Critical dependency manager supply chain vulnerabilities have exposed millions and millions of devices to arbitrary malware for the better part of decade.
![Apple CocoaPods Bugs Expose Millions of Apps to Code Injection](https://lemmy.blahaj.zone/pictrs/image/e0351468-c32e-48a3-85c4-439eab428bd2.jpeg?format=webp&thumbnail=256)
> Critical dependency manager supply chain vulnerabilities have exposed millions and millions of devices to arbitrary malware for the better part of decade.
Cisco has patched an NX-OS zero-day exploited in April attacks to install previously unknown malware as root on vulnerable switches.
![Cisco warns of NX-OS zero-day exploited to deploy custom malware](https://lemmy.blahaj.zone/pictrs/image/d484291d-8926-4f0d-8d2f-369ac9abf090.jpeg?format=webp&thumbnail=256)
> Cisco has patched an NX-OS zero-day exploited in April attacks to install previously unknown malware as root on vulnerable switches.
The company seemingly underestimated the severity of the breach after originally providing a head count of roughly 36,000 impacted individuals.
![Prudential Data Breach Victim Count Soars to 2.5M](https://lemmy.blahaj.zone/pictrs/image/fce06239-a0d4-459d-86c1-0e7d6084e142.jpeg?format=webp&thumbnail=256)
> The company seemingly underestimated the severity of the breach after originally providing a head count of roughly 36,000 impacted individuals.
If security researchers can execute a guest-to-host attack using a zero-day vuln in the KVM open source hypervisor, Google will make it worth their while.
![Google Opens $250K Bug Bounty Contest for VM Hypervisor](https://lemmy.blahaj.zone/pictrs/image/37741721-c281-4ac3-b934-527f33d9ff55.jpeg?format=webp&thumbnail=256)
> If security researchers can execute a guest-to-host attack using a zero-day vuln in the KVM open source hypervisor, Google will make it worth their while.
How would you like your iOS 18 chatbots served?
![Apple could announce a Google Gemini deal this fall](https://lemmy.blahaj.zone/pictrs/image/b5876c13-12a3-48ba-9ddc-f33698737753.jpeg?format=webp&thumbnail=256)
> How would you like your iOS 18 chatbots served?
> The U.S. Justice Department will criminally charge Boeing with fraud over two fatal crashes and ask the planemaker to plead guilty or face a trial, two people familiar with the matter said on Sunday.
Apple's decision not to launch its own artificial intelligence (AI) features in the EU is a "stunning declaration" of its anticompetitive behavior, EU Commission Vice-President Margrethe Vestager said on Thursday (27 June).
![EU Competition Commissioner says Apple's decision to pull AI from EU shows anticompetitive behavior](https://lemmy.blahaj.zone/pictrs/image/740e568b-74b1-4880-bde4-e32acdb5d689.jpeg?format=webp&thumbnail=256)
> Apple's decision not to launch its own artificial intelligence (AI) features in the EU is a "stunning declaration" of its anticompetitive behavior, EU Commission Vice-President Margrethe Vestager said on Thursday (27 June).
Maybe it’s made with AI, or maybe it was just resized.
![Instagram’s “Made with AI” label swapped out for “AI info” after photographers’ complaints](https://lemmy.blahaj.zone/pictrs/image/98eda3cb-b2d3-4457-9310-96ad91134be4.jpeg?format=webp&thumbnail=256)
> Maybe it’s made with AI, or maybe it was just resized.
The news highlights that the fallout from the Evolve data breach on third-party companies — and their customers and users — is still unclear.
![Fintech company Wise says some customers affected by Evolve Bank data breach | TechCrunch](https://lemmy.blahaj.zone/pictrs/image/6bccf4a2-7e46-493b-888e-d2dc44f90190.jpeg?format=webp&thumbnail=256)
> The news highlights that the fallout from the Evolve data breach on third-party companies — and their customers and users — is still unclear.
The speaker is only six years old.
![Apple already considers the first HomePod “vintage”](https://lemmy.blahaj.zone/pictrs/image/e7ddc4ee-4320-401a-8d47-fbf44be449d4.jpeg?format=webp&thumbnail=256)
> The speaker is only six years old.
It’s probably best not to reset your phone for a bit.
![Some Pixel 6 owners say factory resets have bricked their phones](https://lemmy.blahaj.zone/pictrs/image/a5a32583-f59f-45a1-b0c0-89517ef830d6.jpeg?format=webp&thumbnail=256)
> It’s probably best not to reset your phone for a bit.
Simply submitting the request for a takedown doesn't necessarily mean the content will be removed, however.
![YouTube now lets you request removal of AI-generated content that simulates your face or voice | TechCrunch](https://lemmy.blahaj.zone/pictrs/image/ed15a3b8-0b26-401c-bc51-14693027c653.jpeg?format=webp&thumbnail=256)
> Simply submitting the request for a takedown doesn't necessarily mean the content will be removed, however.
Companies like Charter brought about the streaming industry they now want to join.
![Bleeding subscribers, cable companies force their way into streaming](https://lemmy.blahaj.zone/pictrs/image/cc115f26-135d-4311-96e8-3f3705007e95.jpeg?format=webp&thumbnail=256)
> Companies like Charter brought about the streaming industry they now want to join.
Silvergate didn’t notice fraudulent transactions by FTX.
![Silvergate Bank didn’t adequately monitor $1 trillion in crypto transactions, SEC says](https://lemmy.blahaj.zone/pictrs/image/e81df563-68cf-4088-8dd5-f10baf9fd389.jpeg?format=webp&thumbnail=256)
> Silvergate didn’t notice fraudulent transactions by FTX.
Case file: https://s3.documentcloud.org/documents/24785653/945ca7a4-312d-4637-b202-31fd1bea57e4.pdf
European Commission objects to ‘pay or consent’ model for users of Facebook and Instagram
![Meta accused of breaking EU digital law by charging for ad-free social networks](https://lemmy.blahaj.zone/pictrs/image/c34a926a-536f-41e6-8b42-11c60141b856.jpeg?format=webp&thumbnail=256)
> European Commission objects to ‘pay or consent’ model for users of Facebook and Instagram
Regulator gives industry groups six months to come up with draft code, expected to include rules about age verification
![Porn sites and Meta among those tasked with drafting Australia’s online child safety rules](https://lemmy.blahaj.zone/pictrs/image/321d1427-e6cb-4e1b-8344-ecbb84ff3c8e.jpeg?format=webp&thumbnail=256)
> Regulator gives industry groups six months to come up with draft code, expected to include rules about age verification
Sweden is launching a groundbreaking new law, allowing grandparents to care for their grandchild and get paid.
![Swedes take a new step in parental leave. Grandparents can now get paid to take care of grandkids](https://lemmy.zip/pictrs/image/91c06eb8-d1d6-47ed-8c4f-18f7a1519f03.webp?format=webp&thumbnail=256)
> Sweden is launching a groundbreaking new law, allowing grandparents to care for their grandchild and get paid.
Archived version: https://archive.ph/v5wCy
Officials say a roadside bomb explosion in Pakistan’s volatile Baluchistan province has killed a woman and two children. Police blamed “terrorists” for Monday's attack.
![3 civilians killed in a bomb explosion in Pakistan and 2 security personnel die in a rocket attack](https://lemmy.zip/pictrs/image/3f5f3b7c-06ad-40b3-8ab4-6992ac3f50a9.webp?format=webp&thumbnail=256)
> Officials say a roadside bomb explosion in Pakistan’s volatile Baluchistan province has killed a woman and two children. Police blamed “terrorists” for Monday's attack.
Archived version: https://archive.ph/r6TjB
Catalan leader Carles Puigdemont is accused of embezzlement during Catalonia's 2017 independence bid. He had hoped to return to Spain without fear of arrest after an amnesty law was passed by parliament.
![Spain: Supreme Court upholds Puigdemont arrest warrant – DW – 07/01/2024](https://lemmy.blahaj.zone/pictrs/image/8b3262f7-0bc5-4f77-827e-05756ae61937.jpeg?format=webp&thumbnail=256)
> Catalan leader Carles Puigdemont is accused of embezzlement during Catalonia's 2017 independence bid. He had hoped to return to Spain without fear of arrest after an amnesty law was passed by parliament.
> Russian forces have captured an intact guidance system from a long-range U.S.-made ATACMS missile and are studying the American military technology, Russia's RIA state news agency said on Monday.
Archived version: https://archive.ph/FHzJK
Any countries want to stop all funding until claims can be investigated, or do they prefer to stick to their double standards?
Obligatory 'Fuck John Deere".
All of them are considered in tandem, not individually.
Considering that OpenAI is making a commercial profit from developing its ML models
They are losing money during development (all those GPUs are not free and running them costs a lot of energy), they are making the money after it's trained. Just factual inaccuracy.
And being used for commercial purpose is not automatic rejection. Take YouTube, where fair use comes up constantly. Almost all the cases are for commercial purpose, but most qualify under fair use.
#3 also because the model usually ingests the entire work, not just part of it.
While they are trained on full works, the used work in the result is different. Probably minimal considering the size of the models. The fact that some courts already ruled that "AI" works can't be copyrighted gives weight to the argument that it's a unique work.
It's very hard to argue that "AI" generated is different from someone looking at the original and making a copy by hand. And since the latter is allowed, by the same token is the former.
Which is both sad and confusing as he pulled it out on set with the intention to pull the trigger for the scene.
It wasn't even an actual scene being filmed, It was blocking (working out the details of an actor’s moves in relation to the camera) where non-functioning props like cardboard are usually used. The scene script in question also didn't even have him pointing the gun. He was supposed to only draw the gun out partially.
They were one of the first to go.
I think my workplace would be more concerned about the fact that their own sex toy shopping is tracked than the fact that I use sex toys.
But I marked it as NSFW anyway.
Which part do you find NSFW?
At this point, it’s unclear what’s the extent of the incident and how many HubSpot customers were affected.
While TeamViewer states there is no evidence that its product environment or customer data has been breached, its massive use in both consumer and corporate environments makes any breach a significant concern as it would provide full access to internal networks.
Both things can be true. And in this case they are.
Checkout coffeezilla/voidzilla coverage if you haven't seen it yet.
Fucking pay them or write them yourselves.
This. Refactoring the whole code is insanely time intensive, even if developers know multiple languages. All these critical components you rely on, you use without any compensation or support and then dare to complain it's not to your security standards. Fix it, or pay for it to be fixed.
Follow up story to https://lemmy.zip/post/18016094
It really depends on each person's threat model. But there are a few things everyone would benefit from. Like VPN, email aliasing, password manager, 2FA/MFA. They don't have any convenience cost and in most cases make your life easier.
If you are interested in learning more:
I was being factual. Unless you can dispute anything I said?
There is also Vivaldi (based on Chromium/Blink) which is employee owned, but the choices are shrinking.
Mozilla Foundation is still non-profit, but Mozilla Corporation is not. And while they claim to operate by Mozilla Manifesto, it's non-binding and has been broken multiple times. Remember Pocket and their promise to open source it?
Firefox own data disproves your statement. https://data.firefox.com/dashboard/user-activity
I know there are strong feelings about posts that include Threads and to lesser extent Bluesky, but it's important to know what corporate media thinks of Fediverse and how they compare it to corporate alternatives. You are encouraged to dissect the article and point out all of its failures, or just downvote the post and move on. But I won't be removing it.
P.S. The author of the article definitely has a pro VC stance.
!fediverse@lemmy.zip, created not long ago, exactly due to similar reasons.
It's internal. They are becoming irrelevant (their browser market share have been shrinking for years now), so they are jumping all the new hype trends now. They literally just became an ad company. We have Google, Apple, Brave and Mozilla all being an ad companies that produce browsers.
![BrikoX](https://lemmy.zip/pictrs/image/7702967c-9647-43fd-b689-8f13add8ceba.jpeg?format=webp&thumbnail=64)
Have strong opinions, but I welcome any civil fact-based discussion.
Alt account: /u/BrikoX@lemmy.sdf.org