fpf.org/blog/brazils-anpd-prel…
@privacy
Brazil’s Autoridade Nacional de Proteção de Dados (“ANPD”) Technology and Research Unit (“CGTP”) released the preliminary study Inteligência Artificial Generativa
Brazil’s ANPD Preliminary Study on Generative AI highlights the dual nature of data protection law
This analysis aims to provide information for developers, processing agents, and data subjects on the potential benefits and challenges of generative AI in relation to the processing of personal information under existing data protection rules.Future of Privacy Forum
The Privacy Post reshared this.
#CyberSecurity
securebulletin.com/critical-ro…
Critical Roundcube vulnerability (CVE-2025-49113): exploit sold in Darknet as “Email Armageddon” looms - Secure Bulletin
A decade-old Remote Code Execution (RCE) flaw in Roundcube, the widely used open-source email client, has escalated into a global cybersecurity emergency. Designated CVE-2025-49113 with a near-maximum CVSS score of 9.securebulletin.com
reshared this
#CyberSecurity
securebulletin.com/silk-roads-…
Silk Road’s Ross Ulbricht receives $31 Million in Bitcoin from AlphaBay-linked source after release - Secure Bulletin
The libertarian and crypto communities recently celebrated the release of Ross Ulbricht, the infamous founder of the Silk Road darknet marketplace.securebulletin.com
reshared this
fpf.org/blog/cross-border-data…
@privacy
Cross-border data flows are critical to Africa’s digital economy, enabling trade, innovation, and access to continental and global markets. As the drive towards data-driven technologies among businesses and governments grows, the ability to
Cross-Border Data Flows in Africa
This Issue Brief provides an overview of the current policy landscape for inter-African cross-border data flows, and proposes possible paths toward regulatory cooperation.Future of Privacy Forum
The Privacy Post reshared this.
#CyberSecurity
insicurezzadigitale.com/nuovo-…
(in)sicurezza digitale
Notizie cybersecurity, malware, ransomware e sicurezza dei datiDario Fadda (inSicurezzaDigitale.com)
reshared this
#CyberSecurity
insicurezzadigitale.com/cyberw…
(in)sicurezza digitale
Notizie cybersecurity, malware, ransomware e sicurezza dei datiDario Fadda (inSicurezzaDigitale.com)
reshared this
fpf.org/blog/fpf-unveils-paper…
@privacy
Today, the Future of Privacy Forum (FPF) published a new paper—Data Minimization’s Substantive Turn: Key Questions & Operational Challenges Posed by New State Privacy Legislation. Data minimization is a bedrock principle of privacy and data protection law, with origins in the Fair Information Practice Principles (FIPPs) and the Privacy Act of 1974. At
FPF Unveils Paper on State Data Minimization Trends
Today, the Future of Privacy Forum (FPF) published a new paper—Data Minimization’s Substantive Turn: Key Questions & Operational Challenges Posed by New State Privacy Legislation.Future of Privacy Forum
The Privacy Post reshared this.
Ma quanto mi costa la privacy? Al contrario, il GDPR conviene.
@Privacy Pride
Il post completo di Christian Bernieri è sul suo blog: garantepiracy.it/blog/gdprconv…
Se pensi che un professionista sia troppo caro, aspetta di vedere quanto ti verrà a costare l'esserti affidato ad un dilettante. Il CNIL, il Garante francese, ha pubblicato uno studio che analizza i costi del GDPR. Non un semplice bilancio
reshared this
#CyberSecurity
securebulletin.com/sophos-expo…
Sophos exposes massive GitHub campaign distributing backdoored malware - Secure Bulletin
A sophisticated malware campaign targeting hackers, gamers, and cybersecurity researchers has been uncovered on GitHub, leveraging fake exploits, game cheats, and open-source tools to distribute backdoors.securebulletin.com
reshared this
#CyberSecurity
securebulletin.com/meta-and-ya…
Meta and Yandex Android apps exploit Localhost to track users - Secure Bulletin
A recent investigation has uncovered that native Android apps from Meta (including Facebook and Instagram) and Yandex have been covertly tracking billions of users by exploiting localhost communications—a mechanism that allows apps and browsers on th…securebulletin.com
reshared this
#CyberSecurity
insicurezzadigitale.com/dallha…
(in)sicurezza digitale
Notizie cybersecurity, malware, ransomware e sicurezza dei datiDario Fadda (inSicurezzaDigitale.com)
reshared this
fpf.org/blog/vermont-and-nebra…
@privacy
In May 2025, Nebraska and Vermont passed Age-Appropriate Design Code Acts (AADCs), continuing the bipartisan trend of states advancing protections for youth online. While these new bills arrived within the same week and share both a common name and general purpose, their scope, applicability,
The Privacy Post reshared this.
Il sindaco di Sardara Giorgio Zucca ha pubblicato un’immagine di una "donna sospetta", ma stava solo cercando i suoi gattini
Una dottoressa della Asl cercava i propri gattini scomparsi ma il sindaco l'ha additata come una malintenzionata che girava per il paese per individuare abitazioni da “ripulire”
lanuovasardegna.it/cagliari/cr…
Il sindaco sul web: «Attenti a questa donna». Ma lei cercava soltanto i suoi gatti
Il primo cittadino Giorgio Zucca ha pubblicato un’immagine sui social scatenando il caos. Nel “mirino” un medico dell’Asl che andava in cerca dei suoi animali domesticidi Luciano Onnis (La Nuova Sardegna)
reshared this
#CyberSecurity
insicurezzadigitale.com/cve-20…
(in)sicurezza digitale
Notizie cybersecurity, malware, ransomware e sicurezza dei datiDario Fadda (inSicurezzaDigitale.com)
plan-A likes this.
reshared this
June Newsletter 📣
Last weeks were quite busy with the kick-off of the Refund4Freedom initiative and attending conferences around Europe 🌍
⚖ We also went through the issue of the threshold of originality for copyrightable source code and talked in our latest episode of the Software Freedom Podcast about the tech sovereignty debate in the EU 🇪🇺
#SoftwareFreedom #FreeSoftware
fsfe.org/news/nl/nl-202506.en.…
Refund4Freedom +++ Legal Corner +++ SFP - FSFE
May kept us quite busy attending conferences and with the kick-off of the Refund4Freedom initiative. We also went through the issue of the threshold of ori...FSFE - Free Software Foundation Europe
reshared this
5 Minuten heute Abend? 😀
Die Auskunftei #CRIF hat die Daten von Millionen Leuten in Österreich gesammelt - und den meisten Leuten einen "Score" zugewiesen nur anhand von Anschrift, Alter und Geschlecht.
Finde jetzt raus was die #CRIF über dich speichert und hilf mit Licht ins Dunkel zu bringen ⏩ crif.noyb.eu/
reshared this
#WhatsApp NEWS
🆕Questa potrebbe essere una modifica importante: Whatsapp introdurrà gli username!
✅Non sarà più quindi obbligatorio legare/condividere l’account ad un numero di telefono, per poter conversare con gli altri utenti
9to5mac.com/2025/06/02/whatsap…
WhatsApp is finally getting usernames - 9to5Mac
WhatsApp is gearing up to launch a long-awaited feature: usernames, so users can connect with others without sharing their actual phone numberMarcus Mendes (9to5Mac)
reshared this
#CyberSecurity
insicurezzadigitale.com/crocod…
(in)sicurezza digitale
Notizie cybersecurity, malware, ransomware e sicurezza dei datiDario Fadda (inSicurezzaDigitale.com)
reshared this
Industry Committee vote: Technology sovereignty is only possible with Free Software
The Industry committee of the European Parliament shows necessity and benefits of “open-source first” policy but report lacks concrete measures.
fsfe.org/news/2025/news-202506…
Industry Committee vote: Technology sovereignty is only possible with Free Software - FSFE
Industry committee of the European Parliament shows necessity and benefits of “open-source first” policy but report lacks concrete measures....FSFE - Free Software Foundation Europe
reshared this
Il datore di lavoro può raccogliere i log di navigazione e i metadati delle mail dei dipendenti solo in presenza di specifiche condizioni e garanzie.
Il provvedimento del #GarantePrivacy è stato deliberato al termine di un ciclo ispettivo sui trattamenti dei dati dei dipendenti
reshared this
CRIF ha un "punteggio" per quasi tutti gli austriaci. noyb ha bisogno di sostegno per una potenziale azione legale collettiva noyb vuole esaminare scientificamente il punteggio del CRIF e il suo significato - e potenzialmente lanciare un'azione legale collettiva. Abbiamo bisogno del vostro aiuto! mickey03 June 2025
reshared this
Ordine degli Psicologi, la sanzione (tardiva) del Garante e le regole non scritte
@Privacy Pride
Il post completo di Christian Bernieri è sul suo blog: garantepiracy.it/blog/psyco/
Ordine degli Psicologi, la sanzione (tardiva) del Garante e le regole non scritte [Un nuovo glorioso articolo di Signorina37 per GarantePiracy.] Sono passati quasi 18 mesi dall'attacco #ransomware all’Ordine degli Psicologi della
reshared this
📣 Spread the word about #SoftwareFreedom! Order promotional material!
For example, you can:
🔸 Take it to your next #FreeSoftware meeting
🔹Explain to your friends and colleagues why #FreeSoftware is important and share our stickers and material with them
🔸 Organize a booth or a talk
fsfe.org/contribute/spreadthew…
The Privacy Post reshared this.
#CyberSecurity
insicurezzadigitale.com/bitmex…
(in)sicurezza digitale
Notizie cybersecurity, malware, ransomware e sicurezza dei datiDario Fadda (inSicurezzaDigitale.com)
reshared this
#CyberSecurity
securebulletin.com/debunking-o…
Debunking OrbitShade: AI-Driven misinformation in Cyber Threat Intelligence - Secure Bulletin
The recent public report dated April 29, 2025, alleging the existence of a state-sponsored malware named OrbitShade targeting satellite infrastructure appears to be a fabricated narrative likely generated by AI, as assessed by Google Threat Intellige…securebulletin.com
reshared this
🇩🇪Keine Mehrheit im EU-Rat für den polnischen Vorschlag, die #Chatkontrolle solle freiwillig und sichere #E2EE Verschlüsselung ausgenommen bleiben. netzpolitik.org/2025/interne-d…
Im Herbst will Dänemark als neuer Vorsitz die extreme Version der #Chatkontrolle 2.0 durchdrücken...
Interne Dokumente: Polen gibt Einigung bei Chatkontrolle auf
Die EU-Staaten werden sich auch unter der polnischen Ratspräsidentschaft nicht auf eine gemeinsame Position zur Chatkontrolle einigen. Polen hat angekündigt, dass esnetzpolitik.org
reshared this
💥 No more imposed licensing - Get back the cost of your Windows License! 💥
When acquiring a new laptop you often end up dealing with an imposed pre-installed Microsoft Windows operating system. Even if you do not want to use it, you still need to pay for the Windows license. 𝗧𝗵𝗶𝘀 𝗶𝘀 𝘂𝗻𝗳𝗮𝗶𝗿.
The Refund4Freedom initiative guides users in how to get their money back in these cases and demands the end of this practice that limits user freedom.
fsfe.org/news/2025/news-202505…
No more imposed licensing - Get back the cost of your Windows License! - FSFE
When acquiring a new laptop you often end up dealing with an imposed pre-installed Microsoft Windows operating system. Even if you do not want to use it, y...FSFE - Free Software Foundation Europe
reshared this
I haven't fully researched this but it would be helpful to mention prominently.
#CyberSecurity
securebulletin.com/windows-11-…
Windows 11 fails to start after KB5058405 update - Secure Bulletin
The recent disclosure by Microsoft regarding the KB5058405 cumulative update for Windows 11 has significant implications for enterprise cybersecurity and IT operations.securebulletin.com
reshared this
#CyberSecurity
insicurezzadigitale.com/vulner…
(in)sicurezza digitale
Notizie cybersecurity, malware, ransomware e sicurezza dei datiDario Fadda (inSicurezzaDigitale.com)
reshared this
#CyberSecurity
securebulletin.com/ransomware-…
Ransomware attack in MathWorks outage that paralyzed MATLAB - Secure Bulletin
When the world’s engineers, scientists, and students logged in to MATLAB on May 18, 2025, many were met with silence—a digital void where powerful tools once lived.dark6 (securebulletin.com)
reshared this
📚 Ada & Zangemann isn’t just a story, it’s a book about tech and software freedom.
Let’s get this book into more homes, schools, and libraries! Read it with kids. Talk about tech. Inspire to tinker.
💡 Gift it. Organize a reading. Share it.
ada.fsfe.org
The Privacy Post reshared this.
In memoria di John Young e Cryptome
Il più antico progetto per la libertà di informazione in rete che non si è mai svenduto e non si è mai arreso.
Siamo onorati di pubblicare questo contributo, scritto da @jaromil per ricordare John Young, co-fondatore del leggendario archivio internet #Cryptome, scomparso all'età di 89 anni il 28 marzo scorso.
pirati.io/2025/05/in-memoria-d…
like this
reshared this
👏 It is with great excitement that we announce the appointment of @Ambersinha as EDRi’s new Executive Director! 👏
He will join us in late 2025, as responsible for leading the organisation in achieving its mission and strategy, securing its financial sustainability and ensuring oversight, and the daily management.
Amber brings a vision that recognises Europe’s role in the world, civil society’s need for intersectional work and for a justice lens in EDRi’s strategy.
➡️ edri.org/our-work/welcoming-ou…
Welcoming our new Executive Director Amber Sinha - European Digital Rights (EDRi)
It is with great excitemenet that we announce the appointment of Amber Sinha as EDRi’s new Executive Director.European Digital Rights (EDRi)
reshared this
Software licences define the conditions under which a programme can be used and reused.
For it to be #FreeSoftware the licence text must contain at least the four freedoms (use, study, share, improve).
Learn about the most common free software licences with Lucas Lasota:
The Privacy Post reshared this.
💥Refund4Freedom è in arrivo!💥
@ItaLinuxSociety ed @fsfe sono felici annunciare il lancio di Refund4Freedom.
👀 Questa iniziativa promuove il diritto scegliere il tuo sistema operativo e ricevere un rimborso per il software che non vuoi!
📆 Unisciti a noi --> l’evento di lancio è il 29 maggio alle 19:00.
Iscriviti qui all’evento: pretix.eu/fsfeItaly/refund4freedom/
reshared this
#CyberSecurity
securebulletin.com/anatomy-of-…
Anatomy of the Winos 4.0 campaign - Secure Bulletin
The Winos 4.0 campaign, as dissected by Rapid7, exemplifies the evolving sophistication of contemporary malware operations targeting Chinese-speaking environments.securebulletin.com
reshared this
💥 Refund4Freedom is here! 💥
The and @ItaLinuxSociety are happy to announce the launch of Refund4Freedom!
👀 This initiative promotes the right to choose your operating system and get a refund for pre-installed software that you don’t want.
Check out its website for more information - refund4freedom.org/
📆 And save the date! Join our launch event on 29th May (in Italian).
Registration for the event: pretix.eu/fsfeItaly/refund4fre…
reshared this
@quantum Everyone should be entitled to get a license refund if the software is not used. The procedures can vary significantly among countries.
We encourage you to learn more how this is done where you live. And let us know if you are successful!
Arrivano le API 🐝
Un importante passo per standardizzare la condivisione dei dati che la piattaforma #Ransomfeed produce, in maniera aperta e documentata.
💻 Questo aiuterà a diminuire il gap che si crea con RSS rispetto a certe piattaforme di intelligence migliorando l’integrazione a 360 gradi
L’endpoint per iniziare è questo:
➡️ api.ransomfeed.it/docs oppure
➡️ api.ransomfeed.it/docs/html
reshared this
e-privacy XXXVI
@Privacy Pride
Il post completo di Christian Bernieri è sul suo blog: garantepiracy.it/blog/e-privac…
Un bel posto, Bari. Un bell'evento, e-privacy. Un bel presidente, Marco Calamari (Cassandra)... questo però non si può dire senza sorridere e per più di un motivo. Un bel tema: «La vita è tutto un dossier» Avere come obiettivo solo una riduzione del danno alla…
Privacy Pride reshared this.
🍀 ThePrivacyPost è un account di servizio gestito direttamente dagli amministratori di Poliverso e pubblica notizie provenienti da diversi siti, blog, account del fediverso e alcuni contenuti originali.
🩸 Se apprezzi questo servizio, prendi in considerazione la possibilità di effettuare una donazione a Poliverso. Puoi scegliere due canali:
1) Ko-Fi ☕
2) LiberaPay 💳
reshared this
plan-A
in reply to N_{Dario Fadda} • • •@N_{Dario Fadda}
be aware is a false http request with more.
my browser denied access and wont load so I did this.
Than this:
plan-A
in reply to plan-A • • •@N_{Dario Fadda}
is just delete url and type /// and enter. you are in root directory of that site.
while site loads be fast though if your browser let this trough.
Do it in Docker or a VM btw where this wont hurt only windows maybe or other than Linux.
That ! at URL header on that picture show you is a false TLS handshake..
Look friend: developer.mozilla.org/fr/obser…
Scan results - HTTP Observatory | MDN
MDN Web DocsN_{Dario Fadda}
in reply to plan-A • • •@zer0unplanned
When you obtain this error scan?
If I request a scan result this:
developer.mozilla.org/fr/obser…
Scan results - HTTP Observatory | MDN
MDN Web Docsplan-A
in reply to N_{Dario Fadda} • • •This is just to see the headers, as you it has many flaws.
The test I did as you see above in console just with a ping in order to obtain ip for whois command, as my browser blocked it by going there it alerted me that site is unsafe.
The bad header implications or lack of securing the site explains it somehow why my browser might have blocked it. Try out VT4 as it blocks my Tor I can not access it but I bet there must be a something, there go in details even if it is not flagged.
Do not take it as reproach, rather a tip. It is rare that I'd be blocked to ping using Tor even if you refuse Tor access to your site. These Headers are easy to fix. But I could not reach it.
Grtz
plan-A
in reply to plan-A • • •It might block my connection using DoH along with Tor?
here another way to check headers to secure the site.
securityheaders.com/?q=https%3…
Scan results for www.insicurezzadigitale.com/cyberwarfare-tra-cina-e-taiwan-nuove-frontiere-della-tensione-geopolitica/
securityheaders.complan-A
in reply to plan-A • • •And after a few attempts it works now by inspecting unloaded page.
insicurezzadigitale.com/cyberw…
About the error is in inspecting site dev mode..
plan-A
in reply to plan-A • • •So as you see a Client-Side issue> so is on my side, the 200 ok HTML code tells me received by your site but there if I could not reach it before and now yes, means that my device or Browser had issues (browser settings that interfered by loading the page as my network works decently fast) All else as DNS resolve or caching or server side can be ruled out as you see in the error's in F12.
But in the end it did with that SuperPWA plug in activated.
But with the previous Header checks I posted there is a risk of vulnerability.
WordPress..
N_{Dario Fadda}
in reply to plan-A • • •wordpress is nice but it is very complex in an environment with many plugins and also the security of all these plugins has tired me a bit. I have been working for some time to find an alternative solution, even giving up a lot of graphics and aiming more for clean content in plain HTML, but that is equally productive in terms of work in creating content. I have tried many solutions, but they have not convinced me yet. I am evaluating Jakyll with git, but in terms of editor it is too unproductive.
I am definitely tired of Wordpress
plan-A likes this.
plan-A
in reply to N_{Dario Fadda} • • •while it should fit in the Diaspora powered fediverse, the CEO announce half a year ago or so that he drops support etc. It is very vulnerable, I find many in Meterpreter to inform you. (MetaSploit) I just scan not use.
my ip and my profile is eyed and I do not blackhat, rather white or grey.
But yes they depend on plug-inn's that also affect users. I will look out for a replacement for you but it wont work in the fediverse.
Have a nice day.
Try the other 2.
plan-A
in reply to N_{Dario Fadda} • • •I did a change that might have gave me access. But as long the SSL is ok I would care bout that handshake policy(TLS) and X-Frame. But I guess you can not undo that as I guess you use it as a proxy this WP. the 1st HSTS is normal on WP.