorating affordability in recent years has placed home ownership out of reach for many and called into question the ideal of home ownership.

In a recent study, colleagues and I examined access to home ownership for different groups using census data from 1986 to 2021 in five metropolitan areas: Montréal, Toronto, Calgary, Edmonton and Vancouver.

Our findings suggest that, for many, owning a home has become a distant dream.

Stagnant homeownership growth

Based on statistical models that accounted for individual and household characteristics, we found that the probability of an average Canadian household owning a home (with or without a mortgage) improved steadily from 1991 to 2011, then dropped in 2016 and 2021, while the likelihood of owning with a mortgage substantially increased. This means growth in home ownership was primarily driven by mortgage debt.

This trend was happening at the same time as a shift started in the 1990s towards financialization that treated housing more as an investment than a social good.

Read more:
Financial firms are driving up rent in Toronto — and targeting the most vulnerable tenants

The federal government stopped funding social housing programs, commercialized the Canada Mortgage and Housing Corporation (CMHC) and expanded its mortgage securitization programs.

In other words, mortgage liberation successfully promoted home ownership for some time until 2011.

All five metropolitan areas saw a decline in the number of renter households until 2011 (2016 for Montréal), when the number began increasing. In addition, outright ownership has become less prevalent over time.

These findings defy the expected sustained growth of home ownership that commodification and financialization were supposed to bring.

The percentage of homes owned outright, with a mortgage or being rented in different Canadian cities.
(Author provided)

Filtering mechanism and access to credit

Another tenet of the home ownership narrative is that a free market provides equal opportunities for owning a home through two processes: the filtering process and mortgage liberalization.

The filtering model suggests that homes built for higher-income families slowly deteriorate and depreciate, and can become affordable for lower-income people. This process, coupled with the increased access to mortgages, is expected to eventually grant home ownership opportunities to all.

However, this mechanism is less likely to work for home ownership than for rentals. Owner-occupied homes often take a long time, sometimes decades, to depreciate. By the time they become available and affordable, the unit may require major and costly renovations.

In practice, many owner-occupied units often “filter up” rather than downward, through gentrification or acquisition by financial investors.

The increased access to mortgages does not benefit everyone either. Many low-income people or those without stable jobs do not qualify for mortgages, and racialized people are more likely to be denied access to credit due to discrimination.

Growing inequalities

Substantiating these counter-arguments are growing inter-generational and income inequalities in home ownership. All age cohorts saw improved access to home ownership up until 2021. However, the three age groups under 45 — 15-24, 25-34 and 35-44 — saw steady declines in home ownership rates.

These were mostly millennials and Gen Zers who face disproportionate affordability pressure compared to older generations.

Homeowners over 55 are also reckoning with affordability. We found the share of older homeowners holding a mortgage rose between 1986 and 2021 from 24 to 40 per cent for those 55 to 64, and from 10 to 26 per cent for the 65-74 age group.

In other words, more people are having to rely on larger loans and longer amortization periods to buy and maintain their homes, making it harder to pay back their mortgage before retirement.

The disparities in home ownership opportunities among different incomes have also increased. While the top 20th percentile income group witnessed increased probability of owning a home between 2011 and 2016, other income groups experienced stagnant or decreased chances.

Among owner households, Canadians across all incomes saw increased mortgaged ownership from 1996 to 2016. The lowest income group saw the fastest growth in mortgaged home ownership but were still the least likely to own with a mortgage due to low income or discrimination. Rising house prices coupled with loosening mortgage lending regulations may have pushed them into mortgaged ownership.

Higher social status?

A final compelling narrative is that home ownership affords better well-being and financial security due to higher perceived social status and a stronger sense of autonomy and stability.

The financial security associated with home ownership is supported by the idea of “housing asset-based welfare.” This model conceptualizes home ownership as a means for young people to build assets for financial security in times of need and old age.

However, this approach encourages early-life debt, and may only work if mortgage loans remain affordable until they are paid off. Paradoxically, this asset-building mindset drives speculative investment and house prices, making outright home ownership more difficult and mortgaged ownership less affordable.

The well-being associated with home ownership is debatable as well. My colleagues and I have shown elsewhere that perceived benefits to a person’s well-being are not intrinsic to home ownership. Rather, they are created and normalized by a system that makes home ownership more secure and appealing than alternatives like renting.

In reality, the financial security associated with home ownership has been undermined by rising housing costs, especially for low- and moderate-income homeowners with mortgages.

Mortgaged homeowners with below-median incomes have seen their housing costs increase 25 per cent faster than their income over the study period, compared to five per cent for higher income families at the top 60th percentile.

Broken promises

Manual Aalbers, a human geography professor at Belgium’s University of Leuven, has argued that home ownership today has slowly changed “from a policy goal into pure rhetoric … a means to an end. Mortgaged home ownership increasingly is there to keep mortgage and financial markets going.”

To say the least, the broken promises of home ownership point to the failures of our current housing system that creates a hierarchy of tenures and two tiers of social class — homeowners and renters.

Policies aimed at creating a fairer housing market are essential. These include improving home ownership affordability by providing more diverse types of housing for ownership and discouraging speculative investment.

Such policies should also include enhancing housing security and asset-building opportunities for renters, and supporting the role of non-profits and social enterprises in meeting the needs of a broad range of income groups.

This research project was funded by the Social Sciences and Humanities Council of Canada (SSHRC) through its Insight Development Grant and Partnership Grant. The project was part of the Community Housing Canada project, co-funded by Canada Mortgage and Housing Corporation (CMHC) and SSHRC.

– ref. The distant dream of owning a home: Canada sees growing inequality in home ownership – https://theconversation.com/the-distant-dream-of-owning-a-home-canada-sees-growing-inequality-in-home-ownership-254873

MIL OSI – Global Reports –

May 22, 2025
MIL-OSI Video: Gaza, Haiti & other topics – Daily Press Briefing | United Nations

Source: United Nations (Video News)

Noon Briefing by Stéphane Dujarric, Spokesperson for the Secretary-General.

Highlights:
-Occupied Palestinian Territory
-Haiti
-Secretary-General/ECOSOC
-Syria
-Sudan
-Myanmar
-Libya
-International Days
-4th International Conference on Financing for Development

OCCUPIED PALESTINIAN TERRITORY
The Office for the Coordination of Humanitarian Affairs (OCHA) says that yesterday and today, the Israeli authorities granted us access to Kerem Shalom so that our teams could reach additional humanitarian supplies that crossed into the Strip on Monday and Tuesday, crossed from Israel into Kerem Shalom loading areas. Other critical items such as hygiene products or fuel have not been allowed by the Israeli authorities into Kerem Shalom.
So far, and this is as a few minutes ago, but the situation is obviously fluid, none of the supplies have been able to leave the Kerem Shalom loading area. This is because, by yesterday evening, Israeli authorities had only allowed our teams to go through one area that was highly congested, that we felt was insecure and where we felt looting was highly likely to take place, given the prolonged deprivation in Gaza since the blockade by the Israeli authorities for over 11 weeks. The UN hopes that will change very soon.  The discussions are ongoing as we speak between our colleagues and the Israeli security authorities.
The UN is continuing to are engage with them to identify the best possible routes out of Kerem Shalom towards Gaza to ensure that the flow of aid is not disrupted or suspended. Partners are in touch with community leaders in Gaza to mitigate the risk of looting and ensure that the supplies entering Gaza reach the people who need them.
However, it is important to underscore that the limited supplies finally being allowed to enter Kerem Shalom are nowhere near enough to meet the needs in Gaza, which are vast, which are tremendous. Much, much more aid needs to get in.
Meanwhile, bombardment and shelling are continuing across the Gaza Strip. Today, the Gaza Ministry of Health reported dozens of people killed in the last 24 hours, and yesterday, it made an urgent call for blood donations for the sick and for those injured.
OCHA is telling us that 80 per cent of the Gaza Strip is now either subject to displacement orders or located in Israeli-militarized zones. These zones require humanitarians to coordinate their movements with the Israeli security authorities. 
UN partners says that over the past few days, almost half of the newly displaced people have fled with none of their belongings. The ongoing displacement of Gaza’s population is putting immense pressure on humanitarian teams, especially when there is no food or any basic items being allowed in.
In Gaza City, our partners report an extreme lack of shelter space: Displacement sites and residential buildings are all very much overcrowded. People are settling in abandoned, unfinished, or destroyed or damaged structures. Some are sleeping out in the open. 
And as we have been saying over, and over and over again, civilians need be protected, including those fleeing or forced to leave through displacement orders or those who remain despite the displacement orders.
Meanwhile, continued attacks on healthcare facilities are ongoing.  Earlier today, Al Awda Hospital, which is the only partially functional hospital in North Gaza governorate, and still treating a dozen patients, was hit. Yesterday, Kamal Adwan Hospital ceased operations.
As of yesterday, UN partners report that about 304,000 daily meals were prepared and delivered through about 70 kitchens. Five kitchens resumed operations, including two in Khan Younis and three that relocated to Gaza City following recent displacement orders from North Gaza. However, five others in Gaza City and Khan Younis were forced to shut down after their supplies were depleted. 
UN partners providing water, sanitation and hygiene services say that the water situation is worsening by the day. For example, the largest desalination plant in the north of Gaza is in an area slated for displacement. This has disrupted access to drinking water for about 150,000 people. 
In southern Gaza, in Al Mawasi, the water situation is also dire, as the area is not connected to the water network and relies heavily on water trucking. This requires both vehicles and fuel to serve the needy population.

Full Highlights: https://www.un.org/sg/en/content/noon-briefing-highlight?date%5Bvalue%5D%5Bdate%5D=21%20May%202025

https://www.youtube.com/watch?v=o494ZKBFyws

MIL OSI Video –

May 22, 2025
MIL-OSI Video: Gaza, Haiti & other topics – Daily Press Briefing | United Nations

Source: United Nations (Video News)

Noon Briefing by Stéphane Dujarric, Spokesperson for the Secretary-General.

Highlights:
-Occupied Palestinian Territory
-Haiti
-Secretary-General/ECOSOC
-Syria
-Sudan
-Myanmar
-Libya
-International Days
-4th International Conference on Financing for Development

OCCUPIED PALESTINIAN TERRITORY
The Office for the Coordination of Humanitarian Affairs (OCHA) says that yesterday and today, the Israeli authorities granted us access to Kerem Shalom so that our teams could reach additional humanitarian supplies that crossed into the Strip on Monday and Tuesday, crossed from Israel into Kerem Shalom loading areas. Other critical items such as hygiene products or fuel have not been allowed by the Israeli authorities into Kerem Shalom.
So far, and this is as a few minutes ago, but the situation is obviously fluid, none of the supplies have been able to leave the Kerem Shalom loading area. This is because, by yesterday evening, Israeli authorities had only allowed our teams to go through one area that was highly congested, that we felt was insecure and where we felt looting was highly likely to take place, given the prolonged deprivation in Gaza since the blockade by the Israeli authorities for over 11 weeks. The UN hopes that will change very soon.  The discussions are ongoing as we speak between our colleagues and the Israeli security authorities.
The UN is continuing to are engage with them to identify the best possible routes out of Kerem Shalom towards Gaza to ensure that the flow of aid is not disrupted or suspended. Partners are in touch with community leaders in Gaza to mitigate the risk of looting and ensure that the supplies entering Gaza reach the people who need them.
However, it is important to underscore that the limited supplies finally being allowed to enter Kerem Shalom are nowhere near enough to meet the needs in Gaza, which are vast, which are tremendous. Much, much more aid needs to get in.
Meanwhile, bombardment and shelling are continuing across the Gaza Strip. Today, the Gaza Ministry of Health reported dozens of people killed in the last 24 hours, and yesterday, it made an urgent call for blood donations for the sick and for those injured.
OCHA is telling us that 80 per cent of the Gaza Strip is now either subject to displacement orders or located in Israeli-militarized zones. These zones require humanitarians to coordinate their movements with the Israeli security authorities. 
UN partners says that over the past few days, almost half of the newly displaced people have fled with none of their belongings. The ongoing displacement of Gaza’s population is putting immense pressure on humanitarian teams, especially when there is no food or any basic items being allowed in.
In Gaza City, our partners report an extreme lack of shelter space: Displacement sites and residential buildings are all very much overcrowded. People are settling in abandoned, unfinished, or destroyed or damaged structures. Some are sleeping out in the open. 
And as we have been saying over, and over and over again, civilians need be protected, including those fleeing or forced to leave through displacement orders or those who remain despite the displacement orders.
Meanwhile, continued attacks on healthcare facilities are ongoing.  Earlier today, Al Awda Hospital, which is the only partially functional hospital in North Gaza governorate, and still treating a dozen patients, was hit. Yesterday, Kamal Adwan Hospital ceased operations.
As of yesterday, UN partners report that about 304,000 daily meals were prepared and delivered through about 70 kitchens. Five kitchens resumed operations, including two in Khan Younis and three that relocated to Gaza City following recent displacement orders from North Gaza. However, five others in Gaza City and Khan Younis were forced to shut down after their supplies were depleted. 
UN partners providing water, sanitation and hygiene services say that the water situation is worsening by the day. For example, the largest desalination plant in the north of Gaza is in an area slated for displacement. This has disrupted access to drinking water for about 150,000 people. 
In southern Gaza, in Al Mawasi, the water situation is also dire, as the area is not connected to the water network and relies heavily on water trucking. This requires both vehicles and fuel to serve the needy population.

Full Highlights: https://www.un.org/sg/en/content/noon-briefing-highlight?date%5Bvalue%5D%5Bdate%5D=21%20May%202025

https://www.youtube.com/watch?v=o494ZKBFyws

MIL OSI Video –

May 22, 2025
MIL-OSI Europe: Briefing – EU emissions trading system for buildings, road transport and additional sectors (ETS2): Status and concerns – 21-05-2025

Source: European Parliament

The EU aims to become the first climate-neutral continent in the world by 2050. Since the announcement of the European Green Deal and following the adoption of the European Climate Law in 2021, the EU’s climate agenda has been built even more around the principle of carbon pricing. The EU emissions trading system (ETS) is, today, the cornerstone of the EU’s strategy to achieve this vision, complemented by a mix of industrial, energy and climate policies. Currently, the EU ETS covers stationary (power and industrial) installations, domestic aviation and maritime transport. Following the revision of the EU ETS Directive, greenhouse gas (GHG) emissions from buildings, road transport and additional sectors not covered by the existing EU ETS will be covered under a new ETS2. Carbon pricing is expected to regulate around 75 % of EU GHG emissions from 2027. Following the adoption of the revised ETS Directive in 2023, Member States had to transpose the ETS2 into national law. The ETS2 will target GHG emissions from fuel for the sectors covered. Fuel suppliers have to buy and surrender emissions allowances and are likely to pass on the cost of this new instrument to final consumers. Consumers are likely to face higher energy bills if they do not switch to low-carbon technologies, which is why the ETS2, while aiming to achieve climate objectives, has become a social concern. A new Social Climate Fund will support the switch to low-carbon technologies in the building and transport sectors, including but not only through direct payments for vulnerable households impacted by the new ETS2. However, some stakeholders have claimed that the Social Climate Fund will not be enough and are asking for the ETS2 to be delayed or modified. This briefing looks at the recent issues and concerns that have been raised regarding the ETS2.

MIL OSI Europe News –

May 22, 2025
MIL-OSI Europe: Answer to a written question – Repatriation of Syrians – E-000218/2025(ASW)
Source: European Parliament
The Commission does not keep such registries.

As of 6 March 2025, the United Nations High Commissioner for Refugees (UNHCR) estimates that over 300 000 Syrians have returned to Syria via neighbouring countries since early December 2024, and that almost 890 000 internally displaced persons have returned to their home region since November 2024.

While remaining cautious due to the volatile situation in Syria, and in line with the European Council conclusions of 19 December 2024[1], the EU is committed to help creating the conditions for safe, voluntary and dignified return of refugees, as defined by the UNHCR, in particular by supporting Syrians who decide to go home and by stepping up its non-humanitarian early recovery support in sectors crucial for sustainable returns.

Under the EU asylum rules, the Syrian nationals who benefit from international protection in a Member State have the right to reside in the Member State that granted them protection. EU law outlines the circumstances in which an individual protection status can be withdrawn and a number of related safeguards.

The Return Directive[2] sets out common standards and procedures to be applied by the competent authorities of the Member States for returning illegally staying third-country nationals, in compliance with fundamental rights as well as international law, including refugee protection and human rights obligations. Non-governmental organisations do not have a formal role in the carrying out those procedures.

[1] European Council (EUCO) 50/24: https://www.consilium.europa.eu/media/jhlenhaj/euco-conclusions-19122024-en.pdf.

[2] Directive 2008/115/EC of the European Parliament and of the Council of 16 December 2008 on common standards and procedures in Member States for returning illegally staying third-country nationals.
Last updated: 21 May 2025
MIL OSI Europe News –
May 22, 2025
MIL-OSI Europe: Answer to a written question – Social Climate Fund (SCF) and limited liability housing companies in Finland – E-001228/2025(ASW)
Source: European Parliament
The rules of the Social Climate Fund (SCF) and those concerning the use of the remaining Member State revenues under the new Emissions Trading System for buildings, road transport and additional sectors (ETS2) are different. SCF rules are more targeted and developed through the SCF Regulation[1], the recently adopted Guidances on the Social Climate Plans[2] and on the do no significant harm (DNSH) principle[3].

Article 9 of the SCF Regulation allows support through intermediaries, if the entire benefit is passed on to the vulnerable and relevant safeguards are in place. Thus, the investments and measures carried out by the Finnish limited liability housing companies could be financed if they are included the Finnish Social Climate Plan and if a measure can be designed in such a way that the entire benefit is passed on to vulnerable households (homeowners, or renters), e.g. in the form of an improved building standard and reduced heating bills.

Under the ETS Directive[4], Member States must use the revenues for the purposes listed in Articles 10(3) and 30d(6), which include measures to improve energy efficiency and deep renovations. The decarbonisation of heating and cooling of buildings, the reduction of the energy needs of buildings and social aspects are mentioned especially when it comes to ETS2.

[1] https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=uriserv:OJ.L_.2023.130.01.0001.01.ENG .

[2] https://climate.ec.europa.eu/document/download/9fbce2e3-5052-4d61-874a-54af0c7dbf55_en?filename=c_2025_881_part_1_en.pdf .

[3] https://climate.ec.europa.eu/document/download/2f3269ea-fb02-4481-a1d5-3453ba3172ea_en?filename=c_2025_880_part_1_en.pdf .

[4] https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=CELEX%3A02003L0087-20240301 .
Last updated: 21 May 2025
MIL OSI Europe News –
May 22, 2025

MIL-OSI: U.S. Growth Strategy: Boralex Signs Contracts for Two New York Solar Projects Totaling 450 MW

Source: GlobeNewswire (MIL-OSI)

MONTREAL, May 21, 2025 (GLOBE NEWSWIRE) — Boralex Inc. (“Boralex” or the “Company”) (TSX: BLX) is pleased to announce it has entered into a Renewable Energy Standard Agreement with the New York State Energy Research and Development Authority (NYSERDA) to procure Tier-1 RECs from each of its Fort Covington Solar Project and Two Rivers Solar Project, totaling 450 MW. The signing of these contracts marks a significant milestone in Boralex’s contribution to renewable energy in New York and in the Company’s development in this promising market.

These contracts were awarded as part of NYSERDA’s 2024 Renewable Energy Standard Competitive Solicitation for the purchase of New York Tier-1 Eligible Renewable Energy Certificates (RECs). Each REC represents the environmental attributes of one megawatt-hour of electricity generated from an eligible renewable source such as solar energy.

The two solar facilities will be located in Franklin and St. Lawrence Counties in upstate New York, with permit applications currently under review by the state Office of Renewable Energy Siting and Electric Transmission:

“New York is committed to building a clean energy economy, and Boralex is honored to meaningfully contribute toward achieving the State’s renewable energy targets,” said Patrick Decostre, President and Chief Executive Officer of Boralex. “We appreciate NYSERDA’s confidence in our projects. New York State is a strategic growth market for Boralex, and we are proud to support the State’s renewed commitment to advancing clean energy infrastructure.”

“Our execution of these contracts for the Fort Covington and Two Rivers projects reflects Boralex’s strategic focus on growing our U.S. renewable energy platform,” added Hugues Girardin, Executive Vice President, General Manager North America, Boralex. “We are extremely proud of our teams, whose expertise and dedication continue to drive Boralex’s successful expansion across North America in response to the consistently strong demand for green electricity.”

“Renewable energy projects like Fort Covington and Two Rivers, are crucial to New York’s clean energy transition,” said NYSERDA President and CEO Doreen M. Harris. “Additionally, public-private partnerships like this will bring meaningful benefits to Franklin and St. Lawrence counties by spurring economic investments and delivering affordable and locally-sourced energy to residents of these communities.”

“This is very exciting news for our town and the state as it looks to achieve its climate goals,” said Mark Peets, Supervisor of the Town of Brasher. “Throughout the development of this project, Boralex has done an excellent job communicating the benefits to our community. They’ve listened to our concerns and, more importantly, made meaningful project changes that have helped build trust and support. We look forward to the hundreds of construction jobs, and tens of millions of dollars in economic development these projects will provide.”

“These developments are great news for our community and the surrounding area,” said Susan Bellor, Supervisor, Town of Massena. “I very much look forward to continuing to strengthen the relationship between Boralex and our town, and I’m excited about the long-term positive economic impact the project will have – not only for the participating landowners, but the broader community.”

“Small towns like ours don’t often get opportunities like this,” said Pat Manchester, Supervisor of the Town of Fort Covington. “The Fort Covington Solar Project represents a major investment in our community and our future. We’re excited about the jobs, increased tax revenues, and the momentum it brings for sustainable economic growth. Boralex has been a transparent, responsive partner throughout this process, and we’re proud to host a project of this scale and significance.”

Construction of both projects is expected to begin in 2026, and are expected to be commissioned in 2028. They will bring substantial economic, social, and environmental benefits to New York State and to local communities. Once constructed, the projects will together provide enough energy to power approximately 105,000 homes, support approximately 300 to 400 construction jobs, and create long-term operational roles, further strengthening the local economy and advancing the State’s transition to clean energy.

Caution Regarding Forward-Looking Statements

Some of the statements contained in this press release, including those regarding the start of construction of the projects and their commissioning, are forward-looking statements based on current expectations, within the meaning of securities legislation. Boralex would like to point out that, by their very nature, forward-looking statements involve risks and uncertainties such that its results or the measure it adopts could differ materially from those indicated by or underlying these statements, or could have an impact on the degree of realization of a particular forward-looking statement. Unless otherwise specified by the Company, the forward-looking statements do not take into account the possible impact on its activities, transactions, non-recurring items or other exceptional items announced or occurring after the statements are made. There can be no assurance as to the materialization of the results, performance, or achievements as expressed or implied by forward-looking statements. The reader is cautioned not to place undue reliance on such forward-looking statements. Unless required to do so under applicable securities legislation, Boralex management does not assume any obligation to update or revise forward-looking statements to reflect new information, future events or other changes.

About Boralex

At Boralex, we have been providing affordable renewable energy accessible to everyone for over 30 years. As a leader in the Canadian market and France’s largest independent producer of onshore wind power, we also have facilities in the United States and development projects in the United Kingdom. Over the past five years, our installed capacity has increased by more than 50% to over 3.2 GW. We are developing a portfolio of projects in development and construction of more than 8 GW in wind, solar and storage projects, guided by our values and our corporate social responsibility (CSR) approach. Through profitable and sustainable growth, Boralex is actively participating in the fight against global warming. Thanks to our fearlessness, our discipline, our expertise and our diversity, we continue to be an industry leader. Boralex’s shares are listed on the Toronto Stock Exchange under the ticker symbol BLX.

For more information, visit boralex.com or sedarplus.com. Follow us on Facebook, LinkedIn and Instagram.

For more information

MEDIA	INVESTOR RELATIONS
Camille Laventure Senior Advisor, Public Affairs and External Communications Boralex Inc. 438 883-8580 camille.laventure@boralex.com	Stéphane Milot Vice President, Investor Relations and Financial Planning and Analysis Boralex Inc. 514 213-1045 stephane.milot@boralex.com

MEDIA – NORTH AMERICA
Zachary Hutchins Manager, Public Affairs and Communications Boralex Inc. 518 727-6155 zachary.hutchins@boralex.com

Source: Boralex inc.

The MIL Network –

May 22, 2025

MIL-OSI USA: Ricketts Leads Beef Month Resolution

US Senate News:

Source: United States Senator Pete Ricketts (Nebraska)
WASHINGTON, D.C. – Today, U.S. Senator Pete Ricketts (R-NE) introduced a resolution to designate May 2025 as Beef Month in America. Ricketts is a longtime champion — and enjoyer — of Nebraska beef. Senators Deb Fischer (R-NE), Roger Marshall (R-KS), and John Cornyn (R-TX) co-led this resolution.
“Nebraska is the beef state. Last year, we led the nation with over $2 billion in beef exports. We lead the nation in commercial cattle slaughter, with 6.8 million head. We have the top three beef-producing counties in the nation,” said Ricketts. “Nebraska’s ranchers feed the world. Cattle and beef production delivers billions of dollars to our economy every year. This month, we honor hard-working cattlewomen and men.”
“Nebraska is the beef state – and we’re proud of it,” said Senator Fischer. ”I want to thank Senator Ricketts for leading this resolution to officially designate May as National Beef Month and recognize the important role Nebraska’s ranchers play in raising cattle and producing high quality beef.”
“Thanks to the work of America’s cattle producers, nothing compares to our nation’s beef,” Senator Marshall said. “From gate to plate, beef plays a crucial role in our economy and our diets. As the third-largest red meat-producing state in the nation, hundreds of Kansas communities are built on the cattle industry, and I’m proud to partner with Senators Ricketts and Fischer to recognize May as National Beef Month.”
“Texas ranchers are the backbone of America’s beef supply, and their hard work is often done in dark hours and without thanks. I’m proud to join Senator Ricketts and my colleagues on a resolution to recognize May as National Beef Month,” said Sen. Cornyn.
“As the number one beef exporting state in the nation, Nebraska is home to thousands of hardworking beef cattle producers who are proud to provide consumers with the safest, highest-quality, and most delicious beef in the world,” said Nebraska Cattlemen President Dick Pierce. “We thank Senator Ricketts for recognizing the importance of nutritious American beef to our nation.”
“We want to thank Nebraska Senator Pete Ricketts for introducing a Senate Resolution recognizing May 2025 as National Beef Month and proudly join in celebrating the vital role beef plays in Nebraska’s economy, culture, and rural communities,” said Nebraska Farm Bureau Federation President Mark McHargue. ”Nebraska leads the nation in commercial red meat production and ranks first in cattle on feed, with the beef industry contributing over $12 billion annually to our state’s economy. Nebraska’s cattle producers are committed to producing high-quality beef that feeds families across the country and around the world. This resolution honors their hard work and reinforces the importance of our state’s #1 industry, beef production.”
The text of the resolution can be found here.

MIL OSI USA News –

May 22, 2025
MIL-OSI United Kingdom: Highland Council takes forward plans to explore heat networks in Inverness

Source: Scotland – Highland Council

The Highland Council is taking the next step in its journey to Net Zero by exploring the development of city-wide heat networks in Inverness, as part of the Council’s Local Heat and Energy Efficiency Strategy (LHEES). Members of the Council’s Climate Change Committee met today to review progress on the project.

Chair of the Climate Change Committee, Councillor Sarah Fanet, said: “This strategic study is a key part of our Local Heat and Energy Efficiency Strategy and a big step forward in helping Highland reach Net Zero. Heat networks are already common in countries like Denmark, and we’re now looking seriously at how they can work for Inverness too. Done well, they can offer more sustainable and affordable heating, especially for places like care homes, hospitals, social housing, and retirement complexes.”

The LHEES is a legally required strategy for every local authority in Scotland, setting out a clear plan for how carbon emissions can be reduced from heating buildings and improve energy efficiency across the Highlands. Through this work, Highland Council has identified areas across Inverness that may be well suited for a future heat network—an energy system that could bring long-term benefits for our communities, economy, and environment.

So far, four potential heat network zones have been identified in areas with higher energy demand. These zones include large public buildings and housing estates, where collective heating could make the biggest impact. The next phase will assess technical options, costs, and the best models for delivering heat networks in these areas.

Cllr Fanet added: “This work is about reducing emissions and making energy more affordable. But it’s also about building long-term resilience into how we heat our homes and public buildings. We’ll be working closely with partners and communities to make sure this opportunity brings real social and economic benefits for the people of Highland.”

Heat networks, also known as district heating, work by supplying low-carbon heat from a central source to a group of buildings such as homes, schools, care homes, hospitals or offices. Instead of a boiler or electric heater in each building, the heat is shared more efficiently, which can help cut energy bills and reduce our carbon footprint.

The Highland Council secured funding through the Strategic Heat Network Support programme, provided by the Heat Network Support Unit—a partnership between the Scottish Government, Scottish Futures Trust, and Zero Waste Scotland. This allowed the Council to undertake a strategic city-wide feasibility study to assess opportunities for developing heat networks in Inverness.

Ends

MIL OSI United Kingdom –

May 22, 2025
MIL-OSI USA: Congresswoman Torres Proposes Key Amendments to Republican Budget Reconciliation to Protect Working Families and Strengthen Public Services
Source: United States House of Representatives – Congresswoman Norma Torres (35th District of California)
May 21, 2025

Amendments Address Critical Issues facing Californians, including higher taxes, Cuts to Healthcare and food assistance, and dangerous Trump Administration changes to Air Safety Systems

WASHINGTON, D.C. — Congresswoman Norma Torres introduced targeted amendments to the Republican Budget Reconciliation aimed at protecting working families’ access to healthcare, food assistance, fairness in tax policy, and protecting essential public services. These amendments address critical areas, including healthcare, SNAP, transportation, and infrastructure, ensuring that policies serve the best interests of American workers and communities.

“Republican budget proposals threaten essential programs that millions of Americans depend on,” said Congresswoman Torres. “These amendments are a necessary step to ensure that our tax policies, public services, and infrastructure investments are fair and effective in supporting the American people.”

The proposed amendments aim to address the issues in the Republican Budget Reconciliation bill, which includes cutting healthcare coverage for nearly 14 million people, reducing SNAP benefits by $300 billion, and leaving 42 million Americans facing cuts to their benefits:
- Protect Healthcare and Prevent Medicaid Cuts: Torres is pushing to strike provisions to cut hundreds of billions of dollars from Medi-Cal, California’s Medicaid. This amendment would protect the healthcare of millions of Americans who rely on Medicaid for essential health services, including the nearly 340,000 adults and children in the Inland Empire who rely on Medi-Cal (California’s Medicaid program). Cuts to Medicaid disproportionately harm children, seniors, and people with disabilities. A cut to Medicaid is also a cut to Medicare, as 30% of Medicaid dollars support Medicare enrollees.
- Prevent Harmful SNAP Cuts: Torres is proposing an amendment to prevent $300 billion in cuts to the Supplemental Nutrition Assistance Program (SNAP), which would endanger the food security of millions of American families, including 112,000 Americans in the Inland Empire. By striking these harmful provisions, nearly 90% of households that participate in SNAP have either a child, a senior, or an individual with disability. Rep. Torres seeks to protect vulnerable working families from losing access to the resources they need to stay healthy and nourished.
- Lift the SALT Deduction Cap: Torres is advocating for the removal of the $10,000 cap on State and Local Tax (SALT) deductions that Trump signed into law in 2017. By limiting the SALT deduction to $10,000, the Trump 2017 Tax bill effectively raised taxes on Californians by eliminating their ability to deduct their state and local tax payments (including state income taxes and local property taxes) from their income for federal taxes. As residents of a state with a high cost of living and high housing costs, hardworking Californians are hit particularly hard by Trump’s cap on the SALT deduction. Californians pay more than their fair share of taxes, contributing $83 billion more in federal taxes than they received in return. Lifting the cap is about fairness and provides Californians with deserved tax relief in Trump’s high-priced economy.
- Protect Aviation Safety and Ensure Fair FAA Staffing Practices: Torres introduced an amendment to keep the flying public safe, protecting Federal Aviation Administration (FAA) employees from unlawful firings. The FAA has fired at least 400 individuals responsible for maintaining air traffic control systems. This amendment will ensure that no funds made available by this Act may be used to terminate a probationary or non-probationary employee unless an individual performance assessment is conducted. This amendment aims to prevent unlawful terminations, ensuring that FAA staff are treated fairly and that safety standards are upheld for the traveling public. This amendment protects local jobs while maintaining air travel safety standards at Ontario International and regional airports.
- Support California’s Critical Infrastructure Needs: Torres is fighting back against the indefensible corruption of this Administration, specifically the newly released U.S. Army Corps of Engineers plan to help only Republican leaning states, not all Americans equally. Torres is advocating for the U.S. Army Corps of Engineers (USACE) to allocate resources for California’s water infrastructure, environmental restoration, and flood management projects. Given California’s challenges with drought, wildfires, and floods, this amendment is designed to strengthen the state’s infrastructure and ensure communities are better protected from environmental and flood-related disasters.
- Remove harmful tax on remittances: Torres is fighting back against this bill’s unjust 5% federal tax on remittance transfers that targets immigrant communities. With Americans sending over $93 billion in 2023 to help families abroad with basic necessities, this tax would devastate economies in countries like Honduras, Haiti, and El Salvador, where remittances comprise up to 30% of GDP. This amendment would prevent harmful policies that destabilize regional allies, contradict migration management efforts, and punish those playing by the rules—ensuring our policies support rather than harm immigrant communities and diplomatic partnerships.
“These amendments are designed to protect the well-being of American families, ensure the long-term viability of essential public programs, and support fair policies that address the unique needs of communities across the country,” Congresswoman Torres added. “We cannot afford to let partisan politics undermine the services and resources that our citizens rely on every day.”

###
MIL OSI USA News –
May 22, 2025
MIL-OSI USA: ICE New York City, partners arrest illegal alien wanted in home country for homicide

Source: US Immigration and Customs Enforcement

NEW YORK — On May 19, U.S. Immigration and Customs Enforcement New York City arrested Marlon Josuel Cruz Fernandez, an illegal alien from the Dominican Republic wanted in his home country for homicide.

ICE officers and special agents assigned to ICE’s Newburgh office, along with special agents from the Federal Bureau of Investigations, the Drug Enforcement Administration and Homeland Security Investigations arrested Cruz without incident in New Rochelle pursuant to a warrant of arrest.

“This foreign fugitive mistakenly thought he could exploit our immigration laws to evade arrest in his home country,” said ICE Enforcement and Removal Operations New York City acting Field Office Director Judith Almodovar. “Let his futile attempt highlight to other criminal aliens we will always collaborate with our domestic and international law enforcement partners to ensure these fugitives are returned to their home countries to face justice.”

The U.S. Border Patrol encountered and arrested Cruz Dec. 11, 2015, in the Rio Grande Valley in Texas after he illegally entered the U.S. Border Patrol officials served him with a notice to appear for violation of the Immigration and Nationality Act and turned him over to ICE for detention placement. ICE Harlingen granted Cruz bond Feb. 1, 2016, which he posted three days later. Cruz failed to appear for his immigration proceedings Jan. 5, 2017, so the immigration judge ordered him removed in absentia from the U.S. to the Dominican Republic.

On Feb. 2, 2018, authorities in Santo Domingo, Dominican Republic, issued a warrant for Cruz’s arrest for the offense of homicide, which went international six weeks later. ICE New York City received notification March 16 this year.

The New Rochelle Police Department arrested Cruz for having improper plates and impounded his vehicle May 17. The New Rochelle Police Department released Cruz on his own recognizance prior to realizing that he was an international fugitive wanted for homicide. Upon receiving this information, the police department immediately notified ICE New York City, which — along with federal partners — arrested Cruz.

Cruz is currently detained in ICE custody pending removal to the Dominican Republic.

Learn more about ERO New York City’s mission to increase public safety in our New York City communities on X at @ERONewYork.

MIL OSI USA News –

May 22, 2025
MIL-OSI USA: Rep. Gabe Vasquez Urges Trump Administration to Preserve Affordable Access to Narcan
Source: US Representative Gabe Vasquez’s (NM-02)

WASHINGTON, DC – Today, U.S. Representative Gabe Vasquez sent a letter to President Donald Trump urging the administration to protect and expand access to overdose reversal medications, like Naloxone, which are critical tools in combating the fentanyl and opioid crisis.

His letter follows meetings with first responders from across New Mexico and reports that the Department of Health and Human Services may cut funding for programs that distribute Naloxone kits and train first responders in their use.

“Naloxone saves lives—and any move to reduce access to it puts our communities and first responders at greater risk,” said Vasquez. “Instead of cutting these programs, we should be expanding them and making sure cost is never a barrier to saving a life.”

Rep. Vasquez highlighted concerns from first responders across New Mexico’s 2nd Congressional District, who have witnessed the devastating impacts of fentanyl and are increasingly facing rising costs for the tools they need to respond effectively. Naloxone—commonly known by the brand name Narcan—can reverse opioid overdoses in minutes and is credited with saving thousands of lives each year.

In his letter, Vasquez called on the Trump administration to:
- Reverse course on any proposed funding cuts for Naloxone distribution and training programs;
- Expand access to overdose reversal medications across the country;
- Investigate and curb pharmaceutical price gouging of these lifesaving drugs; and
- Keep Naloxone affordable for first responders.
The Congressman also pointed to a recent DEA-led operation in Albuquerque that resulted in the seizure of more than 400 kilograms of fentanyl pills. While praising law enforcement efforts, he emphasized that enforcement must be paired with strong public health investments.

In the letter, Rep. Vasquez reiterated his willingness to work with the administration on bipartisan efforts to dismantle drug trafficking networks, secure the border, and ensure that treatment and prevention remain central to the federal response to the fentanyl crisis.

“After meeting with Congressman Vasquez in March and sharing our concerns about the rising cost and limited availability of Narcan, we appreciate him being proactive and stepping up to urge the administration to protect these lifesaving resources. Our crews are on the frontlines of the opioid crisis every day, and having access to affordable overdose reversal medications is critical to saving lives in our community,” said the Las Cruces Fire Department.

This letter also comes as part of Rep. Vasquez’s efforts to support first responders during National Emergency Medical Services (EMS) Week. This week, he also cosponsored the bipartisan Comprehensive Alternative Response for Emergencies (CARE) Act to allow seniors on Medicare to receive at-home emergency medical services to treat minor medical incidents by creating a model that reimburses EMS providers delivering treatment in place and not just reimburses when Medicare patients are transported to the hospital.

###

MIL OSI USA News –
May 22, 2025
MIL-OSI USA: Reed & Whitehouse Pay Tribute to the Late RI Senate President Dominick J. Ruggerio

US Senate News:

Source: United States Senator for Rhode Island Jack Reed

WATCH: RI’s U.S. Senators remember the life and legacy of Donny Ruggerio

WASHINGTON, DC – U.S. Senators Jack Reed and Sheldon Whitehouse took to the floor of the U.S. Senate last night to pay tribute to the life and legacy of the late Dominick J. Ruggerio, the legendary former Rhode Island Senate President who passed away last month at the age of 76.

A distinguished public servant and a champion for working people and the State of Rhode Island, Donny Ruggerio was the longest-serving legislator in the state when he passed away. An influential community leader for decades, he served as a state legislator for nearly 44 years, representing District 4, which includes parts of North Providence and Providence.

A transcript of the floor statements follows:

Remembering Dominick J. Ruggerio

Mr. REED: Thank you, Mr. President. Mr. President, I rise today to pay tribute to Rhode Island’s Senate President Dominick Ruggerio of North Providence, RI, who passed away on April 21, 2025, after a long and courageous battle with cancer. As the longest serving member of the Rhode Island State Senate, Donny was affectionately known as the “Dean” of the Senate.

I first met Donny as a young man when we both attended La Salle Academy in Providence, Rhode Island. We played high school football together, and indeed he was a remarkable gentleman then, both on and off the field.

One of the things we discovered is that–Donny was about 6 feet 2 inches. He was a wide receiver. He would be running down the field, looking at the goal line with nothing in front of him, catch the ball, and then he would trip over me. I was a defensive halfback. So we got to know each other pretty well.

He was one of the nicest gentlemen you could ever meet. He was especially kind and reached out to the younger players on the team, you know, encouraging us and also acting as sort of a custodian in making sure we got a chance and we weren’t mistreated. Throughout his entire life, Donny carried that spirit to raise others up and provide opportunities for all.

Then I later had the privilege of serving with him in the Rhode Island State Senate from 1985 to 1990. Once again, he paved the way for me with his advice and assistance. Indeed, his quiet commitment to the people of Rhode Island had always been an inspiration to me and, frankly, to anyone who ever met him.

Donny was a strong advocate for organized labor and joined the Laborers’ International Union of North America as a field representative and organizer, eventually becoming administrator of the New England Laborers’ Labor-Management Cooperation Trust.

Donny started his public service long before we linked up again in the State Senate. He began working for the late Lieutenant Governor Thomas DiLuglio and then the Rhode Island Public Transit Authority. His career continued in public service in the 1980s, when he was elected as Representative of House District 5 in Providence, Rhode Island. Four years later, he succeeded his father-in-law, Majority Leader Rocco Quattrocchi, to Rhode Island Senate District No. 4, beginning his 40-year tenure in the Rhode Island State Senate.

In that role in the Senate, Donny served as Vice Chairman of the Senate Labor Committee, Senate majority Whip, Deputy Majority Leader, and Majority Leader. In 2017, he was honored by his colleagues with his election to the Office of Senate President. The hallmark of Donny’s leadership style was to have an open-door policy which encouraged colleagues and constituents and elected officials to become engaged. He devoted his life to improving our community, to strengthening public health and public safety, and to creating new opportunities for all Rhode Islanders to thrive. He made significant strides toward improving the lives of working Rhode Islanders, and he is credited with spearheading efforts to preserve pensions and raise the minimum wage.

In the face of recent, incredible, and ultimately insurmountable health challenges, Donny valiantly sought reelection last November in his beloved community and was returned by his Senate colleagues to his post of Senate President after he won reelection. He led the Senate with tenacity and unwavering dedication.

Throughout his decades of public service to his constituents in North Providence and Providence and to the entire State of Rhode Island, he was strongly committed to fulfilling his responsibilities, obligations, and tasks with a sense of accountability, decency, and honor. He led his life with purpose and served the people of Rhode Island extremely well.

Donny leaves behind a devoted family, and I express my heartfelt condolences to the Ruggerio family: his children Charles Ruggerio and his wife Jillian and Amanda Fallon and her husband William; his grandchildren Ava Ruggerio, Mia Ruggerio, Natalie Fallon, and Jameson Fallon; his sister Lisa Aceto and brother-in-law James Aceto; and his nieces and nephews.

I will miss Donny’s friendship, his unwavering advocacy for our State and the people who make it a special place. Rhode Island is much better today because of Senate President Ruggerio’s leadership and dedication. He inspired us all and will continue to do so.

I yield the floor to my colleague from Rhode Island, Senator Whitehouse.

The PRESIDING OFFICER. The Senator from Rhode Island.

Mr. WHITEHOUSE. Mr. President, I join my senior Senator today to honor our friend Dominick Ruggerio, who was both president and the dean of the Rhode Island Senate.

President Ruggerio, who passed away last month, was affectionately known as “Donny.” He leaves behind his children Amanda and Charles and four beloved grandchildren.

Donny was a graduate of two great Rhode Island institutions–La Salle Academy and Providence College. At La Salle, Senator Reed was his schoolmate and teammate on the football team.

After finishing college, Donny served as a policy aide for former Lieutenant Governor Tom DiLuglio, who was a Rhode Island classic in his own right. Donny went on to spend many years with Laborers’ Local Union 271, serving in multiple leadership roles.

Donny’s career in public service continued when he was elected to the Rhode Island House of Representatives, in 1981, where he stayed for a few years until making the jump to the Rhode Island Senate, in 1984, where then-State Senator Jack Reed was again his teammate in the State Senate.

The Senate was Donny’s home. For over four decades, he was the champion for the residents of District 4, which includes parts of North Providence and Providence. After holding several leadership positions in the Senate, he was elected by his peers to serve as Rhode Island’s Senate President in 2017. His legacy at the statehouse will be defined by his decades of forceful advocacy for working people and his practical, highly effective style of legislating.

He never forgot his background as a laborer and never stopped working to create opportunities for working men and women. To that end, he fought for a higher minimum wage and for specific projects that would create union, family-supporting jobs. He also led the charge to eliminate lead pipes, making our tap water safer to drink for Rhode Islanders.

Among his many accomplishments was his work to address the State’s opioid crisis. He created a fund to support statewide opioid treatment, recovery, prevention, and education programs and shaped a law to ensure that filling a prescription for lifesaving anti-overdose medication would not create a barrier for Rhode Islanders getting life insurance.

I am grateful, in particular, for Donny’s leadership on climate. He sponsored legislation that put Rhode Island on a path to 100 percent renewable energy by 2033. When that legislation was signed into law, it was the most aggressive statewide energy standard anywhere in the country.

Donny was beloved by his lifelong North Providence community, and he was always a pleasure to work with. In a profession that is not always gentlemanly, he was always a gentleman. He took pride in the senate being a place where people had, as he would say, always been able to disagree without being disagreeable.

So I thank Senate President Ruggerio for his dedicated and successful service to our State. I offer my condolences to his family. We will miss him.

I yield the floor.

MIL OSI USA News –

May 22, 2025
MIL-OSI: Bulletin from the Annual general meeting
Source: GlobeNewswire (MIL-OSI)

(OBS classification Regulatory news)

On May 21, 2025, the annual general meeting of Virtune AB (publ) was held and below is a summary of the decisions that were made:
- The meeting decided to adopt the income statement and balance sheet included in the annual report for the financial year 1 January – 31 December 2024.
- The meeting decided to allocate the results in accordance with the board’s proposal included in the annual report.
- The board members and the CEO were granted discharge from liability for the financial year 1 January – 31 December 2024.
- It was decided to establish remuneration for the board in accordance with the nomination committee’s proposal.
- It was decided, in accordance with the nomination committee’s proposal, that advisory consulting fees may be paid to the board for non-standard board work, which should also be reported for at the next annual genaral meeting.
- It was decided, in accordance with the nomination committee’s proposal, that fees shall be paid to the auditor according to an approved account.
- It was decided, in accordance with the nomination committee’s proposal, to re-elect the board members Christopher Kock, Erik Fischbeck, Laurent Kssis and Fredrik Djavidi. Erik Fischbeck was elected Chairman.
- It was decided, in accordance with the Nomination Committee’s proposal, to re-elect the registered accounting firm Öhrlings Price WaterhouseCoopers AB as auditor for the period until the end of the next Annual General Meeting, which has appointed the authorized public accountant Johan Engstam as the auditor in charge.
- The meeting decided, in accordance with the Nomination Committee’s proposal, that the company’s Nomination Committee for the 2025 Annual General Meeting shall consist of the 3 largest shareholders as of November 30, 2025, and the Chairman of the Board, and adopted instructions for the Nomination Committee in accordance with the proposal.
- It was decided to authorize the Board to decide on the issuance of shares, convertibles or warrants, according to the proposal submitted by the Board.
- It was decided to authorize the Board to decide on the introduction of a new long-term incentive program for the Board and key personnel within Virtune AB, according to the proposal submitted by the Board.
Attachment
- Regulatoriskt pressmeddelande 2025_ENG
The MIL Network –
May 22, 2025
MIL-OSI USA: TRANSCRIPT: Governor Phil Scott Highlights Housing Legislation at Weekly Press Conference
Source: US State of Vermont

Montpelier, Vt. – At his weekly press conference Wednesday, Governor Phil Scott and Housing and Community Development Commissioner Alex Farrell emphasized the importance of passing legislation this session to address Vermont’s housing crisis.

Governor Phil Scott: Good afternoon, thanks for being here today.

Since I’ve been Governor, I’ve been sounding the alarm about our housing crisis. And I thought almost everyone in the building agreed that housing should be a top priority.

That’s why in January; we presented a proposal to the legislature to help move the needle on the housing we desperately need which included important tools and regulatory changes.

As a reminder, over the past several years we’ve invested hundreds of millions in housing. But it’s still too expensive and takes too long to build.

That’s why regulatory reform is so important.

Our proposals also included common sense solutions like expanding the Tax Increment Financing program to bring infrastructure funding to smaller communities who have fewer resources.

We’ve also seen how costly permitting is because it’s difficult to navigate and time consuming, leading to project costs that skyrocket.

The complicated process prevents many smaller developers from moving forward with projects because it takes too long and doesn’t make financial sense.

In last year’s “so called” housing bill, which was actually a conservation bill, one of the few helpful provisions were the interim Act 250 exemptions.

But as helpful as they are, they’re going to expire next year. We’ve asked the legislature to extend those so communities have an opportunity to thrive and grow.

Unfortunately, we’re seeing very little traction in our proposal to extend these.

And finally, we asked the legislature to reform wetland permitting and appeals process which will help projects across the state, especially in Barre, Montpelier, and Plainfield, which all need our help as they continue to recover from recent flooding.

Last session, despite many legislators campaigning on the need for more housing and regulatory reform, they didn’t follow through.

So here we are, one year later and close to adjournment, and I’m concerned we once again aren’t going far enough to meet the moment.

If housing is truly the priority we say it is, we need to follow through, and make sure all communities have the tools they need to grow.

We can’t afford to nibble around the edges, especially when we need 41,000 more homes in 5 years – just to catch up.

We need to address it now, because if we don’t, Vermont will fall further behind.

Commissioner Alex Farrell: Thank you, Governor.

Today I am speaking not only as the Commissioner of Housing and Community Development, but also as a housing advocate. As the Governor said, we need to ask ourselves if we’re truly meeting the moment on housing.

In January, the Governor and I shared his PATH for Vermont proposal – a robust housing package that paired the most efficient investments with various regulatory reforms and systems improvements.

Now, I’d like to show how few of these proposals have made it into the primary housing bills. The red “Xs” signify proposals that did not move forward in either housing bill, orange labels indicate proposals that were reduced.

As we enter the final weeks of the session, it is clear that none of the regulatory or appeals reform proposals will be included in housing legislation, and the proposed investments have been dramatically diminished.

Regarding the proposed investments, I want to acknowledge the budgetary constraints that we faced this year, though it is important to recognize that the Governor presented a budget that kept us living within our means while still prioritizing strategic housing investments. As we enter a new era in which the massive influx of federal investment has not only dried up, but we enter a new phase of uncertainty, we are reminded that funding alone will not be enough to meet the moment on housing.

We need to reform our regulatory systems and provide new tools. We need to provide communities, developers, and homebuilders with predictability. And we need to make sure that our zoning and land use laws enable housing of all types to be built in every community in the state.

I am concerned by how often I heard the following phrase in legislative committees this year: “I know we have a housing crisis, BUT…” The words that follow “but” are almost always disappointing. Here are some examples:
- “This committee doesn’t have jurisdiction over that issue”
- “We would prefer to take that up next session”
- “We didn’t realize that’s a priority”
- “We don’t have enough time to resolve that this year”
I’ll repeat that we presented this package in January, two months after voters spoke loud and clear that Vermont is becoming too expensive to afford. Adding more homes will increase the tax base, reducing pressure on those who are already paying property taxes.

There is, however, a real opportunity in the Project-based TIF discussion. We presented this in January as a proposal to help rural communities invest in infrastructure to support housing development. Since then, the proposal has gone through many shifts and changes, including changing the name from SPARC, as proposed in our package, to CHIP – the Community & Housing Infrastructure Program. Name aside, this program presents a tremendous opportunity to support the creation of thousands of housing units.

CHIP moved through the Senate and passed through that chamber productively and in a form that the administration and housing advocates supported and were excited about. CHIP then went through productive and nuanced conversations through the housing and commerce committees in the House. However, things went very wrong when this program moved to the House Committee on Ways and Means – supposedly one of its final legislative stops. This committee proposed an amendment which makes drastic changes to the program which drew concerns from the administration, builders, municipalities, housing advocates, and many legislators. The proposed changes would narrow the applicability of the program to such an extent that very few communities could use it. Recent efforts to modify the Ways & Means amendment have not made meaningful improvements.

It is imperative that CHIP passes in a form that rural communities can benefit from. We cannot overcomplicate this tool – this housing infrastructure financing tool – out of a desire to layer on many other complex policy priorities. Our priority needs to remain housing.

In justifying the proposed amendments, here are some things I heard which are deeply concerning to me:
- “We are already building more housing than we have since the 1980s” – that’s not true. In the late 80s we were building about 4,800 homes a year. Now it’s about 2,300.
- “Vermont’s housing is the envy of the nation” – all evidence suggests otherwise. In fact, a new study by the U.S. Chamber of Commerce finds Vermont’s housing crisis is resulting in more than $700 million in lost economic output, $422 million less in personal income, and 6,800 jobs that would have been created if we had a place for those workers to live.
- “We shouldn’t push to build 30,000 homes as fast as possible” – why shouldn’t we? We have decades of underbuilding to make up for.
- “Let’s just wait for population decline to hit in the 2040s.” This is particularly galling since our housing crisis is contributing to our population decline and workforce challenges. Young Vermonters are leaving partly because they think they will never be able to own a home here.
These comments make me worry that we are taking a step back in the conversation around housing in the state house. Just ask Vermonters if they feel we can declare our mission accomplished on housing.
- Do Vermonters feel like they can buy a new home at an affordable price?
- Do Vermont renters feel like they have options for quality rental housing at a price they can afford?
The answer is a resounding “no”.

Vermonters are asking us for bold action on housing, and I fear we are not meeting the moment. We stand ready to help – our proposals are drafted and would represent meaningful change. We are eager to be partners in this.

###

MIL OSI USA News –
May 22, 2025
MIL-OSI Security: Missouri Man Sentenced to Over Nine Years in Prison for Church Arson

Source: United States Attorneys General 1

A Missouri man was sentenced yesterday to 111 months in prison by U.S. District Judge Matthew T. Schelp for the Eastern District of Missouri for burning down a Cape Girardeau, Missouri house of worship in 2021. He was also ordered to pay $6,968,223.36 in restitution for damages incurred by the church.

Christopher Scott Pritchard, 49, pleaded guilty in U.S. District Court for the Eastern District of Missouri in Cape Girardeau, on Dec. 19, 2024, to one count of arson and one count of violating the Church Arson Prevention Act. Pritchard admitted setting fire to the house of worship owned and used by the Church of Jesus Christ of Latter-Day Saints (LDS) in Cape Girardeau, Missouri, during the evening of April 28, 2021. Pritchard was spotted watching the fire and was arrested about 1.5 miles away by the Cape Girardeau County Sheriff’s Office. Pritchard smelled like smoke and had a backpack containing a laptop computer, a projector, speakers and 21 apples that he’d stolen from the church. Pritchard told deputies that he’d gotten into a verbal altercation with the Bishop of the church a few days before the fire and had threatened to assault the Bishop and burn the church down.

The fire destroyed the building and prevented the congregants in the free exercise of their religious beliefs. No one was injured.

“There is no place in America for criminal acts against houses of worship,” said Assistant Attorney General Harmeet K. Dhillon of the Justice Department’s Civil Rights Division. “The Civil Rights Division thanks its law enforcement partners for prosecuting this matter.”

Assistant Attorney General Harmeet K. Dhillon and U.S. Attorney Sayler A. Fleming for the Eastern District of Missouri made the announcement.

The FBI St. Louis Field Office, the Bureau of Alcohol, Tobacco, Firearms and Explosives (ATF), the Cape Girardeau County Sheriff’s Office and the Missouri State Fire Marshal’s Office investigated the case. Assistant U.S. Attorney Paul Hahn for the Eastern District of Missouri prosecuted the case, with assistance from the Civil Rights Division’s Criminal Section.

MIL Security OSI –

May 22, 2025
MIL-OSI USA: Powering New York with Renewable Energy
Source: US State of New York

overnor Kathy Hochul today announced that contracts have been executed for 26 large-scale land-based renewable energy projects that, upon completion, will provide more than 2.5 gigawatts of clean energy, enough to power more than 670,000 homes throughout New York State. These projects are expected to create more than 1,900 near-term, family-supporting jobs and generate more than $6 billion in private investment while reinforcing the State’s commitment to the development of locally-produced clean energy, grid resiliency and economic development.

“New York is creating competitive opportunities for the clean energy industry, and we could not do this without the shared commitment of our private partners,” Governor Hochul said. “The advancement of renewable energy is part of the foundation of New York’s plan to transform to a zero-emission electricity system and continue our green economy’s momentum forward.”

These contracted awards are the result of the New York State Energy Research and Development Authority’s (NYSERDA) 2024 Tier 1 Renewable Energy Standard solicitation. Once constructed, the projects will produce approximately 5,000 gigawatt-hours annually–which is enough to power more than 670,000 homes–provide public health benefits resulting from reduced exposure to harmful air pollutants; and provide more than $300 million in commitments to disadvantaged communities, as defined by the Climate Justice Working Group, from long-term payments to community benefit funds.

New York State Energy Research and Development Authority President and CEO Doreen M. Harris said, “As New York transitions to a clean energy economy, we celebrate these 26 projects and the significant energy they will provide. New York remains an innovator in accelerating clean energy projects, advancing clean energy jobs, and spurring economic development opportunities for businesses and our local communities all across our state.”

Contracted projects include:

Capital Region
- Dolan Solar, Washington County
- Hawthorn Solar, Rensselaer County
- Somers Solar, Washington County
- Shepherd’s Run Solar Project, Columbia County
Central New York
- Agricola Wind, Cayuga County
- Homer Solar Energy Center, Cortland County
Finger Lakes
- Highbanks Solar, Livingston County
- Horseshoe Solar Energy Center, Livingston and Monroe Counties
- Valcour Bliss Windpark, Wyoming County
Mohawk Valley
- Dolgeville Hydro, Herkimer County
- Flat Creek Solar, Montgomery County
- Mill Point Solar I, Montgomery County
- Skyline Solar, Oneida County
North Country
- ELP Ticonderoga Solar, Essex County
- Fort Covington Solar Farm, Franklin County
- Lyons Falls Mill Repower, Lewis County
- Tracy Solar Energy Center, Jefferson County
- Two Rivers Solar Farm, St. Lawrence County
- Valcour Altona Windpark, Clinton County
- Valcour Clinton Windpark, Clinton County
Southern Tier
- High Bridge Wind, Chenango County
- Prattsburgh Wind Farm, Steuben County
- Yellow Barn Solar, Tompkins County
Western New York
- Moraine Solar Energy Center, Allegany County
- South Ripley Solar, Chautauqua County
- York Run Solar, Chautauqua County
The payments under the contracted projects will only begin once projects are constructed and begin delivering renewable energy to New York after obtaining all required permits and approvals. Several projects have already commenced construction activities. All projects are expected to be operational by 2029.

Additionally, the State will continue to emphasize engagements with the projects’ host communities. NYSERDA offers resources and no-cost technical assistance to help local governments understand how to manage responsible clean energy development in their communities, including step-by-step instructions and tools to guide the coordination of new clean energy projects, permitting processes, property taxes, siting, zoning, and more.

New York State Department of Public Service CEO Rory M. Christian said, “We applaud Governor Hochul’s commitment to move New York State toward a clean energy economy. The projects being announced today will spur the creation of clean energy jobs as well as encouraging economic development opportunities in New York State.”

New York State Department of Environmental Conservation Acting Commissioner Amanda Lefton said, “These large-scale renewable energy projects demonstrate how clean energy and job creation go hand-in-hand to build healthier communities and stronger economies. More than two dozen projects under contracts through NYSERDA will generate renewable power and private investment that helps continue the significant progress underway to reduce polluting power sources.”

New York State Department of Labor Commissioner Roberta Reardon said, “I thank Governor Hochul for maintaining our state’s leadership in the clean energy sector and for continuing to create great career opportunities for New Yorkers statewide. These investments will continue to build a more energy efficient and environmentally friendly future for New York State.”

State Senator Kevin Parker said, “As Chair of the Senate Energy and Telecommunications Committee, I am proud to work alongside NYSERDA, a critical partner in advancing New York’s clean energy future. Their continued leadership in delivering funding awards and innovative programs is essential to meeting the goals of the Climate Leadership and Community Protection Act. Together, we are not only strengthening the state’s electric grid with renewable energy, but also ensuring that disadvantaged communities share in the economic and environmental benefits of this transition.”

New York State AFL-CIO President Mario Cilento said, “Congratulations to Governor Hochul and NYSERDA on another major milestone toward achieving New York’s renewable energy goals while adhering to robust labor standards and protections and Buy American policies. This will create good union jobs while building up the State’s clean energy program.”

New York State Building Trades President Gary LaBarbera said, “Renewable energy projects continue to represent major opportunities for New York to not only achieve the goals set out by CLCPA but also create thousands of family-sustaining union careers and economic stimulus that will reinvigorate our communities and the middle class. The execution of these contracts represents a significant milestone for reaping the benefits of these clean energy initiatives. We thank Governor Hochul and NYSERDA for their continued commitment to pushing forward the development of green infrastructure in New York.”

Alliance for Clean Energy New York Executive Director Marguerite Wells said, “The benefits of locally-produced renewable energy are immense and wide-ranging. We thank Governor Hochul for continuing to guide the state through our clean energy transition, which will not only benefit the New Yorkers of today but also those of generations to come. Today’s announcement shows there is continued enthusiasm from private developers to invest in New York, and New York remains ready to greet them.”

New York League of Conservation Voters President Julie Tighe said, “Climate change is happening now and the impacts will only get worse if we don’t transition off of fossil fuels and deliver on our clean energy future. Today’s announcement of new land-based renewable energy projects will mean fewer greenhouse gas emissions, better air quality, and good union jobs for New Yorkers. We thank Governor Hochul for her environmental leadership and congratulate NYSERDA on this progress toward meeting our clean energy goals.”

Natural Resources Defense Council Power Sector Managing Director Kit Kennedy said, “New York State’s leadership on clean energy is more important now than ever, given the federal government’s efforts to turn back progress. The clean energy projects announced today by Governor Hochul mean more jobs, more economic development for communities, less health-harming air pollution, and lower electricity system costs. This is what leadership means. Let’s keep it coming!”

Citizens Campaign for the Environment Executive Director Adrienne Esposito said, “We are thrilled that NY is taking another significant step forward in our state’s ongoing transition to a clean energy future. As national momentum around renewable energy and climate action stumbles, it’s more important than ever for states like New York to lead. Leadership matters and we need NY to continue on a course of establishing a 21st century energy infrastructure plan we can be proud of! These projects will deliver reliable, locally-produced clean energy to millions of New Yorkers helping to meet the state’s ambitious renewable energy goals while combating climate change, creating jobs, strengthening our economy, and enhancing long-term energy security. CCE commends Governor Hochul and NYSERDA for their commitment to advancing critical renewable energy projects that benefit both our environment and our communities.”

Advanced Energy United New York Policy Lead Kristina Persaud said, “This is an exciting milestone for New York’s clean energy future. These large-scale renewable energy projects will bring real economic benefits to communities across the state. These projects will not only provide clean power, but also quality jobs for New Yorkers. At the same time, they strengthen New York’s leadership in the rapidly growing clean energy sector, positioning the state to compete in a global market and reap the long-term economic benefits of a modern energy economy.”

These projects will add to New York’s robust portfolio of large-scale renewable energy projects, now comprised of nearly 100 solar, land-based wind, hydroelectric and offshore wind projects currently operating or under development that are expected to deliver approximately 10 gigawatts of clean power to the grid — enough to power more than 3.3 million New York homes. Of these nearly 100 projects, more than one gigawatt of capacity is under construction, which once completed will add to the 31 operational projects currently delivering 1.4 gigawatts of clean energy to the grid – now supplying power to nearly half a million New York homes.

New York State’s Climate Agenda

New York State’s climate agenda calls for an affordable and just transition to a clean energy economy that creates family-sustaining jobs, promotes economic growth through green investments, and directs a minimum of 35 percent of the benefits to disadvantaged communities. New York is advancing a suite of efforts to achieve an emissions-free economy by 2050, including in the energy, buildings, transportation, and waste sectors.

MIL OSI USA News –
May 22, 2025

Metric	Q1 2025 (unaudited)	Q1 2024 (unaudited)
Revenue	$16.3M	$6.6M
Gross Profit	$518K	$462K

Category: housing

Executive Summary

Introduction

Description of Targets

Initial Access TTPs

Credential Guessing/Brute Force

Spearphishing

CVE Usage

Post-Compromise TTPs

Malware

Persistence

Exfiltration

Connections to Targeting of IP Cameras

Mitigation Actions

General Security Mitigations

IP Camera Mitigations

Indicators of Compromise (IOCs)

Utilities and scripts

Outlook CVE Exploitation IOCs

Commonly Used Webmail Providers

Malicious Archive Filenames Involving CVE-2023-38831

Brute Forcing IP Addresses

Detections

Customized NTLM listener

HEADLACE shortcut

HEADLACE credential dialogbox phishing

HEADLACE core script

MASEPIE

STEELHOOK

PSEXEC

Further Reference

Works Cited

Disclaimer of endorsement

Purpose

Contact

Appendix B: CVEs exploited

Appendix C: MITRE D3FEND Countermeasures

DBEDT NEWS RELEASE: HAWAI‘I APRIL UNEMPLOYMENT RATE REMAINS AT 2.9 PERCENT

Worker-led binding agreements

Building on success from India to Indonesia

A new model of accountability

Progress under threat

Stagnant homeownership growth

Filtering mechanism and access to credit

Growing inequalities

Higher social status?

Broken promises

Amendments Address Critical Issues facing Californians, including higher taxes, Cuts to Healthcare and food assistance, and dangerous Trump Administration changes to Air Safety Systems