A variety of US federal and state laws give cops the power to get your data from online services. This overview goes over how they work, and how they can be mitigated.
https://www.eff.org/deeplinks/2025/06/how-cops-can-get-your-private-online-data
#privacy #police #security #encryption
security
🤖 Gemini’s Gmail summaries were just caught parroting phishing scams. A security researcher embedded hidden prompts in email text (w/ white font, zero size) to make Gemini falsely claim the user's Gmail password was compromised and suggest calling a fake Google number. It's patched now, but the bigger issue remains: AI tools that interpret or summarize content can be manipulated just like humans. Attackers know this and will keep probing for prompt injection weaknesses.
TL;DR
⚠️ Invisible prompts misled Gemini
📩 AI summaries spoofed Gmail alerts
🔍 Prompt injection worked cleanly
🔐 Google patched, but risk remains
https://www.pcmag.com/news/google-gemini-bug-turns-gmail-summaries-into-phishing-attack
#cybersecurity #promptinjection #AIrisks #Gmail #security #privacy #cloud #infosec #AI
Last week we published a set of three in-depth #map reports covering territorial control across #Somalia's claimed territories from 2023 to present. The June 2024 report is free for all readers, and shows the height of "#IslamicState" (#ISIS/#ISIL) control in the country:
https://www.polgeonow.com/2025/06/somalia-territorial-control-map-2024-isis-shabaab.html
#HornOfAfrica #cartography #maps #geography #Somaliland #Puntland #SSC_Khaatumo #mapping @geography @cartography @geopolitics #AlShabaab #AlQaeda #security #OSINT
Great, informative writeup of Cryptographic Gotchas: https://gotchas.salusa.dev/
Lots of fantastic references and links in there, too.
Have you checked out our Summer Clearance Sale yet? Select back issues and products are 50% off through July 31st! Get 2024 and older issues of Linux Magazine, @adminmagazine, Special Issues, and select products. Follow the link for the shop for your region/currency.
https://shop.linuxnewmedia.com/shop/category/summer-clearance-79
#Linux #OpenSource #security #FOSS #LibreOffice #hacks #RaspberryPi
Edited 53d ago
Smartphone security tip of the week: Do not take screenshots of personal or sensitive data
Certain malicious apps secretly search your screenshots for login data, recovery data or personal information.
Read more about this topic: https://smartphone-dont-spy.de/en/list/do-not-take-screenshots-of-personal-or-sensitive-data
An open call to #Android #developers! The #EuropeanCommission needs help evaluating #GooglePlay's #security claims. I'm going to do what I can. Anyone with knowledge of how app installation, uninstallation, sandboxing, signing, etc. could really help here. If you want to contribute, please reach out!
Don't trust cloud services with your creative work.
#enshittification #privacy #infosec #security #cybersecurity #writing #art
A list of Digital Service Providers located outside the jurisdiction of the United States of America:
https://codeberg.org/Linux-Is-Best/Outside_Us_Jurisdiction
This is an ongoing group project — so if you have any suggestions, corrections, or new information to share, feel free to reach out!
#USJurisdiction #USA #America #UnitedStates #Privacy #Security
***infosec specialists are needed in the resistance ***
The world needs tech security specialists to run workshops at public libraries for all ages & abilities to remove spyware, AI, reduce surveillance, understand the issues, & for more advanced, move to Linux, degooglefy, etc.
Libraries will pay good wages for these workshops.
If you have these skills, please consider offering them.
#libraries #library #tech #infosec #privacy #security #activism #antifa #resistance
Are you interested in a different kind of security conference?
Then take a look at the Open Security Conference (@OSCo). #osco25 takes place from October 2 to 5 in Rückersbach (Germany near Frankfurt) and registration is still open at https://opensecurityconference.org/.
(this is an English version of the original German thread https://infosec.exchange/@realn2s/114936419689473030)
Why?
The Open Security Conference aims to be diverse and inclusive. This also includes different levels of knowledge and experience.
It is therefore not only for security experts or for people who have (already) worked in the security sector for a long time,
but also for people who are interested in security or want to get into the field.
The #OpenSpace format not only enables expert presentations,
but also non-expert topics or questions as session topics. Sessions are not resticted to presentations, they can be interactive, collaborative, workshops or basically anything else.
Since topics do not have to be submitted months in advance,
but the agenda is created jointly by the participants, hot topics can also be covered.
The conference is non-commercial, i.e. the total costs are shared between the participants (including the organizers).
The costs include accommodation and meals in the conference hotel.
And yes, there are also sponsors who cover part of the costs.
But not everything is different.
There are great keynotes e.g. by @bkastl ("History repeating itself") and Mireia Cano ("Building an AppSec Program from Scratch").
#CyberSecurity #Security #InfoSec #AppSec #ProductSecurity #OTsecurity
🔒 Security Update for BotKit Users
We've released #security patch versions BotKit 0.1.2 and 0.2.2 to address CVE-2025-54888, a security #vulnerability discovered in #Fedify. These updates incorporate the latest patched version of Fedify to ensure your bots remain secure.
We strongly recommend all #BotKit users update to the latest patch version immediately. Thank you for keeping the #fediverse safe! 🛡️
We've released #security updates for #Hollo (0.4.12, 0.5.7, and 0.6.6) to address a #vulnerability in the underlying #Fedify framework. These updates incorporate the latest Fedify security patches that fix CVE-2025-54888.
We strongly recommend all Hollo instance administrators update to the latest version for their respective release branch as soon as possible.
Update Instructions:
Railway users: Go to your project dashboard, select your Hollo service, click the three dots menu in deployments, and choose “Redeploy”
Docker users: Pull the latest image with docker pull ghcr.io/fedify-dev/hollo:latest and restart your containers
Manual installations: Run git pull to get the latest code, then pnpm install and restart your service