Skip to main content

Search

Items tagged with: Software

New IP leak discovered in Telegram: the built-in proxy exposes your real IP using a single-click flaw!

When you click on a "tg://proxy" link, Telegram starts a connection while ignoring your proxy settings. This exposes your real public IP address, leaking your identity online.

The malicious link appears as a nickname, but will steal your real IP address as soon as the user profile is shown. Android and iOS are both affected. Currently the only solution is using a VPN. Telegram has declared that it will only add a warning popup.

Details: dig.watch/updates/telegram-ip-…

Discovered by: Saurabh
Reported by: 0x6rss and GangExposed RU.

#telegram #security #vulnerability #android #ios #software #opensource #foss #cloud #im #chat #proxy #vpn

One-click vulnerability in Telegram bypasses VPN and proxy protection | Digital Watch Observatory

Researchers say a hidden proxy feature in Telegram can silently expose a user's true network location.
jovankr@diplomacy.edu (Digital Watch Observatory)
#opensource #security #Cloud #software #android #foss #telegram #chat #iOS #vpn #vulnerability #im #proxy

Nice to see TROMjaro on the front page of DistroWatch :)

tromjaro.com/

#linux #opensource #tromjaro #arch #manjaro #distrowatch #foss #software

#opensource #Linux #software #foss #arch #manjaro #TROMjaro #distrowatch

Is your lab doing code reviews? I'd like to learn from your experiences and practices!

In our teams, we're establishing internal peer-reviews of our research software. Our focus is on the correctness of our "one-off" analysis scripts that our results are based on. Because of that, the usual, patch-centered review processes don't quite work, nor does the tooling on the Git forges, as they only work for Git diffs, not the "finished" script.

Please also let me know about any practical procedures and materials that explain how to organize and document such reviews. So far, I've found stuff from the software industry, including the "IEEE Standard for Software Reviews
and Audits", but that's very abstract and not easy to translate into the context of small teams and projects like ours, in the behavioral and psychological sciences...

#academia , #software , #peerReview , #academicchatter

#software #academicchatter #academia #PeerReview

*Herstellerwillkür: Geplante #SoftwareObsoleszenz entwertet technisch funktionsfähige Geräte*

(6/n)

.. .nur in gewissem Rahmen prognostiziert werden kann, hat man bei #Software ein minutengenaues Präzisionswerkzeug.

Ökologisch ist diese Ressourcenverschwendung auch fatal.

Dies wäre größtenteils
durch entsprechende Gesetzgebung zu regeln:

Onlinedienste und Geräteapps müssen...

@Handelsblatt @technologie-Handelsblatt

#software #softwareobsoleszenz @Handelsblatt @Technologie

*Herstellerwillkür: Geplante #SoftwareObsoleszenz entwertet technisch funktionsfähige Geräte*

(2/n)

...ihrer [#BOSE-] Geräte nachträglich beschnitten werde."

"Wie systematisch das Problem ist, zeigt eine Studie im Auftrag des #Umweltbundesamt|s aus dem Jahr 2023. In der Untersuchung analysierten Wissenschaftler, unter anderem von der #TechnischenUniversitätBerlin, wie #Software die Lebensdauer von #Konsumgütern beeinflusst.

In der 170 Seiten...

@Handelsblatt @technologie-Handelsblatt

#software #Böse #softwareobsoleszenz #umweltbundesamt #technischenuniversitatberlin #konsumgutern @Handelsblatt @Technologie

In 2020 scientists renamed 27 human genes because Microsoft Excel kept auto-converting their names into dates, causing widespread errors in published genetic research

Gene symbols like SEPT1 and MARCH1 were automatically turned into dates (e.g., “Sep-01,” “Mar-01”) when opened in Excel. These mistakes showed up in supplementary data and even peer-reviewed papers.

reddit.com/r/todayilearned/com…

#Microsoft #Excel #science #software #technology #genetics

#technology #software #science #microsoft #genetics #excel

RE: mastodon.social/@madeindex/115…

🤖 #OpenAI just officially admitted that they will never be able to make their #AI Browsers truly safe!

Of course they won't let themselves be stopped from selling their #product by such a minor detail ;)

"We expect adversaries to keep adapting. Prompt injection, much like scams and social engineering on the web, is unlikely to ever be fully “solved”..."
openai.com/index/hardening-atl…

#chatgpt #atlas #it #news #internet #browser #artificialintelligence #ki #promptinjection #tech #technology #software

MadeInDex 📰🌎 (@madeindex@mastodon.social)

🤖 AI browsers are NOT safe! There is a thing called "prompt injection" and it works.¹ Funnily the thing that most see as a major issue with AI, the crawling of the #web and one-way use of it's content, is exactly what makes their AI browsers unsafe…
MadeInDex 📰🌎 (Mastodon)
#internet #News #ai #technology #software #tech #browser #IT #artificialintelligence #openai #product #chatgpt #KI #atlas #promptinjection

Yesterday I found CodeFloe: A public Forgejo (Git server) instance that is open to any projects and users.

Unlike Codeberg, it it not limited to Open Source licensed projects.

If you were thinking "Codeberg is nice, but what about my personal closed-source projects?" - this might be a solution for you!

The instance is hosted in Germany by "devYX GmbH", a swiss company. They're doing backups and are carefully designing their infrastructure. And they're very open about how it all works and what software they use. 👏

codefloe.com / @codefloe

#forgejo #opensource #git #hosting #devxy #codeFloe #codeberg #development #software

#opensource #software #git #development #hosting #Codeberg #forgejo #codefloe #devxy @codefloe