BJ Mendelson
Telling people to use WhatsApp over Signal, or in conjunction with Signal, is stupid.
PLEASE do not use ANYTHING owned by Meta for resistance work.
I promise you, whatever excuse or reason you're thinking of does NOT matter. You are not safe using Meta products. Period.
heise online
Europäische Antwort auf Mythos: Mistral und BNP kooperieren bei Bankensicherheit
Das französische KI-Start-up Mistral hat angeblich ein eigenes KI-Modell für Cybersicherheit entwickelt und testet es gemeinsam mit der Großbank BNP Paribas.
HistoPol (#HP) 🏴 🇺🇸 🏴
#GeoPol #Security #CryptoCurrencies
For *all* countries, #Crypto is a threat to #NationalSecurity.
For most countries, #FossilFuels like #Oil 🛢️ and #Gas constitute a threat to national security *as well as* the global economy!
Cc @timkmak
e.g. #Hamas:
https://www.congress.gov/crs_external_products/IF/PDF/IF12537/IF12537.1.pdf
knoppix
Mozilla’s Project Nova redesign for Firefox adds rounded tabs, customizable layouts and a reorganized Settings page with easier access to privacy and AI controls. 🦊
Firefox 151 also adds Web Serial API support, PDF merging and clearer management for optional local AI models that are not installed by default. 🔒
🔗 https://www.theverge.com/tech/935631/firefox-project-nova-redesign
#TechNews #Firefox #Mozilla #Nova #Privacy #AI #OpenSource #WebSerial #Browser #Browsers #Linux #FOSS #Security #Customization #Web #Tech #PDF
CryptGoat
🔑 Heads up, #Bitwarden has seen some quiet and curious website and company changes: https://www.fastcompany.com/91542655/bitwarden-scrubs-always-free-and-inclusion-values-from-its-website-as-longtime-execs-step-down
Let's keep an eye on these developments. 👀
#Vaultwarden #Passwords #Password #PasswordManager #FOSS #Security
Aral Balkan
RE: https://techhub.social/@Techmeme/116606089296164399
Remember this whenever you hear claims that your data is secure on some system or other that you do not own and control.
Like all that additional data governments want to gather via the slippery slope of “age verification” in the EU.
The only data that is actually secure on a third party is data you haven’t shared with the third party.
Hence: data minimisation.
Had I mentioned GDMR yet today? Because I feel I might have. But hey, here it is again:
The PHP Foundation
Announcing the Ecosystem Security Team at The PHP Foundation ✨
We have a new role at The PHP Foundation, thanks to a grant from Alpha-Omega at the @linuxfoundation and filled by the amazing @edorian! This initiative is designed to improve security across the entire PHP ecosystem and to help maintainers in our community. We are incredibly excited to dig into this work! Learn more about this effort and how you can participate on our blog. 🔒 💪 #php #security
https://thephp.foundation/blog/2026/05/18/announcing-ecosystem-security-team/
Liam @ GamingOnLinux 🐧🎮
Fragnesia and ssh-keysign-pwn are the latest Linux security problems https://www.gamingonlinux.com/2026/05/fragnesia-and-ssh-keysign-pwn-are-the-latest-linux-security-problems/
Yogthos
France’s Digital ID System was hacked by a 15 year old, exposing sensitive data of 19 million citizens.
https://therecord.media/france-investigates-teen-over-national-id-agency-hack
knoppix
Researchers found Microsoft Edge loads every saved password into plaintext memory at launch, increasing exposure after session compromise 🔐
Unlike other Chromium browsers, Edge keeps credentials readable in RAM, raising scraping risks on shared and admin-access systems 🛡️
🔗 https://proton.me/business/blog/microsoft-edge-passwords-exposed
#TechNews #Browser #MicrosoftEdge #Microsoft #Edge #Cybersecurity #PasswordManager #Privacy #FOSS #OpenSource #Security #Encryption #Windows #Passwords #DataProtection #Infosec
Susan Ville
📌 #baghdad – The president of the International Committee of the Red Cross (ICRC) Mirjana Spoljaric warned during a visit to #iraq that renewed #military escalation in the #MiddleEast / #westasia risks undermining years of hard-won progress, with devastating consequences for #security and #economy
🔹 Spoljaric visited Karkh Central Prison, where the ICRC helps detainees, including third-country nationals, to re-establish contact with their families
Liam @ GamingOnLinux 🐧🎮
Popular emulator Cemu was recently compromised with malware in Linux downloads https://www.gamingonlinux.com/2026/05/popular-emulator-cemu-was-recently-compromised-with-malware-in-linux-downloads/
Seth Larson
I'm running a “ #Security for #OpenSource Maintainers” space at #PyConUS 2026 again this year. Bring challenges, feedback, and your experiences with the security tooling and “landscape” to share and learn from others.
Date will be announced closer to the event, hope to see you there!
Lorenzo Ancora :verified:
The Copy Fail vulnerability recently discovered in Linux allows for unauthorized admin access on your computer.
Debian/Ubuntu users can fix with a single root shell command:
`# echo "install algif_aead /bin/false" > /etc/modprobe.d/disable-algif.conf; rmmod algif_aead || true`
...and then reboot!
Fedora user?
Even simpler: run `sudo dnf upgrade --refresh`, reboot, you're safe now!👍😉
#opensource #foss #linux #security #copyfail #exploit #hacking #debian #ubuntu #fedora #sysadmin
knoppix
Meta removed E2EE from Instagram DMs today, May 8, ending private encrypted chats and enabling broader message scanning for abuse detection 📩🔓
The change follows global pressure tied to CSAM enforcement, raising transparency and user-control concerns around private communication 🕵️♂️⚠️
#TechNews #Instagram #Facebook #Meta #E2EE #Privacy #Encryption #Messaging #CyberSecurity #WhatsApp #ChatControl #Surveillance #FOSS #Security #SocialMedia #DataPrivacy
Greg
Two more copy.fail style exploits have been dropped. I hope everybody enjoys patching and rebooting.
Dirty frag: https://github.com/V4bel/dirtyfrag
Copy fail 2: https://github.com/0xdeadbeefnetwork/Copy_Fail2-Electric_Boogaloo
Liam @ GamingOnLinux 🐧🎮
Linux security flaws Dirty Frag and Copy Fail are a good reminder to stay up to date https://www.gamingonlinux.com/2026/05/linux-security-flaws-dirty-frag-and-copy-fail-are-a-good-reminder-to-stay-up-to-date/
nixCraft 🐧
Dirty Frag: Universal Linux LPE https://www.openwall.com/lists/oss-security/2026/05/07/8
This is a report on "Dirty Frag", a universal LPE that allows obtaining root privileges on all major distributions. This vulnerability has a similar impact to the previous Copy Fail.
Nonilex
Sen. Chuck Grassley (R-IA), chair of the #Senate #Judiciary Cmte, laid out a funding package for #security upgrades related to the “East Wing Modernization Project,” the #Trump admin’s name for its planned 90k-square-foot project to rebuild the #EastWing that Trump illegally demolished last year.
#law #waste #fraud #scammer #ballroom
Nonilex
The proposed legislative text says the money would be used for both aboveground & underground #security features that the #Trump admin has refused to fully detail. The text explicitly says the money could not be used for “non-security elements” of the project, a reference to Trump’s planned #ballroom.
GNU social JP is a social network, courtesy of GNU social JP管理人. It runs on GNU social, version 2.0.2-dev, available under the GNU Affero General Public License.
All GNU social JP content and data are available under the Creative Commons Attribution 3.0 license.