#WhatsApp for #Windows lets Python, PHP scripts execute with no warning
Granted, Python needs to be installed on the system prior.
Meta says they will not bother to fix this, despite maintaining a built-in list of potentially dangerous file types (ex: .exe)
I got my partner - who is non-technical - a Windows laptop for Christmas in 2023. A fancy one with Windows 11, TPM blah blah. Clean install.
It has Defender, Smart App Control enabled etc so I wasn’t concerned about the security.
Anyhoo, just looked at 7 months later and Defender is disabled, a ‘free’ AV called RAV is registered which appears to be a fake Chinese AV, Smart App Control is disabled, her traffic is routed to a Chinese VPN, her browser is Opera GX (a Chinese owned one).
Gajim 1.9.3 has been released 🎉
This release fixes an issue with the MS Store installer and brings some improvements. Thank you for all your contributions!
gajim.org/post/2024-07-29-gaji…
Gajim 1.9.3 fixes an issue with the MS Store installer and brings some improvements. Thank you for all your contributions!cal0pteryx (https://gajim.org/)
Nicoco reshared this.
"3.1.1 Web pages
We crawl publicly available information using our web crawler, Applebot, and respect the rights of web publishers to opt out […] using standard robots.txt”
"3.1.3 Code
Code data is obtained from license-filtered[1] […] repositories on GitHub. The bulk of the code data covers 14 common programming languages, including: Swift, Python, C, Objective-C, C++, JavaScript, Java, and Go.
[1] MIT, Apache, BSD, CC0, CC-BY, Unlicensed, ISC, and Artistic Licenses.”
mastodon.social/@applemlresear…
🤖 Apple Intelligence Foundation Language Models "We present foundation language models developed to power Apple Intelligence features, including a ∼3 billion parameter model designed to run efficiently on devices and a large server-based language mo…Mastodon
The number of CNAs over time (#CVE Numbering Authorities). At 385 right now. Over 20,000 CVEs published in the first half of 2024.
From the "CVE Program and CNA Quarterly Report"
#trurl 0.14 is here. github.com/curl/trurl/releases…
Works best with libcurl 8.9.0 (and later)
What's Changed remove a suprious trailing newline from a warning by @bagder in #309 trurl.1: document the exit codes by @bagder in #308 add "strict:" as prefix to a get component casecompare: a st...GitHub
Thunderbird stagnated for years, but now it feels like a phoenix.Bertel King (How-To Geek)
«Damit die Attacke gelingt, muss allerdings Python auf dem Zielgerät installiert sein. Daher sind in erster Linie Softwareentwickler und Poweruser anfällig für diese Sicherheitslücke.»
— oder Schüler, die an die Materie "Programmierung" herangeführt werden. Potentiell mögliche Opfer also
#Whatsapp-Sicherheitslücke erlaubt Skript-Ausführung | heise online heise.de/news/Whatsapp-Sicherh… #Bug #MetaPlatforms #Python 
Eine Sicherheitslücke in WhatsApp für Windows erlaubt das Versenden von Programm-Anhängen, die beim Öffnen direkt ohne Vorwarnung starten.Ulrich Schmitz (heise online)
Hello Jamers 🙂,
For those who missed it or didn’t have the time to click on the Dev update #10 link, no worries! We've got the highlights for you!
If you're curious and want to dive deeper, here's the link: jami.net/dev-update-10/
#Jami #opensource #P2P #App #PrivacyMatters
Our team focused on bug fixes, UI enhancements, unit tests implementations.jami (Jami)
If you could speak to the future, what would you want to ask?
Some matters might just be idle curiosity, but others are life and death. If you only got one question, what would you most desperately want to find out?
Well, good news: the future has just gotten in touch.
My first fiction piece for the rebooted OnlySky!
These everyday online security tips are simple, fast, easy, and free.Chris Hoffman (PCWorld)
Browse faster on Brave Browser. Get a lightning fast, safe and private web browser with AI, Adblock, and VPN.Accessible Android
Purism makes premium phones, laptops, mini PCs and servers running free software on PureOS. Purism products respect people's privacy and freedom while protecting their security.Purism SPC
AppleVis is shutting down. The site has been a crucial resource for blind and visually-impaired Apple users since iOS accessibility was new, though it’s alway covered all Apple platforms. It&…Six Colors
President Biden Announces Bold Plan to Reform the Supreme Court and Ensure No President Is Above the Law.
1. Constitutional amendment - No Immunity for Crimes a Former President Committed in Office
2. Term Limits for Supreme Court Justices of 18 years, with new appointments every 2 years
3. Binding Code of Conduct for the Supreme Court
This will require Congress to pass appropriate bills.
whitehouse.gov/briefing-room/s…
Opinion piece behind paywall at washingtonpost.com/opinions/20…
1/n
From his first day in office—and every day since then—President Biden has taken action to strengthen American democracy and protect the rule of law. InThe White House
Sources: HPE is expected to secure unconditional EU approval for its $14B acquisition of Juniper Networks; the EC is scheduled to decide on the deal by Aug. 1 (Foo Yun Chee/Reuters)
reuters.com/markets/deals/hewl…
techmeme.com/240729/p5#a240729…
By Foo Yun Chee / Reuters. View the full context on Techmeme.Techmeme
A US court rules that US border agents must get a warrant before searching the electronic devices of Americans and international travelers crossing the border (Zack Whittaker/TechCrunch)
techcrunch.com/2024/07/29/us-b…
techmeme.com/240729/p8#a240729…
By Zack Whittaker / TechCrunch. View the full context on Techmeme.Techmeme
During the Berlin XMPP sprint, some XMPP developers worked on message formatting. Previously, formatting was done using simple markup (e.g. *bold*), which sometimes leads to unintended formatting and is limited in functionality. We now decided to transmit formatting information outside of the normal text, with optional fallback to markup for legacy clients. We worked on improving the specification and on support in three different clients, including @dino.
reshared this
New, by me: A federal district court in New York ruled that U.S. border agents must obtain a warrant before searching the electronic devices of Americans and international travelers crossing the U.S. border.
The judge warned that had they ruled in the government's favor, this ruling could have be used to target political opponents, who "would only need to travel once through an international airport for the government to gain unfettered access" to their devices.
#Anthrax - Antisocial (Official Video) - YouTube
youtube.com/watch?v=Hx_m7Y9nGt…
Amri star !!!!
Anthrax preforming Antisocial - State Of Euphoria 1988SUBSCRIBE to Anthrax: http://bit.ly/subs-Antrx-ytNow Featured in the film IT. ROCKWAR!!! VISIT US ATWe...YouTube
Here’s our summary of updates, events and activities in the LibreOffice project in the last four weeks – click the links to learn more… On the 11th, we announced LibreOffice 24.2.5, the fifth minor update to the latest major release.Mike Saunders (The Document Foundation)
LibreOffice reshared this.
The second day of DebConf24 has ended, we start again tomorrow, Tuesday 30, August at 10:00 KST (01:00 UTC). The schedule for the day will be https://debconf24.debconf.micronews.debian.org
Hello, Mastodon. I have news for you today.
reactormag.com/tor-publishing-…
Exciting news from the author of Old Man's War, The Kaiju Preservation Society, Starter Villain, and many more!Reactor
De-Googling your life is easy – here’s how! 🤩
Say no to Google’s surveillance and privacy-invading tactics by going Google free. 🙅♀️
👉 tuta.com/blog/how-to-leave-goo…
#Degoogle #DeGoogling #StopGoogle #Gmail #Betterapps #Privacy #surveillance
Start DeGoogling today and stop Big G from exploiting your data! In this in-depth guide learn how to quit Google apps for good, and start using Tuta’s privacy expert’s recommended apps instead.Tuta
Vitamin D trip
"You want to know what this is all about? Eat up."
#unix_surrealism #cirno #technomage #glenda #9front #plan9 #comic
This, @EUCommission , would be a fantastic opportunity to ditch Microsoft altogether and embrace some European-maintained open source solution instead for your 40K employees. The EU government depending on non-EU infrastructure is not good for strategic autonomy – and that's on top on digital surveillance by American tech corps being against our data protection laws.
edps.europa.eu/press-publicati…
Following its investigation, the EDPS has found that the European Commission (Commission) has infringed several key data protection rules when using Microsoft 365. In its decision, the EDPS imposes corrective measures on the Commission.European Data Protection Supervisor
Casey Reeves
in reply to Avoid the Hack! • • •And the price of stupidity that will lead to disaster is once again handed off to meta!
It's not a matter of IF this gets exploited but WHEN it'll get exploited.
Avoid the Hack!
in reply to Casey Reeves • • •@xogium apparently this has been reported before.
You would think they’d just add these to the list they already use, it’s low hanging fruit. But seems like it’s not worth the effort because it’ll “only” affect a handful of users.
Tamas G
in reply to Avoid the Hack! • • •