Can you believe that
you are here, and I am here,
and we can share and communicate together,
and no billionaires were involved in this happening or continuing in any ways?

How fraking fantastic is this!   

#Mastodon #Fediverse

Buy books. But not from Amazon. Buy them from Bookshop.org, the independent site. This move by Amazon is shameful.

Here is a link to my book on Bookshop.org.

https://bookshop.org/p/books/the-three-ages-of-water-prehistoric-past-imperiled-present-and-a-hope-for-the-future/18943639

If you are a loooong-time reader of DataBreaches.net, you will likely recall a terrible insider breach in Canada that I reported in 2011 where, as a result of the insider wrongdoing, 13 people became victims of arson or were shot at!

There is now an update on the litigation stemming from that case.

High court upholds damages in ICBC privacy breach that resulted in shootings, arson: https://databreaches.net/2025/04/24/high-court-upholds-damages-in-icbc-privacy-breach-that-resulted-in-shootings-arson/

And if you are someone who is one of those loooong-time readers: thank you!

#databreach #insider #privacy #ICBC #arson #violence

Are you f* kidding me, Apple?!

After a long time, I filed another bug report using Feedback Assistant because the bug was bad enough that it’s worth the effort of writing it all down.

When uploading a sysdiagnose (or probably any other attachments) you get the usual privacy notice that there is likely a lot of private and other sensitive info in those log files. It’s not a great feeling but it is what it is with diagnostic data and I mostly trust the folks at Apple to treat it with respect and I trust the Logging system to redact the most serious bits.

However, when filing a feedback today a noticed a new addition to the privacy notice:

"By submitting, you […] agree that Apple may use your submission to [train] Apple Intelligence models and other machine learning models."

WTF? No! I don’t want that. It’s extremely shitty behavior to a) even ask me this in this context where I entrust you with *my* sensitive data to help *you* fix your shit to b) hide it in the other privacy messaging stuff and to c) not give me any way to opt out except for not filing a bug report.

Do you really need *more* reasons for developers not to file bug reports? Are the people who decided to do this really this ignorant about the image Apple‘s bug reporting process has in the community? How can you even think for a single second that this is an acceptable idea?

So, WTF, Apple?!

RE: Alleged ESP32 so-called "backdoor"

The talk where a couple of researchers presented their findings in Madrid is about undocumented commands found in the ESP32. They presented themselves as civilians, but they also have a consultancy or work for a company called Tarlogic.

Nothing about the talk, and nothing about the Tarlogic article (that doubles as marketing material for their security product) says that they found anything about backdoors, or any malicious commands.
https://reg.rootedcon.com/cfp/schedule/talk/5

Tarlogic
https://www.tarlogic.com/news/backdoor-esp32-chip-infect-ot-devices/

They don't claim that there is a backdoor, they use many conditionals such as "would" and "could", and they say "maybe" but they didn't demonstrate any exploits.

They've shown that they found interesting undocumented functionality, and they are extrapolating that it could possibly be used somehow, but they don't really know if it's possible or not.

Slander in a teacup

It seems that Espressif built in some debugging functionality? Is that a horrible thing? They don't know, but they make sure to promote their own security product to protect you. How nice of them.

There's too many time-wasters with very specific ideologies creating chaos and confusion out there, it's good to identify them.

#esp32