The most annoying thing about corporate surveillance to me is the arrogance of the prediction mechanisms.
These algorithms build a model of me based on my clicks from three years ago and then try to trap me in that loop forever. They show me music they think I'll like, and news they think I'll engage with, and videos they think will enrage me enough to keep me hooked to their platforms. They are actively trying to flatten my personality into something easy to monetize.
As most people I've seen say out loud, "Privacy as a concept is way beyond hiding secrets. A part of it also means preserving your capacity to change. To be surprised. To be inconsistent."
If I could tell every human one thing, it would be to actively refuse to be a predictable data point. Mess up their metrics. In whatever way you are capable of.
Age verification laws are being introduced everywhere - including, Florida. 🔞🇺🇸
For Joseph, not knowing his own state had introduced age verification, was the final push he needed to take action and do something. So he started the Miami Tech Enthusiast Club @mtec
Don't miss this interview with him to find out why he started the club, its aims & goals, & why he chose Tuta Mail. 💪🔐
2025 was the year many people realized how at risk their digital privacy had become. For Joseph, it was the year to take action against this, and so he started the Miami Tech Enthusiast Club.
「 The mental model we’ve grown accustom to (with thanks to GitHub) is “copilot”, a helpful assistant with the same motivations and goals as you. The reality is closer to “untrusted contractor with root access to your entire work life.” You wouldn’t give a random freelancer root AWS keys on day one (if ever), but we hand that to AI agents without a second thought 」
The most sophisticated cyber attacks often rely on the simplest human behaviors. 👀 The FBI’s latest flash warning regarding North Korean state-sponsored actors (Kimsuky) using malicious QR codes is a fascinating case study in behavioral engineering. A QR code is essentially a digital question mark in the physical world. It begs to be resolved. We have spent the last few years training ourselves to scan them automatically; for menus, for parking, for connectivity. Attackers are weaponizing this muscle memory. They aren't just exploiting code; they are exploiting our inherent need to know what is on the other side of that scan. In high-stakes environments like academia and think tanks, unchecked curiosity is now a critical vulnerability.
TL;DR 🧠 FBI Alert: North Korean group Kimsuky (APT43) is active. 🎯 Targets: NGOs, academia, and foreign policy experts. ⚡ Vector: Malicious QR codes bridging physical and digital gaps. 🛡️ Defense: Treat an unknown QR code like a discarded USB drive. Do not scan.
... show more
The most sophisticated cyber attacks often rely on the simplest human behaviors. 👀 The FBI’s latest flash warning regarding North Korean state-sponsored actors (Kimsuky) using malicious QR codes is a fascinating case study in behavioral engineering. A QR code is essentially a digital question mark in the physical world. It begs to be resolved. We have spent the last few years training ourselves to scan them automatically; for menus, for parking, for connectivity. Attackers are weaponizing this muscle memory. They aren't just exploiting code; they are exploiting our inherent need to know what is on the other side of that scan. In high-stakes environments like academia and think tanks, unchecked curiosity is now a critical vulnerability.
TL;DR 🧠 FBI Alert: North Korean group Kimsuky (APT43) is active. 🎯 Targets: NGOs, academia, and foreign policy experts. ⚡ Vector: Malicious QR codes bridging physical and digital gaps. 🛡️ Defense: Treat an unknown QR code like a discarded USB drive. Do not scan.
UK digital rights campaigners have urged UK parliamentarians to implement a digital sovereignty strategy as part of the forthcoming Cyber Security and Resilience Bill to reduce reliance on technology subject to foreign interference
A surge in phishing attacks which exploit email routing settings and misconfigured domain spoofing protections to spoof domains and make malicious emails appear as if they were sent from within the organization are targeting Microsoft 365 accounts.
Microsoft Threat Intelligence has warned that the attacks are themed around phoney messages from HR departments and IT security teams and are being deployed in attempts to steal login credentials.
While the attack vector isn’t new, Microsoft said there’s been a significant rise in attacks deploying these techniques since May 2025 and they’re commonly used in conjunction with phishing-as-a-service kits like Typhoon2FA.
A significant security breach has compromised approximately 17.5 million Instagram user accounts, exposing sensitive personal information that is now circulating on the dark web.
Imagine waking up tomorrow and finding the UK government, your bank, or even our hospital systems suddenly offline. Not because of hackers, but because a foreign company, or a foreign leader decided to flip a switch.
This isn’t science fiction.
“Just as relying on one country for the UK’s energy needs would be risky and irresponsible, so is overreliance on US companies to supply the bulk of our digital infrastructure."
We need #DigitalSovereignty so the rug can't be pulled out from under us.
For those being notified or first learning about the #WIRED #databreach:
On December 25, I broke the story of how I had been contacted in November by "Lovely," who claimed to have discovered a vulnerability. They asked for help getting Condé Nast to respond to them. They claimed they were not seeking any bounty or payment and had only downloaded a few profiles as proof.
They showed me my own data.
Trying to help, I reached out to Condé Nast corporate as well as to a contact at #WIRED.
Condé Nast never responded to me -- or to "Lovely" who eventually showed their true colors as someone trying to extort Condé Nast.
Do they have more data? Yes, it appears they do.
@troyhunt verified the data leak and #HIBP has been notifying its affected subscribers.
Over the years, DataBreaches has been contacted by many people with requests for help notifying entities of data leaks or breaches. Some of the people who conta
Chaos Communication Congress: Der 39C3 hat begonnen
Hamburg ist kurz vor Jahresende wieder der Nabel der Hacker-Welt. Der Chaos Computer Club lädt zum 39. Chaos Communication Congress. Tausende werden erwartet.
