PSA regarding a change in how Secure Boot will work in Fedora soon. The change isn't urgent, but it is something you should take a look at.

If you have any questions about this, please ask in our forum. 🙏

➡️ fedoramagazine.org/expiration-…

Forum: discussion.fedoraproject.org/c…

#Fedora #Linux #OpenSource #Cybersecurity #InfoSec #SecureBoot

What you need to know about the Microsoft Secure Boot certificate expiration: Don’t Panic! - Fedora Magazine

UEFI Secure Boot keys will expire in June 2026 which means Microsoft can no longer sign with them. Machines will continue to boot as long as the current public keys are not removed from db or revoked by dbx.

^{Marta Lewandowska (Fedora Project)}

404 Media: This Company Will Add Phone, AirPod, and Smartwatch Trackers to License Plate Readers

404media.co/this-company-will-…

#alpr #privacy #cybersecurity #bigbrother

This Company Will Add Phone, AirPod, and Smartwatch Trackers to License Plate Readers

SignalTrace “links devices that regularly travel together, correlating them to license plate.” It is a surveillance product that will sweep up and add all sorts of Bluetooth and other data to license plate readers, linking specific devices—and people…

^{Joseph Cox (404 Media)}

How a USB-connected speaker can infect a PC without ever being touched

arstechnica.com/security/2026/…

#cybersecurity #SoundBlaster #KatanaV2X

How a USB-connected speaker can infect a PC without ever being touched

Seller of the Sound Blaster Katana V2X doesn't consider the behavior a vulnerability.

^{Dan Goodin (Ars Technica)}

#GoAway: A lightweight #DNS sinkhole for blocking unwanted domains at the #network level. #Block #ads, #trackers, and malicious domains before they reach your devices.

source: github.com/pommee/goaway
documentation: pommee.github.io/goaway

#linux #tool #foss #floss #ad #advertisement #cybersecurity #security #tool #utility #windows #macos #internet #online #tracker #surveillance #spy #malware #domain

The EU unveiled a tech sovereignty package to cut reliance on foreign cloud, chip and software providers, while keeping markets open to selected partners. 🇪🇺
The plan adds cloud sovereignty tiers, backs EU tech capacity, expands chip intervention powers, and allocates €2B for open-source software. 🔓

🔗 techpolicy.press/eu-unveils-sw…

#TechNews #EU #Europe #TechSovereignty #CloudComputing #Semiconductors #OpenSource #DigitalSovereignty #DataPrivacy #Cybersecurity #AI #Cloud #Chips #Infrastructure #Tech

EU Unveils Sweeping Tech Sovereignty Push, Balancing Autonomy with Openness

The “tech sovereignty” package marks the bloc’s most ambitious attempt yet to reduce dependence on non-European providers, reports Ramsha Jahangir.

^{Ramsha Jahangir (Tech Policy Press)}

#news #google #cybersecurity #internet #ai #technology #software #support #googledrive #cloud #customer #economy #online #service #fail #bigtech #company #evil #security

♲ Bonobo - 2026-06-04 23:19:30 GMT

Manga Artist Loses Entire Google Account After AI Flags His Own Artwork on Drive

Japanese manga artist Masahiro Itosugi, creator of the adult series Aki Sora, had his Google account suspended after uploading old manga manuscripts to Google Drive. His appeal was reviewed and rejected, and the artist suspects that at every stage he was dealing with an AI moderator, not real employees.

glitchwire.com/news/manga-arti…
🤖

#meme #technology #future #ai #surveillance #orwell #bigbrother #datacenter #politics #economy #water #humanrights #DrinkingWater #environment #nature #earth #survival #life #quote #wisdom #control #society #cybersecurity #humanity

♲ Simonalein ⁽⁽⁽i⁾⁾⁾ - 2026-06-02 21:51:07 GMT

♲ @libramoon@diaspora.glasswings.com:

#meme #society #idiocracy #politics #news #propaganda #fake #simulation #system #matrix #democracy #racism #fascism #nonazis #usa #worldorder #conspiracy #maga #qanon #future #humanity #climate #justice #epsteingate #trump #war #terror #security #cybersecurity #ai #humanrights #humanity #ethics #life #relaxe #chill #warfare #bigbrother #surveillance #orwell #economy #inflation

🚨 Upgrade or be hacked. 🚨

There is a "hacker" group (script kiddies) targeting Mastodon sites that are not yet running Mastodon 4.5.10.

Version 4.5.10 fixes several security vulnerabilities that are relatively easy to exploit and were discovered in earlier versions of Mastodon.

If you're not running 4.5.10 (or newer), you are at risk. ⚠️

If you're using a nightly build of Mastodon, make sure you're running one that was released after the release date of 4.5.10. And yes, I said release date, not version number — earlier 4.6 nightly builds do not include the security patch. ⚠️

If you're delaying the update because you're running a modified version of Mastodon, consider whether maintaining those modifications is worth the security risk. ⚠️

#Mastodon #Security #CyberSecurity #MastoAdmin #FediAdmin #OnlineSafety

Filed under: You Can't Fix stupid.

Yesterday I got a spam email that contained only the instructions on preparing a scam email. 😂

So now I have posted those, in full. Ladies and gentlemen, start your spam filters!

ambitonline.com/nextrelease/20…

#scam #spam #phishing #CyberSecurity

Most web browsing has been using post-quantum secure algorithms for years now.

Why? Browsers and large CDNs have pushed for post-quantum key agreement implementations, such as X25519MLKEM768.

This has been a great success: No one needed to change or configure anything, or even know about it. This is the best kind of security: unobtrusive and transparent, without requiring user involvement for deployment.

#pqc #pqcryptography #cybersecurity #infosec

How I make my solar panels last long enough to pay for themselves

You need to maintain your solar panels if you want them to last. Here are my top care tips, plus how to test for faulty ones.

zdnet.com/article/how-to-make-…

#Tech #Technology #TechNews #AI #Gadgets #Software #Cybersecurity #Apple #Google #Microsoft #Startup #OpenSource #ZDNet [ZDNet]

Oooh, this could be loads of fun.

IEEE Spectrum: Voice AI Systems Are Vulnerable to Hidden Audio Attacks

Research shows sounds unheard by human ears can hijack models’ behavior

spectrum.ieee.org/voice-ai-aud…

#cybersecurity #AI

Hidden Signals Can Hijack AI Voice Systems

^{Edd Gent (IEEE Spectrum)}

#CyberSecurity

#BigBrother 3.0 is coming, AT least in the #US:

"...#AI Identity Matching :

• Continuous Authentication Models: 👉Always-on identity verification mechanisms👈

• AI-Powered Identity Agents: 👉Autonomous systems managing identity validation👈

• Global Identity Networks: 👉Seamless cross-border identity interoperability👈

The US #IdentityVerification forecast indicates a transition toward 👉fully autonomous and intelligent identity ecosystems.👈

linkedin.com/pulse/ai-identity…

Identity as the Foundation of Digital Trust In today’s rapidly evolving digital landscape, identity has moved beyond a mere compliance obligation to become a critical pillar of trust, security, and seamless customer experience. The US Identity Verificatio

Identity as the Foundation of Digital Trust In today’s rapidly evolving digital landscape, identity has moved beyond a mere compliance obligation to become a critical pillar of trust, security, and seamless customer experience.

^{NiTin KaMble (www.linkedin.com)}

Check it: Sen. Maggie Hassan (D-NH) is demanding answers from CISA and DHS over my reporting this week that a CISA contractor had published on GitHub a number of CISA AWS GovCloud keys and a ton of plaintext passwords, SSH keys, etc. for internal CISA resources.

ICYMI:

krebsonsecurity.com/2026/05/ci…

hassan.senate.gov/news/press-r…

#cisa #cybersecurity #databreach

Before you worry about #AI threats, fix your security fundamentals: Most cyber breaches aren’t driven by advanced AI - they’re caused by basic failures like exposed cloud storage and poor data governance. It’s time to refocus on #cybersecurity fundamentals.

katecarruthers.com/ai-threats-…

Before you worry about AI threats, fix your security fundamentals

Most cyber breaches aren’t driven by advanced AI - they’re caused by basic failures like exposed cloud storage and poor data governance. It’s time to refocus on cybersecurity fundamentals.

^{Kate Carruthers}

📰 Grafana Labs, an open source tool maker, announced that hackers stole its codebase and threatened to publish it if the company did not pay a ransom.

🔗 techcrunch.com/2026/05/18/open…

#Tech #Cybersecurity

Open source tool maker Grafana Labs says hackers stole its code, refuses to pay ransom | TechCrunch

The open source project said hackers stole its codebase and threatened to publish its source code if the company did not pay.

^{Zack Whittaker (TechCrunch)}

How does Fedora process patches for security vulnerabilities? The short answer is that we work to stay on top of the news to implement patches, working in the community and with Red Hat for updates.

The long answer: fedoramagazine.org/how-fedora-…

At the end of the day, the best thing you can do is keep your system updated. :)

#Fedora #Linux #Cybersecurity #InfoSec #OpenSource

How Fedora is responding to recent Kernel vulnerabilities - Fedora Magazine

Learn about the Fedora Project's process for managing package security vulnerabilities, in the context of recent Linux Kernel disclosures.

^{Daniel Milnes (Fedora Project)}

Be careful.

The post Vibe Coded Apps Are Spilling Users’ Personal Information Directly Into the Maw of Greedy Hackers appeared first on Futurism.

Vibe Coded Apps Are Spilling Users’ Personal Information Directly Into the Maw of Greedy Hackers

Vibe-coded apps are leaking users' sensitive personal information directly to any motivated hackers, a new report found.

^{Jon Christian (Futurism)}

‘No Way To Prevent This,’ Says Only Package Manager Where This Regularly Happens | Kevin Patel

｢ “It’s a shame, but what can you do? This is just the price of building modern web apps,” said Senior Frontend Engineer Mark Vance, echoing the sentiments of a community that completely relies on a 40-level-deep nested tree of unvetted packages maintained by pseudonymous strangers to capitalize a single string ｣

kevinpatel.xyz/posts/no-way-to…

#npm #satire #cybersecurity

Xbox is now XBOX

Xbox just allcapsmaxxed: meet XBOX. This isn't a joke, Microsoft appears to be actually rebranding Xbox to XBOX. Asha Sharma, Xbox CEO, ran a poll on X earlier this week, asking fans whether Microsoft should use Xbox or…

theverge.com/news/931918/micro…

#Tech #Technology #TechNews #AI #Gadgets #Software #Cybersecurity #Apple #Google #Microsoft #Startup #OpenSource #TheVerge [The Verge]

Xbox is now XBOX

Believe it or not, Microsoft appears to be rebranding Xbox.

^{Tom Warren (The Verge)}

Local file exposure #vulnerability in linux kernels (CVE-2026-46333):

github.com/0xdeadbeefnetwork/s…

Apparently this issue was already identified in 2020 but wasn't fixed back then.

Mitigation:
- runtime:
sudo sysctl -w kernel.yama.ptrace_scope=2
- To make the mitigation persistent:
echo "kernel.yama.ptrace_scope=2" | sudo tee /etc/sysctl.d/01-harden-ptrace.conf

WARNING: This mitigation may break existing functionality. Test before deploying.

WARNING 2: While this mitigation does block the currently existing PoC, it may not prevent other attack vectors exploiting this vulnerability.

#infosec #cybersecurity #CVE_2026_46333

GitHub - 0xdeadbeefnetwork/ssh-keysign-pwn: Steal SSH host private keys and /etc/shadow via the ptrace_may_access mm-NULL bypass + pidfd_getfd. Pre-31e62c2ebbfd kernels.

Steal SSH host private keys and /etc/shadow via the ptrace_may_access mm-NULL bypass + pidfd_getfd. Pre-31e62c2ebbfd kernels. - 0xdeadbeefnetwork/ssh-keysign-pwn

^GitHub