RE: https://mastodon.social/@bagder/116336957584445742
Interesting development
| Bluesky | https://bsky.app/profile/res260.bsky.social |
| Pronouns | He/Him |
| GitHub | https://github.com/res260 |
Émilio Gonzalez
- 167 Followers
- 263 Following
- 913 Posts
Cybersecurity blue team person. Love to discuss urbanism, housing crisis and most "bigger-than-you" modern challenges. YIMBY. Involved with Construisons Montréal and Locomotion.app.
I think most things in projet de loi C-22 are reasonable, but they seem to enable the police to force companies to keep data (like geographic location) that they currently do not keep.
Like they can just tell Telus "yo you don't keep precise location of your users so please do that"
That's crazy
https://www.cbc.ca/news/politics/lawfull-access-legislation-liberal-9.7125891
New lawful access bill would give police, CSIS more powers to track suspects online | CBC News
The Liberal government has introduced a new lawful access bill that it says will help police and security services track and identify people who may be using tools like social media or artificial intelligence to commit crimes or threaten national security.
RE: https://mastodon.social/@campuscodi/116324099772389893
Vibe-deploying moment
BleepingComputerHackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver remote access trojans to Linux, Windows, and macOS systems.
RE: https://mastodon.social/@construisonsmtl/116307430329655295
Des politiques efficaces et à coût nul ou négatif. On doit avoir ça au niveau provincial si on veut baisser pour vrai le coût du logement de façon durable.
Cara SternIf you want to see reform in Canada in any one particular issue, chances are a proportional representation system will improve the odds of it happening, says today's Missing Middle guest, @paige
1/3
1/3
Remember when SSDs came out and Windows booted fast? I miss this
Qlub📢 Qlub lance Qlub Vidéo, une plateforme de diffusion qui propose une alternative québécoise et souveraine à YouTube : https://site.qlub.social/qlub-video/
Visionnez gratuitement du contenu et, pour les abonnés #QlubPro, publiez vos propres vidéos dans un environnement ouvert et décentralisé pour faire découvrir votre contenu ici comme à l’international.
Suivez les premières chaînes de #QlubVidéo :
@chaine_radioacton
@chaine_archivistegabrielcote
@chaine_qlub_video
The worst thing about the linux ecosystem is nothing is signed
if software was signed we could easily have a secure enclave. We could finally start building an ecosystem where malware running in a computer would have a much harder time stealing npm/github/pypi tokens, ssh keys, cleartext passwords in config files like we've seen a lot lately. It doesn't fix everything, but it'd help a lot. https://www.bleepingcomputer.com/news/security/popular-litellm-pypi-package-compromised-in-teampcp-supply-chain-attack/
if software was signed we could easily have a secure enclave. We could finally start building an ecosystem where malware running in a computer would have a much harder time stealing npm/github/pypi tokens, ssh keys, cleartext passwords in config files like we've seen a lot lately. It doesn't fix everything, but it'd help a lot. https://www.bleepingcomputer.com/news/security/popular-litellm-pypi-package-compromised-in-teampcp-supply-chain-attack/
Popular LiteLLM PyPI package compromised in TeamPCP supply chain attack
The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package on PyPI and claiming to have stolen data from hundreds of thousands of devices during the attack.