Artis3n

This has everything: malleabile encryption, complex packets, memory safety, unsafe terminal UI, wontfix.

Incredible.

Plaintext exfiltration if you just click a link.

I can’t be convinced gpg can be used safely.

I don’t think anyone is prepared for what they just did w/ ICE.

This is not a simple budget increase. It is an explosion - making ICE bigger than the FBI, US Bureau of Prisons, DEA,& others combined.

It is setting up to make what’s happening now look like child’s play. And people are disappearing.

TeleMessage suspends services after hackers claim breach The app was seemingly used by Mike Waltz in last week's cabinet meeting, according to a photograph published by Reuters.

NEW: TeleMessage, the Signal knockoff used by Mike Waltz and potentially other gov officials to archive group chats in plaintext, has suspended all services after it was hacked *at least twice.* @404media.co reported a hack last night; a different hacker also broke in and gave me evidence.

Hours ago, @politico.com revealed that DOGE is working with DHS on automating mass deportation efforts — likely explaining why many US citizens, green card holders, and even a Canadian (in Canada) got threatening emails last night terminating “your parole” and telling them to leave the US in 7 days.

Vittoria Elliott Leah Feiger Feb 7, 2025 2:47 PM A US Treasury Threat Intelligence Analysis Designates DOGE Staff as ‘Insider Threat’ An internal email reviewed by WIRED calls DOGE staff's access to federal payments systems “the single biggest insider threat risk the Bureau of the Fiscal Service has ever faced.”

NEW: An internal email obtained by WIRED from a threat intelligence team monitoring US Treasury systems advised labeling DOGE operatives an "insider threat," adding that it recommended suspending their access "immediately."
|
www.wired.com/story/treasu...

The US Treasury Claimed DOGE Technologist Didn’t Have ‘Write Access’ When He Actually Did Sources tell WIRED that the ability of DOGE's Marko Elez to alter code controlling trillions in federal spending was rescinded days after US Treasury and White House officials said it didn't exist.

DOGE operative Marko Elez got the ability to alter US Treasury payment system code on Feb 1, WIRED's sources say.

For days, Trump officials fed members of Congress and the press a different story.

Elez is out now for posts reading "I was racist before it was cool" and "normalize Indian hate."

A 25-Year-Old Is Writing Backdoors Into The Treasury’s $6 Trillion Payment System. What Could Possibly Go Wrong? Just months after we learned Chinese hackers had compromised US telecom systems through government-mandated backdoors, an inexperienced developer from Musk’s DOGE unit is pushing untested cod…

Okay, let's keep going. Got another one today looking at just how absolutely fucking crazy it is that an inexperienced Musk-lackey is apparently pushing untested live code to America's checkbook. Tried to contextualize all of it.

www.techdirt.com/2025/02/05/a...

Elon Musk's Friends Have Infiltrated Another Government Agency Elon Musk’s former employees are trying to use White House credentials to access General Services Administration tech, giving them the potential to remote into laptops, read emails, and more, sources ...

NEW: Elon Musk's friends have infiltrated the GSA and they're looking for ways to use White House credentials to access agency tech, potentially allowing them to remote into laptops, read emails, and more, sources say.

w/ @zoeschiffer.bsky.social

www.wired.com/story/elon-m...

Elon’s Twitter Destruction Playbook Hits The US Government, And It’s Even More Dangerous Remember how Elon Musk destroyed Twitter by ripping apart its infrastructure without understanding it? Now imagine that same playbook applied to the federal government. It’s happening, and th…

“Let’s be crystal clear about what’s happening: A private citizen with zero Constitutional authority is effectively seizing control of critical government functions.”- @mmasnick.bsky.social

www.techdirt.com/2025/01/31/e...

Siri “unintentionally” recorded private convos; Apple agrees to pay $95M Apple users may get $20 each for up to five Siri-enabled devices.

So it appears Apple has "agreed to pay $95 million to settle a lawsuit alleging that its voice assistant Siri routinely recorded private conversations that were then shared with third parties and used for targeted ads."

But it was "unintentional," so don't worry about it...

Mad Enough to Blog It™️ www.indignity.net/the-washingt...

I don’t know why everyone puts up with turkey. We moved to making fried chicken for Thanksgiving a few years ago and have not looked back

Researchers link Polyfill supply chain attack to huge network of copycat gambling sites | TechCrunch A supply chain hack targeting 100,000 websites was launched to redirect internet users to a massive online gambling network.

NEW: The Polyfill supply chain attack was launched with the goal of redirecting users to thousands of fake Chinese gambling sites, according to security researchers.

FUNNULL, the company allegedly responsible, did not respond to multiple requests for comment.

techcrunch.com/2024/10/22/r...

Millions of Vehicles Could Be Hacked and Tracked Thanks to a Simple Website Bug Researchers found a flaw in a Kia web portal that let them track millions of cars, unlock doors, and start engines at will—the latest in a plague of web bugs that’s affected a dozen carmakers.

When you build vehicles with remote functionality, you get security and privacy problems like this. For the love of God, please stop building cars with the ability to lock/unlock, stop/start the engine from an app or a website.
www.wired.com/story/kia-we...

Data center emissions likely 662% higher than big tech claims. Can it keep up the ruse? Emissions from in-house data centers of Google, Microsoft, Meta and Apple may be 7.62 times higher than official figures

Google and Microsoft recently admitted their emissions are soaring as they build out data centers to power the AI boom.

But analysis from The Guardian suggests the data center emissions of Google, Meta, Microsoft, and Apple are 662% higher than the companies are reporting.

Wow, the Linux kernel man pages were someone's side project??

The Economist has published a deeply-researched story about car bloat -- and it's very, very damning.

"For every life that the heaviest 1% of SUVs and trucks save, there are more than a dozen lives lost in other vehicles."

Well worth your time: www.economist.com/interactive/...

SpaceX repeatedly polluted waters in Texas this year, regulators found SpaceX violated environmental regulations in releasing pollutants into or nearby bodies of water in Texas, a state environmental agency found.

SpaceX's water deluge system repeatedly violated the Clean Water Act, per TCEQ and the EPA. These violations could well scupper SpaceX's bid to massively expand rocket launches at the site.

Great reporting as usual from @lorak.bsky.social

www.cnbc.com/2024/08/12/s...

This account might get some views this week, I should probably look like I post (I don't)

To me it seems not at all unlikely that a future Republican administration would instruct a future FTC to crack down on videos explaining how transgender youth can seek medical care. Sen. Ron Wyden (D-OR), one of the three Senators to vote against the bill, cited that risk as a reason for his position. KOSA could “be used as a tool for MAGA extremists to wage war on legal and essential information to teens,” Wyden said. Moreover, it’s not even clear extremists would have to declare war to get platforms to do their bidding. Should KOSA become law, platforms’ logical next step will be to actively suppress content that the law describes as harmful, for fear of being sued otherwise. This is not a theoretical possibility: fear of being accused of violating anti-terrorism laws has led Meta to suppress online speech in Arabic-speaking and Muslim communities, its Oversight Board found earlier this year.

KOSA passed the Senate today, which means we're a step closer to the government pressuring sites like this one to remove legal speech www.platformer.news/kosa-coppa-s...

Microsoft now says the CrowdStrike crash hit 8.5 million Windows machines. blogs.microsoft.com/blog/2024/07...

I think that's the biggest disruption of computers ever. (Though maybe not the worst, given NotPetya and WannaCry did more lasting damage to hundreds of thousands of machines.)

Vendors' response to my LLM-crasher bug report was dire Fixes have been made, it appears, but disclosure or discussion is invisible

It turns out reporting bugs and major issues with LLMs is just as frustrating if not more than reporting security bugs

Vendors go through stages of denial, push back, silent fixes, and hand-wringing statements about safety, but acceptance? Not quite

www.theregister.com/2024/07/10/v...

Microsoft Chose Profit Over Security and Left U.S. Government Vulnerable to Russian Hack, Whistleblower Says Former employee says software giant dismissed his warnings about a critical flaw because it feared losing government business. Russian hackers later used the weakness to breach the National Nuclear Se...

Microsoft has long downplayed its role in the 2020 "SolarWinds" attack — one of the largest cyberattacks in U.S. history — but a new ProPublica investigation reveals that the tech giant ignored warnings that could have stemmed the damage... 🧵
www.propublica.org/article/micr...

This will ultimately be fine for what I am doing because I am not defending a high-value target against a determined attacker, but...

I would not trust any insider protection I could build on GitHub honestly. I'd just assume anyone with Write has the keys to the castle.

That's worrying.

To better understand the clash, The Times interviewed Ms. Baden, her mother and her husband, as well as other neighbors, and reviewed the texts that Ms. Baden and her husband sent to friends after the episodes. Justice Alito, who did not respond to questions for this article, has in recent weeks given his own explanation of what happened. There are some differences: For instance, the justice told Fox News that his wife hoisted the flag in response to Ms. Baden’s vulgar insult. A text message and the police call — corroborated by Fairfax County authorities — indicate, however, that the name-calling took place on Feb. 15, weeks after the inverted flag was taken down.

Alito lied about the reason the flag was up because he didn’t know the couple had text messages establishing the date of when the incident took place. They were supporting the insurrection. www.nytimes.com/2024/05/28/u...

Yes, turbulence on planes is getting worse and yes, climate change is a factor

"Our latest future projections indicate a doubling or tripling of severe turbulence in the jet streams in the coming decades, if the climate continues to change as we expect"

www.cbc.ca/news/world/t...

Toxic Gaslighting: How 3M Executives Convinced a Scientist the Forever Chemicals She Found in Human Blood Were Safe Decades ago, Kris Hansen showed 3M that its PFAS chemicals were in people’s bodies. Her bosses halted her work. As the EPA now forces the removal of the chemicals from drinking water, she wrestles wit...

Toxic Gaslighting: How 3M Executives Convinced a Scientist the Forever Chemicals She Found in Human Blood Were Safe

www.propublica.org/article/3m-f...

Scarlett Johansson lawyers up over ChatGPT voice that ‘shocked and angered’ her | CNN Business Actress Scarlett Johansson said in a statement shared with CNN on Monday that she was “shocked, angered and in disbelief” that OpenAI CEO Sam Altman would use a synthetic voice released with an update...

OpenAI only paused its ScarJo-sounding ChatGPT voice after the actor hired lawyers to send letters to the company, she says in a new statement expressing shock, anger and disbelief www.cnn.com/2024/05/20/t...

Police are not primarily crime fighters, according to the data A new report adds to a growing line of research showing that police departments don’t solve serious or violent crimes with any regularity, and in fact, spend very little time on crime control, in contrast to popular narratives.

"A new report adds to a growing line of research showing that police departments don’t solve serious or violent crimes with any regularity, and in fact, spend very little time on crime control, in contrast to popular narratives." www.reuters.com/legal/govern...