Notices by she hacked you (ekis@mastodon.social)

I think I was able to make the video not export as 48khz like my old ones were ;_;

@whatevs @jens very, it feels so arbitrary for me

I found a better more modern version that is produced with their pictures. Its more useful since you can scan the information more easily.

I found this record which is funny in a way, but also really shady and fucked up

https://prd.cdn.sos.ca.gov/Lobbying_Directory.pdf

Do an y lawyers follow me? I have a legal question about weather or not I can post a really bad security fuck-up on the CA SOS servers. It doesn't explicitly say how to do anything but my worry is that anyone with knowledge in this domain could leverage it to probably take over the server, its hard to say how well you could pivot but I suspect all the way to admin quite easily

The problem is its probably one of the important subdomains of CA servers, the SOS, where the election data is

@whatevs I was thinking the north too, but currently broke so probably will end up somewhere in the South until I get a contract or something

Found this detail too:

https://www.sos.ca.gov/administration/news-releases-and-advisories/2018-news-releases-and-advisories/secretary-state-alex-padilla-certifies-los-angeles-countys-new-vote-tally-system-making-it-californias-first-certified-open-sour

Basically in 2018 (I was not in the US), Los Angeles implemented the first certified open-source vote tallying machine in the country

It was something that absolutely needed to happen, but I'm still surprised it did happen

I found a cool page while trying to learn more about California

https://cal-access.sos.ca.gov/Lobbying/Lobbyists/

The website not only looks like it is from the 90's, it actually is up to date. But this data would need to be crossed against other data like previous industry positions or government positions to learn what they are up to

@ccjkt If I could afford it I honestly would, but I really can't right now

@whatevs @jens I'm already a citizen, it just needs to be recognized

@jens Unless you know a guy

@dalias Don't get captured

If you have one of these routers, you need to stop using it or hack it and put some new firmware on it

"According to D-Link, all hardware revisions of its DSR-150, DSR-150N, DSR-250, DSR-250N, DSR-500N, and DSR-1000N router models are affected by this security defect and no patch will be released for them."

@Lazarou Hey, hey, we are in NATO together

We have a treaty alright, a treaty

@sasyecat Insurance isn't even covering it for many people, at least its what I have been hearing from people who usually know about these things

@ronaldtootall With AfD control trending upwards, jokes like this seem a bit off-topic; otherwise it really feels like Germany is again using US politics to avoid having to deal with internal issues

I mean, to be fair, Germany did let the US blow up billions of dollars worth of infrastructure in a terrorist attack, tank EU+UK economy, cause biggest release of methane in human history

And yet Germany can't say no, seems all they are capable of is wearing a t-shirt that says "I'm with stupid"

CVE-2024-11395
Type Confusion in V8 in Google Chrome prior to 131.0.6778.85 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

If you are security cautious might want to avoid using Chrome till this is fixed, if I understood it correctly. Feel free to correct me, I will be trying to build a PoC... in my lab

I just like saying '..in my lab'

@sindarina Yes, if anything you should be doing what I do, which is take screenshots of stupid posts on mastodon and repost them on X

b/c I find it mildly amusing

@Fuchskind I never gave you the right to use my trademarked catch phrase (but you can)

@arrrg They say that while saying vote for the lesser of the two evils as harm reduction; which implies you that being patriotic is evil (and it is, unless you are like first generation immigrant)

Also its funny to see people preparing themselves for having a president they don't like; welcome to our world, we never liked the president

Soo, was exploring epa.gov as I do, and..

Found so many bugs(+exploits), had to stop looking. And I stumbled on the first one, was not looking

Perhaps, a good communicator, and ideally a person who understands federal bureaucracies could potentially help me

Need to contact relevant EPA staff to a submit a report

Not necessarily for a bounty, but at least report bugs + get response

Example, found:

*.epa.gov/...&User=ANONYMOUS&Password=anonymous...

Less bad than others b/c I can mention it