Get in losers, we’re reading Judge Gonzalez’s ruling

(Note: you can get the zingers elsewhere, I am going to assume you read those already. If you haven’t, you should, they are *really* funny.)

Making a Lua Bytecode parser in Python

https://openpunk.com/pages/lua-bytecode-parser/

This came very handy today, and the whole blog looks pretty nice, although it wasn't updated for a while.

Shoutout to the marketing ‘expert’ who mailed a large, battery-powered, LCD-equipped video greeting card to our CEO to demonstrate their innovative approach to ignoring the #ewaste crisis. Bold strategy.

We’ll be sure to reach out if we need help shipping steaks and leather handbags to PETA.

New breach: Hungarian education office website TehetségKapu had almost 55k records breached in March. Data included email address, name and username. 32% were already in @haveibeenpwned. Read more: https://444.hu/2025/03/27/55-ezer-szemelyes-adat-magyar-diakok-tanarok-es-az-oktatasi-hivatal-dolgozoinak-informacioi-szivaroghattak-ki

via @ncweaver

Hey Apple. Sort your fucking house out. I just got a notification summary that ‘Dad had another stroke’ when he hadn’t (he’s had a stroke before so there was a small reference in the message).
Naturally I shit my pants and tapped on the message straight away so wasn’t able to get a screen grab.

If you are interested in the multiple moving parts needed to get #mte support for #qemu's #gdbstub you might find my colleges blog post interesting: https://www.linaro.org/blog/adding-support-for-mte-debugging-to-qemu/ - fortunately #linaro's #upstream first development policy is well suited to tackling these sort of integrations.

This meeting could have been a Signal leak

Doctors personally liable if mandatory NHS AI transcriber gets it wrong

https://pivot-to-ai.com/2025/04/30/doctors-personally-liable-if-mandatory-nhs-ai-transcriber-gets-it-wrong/ - text
https://www.youtube.com/watch?v=9RWdZml54eg&list=UU9rJrMVgcXTfa8xuMnbhAEA - video

@buherator not just mazdas, nissans too! And others , that sort of prompted me to dig into mine and resulted in https://github.com/ea/bosch_headunit_root
https://noc.social/@todayilearned/114425467000309539

30 April 1945 | As Soviet forces neared his command bunker in Berlin Adolf Hitler shot himself.

Hitler's Thousand Year Reich lasted twelve years, four months & eight days.

We need to commemorate all the victims & remember where ideologies of hatred may lead humanity to.

"Microsoft CEO says up to 30% of the company’s code was written by AI."

It can't be 30% by plain math. Just replacing 30% of existing code with new code takes (many) years, and then we include all produced code. If they ONLY used AI to write all code for the last few years, and they wrote it at a high pace, it could *perhaps* be done.

We all know that AI can't write code that good. But sure "up to 30%" could also mean "2%".

Of all *new* code perhaps? Still feels high.

https://techcrunch.com/2025/04/29/microsoft-ceo-says-up-to-30-of-the-companys-code-was-written-by-ai/

🚨 New advisory was just published! 🚨

MagicINFO exposes an endpoint with several flaws that, when combined, allow an unauthenticated attacker to upload a JSP file and execute arbitrary server-side code:
https://ssd-disclosure.com/ssd-advisory-samsung-magicinfo-unauthenticated-rce/

[RSS] Protecting Windows users from Janet Jackson's Rhythm Nation

https://devblogs.microsoft.com/oldnewthing/20250429-42/?p=111127

#NoCVE

#Mozilla: Multiple Vulnerabilities in Mozilla Products (Firefox, Firefox Updater, Thunderbird) Could Allow for Arbitrary Code Execution:
CVE-2025-2817, CVE-2025-4082, CVE-2025-4083:
👇
https://www.mozilla.org/en-US/security/advisories/mfsa2025-28/

🌪️HP printers are back to TyphoonPWN. This year, we’re offering up to $20,000 for a Pre-Auth Remote Code Execution vulnerability in HP MFP 4303dw/fdw printers.

If you’ve been researching HP printers, this is your moment. Show off your skills, get recognized, and earn big. 🏆

Remote participation is fully supported. Register now:
👉 https://typhooncon.com/typhoonpwn-2025/

[RSS] Python Dirty Arbitrary File Write to RCE via Writing Shared Object Files Or Overwriting Bytecode Files

https://siunam321.github.io/research/python-dirty-arbitrary-file-write-to-rce-via-writing-shared-object-files-or-overwriting-bytecode-files/

NEW: A court in India has ordered the block Proton Mail across the whole country as part of a case where a local design firm received obscene emails.

As of this writing, Proton Mail is still working, based on our tests.

Story by @jagmeets13

https://techcrunch.com/2025/04/29/indian-court-orders-blocking-of-proton-mail/

Prosecutors have requested Alex Mashinsky, CEO of the collapsed Celsius cryptocurrency company, be sentenced to at least twenty years in prison for his "sustained, calculated campaign of deceit carried out over years, targeting ordinary people."

https://www.courtlistener.com/docket/67604619/144/united-states-v-mashinsky/

#Celsius #crypto #cryptocurrency