There’s a saying in mine country, the kind that sometimes shows up on bumper stickers: “If it can’t be grown, it has to be mined.” Before mining can ever start, though, there has to be ore in the ground. In the last edition of this series, we learned what counts as ore (anything that can be economically mined) and talked about the ways magma can form ore bodies. The so-called magmatic processes are responsible for only a minority of the mines working today. Much more important, from an economic point of view, are the so-called “hydrothermal” processes.
Come back in a few million years, and Yellowstone will be a great mining province.
Image: “Gyser Yellowstone” by amanderson2, CC BY 2.0
When you hear the word “hydrothermal” you probably think of hot water; in the context of geology, that might conjure images of Yellowstone and regions like it : Old Faithful geysers and steaming hot springs. Those hot springs might have a role to play in certain processes, but most of the time when a geologist talks about a “hydrothermal fluid” it’s a lot hotter than that.

Is there a point on the phase diagram that we stop calling it water? We’re edging into supercritical fluid territory, here. The fluids in question can be hundreds of degrees centigrade, and can carry things like silica (SiO2) and a metal more famous for not dissolving: gold. Perhaps that’s why we prefer to talk about a “fluid” instead of “water”. It certainly would not behave like water on surface; on the surface it would be superheated steam. Pressure is a wonderful thing.

Let’s return to where we left off last time, into a magma chamber deep underground. Magma isn’t just molten rock– it also contains small amounts of dissolved gasses, like CO2 and H2O. If magma cools quickly, the water gets trapped inside the matrix of the new rock, or even inside the crystal structure of certain minerals. If it cools slowly, however? You can get a hydrothermal fluid within the magma chamber.

Peg It as a Pegmatite

This can create what’s called a pegmatite deposit. Strictly speaking, “pegmatite” refers to rock with a specific texture; when we’re talking about ore, we’re almost always referring to granitic pegmatites: that is, granite rocks with this texture. That texture is big crystals: centimeter size or bigger. Crystals grow large in a pegmatite deposits in part because of the slow cooling, but in part because of the action of the hydrothermal fluid that is squeezed out of the slowly-cooling rock.
When you’re using your hammer for scale next to the crystals, you know it’s a pegmatite. This example is from Radium Creek, Arkaroola, South Australia. Image: Geomartin, CC-BY-SA 4.0
Again, we’re talking about a fluid that’s hundreds of degrees Celsius: seriously supercritical stuff. It can carry a lot of ions. Circulating through the magma chamber, this ion-rich fluid brings each crystal all the metal ions it needs to grow to its full potential. Maybe that’s a garnet the size of your fist, or feldspar crystals like pink playing cards. The ions in the fluid can be leftovers from the earlier melt, but may also include material scoured from surrounding rocks.

Aside from the spectacular granite counter tops and semiprecious gems that sometimes come out of these deposits, granitic pegmatites come in two types: lithium-rich and rare-earth element rich. The lithium rich pegmatites are often called LCT deposits, the letters standing for Lithium, Cesium and Tantalum, the metals of interest. Those–especially the first and last–are not exactly metals of low consequence in this electronic era. That goes double for the rare-earth elements. Especially in North America, there’s a great deal of active prospecting searching for these increasingly valuable deposits.
Mica capacitors. You can’t make these guys without mica, and granitic pegmatites are a good source.
Image: Mataresephotos, CC-BY-3.0
Mines have been sunk to extract boron, fluorine, tin, and uranium from pegmatite deposits as well. Of particular note to Hackaday readers would be the mineral Muscovite, a course-grained mica often found in pegmatites, among other locales. Muscovite mica has excellent dielectric properties and fractures easily into thin sheets, making it very useful in capacitors and high voltage applications. The high thermal stability and voltage tolerance of mica capacitors makes them invaluable even today in niche applications, even though ceramics have taken over most of their original uses.

One thing to note about these deposits is that they are not necessarily going to be restricted to Earth. Don’t let the “hydro” in “hydrothermal” fool you– this process is occurring deep underground, in a magma chamber with no access to any surface water. The H2O involved is coming up from the mantle, and the mantle of every rocky body does contain trace water. That even holds true for the Earth’s moon; while older sources will declare that no hydrothermal processes are possible there, newer work has led to a reevaluation of how “wet” lunar rock really is, and re-opened the possibility of lunar pegmatites. Given that, there’s no reason not to expect the process to be at work on every rocky body in the solar system. Look for granitic rock, and you might find an interesting pegmatite.

Orogenic Ores

If the hydrothermal fluid stays put in a magma chamber, it can create pegmatite deposits, but if it breaks free, you’ll find something completely different. Running through faults, fissures, and cracks in the surrounding rock, the somewhat-lower-temperature fluid will have a different mineral content depending both on the melt and the host rock. These hydrothermal vein deposits are sometimes called orogenic ore deposits, because they are often associated with mountain building, which geologists call orogeny.
The white quartz vein follows the fissures in the rock hydrothermal fluid once flowed through. “Main Vein (hydrothermal quartz-gold vein), subsurface exposure in Nalunaq Gold Mine, southern Greenland” by James St. John, CC BY 2.0
That doesn’t mean you need to look near mountains: the gold fields of Kirkland Lake, mentioned last time, are actually an orogenic deposit, and Kirkland Lake sits near the middle of the Canadian Shield, as far from any (modern) mountains as you are likely to find. There may have been mountains there, once, but they were eroded away by the time the Dinosaurs walked the Earth. What you will find there are shocking white veins of quartz shooting through the granite of the Canadian Shield– evidence of the hydrothermal fluid’s ability to carry dissolved silica through fissures of the rock– interspersed with flecks and pebbles of gold. Most gold started in hydrothermal deposits like this one, but in an ironic twist, most of the gold humans have mined is actually from a different type of deposit we’ll get to later. For now we’ll say there are secondary processes at work on this planet and leave it at that.
Native Silver, from a mine that closed in 1887. Image: “Native silver in hydrothermal vein rock (Proterozoic; Silver Islet Mine, Lake Superior, Ontario, Canada) 1” by James St. John, CC BY 2.0
Gold isn’t the only thing to be found in these hydrothermal veins: native silver and copper mines have also been found chasing quartz veins. Cobalt, Molybdenum, even Tin and Tungsten may be found, though not necessarily in native form. To a geologist, note that the word “native” has nothing to do with tribal affiliation, and everything to do with elemental composition. “Native” metals are just that: metals. Native copper is a lump of Cu, not chemically bound into any mineral.

As you might imagine, native metals are among the most desirable of ores, as they often require very little by way of refining. For that reason, until perhaps Greenland or Antarctica’s melting glaciers expose new lands to prospecting, you’re not likely to ever see a new mine producing native copper.

The redox conditions of the fluid are hugely important here: as you might imagine, native metals aren’t going to precipitate from an oxidizing fluid. Redox reactions are hard enough in chemistry class, though; bring them into the world of geochemistry and it gets hugely complicated. Nature is a messy system with too many variables to easily predict.

That’s something many a prospector has found out to his chagrin, for not every vein of quartz will bear metals. On the other hand, enough quartz veins do that “look for veins of quartz” was common advice for prospectors once upon a time. Not all metal-bearing veins may not be entirely quartz, either; many contain quite a lot of carbonate minerals like calcite. The hydrothermal fluid may start out with different amounts of metals dissolved within it, depending on the source magma; it may also scour more or different minerals from the host rocks it flows through. Veins may go on for miles of nothing but quartz before something in composition of the rock, or its temperature, or the pH causes the fluid to start depositing valuable minerals. Geology can be a crapshoot like that.

Of Course It’s More Complex

The above description is somewhat misleading as it makes it sound like vein deposits can only be produced from hydrothermal fluid coming from magma, but that is untrue. It is also possible that surface water (called “meteoric” water by geologists who want to confuse you into thinking about space rocks) can trickle down through fractured rocks until it
Meteoric water has nothing to do with this.
Image: Navicore, CC-BY-3.0
reaches a hot-zone and picks up elements by dissolving minerals. A mix of meteoric and “crustal” water (that is, water from magma) may be present in a balance that changes over time. It should also be noted that this water can form a convective circuit, down to the hot zone (or melt) to pick up new minerals, then circulate upwards to deposit them in colder rock. Because this circulating fluid is cooler than in the case of fluids coming directly from a melt (“only” three or four hundred degrees Celsius) , they are sometimes called “epithermal” fluids, and the resulting veiny deposits can be called “epithermal” deposits. Those temperatures are not too far off from what you might find in geyser country. While I’m not suggesting anyone go digging under Old Faithful right now, it might be an interesting locality in a few million years or so.

Epithermal/orogenic/quartz vein deposits don’t need meteoric water– crustal water can be enough–but I have seen no references suggesting they might be found on the Moon. Mars, on the other hand, seems to have every condition required, so there may well be gold in them thar’ Arean hills. Meteorites believed to have come from Vesta show evidence of quartz veinlets as well, so don’t count out larger planetoids when talking about hydrothermal processes either.

There are other high-temperature hydrothermal deposits other than granitic pegmatites we haven’t yet gotten into; there are also several lower-temperature types that are likely to be exclusive to Earth. This entry in our series is getting long enough, however, so we will return to the theme of hydrothermal ore deposits another day.

hackaday.com/2025/09/08/ore-fo…

Ultralight aviation provides an excellent pathway for those who want to fly, but don’t want to get licensed. These quite often cheap and cheerful DIY aircraft often hide some excellent engineering underneath. This is no more true than in [ultralight helicopter’s] four-year-long helicopter build saga!

While most ultralight builds are fixed-wing, a rotocraft can meet all the legal definitions of ultralight aviation. This helicopter is an excellent example of what’s possible with a lot of time and patience. The construction is largely aluminium with some stainless steel on the skids. A 64-horsepower Rotax 582UL engine powers the two-bladed main rotor and tail rotor. The drivetrain features a multi-belt engine coupler and three gearboxes to ensure correct power output to the two rotors.

It features a control layout familiar to any helicopter pilot with foot pedals that control the rotor pitch for anti-torque control. A cyclic in front of the pilot controls the rotor’s cyclical movements, resulting in forward and sideways flight control. A collective with integrated throttle controls the overall main rotor pitch for altitude and climb control. Finally, a simple clutch sits next to the collective for engine start and idles.

The build was meticulous, with nearly everything from the swashplate to the gearboxes custom-machined. The balance and alignment of everything, from the rotor blades to the input trim, had to be checked. The build is a masterpiece of home workshop engineering.

We’ve seen ultralights before, so make sure to check out this electric fixed-wing ultralight next! Or, if you want really light, try foam.

youtube.com/embed/gbVudZv2ugg?…

hackaday.com/2025/09/08/making…

A metà agosto, i ricercatori hanno incontrato il ransomware Cephalus in due incidenti separati. Tra le recenti emergenze di famiglie come Crux e KawaLocker, una richiesta di riscatto che iniziava con le parole “Siamo Cephalus” ha attirato l’attenzione. In entrambi i casi, gli aggressori hanno ottenuto l’accesso iniziale tramite RDP utilizzando credenziali compromesse senza autenticazione a più fattori e hanno utilizzato il servizio cloud MEGA per potenzialmente far trapelare i dati.

L’aspetto più rilevante della catena di attacco è stato il metodo di lancio del ransomware. I criminali hanno fatto ricorso alla sostituzione delle DLL utilizzando il componente legittimo SentinelOne: il file SentinelBrowserNativeHost.exe è stato avviato dalla directory Download, prelevando la libreria SentinelAgentCore.dll, che a sua volta ha caricato il file data.bin con il codice ransomware.

Su uno degli host, il tentativo è stato bloccato da Microsoft Defender, mentre sull’altro è stata avviata la crittografia. Non sono stati rilevati parametri della riga di comando durante l’avvio, il che indica indirettamente l’assenza di una distribuzione “di rete” tra le condivisioni disponibili.

È importante sottolineare che entrambe le organizzazioni interessate utilizzavano effettivamente i prodotti SentinelOne. Allo stesso tempo, il fatto che SentinelBrowserNativeHost.exe sia finito nella cartella Download appare insolito: la telemetria ha mostrato milioni di avvii legittimi di questo file eseguibile nelle infrastrutture dei clienti al giorno, ma non dalla cartella Download degli utenti, il che rende tale posizione un buon indicatore di attività sospetta. I moderni sistemi SIEM sono in grado di rilevare tali anomalie: ad esempio, la regola DLL_Side_Loading in MaxPatrol SIEM rileva la sostituzione della creazione della libreria nella cartella con il file binario e il suo successivo caricamento nel processo.

Prima della crittografia, Cephalus cerca di privare il sistema di qualsiasi possibilità di ripristino e di accecare le difese. E’ stato osservato l’eliminazione delle copie shadow del volume e una sequenza di comandi PowerShell e modifiche al registro volte a disabilitare i componenti di Windows Defender , aggiungere esclusioni e interrompere i servizi correlati. Queste azioni hanno preceduto la creazione della nota e il processo di crittografia stesso, il che corrisponde alle tattiche tipiche dei gruppi moderni.

Un altro dettaglio sono le note con le richieste. Nei casi rilevati, il testo iniziava con una presentazione diretta (“Siamo Cephalus”), conteneva affermazioni sul furto di “dati riservati” e istruzioni per contattarli. A differenza delle varianti precedentemente pubblicate sui social network, la nota era indirizzata al dominio dell’organizzazione vittima e includeva link a due “articoli di giornale” su precedenti attacchi Cephalus, presumibilmente per aumentare la pressione e dare un’apparenza di “notorietà“. In alcuni casi, alla vittima veniva chiesto di seguire il link GoFile e, con una password, di controllare un campione dei file presumibilmente rubati.

In entrambi gli incidenti, MEGAsync non era solo un endpoint per lo scambio, ma anche nella linea di processo sull’host: MEGAcmdUpdater.exe veniva avviato e, in uno degli incidenti, persino tramite Task Scheduler. Questo rientra nel modello della doppia estorsione, in cui la crittografia è integrata da un’esfiltrazione preliminare.

L’insieme delle caratteristiche tecniche forma già un profilo riconoscibile. Le osservazioni includevano l’estensione “.sss” per i file crittografati e il file di note “recover.txt”. Gli artefatti includono il percorso C:Users[user]Downloads come directory di lavoro dell’operatore, il nome della workstation Desktop-uabs01 e i checksum dei componenti della catena: SHA-256 per SentinelBrowserNativeHost.exe – 0d9dfc113712054d8595b50975efd9c68f4cb8960eca010076b46d2fba3d2754 e per SentinelAgentCore.dll – 82f5fb086d15a8079c79275c2d4a6152934e2dd61cc6a4976b492f74062773a7.

Cephalus si inserisce nel familiare panorama dei ransomware, ma combina vecchi punti di ingresso con una tecnica di avvio non banale tramite un eseguibile legittimo. Le implicazioni pratiche per i difensori rimangono rilevanti: chiudere RDP senza MFA, monitorare lanci anomali di SentinelBrowserNativeHost.exe, soprattutto dalle directory utente, limitare o controllare l’uso di MEGA e strumenti simili e monitorare qualsiasi tentativo di interferire con le impostazioni e i servizi di Windows Defender. Maggiore è la visibilità delle azioni prima della crittografia, maggiore è la possibilità di fermare l’attacco prima che compaiano “note” e tempi di inattività.

L'articolo Arriva Cephalus! Il gruppo ransomware che attacca tramite la sostituzione DLL proviene da il blog della sicurezza informatica.

Il 20 agosto, Apple ha rilasciato un aggiornamento di sicurezza non programmato per tutti i principali sistemi operativi: iOS, iPadOS, macOS e altre piattaforme. La patch risolve la vulnerabilità CVE-2025-43300 nel modulo ImageIO: un errore di buffer overflow che è stato risolto tramite un controllo dei limiti più rigoroso durante l’elaborazione delle immagini. La vulnerabilità ha ricevuto crescente attenzione: è stata segnalata come “sfruttata in attacchi reali” e senza l’intervento dell’utente.

Separatamente, WhatsApp ha rilasciato una correzione, sottolineando che gli aggressori potrebbero forzare il dispositivo della vittima a scaricare una risorsa da un URL arbitrario e ad avviarne l’elaborazione; si ritiene che questo problema possa essere stato parte di una catena di exploit con CVE-2025-43300.

I ricercatori hanno rapidamente smontato la patch e ne hanno individuato la causa principale. Secondo i loro dati, il problema si nasconde nel gestore del formato DNG, quando all’interno del “negativo digitale” vengono rilevati dati compressi dall’algoritmo JPEG Lossless. L’analisi dei file binari ha evidenziato il punto di modifica nel componente RawCamera all’interno di ImageIO. Le nuove build offrono un controllo aggiuntivo per superare i limiti durante la decompressione delle linee di immagine: sono stati aggiunti controlli per la dimensione del buffer allocato e la gestione delle eccezioni nel caso in cui la registrazione possa superare l’area valida.

L’essenza dell’errore è dovuta a una logica errata durante l’unpacking dei frame: il codice era guidato dal numero di “campioni per pixel” e si aspettava almeno due componenti, mentre il numero effettivo di componenti nel flusso poteva essere pari a uno.

A causa di questa discrepanza, il ciclo di unpacking è andato oltre il dovuto e ha scritto dati oltre i limiti della memoria allocata. In termini di formati, stiamo parlando di DNG in rappresentazione TIFF con “stringhe” (strisce), dove vengono utilizzati i campi RowsPerStrip, StripOffsets e StripByteCounts; a causa dell’errore nel tenere conto dei componenti e delle dimensioni delle righe, l’unpacker ha consentito un buffer overflow .

Gli sviluppatori e i reverse engineer hanno registrato una quantità minima di modifiche tra le versioni, come previsto per una patch non programmata, ma chiudono il pericoloso scenario “zero-click”. Secondo i ricercatori, la catena potrebbe essere attivata semplicemente ricevendo immagini tramite messenger o altri canali in cui le immagini vengono elaborate automaticamente dal sistema. Allo stesso tempo, i singoli servizi lungo il percorso di distribuzione potrebbero modificarne la qualità o i metadati, ma ciò non è critico per l’attivazione della vulnerabilità.

La conclusione è prevedibile ma importante: i parser dei formati multimediali sono uno dei punti più insidiosi di qualsiasi sistema. Il bug a livello di conteggio dei componenti e dimensione del buffer sembra ovvio quando si sa dove guardare, ma senza la patch era difficile da individuare: la funzione di unpacking è di grandi dimensioni, utilizza tabelle di Huffman, logica ramificata e l’infrastruttura a oggetti dei framework Apple. La correzione è semplice: gestione aggiuntiva del buffer e un crash iniziale durante il tentativo di sovrascrivere la memoria.

Si consiglia agli utenti di installare le versioni più recenti dei sistemi il prima possibile. Anche se la vulnerabilità è già stata risolta, casi come questo ci ricordano che qualsiasi analisi automatica di contenuti – immagini, documenti o archivi – richiede controlli e protezione rigorosi a livello di piattaforma.

L'articolo WhatsApp e Apple in emergenza: il bug DNG permette il controllo remoto senza click proviene da il blog della sicurezza informatica.

The European Union is once again moving fast on the dangerous Chat Control regulation. This proposal would force providers to search all private chats, messages, and emails automatically for suspicious content – generally and indiscriminately. That means your conversations with friends, family, doctors, or lawyers could be opened to suspicion, regardless of who you are. This is why it is opposed by a broad consensus among the public, civil rights groups, and pirates.

The Current State of Play

While the European Parliament has positioned itself almost unanimously against indiscriminate chat control, the Member states are a different affair entirely:

• 15 Member States already support Chat Control (including France, Italy, and Spain).
• 6 countries firmly oppose (such as Austria, Finland, the Czech Republic, and the Netherlands).
• Germany and several others remain undecided – making them decisive for the upcoming vote.

On October 14, 2025, European Interior Ministers are scheduled to vote on adopting Chat Control. If adopted, Chat Control would break encryption, enable mass surveillance, and set a precedent that authoritarian governments worldwide could exploit. Experts warn it would not protect children, but instead flood investigators with false reports while leaving real offenders harder to track.

What You Can Do to stop Chat Control

We need to act now – loud and clear. Here’s three things you can do today to help us fight the proposal:

1. Sign our petition!
2. Contact your Members of the European Parliament!
3. Share your own ideas with us!

Why This Matters

Your right to private communication is at stake. Once we allow mass scanning of personal messages, there is no turning back. Europe should take the lead in protecting freedom, security, and dignity – not normalizing a culture where everyone is treated as a suspect by the state.

Let’s send a strong message: No to indiscriminatory surveillance! Yes to private communication!
The post Chat Control: Where Things Stand – and Why We Must Act Now first appeared on European Pirate Party.

LIBERI DAI VELENI DI ROMA.
DOMANI TUTTI AL CORTEO!

Ambiente, StopInceneritore, NoInceneritore, NoInceneritori, ZeroWaste, Rifiuti, Riciclo, EconomiaCircolare, NoAlCarbone, EnergiaPulita,

Joe, Steve and James discuss ICE coming to Boston (again), LLM Prompt Injection as a vulnerability, Trump’s FCC taking away kid’s WIFI access and RFK Jr. spying on you.

youtube.com/embed/np2Dpdh_ZTQ?…

Sign up to our newsletter to get notified of new events or volunteer. Join us on:

• Mastodon;
• Facebook;
• Blue Sky;
• Twitter.

youtube.com/embed/np2Dpdh_ZTQ?…

Some links we mentioned:

• Our Administrative Coup Memory Bank;
• Our Things to Do when Fascists are Taking Over;
• ICE Is Said to Have Begun Operation in the Boston Area;
• OWASP LLM01: 2025 Prompt Injection;
• FCC chair teams up with Ted Cruz to block Wi-Fi hotspots for schoolkids;
• RFK Jr. wants everyone to use wearables. What are the benefits, risks?

Image Credit: Public Domain via Wikipedia Commons.

masspirates.org/blog/2025/09/0…