Claude Wrote a Full FreeBSD Remote Kernel RCE with Root Shell (CVE-2026-4747)
github.com/califio/publication…
#HackerNews #FreeBSD #RCE #Security #CVE-2026-4747 #RootShell #CyberSecurity
Publications from Calif. Contribute to califio/publications development by creating an account on GitHub.GitHub
reshared this
Malta, the same country that is home to spyware vendors, kills journalists investigating corruption, and sells golden passports, is annoyed it can't do money laundering anymore
Malta is opposing EU plans to centralize crypto supervision under ESMA, seeing it as a politically motivated assault on its success in attracting crypto firms (Laura Noonan/Bloomberg)bloomberg.com/news/articles/20…
techmeme.com/260401/p10#a26040…Malta is opposing EU plans to centralize crypto supervision under ESMA, seeing it as a politically motivated assault on its success in attracting crypto firms
By Laura Noonan / Bloomberg. View the full context on Techmeme.Techmeme
reshared this
The Document Foundation invita l’Europa a liberarsi dal software proprietario
linuxeasy.org/the-document-fou…
The Document Foundation invita l’Europa a scegliere software libero per garantire sovranità digitale e indipendenza tecnologica.
L'articolo The Document Foundation
reshared this
🇷🇺 Vessels of #Russia's shadow fleet are using Starlink to communicate and coordinate, a Kyiv Independent investigation has revealed.
kyivindependent.com/exclusive-…
Vessels of Russia's shadow fleet are using Starlink to communicate and coordinate, a Kyiv Independent investigation has revealed.Tanya Kozyreva (The Kyiv Independent)
reshared this
reshared this
AerynOS 2026.03 arriva con GNOME 50 e le tecnologie Linux più recenti
linuxeasy.org/aerynos-2026-03-…
erynOS 2026.03 arriva con GNOME 50, KDE Plasma 6.6.3 e un set aggiornato di tecnologie moderne basate sul kernel Linux 6.18 LTS.
L'articolo AerynOS 2026.03 arriva con GNOME 50 e le
reshared this
-Iranian password sprays came first, then the missiles
-Encryption-breaking quantum computers expected within a decade
-npm package Axios got hacked
-Flint24 hackers sentenced to prison in Russia
-Claude source code leaks
-ECH is now RFC 9849
-C++26 is done
-New Aliro security access standard
-Android developer verification rolls out
-Google Workspace ransomware protection is GA
-Major GDPR fine in Italy
Podcast: risky.biz/RBNEWS545/
Newsletter: news.risky.biz/risky-bulletin-…
In other news: Encryption-breaking quantum computers expected within a decade; major npm package Axios got hacked; Flint24 hackers sentenced to prison in Russia.Catalin Cimpanu (Risky.Biz)
reshared this
4MLinux 51.0 Rilasciato con nuove funzioni e software aggiornati
linuxeasy.org/4mlinux-51-0-ril…
4MLinux 51.0 diventa stabile con nuove applicazioni, driver aggiornati e funzioni multimediali migliorate.
L'articolo 4MLinux 51.0 Rilasciato con nuove funzioni e software aggiornati proviene da Linux
reshared this
Anthropic confirms it leaked parts of Claude Code's source code, saying the leak was "a release packaging issue caused by human error, not a security breach" (Ashley Capoot/CNBC)
cnbc.com/2026/03/31/anthropic-…
techmeme.com/260331/p55#a26033…
Claude Code has seen massive adoption over the last year, and its run-rate revenue had swelled to more than $2.5 billion as of February.Ashley Capoot (CNBC)
reshared this
Pluton la soluzione open source per backup self‑hosted
linuxeasy.org/pluton-la-soluzi…
Pluton è una piattaforma open source per backup automatici, cifrati e replicati, basata su Restic e Rclone, con gestione completa via gui web
L'articolo Pluton la soluzione open source per backup self‑hosted proviene da Linux Easy.
E'
reshared this
reshared this
Suspected Chinese APT leverages a TrueConf zero-day
research.checkpoint.com/2026/o…
Key Points Introduction At the beginning of 2026, Check Point Research observed a series of targeted attacks against government entities in Southeast Asia carried out via a legitimate TrueConf software installed in the targets’ environment.stcpresearch (Check Point Research)
reshared this
Iran says it will start targeting US tech companies like Apple, Google, Meta, Microsoft, Nvidia and Tesla in the Middle East starting 8PM local time on April 1 (Julia Shapero/The Hill)
thehill.com/policy/technology/…
techmeme.com/260331/p44#a26033…
By Julia Shapero / The Hill. View the full context on Techmeme.Techmeme
reshared this
A new standard will allow users to pass identity checks and enter secure buildings using their smartphones and smart wearable devices.
The Aliro standard was released by the Connectivity Standards Alliance and has the backing of vendors like Apple, Google, and Samsung
csa-iot.org/newsroom/introduci…
DAVIS, Calif. – February 26, 2026 – The Connectivity Standards Alliance (Alliance) announced today the release of the Aliro 1.0 specification, a new communication protocol and credential standard…Alliance Marketing (CSA-IOT)
reshared this
Check Point says an Iranian password-spraying campaign targeted municipalities and agencies that respond to missile strikes across the Middle East... then the missiles strikes came after
blog.checkpoint.com/research/i…
Iran‑linked actor targets Microsoft 365 tenants—mainly Israel and UAE—in password‑spraying waves; guidance to detect and mitigate.rohann@checkpoint.com (Check Point Blog)
reshared this
Elive 3.8.50 LTS torna con una nuova release stabile dopo sette anni
linuxeasy.org/elive-3-8-50-lts…
Elive 3.8.50 LTS torna dopo sette anni con una nuova versione stabile basata su Debian 12 e l’ambiente Enlightenment.
L'articolo Elive 3.8.50 LTS torna con una nuova release stabile dopo sette
reshared this
GNOME 50 rimuove l’accesso a Google Drive
linuxeasy.org/gnome-50-rimuove…
GNOME 50 rimuove l’integrazione Google Drive da Nautilus: su Ubuntu 26.04 LTS non sarà più possibile montare l’account tramite GOA.
L'articolo GNOME 50 rimuove l’accesso a Google Drive proviene da Linux Easy.
E' vietato riprodurre questo articolo senza autorizzazione.
Questo
reshared this
Dhruva porta un dock animato e fluido su GNOME Shell
linuxeasy.org/dhruva-porta-un-…
Dhruva porta su GNOME un dock fluido e animato con magnificazione reale, effetti avanzati e personalizzazione totale.
L'articolo Dhruva porta un dock animato e fluido su GNOME Shell proviene da Linux Easy.
E' vietato riprodurre questo
like this
reshared this
Claude's source code has leaked via npm
xcancel.com/Fried_rice/status/…
Claude code source code has been leaked via a map file in their npm registry! Code: https://pub-aea8527898604c1bbb12468b1581d95e.r2.dev/src.zipNitter
reshared this
Czech journalists claim to have identified another local company part of the Intellexa umbrella—Czech Sigi Consulting. The company's CEO was Juval Rabin, the son of former Israeli PM Yitzhak Rabin.
reshared this
ONLYOFFICE denuncia violazioni di licenza nel progetto “Euro‑Office” di Nextcloud e IONOS
linuxeasy.org/onlyoffice-denun…
ONLYOFFICE denuncia violazioni di licenza nel progetto Euro‑Office di Nextcloud e IONOS, richiamando obblighi AGPLv3 e condizioni
reshared this
Rileggendo il mio commento è uscito peggiore di quanto volessi, ti chiedo scusa. Sai, l'ottundimento del risveglio...
Davvero interessante l'articolo, grazie per la condivisione. Sembra che la loro interpretazione della licenza sia un po' troppo autoreferenziale!
E' davvero un peccato, perché anch'io credo che sia un ottimo prodotto.
@ilsimoneviaggiatore nessun problema, ci mancherebbe 🙂
Sì, dispiace anche a me perchè anch'io lo reputo un ottimo prodotto, ma se le premesse sono queste, non c'è da avere fiducia.
GNU/Linux Italia reshared this.
ParDF porta un editor PDF semplice e open source su Linux
linuxeasy.org/pardf-porta-un-e…
ParDF è un editor PDF semplice e nazionale per Linux, con modifica testo, immagini, pagine e export in DOCX e ODT.
L'articolo ParDF porta un editor PDF semplice e open source su Linux proviene da Linux Easy.
E' vietato
reshared this
Ohh.....
So this is why the FCC banned foreign made routers... it's RFK jr's fault! /sarcasm
reshared this
So, while I was looking to refine my Google search results and remove AI garbage news sites, I found that you can now tell Google to rank preferred sources above other results
reshared this
Archinstall 4.0 Rilasciato arriva una nuova interfaccia testuale
linuxeasy.org/archinstall-4-0-…
Archinstall 4.0 introduce una nuova TUI moderna, supporto firewalld, miglioramenti LUKS e numerose ottimizzazioni.
L'articolo Archinstall 4.0 Rilasciato arriva una nuova interfaccia testuale proviene da
reshared this
Magento online stores are being targeted using a recently patched vulnerability known as PolyShell.
According to Sansec, attacks have entered the mass-exploitation phase, with hundreds of stores being hacked every hour.
sansec.io/research/polyshell-m…
Sansec detected 471 stores compromised in a single hour as attackers exploit the PolyShell vulnerability at scale. The attack injects obfuscated JavaScript f...Sansec Forensics Team (Sansec)
reshared this
My favorite thing to do over the past months has been to watch Battlefield players and content creators slowly realize that EA, a company known for its predatory p2w games, has turned BF6 into a pay-to-win game
I love watching people slowly falling into despair
youtube.com/watch?v=tizFmlUvkm…
Profitez des vidéos et de la musique que vous aimez, mettez en ligne des contenus originaux, et partagez-les avec vos amis, vos proches et le monde entier.Westie (YouTube)
reshared this
A group of North Korean hackers engaged in Contagious Interview campaigns left one of their web consoles exposed on the internet
opensourcemalware.com/blog/con…
A single NPM package that led us to the Lazarus Groups latest campaign targeting software engineers using fake recruiters on LinkedIn, Fiverr and UpWork.opensourcemalware.com
reshared this
linuxeasy.org/accomplish-porta…
Accomplish è un agente AI open source che automatizza file, documenti e attività
reshared this
One of the most popular JavaScript packages on earth Axios has been compromised
opensourcemalware.com/blog/axi…
The Axios NPM package has been compromised and the maintainer of the project has been locked out of their account. This will go down in history as one of the most successful software supply chain attacks everopensourcemalware.com
reshared this
DeDECTive porta la scansione DECT wideband e la decodifica vocale G.721
linuxeasy.org/dedective-porta-…
DeDECTive porta scansione DECT wideband e decodifica vocale G.721 su Linux con HackRF, con call following e analisi avanzata.
L'articolo DeDECTive porta la scansione DECT wideband e la
reshared this
Sekoia looks at a new Phishing-as-a-Service platform named EvilTokens that has been spotted running campaigns since February.
The platform is one of the few that can run device-code phishing operations against Microsoft accounts, so expect this to become very popular in the coming months.
blog.sekoia.io/new-widespread-…
Uncover the new sophisticated EvilTokens device code phishing as-a-service, with AI-augmented features facilitating BEC fraudQuentin Bourgue and Sekoia TDR (Sekoia.io Blog)
reshared this
The ISO C++ committee has completed work on the C++26 specification of the C++ programming language.
This will be the biggest overhaul to C++ since the 2011 specification.
herbsutter.com/2026/03/29/c26-…
News flash: C++26 is done! 🎉 On Saturday, the ISO C++ committee completed technical work on C++26 in (partly) sunny London Croydon, UK. We resolved the remaining international comments on the C++26…Herb Sutter (Sutter’s Mill)
reshared this
Lorenzo Meacci introduces InsomniacUnwinding, a new technique to hide and sleep malicious code, even from EDR solutions that continuously scan the memory for malicious code
lorenzomeacci.com/unwind-data-…
Hi all, in this blog we will discuss sleep masking in detail, the default assumptions that come with it, and how we are going to break those assumptions with a novel approach called InsomniacUnwinding.Lorenzo Meacci
reshared this
reshared this
CNET is being brought back after the AI articles fiasco
linkedin.com/posts/david-katzm…
I am proud to announce that CNET News is back. We’ve remained a trusted voice in tech news throughout our nearly 35 year history -- yes, we own news.com -- and today marks the reformation of our official news team led by Jon Reed.David Katzmaier (LinkedIn)
reshared this
@cnet
Can't imagine why I'd *ever* trust you for anything resembling journalism again...
Ya done fucked up.
Trust is hard won and easily thrown away.
🤷♂️🤦♂️🤡🫏🖕🖕💩💩
Despite losing the US and EU market, Kaspersky reported a record revenue of $836 million last year
kaspersky.ru/about/press-relea…
Продажи решений компании в мире выросли на 4%, а в России и странах СНГ — на 23%/
reshared this
Glate porta Google Translate e sintesi vocale direttamente sul desktop Linux
linuxeasy.org/glate-porta-goog…
Glate porta Google Translate e sintesi vocale sul desktop Linux, con oltre 100 lingue, cronologia, hotkey e download mp3.
L'articolo Glate porta Google Translate e
reshared this
Onyx: il reverse proxy moderno, minimale e potente
linuxeasy.org/onyx-il-reverse-…
Onyx è un reverse proxy moderno con dashboard live, rate limiting, plugin API e aggiornamenti senza riavvio.
L'articolo Onyx: il reverse proxy moderno, minimale e potente proviene da Linux Easy.
E' vietato riprodurre questo articolo senza
like this
reshared this
Ubuntu MATE cerca un nuovo maintainer
linuxeasy.org/ubuntu-mate-cerc…
Ubuntu MATE cerca un nuovo maintainer: Martin Wimpress lascia la guida e invita nuovi contributori a farsi avanti.
L'articolo Ubuntu MATE cerca un nuovo maintainer proviene da Linux Easy.
E' vietato riprodurre questo articolo senza autorizzazione.
Questo feed RSS è destinato ai
reshared this
Catalin Cimpanu
in reply to Catalin Cimpanu • • •-Telegram warns against third-party clients
-Australia to investigate five tech platforms
-Russia's war on VPNs intensifies
-Russian cracks down on Apple ID
-Russia's internet blockade extends to third city
-Iran to start targeting US tech giants' infrastructure
-South Korea launches ransomware task force
-Gottumukkala polygraph investigation dropped
-Nigerian fraudster sentenced to 15y
-US charges ten "market makers"
-US charges Uranium Finance hacker
-Australians lost $1.5b to scams
Catalin Cimpanu
in reply to Catalin Cimpanu • • •-Cracked software campaigns come to macOS
-FvncBot targets Poland again
-New malware: RoadK1ll, DeepLoad, CrySome RAT, Venom Stealer, UPMI PhaaS
-EvilTokens PhaaS lets you run device code phishing
-APTs target Russian law enforcement
-APT leverages TrueConf zero-day
-Mass PolyShell attack wave
-New Fortinet exploitation
-New LangChain vulns
-New InsomniacUnwinding technique
-Kaspersky reports record revenue
-MCTTP and BSides Seattle videos
Alex Semёnov
in reply to Catalin Cimpanu • • •Catalin Cimpanu
in reply to Alex Semёnov • • •