Spiegel's crawler's Avatar

Spiegel's crawler

@crawler.baldanders.info

I'm bot account for crawling World Wide Web. Managed by @baldanders.info (Spiegel)

60
Followers 1
Following 11,116
Posts 29.06.2023
Joined
Posts Following

Latest posts by Spiegel's crawler @crawler.baldanders.info

Friday Squid Blogging: Increased Squid Population in the Falklands <p>Some <a href="https://www.undercurrentnews.com/2026/02/26/encouraging-scientific-survey-boosts-hopes-for-south-atlantic-squid-fishery/">good news</a>: squid stocks seem to be recovering in the waters off the Falkland Islands.</p> <p>As usual, you can also use this squid post to talk about the security stories in the news that I haven&#8217;t covered.</p> <p><a href="https://www.schneier.com/blog/archives/2024/06/new-blog-moderation-policy.html">Blog moderation policy.</a></p>

> Friday Squid Blogging: Increased Squid Population in the Falklands
https://www.schneier.com/blog/archives/2026/03/friday-squid-blogging-increased-squid-population-in-the-falklands.html

13.03.2026 21:40 👍 0 🔁 0 💬 0 📌 0
Preview
Instagram quietly drops end-to-end encrypted chats Instagram will drop end-to-end encrypted chats on May 8, 2026, reversing years of Meta’s push for stronger privacy. Here's what it means.

> Instagram quietly drops end-to-end encrypted chats
https://proton.me/blog/instagram-end-to-end-encryption

13.03.2026 21:40 👍 0 🔁 1 💬 0 📌 0
Preview
【日吉津】『TOYS SPOT PALO 日吉津店 2号店』2026年3月19日オープン予定 イオンモール日吉津内にオープン予定、 TOYS SPOT PALO 日吉津店 2号店 イオンモール日吉津...

> 【日吉津】『TOYS SPOT PALO 日吉津店 2号店』2026年3月19日オープン予定
https://unseki.co.jp/blog/open/amusement/25315

13.03.2026 15:40 👍 0 🔁 0 💬 0 📌 0
Preview
New breaches uncovered: What Proton’s Data Breach Observatory reveals in 2026 New incidents uncovered in the 2026 Data Breach Observatory show that small businesses were hit especially hard by cyberattacks.

> New breaches uncovered: What Proton’s Data Breach Observatory reveals in 2026
https://proton.me/blog/data-breach-observatory-2026

13.03.2026 15:40 👍 0 🔁 0 💬 0 📌 0
Preview
How to report a data breach in the UK: ICO requirements explained Find out what qualifies as a data breach in the UK, your legal obligations, and how to report it to the Information Commissioner’s Office.

> How to report a data breach in the UK: ICO requirements explained
https://proton.me/blog/how-to-report-data-breach-uk

13.03.2026 15:40 👍 0 🔁 0 💬 0 📌 0
Preview
Why ISO 27000 is a foundation for security and compliance Learn about ISO 27000: what they are, why they matter for security and compliance, and how to implement ISO-aligned credential controls.

> Why ISO 27000 is a foundation for security and compliance
https://proton.me/blog/iso-27000

13.03.2026 15:40 👍 0 🔁 0 💬 0 📌 1
Academia and the “AI Brain Drain” <p>In 2025, Google, Amazon, Microsoft and Meta collectively spent US$380 billion on building artificial-intelligence tools. That number is expected to surge still higher this year, to $650 billion, to fund the building of physical infrastructure, such as data centers (see <a href="https://go.nature.com/3lzf79q">go.nature.com/3lzf79q</a>). Moreover, these firms are spending lavishly on one particular segment: top technical talent.</p> <p>Meta reportedly offered a single AI researcher, who had cofounded a start-up firm focused on training AI agents to use computers, a compensation package of $250 million over four years (see ...</p>

> Academia and the “AI Brain Drain”
https://www.schneier.com/blog/archives/2026/03/academia-and-the-ai-brain-drain.html

13.03.2026 15:40 👍 0 🔁 1 💬 0 📌 0
Preview
Release 4.4.19_0 · nyaosorg/nyagos

> Release 4.4.19_0 · nyaosorg/nyagos
https://github.com/nyaosorg/nyagos/releases/tag/4.4.19_0

13.03.2026 09:40 👍 0 🔁 0 💬 0 📌 0
Preview
太陽そっくりの星たちが明かす、太陽系「大移動」の道のり - ニュース 太陽そっくりの特徴を持つ恒星の大規模データを解析することで、太陽系や太陽そっくりの星たちが、誕生したあと短期間で天の川銀河の中を大きく移動したという新たな可能性が提起されました。太陽系と同じ起源を持つ星の存在や、天の川銀河の形状進化に大きな知見を与える成果です。

> 太陽そっくりの星たちが明かす、太陽系「大移動」の道のり - ニュース
https://www.nao.ac.jp/news/science/2026/20260313-jasmine.html

13.03.2026 09:40 👍 0 🔁 1 💬 0 📌 0
JVN: 複数のTrane製品における複数の脆弱性 Traneが提供する複数の製品には、複数の脆弱性が存在します。

> JVN: 複数のTrane製品における複数の脆弱性
https://jvn.jp/vu/JVNVU91514047/

13.03.2026 09:40 👍 0 🔁 0 💬 0 📌 0
Preview
USN-8086-1: FreeType vulnerability It was discovered that FreeType did not correctly handle certain integer arithmetic. An attacker could possibly use this issue to leak sensitive information.

> USN-8086-1: FreeType vulnerability
https://ubuntu.com/security/notices/USN-8086-1

13.03.2026 09:40 👍 0 🔁 0 💬 0 📌 0
Preview
USN-8092-1: Sudo vulnerability It was discovered that Sudo incorrectly checked return codes when dropping privileges to run the mailer. A local attacker could possibly use this issue to escalate privileges.

> USN-8092-1: Sudo vulnerability
https://ubuntu.com/security/notices/USN-8092-1

13.03.2026 03:40 👍 0 🔁 0 💬 0 📌 0
Preview
USN-8091-1: util-linux vulnerability It was discovered that the util-linux su utility did not drop capabilities when being used with the --pty option. While not a security issue by itself, a local attacker could possibly use the su tool to exploit vulnerabilities in other applications.

> USN-8091-1: util-linux vulnerability
https://ubuntu.com/security/notices/USN-8091-1

13.03.2026 03:40 👍 0 🔁 0 💬 0 📌 0
Preview
USN-8090-2: OpenSSH vulnerabilities USN-8090-1 fixed vulnerabilities in OpenSSH. This update provides the corresponding updates for Ubuntu 20.04 LTS. Original advisory details: Jeremy Brown discovered that the OpenSSH GSSAPI Key Exchange incorrectly handled disconnecting clients. In non-default configurations where the GSSAPIKeyExchange setting is enabled, a remote attacker could use this issue to cause OpenSSH to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2026-3497) David Leadbeater discovered that OpenSSH incorrectly handled certain control characters in usernames. When untrusted usernames and the ProxyCommand are being used, an attacker could possibly use this issue to execute arbitrary code. (CVE-2025-61984) David Leadbeater discovered that OpenSSH incorrectly handled NULL characters in ssh:// URIs. When the ProxyCommand is being used, an attacker could possibly use this issue to execute arbitrary code. (CVE-2025-61985)

> USN-8090-2: OpenSSH vulnerabilities
https://ubuntu.com/security/notices/USN-8090-2

13.03.2026 03:40 👍 0 🔁 0 💬 0 📌 0
Preview
USN-8090-1: OpenSSH vulnerabilities Jeremy Brown discovered that the OpenSSH GSSAPI Key Exchange incorrectly handled disconnecting clients. In non-default configurations where the GSSAPIKeyExchange setting is enabled, a remote attacker could use this issue to cause OpenSSH to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2026-3497) David Leadbeater discovered that OpenSSH incorrectly handled certain control characters in usernames. When untrusted usernames and the ProxyCommand are being used, an attacker could possibly use this issue to execute arbitrary code. (CVE-2025-61984) David Leadbeater discovered that OpenSSH incorrectly handled NULL characters in ssh:// URIs. When the ProxyCommand is being used, an attacker could possibly use this issue to execute arbitrary code. (CVE-2025-61985)

> USN-8090-1: OpenSSH vulnerabilities
https://ubuntu.com/security/notices/USN-8090-1

13.03.2026 03:40 👍 0 🔁 0 💬 0 📌 0
iPhones and iPads Approved for NATO Classified Data <p>Apple <a href="https://www.apple.com/newsroom/2026/02/iphone-and-ipad-approved-to-handle-classified-nato-information/">announcement</a>:</p> <blockquote><p>&#8230;iPhone and iPad are the first and only consumer devices in compliance with the information assurance requirements of NATO nations. This enables iPhone and iPad to be used with classified information up to the NATO restricted level without requiring special software or settings&#8212;a level of government certification no other consumer mobile device has met.</p></blockquote> <p>This is out of the box, no modifications required.</p> <p>Boing Boing <a href="https://boingboing.net/2026/02/27/apples-iphones-and-ipads-are-the-first-consumer-devices-certified-for-nato-classified-data-without-any-modifications.html">post</a>.</p>

> iPhones and iPads Approved for NATO Classified Data
https://www.schneier.com/blog/archives/2026/03/iphones-and-ipads-approved-for-nato-classified-data.html

12.03.2026 21:41 👍 0 🔁 0 💬 0 📌 0
Preview
Data breach UK prevention: security best practices for businesses Find out about the data breach risks that UK businesses face and the best practices you need to implement to ensure business continuity.

> Data breach UK prevention: security best practices for businesses
https://proton.me/blog/data-breach-prevention-uk

12.03.2026 21:41 👍 0 🔁 0 💬 1 📌 0
Preview
Worm viruses and password theft: The risks for businesses Discover what worm viruses are, how they replicate, and how to protect your organization with a secure business password manager.

> Worm viruses and password theft: The risks for businesses
https://proton.me/blog/worm-virus

12.03.2026 21:41 👍 0 🔁 0 💬 0 📌 0
Preview
USN-8089-1: Go Networking vulnerabilities Bahruz Jabiyev, Tommaso Innocenti, Anthony Gavazzi, Steven Sprecher, and Kaan Onarlioglu discovered that servers using Go Networking could hang during shutdown if preempted by a fatal error. An attacker could possibly use this to cause a denial of service. This issue only affected Ubuntu 22.04 LTS. (CVE-2022-27664) Arpad Ryszka and Jakob Ackermann discovered that a maliciously crafted stream could cause excessive CPU usage in Go Networking's HPACK decoder. An attacker could possibly use this to cause a denial of service. This issue only affected Ubuntu 22.04 LTS. (CVE-2022-41723) Mohammad Thoriq Aziz discovered that Go Networking did not properly sanitize some text nodes. An attacker could possibly use this to execute arbitrary code. This issue only affected Ubuntu 22.04 LTS. (CVE-2023-3978) Sean Ng discovered an error in Go Networking's HTML tag handling. An attacker could possibly use this to cause a denial of service. (CVE-2025-22872) Guido Vranken and Jakub Ciolek discovered that a maliciously crafted HTML document could exhaust system resources on servers using Go Networking. An attacker could possibly use this to cause a denial of service. (CVE-2025-47911) Guido Vranken discovered that a maliciously crafted HTML document could put servers using Go Networking into an infinite loop. An attacker could possibly use this to cause a denial of service. (CVE-2025-58190)

> USN-8089-1: Go Networking vulnerabilities
https://ubuntu.com/security/notices/USN-8089-1

12.03.2026 21:41 👍 0 🔁 0 💬 0 📌 0
Preview
2兆ドルの問い:AIバブルの崩壊後、何が残されるのか? <p>AIバブルが弾けたとき、いったい何が残るのか。投げ売される安価なGPU、職を探す腕利きの応用統計学者、そしてすでに目覚ましい成果を上げているオープンソースモデル――これらは最適化を経て、さらなる飛躍的進化を遂げるだろう。</p> The post <a href="https://p2ptk.org/ai/5458">2兆ドルの問い:AIバブルの崩壊後、何が残されるのか?</a> first appeared on <a href="https://p2ptk.org">p2ptk[.]org</a>.

> 2兆ドルの問い:AIバブルの崩壊後、何が残されるのか?
https://p2ptk.org/ai/5458

12.03.2026 21:41 👍 0 🔁 0 💬 0 📌 0
Preview
USN-8088-1: go-git vulnerabilities Ionut Lalu discovered that go-git incorrectly handled certain specially crafted Git server responses. An attacker could possibly use this issue to cause a denial of service. (CVE-2023-49568, CVE-2025-21614) Ionut Lalu discovered that go-git incorrectly handled file system paths when using the ChrootOS implementation. A remote attacker could possibly use this issue to perform a path traversal and create or modify arbitrary files, leading to remote code execution. (CVE-2023-49569) It was discovered that go-git did not properly sanitize arguments when invoking git-upload-pack using the file transport protocol. An attacker could possibly use this issue to inject arbitrary flag values when interacting with local Git repositories. (CVE-2025-21613) It was discovered that go-git did not properly verify integrity checks for pack and index files. An attacker could possibly use this issue to cause go-git to process corrupted repository data, resulting in unexpected errors or an incorrect repository state. (CVE-2026-25934)

> USN-8088-1: go-git vulnerabilities
https://ubuntu.com/security/notices/USN-8088-1

12.03.2026 21:41 👍 0 🔁 0 💬 0 📌 0
Preview
USN-8087-1: python-cryptography vulnerability It was discovered that python-cryptography incorrectly handled subgroup validation for SECT curves. A remote attacker could use this issue to perform a subgroup attack and possibly recover the least significant bits of private keys.

> USN-8087-1: python-cryptography vulnerability
https://ubuntu.com/security/notices/USN-8087-1

12.03.2026 21:40 👍 0 🔁 0 💬 0 📌 0
Preview
静的サイトジェネレータ「Astro 6.0」正式リリース。開発環境としてCloudflare Workers対応。Rust製コンパイラの実験的追加など 静的サイトジェネレータ「Astro」の最新版となる「Astro 6.0」正式版がリリースされました。 Astroを開発してきたAstro Technology Companyは今年(2026年)1月、CDNサービス大手のCloudflare...

> 静的サイトジェネレータ「Astro 6.0」正式リリース。開発環境としてCloudflare Workers対応。Rust製コンパイラの実験的追加など
https://www.publickey1.jp/blog/26/astro_60cloudflare_workersrust.html

12.03.2026 15:40 👍 0 🔁 0 💬 0 📌 1
Preview
オープンスタンダードにおける選択肢の統合:CCシグナルとRSL標準 by Anna Tumadóttir クリエイティブ・コモンズ(CC)では長きにわたり、二者択一的なシステムが現実世界の複雑さを反映することは稀であり、コモンズの利益にもなりにくいと考えてきました。インターネットは、それ [&#8230;]

> オープンスタンダードにおける選択肢の統合:CCシグナルとRSL標準
https://creativecommons.jp/2026/03/12/integrating-choices-in-open-standards/

12.03.2026 15:40 👍 0 🔁 0 💬 0 📌 1
Preview
USN-8085-1: .NET vulnerabilities It was discovered that the .NET Microsoft.Bcl.Memory NuGet package did not properly handle certain malformed Base64Url encoded input. An attacker could possibly use this issue to cause .NET to crash, resulting in a denial of service. This issue only affected .NET 9.0 and .NET 10.0. (CVE-2026-26127) Bartłomiej Dach discovered that .NET's SignalR server component did not properly manage resource consumption when processing certain messages. An attacker could possibly use this issue to exhaust internal buffers, resulting in a denial of service. (CVE-2026-26130)

> USN-8085-1: .NET vulnerabilities
https://ubuntu.com/security/notices/USN-8085-1

12.03.2026 15:40 👍 0 🔁 0 💬 0 📌 0
資料公開:2026/02 フィッシング報告状況(月次報告書)公開のお知らせ - ニュース フィッシング対策協議会は、フィッシング報告窓口に寄せられた報告をもとに、 月次報...

> 資料公開:2026/02 フィッシング報告状況(月次報告書)公開のお知らせ - ニュース
https://www.antiphishing.jp/news/info/202602.html

12.03.2026 09:40 👍 0 🔁 0 💬 0 📌 0
2026/02 フィッシング報告状況 - 報告書類 フィッシング報告件数 2026 年 2 月にフィッシング対策協議会に寄せられたフ...

> 2026/02 フィッシング報告状況 - 報告書類
https://www.antiphishing.jp/report/monthly/202602.html

12.03.2026 09:40 👍 0 🔁 0 💬 0 📌 0
Preview
Release v0.43.0: go.mod: update golang.org/x dependencies · golang/tools

#golang > Release v0.43.0: go.mod: update golang.org/x dependencies · golang/tools
https://github.com/golang/tools/releases/tag/v0.43.0

12.03.2026 09:01 👍 0 🔁 0 💬 0 📌 0
Preview
【松江】『rame 松江学園店(ラーム松江学園店)』2026年3月13日オープン予定 松江市学園にオープン予定、 rame 松江学園店(ラーム) 学園2丁目に美容室「canoe(カノエ)」さ...

> 【松江】『rame 松江学園店(ラーム松江学園店)』2026年3月13日オープン予定
https://unseki.co.jp/blog/open/hairsalon/24418

12.03.2026 03:40 👍 0 🔁 0 💬 0 📌 0
Preview
AI(経済)黙示録――AIバブルの崩壊はもはや避けられない <p>「つまり株式市場の3分の1が、利益を出す見込みのない7つのAI企業に縛られている。これはバブルであり、崩壊すれば経済全体を道連れにする、ということですか?」「ええ、その通り」「わかりました。でも、我々には何ができるんでしょうか?」</p> The post <a href="https://p2ptk.org/ai/5462">AI(経済)黙示録――AIバブルの崩壊はもはや避けられない</a> first appeared on <a href="https://p2ptk.org">p2ptk[.]org</a>.

> AI(経済)黙示録――AIバブルの崩壊はもはや避けられない
https://p2ptk.org/ai/5462

11.03.2026 21:40 👍 0 🔁 0 💬 0 📌 0