This is the beginnings of a series I've wanted to write for quite a while, which I call "A Brief History of White Insecurity." I'm going to draw some non-obvious connections, across two thousand years of history, between men's fashion, ancient Roman conquest, the fact that I personally speak English, and global climate change.
Come along for the ride: starshipgender.com/2024/08/whi…
reshared this
SHIFTsound BNO - Für kurze Zeit reduziert!🎧
Was gibt es Schöneres als mit dem richtigen Sound auf den Ohren durch den Wald zu baden, in der Hängematte zu entspannen oder den Feierabend bei einem spannenden Hörbuch zu genießen?🙂
shop.shiftphones.com/shiftsoun…
#shift #shiftphone #shifthappens #headphones #shiftsoundbno
Purism makes premium phones, laptops, mini PCs and servers running free software on PureOS. Purism products respect people's privacy and freedom while protecting their security.Purism SPC
So earlier this year I wrote about this cybercrime rapper named Punchmade Dev, who wears outlandishly gaudy and expensive stuff around his neck and croons in videos in front of stacks of cash at ATMs, talking about how to do wire fraud, cashout PayPal and Cash App accounts, etc. The story showed how this Punchmade character seems to be a 22-year-old guy in Lexington, Ky named Devon Turner who operates multiple web stores that sell apparently compromised payment cards and identity information (alongside check printing software and tutorials on....wait for it...OPSEC!).
On a hunch that maybe Punchmade's lack of opsec might have caught up with him, I checked PACER and found instead that he recently sued his bank, alleging they discriminated against him for his race over his denied request to transfer $75,000 out of his account. Incredibly, Mr. Turner signed his pro se complaint filed in a Kentucky court with the same phone number and email address that are tied to the Punchmade domain names that are selling products like "ID+ High Balance CC, ID front/back, SSN, and 7$k-10k CC, for $80"
Here's the story:
In January, KrebsOnSecurity wrote about rapper Punchmade Dev, whose music videos sing the praises of a cybercrime lifestyle. That story showed how Punchmade's social media profiles promoted Punchmade-themed online stores selling bank account and payment card data. Now the Kentucky native is suing
his financial institution after it blocked a $75,000 wire transfer and froze his account, citing an active law enforcement investigation.
krebsonsecurity.com/2024/08/cy…
![A screenshot of punchmade[.]cc, a shop selling hacked visa and mastercard accounts, PayPal accounts with balances, and identity information that includes driver's license photos, account numbers, and guaranteed 4-figure balance accounts.](https://fedi.ml/photo/preview/640/579207 "A screenshot of punchmade[.]cc, a shop selling hacked visa and mastercard accounts, PayPal accounts with balances, and identity information that includes driver's license photos, account numbers, and guaranteed 4-figure balance accounts.")
Your regular reminder to never build a LLM-based chat interface with access to privileged information that can render Markdown images targetting external domains, if you don't want a prompt injection attack to be able to instantly exfiltrate that private data
Today's example is Google AI Studio: simonwillison.net/2024/Aug/7/g…
It joins ChatGPT, Google Bard, writer.com, Amazon Q, Google NotebookLM and GitHub Copilot Chat in my collection of products that have made this mistake: simonwillison.net/tags/markdow…
Johann Rehberger reports yet another example of the classic [Markdown exfiltration vulnerability](https://simonwillison.simonwillison.net
Pitch Sometimes I only want to mute subthreads and not the entire conversation from the root, because a person started a branch of conversation that is uninteresting or possibly even frustrating to...GitHub
Honestly it’s like every fucking day. Every day there’s someone new declaring that they have such hateful brain worms that it has completely warped their reality sfba.social/@peterme/112915495…
Welcome to GNOME GitLabGitLab
reshared this
Me after conducting a technical audit.
Scene from the Big Lewbowski where the Dude explains that new shit has come to light, manYouTube
Top `<table>` tips:
• Don’t span cells:
adrianroselli.com/2023/02/avoi…
• Don’t redefine column headers: adrianroselli.com/2022/02/colu…
• With one exception, you don’t need a `scope` attribute (the exception is sometimes the top corner):
tpgi.com/short-note-on-scoping…
• `column` is not a valid `scope` value:
html.spec.whatwg.org/multipage…
• Be wary of articles that don’t cite sources or testing when they make assertions about `<table>`.
#HTML #table #accessibility #a11y
In 2 recent articles I have illustrated why the scope attribute is not needed on data tables with one row or column of th elements, or data tables with 1...Steve Faulkner (TPGi)
Stolen data was then put up for sale on the dark webAnthony Spadafora (Tom's Guide)
Question for you high-contrast theme users.
I recently started an initiative in @gnome Design to standardize drag & drop overlays in entire windows and predominant views. I would really appreciate it if you could criticize / give feedback on the high-contrast variants of the overlay:
gitlab.gnome.org/Teams/Design/…
Edit: moved to gitlab.gnome.org/Teams/Design/…
(Boost appreciated)
#Accessibility #a11y #HighContrast #Contrast #GNOME
Note: Moved to os-mockups#186 (comment 2189414) ...GitLab
reshared this
🔴 Tuta actualiza su página web para completar su cambio de marca
🔒 "Activa la privacidad" es el nuevo eslogan del servicio de email privado que compite con Proton Mail
Tuta guarantees your data stays private for free & without ads. Quantum-resistant encryption makes Tuta the best secure technology solution to protect your privacy.Tuta
Purism makes premium phones, laptops, mini PCs and servers running free software on PureOS. Purism products respect people's privacy and freedom while protecting their security.Purism SPC
reshared this
One of Europe’s largest drug store chains Rossmann stops buying Teslas because Elon Musk supports the climate change denialism candidate Donald Trump.
Thank you to @agturcz for this find.
![Press release from Rossmann:
ROSSMANN no longer buys Tesla
06.08.2024 | Company, Sustainability
ROSSMANN will not purchase any more Tesla vehicles for its fleet from now on. This decision is based on the incompatibility between the statements of Tesla CEO Elon Musk and the values that Tesla represents with its products.
In 2018, Elon Musk wrote on X (formerly Twitter): "Tesla exists to help reduce risk of catastrophic climate change, which affects all species on Earth. [...]".
"Elon Musk makes no secret of supporting Donald Trump. Trump has repeatedly described climate change as a fraud - this attitude is in stark contrast to Tesla's mission to contribute to environmental protection by producing electric cars," says Raoul Roßmann, spokesman for the management.
For this reason, the company ROSSMANN will no longer purchase Tesla vehicles for its fleet in the future. ROSSMANN will continue to use the current stock of Tesla vehicles for reasons of sustainability and resource conservation. However, the company will rely on alternative manufacturers and models for future vehicle orders.](https://fedi.ml/photo/preview/640/579171 "Press release from Rossmann:
ROSSMANN no longer buys Tesla
06.08.2024 | Company, Sustainability
ROSSMANN will not purchase any more Tesla vehicles for its fleet from now on. This decision is based on the incompatibility between the statements of Tesla CEO Elon Musk and the values that Tesla represents with its products.
In 2018, Elon Musk wrote on X (formerly Twitter): \"Tesla exists to help reduce risk of catastrophic climate change, which affects all species on Earth. [...]\".
\"Elon Musk makes no secret of supporting Donald Trump. Trump has repeatedly described climate change as a fraud - this attitude is in stark contrast to Tesla's mission to contribute to environmental protection by producing electric cars,\" says Raoul Roßmann, spokesman for the management.
For this reason, the company ROSSMANN will no longer purchase Tesla vehicles for its fleet in the future. ROSSMANN will continue to use the current stock of Tesla vehicles for reasons of sustainability and resource conservation. However, the company will rely on alternative manufacturers and models for future vehicle orders.")
Disney+ is finally about to begin rolling out its password sharing crackdown “in earnest,” according to Disney CEO Bob Iger....Chance Miller (9to5Mac)
@markuswerle @jakob @pluralistic This is how I interpret the situation: #GitHub offers open source programs free access to GitHub actions today exactly as it did in the past. This access is limited in CPU performance and parallelism. It always was. All free CI services do this.
The #curl project was bumped to a fancier account to give us more actions powers: more CPU and more parallelism.
That is them doing us a favor and them supporting us, not the other way around.
With macOS Sequoia this fall, using apps that need access to screen recording permissions will become a little bit more...Chance Miller (9to5Mac)
Od dnes ma volajte Nostradamus.
dennikn.sk/4134685/kovacik-ide…
Na osude Dušana Kováčika záleží Robertovi Ficovi. Už na odpočúvanej poľovníckej chate v roku 2021 hovoril, ako by všetkým pomohlo, keby bývalý špeciálny prokurátor svoj korupčný prípad uhral.Mária Benedikovičová (Denník N)
See discussion here: #14432GitHub
We’re calling on security researchers to help enhance the resilience of open digital infrastructure. Participate in the bug & fix bounties of seven critical software projects.
With five new software projects on the @yeswehack platform, for a total of seven, there’s a lot of code to look at. Find and report potential vulnerabilities responsibly, in exchange for a bug bounty. sovereigntechfund.de/news/call…
reshared this
my Ryzen 7750X:
is_computer_on(); // 1
a cache corrupting i7 14700k:
is_computer_on(); // 153
It's fair to say we had a fantastic time in Colorado (and Berlin!) for GUADEC 2024.
Off the back of the event, Martín Abente Lahaye has published a conference round-up, including some highlights from his time in Denver.
Thanks to the GNOME Foundation, volunteers, staff, and everyone else who made the event unforgettable.
Read here: codethink.co.uk/articles/2024/…
Between 19-24 July, GUADEC, the annual conference for GNOME desktop users and developers, took place at the Tivoli Students Union in Denver, Colorado. A number of Codethings made the trip across the Atlantic to participate and present at the event.www.codethink.co.uk
Heydon reminds that the `<abbr>` element is mostly useless:
heydonworks.com/article/the-ab…
I linked it from my post (where I show SR support, which is a bit odd) that says essentially same.
Smarter Shopping, Better Living! Aliexpress.comaliexpress.
WordStar 7 for DOS gets a free re-release from one of its biggest author fans
"Compared to it, Microsoft Word is pure madness"—Anne Rice.
arstechnica.com/gadgets/2024/0…
When Nate Silver joined a company in which extremist Peter Thiel and cryptocurrency funds are key investors, the rest of us should have stopped listening to anything he says about politics.
But he's still widely quoted, and only rarely (afaik) with this context.
I know, I know, "security." This shows utter contempt for the user.
I was just asked to authorize an app that I've used SINCE THE 1990s so it would continue working for a week. And next week I guess it'll ask again?
You have to let the user say, somewhere, "never ask me again--always allow."
mastodon.online/@9to5Mac/11291…
Attached: 1 image macOS Sequoia adds weekly permission prompt for screenshot and screen recording apps https://9to5mac.com/2024/08/06/macos-sequoia-screen-recording-privacy-prompt/?utm_source=dlvr.it&utm_medium=mastodonMastodon
Why "utter contempt?" It's saying that, even if I know for a fact that I want to give a particular app permission, macOS will treat me a like a child and keep asking me. Because Apple doesn't believe I am qualified to grant permanent permission to any app.
Another sign that the people in charge of security and privacy features at Apple are out of control and that nobody who stands up for user experience is being heard.
Mám jmenovce, sportovního komentátora, v jisté generaci stále známého.
Často se mě ptají na příbuznost, ale hlavně když se někde objeví a především když někde chudák udělá chybu, chodí mi maily.
Díky tomu vím, že nechci být slavný. Nechci aby mi každý připomínal každou prkotinu, která se mi nepovede. Třeba když zrovna špatně vyskloňuju číslovku..
Our big yearly conference is coming up, and it will take place from October 10 – 12 in Luxembourg! We’ll have talks, workshops, fun social events and much more – and we’d love to see you there.Mike Saunders (The Document Foundation)
LibreOffice reshared this.
turns out #Windows is slow to fail connect attempts to non-listening ports entirely on purpose because it waits and resends the SYN several times, contrary to how other TCP stacks behave.
V Botanickej záhrade Univerzity Komenského rozkvitol raritný kvet rastliny s názvom Amorphophallus titanum.TASR (SME.sk)
We've just launched our new website! 🎉
And it's more than just a fresh look, it's an invitation to join our revolution for privacy. 🔒 💪
Check it out ➡️ tuta.com/
The first person to decipher the following ciphertext wins a free year of Revolutionary! 👇
U2FsdGVkX19q3cPOrgKFWjGaSF1d+wgKgg5Pn/TfVRE=
Tuta guarantees your data stays private for free & without ads. Quantum-resistant encryption makes Tuta the best secure technology solution to protect your privacy.Tuta
).
IzzyOnDroid ✅
in reply to SHIFTPHONES • • •Ha! Auf den habe ich gewartet. Und: Bestellt issa, Danke!
🎶 Aller guten SHIFTas, sind 3 🎶
(frei nach Reinhard Mey)
* SHIFT6mq: √ Im Einsatz und happy damit
* SHOFTphone8: am Funding beteiligt, und freu mich drauf!
* SHIFTsound BNO: soeben bestellt
Rick
in reply to IzzyOnDroid ✅ • • •@IzzyOnDroid
@shiftphones
Wenn das Shiftphone den Anforderungen von GrapheneOS genügen würde, müssten einige keine Pixel kaufen.
ZB ich.
SHIFTPHONES
in reply to IzzyOnDroid ✅ • • •IzzyOnDroid ✅
in reply to SHIFTPHONES • • •Jupp 😁 Nicht dass ich damit gerechnet hätte, aber so hat sich die Kombi richtig gelohnt: kamen ja noch meine 15% vom Funding-Gutschein runter, sodass dann gerade mal 155 € übrig blieben (die natürlich bereits überwiesen sind).
Sobald ich jetzt ein wenig Luft finde, geht's aber erstmal an die 8er Tests. Da kann das BNO bei seiner Ankunft ja gleich nochmal mitspielen – nächste Winner-Kombi
IzzyOnDroid ✅
in reply to IzzyOnDroid ✅ • • •Was denn, schon da? Wow! Ich hoffe, das Paket hat Euch unterwegs keine Knöllchen wegen zu schnellen Fliegens gesammelt 👮 🙈
Schaut so aus als gäbe es dieses WE fleißig was auf die Ohren dann, Danke! 🤩
IzzyOnDroid ✅
in reply to IzzyOnDroid ✅ • • •Wow das ist ja DER 🔨 Was für ein Sound! Und macht mich glatt zum Schamanen: Das Problem, die neben mir stehende Person Dank des ANC nicht hören zu können, heile ich per Handauflegen¹ 🤣
(und ja, bin erst jetzt zum Testen gekommen, da ich keinen Bluetooth-Stick für den PC hatte).
¹ für die fragenden Blicke: Hand auf die rechte Hörmuschel schaltet von ANC auf Ambient und dreht die Lautstärke runter; Hand wieder weg macht das alles wieder rückgängig.
SHIFTPHONES
in reply to IzzyOnDroid ✅ • • •IzzyOnDroid ✅
in reply to SHIFTPHONES • • •Der Sound ist einfach Klasse. Was ich noch nicht herausfinden konnte ist, ob es auch eine Art "Ruhezustand/Stromsparmodus" kennt, wie etwa die von mir geschäftlich genutzten Jabra Evolve2. Wenn "nix los ist" gehen die auf "minimal" und "fahren wieder hoch", sobald wieder Sound anliegt. Erhöht quasi nochmal die Laufzeit pro Akkuladung.
Und bitte liebe Leutz, keinesfalls im Straßenverkehr oder so nutzen. Speziell nicht mit ANC, da sind die echt "stille Nacht" bzgl. Außen-Ton!
the kangaroo
in reply to IzzyOnDroid ✅ • • •wie ist denn Dein aktueller Eindruck zu den Kopfhörern, nach der inzwischen vergangenen Zeit? Ist der immer noch so begeisternd?
Mich würde noch interessieren:
- wie gut sitzen die am Ohr. Ich hatte bis vor kurzem einen Sony MX3 der saß recht gut trotz der Hörgeräte hinter dem Ohr.
- taugen die auch um mal zu telefonieren, da waren meine alten im Mikrofonton recht schwach.
Danke.
@shiftphones@mastodon.social
IzzyOnDroid ✅
in reply to the kangaroo • • •@the_halmaturus Vom Klang bin ich nach wie vor begeistert. Telefonieren habe ich damit noch nicht probiert, aber vergleichbar (Jitsi/Matrix Call) – und hat gut geklappt (habe die Gegenseite nicht explizit gefragt, aber hat sich nicht beschwert, war ein langer Call).
Zwei kleine Probs: kann nicht als USB-Headset genutzt werden (wusste ich aber vorher) – und nach ~24h muss ich meinen BT-Dongle abziehen, damit das SHIFTSound wieder connected (vermute Dongle-Problem hier).
@shiftphones
(1/2)
IzzyOnDroid ✅
in reply to IzzyOnDroid ✅ • • •@the_halmaturus (2/2)
Dongle ist ein günstiges, muss mal ein anderes probieren. Und USB geht nur zum Aufladen – das fand ich beim Jabra gut, dass man da bei "Akku leer" einfach USB anstecken konnte und weiter gehts mit Sound UND Laden.
Als Brillenträger habe ich noch damit zu kämpfen, dass die Brillenbügel mit den Hörmuscheln "kollidieren", das drückt dann schon ein wenig. Dafür ist aber ANC Klasse: wirklich Ruhe, merkt man deutlich.