Posts
2512
Following
611
Followers
1351
"I'm interested in all kinds of astronomy."
repeated

A very happy birthday to the Sinclair ZX80 released on this day in 1980!

3
3
0
repeated

We have released a new NCSC research paper which aims to reduce the presence of 'unforgivable' vulnerabilities - in it we present a method to assess 'forgivable' vs 'unforgivable' vulnerabilities'.
https://www.ncsc.gov.uk/blog-post/eradicating-trivial-vulnerabilities-at-scale

1
3
0
repeated

“Nobody asked for NFTs or the fucking Metaverse. Nobody asked for lying chatbots instead of getting to reach an actual support person that could solve your problems.”

And:“…people are challenging the notion that we all have to do AI now. Because we don’t. It’s a choice. A choice that mostly benefits monopolists.”

@tante in https://tante.cc/2025/01/28/quoted-in-ars-technicas-article-on-tarpits-for-ai-crawlers/

3
10
0
Edited 1 month ago
My first wish to the Genie on this day would be to get a live stream to OAI's PR offices.
0
0
4
repeated

I thought the sole gift of DeepSeek would be blowing the charade of massive compute requirements for parlor tricks, but now it looks like the allegations of "intellectual property theft" are also going to blow open the story of massive copyright infringement by OpenAI, Google, etc. 🤣 🍿 🍿 🍿

2
8
0
Cryptonite is back at Hackerspace #Budapest \o/ Next event on 4. Feb 19:00 CET about lattice cryptanalysis:

https://hsbp.org/tiki-calendar_edit_item.php?viewcalitemId=1939

#cryptography
0
1
2
repeated

Following our attempts to contact the casdoor maintainers, we're releasing an advisory regarding their software. This vulnerability allows attackers to exfiltrate data from the identity provider (IdP) or obtain access over SCIM. Details here:
https://doyensec.com/resources/Doyensec_Advisory_UnauthenticatedSCIM-CasdoorIdP.pdf

0
2
0
repeated
[RSS] Decompiling 2024: A Year of Resurgance in Decompilation Research

https://mahaloz.re/dec-progress-2024

/by @mahaloz
0
0
0
repeated

So, is anyone sueing in the already because they are forcing on their customers just like how they did with but this time they are also INCREASING THE PRICE AS WELL?

If not, then why not?!

0
2
0
repeated
#music #deathmetal
Show content
Just in time for my Death Metal Mental Care Day, new Aborted is out:

https://abortedmetal.bandcamp.com/track/the-pain-will-be-exquisite
1
0
3
repeated

Paragon Initiative Enterprises

Version 3.4.0 of the PHP implementation of PASETO has been released!

https://github.com/paragonie/paseto/releases/tag/v3.4.0

Includes PHP 8.4 compatibility and removes internal use of strtok(), which we don't consider a safe function for handling secret keys.

(We pulled 3.3.0 which was an accidental tag of an earlier commit in the master branch.)

0
1
0
repeated
#music #deathmetal #lovecraft
Show content
"The Vale of Pnath (or Pnoth) is a vast pit in H.P. Lovecraft's underworld. The vale is filled with a mountain-sized heap of bones and Night-gaunts often carry helpless victims to the vale, where they are left to die."

https://valeofpnath.bandcamp.com/album/between-the-worlds-of-life-and-death
1
0
1
repeated
Edited 1 month ago

In light of US tech oligarchy setting its sights on Wikimedia Foundation, a historical detail I did not know before: became the non-profit it is today partly as the result of a labour strike of Spanish Wikipedia editors who disagreed with the proposed inclusion of advertisements. Initially, it was not clear what revenue model Wikipedia would get, and Wales moved towards a for-profit model already a year after launch. However, rather than working for free, so Jimmy Wales could profit from their labour via advertising, Spanish contributors forked Spanish Wikipedia as the Encyclopedia Libre Universal. Under the threat of losing the editorial community of such a large language, Wales conceded and set up the non-profit.

That is to say, however imperfect they are, all the digital commons we have are the result of ongoing struggle and hard work to keep them as commons.

Via Las Redes Son Nuestras (https://www.consonni.org/es/publicaciones/las-redes-son-nuestras) by @teclista

8
33
0
repeated

After releasing his PoC for CVE-2024-49138, @ale98 is back with two new articles that provide background on , analyze two distinct patched by Microsoft’s KB5048685, and describe how to them.

https://security.humanativaspa.it/cve-2024-49138-windows-clfs-heap-based-buffer-overflow-analysis-part-1

https://security.humanativaspa.it/cve-2024-49138-windows-clfs-heap-based-buffer-overflow-analysis-part-2

0
3
0
repeated

Well, here's the cyberpunk part of the dystopia. Congrats Linux users, you're all criminals now.

Starting on January 19, 2025 Facebook's internal policy makers decided that Linux is malware and labelled groups associated with Linux as being "cybersecurity threats". Any posts mentioning DistroWatch and multiple groups associated with Linux and Linux discussions have either been shut down or had many of their posts removed.

https://distrowatch.com/weekly-mobile.php?issue=20250127#sitenews

6
9
0
I accidentally clicked a fucking YT short and it WON'T STOP PLAYING IF I START ANOTHER VIDEO!!
1
1
1
repeated

Via another "crazy security scanner" report, I learn that is installed in a Office and/or Teams install on Windows? According to the reddit post, in a normal install.

Does anyone know more?

The reddit page mentioning this: https://www.reddit.com/r/sysadmin/comments/1hx9eib/libcurl_vulnerability_in_office_and_teams/?sort=new

The libcurl mailing list post:

https://curl.se/mail/lib-2025-01/0086.html

1
3
0
Show older