everywhere.fraudulent.link is a Fediverse instance that uses the ActivityPub protocol. In other words, users at this host can communicate with people that use software like Mastodon, Pleroma, Friendica, etc. all around the world.
This server runs the snac software and there is no automatic sign-up process.
GNU Emacs: new critical remote shell injection vulnerability.
Red Hat discovered a command injection flaw in the text editor Emacs. It allows a remote, unauthenticated attacker to execute any command on your computer. The vulnerability is activated when you visit a malicious website or link.
https://www.cve.org/CVERecord?id=CVE-2025-1244
---
#news #software #gnu #emacs #security #hacking #terminal #linux #cve #opensource #freesoftware
---
Mitigation: uninstall/update immediately.
Is there a current known exploit for #Android / #Samsung devices to unlock the device without a known PIN / Passcode?
A relative asked for a modern (probably rather well updated) device nobody knows the unlock code anymore. I can confirm they own the device and are able to give me full permission.
I don't know an active exploit out of my head. I assume modern Androids don't allow for brute-force anymore either (virtual HID via USB).
Any ideas?
#Security #hacking #Smartphone #CCC #repair
I do wonder, has there been any app so far that implemented #Telemetry with an "on-demand" basis? Meaning that users can report bugs through the app itself and optionally allow for telemetry to be turned on temporarily until the bug has been identified and fixed? If there's no contact info attached to the report it would still be anonymized.
I think this could really be a good compromise, as long as it's implemented correctly and transparently. 🤔
#programming #privacy #security