G
"Messaging app Tokee may have leaked 1.2 million user profiles — experts say exposed personal data 'presents significant privacy, security, and regulatory risks'"
"Most of the app's userbase seems to have been exposed, so users should be on their guard."
Chats were exposed, too, but in an encrypted format
TechRadar (www.techradar.com)
"Help EFF Solve an Issue That's Bigger than Creepy Ads"
"Millions of people around the world use EFF'sPrivacy Badger. This browser extension blocks the hidden trackers that twist your web browsing into a commodity for Big Tech, advertisers, scammers, and data brokers."
EFF's Privacy Badger blocks the hidden trackers that twist your web browsing into a commodity for Big Tech, advertisers, scammers, and data brokers. But did you know that we’re trying to solve an issue that’s even bigger than creepy ads and user profiling? You can help.
Electronic Frontier Foundation (www.eff.org)
"Fedora Hummingbird Debuts As A Super Hardened Linux Distro"
"Fedora Hummingbird ships the entire OS as a bootable OCI image with atomic updates and rollback support."
https://feed.itsfoss.com/link/24361/17339892/fedora-hummingbird-images
"Indigo brings the open social web to one app"
"Indigo's new social app lets you cross-post to the open social web, including Mastodon and Bluesky, and browse a unified timeline."
Indigo's new social app lets you cross-post to the open social web, including Mastodon and Bluesky, and browse a unified timeline.
TechCrunch (techcrunch.com)
"Photoflare 1.7 brings Qt6, HiDPI support, new canvas engine, G’MIC integration, and more"
"This release brings a substantial shift to the open source cross-platform image editor by moving from Qt5 to Qt6. Photoflare1.7 is now available, marking its first major update in more than six years."
"EFF to Fourth Circuit: Electronic Device Searches at the Border Require a Warrant"
"EFF, along with the national ACLU, the ACLU affiliates in Maryland, North Carolina, South Carolina, and Virginia, and the National Association of Criminal Defense Lawyers (NACDL) filed anamicus briefin the U.S."
EFF, along with the national ACLU, the ACLU affiliates in Maryland, North Carolina, South Carolina, and Virginia, and the National Association of Criminal Defense Lawyers (NACDL) filed an amicus brief in the U.S. Court of Appeals for the Fourth Circuit urging the court to require a warrant for...
Electronic Frontier Foundation (www.eff.org)
"This weird-looking open-sourced computer mouse has four buttons plus a point stick which reminds me of IBM's legendary red nipple joystick"
"Ploopy introduces standalone pointing stick controller using magnetic sensors, open source firmware, and fully programmable hardware components."
Iconic laptop pointing stick just escaped the keyboard
TechRadar (www.techradar.com)
"Restriced by the West, Huawei's Open Source HarmonyOS Now Powers 55 Million Devices"
"It seems that Huawei has managed to create an ecosystem of hardware as well as software."
https://feed.itsfoss.com/link/24361/17338103/harmony-os-rises-china
"Dirty Frag is a New Linux Exploit That Grants Root, and There's No Proper Patch Yet"
"A working exploit is already out, and systems that patched Copy Fail are still exposed."
https://feed.itsfoss.com/link/24361/17337269/dirty-frag-linux-exploit
"Mozilla says 271 vulnerabilities found by Mythos have "almost no false positives""
"The developer of Firefox says it has "completely bought in" on AI-assisted bug discovery."
The developer of Firefox says it has "completely bought in" on AI-assisted bug discovery.
Ars Technica (arstechnica.com)
"CoMaps now offers weekly map data updates and in-route traffic light icons"
"CoMapsnow includes a 'check for updates' button, enabling users to download newOpenStreetMapmap data weekly without needing an app update."
"Hackers used Daemon Tools' own website to silently install backdoors on thousands of PCs for nearly a month"
"Cybersecurity researchers at Kaspersky found that the attack compromised multiple versions of Daemon Tools, from 12.5.0.2421 through 12.5.0.2434."
https://www.techspot.com/news/112318-hackers-used-daemon-tools-own-website-silently-install.html
"Should You Be Worried About Copy Fail Linux Exploitation?"
"It's been patched, but cloud and container users should update sooner than later."
https://feed.itsfoss.com/link/24361/17335279/copy-fail-linux-exploit
"US government warns of severe CopyFail bug affecting major versions of Linux"
"cybersecurity agency CISA says the CopyFail bug is being actively used in hacking campaigns, and poses a major risk to servers and data centers that rely on Linux. U.S."
"Trellix discloses data breach after source code repository hack"
"[...] Cybersecurity firm Trellix disclosed a data breach after attackers gained access to "a portion" of its source code repository."
"CISA says ‘Copy Fail’ flaw now exploited to root Linux systems"
"[...] CISA has warned that threat actors have started exploiting the "Copy Fail" Linux security vulnerability in the wild, one day after Theori researchers disclosed it and shared a proof-of-concept (PoC) exploit."
"Initial Server Setup on Ubuntu 26.04"
"Prepare a new Ubuntu 26.04 server with a sudo user, SSH key authentication, UFW firewall rules, a hostname, timezone settings, and system updates."
https://linuxize.com/post/initial-server-setup-on-ubuntu-26-04/
""Copy Fail" is a rare Linux bug that can turn an unprivileged user into a root admin in seconds"
"Tracked as CVE-2026-31431, Copy Fail could represent a significant security risk in the making."
"DNS firewall IPFire can now block active threats before they even reach your network"
"Most notably, the release introduces theDNS firewall, addressing one of the most requested features in IPFire's history. IPFire2.29 Core Update 201 marks a major expansion for this hardened Linux-based firewall and router system."
"Sanctioned Chinese AI Firm SenseTime Releases Image Model Built for Speed"
"With US restrictions limiting its access to advanced tech, SenseTime is doubling down on open source with a new model optimized to run on Chinese-made chips."
https://www.wired.com/story/chinese-ai-giant-sensetime-is-running-its-new-model-on-chinese-chips/
