🇬🇧 New #leak on #ChatControl: Privacy-friendly and #E2EE encrypted messaging services are to be penalised with chat control bulk scanning orders. They want to turn the safest services into the most monitored ones!
AT&T, $T, says that personal data from around 7.6 million current customers and an additional 65.4 million former customers have been leaked onto the dark web.
AT&T says leaked data set affects about 73 million current, former account holders
Telecom company AT&T said on Saturday that a data set released on the "dark web" about two weeks ago has impacted approximately 7.6 million current account holders and 65.4 million former account holders, based on the company's preliminary analysis of the incident. #att#privacy#security#leak
A Backdoor in XZ Utils was found!
To know if you are affected rune:
xz -V in your terminal
if like me you have XZ 5.6.0 or XZ 5.6.1 downgrade XZ Utils to an earlier version, such as 5.4.6 (Stable) or disable ssh
Stasera ho sentito proprio il senso di #presura, dovevo #distrarmi dagli incubi del webdev dopo le mie ore più terribili, e in qualche modo sono finita a #navigare#Amazon per trovare qualche nuovo #libro da acquistare (magari oltre ai manga, perché ogni tanto qualcosa di diverso fa piacere), che qui il #bonuscultura fa ancora molta fatica a esaurirsi, e a me rimane appena un mese di tempo… 🌚
E qualcosa ho trovato. Qualcosa ho potuto sbirciarla bene scaricandola dai siti pirata e concludendo che probabilmente si, la comprerò cartacea, qualche altra cosa l’ho trovata solo su YouTube, ma in ogni caso domani passo prima in #libreria a vedere se hanno direttamente lì almeno una parte; se il libraio è ben fornito, questa volta Bezos non vincerà. 😊 (Anche perché la sua #piattaforma di merda è sempre peggio… ricordavo benissimo di avere 2 manga nel carrello fino a qualche ora fa, che avevo salvato per non dimenticarmi, ma navigando normalmente mi sa che uno è totalmente sparito completamente da solo: il carrello conta 1 articolo, e io ora non ricordo più cosa fosse quell’altro, non appare nemmeno nei “salvati per dopo”…)
https://octospacc.altervista.org/wp-content/uploads/2024/03/image-16.pngCosa #buffa relata: da ieri mi è arrivata la FTTH, quindi nuovo router, quindi tutto di nuovo da configurare. Molta roba già l’ho fatta, ma avevo dimenticato di disattivare l’odiosa funzione “DNS sicuro” di Vodafone, quindi sono stata 1 minuto buono a carcare di capire come mai mi uscisse l’avviso di #AGCOM sull’Archivio di Anna in 4G anche dopo aver attivato la VPN casalinga… beh, per una volta il cervello si è dimostrato utile, avrei potuto sprecare molto più tempo, invece ho capito subito il problema! E altra cosa molto buffa: stasera, lo ha riportato anche TorrentFreak, è apparso su #GitHub un #leak di parte del codice interno di #PiracyShield… cercate “fuckpiracyshield” lì sopra, you’re welcome 👀https://octospacc.altervista.org/2024/03/27/libramento-con-pazienza/
Verteidigungsminister Pistorius hat für das geleakte "Taurus"-Telefonat von Bundeswehroffizieren schnell eine Erklärung geliefert. Dabei ist unklar, wie es abgehört wurde. Nun liegt der Fall nach WDR-Informationen beim Generalbundesanwalt.
#Hacker's can read private #AI assistant chats even though they’re #encrypted.
All non-Google chat #GPT's affected by side channel that #leak's responses sent to #user's.
Mit fairmeeting wäre kein solcher #leak möglich - denn da gibt es die Option der vollen Ende-zu-Ende Verschlüsselung und Passwortschutz. Telefoneinwahl haben wir 2023 deaktiviert, genau aus dem Grund dass unerwünschte Gäste sich verstecken könnten. Im Vergleich zu Jitsi und #Webex ist fairmeeting.net DSGVO konform, da in der #EU gehosted und von einem EU Unternehmen betrieben. Wann dürfen wir an der nächsten Ausschreibung der #Bundeswehr teilnehmen @bmi ? #taurus @fbausch
U.S. Air National Guardsman Jack Teixeira, who is accused of posting classified documents online, is expected to plead guilty next week, multiple outlets say. The details of the agreement with prosecutors over changing his plea are not immediately known, but Teixeira faces decades in prison if convicted. Read more from CNN.
"German newspaper Bild has reported that the NATO nation could have leaked the U.S.-led military bloc's secrets to Russia. Bild reported that defence information could have been leaked to Russia..."
Consumer software, LOL. They are blaming a "third-party caching library", but really this is (as always) failure to catch a corner case somewhere in their code. #Wyze#leak#cybersecurity#privacy
Such reports have become more frequent recently. Of course, #web#security is not just simple, but as a provider you should, in my opinion, test it officially to maintain #trust – is #spoutible professional?
«Twitter alternative spouts a massive #leak: Spoutible’s #API coughed up #password's, #2FA info, and tokens that could let attackers take over anyone’s #account.»
We recently inherited (or rather, bought for cheap from his widow) my FIL's 2009 #minivan. It now has a steering fluid #leak. Unfortunately from the rack+pinion. Fortunately(?) only when turning left. The parts are available, but we'll have to save up the coin, its #heckaspensive.
So for now Ill continue to just top up the fluid every few days. And only turn right. I've mapped out routes to/from work and its doable only turning right. Itll be like I'm a FedEx/UPS driver.
(1) Fowler's notification to Raptor was weeks after I sent RAPTOR multiple notifications that they had not responded to appropriately. And I verified: Fowler was notifying them about the same blob I had been notifying them about. So we know that blob was first exposed no later than November 3 when a researcher notified me about it. Did Raptor tell school districts when the blob was first unsecured?
(2) I have sent an inquiry to Raptor asking why they claim only Fowler and their staff had accessed files, as the first (November) researcher had accessed files in November and I had accessed them in December to verify and to check to see if Raptor locked it down after I notified them. I have now asked Raptor if they really have access logs.
Amazingly, I have gotten no response so far. Again.
(3) I also reached out to Ann Arbor Public Schools to ask what they did in response to the security alert I sent them on December 3 that they never responded to.... and to ask if Raptor told Angell Elementary that there was a file with every student's picture and information -- including parental phone numbers and emergency phone numbers that was leaking and downloaded.
So far, I haven't heard back from AAPS or Angell Elementary School either.