» @signalapp Chefin kritisiert Karners Entwurf zu Messenger-Überwachung:
Die Regierung will Messenger-Dienste stärker überwachen. Wenn man im Datenschutz eine Tür öffnet, öffne man sie für alle, warnt @Mer__edith «
…und doch wollen mir Menschen immer wieder beibringen, dass die nichts zu verbergen haben. Eine Auswirkung von der Übernahme von deren mentalen Wahrnehmung und Privatsphäre, was ich als sehr übel empfinde.
🧵 …ich habe es erst jetzt online mir angesehen. Ein spannendes, so wie für die Allgemeinheit, ein sehr informelles Interview:
» @ORF_News Langfassung – @signalapp Chefin zu Messenger-Überwachung: @Mer__edith die Präsidentin der Signal-Foundation, spricht über die Pläne des Innenministeriums zur Messengerüberwachung und äußert Kritik am KI-Hype.«
It's a beautiful day, the sun is shining, the birds are singing and Alice May is naked and having fun! The raunchy redhead is out and about, frolicking through the garden, her pale body as naturally gorgeous as any flower, with long, slim legs and a slender waist, curvy hips and the cutest boobies, nipples stiff with pleasure. She loves her body, loves to play, and today she loves to stretch out on the flagstones and spread her legs open, showing off her hot pussy, pink and luscious beneath a light dusting of pubic hair. Sexy, smiling, sweet sugarplum!
It's time for me to talk about #dar, so here you go: #dar, a thread. 1/
You probably know #tar. A nice feature of #tar is that it can be streamed; you can pipe it to ssh to create or extract an archive, pipe it through compressors and encryptors and so forth.
This is also its weakness. If you want just one file or directory from a tar file, you have to decompress/decrypt and read the whole thing. Even if you just want a LIST of it, you have to read the whole thing. Very inefficient.
#dar 2/ So opposite tar, there is #zip. Generally speaking, zip isn't streamed, but it does support random access. It also is tightly coupled with certain compression algorithms.
So what we need is something that can do both: random-access and streaming. And while we're at it, it should slice and dice files like Perl does strings. It should be able to combine, separate, stripe over multiple media, compress and encrypt (preserving random access), and work with cloud. #dar does all this.
📨 Latest issue of my curated #cybersecurity and #infosec list of resources for week #22/2023 is out! It includes, but not only:
➝ 🇺🇸 🪖 Air Force denies running simulation where AI drone “killed” its operator
➝ 🇺🇸 🏂 #Burton Snowboards discloses #databreach after February attack
➝ 🇺🇸 🧪 Enzo Biochem #Ransomware Attack Exposes Information of 2.5M Individuals
➝ 🧠 🤖 Introducing Charlotte AI, #CrowdStrike’s Generative AI Security Analyst
➝ 🐍 🦠 Malicious #PyPI Packages Using Compiled #Python Code to Bypass Detection
➝ 🇰🇵 🎠 N. Korean ScarCruft Hackers Exploit LNK Files to Spread #RokRAT
➝ 🦠 📱 New Zero-Click Hack Targets #iOS Users with Stealthy Root-Privilege #Malware
➝ 🇷🇺 🇺🇸 #Russia says U.S. accessed thousands of #Apple phones in spy plot
➝ 🇯🇵 🚗 #Toyota Discloses New Data Breach Involving Vehicle, Customer Information
➝ ☁️ 👻 Organizations Warned of #Salesforce ‘Ghost Sites’ Exposing Sensitive Information
➝ 🔐 👀 #Amazon faces $30 million fine over Ring, Alexa #privacy violations
➝ 🔐 🧱 Active Mirai Botnet Variant Exploiting #Zyxel Devices for #DDoS Attacks
➝ 🇷🇺 🇺🇦 Russia’s ‘Silicon Valley’ hit by cyberattack; Ukrainian group claims deep access
➝ 🦠 🤖 #Spyware Found in #GooglePlay Apps With Over 420 Million Downloads
➝ 🦠 🚪 #RomCom malware spread via Google Ads for #ChatGPT, GIMP, more
➝ 👛 Southeast Asian hacking crew racks up victims, rapidly expands criminal campaign
➝ 🍏 #Microsoft finds #macOS bug that lets hackers bypass SIP root restrictions
➝ 🦠 🚪 #Barracuda zero-day abused since 2022 to drop new malware, steal data
➝ 🇬🇷 Worst cyberattack in #Greece disrupts high school exams, causes political spat
➝ 🇮🇳 🎠 Sneaky DogeRAT Trojan Poses as Popular Apps, Targets Indian #Android Users
➝ 🇺🇸 U.S. Department of Defense releases 2023 Cyber Strategy
➝ 📱☝🏻 New BrutePrint Attack Lets Attackers Unlock Smartphones with Fingerprint Brute-Force
➝ 🇯🇵 🎠 New GobRAT Remote Access #Trojan Targeting #Linux Routers in #Japan
➝ 🦠 📂 Clever ‘File Archiver In The Browser’ phishing trick uses #ZIP domains
📚 This week's recommended reading is: "Fancy Bear Goes Phishing: The Dark History of the Information Age, in Five Extraordinary Hacks" by Scott J. Shapiro
Subscribe to the #newsletter to have it piping hot in your inbox every Sunday ⬇️
REUnziP: Re-Exploiting Huawei Recovery With FaultyUSB (labs.taszk.io)
Obtaining privileged execution on Huawei devices with a ToC-ToU vulnerability in the firmware recovery mechanism ZIP archive parser