Eternal Software Initiative: il progetto che vuole avviare Linux tra mille anni
linuxeasy.org/eternal-software…
Eternal Software Initiative punta a rendere eseguibile Linux tra mille anni grazie a una macchina virtuale minimalista basata su una sola istruzione.
L'articolo
Marco reshared this.
Filings: Waymo pulls its ~4K robotaxis from highways after finding 13+ instances of the cars driving into highway sections under construction (Sean O'Kane/TechCrunch)
techcrunch.com/2026/06/18/waym…
techmeme.com/260618/p31#a26061…
The company has identified at least 13 instances where its robotaxis drove into highway sections closed for construction.Sean O'Kane (TechCrunch)
reshared this
SparkyLinux 2026.06 include il supporto per Linux 7.1
linuxeasy.org/sparkylinux-2026…
SparkyLinux 2026.06 aggiorna la rolling release con supporto al kernel Linux 7.1, nuove versioni software e miglioramenti all’installazione
L'articolo SparkyLinux 2026.06 include il supporto per Linux 7.1 proviene da Linux Easy.
E'
Linux elimina definitivamente il supporto per AppleTalk
linuxeasy.org/linux-elimina-de…
Linux rimuove AppleTalk dal kernel 7.2: fine di un protocollo storico ormai obsoleto e sempre meno utilizzato.
L'articolo Linux elimina definitivamente il supporto per AppleTalk proviene da Linux Easy.
E' vietato riprodurre questo articolo senza
-Canada’s spy agency allowed to remove a botnet from Canadian devices
-A bunch of Fortinet creds leak online
-Supply chain attack hits Mastra AI framework
-Europol disrupts SocGolish
-Popa botnet linked to Israeli firm
-Aztec Connect hacked twice in a week
-Kodak hit by ShinyHunters
-South Korean startup data leaked online
-Texas Parks and Wildlife has a breach
-Apple sabotages its own Hide My Email feature
Newsletter: news.risky.biz/risky-bulletin-…
Podcast: risky.biz/RBNEWS579/
In other news: A bunch of Fortinet creds leak online; supply chain attack hits Mastra AI framework; Europol disrupts SocGolish.Catalin Cimpanu (Risky.Biz)
reshared this
reshared this
Canonical rende obbligatoria la versione beta per tutte le derivate ufficiali di Ubuntu
linuxeasy.org/canonical-rende-…
Ubuntu rende obbligatorie le versioni beta per tutte le derivate ufficiali, con l'obiettivo di migliorare qualità e affidabilità dei
EdiTidE editor di testo moderno per ambienti Linux
linuxeasy.org/editide-editor-t…
EdiTidE, l'editor di testo basato su Gtk4 per Linux con gestione avanzata di progetti, temi personalizzabili e una console Python integrata
L'articolo EdiTidE editor di testo moderno per ambienti Linux proviene da Linux Easy.
E' vietato riprodurre questo
Google has tracked TeamPCP to one individual in South Africa
PAN believes the main TeamPCP hacker uses the name ResoluteXBF in some underground communities
cyberscoop.com/teampcp-breaks-…
The threat group’s remarkable success targeting open-source software was inevitable and fueled by the industry’s decision to prioritize code shipping over security.Matt Kapko (CyberScoop)
reshared this
New, from me: 'Popa' Botnet Linked to Publicly Traded Israeli Firm
"For the past four years, a sprawling Android-based botnet called Popa has forced millions of consumer TV boxes to relay Internet traffic linked to advertising fraud, account takeovers, and mass data-scraping efforts. This week, researchers from multiple security firms concluded that the Popa botnet is linked to NetNut, a “residential proxy” provider operated by the publicly-traded Israeli firm Alarum Technologies Ltd [NASDAQ: ALAR]."
krebsonsecurity.com/2026/06/po…
There is an incredible amount of interesting data and findings in the reports on Popa released this week. For example, the proxy detection service Spur told me they recently scraped the LG and Samsung app stores and found that each had approximately 3,000 apps available for download. Spur said it found that more than 42 percent of apps available for download via the webOS operating system on LG smart TVs include SDKs that turn one’s television into an always-on residential proxy node. More than a quarter of the apps made for Samsung’s Tizen operating system had similar residential proxy components, Spur found.
reshared this
Many readers have been asking if this or that app for their TV is bundled with residential proxy software. Many of the apps in question -- as well as publisher/component names to look for -- are detailed in links throughout the story. But for the sake of simplicity, here they are:
Qurium's report: qurium.org/forensics/finding-p…
Synthient: synthient.com/blog/popa-from-s…
Spur: spur.us/blog/how-proxy-provide…
Nokia Deepfield: github.com/deepfield/public-re…
Include Security: blog.includesecurity.com/2026/…
Infoblox: infoblox.com/blog/threat-intel…
Infoblox Threat Intel poses the question to network defenders: “Do you know who has access to your IP space?” with a look into residential proxy traffic.Infoblox Threat Intel (Infoblox Blog)
Unraveling #Popa (and always more interesting when research intersects with other partners, in this case Qurium, @synthient
and @briankrebs)
reshared this
Firefox guarda al futuro con Nova, HDR e VPN mobile (mentre la quota di mercato continua a scendere)
linuxeasy.org/firefox-futuro-n…
Mozilla svela la roadmap di Firefox con Nova, HDR su Linux e Windows, VPN mobile e nuove funzioni AI controllabili dagli utenti.
L'articolo Firefox guarda al futuro con Nova, HDR e VPN mobile (mentre la quota di mercato continua
Google reCAPTCHA adds hand gesture verification
reshared this
Dutch police take down 15k SocGolish sites
politie.nl/en/news/2026/juni/1…
In Operation Endgame, a major operation this week disrupted a key infection chain used by cybercriminals. Within an international cooperation, 14.971 websites infected with SocGholish malware were remediated.www.politie.nl
reshared this
Ubuntu 26.10 punta sulla dettatura locale con Myna
linuxeasy.org/ubuntu-26-10-pun…
Ubuntu 26.10 integra Myna, la dettatura vocale locale con AI, pensata per privacy, accessibilità e scrittura rapida.
L'articolo Ubuntu 26.10 punta sulla dettatura locale con Myna proviene da Linux Easy.
E' vietato riprodurre questo articolo senza
"Accenture, a global leader in OT cybersecurity services and delivery focused on OT for a decade, is acquiring a majority stake in Dragos at a $3.2B valuation, and all of runZero and NetRise, bringing the combined business value to $4.125B."
dragos.com/blog/dragos-joins-f…
Robert M. Lee on Dragos's agreement with Accenture, what it means for customers, and why the OT cybersecurity mission stays independent.Robert M. Lee (www.dragos.com)
reshared this
Aur-Guard: il sistema di protezione per i pacchetti AUR su Arch Linux
linuxeasy.org/aur-guard-il-sis…
Aur-Guard protegge gli utenti Arch Linux analizzando i PKGBUILD AUR e individuando comportamenti sospetti prima dell'installazione
L'articolo Aur-Guard: il sistema di protezione per i
Canada has launched a vulnerability disclosure program for the government's IT networks
The program launched in March on the HackerOne program and has already received 160 reports
cyberincontext.ca/p/canadian-g…
The Government of Canada now has a coordinate vulnerability disclosure program!Alexander Rudolph (Canadian Cyber in Context)
reshared this
AMD has disabled a security feature that encrypts a CPU's memory for consumer chipsets
The Transparent Secure Memory Encryption (TSME) feature will only be available for the Pro versions of AMD CPUs going forward
The feature was designed to protect a CPU's memory in the case of cold boot attacks
arstechnica.com/security/2026/…
AMD's stripping of TSME from consumer CPUs appears to be a deliberate, covert move.Dan Goodin (Ars Technica)
reshared this
At a recent OCP Regional Summit held in Prague, AMD shared its plans to replace its AMD Generic Encapsulated Software Architecture (AGESA) firmware with...Gavin Bonshor (AnandTech)
reshared this
"New Outlook takes 10 seconds to go from notification to the respective mail"
windowslatest.com/2026/06/15/m…
New Outlook takes 10 seconds to show an email after clicking a Windows 11 notification. Outlook Classic does it instantly. Here's why.Abhijith M B (Windows Latest)
reshared this
"But it's only 10 seconds, are you in this much hurry?!"
That was a reply from a fan boy when I pointed out a previous thing that now needed too many steps to do what previous version did with trivial interaction.
Imagine having used light switches all your life. But then LightSwitch365 comes and you have to keep it pressed 10 seconds to turn on the lights.
WTF is this? Did Lab52 get hacked by a Chinese APT?
reshared this
aMule 3.0 rilancia lo storico client P2P con prestazioni e funzionalità moderne
linuxeasy.org/amule-3-0-client…
aMule 3.0 rilancia lo storico client P2P con prestazioni migliorate, supporto Linux aggiornato e nuove opzioni di distribuzione
L'articolo aMule 3.0 rilancia lo storico client P2P con prestazioni e funzionalità
Microsoft has discovered a cryptocurrency clipper that is being spread via an USB worm and has a Tor-based C2
This is either an overengineered tool or North Korea
microsoft.com/en-us/security/b…
Microsoft Threat Intelligence analyzed a cryptocurrency clipper campaign that combines clipboard theft, wallet replacement, Tor-based communications, and worm-like propagation.Microsoft Defender Security Research Team (Microsoft Security Blog)
reshared this
"USB worm" sort of implies that there's something about USB inherent to its ability to spread.
It merely relies on people double-clicking on a .LNK file.
ESET Research shares the results of a months-long investigation into the suite of EDR killers maintained by the RaaS gang Gentlemenwww.welivesecurity.com
reshared this
Mastodon 4.6 introduce Collections, profili rinnovati e nuove funzioni per il Fediverso
linuxeasy.org/mastodon-4-6-col…
Mastodon 4.6 introduce Collections, profili rinnovati, newsletter integrate, miglioramenti per l’accessibilità e nuove opzioni di personalizzazione.
L'articolo Mastodon 4.6 introduce Collections, profili
Almost 40% of the detected cybercrime activity coming out of Asia is online scam-related
interpol.int/en/News-and-Event…
Cybercrime accounts for over 30 per cent of all recorded crime across the regionwww.interpol.int
reshared this
Prock un completo Process Explorer per Linux
linuxeasy.org/prock-process-ex…
Prock porta su Linux un process explorer moderno con alberi di processi, grafici, segnali, porte e preferenze avanzate.
L'articolo Prock un completo Process Explorer per Linux proviene da Linux Easy.
E' vietato riprodurre questo articolo senza autorizzazione.
Questo feed RSS è destinato ai
Fedora Lancia un Installer Web per Sistemi Headless
linuxeasy.org/fedora-lancia-in…
Fedora developa un installatore remoto web basato su browser per sistemi headless, server e dispositivi ARM, alternativo a VNC e RDP, con sicurezza PIN.
L'articolo Fedora Lancia un Installer Web per Sistemi Headless proviene da Linux Easy.
E' vietato
FreeBSD 15.1 Rilasciato: cosa cambia nella nuova versione
linuxeasy.org/freebsd-15-1-ril…
FreeBSD 15.1 migliora sicurezza, storage, rete, virtualizzazione e strumenti di sistema con molte novità pratiche.
L'articolo FreeBSD 15.1 Rilasciato: cosa cambia nella nuova versione proviene da Linux Easy.
E' vietato riprodurre questo articolo senza
Another supply chain attack in the WordPress ecosystem, this one at ShapedPlugin
An attacker compromised its build pipeline to add a backdoor to its commercial plugins.
The free versions distributed through WordPress[.]org were not affected.
reshared this
"Vulnerability Disclosure: Stealing Emails via Firefox’s AI Features"
👀👀👀👀
reshared this
they are also on Mastodon:
infosec.exchange/@Insinuator/1…
New post: Vulnerability Disclosure: Stealing Emails via Firefox’s AI Features https://insinuator.net/2026/06/vulnerability-disclosure-stealing-emails-via-firefoxs-ai-features/Insinuator (Infosec Exchange)
reshared this
Mastodon 4.6 released today. It lets me force 2FA on accounts.
Also, heads up, I am going to force 2FA on accounts.
Note: this is only applicable to: infosec.exchange
infosec.space
ioc.exchange
convo.casa
Cătă 🇷🇴🇺🇦🇲🇩🇪🇺 likes this.
reshared this
If you've lost track of all the BreachForums clones... KELA has you covered
kelacyber.com/blog/breachforum…
After the October 2025 FBI seizure, BreachForums fractured into rival successors. KELA maps PWN, Breached and HasanBroker's DoxByte project.KELA Cyber Intelligence Center (kelacyber)
reshared this
"The BreachForums brand is now decoupled from legitimacy and from infrastructure. No 2026 forum holds uncontested succession rights. The original owners have disavowed all claimants, meaning continuity of the name does not equal continuity of capability or operators."
Interesting
Telegram's cybercrime moderation is working, but the criminal groups are very very persistent and annoying, so it barely made a dent in two years
blog.openmeasures.io/p/telegra…
Telegram has removed millions of illicit channels in recent years, but cybercriminals are adapting tactics to evade detectionOpen Measures (Open Measures Newsletter)
reshared this
Zero-day in JCE, one of Joomla's most popular WYSIWYG editors
joomlacontenteditor.net/news/j…
This has been abused to drop web shells since the start of the month
The June 2026 JCE Profiles hack drops webshells on unpatched Joomla sites. See how mySites.guru finds rogue editor profiles and backdoors across every site you manage.mySites.guru
reshared this
Meshy il client moderno per gestire le reti mesh LoRa con MeshCore
linuxeasy.org/meshy-client-mod…
Meshy è il client per reti mesh LoRa MeshCore che offre messaggistica cifrata, mappe interattive e gestione avanzata dei dispositivi
L'articolo Meshy il client moderno per gestire le reti mesh LoRa con MeshCore proviene da
CSAM generation is now openly "critical for national security." So yeah, America is going about as expected.
The US government has intervened in a lawsuit on the side of X, saying Grok is "critical for national security" wired.com/story/doj-lawyers-ar…DOJ Lawyers Argue xAI Is ‘Vital’ for National Security in NAACP Lawsuit
In a bid to dismiss a lawsuit over xAI's polluting gas turbines, the Justice Department claimed the company is integral to military operations—including the Iran War.Molly Taft (WIRED)
reshared this
a CSAM generator is national security in a nation run by a pedophile.
Agreed, this passes the sniff test
A threat actor has hijacked the npm account of the Mastra TypeScript framework and inserted malware in all its 116 libraries
TanStack repeat underway
endorlabs.com/learn/mastra-npm…
A single hijacked maintainer account pushed multiple trojanized packages across the entire @mastra scope in 27 minutes, each carrying a typosquat dependency that runs a remote payload on install. Combined reach is over 28 million downloads a month.Endor Labs
reshared this
Luca Sironi
in reply to Lorenzo • • •per colpa di questi grandi loacker, ci perderemo pure DecTalk 😐
#retrocomputing
Lorenzo likes this.