Med-Mastodon

0 posts0 participants0 posts today

Manuel BisseyChrome 136 will patch a 23-year-old <a href="https://cyberplace.social/tags/flaw" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#flaw</a> that allowed sites to spy on browsing history by reading link color values. This <a href="https://cyberplace.social/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#privacy</a> attack, known as browser history sniffing, will be addressed in the latest beta release☝️👩‍💻<a href="https://go.theregister.com/feed/www.theregister.com/2025/04/07/chrome_135_history_sniffing/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://go.theregister.com/feed/www.theregister.com/2025/04/07/chrome_135_history_sniffing/</a>

Manuel BisseyCISA added a high-severity vulnerability (CVE-2025-30066) linked to the GitHub Action tj-actions/changed-files to its KEV catalog. The <a href="https://cyberplace.social/tags/flaw" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#flaw</a> allows remote attackers to access sensitive data via actions logs☝️👩‍💻 <a href="https://cyberplace.social/tags/vulnerability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#vulnerability</a><a href="https://thehackernews.com/2025/03/cisa-warns-of-active-exploitation-in.html" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://thehackernews.com/2025/03/cisa-warns-of-active-exploitation-in.html</a>

Tantek ÇelikI just participated in the first W3C Authentic Web Mini Workshop<a href="https://tantek.com/2025/071/t1/w3c-authentic-web-workshop-flaws#t5az1_note-1" rel="nofollow noopener noreferrer" target="_blank">¹</a> hosted by the Credible Web Community Group<a href="https://tantek.com/2025/071/t1/w3c-authentic-web-workshop-flaws#t5az1_note-2" rel="nofollow noopener noreferrer" target="_blank">²</a> (of which I’m a longtime member) and up front I noted that our very discussion itself needed to be careful about its own credibility, extra critical of any technologies discussed or assertions made, and initially identified two flaws to avoid on a meta level, having seen them occur many times in technical or standards discussions: 1. Politician’s Syllogism — "Something must be done about this problem. Here is something, let's do it!" 2. Solutions Looking For Problems — "I am interested in how tech X can solve problem Y" After some back and forth and arguments in the Zoom chat, I observed participants questioning speakers of arguments rather than the arguments themselves, so I had to identify a third fallacy to avoid: 3. Ad Hominem — while obvious examples are name-calling (which is usually against codes of conduct), less obvious examples (witnessed in the meeting) include questioning a speaker’s education (or lack thereof) like what they have or have not read, or would benefit from reading. I am blogging these here both as a reminder (should you choose to participate in such discussions), and as a resource to cite in future discussions. We need to all develop expertise in recognizing these logical and methodological flaws & fallacies, and call them out when we see them, especially when used against others. We need to promptly prune these flawed methods of discussion, so we can focus on actual productive, relevant, and yes, credible discussions. <a class="" href="https://indieweb.social/tags/W3C" rel="nofollow noopener noreferrer" target="_blank">#W3C</a> <a class="" href="https://indieweb.social/tags/credweb" rel="nofollow noopener noreferrer" target="_blank">#credweb</a> <a class="" href="https://indieweb.social/tags/credibleWeb" rel="nofollow noopener noreferrer" target="_blank">#credibleWeb</a> <a class="" href="https://indieweb.social/tags/authenticWeb" rel="nofollow noopener noreferrer" target="_blank">#authenticWeb</a> <a class="" href="https://indieweb.social/tags/flaw" rel="nofollow noopener noreferrer" target="_blank">#flaw</a> <a class="" href="https://indieweb.social/tags/fallacy" rel="nofollow noopener noreferrer" target="_blank">#fallacy</a> <a class="" href="https://indieweb.social/tags/fallacies" rel="nofollow noopener noreferrer" target="_blank">#fallacies</a> <a class="" href="https://indieweb.social/tags/logicalFallacy" rel="nofollow noopener noreferrer" target="_blank">#logicalFallacy</a> <a class="" href="https://indieweb.social/tags/logicalFallacies" rel="nofollow noopener noreferrer" target="_blank">#logicalFallacies</a> Glossary Ad Hominem   attacking an attribute of the person making an argument rather than the argument itself   <a class="" href="https://en.wikipedia.org/wiki/Ad_hominem" rel="nofollow noopener noreferrer" target="_blank">https://en.wikipedia.org/wiki/Ad_hominem</a> Politician's syllogism   <a class="" href="https://en.wikipedia.org/wiki/Politician%27s_syllogism" rel="nofollow noopener noreferrer" target="_blank">https://en.wikipedia.org/wiki/Politician%27s_syllogism</a> Solutions Looking For Problems (related: <a class="" href="https://indieweb.social/tags/solutionism" rel="nofollow noopener noreferrer" target="_blank">#solutionism</a>, <a class="" href="https://indieweb.social/tags/solutioneering" rel="nofollow noopener noreferrer" target="_blank">#solutioneering</a>)   Promoting a technology that either has not identified a real problem for it to solve, or actively pitching a specific technology to any problem that seems related. Wikipedia has no page on this but has two related pages:   * <a class="" href="https://en.wikipedia.org/wiki/Law_of_the_instrument" rel="nofollow noopener noreferrer" target="_blank">https://en.wikipedia.org/wiki/Law_of_the_instrument</a>   * <a class="" href="https://en.wikipedia.org/wiki/Technological_fix" rel="nofollow noopener noreferrer" target="_blank">https://en.wikipedia.org/wiki/Technological_fix</a>   Wikipedia does have an essay on this specific to Wikipedia:   * <a class="" href="https://en.wikipedia.org/wiki/Wikipedia:Solutions_looking_for_a_problem" rel="nofollow noopener noreferrer" target="_blank">https://en.wikipedia.org/wiki/Wikipedia:Solutions_looking_for_a_problem</a>   Stack Exchange has a thread on "solution in search of a problem":   * <a class="" href="https://english.stackexchange.com/questions/250320/a-word-that-means-a-solution-in-search-of-a-problem" rel="nofollow noopener noreferrer" target="_blank">https://english.stackexchange.com/questions/250320/a-word-that-means-a-solution-in-search-of-a-problem</a>   Forbes has an illustrative anecdote:     * <a class="" href="https://www.forbes.com/sites/stephanieburns/2019/05/28/solution-looking-for-a-problem/" rel="nofollow noopener noreferrer" target="_blank">https://www.forbes.com/sites/stephanieburns/2019/05/28/solution-looking-for-a-problem/</a> References <a href="https://tantek.com/2025/071/t1/w3c-authentic-web-workshop-flaws#t5az1_ref-1" rel="nofollow noopener noreferrer" target="_blank">¹</a> <a class="" href="https://www.w3.org/events/workshops/2025/authentic-web-workshop/" rel="nofollow noopener noreferrer" target="_blank">https://www.w3.org/events/workshops/2025/authentic-web-workshop/</a> <a href="https://tantek.com/2025/071/t1/w3c-authentic-web-workshop-flaws#t5az1_ref-2" rel="nofollow noopener noreferrer" target="_blank">²</a> <a class="" href="https://credweb.org/" rel="nofollow noopener noreferrer" target="_blank">https://credweb.org/</a> and <a class="" href="https://www.w3.org/community/credibility/" rel="nofollow noopener noreferrer" target="_blank">https://www.w3.org/community/credibility/</a> Previously in 2019 I participated in <a class="" href="https://indieweb.social/tags/MisinfoCon:" rel="nofollow noopener noreferrer" target="_blank">#MisinfoCon:</a> * <a class="" href="https://tantek.com/2019/296/t1/london-misinfocon-discuss-spectrum-recency" rel="nofollow noopener noreferrer" target="_blank">https://tantek.com/2019/296/t1/london-misinfocon-discuss-spectrum-recency</a> * <a class="" href="https://tantek.com/2019/296/t2/misinfocon-roundtable-spectrums-misinformation" rel="nofollow noopener noreferrer" target="_blank">https://tantek.com/2019/296/t2/misinfocon-roundtable-spectrums-misinformation</a>

Steve Dustcircle 🌹<a href="https://masto.ai/tags/ImposterSyndrome" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ImposterSyndrome</a> Isn’t a Personal <a href="https://masto.ai/tags/Flaw" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Flaw</a>. It’s a <a href="https://masto.ai/tags/Systemic" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Systemic</a> Issue<a href="https://time.com/7261073/imposter-syndrome-systemic-issue-essay/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://time.com/7261073/imposter-syndrome-systemic-issue-essay/</a>

Cuddy2977Has anyone else seen <a href="https://mastodon.world/tags/AppleTV" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AppleTV</a>+ film, <a href="https://mastodon.world/tags/TheGorge" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#TheGorge</a>?The one with <a href="https://mastodon.world/tags/AnyaTaylorJoy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AnyaTaylorJoy</a> and <a href="https://mastodon.world/tags/MilesTeller" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MilesTeller</a>?<a href="https://www.youtube.com/watch?v=wgIO5W0wR1Y" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.youtube.com/watch?v=wgIO5W0wR1Y</a>I will give cast, crew and and producers, credit: it’s a very well made piece.But I think I’ve spotted the <a href="https://mastodon.world/tags/flaw" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#flaw</a>.<a href="https://mastodon.world/tags/Review" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Review</a> <a href="https://mastodon.world/tags/movie" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#movie</a> <a href="https://mastodon.world/tags/film" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#film</a> <a href="https://mastodon.world/tags/spoiler" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#spoiler</a> <a href="https://mastodon.world/tags/spoilers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#spoilers</a>

Radio AzureusThe frightening story of how certain Subaru Vehicles can/ could be hacked<a href="https://samcurry.net/hacking-subaru" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://samcurry.net/hacking-subaru</a><a href="https://mastodon.social/tags/InfoSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#InfoSec</a> <a href="https://mastodon.social/tags/Vehicle" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Vehicle</a> <a href="https://mastodon.social/tags/Subaru" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Subaru</a> <a href="https://mastodon.social/tags/hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacking</a> <a href="https://mastodon.social/tags/closedSource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#closedSource</a> <a href="https://mastodon.social/tags/serious" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#serious</a> <a href="https://mastodon.social/tags/flaw" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#flaw</a>

Comics and Jokes @ Lucentinian Works Co LtdNew entry of AI-generated <a href="https://social.lucentinian.com/search?tag=comics" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#comics</a> and <a href="https://social.lucentinian.com/search?tag=jokes" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#jokes</a> added to our <a href="https://social.lucentinian.com/search?tag=website" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#website</a>:<a href="https://social.lucentinian.com/search?tag=Flaw" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Flaw</a> in the <a href="https://social.lucentinian.com/search?tag=Field" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Field</a><a href="https://comics.lucentinian.com/2287" rel="nofollow noopener noreferrer" target="_blank">comics.lucentinian.com/2287</a> <a href="https://social.lucentinian.com/search?tag=Jokes" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Jokes</a> <a href="https://social.lucentinian.com/search?tag=AILaughs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AILaughs</a> <a href="https://social.lucentinian.com/search?tag=AIComedy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AIComedy</a> <a href="https://social.lucentinian.com/search?tag=Laughs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Laughs</a> <a href="https://social.lucentinian.com/search?tag=Comedy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Comedy</a>

Dave VolekWhat's Wrong with Democracy?A list of 12 flaws: <a href="https://tiereddemocraticgovernance.org/blog_details.php?blog_cat_id=21&id=259" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://tiereddemocraticgovernance.org/blog_details.php?blog_cat_id=21&id=259</a><a href="https://mastodon.social/tags/tiereddemocraticgovernance" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#tiereddemocraticgovernance</a> <a href="https://mastodon.social/tags/flaw" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#flaw</a>

Olly 👾LiteSpeed Cache Plugin Vulnerability poses significant Risk to WordPress Websites.The free version of the popular WordPress plugin LiteSpeed Cache has fixed a dangerous privilege elevation flaw on its latest release that could allow unauthenticated actors to gain admin rights.[CVE-2024-50550 CVSS score: 8.1]<a href="https://patchstack.com/articles/rare-case-of-privilege-escalation-patched-in-litespeed-cache-plugin/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://patchstack.com/articles/rare-case-of-privilege-escalation-patched-in-litespeed-cache-plugin/</a><a href="https://nerdculture.de/tags/wordpress" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#wordpress</a> <a href="https://nerdculture.de/tags/litespeed" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#litespeed</a> <a href="https://nerdculture.de/tags/flaw" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#flaw</a> <a href="https://nerdculture.de/tags/it" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#it</a> <a href="https://nerdculture.de/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://nerdculture.de/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#privacy</a> <a href="https://nerdculture.de/tags/engineer" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#engineer</a> <a href="https://nerdculture.de/tags/media" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#media</a> <a href="https://nerdculture.de/tags/tech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#tech</a> <a href="https://nerdculture.de/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#news</a>

securityaffairs<a href="https://infosec.exchange/tags/macOS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#macOS</a> <a href="https://infosec.exchange/tags/HM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#HM</a> Surf <a href="https://infosec.exchange/tags/flaw" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#flaw</a> in <a href="https://infosec.exchange/tags/TCC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#TCC</a> allows bypass <a href="https://infosec.exchange/tags/Safari" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Safari</a> privacy settings <a href="https://securityaffairs.com/169945/security/macos-hm-surf-flaw-tcc-bypass-safari-privacy-settings.html" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://securityaffairs.com/169945/security/macos-hm-surf-flaw-tcc-bypass-safari-privacy-settings.html</a> <a href="https://infosec.exchange/tags/securityaffairs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#securityaffairs</a> <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacking</a>

Susan Larson ♀️🏳️‍🌈🏳️‍⚧️🌈Ex - <a href="https://mastodon.online/tags/Trump" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Trump</a> <a href="https://mastodon.online/tags/WhiteHouse" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#WhiteHouse</a> <a href="https://mastodon.online/tags/Lawyer" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Lawyer</a> Says New <a href="https://mastodon.online/tags/GOP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#GOP</a> <a href="https://mastodon.online/tags/Election" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Election</a> <a href="https://mastodon.online/tags/Plot" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Plot</a> Has 1 Huge <a href="https://mastodon.online/tags/Flaw" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Flaw</a> <a href="https://mastodon.online/tags/DonaldTrump" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DonaldTrump</a> and his <a href="https://mastodon.online/tags/allies" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#allies</a> are “unlikely” to have it, <a href="https://mastodon.online/tags/TyCobb" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#TyCobb</a> said, "Evidence". “They didn’t have any last time, and they’re unlikely to have any this time,” he added.<a href="https://www.huffpost.com/entry/ty-cobb-donald-trump-challenge-election_n_66fa687ce4b06bc72dbb90d7" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.huffpost.com/entry/ty-cobb-donald-trump-challenge-election_n_66fa687ce4b06bc72dbb90d7</a>

WIST Quotations has moved!A quotation from Bible, vol. 2, New Testament:« Why do you observe the splinter in your brother’s eye and never notice the great log in your own? And how dare you say to your brother, “Let me take that splinter out of your eye,” when, look, there is a great log in your own? Hypocrite! Take the log o… »Full quote, sourcing, notes: <a href="https://wist.info/bible-nt/43173/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://wist.info/bible-nt/43173/</a><a href="https://zirk.us/tags/quote" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#quote</a> <a href="https://zirk.us/tags/quotes" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#quotes</a> <a href="https://zirk.us/tags/quotation" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#quotation</a> <a href="https://zirk.us/tags/criticism" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#criticism</a> <a href="https://zirk.us/tags/flaw" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#flaw</a> <a href="https://zirk.us/tags/judging" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#judging</a> <a href="https://zirk.us/tags/hypocrisy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hypocrisy</a> <a href="https://zirk.us/tags/judging" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#judging</a> <a href="https://zirk.us/tags/judgment" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#judgment</a> <a href="https://zirk.us/tags/perspective" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#perspective</a> <a href="https://zirk.us/tags/selfawareness" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#selfawareness</a> <a href="https://zirk.us/tags/selfrighteousness" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#selfrighteousness</a> <a href="https://zirk.us/tags/sin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sin</a>

Chuck DarwinAfter a brutal 2023, the vibes around <a href="https://c.im/tags/self" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#self</a>-<a href="https://c.im/tags/driving" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#driving</a> <a href="https://c.im/tags/cars" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cars</a> are improving. <a href="https://c.im/tags/Cruise" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cruise</a>, the industry leader whose vehicle was involved in a <a href="https://c.im/tags/horrific" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#horrific</a> San Francisco <a href="https://c.im/tags/crash" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#crash</a> last fall, has <a href="https://c.im/tags/rebooted" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#rebooted</a> under new management, while rival <a href="https://c.im/tags/Waymo" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Waymo</a> is <a href="https://c.im/tags/expanding" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#expanding</a> to serve broader swaths of the Bay Area and Los Angeles and <a href="https://c.im/tags/Tesla" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Tesla</a> is promising a new <a href="https://c.im/tags/robotaxi" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#robotaxi</a> service.Although Americans say they remain <a href="https://c.im/tags/wary" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#wary</a> of autonomous driving, boosters insist there is nothing to fear. In fact, they foresee roads full of self-driving cars that are both <a href="https://c.im/tags/safer" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#safer</a> and <a href="https://c.im/tags/cleaner" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cleaner</a> than the status quo, a tantalizing prospect in a country where transportation is the largest source of greenhouse gas emissions and residents are several times more likely to die in a crash than those living in other rich nations.Enticing though they are, such arguments conceal a <a href="https://c.im/tags/logical" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#logical</a> <a href="https://c.im/tags/flaw" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#flaw</a>. As a classic 19th-century theory known as a <a href="https://c.im/tags/Jevons" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Jevons</a> <a href="https://c.im/tags/paradox" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#paradox</a> explains, even if autonomous vehicles eventually work perfectly — an enormous “if” — they are🆘 likely to increase total <a href="https://c.im/tags/emissions" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#emissions</a> and crash <a href="https://c.im/tags/deaths" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#deaths</a>, simply because ⭐️people will use them so much. <a href="https://www.theverge.com/2024/9/2/24232386/self-driving-car-jevons-paradox-robotaxi-waymo-cruise" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.theverge.com/2024/9/2/24232386/self-driving-car-jevons-paradox-robotaxi-waymo-cruise</a>

Olly 👾GitHub patches critical Security Flaws in Enterprise Server. :github: GitHub has released fixes to address a set of three security flaws impacting its Enterprise Server product, including one critical bug that could be abused to gain site administrator privileges.[CVE-2024-7711] [CVE-2024-6337] [CVE-2024-6800]<a href="https://docs.github.com/en/enterprise-server@3.13/admin/release-notes" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://docs.github.com/en/enterprise-server@3.13/admin/release-notes</a><a href="https://nerdculture.de/tags/github" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#github</a> <a href="https://nerdculture.de/tags/ghes" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ghes</a> <a href="https://nerdculture.de/tags/it" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#it</a> <a href="https://nerdculture.de/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://nerdculture.de/tags/flaw" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#flaw</a> <a href="https://nerdculture.de/tags/admin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#admin</a> <a href="https://nerdculture.de/tags/privileges" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#privileges</a> <a href="https://nerdculture.de/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#privacy</a> <a href="https://nerdculture.de/tags/programming" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#programming</a> <a href="https://nerdculture.de/tags/engineering" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#engineering</a> <a href="https://nerdculture.de/tags/tech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#tech</a> <a href="https://nerdculture.de/tags/media" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#media</a> <a href="https://nerdculture.de/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#news</a>

Olly 👾Chinese Attackers Exploit Zero-Day Cisco Switch Flaw to Gain System Control.Details have emerged about a China-nexus threat group's exploitation of a recently disclosed, now-patched security flaw in Cisco switches as a zero-day to seize control of the appliance and evade detection.[CVE-2024-20399]<a href="https://www.sygnia.co/blog/china-threat-group-velvet-ant-cisco-zero-day/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.sygnia.co/blog/china-threat-group-velvet-ant-cisco-zero-day/</a><a href="https://nerdculture.de/tags/cisco" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cisco</a> <a href="https://nerdculture.de/tags/switch" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#switch</a> <a href="https://nerdculture.de/tags/exploit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#exploit</a> <a href="https://nerdculture.de/tags/zeroday" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#zeroday</a> <a href="https://nerdculture.de/tags/it" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#it</a> <a href="https://nerdculture.de/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://nerdculture.de/tags/flaw" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#flaw</a> <a href="https://nerdculture.de/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#privacy</a> <a href="https://nerdculture.de/tags/technology" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#technology</a> <a href="https://nerdculture.de/tags/engineering" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#engineering</a> <a href="https://nerdculture.de/tags/tech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#tech</a> <a href="https://nerdculture.de/tags/media" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#media</a> <a href="https://nerdculture.de/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#news</a>

Marcus "MajorLinux" SummersAs many losses as they have, they should have screamed about this one.Microsoft secretly updated Windows Security to fix an important issue <a href="https://www.pcworld.com/article/2425810/secret-update-for-windows-defender-fixes-important-problem.html" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.pcworld.com/article/2425810/secret-update-for-windows-defender-fixes-important-problem.html</a><a href="https://toot.majorshouse.com/tags/Microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Microsoft</a> <a href="https://toot.majorshouse.com/tags/WindowsSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#WindowsSecurity</a> <a href="https://toot.majorshouse.com/tags/Flaw" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Flaw</a> <a href="https://toot.majorshouse.com/tags/Antivirus" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Antivirus</a> <a href="https://toot.majorshouse.com/tags/Tech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Tech</a>

Olly 👾Critical D-Link DIR-859 Router Flaw to steal Passwords.The security issue was disclosed in January and is currently tracked as CVE-2024-0769 (9.8 severity score). D-Link is not expected to release a fixing patch for CVE-2024-0769, so owners of the device should switch to a supported device as soon as possible.<a href="https://www.labs.greynoise.io/grimoire/2024-06-25-dlink-again/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.labs.greynoise.io/grimoire/2024-06-25-dlink-again/</a><a href="https://nerdculture.de/tags/dlink" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dlink</a> <a href="https://nerdculture.de/tags/dir859" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dir859</a> <a href="https://nerdculture.de/tags/router" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#router</a> <a href="https://nerdculture.de/tags/eol" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#eol</a> <a href="https://nerdculture.de/tags/flaw" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#flaw</a> <a href="https://nerdculture.de/tags/issue" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#issue</a> <a href="https://nerdculture.de/tags/steal" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#steal</a> <a href="https://nerdculture.de/tags/password" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#password</a> <a href="https://nerdculture.de/tags/it" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#it</a> <a href="https://nerdculture.de/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://nerdculture.de/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#privacy</a> <a href="https://nerdculture.de/tags/tech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#tech</a> <a href="https://nerdculture.de/tags/technology" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#technology</a> <a href="https://nerdculture.de/tags/engineering" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#engineering</a> <a href="https://nerdculture.de/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#news</a>

Tinned-SoftwareI came across Headlines trying to introduce fear of <a href="https://infosec.exchange/tags/FIDO2" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FIDO2</a>. "Using MITM to bypass FIDO2 phishing-resistant protection" and "Passwordless Authentication Standard FIDO2 Flaw Let Attackers Launch MITM Attacks" seem very frightening. So I took a closer look into those articles.<a href="https://www.silverfort.com/blog/using-mitm-to-bypass-fido2/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.silverfort.com/blog/using-mitm-to-bypass-fido2/</a> <a href="https://gbhackers.com/fid02-mitm-vulnerability/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://gbhackers.com/fid02-mitm-vulnerability/</a>They seem very much identical down to the fact they use the same illustrations. My understanding is that the demonstrated "<a href="https://infosec.exchange/tags/MITM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MITM</a> <a href="https://infosec.exchange/tags/Attack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Attack</a>" is actually an attack on the session coockie. So The idea is to let the <a href="https://infosec.exchange/tags/FIDO2" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FIDO2</a> <a href="https://infosec.exchange/tags/Authentication" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Authentication</a> take place uninterrupted and when successful, intercept the Session cockie when sent from the Relaying Party/Webserver to the client.Maybe someone with a better understanding of the Standards can correct me but this attack looks to me as if it only attackls the session information which would be possible no mather what authentication would be used. In my understanding, secure session handling is a real thread but outside of the actual FIDO2 scope. What do you think? Is it FIDO2 related? Or just a generic Session Session hijacking that happens to work besides others also with FIDO2 authentications? <a href="https://infosec.exchange/tags/FIDO2" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FIDO2</a> <a href="https://infosec.exchange/tags/Attack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Attack</a> <a href="https://infosec.exchange/tags/MITM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MITM</a> <a href="https://infosec.exchange/tags/Flaw" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Flaw</a> <a href="https://infosec.exchange/tags/sessionhijacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sessionhijacking</a>

Vivian Schey 🏳️‍🌈 🇩🇪 <(FSM)<{There's a bad <a href="https://mastodon.world/tags/Design" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Design</a> <a href="https://mastodon.world/tags/Flaw" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Flaw</a> with <a href="https://mastodon.world/tags/Nutella" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Nutella</a> jaws! One can't reach in with a ladle! <a href="https://mastodon.world/tags/Ferrero" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Ferrero</a>, please <a href="https://mastodon.world/tags/Fix" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Fix</a>!

Susan Larson ♀️🏳️‍🌈🏳️‍⚧️🌈The <a href="https://mastodon.online/tags/Cruelty" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cruelty</a> is the PointActs of <a href="https://mastodon.online/tags/crueltytoanimals" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#crueltytoanimals</a> are more than a slight <a href="https://mastodon.online/tags/personality" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#personality</a> <a href="https://mastodon.online/tags/flaw" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#flaw</a>. A <a href="https://mastodon.online/tags/history" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#history</a> of <a href="https://mastodon.online/tags/animal" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#animal</a> <a href="https://mastodon.online/tags/torture" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#torture</a> and <a href="https://mastodon.online/tags/abuse" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#abuse</a> has been linked repeatedly to <a href="https://mastodon.online/tags/serialkillers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#serialkillers</a> and <a href="https://mastodon.online/tags/massshooters" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#massshooters</a>. <a href="https://mastodon.online/tags/Women" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Women</a> <a href="https://mastodon.online/tags/Transgender" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Transgender</a> <a href="https://mastodon.online/tags/LGBTQ" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#LGBTQ</a> <a href="https://mastodon.online/tags/LGBTQIA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#LGBTQIA</a> <a href="https://mastodon.online/tags/SouthDakota" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SouthDakota</a> <a href="https://mastodon.online/tags/PuppyKiller" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PuppyKiller</a> <a href="https://mastodon.online/tags/KristiNoem" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#KristiNoem</a> <a href="https://mastodon.online/tags/Conservatives" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Conservatives</a> <a href="https://mastodon.online/tags/Extremism" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Extremism</a> <a href="https://mastodon.online/tags/Fascism" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Fascism</a> <a href="https://mastodon.online/tags/RepublicanParty" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#RepublicanParty</a> <a href="https://mastodon.online/tags/AnimalCruelty" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AnimalCruelty</a> <a href="https://mastodon.online/tags/ThePartyOfHate" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ThePartyOfHate</a> <a href="https://www.counterpunch.org/2024/05/03/the-cruelty-is-the-point/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.counterpunch.org/2024/05/03/the-cruelty-is-the-point/</a>

Recent searches

Search options

Administered by:

Server stats:

#flaw