Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale

Global IPv6 traffic has crossed 50% for the first time at the end of last month: google.com/intl/en/ipv6/statis…

And because people hurried to adopt IPv6 </sarcasm>, we now have a proposal for the IPv8 protocol: ietf.org/archive/id/draft-thai…

Internet Protocol Version 8 (IPv8)

Internet Protocol Version 8 (IPv8) is a managed network protocol suite that transforms how networks of every scale -- from home networks to the global internet -- are operated, secured, and monitored.
www.ietf.org

reshared this

in reply to Catalin Cimpanu

mastodon - Collegamento all'originale

Gabriel N

I like the proposal to to replace "hello" in protocols with "Don't allow eel bearing Atlanteans into your country; economic ruin follows close behind" better, I do hope IETF will consider that one, although it seems to have remained a draft since 2014 for some reason.

datatracker.ietf.org/doc/html/…

Or maybe the IPv10 one (6+4). After all 10 is more than 8.

Just because it's an ID doesn't mean anything... at all...

Anyone can publish an Internet Draft. This doesn't mean that the "IETF thinks" or that "the IETF is planning..." or anything similar.
IETF Datatracker
Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale

The BlueHammer researchers drops another Windows EOP zero-day, named RedSun:

deadeclipse666.blogspot.com/20…

Public disclosure, a response for CVE-2026-33825 patch

  -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Here is the code, enjoy https://github.com/Nightmare-Eclipse/RedSun Now to address what so...
deadeclipse666.blogspot.com

reshared this

Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale

Europol seized 53 domains that hosted DDoS-for-hire services

-Four suspects were also arrested
-Authorities have also sent letters and emails to more than 75k booter customers
-Also worked with Google to remove ads promoting DDoS services

europol.europa.eu/media-press/…

Europol-supported global operation targets over 75 000 users engaged in DDoS attacks – Operation PowerOFF is a global effort aimed at dismantling criminal DDoS-for-hire infrastructure | Europol

Operation PowerOFF is a global effort aimed at dismantling criminal DDoS-for-hire infrastructure
Europol

reshared this

Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale
The media in this post is not displayed to visitors. To view it, please go to the original post.

A cybercrime group has developed and is renting access to a platform that automates voice phishing attacks

The ATHR platform uses AI agents to call targets using preconfigured and multi-step scripts

ATHR access is being sold for $4,000 and 10% of a campaign's profits

abnormal.ai/blog/athr-ai-voice…

athr-ai-voice-phishing-toad-attacks

abnormal.ai

reshared this

Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale

A cybercrime group has hijacked subdomains at 34 US universities and educational organizations to show pornographic spam.

MIT, Harvard, Stanford, Johns Hopkins, and other large universities have had subdomains hacked

sh.consulting/blog/hazy-hawk-h…

Hazy Hawk Hijacked .edu Subdomains at MIT, Harvard, Stanford & 30+ Universities

Alex Shakhov discovered Hazy Hawk hijacking .edu subdomains at 34 US universities including MIT, Harvard, and Stanford to serve explicit content indexed by Google.
www.sh.consulting

reshared this

Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale
The media in this post is not displayed to visitors. To view it, please go to the original post.

The Krybit ransomware group has hacked the website of rival ransom group 0APT.

The incident occurred after 0APT threatened to dox Krybit's members last week.

Questa voce è stata modificata (3 giorni fa)

reshared this

friendica (DFRN) - Collegamento all'originale

Tributary: Rhythmbox rinasce in GTK4 con Rust

@GNU/Linux Italia

linuxeasy.org/tributary-rhythm…

Tributary reimmagina Rhythmbox in chiave moderna con GTK4, libadwaita e backend multipli come Jellyfin, Plex e Subsonic.
L'articolo Tributary: Rhythmbox rinasce in GTK4 con Rust proviene da Linux Easy.
E' vietato riprodurre questo articolo senza autorizzazione.

@GNU/Linux Italia
Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale

The BlueLeaks 2.0 data is now for sale because "principles are for the well-fed, and I’m unfortunately not in a great place" ... according to the hacker who initially only shared the data with investigative reporters

databreaches.net/2026/04/16/p3…

san.com/cc/hackers-who-stole-c…

Hackers who stole crime tip records offering data cache for $10k

The hackers who stole 8.3 million crime tip records are offering to sell the data for $10,000 in cryptocurrency.
Mikael Thalen (Straight Arrow News)

reshared this

Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale
The media in this post is not displayed to visitors. To view it, please go to the original post.

A large-scale study of the Russian web hosting space has found more than 1,200 malicious command and control servers hosted inside Russia this year.

Most of the servers are for IoT malware botnets, such as Keitaro, Hajime, Mozi, and Mirai.

hunt.io/blog/russian-malicious…

Exposing Russian Malicious Infrastructure: 1,250+ C2 Servers Mapped Across 165 Providers

Hunt.io mapped 1,250+ active C2 servers across 165 Russian providers. See which networks dominate malicious hosting and what malware families drive it.
Hunt Intelligence

reshared this

Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale

"With Fabricked, we present a novel software-based attack that manipulates memory routing to compromise AMD SEV-SNP"

fabricked-attack.github.io/

Fabricked: Misconfiguring Infinity Fabric to Break AMD SEV-SNP

Confidential computing allows cloud tenants to offload sensitive computations and data to remote resources without needing to trust the cloud service provider.
Fabricked

reshared this

Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale

RAGFlow patched an RCE almost a week after the bug was publicly disclosed by security researchers.

The project initially ignored the report and only patched the issue after the researchers themselves submitted the patch code.

zeropath.com/blog/ragflow-rce-…

Unpatched RAGFlow Vulnerability Allows Post-Auth RCE - ZeroPath Blog

A currently-unpatched vulnerability in RAGFlow 0.24 allows low-privilege authenticated users to execute arbitrary code on instances using Infinity for chunk storage. We walk through the discovery, exploitation, and our disclosure process.
John Walker (ZeroPath)

reshared this

friendica (DFRN) - Collegamento all'originale

Valve corregge il problema della VRAM su Linux

@GNU/Linux Italia

linuxeasy.org/valve-corregge-i…

Una nuova patch di Valve migliora la gestione della VRAM, riducendo gli stuttering sulle GPU da 8 GB grazie a una priorità più intelligente.
L'articolo Valve corregge il problema della VRAM su Linux proviene da Linux Easy.
E' vietato riprodurre questo

@GNU/Linux Italia

El Salvador reshared this.

Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale

📺 Srsly Risky Biz: Time to ban sale of precise geolocation data

risky.biz/video/srsly-risky-bi…

Srsly Risky Biz: Time to ban sale of precise geolocation data - Risky Business Media

Tom Uren and Amberleigh Jack talk about a new Citizen Lab report into Webloc, a tool to identify and track mobile devices. It demonstrates [Read More]
risky.biz

reshared this

Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale

Manifold Security tricked Claude' GitHub bot to merge malicious code to repositories by spoofing their requests under the names of famous developers

manifold.security/blog/spoofed…

Two Git Commands Fooled Claude Into Merging Malicious Code - Manifold Security

Coding agents are on your endpoints. Do you know what they're doing? Manifold gives security teams runtime visibility into autonomous AI agents.
Manifold team (Manifold)

reshared this

Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale

The Rhadamanthys infostealer left its frontend API exposed online without authentication, allowing security researchers to track its activity for months before the Europol takedown last year

censys.com/blog/rhadamanthys-p…

Rhadamanthys and the Limits of Private Sector Operations - Censys

Censys ARC explores the private sector limitations of disrupting malware by examining a 2022 operation against the Rhadamanthys infostealer.
Kate Lake (Censys)

reshared this

Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale

NIST makes it official and basically gives up on enriching CVEs: nist.gov/news-events/news/2026…

Will only enrich:

-KEV listed bugs
-bugs in software used by the US govt
-bugs in critical software (see list here/PDF: nist.gov/system/files/document…)

NIST Updates NVD Operations to Address Record CVE Growth

New risk-based model will allow NIST to manage current CVE volume while modernizing the NVD for long-term sustainability.
NIST

reshared this

Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale
We ran Doom on a 40 year old printer controller (Agfa Compugraphic 9000PS)
[video]L: youtube.com/watch?v=cltnlks2-u…
C: news.ycombinator.com/item?id=4…
posted on 2026.04.11 at 13:59:14 (c=0, p=8)

We ran Doom on a 40 year old printer controller (Agfa Compugraphic 9000PS)

Profitez des vidéos et de la musique que vous aimez, mettez en ligne des contenus originaux, et partagez-les avec vos amis, vos proches et le monde entier.
Adrian's Digital Basement (YouTube)

reshared this

Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale
The Deepfake Nudes Crisis in Schools Is Worse Than You Thought
L: wired.com/story/deepfake-nudif…
C: news.ycombinator.com/item?id=4…
posted on 2026.04.15 at 10:50:29 (c=0, p=3)

The Deepfake Nudes Crisis in Schools Is Much Worse Than You Thought

An analysis by WIRED and Indicator found nearly 90 schools and 600 students around the world impacted by AI-generated deepfake nude images—and the problem shows no signs of going away.
Matt Burgess (WIRED)

reshared this

Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale

EU says age-check app 'ready' in push to protect children online

france24.com/en/live-news/2026…

youtube.com/watch?v=4VRRriyDKK…

Ursula von der Leyen Unveils EU Age Verification App

Profitez des vidéos et de la musique que vous aimez, mettez en ligne des contenus originaux, et partagez-les avec vos amis, vos proches et le monde entier.
Europe Echo (YouTube)

reshared this

Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale
Sony Boss Urges Theaters To Stop 30 Minutes of Trailers and Ads Before Movies entertainment.slashdot.org/sto…

Sony Boss Urges Theaters To Stop 30 Minutes of Trailers and Ads Before Movies - Slashdot

Sony Pictures chief Tom Rothman urged theater owners to cut down the roughly 30 minutes of trailers and ads before movies. "Get off the ad crack," Rothman told the audience at CinemaCon this week.
entertainment.slashdot.org

reshared this

Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale

We’re happy to share that Mastodon has been awarded a service agreement from the Sovereign Tech Fund @sovtechfund 🎉

This covers five major initiatives through 2026 and 2027. We are very grateful for this support. Read about the details in our blog post.

blog.joinmastodon.org/2026/04/…

Sovereign Tech Agency funding

Announcing a service agreement for new work to improve Mastodon and the broader ecosystem.
Mastodon Blog
@Sovereign Tech Agency
Lorenzo ha ricondiviso questo.

mastodon - Collegamento all'originale

I vibe coded a webapp called Teams Roulette where it joins you to random Microsoft Teams meetings, using Teams meeting links scraped from the internet.

Debating on if I should publish this one 🤣

Questa voce è stata modificata (4 giorni fa)