GitHub has published a report reflecting the notifications of intellectual property infringement and the publication of illegal content received during the first half of 2022. Previously, such reports were published annually, but now GitHub has switched to disclosing information once every six months. In accordance with the US Digital Millennium Copyright Act (DMCA), […]
Researchers from Faraday Security presented at the DEFCON conference the details of exploiting a critical vulnerability (CVE-2022-27255) in the SDK for Realtek RTL819x chips, which allows you to execute your code on the device by sending a specially crafted UDP packet. The vulnerability is remarkable in that it allows attacking devices in which access to the web interface for external networks is disabled - for an attack, it is enough to simply send one UDP packet. […]
Google has released Chrome update 104.0.5112.101, which fixes 10 vulnerabilities, including a critical vulnerability (CVE-2022-2852) that allows bypassing all browser security layers and executing code on the system outside of the sandbox environment. Details have not yet been disclosed, it is only known that the critical vulnerability is related to accessing already freed memory (use-after-free) in the implementation of the FedCM (Federated Credential Management) […]
A release of the Nuitka 1.0 project is available, developing a compiler for translating Python scripts into a C++ representation, which can then be compiled into an executable file using libpython for maximum compatibility with CPython (using native CPython tools for manipulating objects). Provided full compatibility with current releases of Python 2.6, 2.7, 3.3 - 3.10. Compared with […]
Valve has published the release of the Proton 7.0-4 project, which is based on the Wine project codebase and aims to run gaming applications built for Windows and featured in the Steam catalog on Linux. The developments of the project are distributed under the BSD license. Proton allows you to directly run Windows-only game applications on the Steam Linux client. The package includes the implementation […]
The developers of the open messenger Signal have disclosed information about a targeted attack aimed at gaining control over the accounts of some users. The attack was carried out by hacking the Twilio service used by Signal to organize the sending of SMS messages with confirmation codes. Analysis of the data showed that the Twilio hack could have affected about 1900 phone numbers of Signal users, for which the attackers were able to re-register […]
Developments related to the Stable Diffusion machine learning system, which synthesizes images based on a text description in natural language, have been discovered. The project is being developed jointly by researchers from Stability AI and Runway, the Eleuther AI and LAION communities, and the CompVis lab (Vision and Machine Learning Research Laboratory at the University of Munich). According to the capabilities and level […]
Google has published the release of the Android 13 open mobile platform. The sources associated with the new release are located in the project's Git repository (android-13.0.0_r1 branch). Firmware updates are prepared for Pixel series devices. Later it is planned to prepare firmware updates for smartphones manufactured by Samsung, Asus, HMD (Nokia), iQOO, Motorola, OnePlus, Oppo, Realme, Sharp, Sony, Tecno, vivo and Xiaomi. Additionally, universal assemblies have been formed […]
A researcher from KU Leuven demonstrated at the Black Hat conference a technique to compromise the Starlink user terminal used to connect subscribers to the SpaceX satellite network. The terminal is equipped with its own 64-bit SoC, created by STMicro specifically for SpaceX. The software environment is based on Linux. The proposed method allows you to execute your code on the Starlink terminal, get root access and access to a […]
TIOBE Software has released its August Programming Language Popularity Ranking, which highlights the strengthening position of the Python language compared to August 2021, which has moved from second to first place. The C and Java languages, respectively, moved into second and third place, despite continued growth in popularity (Python grew by 3.56%, and C and […]
An experimental release of the open implementation of WinAPI - Wine 7.15. Since the release of version 7.14, 22 bug reports have been closed and 226 changes have been made. The most important changes are: Direct2D now supports command lists (an ID2D1CommandList object that provides methods to store the state of a command set, which can be recorded and replayed). Implemented support for the RSA encryption algorithm. IN […]
The release of the Toybox 0.8.8 system utilities set has been published, as well as BusyBox designed as a single executable file and optimized for minimal consumption of system resources. The project is being developed by former maintainer BusyBox and distributed under the 0BSD license. The main purpose of Toybox is to enable manufacturers to use a minimalistic set of standard utilities without opening the source code of modified components. According to the capabilities of Toybox, […]
