November 24, 2022

                November 24, 2022

            November 24, 2022

            Chad Loder @chadloder
BREAKING: I have just received evidence of a massive Twitter data breach affecting millions of Twitter accounts in EU and US.

I have contacted a sample of the affected accounts and they confirmed that the breached data is accurate. 

This breach occurred no earlier than 2021. 1/11:19 PM ∙ Nov 23, 2022
17,389Likes5,477Retweets
Paul Moore @Paul_Reviews
You have some serious questions to answer @EufyOfficial 

Here is irrefutable proof that my supposedly "private", "stored locally", "transmitted only to you" doorbell is streaming to the cloud - without cloud storage enabled.
#privacy

youtube.comEufy leaking your “private” images/faces & names... to the cloud.I purchased a Eufy Doorbell Dual last week - believing it to be a private, locally-stored device. Eufy go to great lengths to convince you it’s safe and acc...2:19 PM ∙ Nov 23, 2022
95Likes39Retweets
-
Subscribe now

Justin Katz @JustinSKatz
The US Navy is launching today a three-week event in the Middle East focused on employing artificial intelligence and 15 different unmanned systems, many of which the service will operate in the region for the first time, via @BreakingDefense 

breakingdefense.com3 weeks, 15 unmanned systems: Navy launches ‘Digital Horizon’ exercise in Middle East - Breaking DefenseThe event will feature 15 unmanned systems, 10 of which will be operating with the Navy in US 5th Fleet for the first time.3:06 PM ∙ Nov 23, 2022
12Likes6Retweets
-
@mikko @mikko
Video of my keynote at IRISSCON Dublin 2022: youtube.comIf It’s Smart, It’s Vulnerable by Mikko Hyppönen2:44 PM ∙ Nov 23, 2022
25Likes9Retweets
-
@gordon@mastodon.social @gordonbrander
Every system has limits. The web’s limit is you’ll never own the stuff you put on the web. It is owned and controlled by the person running the server. 

This limit stems from the same-origin security model. 
@gordon@mastodon.social @gordonbrander
same-origin security policy turned me into the joker12:20 PM ∙ Nov 23, 2022
59Likes12Retweets
@gordon@mastodon.social @gordonbrander
Same-origin policy says security (and therefore privacy, identity, data ownership) are rooted in the server, and belong to the server. This assumption goes down to the roots of the web. 
@gordon@mastodon.social @gordonbrander
@pfrazee Yeah we’ve conceptualized network security as castle-wall, all the way down to same-origin security model. Given that, it’s inevitable that the web trend toward feudalism, and privacy, safety, and security all push us toward centralization. Time for a radical reimagining!12:24 PM ∙ Nov 23, 2022
17Likes1Retweet
-
Jason Schultz @Lawgeek
Amazing victory by @JustFuturesLaw @MijenteComite @norcalresists and their communities against Clearview AI over its unlawful commercial appropriation of images. Proud of our amicus brief in support, led by Mel Dincer and me on behalf of 24 Science, Law, and Technology scholars. 
Just Futures Law @JustFuturesLaw
BREAKING UDPATE🗣️: We just found out a judge denied Clearview AI’s motion to quash our community lawsuit  against them! The judge sided with us on all fronts and once again we've defeated this global tech company's efforts to dismiss our lawsuit. 🙌1:27 PM ∙ Nov 23, 2022
28Likes13Retweets
-
羅刹 @rakkhasa_
1:09 PM ∙ Nov 22, 2022
33,638Likes6,538Retweets
-
Dino A. Dai Zovi @dinodaizovi
As a former Sandian (@SandiaLabs), it makes me happy to see neat open-source projects like this on GitHub:

github.comGitHub - sandialabs/wiretap: Wiretap is a transparent, VPN-like proxy server that tunnels traffic via WireGuard and requires no special pri…Wiretap is a transparent, VPN-like proxy server that tunnels traffic via WireGuard and requires no special privileges to run. - GitHub - sandialabs/wiretap: Wiretap is a transparent, VPN-like proxy...7:45 PM ∙ Nov 23, 2022
42Likes5Retweets
-
Brad Spengler @spendergrsec
> 2 months later, this now has a CVE: CVE-2022-3910 
Brad Spengler @spendergrsec
What could go wrong when you fput (io_put_file is a simple wrapper around it) a file which you are still using? https://t.co/GZSZNKQHHp8:48 PM ∙ Nov 23, 2022
12Likes2Retweets
-
Arron Crascall @arron_crascall
Safety Tips Don’t Work! 
5:43 PM ∙ Nov 22, 2022
653,887Likes105,406Retweets
-
Matt Hughson @matthughson
Ever wondered how devs measure performance on real a NES, which has no dev kit?

An common way is the change the "color emphasis" while an operation is executing, during screen rendering.

This effectively draws colored bars representing how long something takes. #nesdev 
7:50 PM ∙ Nov 23, 2022
742Likes147Retweets
-
Amos Posner @AmosPosner
Still obsessed with Chuck Jones' coyote/roadrunner rules. Awesome to so clearly, concisely define your characters. 
9:08 PM ∙ Mar 4, 2015
7,267Likes6,403Retweets
-
matt @mattxiv
local news interviewed the colorado shooter’s dad and this is what he said 
8:01 PM ∙ Nov 23, 2022
114,447Likes12,041Retweets
-
Europol @Europol🚨 Action against criminal website that offered ‘spoofing’ services to fraudsters leads to 142 arrests.

💶 The website is believed to have caused an estimated worldwide loss in excess of EUR 115 million.

Details ⤵️
ow.ly/Y2mV50LMeaY 
6:30 AM ∙ Nov 24, 2022
68Likes34Retweets
-
Sjors Provoost @sjors@sprovoost.nl @provoost
The outcome was not surprising sadly, but it was nevertheless an interesting (two hour) hearing. It's the first time the public prosecutor explained their reasoning.

But ultimately this wasn't about the merits of the case, only about whether to extend his detention. 
CoinDesk @CoinDeskBREAKING: Tornado Cash developer Alexey Pertsev must stay in jail a further three months, a Dutch court has ruled.

@jackschickler reports
https://t.co/WU3jWeRx212:34 PM ∙ Nov 22, 2022
259Likes84Retweets
-
killian @ficklefamiliar
move over hemingway 
8:31 AM ∙ Nov 22, 2022
16,242Likes2,463Retweets
-
FatMan @FatManTerra
🧵 Today, I'm sharing my long-standing theory behind a US government covert operation designed to partially crack Bitcoin privacy and deanonymize transactions. I believe that popular Bitcoin mixer ChipMixer is actually a United States government honeypot. Here's why.7:33 PM ∙ Nov 23, 2022
2,935Likes576Retweets

Don't miss what's next. Subscribe to the grugq's newsletter: