Average nmap enjoyer, destroyer of IoT worlds and embedded universes.
Chief #Passkey Advocate
"Experte für Nischenthemen" - unnamed
he/him
Working in #InfoSec by day. Doing some things at @AsteroidOS and @spline by night.
ALT: @jrt
#InfoSec #Security #linux #foss #CCC #spline #berlin #ArchLinux #fedora #AsteroidOS #VR #CyberpunkIsNow
| Website | https://jrtberlin.de |
| Languages | English, German |
| Signal | jrt.42 |
| Threema | https://threema.id/FMESVF5Y |
| Matrix | @jrt:kde.org |
Unser Fahrplan für die Haecksen-Workshops auf dem #39C3 ist fertig!
Ihr findet ihn direkt hier:
https://pretalx.c3voc.de/39c3-haecksen-workshops-2025/schedule/
und auch im Hub:
https://events.ccc.de/congress/2025/hub/en/assembly/detail/haecksen-assembly
Cloud: Zoff in Bayern wegen Milliardenauftrag an Microsoft ohne Ausschreibung
Das Open-Source-Lager, Informatiker und IT-Wirtschaft warnen vor Verlust der digitalen Souveränität in Bayern und fordern den Stopp der Microsoft-Verhandlungen.
#DigitaleSouveränität #IT #Microsoft #OpenSource #Wirtschaft #news
Analyzing CVE-2025-2296 [Un-verified #kernel bypass #SecureBoot mechanism in direct boot mode]
https://www.kraxel.org/blog/2025/12/analyzing-cve-2025-2296/
Gerd Hoffmann aka kraxel writes: ""[…] So, if secure boot is enabled attempts to boot via 'EFI stub' will fail, the firmware rejects the binary due to the signature check failing. OVMF will fallback to the legacy 'EFI handover protocol' loader. The legacy loader does not do secure boot verification, which is the core of CVE-2025-2296. And this was essentially unfixable (in the firmware alone) because there simply is no valid secure boot signature due to the patching qemu is doing. Nevertheless there are some use cases which expect direct kernel boot with secure boot enabled to work. Catch 22. […]
Secure boot bypass sounds scary, but is it really? […] So, the actual impact is quite limited. […]""
RE: https://mastodon.social/@Migueldeicaza/115713071946346627
I saw a story similar to this one a few years ago, but about someone who was locked out of their Google account due to a nearly identical flag. It's what inspired me to start ditching major platforms in the first place and start focusing on services that use end-to-end encryption and allow for full proper data exports and backups.
This sucks.
Edit: here's the other case that I was thinking of: https://www.nytimes.com/2022/08/21/technology/google-surveillance-toddler-photo.html
Jesus fucking christ.
Summary: A major brick-and-mortar store sold an Apple Gift Card that Apple seemingly took offence to, and locked out my entire Apple ID, effectively bricking my devices and my iCloud Account, Apple Developer ID, and everything associated with it, and I have no recourse. Can you help? Email paris AT paris.id.au (and read on for the details). ❤️ Here’s how Apple “Permanently” locked my Apple ID. I am writing this as a desperate measure.
TL;DR Workshops, Gruppentreffen, Kurzvorträge, … fassen wir als Self-organized Sessions zusammen. Self-organized Sessions können bereits jetzt angelegt werden, aber die dedizierten Räume dafür sind diesmal erst nach und nach buchbar. Eine Übersicht aller Self-organized Sessions findet ihr im Hub. Wenn ihr euch für eine Session interessiert, loggt euch ein und favorisiert sie – so wissen wir, wie groß der Platz dafür sein muss. Um selbst neue Sessions anzulegen, verwendet ihr das Backoffice des Hub. Als Assembly könnt ihr euch überlegen, ob ihr eure „Räume“ für Self-organized Sessions öffnen wollt.
haecksen
🎄🌟🎅 Christmas Crashout! 🎅🌟🎄
heise online
Thorsten Leemhuis (acct. 1/4)
Zak 
Miguel de Icaza ᯅ🍉
CCC
The Verge
Hailey
Mario Sixtus 🇭🇰馬六