GitHub Disables Rockchip’s Linux MPP Repository After DMCA Request

https://hackaday.com/2026/01/05/github-disables-rockchips-linux-mpp-repository-after-dmca-request/

"Die Zeit" reveals that German foreign intelligence, in a multi-year campaign, intercepted Barack Obama's phone calls while aboard Air Force One because the encryption was flawed. Angela Merkel didn't know about it.

https://www.zeit.de/politik/ausland/2026-01/bnd-barack-obama-air-force-one-angela-merkel

A Glimpse Into DexProtector
https://www.romainthomas.fr/post/26-01-dexprotector/

This is my every-once-in-awhile post since I’m thinking about it today: if you have a lead on install media, an image of a dev/test system, etc. for the Dynix ILS (from the 1980s/90s), please reach out. No, it’s not on Internet Archive despite some things saying it is.

Anna’s Archive Loses .Org Domain After Surprise Suspension https://torrentfreak.com/annas-archive-loses-org-domain-after-surprise-suspension/

Trend in Number: Apple Kernel Space CVEs & Vulnerability Reporters
The blue line represents the number of kernel CVEs, and the green line represents the number of vulnerability reporters across the entire Apple platform. Starting in 2022, the number of vulnerability reporters has been increasing, while the number of kernel CVEs has been decreasing.

Do you have an idle cluster? Can you spare a couple core-years?

Help me bruteforce some test vectors for RSA key generation edge cases!

Here are the instructions, it's just a matter of running a single self-contained cross-compilable Go binary that will report the results autonomously.

https://gist.github.com/FiloSottile/19e7ceb1fdcdaa128f7d3319ad0939fa

A German hacker known as "Martha Root" dressed as a pink Power Ranger and deleted a white supremacist dating website live onstage

This happened during the recent CCC conference.

Martha had infiltrated the site, ran her own AI chatbot to extract as much information from users as possible, and downloaded every profile. She also uncovered the owner of the site. She has published all of the data.
#CCC
https://media.ccc.de/v/39c3-the-heartbreak-machine-nazis-in-the-echo-chamber
Leak data:
https://okstupid.lol/

*sigh* several weeks ago, I tried to view something on Harvard University's rare manuscript site ("Curiosity Collections"), but the images were all broken. Digging into the javascript console, I found that the images are not missing from the server if you extract their URLs, but the json is being put together wrong and the viewer can't parse it.

I sent an email to the site's contact person with all the info I had. They were apologetic and said their maintainers were "aware" of the issue, but the vague reason they gave me (a VPN issue) doesn't make a lot of sense in the context that the images are all loadable if you know their URL and the viewer is crashing in a json parsing function. So I suspect someone told the contact person a plausible-sounding reason without investigating. At the very least, they don't seem to be trying at all to fix it.

So the rare manuscripts website of a world-major university has been languishing broken for several weeks at minimum, but who knows how long it'd been like that before I, personally, noticed. I guess this is a "state of American education" post.

shouts out to the nist cve api for having a query parameter in a format that absolutely no http library will emit, basically forcing you to hand-serialise a url

amazing how many talks at c3, defcon et al boil down to "we looked at the protocol format and it's as though nobody ever thought to do this before"

My MongoDB honeypot is now open source:

https://gitlab.com/bontchev/mongopot

Visualization (not included in the repo):

https://pandora.nlcv.bas.bg/grafana/d/EysKAV4Dz/mongopot

Can anyone recognize this IC? Looking for its p/n and a datasheet ideally. Handles all the analog audio paths in a portable cassette player.

EDIT: A knock-off of Mitsumi LAG668F.

#electronics #reverseengineering

In the U.S, the Pennsylvania Supreme Court ruled that police can access your Google searches without a warrant.

The court's reasoning: users have no expectation of privacy because "it is common knowledge that websites, internet-based applications, and internet service providers collect, and then sell, user data."

That's what "free" really means. The business model depends on turning your search history into a detailed profile that can be sold, shared, and accessed by third parties.