Search
Items tagged with: software
Excited to launch a new project today that I'm calling selfh.st/companions, a curated list of companion applications for self-hosted software:
https://selfh.st/blog/introducing-selfhst-companions/
The linked post explains the rationale for adding apps to this list, which is a bit smaller than selfh.st/apps.
As usual, feel free to send me a DM or reach out via the site's contact address if you'd like to discuss the project or any of the software listed.
#selfhost #selfhosted #selfhosting #opensource #homelab #software
Introducing selfh.st/companions, a Directory of Companion Apps for Self-Hosted Software
A directory of companion apps for self-hosted software curated for easy browsing and discoveryEthan Sholly (selfh.st)
#Windows #vulnerability reported by the #NSA exploited to install Russian #malware
When Microsoft patched the vulnerability in October 2022—at least two years after it came under #attack by the Russian hackers—the company made no mention that it was under active exploitation.
#patch #update #exploit #Russia #security #CyberSecurity #news #os #software #hack #hacker
Windows vulnerability reported by the NSA exploited to install Russian malware
Microsoft didn't disclose the in-the-wild exploits by Kremlin-backed group until now.Ars Technica
#CVE-2024-20356: #Jailbreaking a #Cisco appliance to run #DOOM
In this adventure, the Cisco #C195 device family was jailbroken in order to run unintended code. This includes the discovery of a vulnerability in the #CIMC body management controller which affects a range of different devices, whereby an authenticated high privilege user can obtain underlying root access to the server’s #BMC (CVE-2024-20356) which in itself has high-level access to various other components in the system. The end goal was to run DOOM – if a smart fridge can do it, why not Cisco?
source: https://labs.nettitude.com/blog/cve-2024-20356-jailbreaking-a-cisco-appliance-to-run-doom/
#software #security #bug #network #game #news #vulnerability #exploit #hack #hacker
CVE-2024-20356: Jailbreaking a Cisco appliance to run DOOM - LRQA Nettitude Labs
Exploiting remote code execution in Cisco's CIMC management system and jailbreaking the device to run untrusted codeAaron Thacker (LRQA Nettitude Labs)
Harrison Audio launches Mixbus 10 digital audio workstation https://rekkerd.org/harrison-audio-launches-mixbus-10-digital-audio-workstation/
#DAW #HarrisonConsoles #software #SolidStateLogic
Harrison Audio launches Mixbus 10 digital audio workstation
Available in new ‘Plus’ and ‘Pro’ tiers, Mixbus 10 features the latest immersive music production tools, integrated SSL EQ, and much more…Ronnie (Rekkerd.org)
The #performance of the #Windows 11 #StartMenu is ridiculously bad
source: https://nitter.privacydev.net/anerdguynow/status/1777764221088129227
The Windows 11 Start Menu is comically bad.This machine has a $1600 Core i9 CPU and 128 GB of RAM and this is the performance I often get.
What is going on in Redmond?
#software #os #microsoft #problem #criticism #news #fail
Andy Young (@anerdguynow)
The Windows 11 Start Menu is comically bad. This machine has a $1600 Core i9 CPU and 128 GB of RAM and this is the performance I often get. What is going on in Redmond?Nitter
#Microsoft is a national #security threat, says ex-#WhiteHouse cyber policy director
Source: https://www.theregister.com/2024/04/21/microsoft_national_security_risk/
Microsoft has a shocking level of #control over IT within the US federal #government
#technology #CyberSecurity #economy #politics #software #problem #usa #news
Microsoft is a national security threat, says ex-White House cyber policy director
With little competition at the goverment level, Windows giant has no incentive to make its systems saferBrandon Vigliarolo (The Register)
#LLM Agents can Autonomously #Exploit One-day Vulnerabilities
Source: https://arxiv.org/abs/2404.08144
To show this, we collected a dataset of 15 one-day vulnerabilities that include ones categorized as critical severity in the #CVE description. When given the CVE description, GPT-4 is capable of exploiting 87% of these vulnerabilities compared to 0% for every other model we test (GPT-3.5, open-source LLMs) and open-source vulnerability scanners (ZAP and #Metasploit).
#ai #technology #Software #chatgpt #bug #hack #news #cybersecurity
LLM Agents can Autonomously Exploit One-day Vulnerabilities
LLMs have becoming increasingly powerful, both in their benign and malicious uses. With the increase in capabilities, researchers have been increasingly interested in their ability to exploit cybersecurity vulnerabilities.arXiv.org
#Business users of IT strongly condemn #market behaviour of #Broadcom and urge the European Commission to take appropriat action
In the context of the VMware takeover and the change in business #strategy, Broadcom's contempt and brutality towards its #customers are unprecedented in the recent history of the #digital #economy in #Europe.
I really appreciate Thunderbird's team, and these updates are going to finally put it into the running with other modern offerings. I migrated to using it as my daily driver for email management a few years ago, and I'm glad I did, but I'm also so excited to be looking at desktop improvements and an android app.
#Thunderbird #Email #EmailClient #OpenSource #Mozilla #Android #Software
Time for a #jobSearch post!
I'm looking for a #typeScript / #python / #RustLang 100% #remote #softwareDev position, both contract and permanent, GMT+2 timezone.
I previously worked as a Senior / Lead / Principal #fullStack developer with #cyberSecurity , #softwareArchitecture and #devOps experience.
I specialize in #react , #nodejs , #django , #fastAPI , #pandas , #postgresql , #docker , #kubernetes , #AWS and #digitalOcean .
#google #money #security #browser #chrome #internet #economy #news
♲ Digital Angel - 2024-04-10 22:01:30 GMT
#Google: If you want #browser #security, it will cost you something.https://chromeenterprise.google/products/chrome-enterprise-premium/
#software #internet #enterprise #economy #money #business #chrome #news
🙅♀️ No More #Google
source: https://nomoregoogle.com/
Monopolies are bad for the #future of our #society.
Surprise: #Google has transformed itself from a #hipster #startup into a cheesy, normal #company, where you are now just as much of an #employee as anywhere else.
https://social.clawhammer.net/blog/posts/2024-01-19-CultureChange/
#job #history #economy #internet #software #developer #coder #nerd #change #news #business #management #blog
When #security matters: working with #Qubes OS at the #Guardian
Configuring a Qubes workstation was a new challenge for the team as we abandoned years of experience writing Infrastructure as Code for the cloud and started learning how to write #Salt #configuration. Salt (also know as SaltStack) is a management engine available by default in Qubes.
#cybersecurity #news #journalism #linux #technology #software #securedrop
When security matters: working with Qubes OS at the Guardian
The latest version of the whistleblowing platform SecureDrop runs on the Qubes operating system. At the Guardian we used the Salt management engine to set up a Qubes environment where journalists could safely interrogate sensitive documents.Philip McMahon (The Guardian)
#XZ #Backdoor: Times, damned times, and scams
However, I believe that he is actually from somewhere in the UTC+02 (winter)/UTC+03 (DST) timezone, which includes Eastern Europe (EET), but also Israel (IST), and some others. Forging time zones would be easy — no need to do any math or delay any commits. He likely just changed his system time to Chinese time every time he committed.
source: https://rheaeve.substack.com/p/xz-backdoor-times-damned-times-and
#security #software #time #news #hack #linux #timezone
XZ Backdoor: Times, damned times, and scams
Some timezone observations on the recently discovered backdoor hidden in an xz tarball.Rhea (Rhea's Substack)
How #Apple plans to #update new iPhones without opening them
But what if you could update the device while it's still in the box? That's the latest plan cooked up by Apple, which is close to rolling out a system that will let Apple Stores wirelessly update new iPhones while they're still in their boxes. The new system is called "Presto."
NSA & CIA thank you for the possibility to install Trojans via update.
#ihone #software #firmware #Presto #news #technology #ios
How Apple plans to update new iPhones without opening them
Apple wants to rid the iPhone-buying process of the post-unboxing update.Ars Technica
