PyLadiesCon is in one week!!

We have almost 500 registered attendees 🥳 Not bad for a first time conference, eh? 🤩

Well, you can still join us! Register and be part of this important event for the global PyLadies community.

Follow these steps:
1. Check our website and schedule
2. Click the big register button (it's free)
3. (Optional) Support us by sponsoring or making donation during registration

https://conference.pyladies.com/schedule.html

#PyLadiesCon #PyLadies #Conference #Python #Community @pyladiescon

If someone recommends an account to follow and it looks blank to you, it probably isn't actually blank! It probably just looks that way when you view it from your server.

If you follow the account, future posts will start showing up on your server.

It is confusing, but there are really good reasons why it happens. You can read more about it (including how to check what a profile really looks like, and how to prevent your own profile looking blank) here:

➡️ https://fedi.tips/why-does-someones-account-page-look-completely-blank-is-it-really-blank/

#FediTips

Renowned security researcher John Hammond of Huntress helped kick off our #DEFCON “Art of Hacking” livestream. Watch the recording of his interview with hosts Tom Eston and Lindsay Von Tish where he chats about various topics ranging from #malware analysis to coping with #burnout. #BFLive

https://bfx.social/49jssVs

New, by me and @jagmeets13: A new Android security feature now scans sideloaded apps in real-time for malware.

The feature first launched in India, with plans to expand internationally.

TechCrunch tried the feature out for ourselves by loading a phone with a variety of malicious and bad apps to see what would install.

Google Play Protect blocked nearly all of the malicious apps, but a handful of recently created predatory loan apps made it through.

More: https://techcrunch.com/2023/11/04/google-play-android-real-time-app-scanning-sideload-apps/

Rust async vs C# async vs C++ async

https://microsoft.github.io/rust-for-dotnet-devs/latest/asynchronous-programming/index.html

Discussions: https://discu.eu/q/https://microsoft.github.io/rust-for-dotnet-devs/latest/asynchronous-programming/index.html

#cpp #csharp #programming #rustlang

Randomly scheduled reminder: 1Password is free for journalists and open source projects.

Journalists: https://1password.com/for-journalism/
OSS Projects: https://github.com/1Password/1password-teams-open-source

"Surprisingly, by chaining four common side effects of shared libraries from official distribution packages, we were able to transform this very limited primitive (the dlopen() and dlclose() of shared libraries from
/usr/lib*) into a reliable, one-shot remote code execution in ssh-agent (despite ASLR, PIE, and NX)."

Qualys continues to deliver, wow! #CVE-2023-38408

https://www.qualys.com/2023/07/19/cve-2023-38408/rce-openssh-forwarded-ssh-agent.txt