Created with Sketch.
The technology blog and podcast
137 minutes | Jul 28, 2021
The Security box, podcast 54: Scammers Will Stop At Nothing
Hello Everyone! Welcome to podcast 54 of the Security Box. On this edition of the program, learn about Windows 11, the latest Microsoft operating system and what scammers are doing to monitize even while this version is still in beta. Next, come with us and learn about the latest in the average ransomware payments as it looks like they are declining, for now. We'll have news, notes, hopefully calls with questions or discussion throughout. If you want to leave feedback and you're listening through the podcast, call 602-887-5198 or email, imessage, whats app, or text your thoughts. The lines of communication are given throughout and I welcome what you have to say. Topics Here are the topics for today's program. Scammers are using fake Microsoft 11 installers to spread malware Average ransomware payment declined by 38% in second quarter of 2021, new Coveware report says Cyberscoop Sans News Bites Here are links to Sans News Bites, a newsletter by Sans Institute. While we may cover some of the items in these newsletters, you should read these to determine if something affects you. Sans News Bites for June 20, 2021 Sans News Bites Sans News bites for July 23, 2021 Sans Institute News that have been read from around the web The following is news that have been read from arount the web. Some may be blogged, some may not have been blogged. Serial Swatter Who Caused Death Gets Five Years in Prison Krebs on Security Spam Kingpin Peter Levashov Gets Time Served Krebs On Security Dutch police bust alleged 'Fraud Family' phishing service members Cyberscoop Kaseya obtains decryption key for victims of massive ransomware attack Cyberscoop An explosive spyware report shows limits of iOS, Android security Ars Technica We hope you enjoy the program as much as we have bringing it together for you!
201 minutes | Jul 22, 2021
The Security box, podcast 53: Better Get Your Windows Update on ... especially if you print
Hello everyone, welcome to the security box, podcast 53. On this edition, we'll be talking about some of the things that articles talk about in regards to Windows Update that came out the week of July 16, 2021. Seems like we had good success with last week where we opened the phone lines for others to participate in an open forum, so we'll do that again and see what happens and if people participate or not. You can always comment after the fact by calling our voice mail line at 602-887-5198 and letting me know you want your comments aired. We'll also have some news notes and maybe a discussion on those as well. Windows Update Here are the articles that deal with Windows Update. One is by Trend Micro and one is done by Brian Krebs from Krebs on Security. July Patch Tuesday: DNS Server, Exchange Server Vulnerabilities Cause Problems Trend Micro Microsoft Patch Tuesday, July 2021 Edition Krebs on Security Sans News bites Sans News bites for July 15, 2021 Sans Institute News Notes from around the web > REvil ransomware gang sites go dark, for reasons that remain unclear Cyberscoop Senate confirms former White House, NSA official Jen Easterly as CISA director after delay Cyberscoop Facebook catches Iranian spies catfishing US military targets Ars Technica Morgan Stanley discloses data breach that resulted from Accellion FTA hacks Ars Technica day gave Chinese hackers privileged access to customer servers Hackers IDed Ars Technica
168 minutes | Jul 15, 2021
The Security box, podcast 52: What is going on with the water supply hacks? Password discussion, news notes and more
Welcome to the security box, podcast 52. On this podcast, let's talk about the water supply hacks and the growing threat of them through the help of an interesting article by Last Pass. After that, we'll see if people partook in an open forum of topics they want to talk about and of course news, notes and highlights from the landscape that have been read. Topic: The Water Supply and the landscape The Growing Threat of Water Supply Hacks Trend Micro News Notes Below, find links to items that are of interest we've read from around the landscape. Intuit to Share Payroll Data from 1.4M Small Businesses With Equifax Krebs on Security 25 bogus Google Play store apps promised to mine cryptocurrency for a fee, scamming wannabe investors Cyberscoop Malware spammers aim to leverage Kaseya ransomware drama in email campaign Cyberscoop Report: iCloud+ Private Relay could spell the end of iOS ad fingerprinting But it isn't perfect imore.com
90 minutes | Jul 7, 2021
The Security box, podcast 51: domains and their security, an email mistake and more
Hello folks, welcome to the security box, podcast 51. On this edition of the program, we continue with Phishlabs and their q1 Phishing and intellegence report talking about Top Level Domains and certificate abuse. Next, Michael in Tennessee sent me an article talking about one email which exposed hundreds of email addresses. We'll also have news and notes, people can call and comment as usual, and we'll see where the show takes us. Topics Breaking Down Phishing Site TLDs and Certificate Abuse in Q1 Phishlabs An email sent by One Medical exposed hundreds of customers’ email addresses Tech Crunch News Notes International cops seize DoubleVPN, a service allegedly meant to shield ransomware attacks from investigators Cyberscoop Another 0-Day Looms for Many Western Digital Users Krebs on Security DOJ files 7 new charges against alleged Capital One hacker Tech Crunch US hits anti-robocall milestone but annoying calls won’t stop any time soon Ars Technica Kaseya hit with suspected cyberattack, raising fears of major supply chain incident Cyberscoop Chinese hackers suspected of using Dropbox to snoop on Afghan officials Cyberscoop We Infiltrated a Counterfeit Check Ring! Now What? Krebs On Security We hope you enjoy the program!
124 minutes | Jun 30, 2021
The Security box, podcast 50: 62% of free services are abused
Welcome to the security box, podcast 50. On the big 50th episode, we've got quite a bit of news notes to cover this week. Besides that, we're continuing with Phishlabs and their ongoing rundown of the Q1 Intelligence Report, this time, talking about free tools and their abuse. We hope that users find this of interest like I did. Of course, the lines of communication are always open whether on the show or podcast. Topic: 62% of Phishing Sites Abuse Free Tools or Services Phishlabs Sans News Bites Sans News Bites for June 25th, 2021 covers tons of stuff including Del, Vmware and more News Notes MyBook Users Urged to Unplug Devices from Internet Krebs on Security “I’m totally screwed.” WD My Book Live users wake up to find their data deleted Ars Technica Hackers are using bootleg copies of 'Grand Theft Auto V' game to mine Monero Cyberscoop Tulsa police say 18,000 files are leaked after Conti ransomware hack Cyberscoop NFC flaws let researchers hack an ATM by waving a phone Ars Technica via Wired John McAfee found dead after Spanish court approved extradition to US Cyberscoop Andrii Kolpakov, who supervised hackers for FIN7, sentenced to 7 years in prison Cyberscoop Ukrainian Police Nab Six Tied to CLOP Ransomware Krebs On Security First American Financial Pays Farcical $500K Fine Krebs on Security Russian hackers breached Microsoft customer support to try phishing targets in 36 countries Cyberscoop
147 minutes | Jun 16, 2021
the Security Box, podcast 48: Can you believe what is going on with Russia?
Thank you Michael in Tennessee for being our guest throughout the program! We really appreciate it. Welcome to the Security Box, podcast 48. On this edition of the podcast, we've got two topics for you. The first is probably one you can file in the "I can't believe I read this crap" department, while the second deals with Windows Update and what we had to look forward to there. We've got news notes with quite a number of very interesting items, as well as taking your calls, voice messages and stories to boot. Topics Adventures in Contacting the Russian FSB Krebs on Security June Patch Tuesday: Internet Explorer Finally Laid to Rest from Trend Micro and Microsoft Patches Six Zero-Day Security Holes from Krebs should be read for Patch Tuesday. Worth the read as usual. News and notes from around the landscape We may have a lot of the things listed here in articles and commentary on the blog. Feel free to check out the articles and have your voice heard. This is not a drill: VMware vuln with 9.8 severity rating is under attack Ars Technica Trickbot indictment demonstrates how one hacking tool built on older malware Cyberscoop Ransomware hits iConstituent, a service lawmakers use to communicate with voters Cyberscoop Biden revokes TikTok ban, issues new guidance for evaluating foreign apps Cyberscoop 47% Phishing Increase in Q1 Phishlabs blog Unpatched vulnerability in Samsung phones could let hackers read your messages Phone Arena MoviePass settles with the FTC over exposing private information, misleading consumers Cyberscoop RockYou2021 Breach: How to Keep Your Data Secure Now Lastpass For full show notes including articles we didn't cover but read, check the blog.
97 minutes | Jun 9, 2021
The Security box, podcast 47: Security in the forefront of everything we do
Welcome to the security box, podcast 47. On this podcast, we're going to talk about Security. A video which I found on Ted Talk's youtube channel will lead this discussion. We're also going to talk about an article from Lastpass talking about protecting your business from data breach trends. It talks about something we've talked about, supply chain attacks. Speaking of supply chain attacks, Jennifer talks about our top story from our show notes, and we'll address any concerns from that as well. We'll have news, notes, questions, comments and more. Want to leave a message by phone? Call 602-887-5198 to do so. Thanks so much for listening! Topics What do you think when you have Cybersecurity issues that keep croping up? Do you talk about your experience? Better cybersecurity starts with honesty and accountability is a Ted Talk done by Nadya Bartol which I think we need to talk about. Let's do so! Protect Your Business From These Dangerous Data Breach Trends is a Lastpass article which I think we need to talk about as well. Commentary from our top story from the News Notes program from last week News Notes FBI blames REvil gang for JBS ransomware hack as global meat supplier gets back to work Cyberscoop Fujifilm shuts down computer systems following apparent ransomware intrusion Cyberscoop Vulnerability in VMware product has severity rating of 9.8 out of 10 Ars Technica Q1 2021 Threat Trends & Intelligence Report Phishlabs Q1 2021 Threat Trends & Intelligence Report Phishlabs Latvian national charged with writing notorious Trickbot malware Tokyo Olympics organizers' data swept up in Fujitsu hack: report Cyberscoop SIM swapping victim alleges T-Mobile failed to stop $20,000 cryptocurrency scam Cyberscoop
73 minutes | Jun 7, 2021
The Anatomy of an attack: tech podcast 360
The Anatomy of an attack has been around for quite awhile. I think its within the last couple of years, and I think it is quite important now more than ever. I talk about what has happened with our staple of the box, and how it was an inbound call that started it, but thats not traditionally the case. Listen to this hour long webinar and let's talk.
160 minutes | Jun 3, 2021
TThe Security box, podcast 46: q-link wireless updates, ransomware isn't going anywhere, billions of dollars and more
Welcome to podcast 46 of the Security Box. On this podcast, Michael in Indiana is along with an update about a company we talked about in News Notes on podcast 39. We've got a topic dealing with a company that has been able to take advantage of the dark marketplace as they dominated this space very quietly since 2018. We've got a topic also on Ransomware forcing a major speaker manufacturer you all may be aware of, Bose. We'll have news, notes, questions, comments and more. During the program, it was announced that we would be switching telephone companies. Our new number is 602-887-5198. 623-263-8934 will give you this new number, probably for several days, but no more than that. Topics How Hydra, a Russian dark net market, made more than $1 billion in 2020 Cyberscoop Ransomware forced Bose systems offline, exposed personal data of 6 former employees Cyberscoop News Notes Shortages loom as ransomware hamstrings the world’s biggest meat producer Ars Technica Have I been Pwned goes open source, gets FBI data feed 9to5mac.com Fighting, screaming as alleged ATM scammer known as ‘The Shark’ is arrested in Mexico from Cyberscoop and Boss of ATM Skimming Syndicate Arrested in Mexico from Krebs on Security are covering the same thing in slightly different contexts. This is big news! Biden signs executive order to strengthen US cybersecurity from Ars Technica and Biden budget seeks $750 million to respond to SolarWinds compromises, plus billions more for cyber from Cyberscoop are related as Joe Biden seaks money to try and combat the horrific attacks of the past year. Actively exploited macOS 0-day let hackers take screenshots of infected Macs Ars Technica No, it doesn’t just crash Safari. Apple has yet to fix exploitable flaw Ars Technica IN Ars Technica Have something to say? Let's talk! Get in touch. 602-887-5198 or email/imessage/text. The choice is yours.
101 minutes | May 27, 2021
The Security box, podcast 45: 4 Vulns in Android, Conti ransomware and some news
Topics: 4 vulnerabilities under attack give hackers full control of Android devices Ars Technica Conti ransomware gang victimized US health care, first-responder networks, FBI says Cyber Scoop Irish officials analyze decryption tool as long recovery process from ransomware continues Cyber Scoop News and notes from around the landscape How to Tell a Job Offer from an ID Theft Trap Krebs On Security Recycle Your Phone, Sure, But Maybe Not Your Number Krebs On Security Live Wire is looking at changing telephone companies once again. This is more to benefit callers on the system. If we change companies, the telephone number I've been giving will change. I will announce more if we are changing.
156 minutes | May 20, 2021
The Security box, podcast 44 for March 19, 2021
Welcome to the Security box, podcast 44. On this episode of the program, its time to make sure we're all caught up on Windows Update and what may be important to you. Next, we'll talk about a task force that hopes to disrupt ransomware payments. We're not done with Experian yet, and we'll have a things to ponder on this particular article I read about their API which is apparently disabled for at least one vendor. We'll also have news, notes, commentary and questions from listeners if any, and yes, even podcast listeners can join the fun. Podcast listeners can dial 623-263-8934 to leave a voice message, just follow the prompts. Email, Imessage, text and whatsapp are all given throughout the show. Windows Update Windows Update is back, and Microsoft has given us only 54 different patches, but a lot of them are critical. 13 of them were from the ZDI program from Trend Micro. May Patch Tuesday Offers Relative Respite Trend Micro Microsoft Patch Tuesday, May 2021 Edition Things to ponder Looks like Experian is still being talked about. In this Things to Ponder, Experian API Exposed Credit Scores of Most Americans is the article which we'll be picking apart as your things to ponder. A true story of a telephone number not to call and why Jennifer is now along with a very interesting story, with a very interesting twist and yes, it is a true story. A task force that is out there to disrupt ransomware I'm happy to read articles like this one, and I want to talk about it as part of the program. Its not too old, but its something of value to all of us. KrebsOnSecurity has the details. Task Force Seeks to Disrupt Ransomware Payments is the article to read. News Notes Four men plead guilty to being go-to ‘bulletproof’ hosts for cybercriminals Cyberscoop Fintech Startup Offers $500 for Payroll Passwords Krebs on Security A Closer Look at the DarkSide Ransomware Gang Krebs on Security Ransomware Playbook: Defense in Depth Strategies to Minimize Impact Phishlabs DarkSide Ransomware Gang Quits After Servers, Bitcoin Stash Seized Krebs on Security Stop Ransomware Groups Who Weaponize Legitimate Tools Trend Micro Worried About Ransomware? Turn on MFA Last pass
105 minutes | May 12, 2021
The Security box, podcast 43 for May 12, 2021
Welcome to the Security box, podcast 43. On this edition of the podcast, we've got two topics. The first talks about a fake vaccine web site that is now shut down, thanks to the US Government. The second topic talks about the Exim 21 bug that recently hit headlines. We'll have news, notes, your questions comments and any catch up from any older podcasts. Topics Feds Shut Down Fake COVID-19 Vaccine Phishing Website Qualys researchers uncover 21 bugs in Exim mail servers > Sans News Bites Sans News Bites for May 7, 2021 'Jugular' of the U.S. fuel pipeline system shuts down after cyberattack Investment Scammer John Davies Reinvents Himself? See podcasts 10, 12 and 14 for other coverage in different aspects whether news notes or full discussions. Florida homecoming queen faces up to 16 years after alleged scheme to hack high school contest Malicious Office 365 Apps Are the Ultimate Insiders We hope you enjoy the program as much as we have bringing it together for you. See you next week!
91 minutes | May 5, 2021
The Security box, podcast 42: Has Experian learned anything?
Welcome to the security box, podcast 42. I think I've got two very interesting topics. One of these topics is the ongoing saga over at Experian. We know they had a big time breach, but do we really know what else is going on at the company? Brian has the entire details. Finally in the topic department, we know Ransomware has taken a big toll during the pandemic and there is no slowing down in that department. According to Cyberscoop, demands are higher by 43 percent so far in 2021. We'll talk about it. I'll also give you some news and notes, although it may be dated. Your questions and comments are always welcome, so please get in touch! I hope you enjoy the program as much as I have putting it together! Topics We used to put all of the notations within the file, but I've decided against that unless people want me to do that. I've heard nothing, so I'm reverting back to linking to the articles, and letting people decide on what interests them. Experian’s Credit Freeze Security is Still a Joke Ransomware demands up by 43% so far in 2021, Coveware says News Notes Sans News bites May 3, 2021 Lots of interesting things including IOS 14.5.1 on the heals of 14.5 fixing a zero day. A Clubhouse bug let people lurk in rooms invisibly
81 minutes | Apr 29, 2021
The Security box, podcast 41: Ubiquiti and other stuff
Welcome to the Security Box, podcast 41. On this edition of the podcast, we're going to talk about Ubiquiti and their big time breach, as well as something I recently read from Park Mobile and their potential breach. We'll have news, notes and more. Topics: Whistleblower: Ubiquiti Breach “Catastrophic” Ubiquiti All But Confirms Breach Response Iniquity Both of these articles are from Krebs on Security and while they're a bit old, you can't deny that it is worth talking about. Company aught to be ashamed of themselves. ParkMobile Breach Exposes License Plate Data, Mobile Numbers of 21M Users A bit of sad news: :-( Security Researcher Dan Kaminsky died Saturday at age 42 of complications (ketoacidosis) from diabetes, which he had struggled with for years. Security Now! researchers know of Dan's discovery of a critical weakness in the DNS servers at the time. He will be missed. News Notes The latest malware hiding in video game cheat codes DeepDotWeb boss pleads guilty to laundering millions Trend Micro + ROS-I: Building a more secure future
106 minutes | Apr 21, 2021
The Security box, podcast 40: Windows Update and Ransomware in the Manufacturing landscape
Welcome to podcast 40 of the Security Box. On this podcast, we're going to have our main topic that deals with the Windows Updates which you may have been prompted to install. Instead of news notes, I'll pick a few of the articles and we'll see what you think about them as I'll give my thoughts. No full news notes this week, but plenty of content to boot. We hope you enjoy the program, and thanks for listening! April Patch Tuesday Sets Record High for 2021 Microsoft Patch Tuesday, April 2021 Edition As ransomware stalks the manufacturing sector, victims are still keeping quiet For full notations, check the blog. Enjoy!
116 minutes | Apr 15, 2021
The Security box, podcast 39 for April 14, 2021
Welcome to podcast 39 of the Security Box. Looks like we've got commentary from the replay of broadcast 38's airing. We'll answer any questions from those comments if any, as well as talk about yet another story I read afterword in regards to Facebook and why it might be a good idea to remove your telephone number or use something like Google or Text Now as your number instead of your primary one. We'll have news, notes, commentary and more. We hope you enjoy the program as much as I have bringing it to you. Thanks for listening! Topic: More on Facebook, why Brian Krebs deleted his Facebook account In an article that I read on April 7th, Brian goes in to detail on why he eventually deleted his Facebook account sometime in 2020. According to the article, a paragraph says: The phone number associated with my late Facebook account (which I deleted in Jan. 2020) was not in HaveIBeenPwned, but then again Facebook claims to have more than 2.7 billion active monthly users. We know that Facebook has never been trustworthy after any type of incident, and I honestly don't believe that Mr. Krebs couldn't be part of the 533 million people affected by the breach. Checking with the site, yours truly isn't effected either, but I honestly wouldn't believe it now-a-day especially since news of this is two years old. The supposed database has been kicking around the Internet Cybercrime community since Last Summer, according to the article. I've never seen any of these databases, and with the massive amounts of databases out there and what they contain, who could confirm every piece of data in it? I like what Have I been Poned and what it is trying to offer, so don't get me wrong when it says that I'm not in there when I put my mobile number in the site to check. We now learn that the database was put up since June 2020 and include names, mobile number, gender, occupation, city, country and marital status. It includes data for 100 different countries and there is a link to a January 2021 twitter post within the article. KrebsOnSecurity goes on to talk about what might happen if someone with malicious intent gets ahold of your mobile number. One of the things that could happen is your phone number changing hands, otherwise known as a Sim-swapping attack. This happens because an employee at the store you got service is tricked in to changing the information to the attacker and you don't find out until you use your phone. Brian talks about how it is probably time to remove your number from services like Facebook once verification of the account is complete. I'm almost tempted on doing this myself. There is a very interesting paragraph in which I got interested in. It says: Why did KrebsOnSecurity delete its Facebook account early last year? Sure, it might have had something to do with the incessant stream of breaches, leaks and privacy betrayals by Facebook over the years. But what really bothered me were the number of people who felt comfortable sharing extraordinarily sensitive information with me on things like Facebook Messenger, all the while expecting that I can vouch for the privacy and security of that message just by virtue of my presence on the platform. We can't vouch for a presence of a sensitive message just because we're on the platform. I've never used Facebook or its messenger client for anything secure anyway, but that paragraph is very important. Are You One of the 533M People Who Got Facebooked? is the question and article title we're talking about in this segment, do read the article. News notes on the blog. Enjoy!
110 minutes | Apr 7, 2021
The Security Box, podcast 38: we've got Facebook in the spotlight, news, notes and more
Welcome to the Security box, podcast 38. This week, we had planned to go back to DKIM and have a discussion on it, but we aren't going to do that. Why? It looks like news has gotten about Facebooks's 2019 breach and 535 million people whose information may now be out there on the free Internet as well as it already being sold to the dark web when the initial breach occurred. We'll have news, notes and more as well as your thoughts and comments to boot. Enjoy the program! Topic: Has Facebook done it again? Michael in Tennessee sent me an article from Phone Scoop, as well as me seeing the article we'll be taking from, which came from Cyberscoop. It looks like Facebook is really paying for a 2019 breach in which 500 plus million people's information including phone number were exposed somehow and later patched by Facebook. The data, which comes from people from over 100 countries, includes users’ phone numbers, email addresses, full names, birthdates and location, among other identifiers, according to Insider, which first "reported the news." The leak, was first reported by Motherboard, according to the article. The only thing that I'm unclear on is the section that talks about the fact that the leak was reported by Motherboard in January. The information was made available by paying a Telegram bot a couple of bucks for the details according to the article. According to the article, Facebook removed the ability of searching people by telephone number after the breach. Facebook will be probed by Ireland, and its unclear if the Unnited States will follow suit by the FTC. The article goes on on what the actors may do with the information now that the information has been made available for free. The website "have I been poned" has been updated by Mr. Troy Hunt with the information that was made available by the breach. For more information and to read the full article, 533 million Facebook users’ personal data leaked online is the article and do read this. News Notes for podcast 38 Office 365 is no stranger to attack. A Phishlabs article talks about the latest threat. This time, actors can mimic websites by using Google's API through Google Ads that allow redirects to whatever they want. The issue with this one is that once you log in, they capture your credentials as well as sending you to your account. For complete information, Breaking Down the Latest O365 Phishing Techniques is the article, which will talk about this entire process. Ubiquiti is back in the news. A post by Krebs on Security talks about the latest drama at the company who now has come out saying that there was a problem. After making a change that forced people to log in to their network, they were later told to reset their passwords because of a "third-party cloud provider" may have been breached. There's more including the very interesting fact that this company should have invalidated all credentials. Ubiquiti All But Confirms Breach Response Iniquity is the article. This is going to get very interesting now. Finally, due to time constraints, I've got some good news I want to pass along. Another web boss now has been pleaded and this guy pleaded guilty. This boss was behind selling heroin, firearms and hacking tools. He pleaded guilty on charges of money laundering. Tal Prihar was captured by French authorities. Read Cyberscoop's article DeepDotWeb boss pleads guilty to laundering millions for more. Thanks so much for listening!
182 minutes | Apr 2, 2021
The Security box, podcast 37: The beginning of DKIM, other commentary, news, notes and more
Welcome to the Security Box, podcast 37. On this episode of the program, we're going to talk about something I don't think people know much about dealing with email, verification of domains in the process, the standards of what it is and how it came to be. We will also cover a very interesting webinar that I listened to by Trend Micro that delbt with the security predictions for 2021. We'll also have news, notes, questions, comments and more as the show progresses and the listeners choice on whether they have something to contribute. I hope you enjoy the show as much as I have bringing it together for you, and thanks so much for listening! For full details including links, check out the the blog and thanks for listening!
170 minutes | Mar 24, 2021
The Security box, podcast 36: Password Managers, what exactly do you need?
Welcome to podcast 36 of the security box. On this edition of the program, we'll be talking about password managers. Herbie Allen is along with a Things to Ponder section talking about Scams, one in particular dealing with Amazon. We also have a webinar that will be of interest from F-secure. We'll have news, notes and more. Hope you'll enjoy the program! Full notations willbe provided on the <a href="http://technology.jaredrimer.net">blog </a> so check back often for those. Enjoy!
100 minutes | Mar 17, 2021
Audio Centric applications for podcast 35 of the security box
On this edition of the podcast, audio-centric applications like clubhouse. News, notes and more. Read the blog for full notations.
Terms of Service
Do Not Sell My Personal Information
© Stitcher 2021