April 2024

so i guess i hacked samsung?!

it's not quite xz but at least my grandma knows what samsung is

#internet #security

March 2024

AI hallucinates software packages and devs download them – even if potentially poisoned with malware

Simply look out for libraries imagined by ML and make them real, with actual malicious code. No wait, don't do that

#generative ai #programming #security

It's Not Safe to Click Links on X

Unless you're cool if it redirects you somewhere malicious.

#social media #security

January 2024

Massive leak exposes 26 billion records in mother of all breaches

It includes data from Twitter, Dropbox, and LinkedIn

#internet #security

December 2023

Polish Hackers Repaired Trains the Manufacturer Artificially Bricked. Now The Train Company Is Threatening Them

After breaking trains simply because an independent repair shop had worked on them, NEWAG is now demanding that trains fixed by hackers be removed from service.

#trains #security #law

Dieselgate, but for trains – some heavyweight hardware hacking

#trains #security

October 2023

Kyoto Statement on End-To-End Encryption

#computers #security #law

August 2023

Hackers manage to unlock Tesla software-locked features worth up to $15,000

#cars #security

July 2023

Google vs. the Open Web

#web #security

Rust-based malware used to hack both Windows and Linux servers

#programming #security

ldd(1) and untrusted binaries

#computers #security

Firefox 115 can silently remotely disable my extension on any site

#web #security

February 2023

Millions of DNA tests leaked after hackers breach company's 'forgotten' database

#computers #security

September 2022

Le correcteur orthographique de Chrome et Edge fait fuiter vos mots de passe

#big tech #security

Over 280,000 WordPress sites may have been hijacked by zero-day hiding in popular plugin

#web #security

August 2022

Ransomware Actor Abuses Genshin Impact Anti-Cheat Driver to Kill Antivirus

In plain English: more security always ends up being less security, as people with bad intentions inevitably abuse complicated, obscure systems.

#games #software #security

June 2022

“Magic links” can end up in Bing search results — rendering them useless.

#internet #security

April 2022

SELinux is unmanageable; just turn it off if it gets in your way

An object lesson in why policing must be transparent, accountable and flexible. Wait, what were we talking about?

#software #security

Oracle already wins 'crypto bug of the year' with Java digital signature bypass

Whole new meaning for zero consequences

#computers #security

December 2021

Funding isn't the problem with open source

#programming #security #business

No Easter Eggs In Curl

#programming #security

November 2021

The Internet is Held Together With Spit & Baling Wire

#internet #security

August 2019

Moscow's blockchain voting system cracked a month before election

#tech #politics #security

March 2019

Endlessh: an SSH Tarpit

#internet #security

April 2013

IT Security in a Nutshell

#computers #security #humor