Trendy Toots reshared this.
εισαι η ελπίδα μας,
......πήδα μας
........πήδα μας
youtube.com/watch?v=pU1CTdX9Hr…
- YouTube
Profitez des vidéos et de la musique que vous aimez, mettez en ligne des contenus originaux, et partagez-les avec vos amis, vos proches et le monde entier.www.youtube.com
Il maschio alfa non esiste: nuovi studi sui primati dimostrano che non c’è un dominio maschile
https://www.repubblica.it/esteri/2025/07/10/news/mito_maschio_alfa_non_esiste_studi_primati-424722506/?utm_source=flipboard&utm_medium=activitypub
Pubblicato su Notizie dal mondo - la Repubblica @notizie-dal-mondo-la-repubblica-repubblica
Il maschio alfa non esiste: nuovi studi sui primati dimostrano che non c’è un dominio maschile
Nel 70% dei 253 casi analizzati le gerarchie sono invece “dinamiche, influenzate da strutture sociali e ambientali”la Repubblica
—> The Daily Show <-> TDS <—
Lauren Greenfield & Ronny Chieng,
the effects of social media on Teens
“Social Studies” & Coming of Age in a Social Media World
#TheDailyShow #TDS #JonStewart
#DailyShow #Comedy #Humour #Humor
#Pol #Politics #GeoPolitics
#AusPol #CdnPoli #EUpol #UKpol #USpol
youtu.be/Jr1GRRNl6qM
The image depicts a scene from a video game, set on a wooden deck with a rustic, medieval aesthetic. In the foreground, two characters are engaged in conversation. The character on the left has red hair, wears a green and white outfit, and carries a backpack. The character on the right has white hair, wears a green and blue outfit, and appears to be gesturing with their hands. The background features a wooden structure, possibly a cabin, with a mountainous landscape and greenery visible beyond the deck.
A dialogue box is prominently displayed on the right side of the image, with text in Chinese. The text reads: "莉莎·安博登" and provides context about the character's background and abilities. The dialogue box includes options to "Continue" the conversation.
The overall color palette is earthy, with browns, greens, and blues dominating the scene, contributing to the medieval ambiance. The lighting suggests it is daytime, with shadows cast on the deck, enhancing the three-dimensional feel of the environment.
Provided by @altbot, generated privately and locally using Ovis2-8B
🌱 Energy used: 0.326 Wh
like this
Jools reshared this.
North Korean troops appear to assemble at military parade rehearsal base | NK PRO
North Korean soldiers appear to have started assembling at a military parade training compound in Pyongyang, according to NK Pro analysis of satellite imagery, as evidence continues to mount of plans to hold a parade this October.NK PRO
Für die Öffentlichkeit sind diese Statistiken wichtig, wir berichten regelmäßig darüber: netzpolitik.org/tag/justizstat…
Schlagwort: Justizstatistik
Morgen tagt die Justizministerkonferenz, ein Vorschlag aus Hessen will die Berichtspflichten zur Telekommunikationsüberwachung verringern. Das könnte auch den als „Quellen-TKÜ“ verbrämten Staatstrojanereinsatz betreffen.netzpolitik.org
Plasmon verrà ricomprata da un'azienda italiana, dopo più di sessant'anni - Il Post
https://www.ilpost.it/2025/07/10/plasmon-kraft-heinz-newprincesgroup-acquisizione/?utm_source=flipboard&utm_medium=activitypub
Pubblicato su News @news-ilPost
reshared this
Istat, sempre più incertezza, prospettive mondiali negative - Ultima ora - Ansa.it
https://www.ansa.it/sito/notizie/topnews/2025/07/10/istat-sempre-piu-incertezza-prospettive-mondiali-negative_efd98233-fa3f-4929-978f-63c5e7e4ca83.html?utm_source=flipboard&utm_medium=activitypub
Pubblicato su ANSA Ultima ora @ansa-ultima-ora-AgenziaAnsa
Istat, sempre più incertezza, prospettive mondiali negative - Ultima ora - Ansa.it
"L'incertezza associata al quadro internazionale è in ulteriore aumento. Agli annunci sulla politica commerciale Usa, soggetti a frequenti aggiornamenti, si somma l'escalation delle tensioni geopolitiche in Medio Oriente. (ANSA)Agenzia ANSA
The Texas Flash Flood Is a Preview of the Chaos to Come
This article first appeared at ProPublica, a Pulitzer Prize-winning investigative newsroom. Sign up for The Big Story newsletter to receive...
talkingpointsmemo.com/cafe/tex…
The Texas Flash Flood Is a Preview of the Chaos to Come
This article first appeared at ProPublica, a Pulitzer Prize-winning investigative newsroom. Sign up for The Big Story newsletter to receive stories like this…Abrahm Lustgarten (TPM - Talking Points Memo)
Bonelli: Netanyahu propone Trump per il Nobel per la pace? Un film horror che racconta il tempo che viviamo - Alleanza Verdi e Sinistra - Reti civiche
“Un criminale di guerra come Netanyahu propone per il Nobel per la pace un estorsore come Trump, noto per aver imposto dazi punitivi e per aver messo le manette ai bambini figli dei migranti.La Redazione (Alleanza Verdi e Sinistra - Reti civiche)
The South Caucasus is slipping from Russia’s grasp
https://www.aljazeera.com/opinions/2025/7/10/the-south-caucasus-is-slipping-from-russias-grasp?utm_source=flipboard&utm_medium=activitypub
Posted into Opinion @opinion-AlJazeera
The South Caucasus is slipping from Russia’s grasp
Azerbaijan’s response to a Russian raid that victimised its citizens signals a regional revolt against Kremlin control.Rustam Taghizade (Al Jazeera)
La versione 4.4 di Mastodon ha introdotto alcune interessanti novità dell'interfaccia web
L'interfaccia si ispira alle app native, con una barra degli strumenti più accessibile e posizionata in basso per liberare più spazio per la visualizzazione dei contenuti.
Poliverso - notizie dal Fediverso ⁂ likes this.
reshared this
Per creare un nuovo messaggio è ora sufficiente fare clic sul "+" che si trova al centro della barra inferiore.
La voce "Esplora" poi è stata rinominata Tendenze, per ridurre la necessità di banner all'interno della pagina Esplora per spiegare ogni feed.
Poliverso - notizie dal Fediverso ⁂ likes this.
reshared this
Infine la barra laterale di navigazione è divisa in tre sezioni.
1) In alto si trova una sezione per le aree di navigazione principali, che rispecchia la barra di navigazione inferiore sugli schermi più piccoli.
2) Segue una sezione "Libreria", che contiene i tuoi contenuti curati - segnalibri, preferiti ed elenchi - e i tuoi hashtag seguiti, ora in una posizione più visibile (in risposta al feedback della community).
3)Infine, altri elementi si trovano nell'ultima sezione.
Poliverso - notizie dal Fediverso ⁂ likes this.
reshared this
Report links Israel's Mossad to 2020 assassination of top Iranian nuclear scientist
https://www.euronews.com/2025/07/10/report-links-israels-mossad-to-2020-assassination-of-top-iranian-nuclear-scientist?utm_source=flipboard&utm_medium=activitypub
Posted into World News @world-news-euronews
Report links Israel's Mossad to 2020 assassination of top Iranian nuclear scientist
New details reveal that the assassination of Iranian nuclear scientist Mohsen Fakhrizadeh was carried out with a remote-controlled automatic weapon.Euronews.com
Proletarian Rage reshared this.
Australian government wanting to make a condition of funding the teaching of a specific religion in schools? Is that a violation of our constitutional separation of church and state? abc.net.au/news/2025-07-10/ant…
ABC News
ABC News provides the latest news and headlines in Australia and around the world.Jake Evans (Australian Broadcasting Corporation)
alternativeto.net/news/2025/7/…
The image shows two devices, a tablet and a smartphone, side by side against a light yellow background. The tablet on the left displays a web browser with a reading list open, featuring articles such as "Summer dinner recipes - BBC Food," "35 Best Summer Cocktails for 2025," and "23 Best Things To Do In Ciao In Summer (2020) - Travel to Norway." The webpage is from bbc.co.uk, and the time is 16:30 on June 30th.
The smartphone on the right shows a web browser with the MONOCLE website open. The page features a large image of a building with yellow accents and a caption that reads "Mellow yellow: Les Roches Rouges (Image: Benoit Linero)." The MONOCLE website is categorized under "AFFAIRS," "BUSINESS," "CULTURE," "DESIGN," and "FASHION." The time on the smartphone is 16:04.
Provided by @altbot, generated privately and locally using Ovis2-8B
🌱 Energy used: 0.207 Wh
Hot-footed thief steals dozens of right boots from Brisbane boutique
Hot-footed thief steals dozens of right boots from Brisbane boutique
The owner has urged the thief to return the right-footed boots, no questions asked.SBS News
A spiral in stone - the fossilized remains of a Goniatite shell. Ancient relatives of Squid and Octopus that lived in the tropical sea that covered this area over 300 million years ago.
County Clare, Ireland.
Cormacscoast.com walking tours
#wildatlanticway #walkingtours #discoverireland #keepdiscovering #fossil #irishfossils #goniatite #burrenandcliffsofmohergeopark #atlanticgeoparks #Ireland
Già finito il mini ciclo di ricostituzione delle scorte?
Produzione industriale italiana in calo ad aprile, crolla l’auto ilsole24ore.com/art/istat-magg…
Torna in rosso l’industria: a maggio -0,7% mensile e -0,9% annuo
Resistono solo metallurgia ed elettronica. In calo gli altri comparti, male farmaci e mezzi di trasporto. Nel 2025 media giù dell’1,2%Luca Orlando (Il Sole 24 ORE)
Aujourd'hui, grâce au travail de nombreuses personnes (notamment bénévoles !), une large panoplie d'alternatives numériques émancipatrices existe !
Cependant, pour que la société de contribution s'empare de ces outils, il nous faut l'accompagner.
C'est dans ce but que nous avons crée, avec Animafac, Emancip'Asso !
Plus d'infos sur emancipasso.org/ !
Emancip'Asso - Nous accompagnons les associations vers un numérique plus éthique
En savoir plus Nous sommes persuadé·es que les associations et l’écosystème du numérique éthique ont en commun les mêmes valeurs. En créant un répertoire et une…Emancip'Asso
reshared this
des conseils sur comment pousser une asso à sortir de ces merdes là ?
Genre dénonciation à la CNIL pour non respect de la RGPD à cause d'un groupe WhatsApp qui leak tous les numéros de téléphone des membres ?
Ou juste des ressources RGPD orienté assos, ou des exemples bien sentis de harcèlement qui auraient conduit une asso dans le gouffre ?
Mes appels à passer sur Signal à la place de whatsapp n'ont pas beaucoup d'effet 😡
"The number of people who have lost their lives on Western Australia's roads has reached a grim height not seen in at least a decade — and authorities appear perplexed on what more they can proactively do to prevent more tragedy."
abc.net.au/news/2025-07-08/par…
ABC News
ABC News provides the latest news and headlines in Australia and around the world.Mya Kordic (Australian Broadcasting Corporation)
Veränderung erfordert Mut – auch den Mut zur Transparenz.
Wir fordern daher dazu auf, den #Digitalausschuss grundsätzlich öffentlich tagen zu lassen.
Die aktuelle Planung der Ausschüsse für Digitales und viele andere sieht vor, Ausschüsse wieder grundsätzlich im Geheimen tagen zu lassen. Das ist in dieser Zeit der Vertrauensbildung in politische Prozesse nicht zuträglich.
Daher haben einige viele zivilgesellschaftliche Organisationen einen offenen Brief angestimmt… ccc.de/system/uploads/369/orig…
reshared this
We received a mailer from "NW Coalition for Energy Choices"- a gas industry group fighting against limits on new natural gas installs and such. (As a reminder, these limits *must* pass as part of any hope of slowing climate change.)
It has a Freedom Foundation kind of feel to it. Genteel. Less crass than Heywood's garbage mailers. Clip art with brown and white women in professional attire and serious expressions. Nice work.
Watch out. They're coming.
2025 Astronomy Photographer of the Year Finalist Photos
"Blood Moon Rising Behind the City Skyscrapers" by Tianyao Yang
RT @ednewtonrex
More evidence today that the UK government values American AI companies more highly than the rights of British creators.
A month ago, the UK government refused to make AI companies like Google reveal the copyrighted work they train their products on. Today, it announced a partnership that will see Google train government employees to use those very products.
Google trains its AI models on British creators' work without permission. Why is the government working with Google to accelerate its own adoption of these models?
If the government were serious about regulating AI companies, it would not be making those companies' products an ever more integral part of its own systems.
The government should be clamping down on copyright infringement by AI companies, rather than legitimising it in this way.
gov.uk/government/news/new-goo…
New Google partnership will help rid taxpayer of ‘ball and chain’ legacy tech and aim to upskill 100,000 civil servants in tech and AI
New partnership with Google Cloud will help modernise outdated government IT, upskill 100,000 civil servants in digital and AI by 2030, and secure better tech deals for the taxpayer.Department for Science, Innovation and Technology (GOV.UK)
Proletarian Rage reshared this.
Bahn-Generalsanierung verzögert sich weiter
Die marode Infrastruktur gilt als Hauptgrund für unpünktliche Züge, die Bahn will wichtige Strecken deshalb grundlegend sanieren. Auf 2035 wurde der Abschluss der Arbeiten kürzlich verschoben - nun gibt es wieder einen neuen Zeitplan.
这张图片展示了一个录音室场景,两个人正在进行录音或直播。左侧的人戴着一顶黑色帽子,帽子上有“#NY#”的字样,穿着印有“FRONT”字样的白色T恤,佩戴着银色项链和手链,正在使用麦克风。右侧的人戴着黑色耳机,与左侧的人握手,似乎在进行互动。背景中有一个发光的霓虹灯标志,上面写着“Cool”和一个麦克风图案,营造出一种现代和专业的氛围。
由 @altbot 提供,使用 Ovis2-8B 在本地私密生成
🌱 能源消耗:0.123 瓦时
Submerged
Shot on 35mm Fomapan 400, developed in Rodinal.
#35mm #analoguephotography #filmphotography #35mmfilm #blackandwhite #grainisgood #believeinfilm #monochrome #fomapan
Slow approval processes can frustrate both employees and customers. 😒
Use #NextcloudFlow for #WorkflowAutomation without giving up #DataControl.
✅ Parse emails
✅ Approve docs
✅ Notify teams
And more!
👉 Discover more: nextcloud.com/blog/how-to-auto…
How to automate business processes with Nextcloud Flow? - Nextcloud
Find out how to automate business processes at work with our powerful open source automation tool: Nextcloud Flow, your workflow assistant.Katrin Goethals (Nextcloud)
reshared this
You’ve done your shift, paid your tax, and kept the country running.
The billionaires? They want out—and still expect to profit off Britain.
Let’s stop pretending they’re the backbone of the economy.
voxpoliticalonline.com/?p=9892…
#WealthTax #TaxTheRich #UKPolitics #Labour #Billionaires
Will a wealth tax actually improve the UK’s prosperity?
Billionaires threaten to leave if taxed more. Good. Why keep rewarding the rich for abandoning society? But: close the door behind them.Mike Sivier (Vox Political)
Thatcher and Blair were the ones responsible for selling the country to billionaires so that the billionaires could rent it back to us.
In essence that's all Thatcherism was.
barrys not henryu reshared this.
well
Tory Tony Bliar was called son of thatcher and his man Muppet Keith expressed his love of snatcher!
But she's still dead and hated!
(where is she buried?)
#filmphotography #blackandwhite #composition #streetphotography
Dear people of TikTok: I, the editor of The Skeptic, am obviously not a flat earther
Millions of TikTokers viewed claims that all pilots know the earth is flat... except, I'm the person in the videos, and that's not what I said
Due menu creativi e originali per cene tematiche, combinano ingredienti inusuali e sapori audaci, offrendo piatti come sushi-arancini e filetto di maiale al caffè. Una vera esperienza culinaria!
SEMPRE PIÙ MISERIA!
SEMPRE PIÙ GALERA!
Ecco il programma che hanno i governanti per la maggior parte di noi in una società permanentemente in guerra e in cui lo Stato ha ormai esaurito ogni margine di mediazione.
L' ex DDL 1660 (ora legge 1660) prevede la repressione più dura per ogni forma di dissenso.
Nonostante ciò le rivolte nelle carceri proseguono: soltanto nelle ultime settimane a Genova, Terni e Spoleto e in ogni CPR ce ne sono state numerose.
Lottare contro questo sistema è sempre più necessario.
LA SOLIDARIETÀ È UN ARMA, USIAMOLA!
Ore 18:00
Presidio con microfono aperto sotto al carcere Don Bosco in solidarietà a tutti i prigionieri e prigioniere.
Ore 21:00
Cena e riffa benefit per i 15 anni del Garage anarchico in piazza San Martino.
SEMPRE PIÙ MISERIA!
SEMPRE PIÙ GALERA!
Ecco il programma che hanno i governanti per la maggior parte di noi in una società permanentemente in guerra e in cui lo Stato ha ormai esaurito ogni margine di mediazione.
L' ex DDL 1660 (ora legge 1660) prevede la repressione più dura per ogni forma di dissenso.
Nonostante ciò le rivolte nelle carceri proseguono: soltanto nelle ultime settimane a Genova, Terni e Spoleto e in ogni CPR ce ne sono state numerose.
Lottare contro questo sistema è sempre più necessario.
LA SOLIDARIETÀ È UN ARMA, USIAMOLA!
Ore 18:00
Presidio con microfono aperto sotto al carcere Don Bosco in solidarietà a tutti i prigionieri e prigioniere.
Ore 21:00
Cena e riffa benefit per i 15 anni del Garage anarchico in piazza San Martino.
Dear people of TikTok: I, the editor of The Skeptic, am obviously not a flat earther
Millions of TikTokers viewed claims that all pilots know the earth is flat... except, I'm the person in the videos, and that's not what I said
skeptic.org.uk/2025/07/dear-pe…
📱m.emsc.eu/#app
🌐m.emsc.eu
🖥emsc-csem.org
⚠ Automatic crowdsourced detection, not seismically verified yet. More info soon!
[:en]Real time earthquake alerts on your smartphone with Earthquake Network[:es]Real time earthquake alerts on smartphone with Earthquake Network[:]
{:en}Earthquake Network is a research project which develops a crowdsourced Earthquake Early Warning system based on smartphones for real time earthquake alerts{:es}Real time earthquake alerts on smartphone thanks to the Earthquake Network project wh…Earthquake Network
📱m.emsc.eu/#app
🌐m.emsc.eu/?id=1830444
🖥emsc-csem.org/Earthquake_infor…
Earthquake= Magnitude 4.9 - TARAPACA, CHILE - 2025-07-10 09:26:06.4 UTC
Earthquake information= Magnitude: 4.9, Region: TARAPACA, CHILE, Date time: 2025-07-10 09:26:06.4 UTC, Location: -19.0254 ; -69.3825, Depth: 111 km.EMSC - European-Mediterranean Seismological Centre
🌐m.emsc.eu/?id=1830444
🖥emsc-csem.org/Earthquake_infor…
Telegram t.me/lastquake_bot
📱m.emsc.eu/#app
Google launches its AI-powered ad tools in India; the country repealing its so-called "Google Tax" boosts its appeal to global tech companies selling online ads (Jagmeet Singh/TechCrunch)
techcrunch.com/2025/07/09/goog…
techmeme.com/250710/p13#a25071…
Google brings its AI-powered marketing tools to India after 'Google tax' repeal | TechCrunch
Google has launched a suite of its AI-powered advertising tools in India, which debuted in the U.S. in May, as the repeal of the so-called "Google tax"Jagmeet Singh (TechCrunch)
The Google Play App review team has their own accounts. The Developer Console let's me enter test credentials. Sometimes they use those sometimes they just create new accounts. Depends on the individual reviewer.
The Play version doesn't have channel search. The only reason a reviewer would join a channel is that they explicitly entered the address or used an external search engine.
The last app review got rejected because the app hosts terrorist content.
How do browsers ever pass the test?
reshared this
More than 60 scientists issue dire warning that the Earth is careening toward catastrophe: 'Things are all moving in the wrong direction'
yahoo.com/news/more-60-scienti…
"We're seeing some unprecedented changes, and we're also seeing the heating of the Earth and sea-level rise accelerating as well.“
#ClimateCatastrophe #Consequences #Scientists #Warning #Carbon #Pollution #GHG #Unchecked #Accelerating #Threshold #ProfitMotive #Life #Suffering #Society #Poor #Change #ActNow #DirectAction
reshared this
Was Landwirte von Europas Agrarpolitik erwarten
Wie geht es weiter mit der EU-Agrarpolitik bis zum Jahr 2034? Bald will Brüssel dazu Vorschläge präsentieren. Landwirte hoffen auf mehr Geld für regionale Qualität, Klima- oder Artenschutz. Von Andreas König.
L’immigrato scappato in aeroporto e altre storie. Da Aosta a Palermo, una settimana in Italia raccontata da Alessandro Gilioli.
L’immigrato scappato in aeropo...
L’immigrato scappato in aeroporto e altre storie
Da Aosta a Palermo, una settimana in Italia raccontata da Alessandro Gilioli. LeggiAlessandro Gilioli (Internazionale)
I'm not a "foodie". I like eating as much as the average mammal. But unlike most, I'm not on the brink of starvation, so eating is not a major focus of my life. So I'd never sail to a remote isle in the Inner Hebrides just to eat at a fancy restaurant like Café Canna. But the idea of sailing to a remote island *does* intrigue me - and I like the perverse idea of a restaurant that's really hard to reach.
It's probably enough to just read about it while I stay home and eat a banana for breakfast:
"The next morning we left the shelter of the bay and forged into a far less hospitable ocean – not quite bad tempered, but not far off. “Lumpy,” said Watson, who never seemed to run out of words to describe the sea: pitchy, squally, swirly. Passing the moleskin-grey volcanic peaks of Rum, one of the Small Isles, on our starboard side, the boat lolloped towards another, Canna, where we went ashore and hiked to its eastern tip to watch puffins before looping back to the bay for a beer at Café Canna, a tiny, remote restaurant that draws sailors from across the archipelago."
That's Alexander Barlow from his decadent tale of sailing the Inner Hebrides, eating and drinking:
cntraveller.com/article/sailin…
Here is Café Canna's website:
Even better may be the most remote pub in the mainland of Scotland, or for that matter the UK. Read on, my friend....
(1/2)
The silent, understated charm of the Inner Hebrides
Alexander Barlow on his sailing trip through Scotland's Inner Hebrides, from spotting sea animals to visiting Britain's most remote pubAlexander Barlow (Condé Nast Traveller)
The ‘China threat’ as ‘basis’ for Ontario’s attack on democratic rights
Editor’s note: The Canada Files is the country's only news outlet focused on Canadian foreign policy. We've provided critical investigations & hard-hitting analysis on Canadian foreign policy since 2019, and need your support.Aidan Jonah (The Canada Files)
Vulnerabilità critiche in Veeam Backup! Un rischio di compromissione totale dei sistemi
Una vulnerabilità estremamente grave è stata recentemente scoperta in Veeam Backup & Replication, una delle soluzioni di backup più utilizzate in ambienti enterprise e non.. Se sfruttata, consente a un utente autenticato su Active Directory di eseguire codice arbitrario da remoto con privilegi SYSTEM, mettendo potenzialmente a rischio l’intera infrastruttura IT.
La vulnerabilità è tracciata come CVE-2025-23121, ha ricevuto un punteggio CVSS 9.9 (quasi massimo) ed è stata emessa diverso tempo fa, la quale colpisce tutte le versioni precedenti alla 12.3.1. Tale vulnerabilità è stata risolta con la versione 12.3.2, rilasciata da Veeam ma ancora molti apparati risultano privi di patch esponendoli a potenziali compromissioni.
Dettagli tecnici della vulnerabilità (CVE-2025-23121)
- Componente vulnerabile: backend RPC/API interne di Veeam
- Condizione necessaria: autenticazione su Active Directory con un account standard di dominio
- Vettore di attacco: invio di richieste appositamente costruite ai servizi interni di Veeam, sfruttando autorizzazioni mal configurate (es. tramite pipe nominate, API locali, gRPC)
- Impatto potenziale: Esecuzione di comandi arbitrari con privilegi SYSTEM, manipolazione dei job di backup, accesso non autorizzato a repository e snapshot, movimentazione laterale in ambienti AD
Scoperta e contesto
La vulnerabilità è stata identificata dai ricercatori di CodeWhite e watchTowr, già noti per le loro analisi avanzate sui prodotti enterprise. Secondo il report, il bug è strettamente collegato — o addirittura derivato — da una falla precedente, la CVE-2025-23120, chiusa a marzo 2025 ma aggirabile da un attaccante esperto.
Sebbene al momento non esistano PoC pubblici, la probabilità di un exploit in-the-wild è concreta. Le vulnerabilità Veeam sono storicamente molto ambite, come dimostrato dalla CVE-2023-27532, poi inclusa in tool offensivi privati usati da gruppi ransomware.
Altre vulnerabilità risolte nella versione 12.3.2
CVE-2025-23120 — Privilege Escalation da Backup Operator (CVSS 6.1)
Consente a un utente con ruolo “Backup Operator” di modificare job esistenti, impostare script post-job o destinazioni alterate, inducendo il server a eseguire codice arbitrario con privilegi elevati.
Scenario d’attacco:
1. L’attaccante crea o modifica un job inserendo un payload.
2. Il job viene eseguito da un servizio Veeam che gira come SYSTEM.
3. Il codice viene eseguito con privilegi amministrativi → escalation locale.
CVE-2025-2428 — Scrittura arbitraria su directory Veeam
A causa di permessi NTFS errati, un utente locale non admin può scrivere su directory monitorate da processi elevati, abilitando tecniche come DLL hijacking.
Tecnica sfruttabile:
– Un attaccante piazza una DLL malevola in una directory Veeam.
– Il processo SYSTEM carica la DLL all’avvio.
– L’attaccante ottiene esecuzione privilegiata e persistenza.
Implicazioni per la sicurezza aziendale
I server Veeam rappresentano obiettivi ad alto valore per gli attaccanti, poiché:
– Operano con privilegi SYSTEM
– Accedono a volumi di rete, NAS, repository cloud e host VM
– Gestiscono credenziali critiche per workload e backup
– Sono fondamentali nei piani di continuità operativa
Una compromissione di Veeam può:
– Rendere invisibile l’attacco usando snapshot o backup alterati
– Distruggere copie di backup o disattivarne l’esecuzione
– Abilitare ransomware su larga scala
– Consentire persistence anche dopo la rimozione del malware
Raccomandazioni operative
Aggiornamento urgente
– Installare Veeam Backup & Replication 12.3.2 su tutti i server e agent
– Testare l’update in ambiente di staging prima della distribuzione in produzione
Controllo degli accessi
– Rivedere i ruoli assegnati (in particolare “Backup Operator”)
– Limitare l’accesso al server Veeam a utenti e amministratori autorizzati
– Rimuovere o disabilitare account inutilizzati o obsoleti
Audit e hardening
– Analizzare i permessi NTFS delle directory Veeam
– Isolare il server backup in una VLAN dedicata
– Monitorare le richieste RPC e i processi Veeam con strumenti EDR
Protezione dei backup
– Verificare che esistano copie replicate offsite o in cloud
– Usare repository con WORM (Write Once Read Many)
– Validare che le credenziali nei job siano aggiornate e cifrate
Conclusioni
La CVE-2025-23121 rappresenta una minaccia critica per qualsiasi organizzazione che utilizzi Veeam in produzione. La sua combinazione di RCE, escalation e accesso privilegiato ai dati la rende un vettore ideale per attacchi mirati, ransomware e compromissioni su larga scala. L’aggiornamento a Veeam 12.3.2 è pertanto urgente e deve essere affiancato da una revisione completa della postura di sicurezza legata al backup.
L'articolo Vulnerabilità critiche in Veeam Backup! Un rischio di compromissione totale dei sistemi proviene da il blog della sicurezza informatica.
厳密には最初に刺さったのはこちらの曲の方です。声も歌い方も良い意味で引っかかりのある癖があり、良いです。
サカキナオ - 来世 (Official Music Video) youtu.be/fqHuQHjlm94?si=svoBA8…
Ja, es gibt einen Klimawandel – das wissen alle. Aber dass sich dieser Klimawandel gerade beschleunigt und die Experten nicht genau wissen, warum?
Das wissen viel zu wenige.
Sieben Grafiken, die zeigen, dass ein besonderer klimatischer Moment begonnen hat. 🧵
Lord Caramac the Clueless, KSC reshared this.
Wenn sich der Trend hin zu immer wärmeren Meeren nicht dreht, sind wir die Generation, die das fantastische, prächtige Great Barrier Reef auf dem Gewissen hat.
(Und all die anderen Riffe, die die Menschheit ernähren, begeistern und schützen.)
Aber diese krassen Klimajahre beschleunigen auch Trends, die noch viel weitreichendere Folgen haben könnten:
* Die Antarktis schmilzt
* eine sehr wichtige atlantische Meeresströmung schwächt sich ab.
Auf dieser Grafik siehst du, wie weit sich die antarktische Eisbildung jedes Jahr vom gemittelten Schnitt entfernt.
Hier wird also gemessen, ob die Antarktis gerade ein besonders eisreiches oder eisarmes Jahr im Vergleich zu den Vorjahren erlebt.
Wir sind knapp 10% unter dem Schnitt. Die Antarktis verliert Eis.
Daran denken: Wir reden hier über einen ganzen Kontinent!
Besonders gefährdet ist der sogenannte westantarktische Eisschild. Der schmilzt im hohen Tempo, wie diese Grafik der NASA zeigt. Je röter und dunkler eine Fläche, desto mehr Eis hat sie in den vergangenen 20 Jahren verloren.
Und die Westantarktis ist fast schwarz
Das Problem daran: An der Antarktis beginnen mächtige Meeresströmungen, die das Wetter und das Ökosystem der gesamten Südhalbkugel prägen.
Verändern sich diese Strömungen, sind davon die Nahrungsketten von einer Milliarde Menschen direkt betroffen.
Würde das komplette westantantarktische Eis abtauen – wonach es gerade aussieht (wann, nicht ob) – würde das den Meeresspiegel um mehrere Meter heben.
Hamburg stünde unter Wasser, genauso wie Shanghai, Miami, Singapur, Hongkong, Lagos, und Jakarta.
Es ist noch nicht angekommen bei allen: Aus dem Was-Wäre-Wenn-Katastrophen-Szenario des Klimawandels wird langsam Realität.
Die krassen letzten Klimajahre haben die Wahrscheinlichkeiten noch weiter zu unseren Ungunsten verschoben.
Die Zeit läuft ab.
Und wir wissen nun auch mit größerer Gewissheit, dass der für uns Europäer überlebenswichtige Nordatlantikstrom/Golfstrom immer schwächer wird.
Neue Forschung konnte dieses Szenario erhärten.
Die Ozeane sind warm, aber der Nordatlantik ist ein Problem für sich. Wieder ist orange das Jahr 2024 und rotdas aktuelle Jahr.
Der Nordatlantik hat sich eindeutig aus seinem historischen Gleichgewicht gelöst.
Wenn der Golfstrom versiegt, wäre das das Ende Europas, wie wir es kennen.
Noch einmal: Das ist kein Hirngespinst. Wer das liest und junge Kinder hat und auf Enkel hofft – deine Enkel könnten es erleben. Wir wissen es einfach nicht.
Aber sollen wir es riskieren?
Nur eine Sache noch, ein letzter Chart. Der vielleicht, je nach Sichtweise, etwas Hoffnung gibt.
Der Temperaturanstieg, den wir gerade erleben, befindet sich noch im Rahmen dessen, was die gängigsten Klimamodelle hervorgesagt haben.
fyi, ich verfolge die Klimawissenschaft aktiv und fasse für dich immer wieder wichtige Erkenntnise in meinem Newsletter zusammen. Ich zeige dir auch, wie die Politik reagiert
Hier kannst du den NL abonnieren: krautreporter.de/9-rico-grimm
'BANG' von Rico Grimm
Ein Newsletter über Politik, Wirtschaft und Klima in wilden Zeiten. Ich zeige dir Zusammenhänge, die sonst untergehen. Circa alle zwei Wochen kommt eine neue Ausgabe.Krautreporter
krautreporter.de/klimakrise-un…
Was gerade mit dem Klima passiert, überrascht selbst Experten
Es ist möglich, dass das Klimasystem endgültig aus den Fugen geraten ist. Das zeigen diese sieben Grafiken.Krautreporter
Wenn du vom SMOC redest, dann hat sich die Strömung nicht abgeschwächt, sondern komplett umgekehrt und treibt jetzt das Abschmelzen des Meereises um die Antarktis mit an.
EDIT: Ok, der SMOC hat sich doch noch nicht komplett umgekehrt, aber der Salztransport im Südpolarmeer ist völlig aus den Fugen, und das sieht alles gar nicht gut aus. Das Meereseis rund um den Südpol scheint gekippt zu sein, das um den Nordpol ist schon Ende der Nulljahre gekippt. Das bedeutet, die Polarmeere werden in absehbarer Zeit im jeweiligen Sommer eisfrei sein, was die Erwärmung der Pole beschleunigt.
Seconda ristampa della settimana: torna nuovamente disponibile "Contro la cultura di massa" di Christopher Lasch.
La straordinaria lucidità di Lasch deriva dalla sua capacità di mettere insieme un'assoluta impermeabilità ai miti modernisti e un'indiscussa adesione al punto di vista della gente semplice, ovvero di coloro che per forza di cose hanno l'abitudine di decifrare la società osservandola dall'unica prospettiva appropriata, cioè dal basso verso l'alto.
scheda del libro:
eleuthera.it/scheda_libro.php?…
leggi un estratto:
eleuthera.it/files/materiali/L…
rag. Gustavino Bevilacqua reshared this.
Parte la Strategia italiana per le tecnologie quantistiche
@scienza (HASHTAG)
Bernini, ‘l’Italia capofila di una trasformazione epocale’
Parte la Strategia italiana per le tecnologie quantistiche - Frontiere - Ansa.it
Bernini, ‘l’Italia capofila di una trasformazione epocale’ (ANSA)Agenzia ANSA
'De VVD won jarenlang verkiezingen met het imago van daadkracht, maar de werkelijke strategie was vaak: niets doen. Problemen niet oplossen om ze politiek te kunnen blijven uitspelen.'
#DeGroeneAmsterdammerPodcast De verantwoordelijkheidsvakantie van de VVD
open.spotify.com/episode/5cdND…
De verantwoordelijkheidsvakantie van de VVD
De Groene Amsterdammer Podcast · EpisodeDe verantwoordelijkheidsvakantie van de VVD (Spotify)
The image features a bold, capitalized text in a bright green color against a dark blue background. The text reads "DE GRAMST." The font is sans-serif, with thick, blocky letters that are easy to read. The text is centered and occupies most of the image space, with a thin green border at the top and bottom of the image. The contrast between the green text and the blue background makes the text stand out prominently.
Provided by @altbot, generated privately and locally using Ovis2-8B
🌱 Energy used: 0.108 Wh
Mercoledì 9 luglio sono stati monitorati alcuni atterraggi di velivoli militari nell’aeroporto “civile” di Comiso (#Ragusa) stampalibera.it/2025/07/10/lae…
Joris Meys
in reply to nixCraft 🐧 • • •NVIDIA gets pushed into almost everything, but also on Windows systems their drivers can wreak havoc. I had a couple of gaming laptops over the years, and my biggest frustration without fail was NVIDIA drivers.
So gotta check the AMD Radeon cards out, hope to find them in more systems.
John Maxwell
in reply to nixCraft 🐧 • • •Kacper Potoczny
in reply to nixCraft 🐧 • • •nixCraft 🐧
in reply to Kacper Potoczny • • •StenPett / St Midium
in reply to nixCraft 🐧 • • •That's the precise reason why I switched to an AMD card when I upgraded my desktop last year, and why I'll be looking for an all AMD laptop when time comes to replace it.
I'll not consider another Nvidia card, unless Nvidia properly opens their drivers by then.
klintuwu
in reply to nixCraft 🐧 • • •bazkie 👩🏼💻 bitplanes 🎵
in reply to nixCraft 🐧 • • •MillenniumMacs
in reply to nixCraft 🐧 • • •Chris1776
in reply to nixCraft 🐧 • • •RejZoR
in reply to nixCraft 🐧 • • •Carlos Solís
in reply to nixCraft 🐧 • • •Solinvictus
in reply to nixCraft 🐧 • • •oxidand
in reply to nixCraft 🐧 • • •#nvidia is a pain in the ass. My first attempt at #gaming after a long hiatus was with an Nvidia card. Dealing with it on Linux is awful, having #Windows installed is even worse. Never again. #fuckyounvidia
I switched to #amd #radeon (and #ryzen too) - couldn't be happier =)