How Nations Hack, Spy, and Win
Allie Mellen: At the end of the day, cyber attacks and cyber defenses are human. They are human stories. And if we can communicate them that way to the general public, then we'll get more people interested in cybersecurity, invested in cybersecurity, and invested in protecting their data. [ Music ]
David Moulton: I'm David Moulton, and this is "Threat Vector." Today, I'm speaking with Allie Mellen, the author of "Code War." Which, Allie, full transparency, I've only gotten about halfway through it. It's such a brand new book. "Code War: How Nations Hack, Spy, and Shape the Digital Battlefield." And now, in addition to being a former author and commentator on the industry, author. So that's awesome. I'm curious, last time we got together, we talked about XDR and the future of cybersecurity and cybersecurity operations. Today's going to be a little bit different. After writing the book, are you more or less confident about where we're going in cybersecurity than ever before?
Allie Mellen: Well, first off, thank you so much for having me. It's always great to be here. You guys ask so many good questions, so it's going to be fun. After writing the book, to be honest, I'm more confident and more impressed and just more proud of the cybersecurity industry as a whole. I am more concerned, especially like, I'm an American, that's the perspective that I came at this book with. I'm definitely more concerned about the US's position as compared to some of the other cyber superpowers than I was before. So that's kind of a, it's a bit of a mixed bag. Because I think that the research that the cybersecurity community does is so important, and they do such a great job with, and we're moving in the right direction with it. But there's a lot of forces at play here that factor into the cybersecurity status that each country has that are outside of the control of the cybersecurity community.
David Moulton: Yeah, as I was reading through, you named the three bigs, right? You've got your US, you've got your China, you've got Russia in there, and then a smattering of other countries. And it seemed like each is jockeying for leverage. Each is jockeying for that position that helps how they set up their country and the expectations. And I just got to a point where the ability to work together seems like it's fallen off quite a bit. The number of reported vulnerabilities, I think you said, dropped down to half a million, I think was the number. Is that what gives you pause? Is that one of the things that's giving you concern?
Allie Mellen: It definitely is one of the factors there. I think one of the things that we talk about a lot in cybersecurity, but it doesn't always come through to reality is like this element of trust and how important trust is. And trust is so multifaceted for me. Because it's not just about, okay, what vulnerabilities are we reporting on? It's also what decisions are we coming to do attribution or to not do attribution in the first place? Attribution has become very much so a geopolitical tool, especially in a lot of these circumstances. And so that changes a lot of the dynamics. In addition, it is a factor too of like what is happening in the world from the standpoint of where tech is moving and where tech is being deployed and the investments that are being made in tech in different regions? One of the reasons that the US has been such a powerful force from a cybersecurity standpoint is because much of the technology used in the world is built by American companies. And that, especially on the infrastructure side, is changing so much right now, given how much China has invested in the digital Silk Road. And so I have concerns moving forward about who controls most of the infrastructure and the tech investments in the world and what that means for changing dynamics from a cybersecurity standpoint.
David Moulton: Yeah, I can see that. As I was preparing for today's conversation, I looked at your background. Hacker/researcher. You've shared the stage and been on stage at Black Hat. Roles as a practitioner, an analyst. And I got to think all of those things, you poured all of that experience into this book. You know, how do those experiences, those in the business, around the business, shaping the business, how does that influence the argument that you make in "Code War"?
Allie Mellen: It was such a huge influence. Like it's hard to overstate what an influence my background was, especially like even coming up with the idea for the book. Like the book is so focused on geopolitics and cybersecurity and the melding of those two worlds. Because I'm a huge history of war buff. I find that space so interesting. And obviously, I have a lot of experience in the cybersecurity side of things. And it all came together into this mix. As I think about like my background, where I've worked with a lot of three-letter agencies, I have had experience as a hacker, I now work with a lot of different teams across the world, it is more of a recognition of one of the biggest difficulties within cybersecurity, which is actually just how do we communicate this to the rest of the world and how do we get the rest of the world to care and pay attention? That is the thing that every conversation comes back to. It's like, we aren't able to get the buy-in for this. We aren't able to get the support for this other thing. And to me, right now is such an important inflection point and such an important moment. Because we see like the US as an example, loosening the reins a little on using cyber attacks in an offensive way. We see retaliation coming back based upon that. And those factors together mean that cyber attacks are incredibly important. We're in a very, very difficult geopolitical situation. And all of those pieces come together to mean that cyber attacks and defenses are going to be more important to businesses, to individuals, to citizens, than they have before, and we need to be able to communicate that better. And so that's one of the reasons why I wrote the book the way that I did is because I wanted this to be something that anyone could pick up and read and understand why this is so important. Because we get it in cybersecurity. We get why this is important. We get why this matters. But we need to communicate it better to the outside world.
David Moulton: So you've got your, you know, your regular entree, but then there's this little bit of spice that you put in there.
Allie Mellen: Yeah, exactly.
David Moulton: That was fun. And also, just as somebody who's always curious about language, where do things come from, you know, to know that origin story. You said something -- and I'm going to come off of our questions. But you said something a minute ago that I think is really profound. In your book, you read about Reagan coming away from a screening of Wargames, right? Matthew Broderick, Wargames, and was absolutely horrified, it seemed, to find that this was, you know, potentially possible, asks this general to go run down, could this happen to us? And the answer was worse than we could have imagined, absolutely, but at a much bigger scale, and Wargames didn't get it right, it was too small. I think that my takeaway, as somebody who really is fascinated with the power of storytelling, was we've got a lot of media and, you know, movies and television and really sensational storytelling that I think moves us in the wrong direction to motivate people. And I'm curious, you know, maybe -- again, I didn't get to the back half, read as much as I could on the flight out here. But is that an area that you have looked into of like the power of storytelling in and around this industry, this business, that makes all of our lives go until it stops when something goes wrong?
Allie Mellen: I'm so glad that you brought this example up because I love this story so much. It was like the day after WarGames came out, and Reagan was at Camp David and was like, I'll watch this movie. And then he comes back and he's like in the Oval Office talking with Joint Chief of Staff and was like, hey, figure out like, is this something we need to worry about? It's such a funny story. It's so human. And I actually like completely agree with you. One of the things that was really important to me throughout the book is like, everything is about the human story. Everything is about the human element of it. I start the book with a quote from Richard Feynmanx, which is that -- oh God, what is the exact quote? I have it on a bookmark.
David Moulton: I was going to say, it's right here, we have it.
Allie Mellen: It is, "For a successful technology, nature cannot be fooled," something along those lines. And what it's really about is the Challenger disaster, coming out of the Challenger disaster. And saying, hey, ultimately, you can have all the good PR you want. You can claim that everything's going to be fine all you want. But at the end of the day, if something's wrong with the technology, you're going to find out, and it's going to be really bad, as was the case with the Challenger disaster. And I think we have a very similar thing within cybersecurity, but I like to frame it a little bit differently. Which is like everything that we do in cybersecurity affects the real world. If it doesn't, there's no reason that we should be doing it. And there's no reason for a nation state to be using an attack if it doesn't affect the real world. And so sometimes I think we get a little lost in what we're talking about within cybersecurity in this like digital realm that kind of reminds me of the metaverse and how everybody's like, oh, we're going to live in the metaverse and not interact with the real world. And it's like, people don't have an interest in doing that. Most people don't if you're outside of tech. But when you start to put things in that context, of how does this affect nature, how does this affect the real world and what we're operating in, then you actually can start to really understand the motivation for things and to communicate it in a way that people will understand and care about. It stops being magic, it stops being something that's too technical, because to be quite frank, it isn't. We can include more people in this space, we just haven't. And once you start to do that, then people really start to get why it matters and why it's so important. So even though some of these cultural references don't do the best job at conveying what we do in cybersecurity or what the ramifications are, they can include other people in the conversation that we otherwise wouldn't have included, like apparently Reagan [laughter]. And so it becomes really important because it sets the foundation, like in that case, for cybersecurity policy at the federal level in the United States. Which is just so crazy to think about as like a movie is what did that when we had so much going on in the world.
David Moulton: And I think that -- I mean, movies have been used to move a point of view of a country and, you know, push propaganda or push a point of view. But to think that, you know, you sit down and you watch WarGames at Camp David, and it kicks off this whole chain of events that leads to, we've got to get our cybersecurity, our security, you know, together. It was just a profound moment in the book right out of the gate that, you know, caught my attention. I didn't realize that that had happened.
Allie Mellen: Well, it's so funny because the proof is in the pudding. If you go back, I went back and looked at the congressional hearing that led to the Computer Fraud Abuse Act, and WarGames was mentioned at least four times [laughter]. Like it really was just so pivotal to the kickoff of some of the most important legislation that we've had related to cybersecurity in the US. So it's really fascinating. Those stories and like finding those stories was such a treat for me.
David Moulton: So I want to go back to that conversation we started to get into on attribution, right? You know, you make the point that you have to understand a country's national doctrine, right? Like what is their strategic objective? And then you can start to understand aspects of where attribution is going to make sense. And I've got a lot of questions about that. But I'm wondering, with as powerful as attribution can be, it can be very misleading, you know, walk me through how attribution works in practice and maybe where some of the pitfalls are.
Allie Mellen: Yes, there's a lot of pitfalls. This is one of the things that makes it so difficult. And like one of the reasons why I very intentionally chose to include the United States as one of the main cyber powers in this book and to address it both from the defensive and offensive standpoints is because we lack so much context about the US, in part because so many researchers are Western-based. And because in many cases, those are the researchers that we can trust. And I don't say that lightly. Because there is a lot of work that happens in Russia, in China, in many of these nations, that is towards attribution, that is really good and that they do a lot of great work. But the problem is that it is very difficult to trust the output of attribution from these nations. Because at the end of the day, the government can make a decision to include something or not include something in the attribution. And so they can fundamentally change what's coming out of those nations. And so it just makes it very difficult. So I wanted to make sure that I was giving as comprehensive of a picture as we could possibly get about the situation, both from the US standpoint and these other countries. And one of the things that I did in the book was I do mention and dig into some examples of like attribution that has been done by companies in China of operations that were supposedly by the United States. And I wanted to include that because I think it's a perfect example of this contrast that you're talking about where like, what is the difference between a strong attribution and a poor attribution? Like in one example, there was an attack that was -- a company in China said, this is the United States, and we know it's the United States because they used tools that were previously used by the NSA. But those tools had been public for like eight years. And it's like, we can't just say that this is an attack perpetrated by the US because they're using NSA tools, because anyone could be using these NSA tools. They've been out for eight years kind of thing. Or just because the code has been developed or the operations are happening within normal working hours in the US. Because let's be real, if you're in the NSA, you're not working normal US hours, because that's an immediate tell as to, this is probably happening inside the US. So I do think that there's a level of like sophistication here that matters. There's also so much evidence that the US has developed tools that are specifically made to make it seem like either they're working different hours or that they're working in different languages, such that they can avoid attribution, which is just going to become even more difficult with AI and everything that we're seeing there. So there's a lot of factors that come into play here. But beyond the standard, what we think of, hey, what language was this code written in? What language are the comments written in? Are there any indicators from an infrastructure standpoint that we can look at? It's also a factor of like, what's the reason why a nation would do this? Like one of the things that I talk about in the book is an example from the Olympics where a false flag operation happened. And it was originally attributed to North Korea. But in reality, like North Korea was trying to, to a certain extent, normalize relations around the Olympics at that time by sending Kim Jong Un's sister to the Olympics and like making these overtures. Meanwhile, Russia was still really upset about everything that happened with WADA. And so it came out later that it was actually an attack that was perpetrated by Russia that they were trying to hide and trying to make it seem like North Korea. But one thing that was really important in that moment is it is a factor of like, okay, just because it's a nation that's attacking the Olympic Games in South Korea doesn't mean that North Korea is the one doing it. You know, at the end of the day, you have to look deeper than that and you have to see what are the actual motivations happening here in the broader world to make that type of decision?
David Moulton: Yeah, as somebody who has both been blamed and blamed his sibling for things, you know, I'm now putting on my dad hat and thinking about, you know, there are going to be moments when you try to make it look like it wasn't you that did something, but you want to be able to get away with it. And maybe even as big as a country could be, they're not so different, right? It's just that human nature, that human behavior.
Allie Mellen: Oh my God, if my sister could hear this conversation [laughter].
David Moulton: Sorry, Jim. [ Music ] Well, so far, we've been talking about what nations do to one another. But a big part of your book is about the surveillance, the data control, information manipulation, internal propaganda, that countries hoist upon their own citizenry. And I think that that's one of the things that I hadn't given as much consideration to. Attribution is one thing, you know, where you're looking at, you know, how would you use or misuse that? But talk to me a little bit more about that information control and why that's such a problem.
Allie Mellen: There were two sides to the book that I wanted to make sure were in there. Of course, like the cyber attacks and the doctrine of the nations from a military standpoint and how they were approaching it, but also the defensive side and why the defensive decisions were made from a cyber perspective. Because it affects the way that cyber attacks can be perpetrated and the way that they can't. And what I found very quickly is that a lot of the excuses for why surveillance infrastructure was established was claiming for defense and defensive purposes, which makes sense, right? That's not unusual at all. But it was very fascinating to see how different nations have approached this over time and how their histories have impacted how they've chosen to approach it. Like Russia, as an example, is so focused on information warfare and this idea of controlling information, or at least like guiding the conversation, that they made very different decisions than China, which has been very concerned about controlling information as well, but much more so on how to manage that for their own populace and how to create this walled garden. And so seeing the forethought that they had to start establishing the Great Firewall and the Golden Project so early in the 90s, that set them up in such a different way than what we see with Russia, which kind of like a decade later saw what China was doing and was like, we should probably do this too. But at that point, it's too late. Like you have so much more foundational work that you haven't been able to do that has already taken place that it's just impossible to get the same level of control that China has as an example. And then in the US, it's so fascinating, because there's a lot of conversations early on in the US about how cyber defense is primarily a civilian space. Like the DHS secretary said that in the early 2000s. Which now is funny to think about because we've seen so much change happen, to the point where there's a recognition that it is not just a civilian space, that it is very critically a public-private partnership that has to happen together. But at the time, they were so tentative to do it, in part because -- like one of the things I talk about in the book is the idea of the social contracts that nations have with their people. And of course, in the US, a lot of the social contract is freedom -- or anything outside of freedom is tyranny. And so when that happens, ultimately, like if you're the DHS and you're trying to put controls in place to defend critical infrastructure against cyber attacks, when does that start to verge on tyranny, and when does the populace start to push back? And more importantly than the populace, the companies that operate in that country start to push back? Because they're the ones with the money that can start to push forward those conversations in the way that they want. And that's very different than the ideas of freedom in China or Russia, who were much more willing to accept a level of information control because of the trade-offs that they were able to get through the government because of that.
David Moulton: Yeah. And I don't think you'd see something like a Section 230 outside of the US that is vehemently defended in some of these, you know, other countries and other models. And yet here, I think you described it as cutting both ways, right? It gives you the incredible innovation and the growth and the ability to really go and, you know, have a Twitter or have a space where people are publishing whatever they want without having the company be responsible for it. But then you also get hate speech, you get misinformation, you get election interference. So, well, Allie, you covered China, Russia, and the US really in depth, but you also looked at Iran, North Korea, Israel, and some others. Each of those countries also hacks differently. I think goes back to what's their position? What are they trying to achieve? What is their history that informs why they're doing something or why they're not doing something, and maybe even their technical capabilities, right? Walk me through what makes China's approach distinct from Russia. And then if you, you know, have a story or two out of Iran, North Korea, Israel, that you think is interesting to contrast with that, you know, what makes them different and why do those differences matter to defenders?
Allie Mellen: Yeah, China is such an interesting one because they can be so quiet and like very careful with the attacks that they perpetrate on a broader scale. Even though a lot of times like, obviously, there's a lot of attribution that goes to China. But they're not bombastic like the attacks that we see with Russia, where Russia's like, yeah, we're going to take this system offline, or we're going to openly threaten this. And it'll be very clear that it is Russia doing this. You know, a lot of the attacks are low and slow from China. They try to get in there for espionage purposes. That changes completely once you get into the region that they're operating out of. When it comes to Taiwan, they're so aggressive and there's so many interesting things that we can learn from what's happening in Taiwan. But one of the things that I really love about the difference between -- like a really poignant example about the difference between China and Russia comes down to disinformation and how it's used. Obviously, Russia, when it comes to narrative attacks, disinformation, all that, has had a lot of successes. They're kind of looked at by like Iran as an example of some of the most effective influence operations that have happened in recent decades. And China has tried to replicate that, but they have really struggled. And it's fascinating to see. Because what China is ultimately missing in a lot of these influence operations they're trying to perpetrate is the cultural context. So they have like the reports that they have 50 to one as far as personnel from an attacking standpoint, from a cyber attack standpoint, compared to the US. So they have a lot of people on this. They're willing to throw a lot of people at the problem. But they struggle to get the same level of virality as the Russian military does when they're perpetrating disinformation and narrative attacks. And the reason is because they're stuck behind the Great Firewall. And so they don't have Facebook, they don't have Twitter, they don't have any of these references that we have ingrained in our culture, memes, all of that. And so they try to use them, but it's like uncanny valley where they just slightly miss every time. And so it doesn't go viral. And so that to me is so fascinating. Because the system that they've set up to protect themselves, to control the populace, has also made it so that it's much more difficult for them to execute on the cyber attacks that they want when it comes to like Facebook, Twitter, anything social media related. At the same time, it also affects how they operate. Because one of the things that we saw, especially in the early 2000s, a little bit less so now, is that many of the attackers that came out of China would pop onto a box that they use as their command and control operations to get somewhere else. But once they were out of the Great Firewall, they start logging into their personal social media accounts.
David Moulton: Yeah, I remember reading that and going like, of course they did.
Allie Mellen: Yeah. Because they can't in China. Which is so funny, because then you can figure out so much about them. Like the APT1 report showed us this really well. And so I find stuff like that to be so fascinating where like -- and one of the reasons why it was so important for me to take on the defensive side in addition to the offensive side is because they do play into each other quite a bit as far as like what we're able to discern about these nations and also where they're able to perform really effectively versus where they are.
David Moulton: Yeah, and going back to that Lasso quote, "every disadvantage is an advantage. " And so you've got this protection, you've got the Great Firewall, and yet, you're kind of awkward.
Allie Mellen: Yeah, exactly [laughter].
David Moulton: Just kind of a dork. You can't really trust when it's going well. Well, I could talk to you about this all day. I love the combination that you had of, here's what happened, a little bit of context sharing. You put in some of -- I could hear your voice -- gems into the book. And instead of asking to give away more, I think our readers should go get the book, I'm sure you do too, and read it. I wanted to ask you, why did you write this book? Like, who was it for? Was it for a specific audience? Was it for yourself to organize your thoughts and to figure out your position? Or some other reason?
Allie Mellen: Yeah, it was for -- one of the things that I really love to do, and I think is like one of the areas where I find the most joy is explaining very difficult technical subjects in a way that anyone can understand them. And we talked about how I strongly feel like that's a gap that we have in cybersecurity, especially for like the general populace, and helping them to understand why cyber attacks matter, why their data matters, why all this is important. Like the number of times that I've heard someone say to me, well, why would China care about my data? Is like it's bad. And so.
David Moulton: What do you say to that? Because I have my feelings on it, and I've run into -- and I'll group it, younger guys in particular do not seem to care. And I was talking with the CEO of a company called Cloaked. And he actually said that population, younger guys, 18 to 25, they're not good customers for his company, which protects your private data or whatever. And I wondered what it was. Is it, you know, a risk aggressiveness, a lack of information in our population? Is it just a cultural thing to just be like, it doesn't really matter? And yet -- how do you answer that question when somebody says, why would China want my information? It doesn't matter, you know, it's out there. What am I supposed to do?
Allie Mellen: But in reality, if you look at the attacks across time, these nations care the most about your data. They're willing to kill for it. They are willing to constrain companies for it. Like that's the reality that we're dealing with is you've got the tech companies on the one hand, and you've got these nations on the other, and they're all vying for your data. Whether you want to be involved in that system or not, you are involved in that system. And so you can either choose to take control of your information in that environment, or you can just pretend like it's not your problem. And it's going to be used by one of these groups in ways that you probably don't want it to be, to be manipulated, to track you, to find information about you and your family. Like these are the problems that I'm having is like -- I think a lot of the reason why there are people that, especially in the United States, that don't prioritize their data is because they haven't had to. They haven't had to worry about being surveilled or being tracked or being targeted in that way. But especially as we see an uptick in like the rise of an authoritarian focus, authoritarian regimes, everyone should be worried about how the data can be used. One of my colleagues, Enza Yiannopolo, told me this really fascinating thing when I was doing the interviews for this book that didn't actually make it into the book because I didn't focus so much on Europe. But it clicked something for me that changed how I operate in the entire book. She told me that one of the reasons that GDPR was so important to the EU and went in place was because of how Europe had seen Germany and the Nazis use data on Jewish people during the Holocaust. And that, to me, is the reason that this should matter to people. Is because Europe made that decision because they saw how data was used and they didn't want data to be used that way again against people. And that could happen to all of us, especially in such a chaotic geopolitical environment. And so that's what makes it so important is it may not be something that you have to deal with right now because of the privilege that you were lucky enough to have, but with where we're at in this geopolitical moment, that can change immediately.
David Moulton: Right, yeah.
Allie Mellen: One of the things that I did in the book is I start with the Gulf War. Which is kind of interesting because it's 1990, 1991, we're not really using cyber attacks, but the Gulf War was a huge inflection point for how multi-domain warfare was used in the United States and also how information operations became a part of that. It also kicked off China's rush to try and be more effective in that way because they hadn't before. It was a validation for Russia of their strategy with radio electronic combat. And so I wanted to start there because to me, that sets the groundwork for what we see now. And so I ended the book with Russia's war in Ukraine and showing how effective cyber attacks can be when they're truly integrated into multi-domain operations. And so it was fascinating for me because I think that now is the time for a book like this to exist that is really important. Because we have seen in the past how we got here. We've seen how effective it can be when used well and how you can really not do a good job with it, to be honest. Like there's a lot of cases where it doesn't make sense. But now is where things are going to start to pick up, and we're going to see it be used a lot more and a lot more publicly and a lot more effectively in warfare especially.
David Moulton: So you have a story in there about the United States and Benjamin Franklin using disinformation. I won't ruin it for the readers. But, you know, if you're even vaguely aware of US history, Benjamin Franklin isn't a contemporary [laughter]. And then you get to this idea that you just described of how disinformation integrated into multi-domain can be incredibly effective. But it always was. It was just the technologies and the scale of the time. There's no right or wrong answer to what happens in five years, but what do you think is next? Do these problems get harder or easier to solve? And what makes that happen?
Allie Mellen: They're about to get much more difficult. We're about to see attribution become a lot harder. We're about to see a lot more dynamic attacks. And a lot of this is -- I mean, we had to mention AI at least once or twice here. So a lot of this is driven by AI. Like Anthropic's research released late last year that talks about how China state-sponsored APT is using AI to orchestrate a attack across the entire life cycle with like a couple of breaks for a human to be involved and in the loop is really powerful for what we're going to see in the future. It's something that we have talked about for years, but now we're actually seeing nation states be able to accomplish that. And once they do, like who cares about another Zero Day? Like obviously, I care, but that's not where I think this is most important. Where this is most important is being able to use a AI system to create a more dynamic attack that takes advantage of the vulnerabilities that already exist. Because like there's so many constraints that we deal with on the hacker side of having to do reconnaissance, understand the operating system, understand the vulnerabilities that version of the operating system has, understand how to create an exploit for that, and then either try to dodge attribution or try to mimic someone else's attribution. All of that gets easier with AI. All of that becomes more dynamic. It means that the malware that state-sponsored actors write is going to be more dynamic and is going to be able to be used across different circumstances more effectively. And so I have a lot of concerns moving forward about how we're going to be able to address that from the defensive side, because it requires even more of an investment in the basics that we have struggled with forever. And it also means that we have to be using AI effectively, which is a whole other challenge and difficulty, much of which like the individual enterprise is not equipped to start doing or start doing effectively today.
David Moulton: Yeah. Well, Allie, thank you for coming on again, two-time guest. And once again, I feel like I got more out of it than maybe you did, because you're brilliant. And it's always good to have a conversation with you, especially after getting through some of your book and having some questions and having you expand on it for me and for our guests here on "Threat Vector." I appreciate you making time for me today.
Allie Mellen: Thank you so much for having me. These conversations are always so fun. You ask great questions, so it's my treat. [ Music ]
David Moulton: That's it for today. If you like what you heard, please subscribe wherever you listen and leave us a review on Apple Podcasts. Your reviews and feedback really do help me understand what you want to hear about. If you want to reach me about the show, email me at threatvector @paloaltonetworks.com. I want to thank our executive producer, Michael Heller. Mix and original music by Elliott Peltzman. We'll be back next week. Until then, stay secure, stay vigilant. Goodbye for now. [ Music ]
