CISA urges software devs to weed out SQL injection vulnerabilities

CISA and the FBI urged executives of technology manufacturing companies to prompt formal reviews of their organizations' software and implement mitigations to eliminate SQL injection (SQLi) security vulnerabilities before shipping. [...] | Continue reading


@bleepingcomputer.com | 3 days ago

Google's new AI search results promotes sites pushing malware, scams

Google's new AI-powered 'Search Generative Experience' algorithms recommend scam sites that redirect visitors to unwanted Chrome extensions, fake iPhone giveaways, browser spam subscriptions, and tech support scams. [...] | Continue reading


@bleepingcomputer.com | 3 days ago

Australian Bureau of Meteorology’s IT overhaul

Peter Hannam in The Guardian Australia: The CEO and director of the Bureau of Meteorology, Andrew Johnson, revealed to staff the cost of its delayed IT overhaul – one of Australia’s most expensive ever – despite repeatedly telling senators such details must be kept under wraps fo … | Continue reading


@rubenerd.com | 6 days ago

NetBSD 10 Release Candidate 6

A sixth Release Candidate of my other favourite OS was made available on the 12th of March. From the NetBSD blog: RC6 fixes a few issues with the new named/bind imported for RC5 plus several minor issues. If you want to test 10.0 RC6 please check the installation notes for your a … | Continue reading


@rubenerd.com | 6 days ago

Windows 11, Tesla, and Ubuntu Linux hacked at Pwn2Own Vancouver

On the first day of Pwn2Own Vancouver 2024, contestants demoed Windows 11, Tesla, and Ubuntu Linux zero-day vulnerabilities and exploit chains to win $732,500 and a Tesla Model 3 car. [...] | Continue reading


@bleepingcomputer.com | 7 days ago

GitHub’s new AI-powered tool auto-fixes vulnerabilities in your code

GitHub introduced a new AI-powered feature capable of speeding up vulnerability fixes while coding. This feature is in public beta and automatically enabled on all private repositories for GitHub Advanced Security (GHAS) customers [...] | Continue reading


@bleepingcomputer.com | 8 days ago

aerc email client

I started looking at aerc, a new Terminal mail client, in around 2019. At that time it was promising, but ultimately not ready yet for me, so I put it away and went back to neomutt which I have been using (in one form or another) all century. These days, I use neomutt as an IMAP … | Continue reading


@jmtd.net | 8 days ago

Some wood for Firefox

There’s something so delightful/silly/pointless about using a wood theme in a browser. The material is making a comeback in so much interior design and architecutre, why not lend a bit of texture to your browser too? The one I’m currently using is HORIZONTAL wood by bloochiz12, w … | Continue reading


@rubenerd.com | 10 days ago

The PA in Buzzy Explores the Airport

Buzzy Explores the Airport is still such a fun game after all these years. You arrive at this virtual airport where you can wander around, see the luggage being sorted, board an aeroplane, and click everything in sight. It even runs on ScummVM on modern hardware. The game is full … | Continue reading


@rubenerd.com | 13 days ago

Why I Am Not Using “Notes”

Posts&Notes&Threads&Chats A few people have asked recently why I don’t post any “Notes” on Substack from This Week in Sound, my newsletter. “Notes” are a feature of Substack, the tool I currently use to publish This Week in Sound. I moved my newsletter over from TinyLetter after … | Continue reading


@disquiet.com | 16 days ago

Tuta Mail adds new quantum-resistant encryption to protect email

Tuta Mail has announced TutaCrypt, a new post-quantum encryption protocol to secure communications from powerful and anticipated decryption attacks. [...] | Continue reading


@bleepingcomputer.com | 16 days ago

Copy/paste plain text should be the default

I love (abusing) the term Litmus Test as a metaphor for evaluating reactions in other contexts. Though technically my favourite indicator in chemistry was Bromothymol Blue, to the point where I did one of my papers on it, and even nearly named this blog for it in 2004! I still re … | Continue reading


@rubenerd.com | 18 days ago

Scratch Pad: Reuse, Unicode, VLC

I do this manually at the end of each week: collating (and sometimes lightly editing) most of the recent little comments I’ve made on social media, which I think of as my public scratch pad. Some end up on Disquiet.com earlier, sometimes in expanded form. These days I mostly hang … | Continue reading


@disquiet.com | 18 days ago

Weekend Reading List #216 – Week of Mar 4th

Welcome to the weekend reading list, edition #216. If you want to see your article here, reach out to me on Twitter/X or the blog.Você tem sugestão de artigos em Português? Gostaria de ver seu artigo divulgado aqui no blog? Envie sua sugestão pelo Twitter ou pelo blog. NYJavaSIG … | Continue reading


@graciano.dev | 20 days ago

The Zed editor

There’s a new editor on the block with a familiar name: Zed is a high-performance, multiplayer code editor from the creators of Atom and Tree-sitter. It’s also open source. Zed efficiently leverages every CPU core and your GPU to start instantly, load files in a blink, and respon … | Continue reading


@rubenerd.com | 20 days ago

Running NetBSD 10 Release Candidate 5!

The word exciting is overused thesedays, thanks to unimaginative marketing executives and chatbots. But NetBSD 10.0 is exciting. I remember talking with some of the devs about it at AsiaBSDCon in 2019. I spun up some arm64 and amd64 QEMU builds on my work machine while sitting at … | Continue reading


@rubenerd.com | 21 days ago

Linux continues growing market share, reaches 4% of desktops

Report: Linux was on 6.34 percent of computers last month if you count ChromeOS. | Continue reading


@arstechnica.com | 23 days ago

Facebook and Instagram outage logs out users, passwords not working

Facebook and Instagram users around the world are having trouble getting on these sites right now. [...] | Continue reading


@bleepingcomputer.com | 23 days ago

Assuming a component is the whole system

A few years ago I’d come back from a trip with Clara to Hong Kong and Ōsaka, like a gentleman. It was my first trip to both Hong Kong and Japan, and still consider it one of the most special trips we’ve ever taken. But I digress. I tapped my Opal card at the Sydney airport upon o … | Continue reading


@rubenerd.com | 24 days ago

“Where the people are”

Fortunately, on that day, I allowed a strong, simple idea to penetrate my big, beautiful wall of assumptions. The post “Where the people are” appeared first on Zeldman on Web and Interaction Design. | Continue reading


@zeldman.com | 26 days ago

Weekend Reading List #215 – Week of Feb 26th

Welcome to the weekend reading list, edition #215. If you want to see your article here, reach out to me on Twitter/X or the blog.Você tem sugestão de artigos em Português? Gostaria de ver seu artigo divulgado aqui no blog? Envie sua sugestão pelo Twitter ou pelo blog. NYJavaSIG … | Continue reading


@graciano.dev | 27 days ago

Citrix, Sophos software impacted by 2024 leap year bugs

Citrix and Sophos products have been impacted by leap year flaws, leading to unexpected problems in their products. [...] | Continue reading


@bleepingcomputer.com | 28 days ago

Self-pay gas station pumps break across NZ as software can’t handle Leap Day

"We'll add it to our Outlook reminders..." | Continue reading


@arstechnica.com | 28 days ago

Y2K Jr.?

There seemed to have been some sort of low-key Y2K-ish thing going on with WordPress and with Buttondown last night, the 28th of February. The post for this week’s Disquiet Junto project went live on Disquiet.com prematurely, after which I tried to set up the email newsletter to … | Continue reading


@disquiet.com | 28 days ago

When a professional got a passphrase wrong

I’ve said here before that I think it’s important to share our mistakes, irrespective of how trivial they are, to remind everyone we’re all human. It’s also a way to vent at… myself, especially when I need a good talking to for doing something silly. Today I spent an embarrassing … | Continue reading


@rubenerd.com | 28 days ago

Cybersecurity software wins a 2024 Federal Laboratory Consortium Excellence in Technology Transfer Award

The Federal Laboratory Consortium selected Lincoln Laboratory’s Timely Address Space Randomization (TASR) cybersecurity technology for a 2024 Excellence in Technology Transfer Award. | Continue reading


@news.mit.edu | 1 month ago

Mowing down demons: DOOM comes to Husqvarna smart lawnmowers

If you ever wanted to play DOOM on a lawnmower, you will soon have your chance with a new software update coming to Husqvarna's robotic line of lawnmowers this spring. [...] | Continue reading


@bleepingcomputer.com | 1 month ago

“We offer another place for knowledge”

Jospin Hassan shared skills he learned through MIT open learning resources with his community in the Dzaleka Refugee Camp in Malawi. His organization, ADAI Circle, now offers education programs and mentorship. | Continue reading


@news.mit.edu | 1 month ago

Apple adds PQ3 quantum-resistant encryption to iMessage

Apple is adding to the iMessage instant messaging service a new post-quantum cryptographic protocol named PQ3, designed to defend encryption from quantum attacks. [...] | Continue reading


@bleepingcomputer.com | 1 month ago

Google Pay app shutting down in US, users have till June to move funds

Google is retiring the standalone Pay app in the United States. Users have until June 4 to transfer the balance to bank accounts. [...] | Continue reading


@bleepingcomputer.com | 1 month ago

Weekend Reading List #214 – Week of Feb 19th

Welcome to the weekend reading list, edition #214. If you want to see your article here, reach out to me on Twitter/X or the blog.Você tem sugestão de artigos em Português? Gostaria de ver seu artigo divulgado aqui no blog? Envie sua sugestão pelo Twitter ou pelo blog. NYJavaSIG … | Continue reading


@graciano.dev | 1 month ago

Nvidia’s new app doesn’t require you to log in to update your GPU driver

Removing little-used features also improved responsiveness and shrank the size. | Continue reading


@arstechnica.com | 1 month ago

Bitwarden’s new auto-fill option adds phishing resistance

The Bitwarden open-source password management service has introduced a new inline auto-fill menu that addresses the risk of user credentials being stolen through malicious form fields. [...] | Continue reading


@bleepingcomputer.com | 1 month ago

In search of a digital town square

Ever since an infantile fascist billionaire (hereafter, the IFB) decided to turn Twitter over to the racially hostile anti-science set, folks who previously used that network daily to discuss and amplify topics they cared about have either given up on the very premise of a shared … | Continue reading


@zeldman.com | 1 month ago

Signal rolls out usernames that let you hide your phone number

End-to-end encrypted messaging app Signal finally allows users to pick custom usernames to connect with others while hiding their phone numbers and protecting their privacy. [...] | Continue reading


@bleepingcomputer.com | 1 month ago

GM’s Electric Vehicle Transition Needed “More Time In Planning & Risk Assessment”

General Motors (GM) faltered in 3 important areas in 2023: manufacturing electric vehicles (EVs), making sense of its self-driving division ... [continued] The post GM’s Electric Vehicle Transition Needed “More Time In Planning & Risk Assessment” appeared first on CleanTechnica. | Continue reading


@cleantechnica.com | 1 month ago

Read later

My latest post generated a few emails from people suggesting alternatives to my semi-manual Instapaper solution. The back-and-forth convinced me to describe how I use read later services. I knew about the suggested solutions already, so why didn’t I choose either of the … | Continue reading


@minutestomidnight.co.uk | 1 month ago

Daily dose of AI

AI in the wild, posted on a cat subreddit. The community is torn if these are cats, slow-mo, or fakes. I don’t know how I feel about it. Leave the cat videos alone? LOL? Didn’t imagine Skynet like that. | Continue reading


@veselin.blog | 1 month ago

Band Practice

Spent all day at a 6 hour band practice today. First of the year. The post Band Practice appeared first on thejaymo. | Continue reading


@thejaymo.net | 1 month ago

8-Bit Software Fun: Starting with a Commodore

In today’s installment of 8-bit Software Fun, we’re starting from absolute first principles on a Commodore machine. Most online guides and videos also assume a modicum of familiarity, but what if you were someone like me who grew up in the 16-bit era and are starting from scratch … | Continue reading


@rubenerd.com | 1 month ago

Put the code in the book

Rich Loveland dropped some hard facts on his blog last December: An extreme antipattern for a programming book is “download the author’s idiosyncratic library code from some random URL and figure out how to load it on your system”. No, all code used in the book should be printed … | Continue reading


@rubenerd.com | 1 month ago

The Advent of Code 2023

It is time to be honest, and say "I will not finish it". Come on, it is the middle of February. | Continue reading


@barhamon.com | 1 month ago

New Google Chrome feature blocks attacks against home networks

Google is testing a new feature to prevent malicious public websites from pivoting through a user's browser to attack devices and services on internal, private networks. [...] | Continue reading


@bleepingcomputer.com | 1 month ago

Scratch Pad: Questions, URLs, Milestone

I do this manually at the end of each week: collating (and sometimes lightly editing) most of the recent little comments I’ve made on social media, which I think of as my public scratch pad. Some end up on Disquiet.com earlier, sometimes in expanded form. These days I mostly hang … | Continue reading


@disquiet.com | 1 month ago

Weekend Reading List #213 – Week of Feb 12th

Welcome to the weekend reading list, edition #213. If you want to see your article here, reach out to me on Twitter/X or the blog.Você tem sugestão de artigos em Português? Gostaria de ver seu artigo divulgado aqui no blog? Envie sua sugestão pelo Twitter ou pelo blog. NYJavaSIG … | Continue reading


@graciano.dev | 1 month ago

Zoom patches critical privilege elevation flaw in Windows apps

The Zoom desktop and VDI clients and the Meeting SDK for Windows are vulnerable to an improper input validation flaw that could allow an unauthenticated attacker to conduct privilege escalation on the target system over the network. [...] | Continue reading


@bleepingcomputer.com | 1 month ago

DuckDuckGo browser gets end-to-end encrypted sync feature

The DuckDuckGo browser has unveiled a new end-to-end encrypted Sync & Backup feature that lets users privately and securely synchronize their bookmarks, passwords, and Email Protection settings across multiple devices. [...] | Continue reading


@bleepingcomputer.com | 1 month ago

Instapaper on my Kobo

Once again, whenever I favour convenience over substance, my experience does not improve. Erasing my Pocket account a few weeks ago was an easy choice. Ever since Mozilla morphed it into yet another algorithmic-based attention seeker, I couldn’t stand the product. Went … | Continue reading


@minutestomidnight.co.uk | 1 month ago