PrivacyDigest10h ago

Locked in heated rivalry with researcher, #Microsoft fixes 0-day they disclosed

Microsoft on Tuesday released fixes for two high-severity zero-days that were disclosed by a researcher who has been locked in a testy beef with the software giant.

#NightmareEclipse , the #pseudonym the researcher goes by, released a handful of high-severity #vulnerabilities in recent months, making them zero-days that had the potential to be #exploited in the wild. The researcher has said the disclosures, which included proof-of-concept code, came after Microsoft reneged on an arrangement the two made regarding vulnerabilities they had discussed.
#security #0day #zeroday

https://arstechnica.com/security/2026/06/locked-in-heated-rivalry-with-researcher-microsoft-fixes-0-day-they-disclosed/

Locked in heated rivalry with researcher, Microsoft fixes 0-day they disclosed

A separate zero-day also disclosed by Nightmare Eclipse appears to be patched as well.

Ars Technica
𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕2d ago

«Mythos 'Discovered' a #CVE Already in Its Training Data - and That’s Still Worrying:
#Anthropic made headlines claiming Claude Mythos achieved the “first remote kernel exploit #discovered and #exploited by an AI.” We went looking for how - and found a 20-year-old #bug hiding in plain sight. Let’s #break down exactly what we think #Mythos did, and what it means for cyber defense.»

i don't understand (almost) anything about it, but this shows how #AI marketing works.

🤥 https://rival.security/posts/mythos-discovered-a-cve-already-in-its-training-data---and-thats-still-worrying

Mythos 'Discovered' a CVE Already in Its Training Data - and That’s Still Worrying

Anthropic made headlines claiming Claude Mythos achieved the “first remote kernel exploit discovered and exploited by an AI.” We went looking for how - and found a 20-year-old bug hiding in plain sight.

Global News NationalMay 28
As World Cup nears, intelligence agency warns of increased human trafficking risk
As Canada prepares to host the World Cup, the federal financial intelligence agency is warning that sporting events can heighten the risk of vulnerable people being exploited.
#Canada #FIFAWorldCup #HumanTrafficking #WorldCup
https://globalnews.ca/news/11871641/world-cup-human-trafficking/
VeganAtheistMay 25
Petition!
End #donkey and #mule #exploitation in #Santorini
Since 2018, the #animalwelfare organisation @peta Germany and its #international #entities have been active for donkeys and mules who are #exploited as #living #taxis and #tourist #attractions on the #Greek #island of Santorini.
I was shocked to learn that these #animals are still forced to #suffer despite the international #outcry against their #abuse. The images from 2018 clearly show that the equines were #exposed to the scorching sun and did not have #sufficient #food, #water, or #shade. Every day, these donkeys and mules are used to carry sometimes #extremely #heavy tourists as live taxis. The #animalhandlers often hit them with #woodensticks and the tourists themselves abuse them by kicking their stomachs.
https://www.peta.de/aktiv/santorini-esel-petition/
PrivacyDigestApr 27

#Opensource package with 1 million monthly downloads stole user credentials

#compromised after a threat actor #exploited a #vulnerability in the developers’ account workflow that gave access to its signing keys and other sensitive information

On Friday, unknown attackers exploited the vulnerability to push a new version of #elementData, a command-line interface that helps users monitor performance and anomalies in machine-learning systems.
#security #privacy #ml

https://arstechnica.com/security/2026/04/open-source-package-with-1-million-monthly-downloads-stole-user-credentials/

Open source package with 1 million monthly downloads stole user credentials

If you're one of millions using element-data, it's time to check for compromise.

Ars Technica
dddirkApr 27

Storken & farfetch’d – Buffidisco

https://www.screenshine.net/blog/4154_storken-farfetchd-buffidisco

#musik #disco #exploited

Storken & farfetch'd - Buffidisco - screenshine.net

Buffidisco by Storken & farfetch'd

screenshine.net
Cartoon MovementApr 16

Empire sucks. Today's cartoon by Evin Collis. More cartoons: https://www.cartoonmovement.com/

#climate #earth #oil #exploited

JAY JAYApr 12
NONE👏OF👏THIS👏IS👏NORMAL. 👏
#IvankaTrump
#Groomed
#Exploited
#TellYourTruthIvanka
#WeWillBelieveYouIvanka
Grand Rapids Punk FlyersMar 17

The Exploited / The Skraps / A.L.D.

Bands The Exploited The Skraps A.L.D. Venue - Venue name: St. Andrews Hall - Date: Feb. 5th - Time: Not specified - Admission price: Tickets $9.50 ADV. / $11.50 Door - Additional details: All Ages. ADV. Tickets Available At Noir Leather - Royal Oak / Off The Record - Royal Oak. More info call Noir Leather.

https://grpunkflyers.notopia.dev/flyers/1419/

Nikolas Kozloff has movedMar 13
I support #antifascist #cat #resistance not #cats being #exploited by the #CIA
https://www.popsci.com/environment/the-cia-once-trained-cats-to-be-cold-war-spies/?utm_source=firefox-newtab-en-us #coldwar #history #felines #sovietunion #russia
The CIA once trained cats to be Cold War spies

Project Acoustic Kitty went about as well as you’d expect.

Popular Science