Just don’t jump too high…

“The two vulnerabilities are linked to the router firmware’s AiCloud feature”

Unsanitzed inputs is bad enough but come the fuck on. Who thought any part of this was a good idea?

Neat. I feel like this is one area where bots are already good at it but maybe with just visual data to work with they might have to try harder.

So, the supply chain affected wasn’t wordpress source but git repos of other malicious tools used to attack stuff, like wordpress. They stole from people stealing stuff. The headline makes it seem like the wordpress source was compromised.

I like it, the interface is super easy to use and I like that you can put a suffix in the url to separate a device name for custom rules or filtering.

Here’s microsoft’s info: https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2024-49071

MS says they mitigated it without user intervention. Allegedly someone with privileges for Windows Defender could access an index file and send file contents over a network. I couldn’t tell if the file contents were just the index itself or file contents from elsewhere on the machine but I think it’s the former.

Anyway, MS says it’s fixed and pay no attention to the man behind the curtain.

Looks like AMD has already patched it, also appears to affect older Intel versions of the same tech concept but not current generations.

Only really affects guests in multi tenant hypervisor environments, requires physical access to the hypervisor, requires external physical hardware, requires booting the host with said hardware attached, at some point this level of compromise is already absurd. This kind of research is important and shows that we still need to limit out level of trust with host providers but I don’t think anyone needs to panic.

Security through minority is not a best practice. More support would also lead to hardened security even if it becomes a more lucrative target.

Because more market share means more fucks to give from companies that make stuff we use.

while this is great and should be celebrated, keep in mind the specific word electricity. Those of us from warmer states probably arent familiar with how many joules of heat come from oil or gas furnaces which significantly reduces the electricity demand of each home. I was really surprised when I moved from FL to MA that I only had a 100A service line because the furnace and water heater are fueled by #2 oil. Gross. Anyway, according to these guys:
https://www.eia.gov/state/analysis.php?sid=SD
the population of SD is tiny so they don’t use much for heating either so that’s cool, hopefully with a bit more electrification they can reduce their consumption even more.

Also it looks like it requires the user to interact with a specially crafted archive file and can access memory within context of the user.

Hell yeah, haven’t made a donut in a while and I have some downtime. Gday mate!

It’s amazing, they look awful in videos and pictures but then you see one in person and it’s just stunning to look at, not in a good way. They’re the stupidest looking things.

i use notepad to paste garbage that needs the formatting stripped out, they better not fuck that up.

nyan answered your question, I just want to add that older photoshop allegedly runs well in wine and for me personally i’ve had a lot of success with photopea although I’m a terrible example because I don’t do much with it.

not OP but yeah, hopefully it works in wine or has a webapp, failing that I look for alternative software that meets my needs. If all else fails I suppose I could use a windows VM until a better solution appears. It’s really going to depend on your specific case and how vendor locked you are.

Russian government officials trying to get away from windows, eh?

Hard coded credentials? Really?

bloat

Some of y’all are gunna learn today that on this same system there was StarWars Pod Racing, and you could use 2 controllers, one for each engine. You’re welcome.