Threads adds 'ghost posts' that disappear after 24 hours
Threads adds 'ghost posts' that disappear after 24 hours | TechCrunch
Instagram Threads is launching “ghost posts,” a new disappearing-posts feature that lets users share updates that automatically archive after 24 hours.Sarah Perez (TechCrunch)
I got infected like an idiot
I downloaded a cracked install from tpb (haxnode). It was a loader exe that loaded the original exe and supposedly removed the drm in RAM. It required admin permissions, I didn't trust it, but i ran in a vm and nothing happened.
Then i told myself "i have microsoft defender and windows firewall control, they will warn me" and I ran it in my main laptop, and still nothing happened. Like, literally nothing happened. The original program would not start. It would simply exit. Nothing. The other 6 almost identical torrents from the same uploader but with a different program version had a similar result. I gave up.
Then i reboot, and firstly i notice a couple DOS prompts flashing on the screen, and windows firewall control asking me if "aspnet_compiler.exe" is allowed to access the internet or not.
Suspicious, i go to check that "aspnet_compiler.exe" and it's located in the .net system folder, i scan it with microsoft defender and it doesn't report as a virus. I do not pay attention to the fact that it doesn't have a valid Microsoft signature, and i tell myself "probably just a windows update" and i whitelist it on the firewall.
After a few hours I realize "wait a minute: it's impossible that an official windows exe isn't signed by microsoft!" I go back to scan it, not infected... or it looks like, defender says "ignored because in whitelist". What? The "loader" put c:* in the whitelist!
The "crack loader" wasn't a virus per se. It dropped an obfuscated batch in startup, which had a base64 encoded attachment of the actual malware, that was copied in the .net framework directory with unassuming names...
And this for a $60 perpetual license program that i should buy anyway because it's for work
like this
‘Tax the Rich!’: Packed Mamdani Rally Features Sanders, AOC, and Hochul Ahead of Election Day
“Ordinary people get one vote. Billionaires get the opportunity to spend as much as they want to elect the candidates they want,” [Senator Bernie] Sanders said, decrying the influence of super PACs that can accept unlimited political donations. “That is the context in which this election is taking place.”
[Alexandria] Ocasio-Cortez (D-N.Y.), meanwhile, cast the race as one that “mirrors what we are up against nationally, both an authoritarian criminal presidency, fueled by corruption and bigotry and an ascendant right-wing extremist movement,” as well as the “insufficient, eroded, bygone political establishment, this time in the form of Andrew Cuomo.”
'Tax the Rich!': Packed Mamdani Rally Features Sanders, AOC, and Hochul Ahead of Election Day
"While Donald Trump's billionaire donors think that they have the money to buy this election, we have a movement of the masses," Zohran Mamdani said during the sold-out rally in Queens.jake-johnson (Common Dreams)
Rozaŭtuno likes this.
Automattic accuses WP Engine of misleading practices
Automattic has filed new counterclaims against hosting company WP Engine in a long-running dispute over the use of the WordPress and WooCommerce brands.
Case file: automattic.com/wp-content/uplo…
Automattic accuses WP Engine of misleading practices - Techzine Global
Automattic files claims against hosting company WP Engine in a long-running dispute over the use of the WordPress and WooCommerce brandsMels Dees (Techzine)
Here’s what ads on your $2,000 Samsung smart fridge will look like
Here’s how to opt out.
Archived version: archive.is/20251027141201/thev…
Here’s what ads on your $2,000 Samsung smart fridge will look like
A new widget coming to the built-in screen will show ‘curated advertisements’ starting next month. But you can opt out.Jennifer Pattison Tuohy (The Verge)
copymyjalopy likes this.
Opt out is not real.
This will remove the widget entirely. If you think you might actually like the widget’s other features (calendar, weather, and news), you can “X” out a particular ad, and it won’t pop up again. But then you’ll get another ad.
Hundreds of People With ‘Top Secret’ Clearance Exposed by House Democrats’ Website
A database containing information on people who applied for jobs with Democrats in the US House of Representatives was left accessible on the open web.
10M people watched a YouTuber shim a lock; the lock company sued him. Bad idea.
It’s still legal to pick locks, even when you swing your legs.
RRF Sport. La testa nel pallone. Con Pino e Albino . Polemiche Napoli Inter. Tennis. F1 e Moto GP. Casertana e Juve Caserta
Amazon announces massive €1.4 billion investment in the Netherlands
Amazon has decided to invest €1.4 billion in the Netherlands between 2025 and 2027 to boost AWS and its retail business.
https://www.neowin.net/news/amazon-announces-massive-14-billion-investment-in-the-netherlands/
IBM Unveils Digital Asset Platform as Demand for Tokenization, Stablecoins Grows
The IBM Digital Asset Haven, developed with Dfns, aims to offer banks, governments and enterprises a full-stack platform for token custody, governance and compliance.
RRF Sport. La testa nel pallone. Con Pino e Albino 27 10 25
Plymouth scientists win £2m to use AI in deep-sea mapping
Plymouth scientists win £2m to use AI in deep-sea mapping
The Deep Vision project aims to help shape legal protections for the habitats.Jonathan Morris (BBC News)
Fitik likes this.
A single point of failure triggered the Amazon outage affecting millions
A single point of failure triggered the Amazon outage affecting millions
A DNS manager in a single region of Amazon’s sprawling network touched off a 16-hour debacle.Dan Goodin (Ars Technica)
like this
Sora might have a 'pervert' problem on its hands
In the last week or so, 10 out of the 25 most popular cameos using my face are various fetishes, including one where I'm a centaur-woman pregnant with octoplets. It's not just me, either. I've seen this kind of content made with cameos of other women: female creators, another woman tech reporter, and a female employee of a prominent venture-capital firm.
**I don't get why anyone is surprised **
Sora allows people to make 'fetish' content using other people's faces
Sora lets you make videos using other people's faces. Great! Except when your face is used in a "fetish" video, like one about feet or pregnancy.Katie Notopoulos (Business Insider)
Cranberry Farmers Consider Turning Bogs into Wetlands in Massachusetts As Temperatures Rise
Cranberry Farmers Consider Turning Bogs into Wetlands in Massachusetts As Temperatures Rise - Inside Climate News
The state is helping to transform cranberry bogs to into habitats that broaden conservation and climate change resilience.Inside Climate News
New Hampshire officials looking for feedback on new state climate action plan
New Hampshire officials looking for feedback on new state climate action plan
The plan is the first large-scale coordinated effort to address climate-warming emissions in New Hampshire since 2009. It includes strategies like supporting small-scale public transportation, protecting forest land, and improving energy efficiency.Mara Hoplamazian (NHPR)
like this
NHDES will accept comments on its draft comprehensive measures until 4 pm, November 15, 2025. Only written
comments will be accepted. Comments may be sent by email (preferred) or postal mail. Please include your name,
organization, mailing address, email address and telephone number with your submittal.
The quality of stakeholder input matters more than quantity when it comes to public comments. NHDES prioritizes
specific, well-reasoned feedback supported by evidence over broad opinions. Please provide data and information,
understand the CCAP requirements, be innovative and constructive, include your background, clarify representation and
avoid form letters.
Please note the greenhouse gas reductions are preliminary estimates, which are still being reviewed and refined. We will
be revising the reductions as our modeling is finalized. We welcome comments on calculation approaches. There will be
an additional opportunity for comments on the final CCAP draft in spring 2026.
By email: cprg@des.nh.gov. Please include the following text in the subject line: “Draft CCAP Measures - Public Notice -
for New Hampshire’s Comprehensive Climate Action Plan.”
Chikungunya on Long Island: A Warning Sign of Our Changing Climate
Chikungunya on Long Island: A Warning Sign of Our Changing Climate - NYAS
The recent suspected case of Chikungunya virus on Long Island is important to monitor both in terms of public health and climate change.The New York Academy of Sciences (NYAS Dev)
like this
Nissan pools carbon emissions with electric vehicle maker BYD to avoid EU penalties
Nissan pools carbon emissions with electric vehicle maker BYD to avoid EU penalties
Japanese carmaker’s deal with Chinese rival part of EU-sanctioned offsetting scheme to help head off £13bn in finesLisa O’Carroll (The Guardian)
like this
Novità Netflix a novembre 2025: calendario completo di film e serie TV
Tra grandi ritorni, miniserie inedite e cinema d’autore, il catalogo delle novità di Netflix per Novembre 2025 si aggiorna con numerosi titoli. A novembre spiccano la parte 1 di Stranger Things 5, la miniserie storica Death by Lightning, la serie spagnola Il cuculo di cristallo dal romanzo di Javier Castillo, e il nuovo Frankenstein di Guillermo del Toro. In agenda anche la rom-com Buon Natal-ex! e il dramma Train Dreams.
SCOPRILI TUTTI QUI: Novità Netflix a novembre 2025: calendario completo di film e serie TV
Netflix: tutte le novità di novembre 2025 - calendario film e serie TV
Novità Netflix novembre 2025: Stranger Things 5 (Parte 1), Frankenstein, Death by Lightning, Il cuculo di cristallo, Buon Natal-ex! e Train Dreams.Redazione (Atom Heart Magazine)
Docker Alternative: Podman on Linux
Docker Alternative: Podman on Linux
This article is inspired by our LinuxCommunity.io forum discussion thread (thanks to users @tmick and @shybry747 for the feedback). Let's walk throughHayden James (linuxblog.io)
like this
Monday, October 27, 2025
Share
The Kyiv Independent [unofficial]
Millions read the Kyiv Independent, but only one in 1,000 supports us financially
Russia’s war against Ukraine
Psychologists aid residents in a yard of an apartment building hit by a Russian drone strike on Oct. 26, 2025 in Kyiv. A nighttime Russian drone attack on Kyiv damaged apartment buildings, injured residents, including children, and killed three people. (Vitalii Nosach/Global Images Ukraine via Getty Images)
Russian drone attack targets residential buildings in Kyiv, killing civilians. Russia launched a drone attack on Kyiv overnight Oct. 26, killing three people and injuring at least 32, including seven children, in strikes on residential buildings.
Ukraine retakes 2 villages in Donetsk Oblast near Dobropillia. Ukrainian forces liberated two villages in eastern Donetsk Oblast about 30 kilometers (19 miles) north of embattled Pokrovsk, the General Staff of Ukraine’s Armed Forces said on Oct. 26.
Ukrainian drones target Moscow in overnight attack, mayor says. Moscow’s Domodedovo and Zhukovsky airports temporarily suspended operations in response to the drone threat.
Your contribution helps keep the Kyiv Independent going. Become a member today.
‘More to come,’ HUR says, as sabotage fires spread across Russia. Russia faces an increase in the arson and “spontaneous combustion” of electrical panels, railway relay cabinets, and other infrastructure helping Moscow wage its war against Ukraine over the past week, a source at Ukraine’s military intelligence told the Kyiv Independent.
Russia says it tested nuclear-powered Burevestnik cruise missile. “It’s a unique product that no one else in the world possesses,” Russian President Vladimir Putin claimed.
Ukraine destroys Russian Buk air defense system worth $45 million, military says. Ukraine’s “Black Forest” brigade detected and struck a Russian Buk-M3 anti-aircraft missile system at an unspecified location.
YOU MAY ALSO BE INTERESTED IN…
War Notes
Get the latest news from the front lines in your inbox every Friday
Read our exclusives
Ukraine war latest: 3 killed, 32 injured in Kyiv amid Russian drone attack on residential buildings
President Volodymyr Zelensky said on Oct. 26 that Russia had launched more than 50 missiles, nearly 1,200 strike drones, and more than 1,360 guided bombs against Ukraine this week.
Photo: State Emergency Service/Telegram
Learn more
More than Tomahawks: what Ukraine’s soldiers say they actually need
Though Ukraine has been hoping the U.S. will finally greenlight the supply of long-range Tomahawk missiles, those on the ground say the lack of more basic needs is a more pressing issue.
Photo: Roman Pilipey/AFP via Getty Images
YOU MAY ALSO BE INTERESTED IN…
One story from Ukraine
Monday to Friday, get an email with our most important story of the day
Russia’s war on civilians | Ukraine This Week
Human cost of war
At least 9 killed, 45 injured in Russian strikes across Ukraine over the past day. At least nine civilians were killed and 44 others injured in Russian attacks across Ukraine over the past day, regional authorities reported on Oct. 26.
Millions read the Kyiv Independent, but only one in 1,000 supports us financially. One membership might not seem like much, but to us, it makes a real difference. If you value our reporting, consider becoming a member — your support makes us stronger.
International response
Lithuania closes border with Belarus indefinitely after balloons violate airspace for 3rd night in row. “Contraband” balloons launched from Belarus have disrupted air traffic four times in the last week. Lithuania has closed border crossings with Belarus for “an indefinite period” in response.
Ukraine Action Summit meets in Washington, calls for return of abducted children, security guarantees. “We bring people together to learn… to educate themselves and to use their voices to speak to their elected officials to support Ukraine,” Marianna Tretiak, Chair of the American Coalition for Ukraine (ACU) Board, told the Kyiv Independent.
YOU MAY ALSO BE INTERESTED IN…
WTF is wrong with Russia?
A weekly newsletter about Russian politics, history, and culture
This newsletter is open for sponsorship. Boost your brand’s visibility by reaching thousands of engaged subscribers. Click here for more details.
Today’s Ukraine Daily was brought to you by Jared Goyette, Asami Terajima, Tymur Zadorozhnyy, Volodymyr Ivanyshyn, and Abbey Fenbert.
If you’re enjoying this newsletter, consider joining our membership program. Start supporting independent journalism today.
Share
Ukraine Action Summit meets in Washington, calls for return of abducted children, security guarantees
"We bring people together to learn... to educate themselves and to use their voices to speak to their elected officials to support Ukraine," Marianna Tretiak, Chair of the American Coalition for Ukraine (ACU) Board, told the Kyiv Independent.Volodymyr Ivanyshyn (The Kyiv Independent)
Giovedì 6 novembre torniamo con il Logout di TWC Roma, il ritrovo per tech workers che vogliono incontrarsi dopo lavoro: un'occasione per socializzare, conoscersi, parlare del nostro lavoro e come organizzarci nei prossimi mesi!
Ci vediamo giovedì 6 novembre, alle 18.30, da 568 Public House a Garbatella!
Unisciti al Gruppo telegram!
reshared this
Ken Thompson Recalls Unix's Rowdy, Lock-Picking Origins
Ken Thompson Recalls Unix's Rowdy, Lock-Picking Origins - The New Stack
Ken Thompson's vivid recollection of the rowdy roomful of geeks at Bell Labs who built the digital world in a spirit of open play.David Cassel (The New Stack)
copymyjalopy likes this.
La tua fallacia sul ciclismo è… “Dove vivo è troppo umido/secco/ventoso/caldo/freddo per andare in bicicletta”
La risposta
Se fa troppo freddo, o è troppo umido, o è troppo caldo per andare in bicicletta, allora è generalmente troppo freddo, o è troppo umido, o è troppo caldo per uscire. Quando le strade sono ben progettate, non si è più in balia delle intemperie quando si va in bicicletta di quanto lo si sia quando si cammina.
I Paesi Bassi e la Danimarca sono abitualmente caratterizzati da inverni molto freddi, ma una buona gestione delle condizioni, inclusa la rimozione della neve dalle principali piste ciclabili, garantisce che la bicicletta rimanga un mezzo di trasporto pratico per la maggior parte delle persone. Le persone continuano a camminare quando piove, fa freddo o fa caldo, e continuano anche ad andare in bicicletta. Le ricerche suggeriscono che nelle città con infrastrutture ciclabili di alta qualità, le persone continuano ad andare in bicicletta regolarmente anche in caso di maltempo. È solo nelle località con reti ciclabili scadenti o assenti che i livelli di ciclabilità diminuiscono in caso di maltempo.
Anche se in alcuni luoghi le condizioni sono talmente estreme che andare in bicicletta risulta davvero difficile, per la maggior parte dei luoghi questo non è vero e non giustifica in alcun modo la mancanza di un ambiente sicuro e piacevole per andare in bicicletta.
Cycling Fallacies - the weather isnt right
This article explain why the weather count or not when cyclingCycling Fallacies
reshared this
Jimmy Fallon adored his dog. His tribute to her speaks to all dog people everywhere
Jimmy Fallon adored his dog. His tribute to her speaks to all dog people everywhere
Jimmy Fallon wrote a heartbreaking post for his dead dog. All people who love their dogs share the same fear of loss.Paul McNamee (Big Issue)
[AVAILABLE] Freelance Developer – Python | Django | Node.js | Next.js | TypeScript | Automation | ML ‼️🚨‼️🚨
I’m currently seeking small freelance projects to build real-world experience.
I can work for free or at low cost depending on the scope.
If you need help with web apps, automation, or AI-based projects, PM me here on Reddit — happy to collaborate and grow together!
Check my profile: linkedin.com/in/orbin-sunny
github.com/orbin123
— Orbin>
orbin123 - Overview
Highly passionate about Artificial Intelligence and Machine Learning, seeking opportunities to contribute and grow. - orbin123GitHub
Man Alarmed to Discover His Smart Vacuum Was Broadcasting a Secret Map of His House
Man Alarmed to Discover His Smart Vacuum Was Broadcasting a Secret Map of His House
One man's robot vacuum was constantly communicating with its manufacturer, sending a detailed 3D map of his house halfway across the world.Joe Wilkins (Futurism)
like this
The People’s Answer to ICE: Crowdsourcing Community Defense
The People’s Answer to ICE: Crowdsourcing Community Defense
People Over Papers' site map offers a glimpse into the informal media people use to warn neighbors when systems of formal confirmation can't match the need.Simon Brown (Bay Area Current)
reshared this
The People’s Answer to ICE: Crowdsourcing Community Defense
The People’s Answer to ICE: Crowdsourcing Community Defense
People Over Papers' site map offers a glimpse into the informal media people use to warn neighbors when systems of formal confirmation can't match the need.Simon Brown (Bay Area Current)
copymyjalopy likes this.
reshared this
The People’s Answer to ICE: Crowdsourcing Community Defense
The People’s Answer to ICE: Crowdsourcing Community Defense
People Over Papers' site map offers a glimpse into the informal media people use to warn neighbors when systems of formal confirmation can't match the need.Simon Brown (Bay Area Current)
reshared this
The People’s Answer to ICE: Crowdsourcing Community Defense
The People’s Answer to ICE: Crowdsourcing Community Defense
People Over Papers' site map offers a glimpse into the informal media people use to warn neighbors when systems of formal confirmation can't match the need.Simon Brown (Bay Area Current)
reshared this
Le Comunità Energetiche Rinnovabili, cosa sono.
Per saperne di più, il sito del GSE dedica una sezione apposita.
gse.it/servizi-per-te/autocons…
Majden 🍉🎨🕊👠 reshared this.
Lawmakers float a nationwide basic income experiment that would cover the cost of a 2-bedroom apartment
Lawmakers propose nationwide monthly basic income experiment
It would be a tough sell in today's Congress, but if passed, the bill would launch a nationwide basic income experiment for low-income Americans.Lauren Edmonds (Business Insider)
like this
Halloween here in Italy pretty much exists just to make big corpos happy
A Systems Engineer’s Guide to Benchmarking with RDTSC
A Systems Engineer’s Guide to Benchmarking with RDTSC
A deep dive into rdtsc, instruction stream serialization, and memory fences for precise cycle-level performance measurement.Abhinav Upadhyay (Confessions of a Code Addict)
Sufjan Stevens - Carrie & Lowell (2015)
“I don’t know where to begin”. Difficile immaginare una confessione più disarmata, per uno che di mestiere fa il cantastorie. Scoprirsi così sopraffatti da aver perso le parole. Da aver paura persino di affrontare il silenzio... Leggi e ascolta...
Sufjan Stevens - Carrie & Lowell (2015)
“I don’t know where to begin”. Difficile immaginare una confessione più disarmata, per uno che di mestiere fa il cantastorie. Scoprirsi così sopraffatti da aver perso le parole. Da aver paura persino di affrontare il silenzio. Difficile immaginarlo soprattutto per uno come Sufjan l’eclettico, quello del giro dell’America in cinquanta album e delle lettere aperte a Miley Cyrus su Tumblr. Ma in “Carrie & Lowell” le cose sono diverse: “Questo non è il mio progetto artistico. Questa è la mia vita”. E il gioco dei trasformismi lascia il posto alla carne e al sangue dell’esperienza... artesuono.blogspot.com/2015/04…
Ascolta il disco: album.link/s/64xtjfsPHNHch0CZ7…
Home – Identità DigitaleSono su: Mastodon.uno - Pixelfed - Feddit
Sufjan Stevens - Carrie & Lowell (2015)
di Gabriele Benzing “I don’t know where to begin”. Difficile immaginare una confessione più disarmata, per uno che di mestiere fa il can...Silvano Bottaro (Blogger)
Look Out for These 8 Big Ag Greenwashing Terms at COP30
Food and farming companies will claim agriculture is the solution to the climate crisis at the Brazil summit — even though food drives a third of global warming.
Wild animals officially recognised as solutions to climate change
The decision follows mounting evidence that wild animals are not just passengers in climate discussions but are powerful actors. From elephants dispersing the seeds of carbon-dense trees, to whales enhancing oceanic carbon pumps, wild animals shape the health and carbon-storage capacity of ecosystems across land and sea.
Wild animals officially recognised as solutions to climate change - Oceanographic
The role of wild animals as enablers of natural solutions to climate change was recognised at the IUCN World Conservation Congress.Rob Hutchins (Oceanographic Magazine)
like this
L'ultimo libro di Giancarlo Pontiggia
Giancarlo Pontiggia su "La materia del contendere"
Ho il piacere di pubblicare alcune riflessioni di Giancarlo Pontiggia sul suo recentissimo " La materia del contendere ", edito da Garzan...nuovaprovincia.blogspot.com
Portland, OR.
I cannot believe the incredible sarcasm put forth by city services. I hope I managed to capture it in this photograph.
I mean, if there was barbed wire on top of an exclusionary plywood wall that said "compassion" in some movie somewhere, it would be rightly criticized as being heavy-handed.
Thanks for seeing my work.
RRF Sport. Calcio serie C. Salernitana Casertana 2 a 1
The striking Swedish workers taking on carmaker Tesla
The striking Swedish workers taking on carmaker Tesla
The industrial action against the company's operation in Sweden has reached its second anniversary.Tim Mansel (BBC News)
Scoperto il regista della rigenerazione degli arti negli axolotl - Biotech -
Scoperto il regista della rigenerazione degli arti - Biotech - Ansa.it
Identificato il 'regista' che guida la rigenerazione di interi arti nella salamandra messicana axolotl: è il sistema nervoso simpatico, lo stesso coinvolto nella reazione 'combatti o fuggi' (ANSA)Agenzia ANSA
La storia frammentata e il destino ignoto del tesoro che avrebbe restaurato la monarchia inglese - Il blog di Jacopo Ranieri
La storia frammentata e il destino ignoto del tesoro che avrebbe restaurato la monarchia inglese - Il blog di Jacopo Ranieri
Fin dagli albori dell’Era Moderna, l’invenzione del concetto di politica internazionale fu sfruttato dai monarchi del tempo per ampliare e consolidare la propria sfera d’influenza, sia tramite approcci diplomatici che altri, non propriamente traspare…Jacopo (Il blog di Jacopo Ranieri)
ICE Will Use AI to Surveil Social Media
ICE Will Use AI to Surveil Social Media
A Silicon Valley firm has contracted with Immigration and Customs Enforcement to build out a social media surveillance dragnet. Critics say that the AI-driven software will target immigrants for political speech.jacobin.com
Rozaŭtuno likes this.
Middle gray
I have just switched to Android - what are some good F-droid apps to install?
First off, I have already installed and am happy with (I don't need any suggestions for these):
- Fennec (browser)
- Heliboard (keyboard, it's awesome!)
- Aves (image gallery)
- AntennaPod (podcasts)
- DAVx^5^ + Etar (calendar)
- Fossify Calendar looks nice, but is less functional in my opinion (you can't see the full name of events in month view!)
- Joplin (notes)
- CalcYou (calculator)
- Breezy Weather
- CoMaps
- Thunderbird (email)
- Material Files (file manager)
- Chrono (alarms, timers, etc.)
- ConnectYou (contacts)
- Fossify Messages (SMS)
- also considering Quik SMS, does it have any advantages over Fossify?
- Moshidon (Mastodon)
- RSS feed reader (Feeder + CapyReader, one of the two probably, both are great)
- Image Toolbox
- My self-hosted stuff (Nextcloud and Immich)
- KeePassDX (password manager)
- Ente Auth (2FA)
I currently need:
- music player (Metro and Vanilla Music are both unmaintained, so those are out. I've also found Auxio, CuteMusic, Lotus, and Phocid as options. Are there any other good ones? I want local playback, not stuff using YT Music)
- Lemmy client (Jerboa crashes when trying to log in for some reason, I've heard Thunder might be good?)
- are there any other apps I should look at?
Another thing, is there a guide to what all the settings in Heliboard do? It's kind of overwhelming. One thing I have changed is the "bottom padding" to make the space bar a bit up, since I accidentally press "c" and "v" way too often when trying to hit space. Also, being able to enable the number row is pretty cool!
adhocfungus likes this.
The Yangtze River Is Becoming the World’s Largest Electrified Trade Corridor
Fun looking at China and seeing plans for the future, while here, it's nothing but grift for the foreseeable future.
Port electrification follows a predictable sequence. The first stage replaces diesel cranes, trucks, and yard equipment with electric systems. The second extends to tugs and harbor craft. The third, which is now underway in China, reaches inland and short-sea vessels. The fourth will see ports functioning as full energy hubs, feeding deep-sea hybrids and stabilizing regional grids. Every stage builds on the one before it. Once the ground vehicles and cranes switch to electric drive, high-capacity chargers and energy management systems are already in place. Those same assets can serve harbor craft and ships. Electrification propagates by infrastructure reuse.The Yangtze River has become a living demonstration of this process. It connects the interior manufacturing centers of Chongqing, Wuhan, and Yichang with the export hubs of Shanghai, Nanjing, and Ningbo. Along its length, the physical river has been matched by a set of electrical arteries. Two of them, the Changji–Guquan and Hami–Chongqing UHVDC transmission lines, deliver more than 30 TWh of renewable power each year from the deserts and plateaus of the west to the dense industrial east. Together they provide up to 8 GW of clean capacity directly into the Yangtze corridor. These ultra-high-voltage direct current lines are the spine of a new energy geography, making clean electrons available where cargo and industry already cluster. Without that grid backbone, even the most efficient electric ship would be an isolated experiment.
There's tremendous irony regarding one point ...
This is against a backdrop of radical change in shipping volumes. 40% of all tonnage is of fossil fuels and all are in structural decline. Another 15% is raw iron ore, also in structure decline. Population growth is slowing and the global population is expected to peak between 2050 and 2070. While container shipping will continue to grow, it won’t be growing nearly as fast as bulks decline.
The Yangtze River Is Becoming the World’s Largest Electrified Trade Corridor - CleanTechnica
The Yangtze corridor is emerging as the world’s largest clean-energy trade route, powered by HVDC, solar, and battery-electric vessels.Michael Barnard (CleanTechnica)
adhocfungus likes this.
Entrevista | Claudia Espinoza avalia o futuro político da Bolívia
- YouTube
Profitez des vidéos et de la musique que vous aimez, mettez en ligne des contenus originaux, et partagez-les avec vos amis, vos proches et le monde entier.www.youtube.com
ICE Will Use AI to Surveil Social Media
cross-posted from: lemmy.bestiver.se/post/700961
Comments
ICE Will Use AI to Surveil Social Media
A Silicon Valley firm has contracted with Immigration and Customs Enforcement to build out a social media surveillance dragnet. Critics say that the AI-driven software will target immigrants for political speech.jacobin.com
copymyjalopy likes this.
Best way to use Onedrive?
Before anyone says it, yes, I know it's shit, and that Microsoft are awful, but my wife needs Office, so I get a couple of accounts with 1TB of storage for free, so I may as well use it.
I've got my PC, my laptop, and a Synology DS216 (I think) NAS that I want to keep synced and backed up. I was using Onedrive on the PC to sync to their online storage, and using Syncthing to keep the laptop and Synology updated, but they just mirrored the PC. The PC was the only one that could write to the folder.
I want to keep the PC and laptop synced in both directions, and use the Synology and Onedrive as extra copies. I know it's not a proper backup, but it's better than nothing for the moment.
Would I be better off installing Onedrive, or Abraunegg's version, on the three systems and letting it sync, or putting Onedrive on the Synology and using Syncthing to keep the folders synced?
I'll have Onedrive on the Synology either way, and I'll be using Syncthing on all three to keep my music synced with my media server, so I'm mostly wondering whether people think it's better to let just the Synology sync to Onedrive, or to have a client on each device.
The three devices are pretty much always used in the same house, but very occasionally the laptop is taken out, almost always to somewhere with an internet connection.
Thanks 😀
GNOME has a built in OneDrive integration, and it works well from my experience, one of the reasons I decided to stay on this DE
It acts a an additional directory tho, I'm unsure about your use-case
la sorpresa malwarica della domenica (l’attacco alla supply chain di OpenVSX mi fa passare brutti minuti)
Dopo i vari complotti ai miei danni… e prima gli scherzi degli spiriti, e poi i malware autunnali che colpiscono il mio corpo, e pure tutte le cose pericolosamente problematiche per essere anche solo scritte… Oggi pomeriggio mi è arrivata un’altra sorpresa: i fottuti virus sul PC. (E no, non è perché sto continuando ad […]
octospacc.altervista.org/2025/…
la sorpresa malwarica della domenica (l’attacco alla supply chain di OpenVSX mi fa passare brutti minuti)
Dopo i vari complotti ai miei danni… e prima gli scherzi degli spiriti, e poi i malware autunnali che colpiscono il mio corpo, e pure tutte le cose pericolosamente problematiche per essere anche solo scritte… Oggi pomeriggio mi è arrivata un’altra sorpresa: i fottuti virus sul PC. (E no, non è perché sto continuando ad usare Windows 10 una decina di giorni dopo la data di fine vita… non c’è nessuna falla nel sistema operativo di mezzo, bensì, anche stavolta, solo i potery forty.) 😰
Ho semplicemente aperto VSCodium per fare la mia programmazione, perché sennò il fine settimana non sono contenta, lo sappiamo già… ed è arrivato un popup di Windows Defender, che si lamentava di un file JavaScript nella cartella di un’estensione installata dell’IDE. Purtroppo, cercandolo online, scopro che il merdone ha probabilmente ragione: il file è probabilmente infetto (non lo so con certezza, perché non volevo sbloccarlo col rischio che venisse eseguito, quindi l’ho fatto sparire)… perché, a quanto sembra, c’è stato di recente un attacco alla filiera (o “supply chain“, come piace dirlo agli altri) che ha colpito alcune estensioni VSCode… e zio cane. 😐I link interessanti sono su memos.octt.eu.org/m/GdeyW5UqDV…, e stavolta sono forse interessanti davvero, perché il malware, “GlassWorm“, è una cosa assurda, a livello tecnico… Usa la blockchain di Solana per salvare i riferimenti allo stage 2, probabilmente per essere indistruttibile, perché se qualcuno gli leva di mezzo il server di comando e controllo questi possono sempre aggiornare il payload sulla blockchain e avere tutto ancora funzionante, una roba da pazzi… e poi, il codice malevolo nascosto nei file JavaScript è codificato con caratteri Unicode che appaiono vuoti, ma ovviamente vengono decodificati in quello che serve, e bleah. Ma non è questo il punto… 🤥
In pratica, quello che è successo — e non capisco perché lo scopro solo ora, e non mi sia invece arrivata indirettamente la notizia pochi giorni fa — è che questo malware prende di mira le estensioni per VSCode — principalmente quelle ospitate su OpenVSX, ma si sa già di almeno una infetta anche sullo store di Microsoft — per replicarsi e diffondersi sui PC degli sviluppatori di software, e da lì fare cose brutte… Innanzitutto rubare i dati di varie estensioni browser di criptovalute (e vabbè che se tieni le criptovalute sul PC anziché sul telefono stai proprio chiedendo che ti vengano rubate), perché evidentemente questi stronzi non hanno fantasia… poi credenziali Git, NPM, OpenVSX, questa roba qui, appunto per spargere codice malevolo… e, si dice, installare varie schifezze persistenti. 😭
Non so se sia più ironico il fatto che non ho praticamente mai beccato malware sui PC in anni e anni di pirateria e cose particolari, eppure mi deve succedere oggi in un modo che non potevo ragionevolmente prevenire — anche perché io non installo estensioni troppo ad minchiam, nel possibile faccio attenzione, ma a volte tocca installare il pacchetto sfigato gestito da qualcuno a caso non malevolo, ma che suo malgrado si è fatto bucare — per il solo peccato di scrivere codice ed usare VSCodium per farlo… Oppure, se la cosa che veramente mi deve far incazzare è che le estensioni bucate sono per ora ancora una quindicina, eppure proprio una (1) è capitato che l’avessi, quindi che combinazione… Ma è tutto così fottutamente assurdo. 💥
Per fortuna, (anche se non so quanto devo davvero fidarmi di un simile risultato, e mi chiedo se forse non dovrei prendere provvedimenti più forti; ma se devo cambiare le password impazzisco, e idem se devo reinstallare il sistema, quindi spero di no…) da diverse scansioni complete, una con Defender ed una con Kaspersky, esclusi i file dell’estensione infetta che poi ho giustamente anche disinstallato da VSCodium, il PC risulta pulito; e, anche controllando a manina i servizi di Windows, le operazioni programmate all’avvio, e le chiavi di registro riportate negli articoli sopra, non ho trovato nulla di strano, così come non vedo richieste agli indirizzi IP noti di questo merdone attraverso WireShark. 🙄
Quindi… è possibile che Defender abbia bloccato il codice malevolo in un momento in cui si, l’IDE ha letto il file che lo conteneva, ma non effettivamente eseguito, perché questa estensione (
sissel.shopify-liquid@4.0.1) magari non era una di quelle che gira a vuoto, e io in cosa stavo lavorando oggi (e ieri) non avevo niente che causasse l’effettivo caricamento dell’estensione? Mi verrebbe da chiedermi perché minchia la rilevazione sia avvenuta solo oggi, visto che l’estensione è bucata da apparentemente una bella settimana, e quindi dovevo avere in teoria già minimo da ieri la versione schifosa, visto che VSCode maledetto aggiorna in automatico le estensioni senza dire niente… ma evidentemente Microsoft ha il culo comodo nell’aggiornare le definizioni. 😤Allora, in sostanza, spero vivamente che questo coglione marcio non sia riuscito ad installarmi sul computer RAT, HVNC, o proxy per i propri usi schifosi, altrimenti sono rogne… Se avete consigli, a parte l’idea di smettere di programmare software, vi ringrazio in anticipo; per ora ho disattivato l’aggiornamento automatico di tutte le estensioni, così, semmai qualcun’altra viene fottuta, io non lo sarò. Però, a parte gli scherzi, viviamo veramente in un mondo di merda se i malware non sono più “vinci la partita a carte se non vuoi che ti cancello il disco“, e invece sono “mi nascondo per fotterti”… e se per prenderli non serve fare nulla di incauto, ma basta appena esistere ed usare software scritto da altri!!! 😩
#GlassWorm #malware #OpenVSX #virus #VSCode
[MALWARE] Compromised VS Code extension
🚨 Security Alert: Malicious Version Detected on Open VSX Hi @panoply, My name is Ilyas Makari, and I’m a malware researcher at Aikido Security. I wanted to let you know that we’ve identified a comp...IlyasMakari (GitHub)
![💖💣, [26/10/2025 13:19]https://www.truesec.com/hub/blog/glassworm-self-propagating-vscode-extensionpotrei avere malware sul PC.💖💣, [26/10/2025 13:20]💖💣, [26/10/2025 13:20]💖💣, [26/10/2025 13:21]ma come cazzo si fa.💖💣, [26/10/2025 13:24]ora devo fare una scansione completa sperando di non trovare niente.](https://poliverso.org/photo/preview/1024/63293311 "💖💣, [26/10/2025 13:19]https://www.truesec.com/hub/blog/glassworm-self-propagating-vscode-extensionpotrei avere malware sul PC.💖💣, [26/10/2025 13:20]💖💣, [26/10/2025 13:20]💖💣, [26/10/2025 13:21]ma come cazzo si fa.💖💣, [26/10/2025 13:24]ora devo fare una scansione completa sperando di non trovare niente.")
Auster
in reply to Moonrise2473 • • •Depending on what you work on, maybe there's an alternative FOSS or at least paid DRM free software?
Or, if you work for a company and it demands this tool, maybe you could ask them to provide the software for you?
On a 3rd point, I've seen official softwares detect when they're being run in VMs or similar, so maybe that's what happened.
On a 4th point, if you must use a crack, maybe do so on a less usual Linux system, so if it's a functional one but packaged with virus, the virus breaks either because it runs under Wine or similar, or because the less usual system lacks some needed dependency for the virus if it can run on Linux as well?
sga
in reply to Auster • • •this is becoming more common afaik. why blow away your cover in a vm where you would not even get much (unless you are just a miner, but even then performance is worse), especially when checking if we are running in a vm is reaaly easy.
Auster
in reply to sga • • •RedSnt 👓♂️🧩 🧠 🖥️
in reply to Moonrise2473 • • •I literally just watched this video yesterday which, as you mention yourself, talks about how modern malware will add itself to the exclusion list aka whitelist.
~Anyway~ ~this~ ~is~ ~a~ ~good~ ~reason~ ~to~ ~try~ ~linux...~
- YouTube
youtu.belike this
Damage likes this.
weirdo_from_space
in reply to RedSnt 👓♂️🧩 🧠 🖥️ • • •like this
HarkMahlberg likes this.
RedSnt 👓♂️🧩 🧠 🖥️
in reply to weirdo_from_space • • •weirdo_from_space
in reply to RedSnt 👓♂️🧩 🧠 🖥️ • • •RedSnt 👓♂️🧩 🧠 🖥️
in reply to weirdo_from_space • • •Xubuntu Website Hacked to Spread Malware Via Downloads: What You Need to Know
Hot for SecurityNuXCOM_90Percent
in reply to weirdo_from_space • • •There are two layers to this (actually a lot more but)
What you are describing is mostly supply chain. It is the idea that the package manager's inventory should be safe. And that is already a nigh impossible task simply because so many of the packages themselves can be compromised. It seems like every other year there is a story of bad actors infiltrating a project either as an attack or as a "research paper". But the end result is you have core libraries that may be compromised.
But the other side is what impacted OP and will still be an issue even if said supply chain is somehow 100% vetted. People are inherently going to need things that aren't in a package manager. Sometimes that is for nefarious reasons and sometimes it is just because the project they are interested in isn't at the point where it is using a massive build farm to deploy everywhere. Maybe it involves running blind scripts as root (don't fucking do that... even though we all do at some point) and sometimes it involves questionable code.
And THAT is a very much unsolved problem no matter what distro. Because, historically, you would run an anti-virus scan on that. How many people even know what solutions there are for linux? And how many have even a single nice thing to say about the ones that do?
Shrouded0603
in reply to weirdo_from_space • • •weirdo_from_space
in reply to Shrouded0603 • • •It took over twenty years just for Linux to enter the conversation at the enthusiast level, it took a lot, and I do mean a lot, of enshittification on Microsoft's part and decades of campaigning by free software ideologues for us to get to this point, and if Windows still worked like Windows 7 we still wouldn't be anywhere close.
OpenBSD is super niche relative to FreeBSD, which is super niche relative to Linux. I don't even know if it was built for desktop use, or if it happens to be usable as one thanks to Linux DEs being compatible so long as they don't heavily depend on Linux specific stuff. Though I guess it can be a desktop OS in the most conservative sense of that term even without all that stuff.
fuckwit_mcbumcrumble
in reply to RedSnt 👓♂️🧩 🧠 🖥️ • • •RedSnt 👓♂️🧩 🧠 🖥️
in reply to fuckwit_mcbumcrumble • • •I guess in theory you're right. If you're executing code, you're executing code. But usually when executing EXE files it tends to target Windows machines, but yeah, there's no way of telling if it'll recognize it's in a linux environment and do it's thing there as well.
Especially because OP mentioned he just clicked "Yes"/"Allow" to all the super user prompts.
Now personally I don't run an Arch system and only install software from my distro + flatpak; So I feel pretty secure for now. But I can see that trend buckling as the AUR is already under attack.
cmnybo
in reply to RedSnt 👓♂️🧩 🧠 🖥️ • • •JustVik
in reply to cmnybo • • •NuXCOM_90Percent
in reply to Moonrise2473 • • •Just to pile on: NEVER pirate stuff you use for work. Audits are a thing (especially if said software company gets suspicious for whatever reason) and you WILL be thrown under the bus at a moment's notice and put on an industry wide shitlist because you are just too much of a liability after you get caught once.
Pirate for fun and hobbyist use. The moment you are getting paid, go legit.
like this
HeerlijkeDrop, HarkMahlberg, toothpaste_sandwich e Auster like this.
don't like this
Kilgore Trout doesn't like this.
Lka1988
in reply to NuXCOM_90Percent • • •Shrouded0603
in reply to NuXCOM_90Percent • • •NuXCOM_90Percent
in reply to Shrouded0603 • • •Let's say you are a graphics designer. You use Adobe Illustrator and you pirate it. You work for Innertrode either as a contractor or a full time employee. You make their new logo.
Adobe's legal team are bored. They see that new logo. They know it was made with Illustrator because of some of the visual quirks/tools (or, you know, because it is anything graphical so of course it uses Adobe). They know that Innertrode doesn't have a license. So they call up Lumberg and say "what the fuck?".
Lumberg then calls the person who was in charge of the new logo and they point at you.
If you are staff? You were given training not to pirate anything. It is all your fault. Innertrode buys a few years of a license and apologizes and fires your ass and makes sure to tell everyone they know about you. Or you are a contractor and you signed an agreement saying you had valid licenses for everything and they just give your contact info to Adobe and move on.
And Adobe MIGHT just want to shake you down. Or they might want to make an example and sue the fuck out of some people.
Also... it is a lot of hearsay for obvious reasons, but there are very strong rumors that some of the more prominent cracks tend to add digital watermarks for the purpose of automating this.
PacMan
in reply to NuXCOM_90Percent • • •Not quite but a possibility answer.
Lot of software gets embedded tracking software where it does a few things to see if it’s tampered with and reports back along with a lot of details. It’s kind of sweet how you can dig in and see where exactly where that computer lives and how it can triangulate exactly where it is even over a VPN.
I happened to work with this software at one point….. lot of companies actually don’t unless there is a business using the software or it’s super expensive think 10k+ per seat or you see a hot spot. Not worth the effort.
Other side of the coin I was a Desktop Eng many moons ago. We would do reporting on all of the systems in SCCM and what’s installed on them and compare to a know good list of applications every so often to minimize legal risk to the business.
Novaling
in reply to NuXCOM_90Percent • • •I know I sound dumb, and forgive me for not having work experience yet, but...
Why doesn't your company pay for any license they need for you to do work? Like I get if someone was a freelancer, then they're gonna have to pay for their own stuff, but like, a professional, in-house employee pays for their own license?
Am I missing context here?
like this
Kilgore Trout likes this.
NuXCOM_90Percent
in reply to Novaling • • •A lot of people in graphics design et al are contractors. They get hired for a job, do it with their own resources, and then move on. Those folk tend to need to provide their own software.
Aside from that? Companies DO provide software. But, at least in my experience, early career staff decide they actually NEED matlab or some other super proprietary nonsense and take it upon themselves to get the tools they "need". Which results in their manager having to have The Talk about why you don't do that in an actual company and how they are REALLY lucky you are the one that saw them because that is a fireable offense.
nutsack
in reply to NuXCOM_90Percent • • •like this
Kilgore Trout likes this.
Cevilia (she/they/…)
in reply to Moonrise2473 • • •Moonrise2473
in reply to Cevilia (she/they/…) • • •probably i would have ran it outside as the crack just silently "crashed" (while successfully dropped the malware as admin in the right spot, ready to be ran as admin at the next boot via the task scheduler) and i would have thought "maybe it doesn't run in a sandbox/vm".
But yes, in a hindsight, if i ran in sandboxie then i might have noticed that it had dropped suspiciously named files in common:startup with that nice file transfer GUI (unless if the malware detected sandboxie and did not run the malicious routines)
Cevilia (she/they/…)
in reply to Moonrise2473 • • •If it didn't run the malicious routines, problem solved 😀
Not a silver bullet, just something to remember exists.
frongt
in reply to Cevilia (she/they/…) • • •Cevilia (she/they/…)
in reply to frongt • • •sga
in reply to Cevilia (she/they/…) • • •Zorsith
in reply to frongt • • •HarkMahlberg
in reply to Moonrise2473 • • •like this
metaStatic likes this.
pop [he/him]
in reply to Moonrise2473 • • •If you work for someone, they should be providing the license for you.
If you're a freelancer, it should be part of the costs that you get back as you work. $60 for a perpetual license is honestly not that steep and shouldn't impact your prices much.
This is one of the main reasons I don't pirate anything but audio and video anymore (and even then I'm cautious). It's really not worth it.
like this
Damage, HarkMahlberg e Kilgore Trout like this.
shittydwarf
in reply to Moonrise2473 • • •like this
Damage, HarkMahlberg e metaStatic like this.
omgboom
in reply to Moonrise2473 • • •like this
HarkMahlberg e metaStatic like this.
nivellian
in reply to Moonrise2473 • • •octobob
in reply to nivellian • • •I've poked around on FMHY and most of the direct download sites are total garbage banner ads everywhere and popup galore with slow ass download speeds. Even the big public trackers like 1337x are whack in this regard. Yes obviously use an adblocker which takes care of that problem but if the ~average user goes at this blind they're gonna end up on some random ass sites from misclicks or get redirected or at best wait way too long for a download or it's in parts of an archive and they have to wait til tomorrow for another download etc etc.
Private trackers or bust, always and forever
SaharaMaleikuhm
in reply to Moonrise2473 • • •like this
metaStatic e Kilgore Trout like this.
TwistedTurtle
in reply to SaharaMaleikuhm • • •brax
in reply to Moonrise2473 • • •Did you configure the VM so that it didn't blatantly look like a VM? Of course malware is gonna act like a good boi when it detects that it's being run in a VM
f9h21n
in reply to brax • • •brax
in reply to f9h21n • • •Nice try malware dev 🤣
Really though, there's a bunch of stuff it can probe... Hard drive name, driver names, mac addresses, hardware profile/resource allotments).
Theresa a bunch of YouTube vids that go over virtual machine detections and hardening your VM to make it less obviously a VM.
nutsack
in reply to brax • • •brax
in reply to nutsack • • •elvis_depresley
in reply to Moonrise2473 • • •zaknenou
in reply to Moonrise2473 • • •a reminder that you do need an Antivirus in fact as a pirate. Oh People, stop listening to cybersec experts who spend their whole life using foss or buying legit software, they're in a different world from us pirates.
Also a reminder that it happens to the best of us anyway.
Hyperrealism
in reply to zaknenou • • •Alternative if you want to be hardcore: air gap the system you run questionable software on.
If you're bored, you can even try to infect it with as much shit as possible.
Doesn't work as a test system though. Stuff lies dormant waiting for network access.
pinkerman33
in reply to Moonrise2473 • • •