Ethan Black @golemwire@librem.one

We already had something that turned text prompts into art, it was called paying an artist.

So now "Skype Today" is spamming me w/ news? It's like everyone has their own AI version of Clippy. I guess it's expected from Microsoft, but each time I think Skype can't get worse..

The wave-like nature of Asperitas clouds becomes apparent when viewed in time-lapse.

Video credit: Alex Schueth

Full 4K version: https://www.youtube.com/watch?v=Jz7BgxrVmiQ
Further reading: https://en.wikipedia.org/wiki/Asperitas_(cloud)

Ukrainian hackers claim to have to have stolen passenger information on 664 million flights going back 16 years from a Russian travel booking system. The hackers aren't leaking the whole thing yet, and say they'll share access with verified journalists (I've asked and am still waiting).

https://news.yahoo.com/hackers-break-russian-database-data-033358337.html?guce_referrer=aHR0cHM6Ly93d3cuZ29vZ2xlLmNvbS8&guce_referrer_sig=AQAAADEoP-QEKybC2IMRBT0S1i5d5OWKip7pkw7UmoH7uGhfXj1d5AFK5hZrz3Ul2V_zZGfkNw_W849wV-lnVnHohjtmKuz6vlbOrdn6l9fo46PJfqZ0Et0k6WX-XP20KAv3RCZD1hxudSInWCpB6FDjRAqXnSyyhs6Sn7mgwCLIttoA&guccounter=2

So far, coverage of this claim is almost nil, except for this story over at Yahoo News, which is actually sourced from Ukrainska Pravda. h/t to the Risky Business show this week, which also pointed to the Yahoo story.

But if it turns out to be legit, this could be a very significant boon to investigations into cybercrime networks, money laundering, and even espionage and influence operations.

Updated @allanday's Disks mockups to a split view layout. Always surprising how much of a difference this small change makes visually :)

The 2022 Annual Report is now available for download! 2022 was an interesting year for #Mastodon to say the least.

https://blog.joinmastodon.org/2023/10/annual-report-2022/

Windows 7 - classic theme

This might have slipped under the radar these past few days, but a 9.8 RCE in Exim (on many, many mail servers) that does not require authentication is bad bad bad.

https://www.zerodayinitiative.com/advisories/ZDI-23-1469/

Today I learned that the #WebP exploit found recently is the worst of the worst. Like log4j bad, if not worse.

Patch your stuff, everyone, it's in everything.

#infosec

𝖔𝖗 𝖊𝖑𝖘𝖊...

LinkedIn's AI version of Clippy is getting annoying. You have to admire the casual familiarity of their user interface. Just "Enable." No "WTF is this?" button or anything useful.

Sort of reminds me of the reason behind this toot.

https://infosec.exchange/@briankrebs/109880177018417627

Go ahead. Click okay. Share every number and email anyone has ever entrusted to you. It's NBD. Everyone is doing it.