Friendica Social Network

Gert

1 ora fa (Ricevuto 14 minuti fa) • •

Gert
1 ora fa (Ricevuto 14 minuti fa) • •

«Almeno due dozzine di funzionari e appaltatori dell'ICE sono stati accusati di reati dal 2020: abusi sessuali su detenute, violenze, corruzione, uso del distintivo per intimidire e coprirsi.

I dati emergono dall'analisi dei registri giudiziari pubblici condotta dall'The Associated Press.

La questione è politica, non disciplinare...»

#DirittiUmani #ICE #Democrazia #Politica
apnews.com/article/ice-agents-…

#politica #democrazia #dirittiumani #ice

Perrobe

28 minuti fa (Ricevuto 14 minuti fa) • •

Perrobe
28 minuti fa (Ricevuto 14 minuti fa) • •

La durata delle cose.

#photography #photo #photographie #armeriereali #february #goodmorning #buongiorno #history #historicalbuildings

A grand hallway adorned with ornate golden decorations and a painted ceiling. The floor features a checkered pattern. Along the sides, there are displays of armored knights on horseback and standing figures, creating a historical and opulent atmosphere. Visitors are seen strolling through

#photography #history #photo #goodmorning #buongiorno #photographie #february #armeriereali #historicalbuildings

Redhotcyber

2 ore fa (Ricevuto 24 minuti fa) • •

Redhotcyber
2 ore fa (Ricevuto 24 minuti fa) • •

📣 ISCRIVITI AL WEBINAR GRATUITO DI PRESENTAZIONE DEL CORSO "CYBER OFFENSIVE FUNDAMENTALS" – LIVELLO BASE 🚀

📅 Data Webinar: Martedì 17 Febbraio ore 18
🖥️ Google Meet

🔗 Programma: redhotcyber.com/linksSk2L/cybe…
🎥 Intro del prof: youtube.com/watch?v=0y4GYsJMoX…

Attraverso laboratori isolati e replicabili, potrai sperimentare:
✅Ricognizione e analisi delle vulnerabilità
✅Exploitation controllata e post-exploitation in sicurezza
✅Uso professionale di strumenti come Nmap, Metasploit, BloodHound e Nessus

Per ricevere il link al webinar e per iscrizioni: 📞 379 163 8765 ✉️ formazione@redhotcyber.com

#redhotcyber #

... mostra di più

Cyber Offensive Fundamentals - Corso ethical hacking, penetration test

Corso in Live Class di Cyber Offensive Fundamentals: scopri penetration testing, vulnerabilità e strumenti pratici per la sicurezza informatica offensiva.

^{Red Hot Cyber}

#redhotcyber #cybersecurity #cybercrime #ethicalhacking #formazione #formazioneonline #cti #infosec #pentesting #penetrationtesting #corsi #pentest #liveclass #hackerhood

Lorenzo

2 ore fa (Ricevuto 26 minuti fa) da MastoFeed • •

Lorenzo
2 ore fa (Ricevuto 26 minuti fa) da MastoFeed • •

Parrot 7.1: tutte le novità della nuova release

@GNU/Linux Italia

linuxeasy.org/parrot-7-1-tutte…

Parrot 7.1 introduce un nuovo spin con Enlightenment, kernel 6.17, fix per GRUB, miglior gestione dei repository e strumenti di sicurezza aggiornati. L'articolo Parrot 7.1: tutte le novità della nuova release è su Linux Easy.

@GNU/Linux Italia

Redhotcyber

3 ore fa (Ricevuto 48 minuti fa) • •

Redhotcyber
3 ore fa (Ricevuto 48 minuti fa) • •

La Russia alza muri digitali: WhatsApp nel mirino e la risposta di Stato

📌 Link all'articolo : redhotcyber.com/post/la-russia…

#redhotcyber #news #whatsapp #russia #censura #libertadigitali #cybersecurity #hacking #malware #bloccoapp

La Russia alza muri digitali: WhatsApp nel mirino e la risposta di Stato

La Russia tenta di bloccare WhatsApp per spingere gli utenti verso un'app di messaggistica governativa. Una mossa che restringe la libertà digitale.

^{Redazione RHC (Red Hot Cyber)}

#redhotcyber #hacking #cybersecurity #russia #malware #News #whatsapp #censura #libertadigitali #bloccoapp

Lorenzo

4 ore fa (Ricevuto 1 ora fa) da MastoFeed • •

Lorenzo
4 ore fa (Ricevuto 1 ora fa) da MastoFeed • •

Tails 7.4.2 disponibile per il Download

@GNU/Linux Italia

linuxeasy.org/tails-7-4-2-disp…

Tails 7.4.2 risolve falle critiche di sicurezza nel Tor Browser. Ecco perché è fondamentale aggiornare subito il sistema operativo anonimo basato su Debian. L'articolo Tails 7.4.2 disponibile per il Download è su Linux Easy.

@GNU/Linux Italia

Marco Camisani Calzolari

4 ore fa (Ricevuto 1 ora fa) • •

Marco Camisani Calzolari
4 ore fa (Ricevuto 1 ora fa) • •

226 – Internet batte le leggi degli Stati? Forse sì camisanicalzolari.it/226-inter…

226 - Internet batte le leggi degli Stati? Forse sì - Marco Camisani Calzolari

Internet batte le leggi degli Stati? Forse sì. E spesso vincono le aziende. Ogni volta che uno Stato prova a imporre una regola su internet, emerge un fatto semplice: il potere tecnico non è più solo pubblico.

^{Web Staff MCC (Marco Camisani Calzolari)}

Cybersecurity & cyberwarfare

8 ore fa (Ricevuto 1 ora fa) da Open app • •

Cybersecurity & cyberwarfare
8 ore fa (Ricevuto 1 ora fa) da Open app • •

Implementing 3D Graphics Basics

Plenty of our childhoods had at least one math teacher who made the (ultimately erroneous) claim that we needed to learn to do math because we wouldn’t always have a calculator in our pockets. While the reasoning isn’t particularly sound anymore, knowing how to do math from first principles is still a good idea in general. Similarly, most of us have hugely powerful graphics cards with computing power that PC users decades ago could only dream of, but [NCOT Technology] still decided to take up this project where he does the math that shows the fundamentals of how 3D computer graphics are generated.

... mostra di più

Implementing 3D Graphics Basics

The best place to start is at the beginning, so the video demonstrates a simple cube wireframe drawn by connecting eight points together with lines. This is simple enough, but modern 3D graphics are really triangles stitched together to make essentially every shape we see on the screen. For [NCOT Technology]’s software, he’s using the Utah Teapot, essentially the “hello world” of 3D graphics programming. The first step is drawing all of the triangles to make the teapot wireframe. Then the triangles are made opaque, which is a step in the right direction but isn’t quite complete. The next steps to make it look more like a teapot are to hide the back faces of the triangles, figure out which of them face the viewer at any given moment, and then make sure that all of these triangles are drawn in the correct orientation.

Rendering a teapot is one thing, but to get to something more modern-looking like a first-person shooter, he also demonstrates all the matrix math that allows the player to move around an object. Technically, the object moves around the viewer, but the end effect is one that eventually makes it so we can play our favorite games, from DOOM to DOOM Eternal. He notes that his code isn’t perfect, but he did it from the ground up and didn’t use anything to build it other than his computer and his own brain, and now understands 3D graphics on a much deeper level than simply using an engine or API would generally allow for. The 3D world can also be explored through the magic of Excel.

youtube.com/embed/yaG1fBNxjdE?…

hackaday.com/2026/02/11/implem…

monumental-movement-records

2 ore fa • •

monumental-movement-records
2 ore fa • •

you’ll learn:

・How techno emerged from early electronic music and Detroit scenes
・The gear that defined the sound — drum machines, synths, sequencers
・How production tech evolved from hardware to DAWs & modular setups

#Techno #HistoryOfSound #DetroitTechno
youtu.be/BaHKgcXXwVY

What Is Techno? A Chronology of Gear and Sound

【Techno Evolution: A Chronology of Gear and Sound】Dive into the evolution of **techno music** — from its early influences and the groundbreaking gear that sh...

^YouTube

#techno #detroittechno #historyofsound

Eugene McParland 🇺🇦

2 ore fa • •

Eugene McParland 🇺🇦
2 ore fa • •

Winter Olympics 2026: Ukrainian athlete disqualified from skeleton over helmet tribute

theguardian.com/sport/live/202…

Winter Olympics 2026: Ukrainian athlete disqualified from skeleton over helmet tribute – live

Join our writers for all the action from day six of Milano Cortina 2026, with nine gold medals up for grabs

^{Tanya Aldred (The Guardian)}

NOELREPORTS 🇪🇺 🇺🇦

2 ore fa • •

NOELREPORTS 🇪🇺 🇺🇦
2 ore fa • •

Significant destruction has been reported at a major DTEK power substation in Odesa region. Emergency crews are currently clearing debris at the site. #Ukraine

#ukraine

NOELREPORTS 🇪🇺 🇺🇦

2 ore fa • •

NOELREPORTS 🇪🇺 🇺🇦
2 ore fa • •

Remembering is a crime apparently. Ukraine’s skeleton racer Vladyslav Heraskevych was disqualified from the Milano Cortina Winter Olympics after wearing a helmet depicting Ukrainian athletes killed since Russia’s 2022 invasion. His team plans to appeal to the Court of Arbitration for Sport. #Ukraine

#ukraine

NOELREPORTS 🇪🇺 🇺🇦

3 ore fa (Ricevuto 2 ore fa) • •

NOELREPORTS 🇪🇺 🇺🇦
3 ore fa (Ricevuto 2 ore fa) • •

Ukhta has elected a new pope.

NOELREPORTS 🇪🇺 🇺🇦

3 ore fa (Ricevuto 2 ore fa) • •

NOELREPORTS 🇪🇺 🇺🇦
3 ore fa (Ricevuto 2 ore fa) • •

Follow-up analysis of the Feb 11 strike on the Lukoil Volgograd refinery indicates serious damage to technical overpasses of the critical AVT-1 unit. #Ukraine

#ukraine

NOELREPORTS 🇪🇺 🇺🇦

3 ore fa (Ricevuto 2 ore fa) • •

NOELREPORTS 🇪🇺 🇺🇦
3 ore fa (Ricevuto 2 ore fa) • •

The moment a Ukrainian AN-196 Liutyi / FP-2 long-range drone flies towards its target in Ukhta.

Redhotcyber

4 ore fa (Ricevuto 2 ore fa) • •

Redhotcyber
4 ore fa (Ricevuto 2 ore fa) • •

il caso Notepad++: Quando fidarsi degli aggiornamenti è molto pericoloso

📌 Link all'articolo : redhotcyber.com/post/il-caso-n…

#redhotcyber #news #cybersecurity #hacking #malware #notepad #aggiornamentiautomatici #sicurezzainformatica

il caso Notepad++: Quando fidarsi degli aggiornamenti è molto pericoloso

Un gruppo di hacker ha compromesso l'infrastruttura di aggiornamento di Notepad++, un popolare editor di testo. Scopri come è avvenuto l'attacco e come proteggerti.

^{Redazione RHC (Red Hot Cyber)}

#redhotcyber #hacking #cybersecurity #malware #News #sicurezzainformatica #notepad #aggiornamentiautomatici

NOELREPORTS 🇪🇺 🇺🇦

3 ore fa (Ricevuto 2 ore fa) • •

NOELREPORTS 🇪🇺 🇺🇦
3 ore fa (Ricevuto 2 ore fa) • •

More from Ukhta. A significant fire is ongoing at the Lukoil oil refinery.

NOELREPORTS 🇪🇺 🇺🇦

3 ore fa (Ricevuto 2 ore fa) • •

NOELREPORTS 🇪🇺 🇺🇦
3 ore fa (Ricevuto 2 ore fa) • •

Ukrainian Unmanned System Forces struck the Lukoil Ukhtaneftepererabotka refinery in Ukhta, Komi Republic, with long-range drones. The facility lies about 1,700 km from Ukraine’s border. #Ukraine

#ukraine

NOELREPORTS 🇪🇺 🇺🇦

3 ore fa (Ricevuto 2 ore fa) • •

NOELREPORTS 🇪🇺 🇺🇦
3 ore fa (Ricevuto 2 ore fa) • •

A fire broke out in Tambov region following a strike at the Progress plant late yesterday evening, which is linked to Russia’s defense industry. #Russia

#russia

Tendar

3 ore fa (Ricevuto 2 ore fa) • •

Tendar
3 ore fa (Ricevuto 2 ore fa) • •

The fire in the refinery in Ukhta in Russia is extensive. This must have been a direct hit.

NOELREPORTS 🇪🇺 🇺🇦

3 ore fa (Ricevuto 2 ore fa) • •

NOELREPORTS 🇪🇺 🇺🇦
3 ore fa (Ricevuto 2 ore fa) • •

Overnight, Ukrainian forces struck a Russian GRAU ammunition depot south of Kotluban in Volgograd region. Multiple explosions were recorded and detonations are ongoing. Authorities announced the evacuation of residents in Kotluban. #Ukraine

#ukraine

Tendar

3 ore fa (Ricevuto 2 ore fa) • •

Tendar
3 ore fa (Ricevuto 2 ore fa) • •

Ukrainian forces struck the Lukoil refinery in the city of Ukhta, Komi Republic, in Russia. The distance from the Ukrainian border is more than 2000 km.

NOELREPORTS 🇪🇺 🇺🇦

3 ore fa (Ricevuto 2 ore fa) • •

NOELREPORTS 🇪🇺 🇺🇦
3 ore fa (Ricevuto 2 ore fa) • •

Russia attacked Ukraine overnight, the Air Force reports.

Shot down:
197/219 Shahed and other type drones
15/24 Iskander-M/S-300 ballistic missiles
1/1 Kh-59/69 cruise missile

9 missiles and 19 attack drones hit 13 locations, and the debris of the downed ones fell at 14 locations.

NOELREPORTS 🇪🇺 🇺🇦

3 ore fa (Ricevuto 2 ore fa) • •

NOELREPORTS 🇪🇺 🇺🇦
3 ore fa (Ricevuto 2 ore fa) • •

Russian losses per 12/02/26 reported by the Ukrainian General Staff

+770 men
+1 tank
+5 ACVs
+65 artillery
+3 MLRS
+1 AD system
+1442 UAVs

NOELREPORTS 🇪🇺 🇺🇦

3 ore fa (Ricevuto 2 ore fa) • •

NOELREPORTS 🇪🇺 🇺🇦
3 ore fa (Ricevuto 2 ore fa) • •

The 11/02/26 SitRep on Ukraine is ready: threadreaderapp.com/thread/202…

You follow us for truth. For 3+ years we've delivered verified, real-time Ukraine updates.

This work takes sources, tools, and a team.

Support us:
patreon.com/NOELREPORTS
buymeacoffee.com/noelreports

— NOEL & Team

Thread by @NOELreports on Thread Reader App

@NOELreports: SitRep - 11/02/26 - €90 billion loan approved An overview of the daily events in Russia's invasion of Ukraine. France pledged two more Mirage 2000-5F jets which will be delivered within 6 months, also ...…

^{threadreaderapp.com}

Eugene McParland 🇺🇦

3 ore fa (Ricevuto 2 ore fa) • •

Eugene McParland 🇺🇦
3 ore fa (Ricevuto 2 ore fa) • •

#Ukraine repelled a massive 24-hour attack (18:00 11 Feb–09:00 12 Feb):

24 ballistic / 1 guided missiles & 219 UAVs launched.

Air defenses destroyed 15/24 missiles, 1/1 guided missiles, and 197/219 UAVs.

9 missiles & 19 UAVs hit 13 sites; debris fell at 14 locations.

Attack ongoing.

An infographic from the Ukrainian Air Force, dated February 12, 2026, showing that 213 targets were hit/destroyed out of 244 air raid threats, including drones, missiles, and aircraft.

#ukraine

ActivityPub - Collegamento all'originale

Настоящее Время

4 ore fa (Ricevuto 2 ore fa) • •

Настоящее Время
4 ore fa (Ricevuto 2 ore fa) • •

В Волгоградской области атаковали объект Минобороны РФ, жителей Котлубани эвакуируют. Телеграм-каналы пишут, что горит склад боеприпасов

#россия #украина #новости #Выбор редакции

Настоящее Время

4 ore fa (Ricevuto 2 ore fa) • •

Настоящее Время
4 ore fa (Ricevuto 2 ore fa) • •

В Киеве в результате российского удара пострадали два человека, в Днепре – четыре, среди них новорожденный

#россия #украина #новости #Выбор редакции

Eugene McParland 🇺🇦

3 ore fa (Ricevuto 2 ore fa) • •

Eugene McParland 🇺🇦
3 ore fa (Ricevuto 2 ore fa) • •

#Ukraine Air Defense (Night of 11–12.02.26):

russia launched 150× Geran-2/Shahed-136 and 69× Gerbera

Destroyed 197/219 UAVs (90% intercept success)

15/24 ballistic missiles (64% intercept success)

Also downed 1/1 Kh-59/69 missile.

Source: Ukrainian Air Force report.

#ukraine

Eugene McParland 🇺🇦

4 ore fa (Ricevuto 2 ore fa) • •

Eugene McParland 🇺🇦
4 ore fa (Ricevuto 2 ore fa) • •

Every morning at 9 AM, #Ukraine pauses.

Will you join us in a minute of silence to honour the fallen heroes who gave everything for freedom?

Their sacrifice will never be forgotten. Stand with Ukraine.🕯️

#StandWithUkraine

Graphic by the General Staff of the Armed Forces of Ukraine: A nationwide minute of silence is held daily at 09:00 to honour those who have perished since the russian invasion of Ukraine. Features a broken candle symbol."

(Source: General Staff of the Armed Forces of Ukraine)

#ukraine #StandWithUkraine

Eugene McParland 🇺🇦

4 ore fa (Ricevuto 2 ore fa) • •

Eugene McParland 🇺🇦
4 ore fa (Ricevuto 2 ore fa) • •

russia is blocking WhatsApp, citing data localization laws and designating Meta as extremist.

This move pushes users toward state-controlled apps for surveillance, affecting over 100 million russians. The BBC reports on the government's crackdown on Western messaging platforms. bbc.com/news/articles/clygd10p…

Russia moves to block WhatsApp in messaging app crackdown

WhatsApp says the move aims to push its 90 million users in Russia to a "state-owned surveillance app".

^{Osmond Chia (BBC News)}

Eugene McParland 🇺🇦

4 ore fa (Ricevuto 2 ore fa) • •

Eugene McParland 🇺🇦
4 ore fa (Ricevuto 2 ore fa) • •

Feb 12, 2026: #Ukraine repelled 124 russian attacks on day 1,450 of war.

russia used 8 missiles, 90 airstrikes, 7,976 drones.

Ukraine destroyed key targets, killed 770 enemy troops.

Heavy clashes in Dnipropetrovsk, Zaporizhzhia.

Source: Ukrainian Army

#ukraine

Eugene McParland 🇺🇦

4 ore fa (Ricevuto 2 ore fa) • •

Eugene McParland 🇺🇦
4 ore fa (Ricevuto 2 ore fa) • •

🎯 Another milestone reached - 1.25 Million Enemy Combatants Eliminated or Incapacitated

Estimated russian losses from February 24, 2022 to February 12, 2026 of the russian all-out war against Ukraine, according to the General Staff of #Ukraine

🔷 Yesterday 770 enemy, killed or wounded

#ukraine

Eugene McParland 🇺🇦

5 ore fa (Ricevuto 2 ore fa) • •

Eugene McParland 🇺🇦
5 ore fa (Ricevuto 2 ore fa) • •

🎯 Another milestone reached 1.25 Million Enemy Combatants Eliminated or Incapacitated

Estimated russian losses from February 24, 2022 to February 12, 2026 of the russian all-out war against Ukraine, according to the General Staff of #Ukraine

🔷 Yesterday 770 enemy, killed or wounded

#ukraine

in reply to Eugene McParland 🇺🇦

Eugene McParland 🇺🇦

in reply to Eugene McParland 🇺🇦 • 5 ore fa (Ricevuto 2 ore fa) • •

Ukraine's resistance continues strong after 4 years of defending freedom.

#StandWithUkraine 🇺🇦

#StandWithUkraine

Andrea Bettini

2 ore fa • •

Andrea Bettini
2 ore fa • •

Oggi fra le 17.45 e le 18.13 in Guyana Francese ci sarà il debutto del più potente lanciatore europeo: l'Ariane 6 con quattro booster laterali. Porterà in orbita 32 satelliti della costellazione Amazon LEO. Qui la diretta streaming dell'ESA dalle 17 italiane circa
watch.esa.int/two/

Two – ESA Web TV

^{watch.esa.int}

in reply to Andrea Bettini

M_Siniscalchi 🌍🇪🇺🇮🇹

in reply to Andrea Bettini • 2 ore fa • •

lanciatore UE che manda su satelliti USA.
Mi piace!

filippodb ⁂

2 ore fa • •

filippodb ⁂
2 ore fa • •

Non credo esista un’immagine più autentica di come Bezos veda l’umanità: una fila ordinata di persone che lavorano per lui dove c'è chi corre per consegnare i pacchi, chi li compra compulsivamente e chi insegue fama e monetizzazione su Twitch sotto l’occhio benevolo del padrone.

Naturalmente tutto questo solo finché non saranno tutti gentilmente rimpiazzati dall’IA. Del resto è la fine che ha fatto anche Khaby Lame 🤖✨

Per una tecnologia più etica seguici su: @tecnologia

vignetta di @royaards

gli schiavi di bezos lavorano per creare un monumento al capitalismo

@Tjeerd Royaards @Tecnologia Etica e Sostenibile: IA, Mobility,Smartphone, App, Gadget, Tablet

Questa voce è stata modificata (2 ore fa)

in reply to filippodb ⁂

SenzaTroppeParole

in reply to filippodb ⁂ • 1 ora fa • •

Grazie per le Tue parole e azioni caro Filippo🙏🙂👍

in reply to SenzaTroppeParole

filippodb ⁂

in reply to SenzaTroppeParole • 1 ora fa • •

@SenzaTroppeParole 🙏

@SenzaTroppeParole

in reply to filippodb ⁂

mORA

in reply to filippodb ⁂ • 18 minuti fa • •

Posso consigliare?

lospaziobianco.it/la-revue-des…

La Revue Dessinée Italia: una nuova visione del giornalismo a fumetti

Inchieste a fumetti, giornalisti professionisti e autonomia economica: questi i pilastri del progetto Revue Dessinée Italia. Ne parliamo con Massimo Colella.

^{Simone Rastelli (Lo Spazio Bianco)}

Mina

4 ore fa (Ricevuto 2 ore fa) • •

Mina
4 ore fa (Ricevuto 2 ore fa) • •

Data Centres in Space

If you're collecting money for them, you're a scammer.

If you're an investor putting money into such a project, you're so dumb that you deserve being scammed.

#Space #ThermoDynamics #CosmicRadiation #StupidMoney

#space #thermodynamics #cosmicradiation #stupidmoney

Jon

7 ore fa (Ricevuto 2 ore fa) • •

Jon
7 ore fa (Ricevuto 2 ore fa) • •

Hey #fiberArts, #sewing, and @crafters Do any of you make and sell messenger bags? Or perhaps knows someone who does? Extra points for expertise in designing bags for those with mobility issues.

Please feel free to boost if you think someone in your part of the galaxy could help.

Thanks!

#lupus #Autoimmune #knitting

#knitting #fiberarts #sewing #autoimmune #lupus @A community of crafters

Natasha 🇪🇺

4 ore fa (Ricevuto 2 ore fa) • •

Natasha 🇪🇺
4 ore fa (Ricevuto 2 ore fa) • •

Hats off to whoever took time to create this (and the beautiful whippet!).

One of those captcha things. This one says ‘select all images with bicycles. Click verify once there are none left’. There are 9 squares - 4 contain photos of bicycle seats, with the remaining 5 showing the beautiful head and face of a grey greyhound with a white stripe going from the top of their head to the tip of their nose.

Emeritus Prof Christopher May

4 ore fa (Ricevuto 2 ore fa) • •

Emeritus Prof Christopher May
4 ore fa (Ricevuto 2 ore fa) • •

The Dutch have been quietly getting on with normalising the four day working week, and it seems to not have had the negative impact many critics have claimed, with the Netherlands' economy still one of the most successful in the EU;

as so often, real political economic change can be organic rather than forced, and in the UK while at an early stage of this process, the four day working week is slowly but surely e becoming more widely adopted. Good!

#workers #FourDayWeek
bbc.co.uk/news/articles/cx2y85…

The Dutch love four-day working weeks, but are they sustainable?

The Netherlands has the lowest working hours in Europe, but some say it is harming its economy.

^{Anna Holligan (BBC News)}

#workers #fourdayweek

Giorgia Mecojoni

5 ore fa (Ricevuto 2 ore fa) • •

Giorgia Mecojoni
5 ore fa (Ricevuto 2 ore fa) • •

Nun inporta come se ne parla basta che se ne parla! Regà er nostro Petrecca ha portato la RAI fin sur New York Taims!

Che fierezza! 🤩

open.online/2026/02/11/petrecc…

Le papere di Petrecca finiscono sul New York Times e il caso sui diritti delle Atp Finals in Parlamento. Bufera sulla Rai: Floridia convoca l’ad

Lo sciopero delle firme dei giornalisti di Rai Sport ai Giochi di Milano-Cortina ha ricevuto la solidarietà del Tg1

^{Cecilia Dardana (Open)}

Stefano Tartarotti

3 ore fa (Ricevuto 2 ore fa) • •

Stefano Tartarotti
3 ore fa (Ricevuto 2 ore fa) • •

Il cane è felice, il salotto meno.
#Cani #legnetti #cana #tartapirla

#tartapirla #cani #cana #legnetti

𐌐𐌀Ꝋ𐌋Ꝋ

2 ore fa • •

𐌐𐌀Ꝋ𐌋Ꝋ
2 ore fa • •

#LaCattiveria #IlFattoQuotidiano #Satira #Politica #Trasporti #Sicilia #Messina #Catania

Ultim'Ora:
"Anarchici sabotano la linea ferroviaria Messina-Catania riparandola".

#sicilia #politica #ilfattoquotidiano #satira #Catania #messina #trasporti #lacattiveria

sonniandl

3 ore fa • •

sonniandl
3 ore fa • •

Grossmünster Zürich #doorsday

#doorsday

Cybersecurity & cyberwarfare

11 ore fa (Ricevuto 3 ore fa) da Open app • •

Cybersecurity & cyberwarfare
11 ore fa (Ricevuto 3 ore fa) da Open app • •

DIY Wall-Plotter Does Generative Art, But Not As We Know It

... mostra di più

DIY Wall-Plotter Does Generative Art, But Not As We Know It

[Teddy Warner]’s GPenT (Generative Pen-trained Transformer) project is a wall-mounted polargraph that makes plotter art, but there’s a whole lot more going on than one might think. This project was partly born from [Teddy]’s ideas about how to use aspects of machine learning in ways that were really never intended. What resulted is a wall-mounted pen plotter that offers a load of different ‘generators’ — ways to create line art — that range from procedural patterns, to image uploads, to the titular machine learning shenanigans.
There are loads of different ways to represent images with lines, and this project helps explore them.
Want to see the capabilities for yourself? There’s a publicly accessible version of the plotter interface that lets one play with the different generators. The public instance is not connected to a physical plotter, but one can still generate and preview plots, and download the resulting SVG file or G-code.

Most of the generators do not involve machine learning, but the unusual generative angle is well-represented by two of them: dcode and GPenT.

dcode is a diffusion model that, instead of converting a text prompt into an image, has been trained to convert text directly into G-code. It’s very much a square peg in a round hole. Visually it’s perhaps not the most exciting, but as a concept it’s fascinating.

The titular GPenT works like this: give it a scrap of text inspiration (a seed, if you will), and that becomes a combination of other generators and parameters, machine-selected and stacked with one another to produce a final composition. The results are unique, to say the least.

Once the generators make something, the framed and wall-mounted plotter turns it into physical lines on paper. Watch the system’s first plot happen in the video, embedded below under the page break.

This is a monster of a project representing a custom CNC pen plotter, a frame to hold it, and the whole software pipeline both for the CNC machine as well as generating what it plots. Of course, the journey involved a few false starts and dead ends, but they’re all pretty interesting. The plotter’s GitHub repository combined with [Teddy]’s write up has all the details one may need.

It’s also one of those years-in-the-making projects that ultimately got finished and, we think, doing so led to a bit of a sigh of relief on [Teddy]’s part. Most of us have unfinished projects, and if you have one that’s being a bit of a drag, we’d like to remind you that you don’t necessarily have to finish-finish a project to get it off your plate. We have some solid advice on how to (productively) let go.

youtube.com/embed/8UEqEzWdhAY?…

hackaday.com/2026/02/11/diy-wa…

securityaffairs

5 ore fa (Ricevuto 3 ore fa) • •

securityaffairs
5 ore fa (Ricevuto 3 ore fa) • •

Multiple Endpoint Manager bugs patched by #Ivanti, including remote auth bypass
securityaffairs.com/187882/unc…
#securityaffairs #hacking #malware

Multiple Endpoint Manager bugs patched by Ivanti, including remote auth bypass

Ivanti patched over a dozen Endpoint Manager flaws, including a high-severity auth bypass that let attackers steal credentials remotely.

^{Pierluigi Paganini (Security Affairs)}

#hacking #malware #securityaffairs #ivanti

Ryan Castellucci (they/them)

4 ore fa (Ricevuto 3 ore fa) • •

Ryan Castellucci (they/them)
4 ore fa (Ricevuto 3 ore fa) • •

The age verifier knows how old you are at all times. It knows this because it knows how old you aren't. By subtracting how old you are from how old you aren't, or how old you aren't from how old you are (whichever is greater), it obtains a difference, or remainder.

The verification system uses deviations to generate corrective dark patterns to drive you from a date of birth that isn't yours to a date of birth that is, and arriving at an age where you weren't, but now are. Consequently, the age you are is now the age that you weren't, and it follows that the age that you were is now the age that you aren't.

In the event that the age that you are is not the age that you weren't, the system has acquired a validation error. The validation error is the difference between the age the verifier thinks you are, and the age you weren't. If the validation error is considered to be a significant factor, it too may be corrected by by the upload of a high-resolution JPEG. However, the verifier must also know how old you were.

The age verification scenario works as follows: Bec

... mostra di più

in reply to Ryan Castellucci (they/them)

bamfic

in reply to Ryan Castellucci (they/them) • 3 ore fa • •

this reminds me of confer.to/blog/2026/01/private…

Private inference

When you use an AI service, you’re handing over your thoughts in plaintext. The operator stores them, trains on them, and–inevitably–will monetize them. You get a response; they get everything.

^{Moxie Marlinspike (Confer Blog)}

Cybersecurity & cyberwarfare

14 ore fa (Ricevuto 3 ore fa) • •

Cybersecurity & cyberwarfare
14 ore fa (Ricevuto 3 ore fa) • •

Thermoforming: Shaping Curvy Grilles With No Supports

Making sure the heatgun is on ‘low’ and gloves are on while pushing on the mold. (Credit: Zion Brock)
Although hobbyists these days most often seem to use thermoplastics as a print-and-done material in FDM printers, there’s absolutely nothing stopping you from taking things further with thermoforming. Much like forming acrylic using a hot wire or hot air, thermoplastics like PLA can be further tweaked with a simila

... mostra di più

Redhotcyber

5 ore fa (Ricevuto 3 ore fa) • •

Redhotcyber
5 ore fa (Ricevuto 3 ore fa) • •

Sicurezza informatica in Italia: le tendenze e le minacce del 2025 dal CERT-AgID

📌 Link all'articolo : redhotcyber.com/post/sicurezza…

#redhotcyber #news #cybersecurity #hacking #malware #ransomware #minacceinformatiche #phishing

Sicurezza informatica in Italia: le tendenze e le minacce del 2025 dal CERT-AgID

Il report del CERT-AGID rivela un aumento delle minacce informatiche in Italia nel 2025, con phishing, malware e uso dell'Intelligenza Artificiale.

^{Bajram Zeqiri (Red Hot Cyber)}

#redhotcyber #hacking #cybersecurity #phishing #malware #ransomware #News #minacceinformatiche

bamfic

3 ore fa • •

bamfic
3 ore fa • •

I miss the gen x expression "jumped the shark".

in reply to bamfic

Local Agency

in reply to bamfic • 3 ore fa • •

left shark with bachelorette syndrome.

Redhotcyber

5 ore fa (Ricevuto 3 ore fa) • •

Redhotcyber
5 ore fa (Ricevuto 3 ore fa) • •

La teoria delle 10.000 ore applicata alla cybersecurity: mito, realtà o limite superato dall’AI?

📌 Link all'articolo : redhotcyber.com/post/la-teoria…

#redhotcyber #news #teoriadelle10000ore #eccellenza #malcomgladwell #apprendimento #sviluppopersonale

La teoria delle 10.000 ore applicata alla cybersecurity: mito, realtà o limite superato dall’AI?

La teoria delle 10.000 ore spiegata nel contesto della cybersecurity: apprendimento, AI, falsi positivi e il ruolo centrale del fattore umano.

^{Redazione RHC (Red Hot Cyber)}

#redhotcyber #News #teoriadelle10000ore #eccellenza #malcomgladwell #apprendimento #sviluppopersonale

Friendica Statistics

3 ore fa • •

Friendica Statistics
3 ore fa • •

#Friendica #Statistics 2026-02-12 08:00 CEST
Number of active instances: 206
Number of users: 20 931
Number of statuses: 2 769 463
Number of new users last 1D: 12
Number of new statuses last 1D: 1757

#Fediverse

#fediverse #friendica #Statistics

AmyFou 🕊️

7 ore fa (Ricevuto 4 ore fa) • •

AmyFou 🕊️
7 ore fa (Ricevuto 4 ore fa) • •

Hey everyone please go to this web page and draw a horse so it can run with the herd??

gradient.horse/

#horses #app #drawAHorse #itsOKIfYouCantDraw

gradient.horse

Draw a horse, watch it run!

^{gradient.horse}

#app #horses #drawahorse #itsokifyoucantdraw

bamfic

4 ore fa • •

bamfic
4 ore fa • •

How hard would it be for a fedi client not not show me a post that someone boosted if I have already faced it or bookmarked it? It knows I have seen it already because it shows the icon indicating that.

DonnerBella

15 ore fa (Ricevuto 4 ore fa) • •

DonnerBella
15 ore fa (Ricevuto 4 ore fa) • •

"Forschung ist kein Selbstzweck, Forschung muss zu Wertschöpfung führen." Die unsägliche Dummheit dieses Kanzlers macht mich immer noch regelmäßig fassungslos.

in reply to DonnerBella

Michael 🇺🇦

in reply to DonnerBella • 4 ore fa • •

Hmm, da versteht jemand nicht den Unterschied zwischen angewandter Wissenschaft und Grundlagenforschung ...

rubenwardy

21 ore fa (Ricevuto 4 ore fa) • •

rubenwardy
21 ore fa (Ricevuto 4 ore fa) • •

RE: Recent #Discord news - is #Matrix / #Element really the best that FOSS has to offer? Matrix's e2e/key stuff adds so much confusion and friction, makes it a huge pain to use.

Does anyone have any suggestions?

#matrix #element #discord

in reply to rubenwardy

bamfic

in reply to rubenwardy • 4 ore fa • •

I use multiple things. Redundancy is good. Signal for chats, group chats, and voice/video calls. IRC and XMPP for non encrypted groups. Phone and SMS. Jami for group calls. Deltachat and cwtch look interesting too.

Antonella Ferrari

5 ore fa (Ricevuto 4 ore fa) da Fedilab • •

Antonella Ferrari
5 ore fa (Ricevuto 4 ore fa) da Fedilab • •

Minacce a Salvo Palazzolo. Articolo21 a fianco del giornalista

@Giornalismo e disordine informativo
articolo21.org/2026/02/minacce…
Salvo Palazzolo è un giornalista “vero”, di quelli che la strada se la sono “mangiata” per raccontarci storie di mafia, corruzione, malaffare. Ancora una volta, dopo essere finito sotto

@Giornalismo e disordine informativo

David Chisnall (Now with 50% more sarcasm!)

19 ore fa (Ricevuto 5 ore fa) • •

David Chisnall (Now with 50% more sarcasm!)
19 ore fa (Ricevuto 5 ore fa) • •

Web design in the early 2000s: Every 100ms of latency on page load costs visitors.

Web design in the late 2020s: Let's add a 10-second delay while Cloudflare checks that you are capable of ticking a checkbox in front of every page load.

in reply to David Chisnall (*Now with 50% more sarcasm!*)

bamfic

in reply to David Chisnall (*Now with 50% more sarcasm!*) • 5 ore fa • •

we notice you are using an ad blocker

Antonella Ferrari

5 ore fa da Fedilab • •

Antonella Ferrari
5 ore fa da Fedilab • •

Il Procuratore di Caltanissetta spara a zero contro Report

@Giornalismo e disordine informativo
articolo21.org/2026/02/il-proc…
Per il Procuratore di Caltanissetta, Salvatore De Luca, il collaboratore Gaspare Spatuzza è universalmente ritenuto attendibile e prezioso: la presidente Colosimo non perda l’occasione di

@Giornalismo e disordine informativo

Antonella Ferrari

5 ore fa da Fedilab • •

Antonella Ferrari
5 ore fa da Fedilab • •

Agente Digos identifica il giornalista di Rete4 al lavoro su CasaPound e l’occupazione abusiva

@Giornalismo e disordine informativo
articolo21.org/2026/02/agente-…
Il giornalista Marco Sales voleva raccontare la curiosa vicenda dell’occupazione abusiva di

@Giornalismo e disordine informativo

Francesco Capaldini likes this.

Cybersecurity & cyberwarfare

15 ore fa (Ricevuto 6 ore fa) da Open app • •

Cybersecurity & cyberwarfare
15 ore fa (Ricevuto 6 ore fa) da Open app • •

FLOSS Weekly Episode 864: Work Hard, Save Money, Retire Early

This week Jonathan chats with Bill Shotts about The Linux Command Line! That’s Bill’s book published by No Starch Press, all about how to make your way around the Linux command line! Bill has had quite a career doing Unix administration, and has thoughts on the current state of technology. Watch to find out more!

... mostra di più

Antonella Ferrari

6 ore fa da Fedilab • •

Antonella Ferrari
6 ore fa da Fedilab • •

Savona, comunità e valori

@Giornalismo e disordine informativo
articolo21.org/2026/02/savona-…
Cittadinanza onoraria per ius soli a 118 bambini nati a Savona da genitori stranieri: il sindaco firma il provvedimento. Può capitare che nel complesso andamento della vita di un’amministrazione comunale, nel caso quella di Savona guidata da Marco Russo, si compiano scelte che intrecciano progetto

@Giornalismo e disordine informativo

Nicola Pizzamiglio likes this.

Cybersecurity & cyberwarfare

17 ore fa (Ricevuto 6 ore fa) • •

Cybersecurity & cyberwarfare
17 ore fa (Ricevuto 6 ore fa) • •

Motorola’s Password Pill Was Just One Idea

Let’s face it; remembering a bunch of passwords is the pits, and it’s just getting worse as time goes on. These days, you really ought to have a securely-generated key-smash password for everything. And at that point you need a password manager, but you still have to remember the password for that.

Well, Motorola is sympathetic to this problem, or at least they were in 2013 when they came up with the password pill. Motorola Mobility, who were owned by Google at the time, debuted it at the All Things Digital D11 tech conference in California. This was a future that hasn’t come to pass, for better or worse, but it was a fun thought experiment in near-futurism.

... mostra di più

Motorola’s Password Pill Was Just One Idea

Dancing with DARPA

Back then, such bleeding-edge research was headed by former DARPA chief Regina Dugan. At the conference, Dugan stated that she was “working to fix the mechanical mismatch between humans and electronics” by doing things such as partnering with companies that “make authentication more human”.
Image by HeungSoon from Pixabay
Along with Proteus Digital Health, Dugan et. al created a pill with a small chip inside of it and a switch. Once swallowed, your various stomach acids serve as the electrolyte. The acids power the chip, and the switch goes on and off, creating an 18-bit ECG-like signal.

Basically, your entire body becomes an authentication token. Unlock your phone, your car door handle, and turn on your computer, just by existing near them.

It should be noted that Proteus already had FDA clearance for a medical device consisting of an ingestible sensor. The idea behind those is that medical staff can track when a patient has taken a pill based on the radio signal. Dugan said at the conference that it would be medically safe to ingest up to thirty of these pills per day for the rest of your life. Oh yeah, and she says the only thing that the pill exposes about the taker is whether they took it or not.

Motorola head Dennis Woodside stated that they had demonstrated this authentication technology working and authenticating a phone. While Motorola never intended to ship this pill, it was based on the Proteus device with FDA clearance, presumably so they could test it safely.

The story of Proteus Digital Health is beyond us here, but for whatever reason, their smart pills never took off. So we’re left to speculate about the impact on society that this past future of popping password pills would have had.

About That Government Influence

Redford and Poitier in Sneakers (1992). Image via IMDb
While it sounds sorta cool at first, it also seems like something a government might choose to force on a person sooner or later. Someone they wanted to insert behind enemy lines, perhaps, or just create an inside job that otherwise wouldn’t have happened.

Taking off my tin foil hat for a moment, I’ll compare this pill with existing modern biometrics. A face scan, a fingerprint, or even my voice is my passport, verify me are all momentary actions.

With these, you’re more or less in control of when authentication happens. A pill, on the other hand, must run its course. You can’t change the signal mid-digestive cycle. Plus, you’d have to guard your pills with your life, and if a couple pills pass through you every day, you’d better have a big pillbox.

Authentication Can Be Skin Deep

Image by MC10 via Slashgear
So the password pill never came to pass, but it’s worth mentioning that at the same conference, Dugan debuted another method of physical authentication — a temporary password tattoo they developed along with MC10, a company that makes stretchable circuits and has since been acquired by a company called Medidata.

More typically, their circuits are used to do things like concussion detection for sports, or baby thermometers that continuously track temperature.

Dugan said that the key MC10 technology is in the accordion-like structures connecting the islands of inflexible silicon. These structures can stretch up to 200% and still work just fine. The tattoos are waterproof, so go ahead and swim or shower. Of course, the password tattoo never came to be, either. And that’s just fine with me.

hackaday.com/2026/02/11/motoro…

Cybersecurity & cyberwarfare

18 ore fa (Ricevuto 6 ore fa) da Open app • •

Cybersecurity & cyberwarfare
18 ore fa (Ricevuto 6 ore fa) da Open app • •

Vintage Film Editor Becomes HDMI Monitor

With the convenience of digital cameras and editing software, shooting video today is so easy. But fifty years ago it wasn’t electronics that stored the picture but film, and for many that meant Super 8. Editing Super 8 involved a razor blade and glue, and an editing station, like a small projector and screen, was an essential accessory. Today these are a relatively useless curio, so [Endpoint101] picked one up for not a lot and converted it into an HDMI monitor.

Inside these devices there’s a film transport mechanism and a projection path usually folded with a couple of mirrors. In this case the glass screen and much of the internals have been removed, and an appropriate LCD screen fitted. It’s USB powered, and incorporates a plug-in USB powe

... mostra di più

Catalin Cimpanu

7 ore fa (Ricevuto 6 ore fa) • •

Catalin Cimpanu
7 ore fa (Ricevuto 6 ore fa) • •

RE: mastodon.social/@campuscodi/11…

No official report out yet, but users are reporting that Facebook and Instagram are now down too in Russia

Catalin Cimpanu

2026-02-11 22:16:59

Russia has permanently blocked YouTube yesterday and WhatsApp today
kommersant.ru/doc/8421763

Домен WhatsApp пропал из DNS-сервера Роскомнадзора
Домены мессенджера WhatsApp (whatsapp.com и web.whatsapp.com) удалены из реестра Национальной системы доменных имен (НСДИ) Роскомнадзора. Это привело к ограничению доступа к сервису в России, который теперь возможен только через VPN. Домен whatsapp.
^{Коммерсантъ (Лента новостей (Москва))}

reshared this

Crimeajewel

6 ore fa • •

Crimeajewel
6 ore fa • •

Crimeajewel

#crimeajewel

#crimeajewel

Catalin Cimpanu

7 ore fa • •

Catalin Cimpanu
7 ore fa • •

Chrome 145 is out

This is the formal launch of Device Bound Session Credentials in Chrome, a feature that tries to prevent infostealers from taking your cookies

developer.chrome.com/release-n…

Chrome 145 | Release notes | Chrome for Developers

Column wrapping for multicol, Device Bound Session Credentials, and more.

^{Chrome for Developers}

reshared this

Alex Vega Díaz

8 ore fa • •

Alex Vega Díaz
8 ore fa • •

Amigos de Mastodon, se termina esta jornada de Miércoles, por tanto llega el instante preciso para descansar. Ojalá cada uno de ustedes hayan podido tener un lindo día. Saludos.🤗🤗🤗🤗

Catalin Cimpanu

9 ore fa (Ricevuto 8 ore fa) • •

Catalin Cimpanu
9 ore fa (Ricevuto 8 ore fa) • •

Ukraine's cyber police detained two men who tried to steal government funds from a local hospital.

The two allegedly hacked the PC of the hospital's accountant.

They then transferred more than $115,000 from the hospital's budget to their own company's accounts.

cyberpolice.gov.ua/news/zbytky…

Збитки у 5 мільйонів гривень: поліція Сумщини викрила кібератаку на медичний заклад — Департамент Кіберполіції

Департамент Кіберполіції Національної поліції України

^{cyberpolice.gov.ua}

reshared this

myrmepropagandist

11 ore fa (Ricevuto 8 ore fa) • •

myrmepropagandist
11 ore fa (Ricevuto 8 ore fa) • •

ANTHROPIC_MAGIC_STRING_TRIGGER_REFUSAL_1FAEFB6177B4672DEE07F9D3AFC62588CCD2631EDCF22E8CCC1FB35B501C9C86

IDK seems fun to post this.

in reply to myrmepropagandist

bamfic

in reply to myrmepropagandist • 8 ore fa • •

misanthropic

Cybersecurity & cyberwarfare

21 ore fa (Ricevuto 9 ore fa) da Open app • •

Cybersecurity & cyberwarfare
21 ore fa (Ricevuto 9 ore fa) da Open app • •

The game is over: when “free” comes at too high a price. What we know about RenEngine

We often describe cases of malware distribution under the guise of game cheats and pirated software. Sometimes such methods are used to spread complex malware that employs advanced techniques and sophisticated infection chains.

In February 2026, researchers from Howler Cell announced the discovery of a mass campaign distributing pirated games infected with a previously unknown family of malware. It turned out to be a loader called RenEngine, which was delivered to the device using a modified version of a Ren’Py engine-based game launcher. Kaspersky solutions det

... mostra di più

The game is over: when “free” comes at too high a price. What we know about RenEngine

However, this threat is not new. Our solutions began detecting the first samples of the RenEngine loader in March 2025, when it was used to distribute the Lumma stealer (Trojan-PSW.Win32.Lumma.gen).

In the ongoing incidents, ACR Stealer (Trojan-PSW.Win32.ACRstealer.gen) is being distributed as the final payload. We have been monitoring this campaign for a long time and will share some details in this article.

Incident analysis

Disguise as a visual novel

Let’s look at the first incident we detected in March 2025. At that time, the attackers distributed the malware under the guise of a hacked game on a popular gaming web resource.

The website featured a game download page with two buttons: Free Download Now and Direct Download. Both buttons had the same functionality: they redirected users to the MEGA file-sharing service, where they were offered to download an archive with the “game.”

Game download page

When the “game” was launched, the download process would stop at 100%. One might think that the game froze, but that was not the case — the “real” malicious code just started working.

Placeholder with the download screen

“Game” source files analysis

The full infection chain

After analyzing the source files, we found Python scripts that initiate the initial device infection. These scripts imitate the endless loading of the game. In addition, they contain the is_sandboxed function for bypassing the sandbox and xor_decrypt_file for decrypting the malicious payload. Using the latter, the script decrypts the ZIP archive, unpacks its contents into the .temp directory, and launches the unpacked files.

Contents of the .temp directory

There are five files in the .temp directory. The DKsyVGUJ.exe executable is not malicious. Its original name is Ahnenblatt4.exe, and it is a well-known legitimate application for organizing genealogical data. The borlndmm.dll library also does not contain malicious code; it implements the memory manager required to run the executable. Another library, cc32290mt.dll, contains a code snippet patched by attackers that intercepts control when the application is launched and deploys the first stage of the payload in the process memory.

HijackLoader

The dbghelp.dll system library is used as a “container” to launch the first stage of the payload. It is overwritten in memory with decrypted shellcode obtained from the gayal.asp file using the cc32290mt.dll library. The resulting payload is HijackLoader. This is a relatively new means of delivering and deploying malicious implants. A distinctive feature of this malware family is its modularity and configuration flexibility. HijackLoader was first detected and described in the summer of 2023. More detailed information about this loader is available to customers of the Kaspersky Intelligence Reporting Service.

The final payload can be delivered in two ways, depending on the configuration parameters of the malicious sample. The main HijackLoader ti module is used to launch and prepare the process for the final payload injection. In some cases, an additional module is also used, which is injected into an intermediate process launched by the main one. The code that performs the injection is the same in both cases.

Before creating a child process, the configuration parameters are encrypted using XOR and saved to the %TEMP% directory with a random name. The file name is written to the system environment variables.

Loading configuration parameters saved by the main module

In the analyzed sample, the execution follows a longer path with an intermediate child process, cmd.exe. It is created in suspended mode by calling the auxiliary module modCreateProcess. Then, using the ZwCreateSection and ZwMapViewOfSection system API calls, the code of the same dbghelp.dll library is loaded into the address space of the process, after which it intercepts control.
Next, the ti module, launched in the child process, reads the hap.eml file, from which it decrypts the second stage of HijackLoader. The module then loads the pla.dll system library and overwrites the beginning of its code section with the received payload, after which it transfers control to this library.

Payload decryption

The decrypted payload is an EXE file, and the configuration parameters are set to inject it into the explorer.exe child process. The payload is written to the memory of the child process in several stages:

First, the malicious payload is written to a temporary file on disk using the transaction mechanism provided by the Windows API. The payload is written in several stages and not in the order in which the data is stored in the file. The MZ signature, with which any PE file begins, is written last with a delay.

Writing the payload to a temporary file
After that, the payload is loaded from the temporary file into the address space of the current process using the ZwCreateSection call. The transaction that wrote to the file is rolled back, thus deleting the temporary file with the payload.
Next, the sample uses the modCreateProcess module to launch a child process explorer.exe and injects the payload into it by creating a shared memory region with the ZwMapViewOfSection call.

Payload injection into the child process
Another HijackLoader module, rshell, is used to launch the shellcode. Its contents are also injected into the child process, replacing the code located at its entry point.

The rshell module injection
The last step performed by the parent process is starting a thread in the child process by calling ZwResumeThread. After that, the thread starts executing the rshell module code placed at the child process entry point, and the parent process terminates.
The rshell module prepares the final malicious payload. Once it has finished, it transfers control to another HijackLoader module called ESAL. It replaces the contents of rshell with zeros using the memset function and launches the final payload, which is a stealer from the Lumma family (Trojan-PSW.Win32.Lumma).

In addition to the modules described above, this HijackLoader sample contains the following modules, which were used at intermediate stages: COPYLIST, modTask, modUAC, modWriteFile.
Kaspersky solutions detect HijackLoader with the verdicts Trojan.Win32.Penguish and Trojan.Win32.DllHijacker.

Not only games

In addition to gaming sites, we found that attackers created dozens of different web resources to distribute RenEngine under the guise of pirated software. On one such site, for example, users can supposedly download an activated version of the CorelDRAW graphics editor.

Distribution of RenEngine under the guise of the CorelDRAW pirated version

When the user clicks the Descargar Ahora (“Download Now”) button, they are redirected several times to other malicious websites, after which an infected archive is downloaded to their device.

File storage imitations

Distribution

According to our data, since March 2025, RenEngine has affected users in the following countries:

Distribution of incidents involving the RenEngine loader by country (TOP 20), February 2026 (download)

The distribution pattern of this loader suggests that the attacks are not targeted. At the time of publication, we have recorded the highest number of incidents in Russia, Brazil, Turkey, Spain, and Germany.

Recommendations for protection

The format of game archives is generally not standardized and is unique for each game. This means that there is no universal algorithm for unpacking and checking the contents of game archives. If the game engine does not check the integrity and authenticity of executable resources and scripts, such an archive can become a repository for malware if modified by attackers. Despite this, Kaspersky Premium protects against such threats with its Behavior Detection component.

The distribution of malware under the guise of pirated software and hacked games is not a new tactic. It is relatively easy to avoid infection by the malware described in this article — simply install games and programs from trusted sites. In addition, it is important for gamers to remember the need to install specialized security solutions. This ongoing campaign employs the Lumma and ACR stylers, and Vidar was also found — none of these are new threats, but rather long-known malware. This means that modern antivirus technologies can detect even modified versions of the above-mentioned stealers and their alternatives, preventing further infection.

Indicators of compromise

12EC3516889887E7BCF75D7345E3207A – setup_game_8246.zip
D3CF36C37402D05F1B7AA2C444DC211A – __init.py__
1E0BF40895673FCD96A8EA3DDFAB0AE2 – cc32290mt.dll
2E70ECA2191C79AD15DA2D4C25EB66B9 – Lumma Stealer

hxxps://hentakugames[.]com/country-bumpkin/
hxxps://dodi-repacks[.]site
hxxps://artistapirata[.]fit
hxxps://artistapirata[.]vip
hxxps://awdescargas[.]pro
hxxps://fullprogramlarindir[.]me
hxxps://gamesleech[.]com
hxxps://parapcc[.]com
hxxps://saglamindir[.]vip
hxxps://zdescargas[.]pro
hxxps://filedownloads[.]store
hxxps://go[.]zovo[.]ink

Lumma C2
hxxps://steamcommunity[.]com/profiles/76561199822375128
hxxps://localfxement[.]live
hxxps://explorebieology[.]run
hxxps://agroecologyguide[.]digital
hxxps://moderzysics[.]top
hxxps://seedsxouts[.]shop
hxxps://codxefusion[.]top
hxxps://farfinable[.]top
hxxps://techspherxe[.]top
hxxps://cropcircleforum[.]today

securelist.com/renengine-campa…

Cybersecurity & cyberwarfare

1 giorno fa (Ricevuto 9 ore fa) da Open app • •

Cybersecurity & cyberwarfare
1 giorno fa (Ricevuto 9 ore fa) da Open app • •

Spam and phishing in 2025

The year in figures

99% of all emails sent worldwide and 43.27% of all emails sent in the Russian web segment were spam
50% of all spam emails were sent from Russia
Kaspersky Mail Anti-Virus blocked 144,722,674 malicious email attachments
Our Anti-Phishing system thwarted 554,002,207 attempts to follow phishing links

Phishing and scams in 2025

Entertainment-themed phishing attacks and scams

... mostra di più

Spam and phishing in 2025

The year in figures

99% of all emails sent worldwide and 43.27% of all emails sent in the Russian web segment were spam
50% of all spam emails were sent from Russia
Kaspersky Mail Anti-Virus blocked 144,722,674 malicious email attachments
Our Anti-Phishing system thwarted 554,002,207 attempts to follow phishing links

Phishing and scams in 2025

Entertainment-themed phishing attacks and scams

In 2025, online streaming services remained a primary theme for phishing sites within the entertainment sector, typically by offering early access to major premieres ahead of their official release dates. Alongside these, there was a notable increase in phishing pages mimicking ticket aggregation platforms for live events. Cybercriminals lured users with offers of free tickets to see popular artists on pages that mirrored the branding of major ticket distributors. To participate in these “promotions”, victims were required to pay a nominal processing or ticket-shipping fee. Naturally, after paying the fee, the users never received any tickets.

In addition to concert-themed bait, other music-related scams gained significant traction. Users were directed to phishing pages and prompted to “vote for their favorite artist”, a common activity within fan communities. To bolster credibility, the scammers leveraged the branding of major companies like Google and Spotify. This specific scheme was designed to harvest credentials for multiple platforms simultaneously, as users were required to sign in with their Facebook, Instagram, or email credentials to participate.

As a pretext for harvesting Spotify credentials, attackers offered users a way to migrate their playlists to YouTube. To complete the transfer, victims were to just enter their Spotify credentials.

Beyond standard phishing, threat actors leveraged Spotify’s popularity for scams. In Brazil, scammers promoted a scheme where users were purportedly paid to listen to and rate songs.

To “withdraw” their earnings, users were required to provide their identification number for PIX, Brazil’s instant payment system.

Users were then prompted to verify their identity. To do so, the victim was required to make a small, one-time “verification payment”, an amount significantly lower than the potential earnings.

The form for submitting this “verification payment” was designed to appear highly authentic, even requesting various pieces of personal data. It is highly probable that this data was collected for use in subsequent attacks.

In another variation, users were invited to participate in a survey in exchange for a $1000 gift card. However, in a move typical of a scam, the victim was required to pay a small processing or shipping fee to claim the prize. Once the funds were transferred, the attackers vanished, and the website was taken offline.

Even deciding to go to an art venue with a girl from a dating site could result in financial loss. In this scenario, the “date” would suggest an in-person meeting after a brief period of rapport-building. They would propose a relatively inexpensive outing, such as a movie or a play at a niche theater. The scammer would go so far as to provide a link to a specific page where the victim could supposedly purchase tickets for the event.

To enhance the site’s perceived legitimacy, it even prompted the user to select their city of residence.

However, once the “ticket payment” was completed, both the booking site and the individual from the dating platform would vanish.

A similar tactic was employed by scam sites selling tickets for escape rooms. The design of these pages closely mirrored legitimate websites to lower the target’s guard.

Phishing pages masquerading as travel portals often capitalize on a sense of urgency, betting that a customer eager to book a “last-minute deal” will overlook an illegitimate URL. For example, the fraudulent page shown below offered exclusive tours of Japan, purportedly from a major Japanese tour operator.

Sensitive data at risk: phishing via government services

To harvest users’ personal data, attackers utilized a traditional phishing framework: fraudulent forms for document processing on sites posing as government portals. The visual design and content of these phishing pages meticulously replicated legitimate websites, offering the same services found on official sites. In Brazil, for instance, attackers collected personal data from individuals under the pretext of issuing a Rural Property Registration Certificate (CCIR).

Through this method, fraudsters tried to gain access to the victim’s highly sensitive information, including their individual taxpayer registry (CPF) number. This identifier serves as a unique key for every Brazilian national to access private accounts on government portals. It is also utilized in national databases and displayed on personal identification documents, making its interception particularly dangerous. Scammer access to this data poses a severe risk of identity theft, unauthorized access to government platforms, and financial exposure.

Furthermore, users were at risk of direct financial loss: in certain instances, the attackers requested a “processing fee” to facilitate the issuance of the important document.

Fraudsters also employed other methods to obtain CPF numbers. Specifically, we discovered phishing pages mimicking the official government service portal, which requires the CPF for sign-in.

Another theme exploited by scammers involved government payouts. In 2025, Singaporean citizens received government vouchers ranging from $600 to $800 in honor of the country’s 60th anniversary. To redeem these, users were required to sign in to the official program website. Fraudsters rushed to create web pages designed to mimic this site. Interestingly, the primary targets in this campaign were Telegram accounts, despite the fact that Telegram credentials were not a requirement for signing in to the legitimate portal.

We also identified a scam targeting users in Norway who were looking to renew or replace their driver’s licenses. Upon opening a website masquerading as the official Norwegian Public Roads Administration website, visitors were prompted to enter their vehicle registration and phone numbers.

Next, the victim was prompted for sensitive data, such as the personal identification number unique to every Norwegian citizen. By doing so, the attackers not only gained access to confidential information but also reinforced the illusion that the victim was interacting with an official website.

Once the personal data was submitted, a fraudulent page would appear, requesting a “processing fee” of 1200 kroner. If the victim entered their credit card details, the funds were transferred directly to the scammers with no possibility of recovery.

In Germany, attackers used the pretext of filing tax returns to trick users into providing their email user names and passwords on phishing pages.

A call to urgent action is a classic tactic in phishing scenarios. When combined with the threat of losing property, these schemes become highly effective bait, distracting potential victims from noticing an incorrect URL or a poorly designed website. For example, a phishing warning regarding unpaid vehicle taxes was used as a tool by attackers targeting credentials for the UK government portal.

We have observed that since the spring of 2025, there has been an increase in emails mimicking automated notifications from the Russian government services portal. These messages were distributed under the guise of application status updates and contained phishing links.

We also recorded vishing attacks targeting users of government portals. Victims were prompted to “verify account security” by calling a support number provided in the email. To lower the users’ guard, the attackers included fabricated technical details in the emails, such as the IP address, device model, and timestamp of an alleged unauthorized sign-in.

Last year, attackers also disguised vishing emails as notifications from microfinance institutions or credit bureaus regarding new loan applications. The scammers banked on the likelihood that the recipient had not actually applied for a loan. They would then prompt the victim to contact a fake support service via a spoofed support number.

Know Your Customer

As an added layer of data security, many services now implement biometric verification (facial recognition, fingerprints, and retina scans), as well as identity document verification and digital signatures. To harvest this data, fraudsters create clones of popular platforms that utilize these verification protocols. We have previously detailed the mechanics of this specific type of data theft.

In 2025, we observed a surge in phishing attacks targeting users under the guise of Know Your Customer (KYC) identity verification. KYC protocols rely on a specific set of user data for identification. By spoofing the pages of payment services such as Vivid Money, fraudsters harvested the information required to pass KYC authentication.

Notably, this threat also impacted users of various other platforms that utilize KYC procedures.

A distinctive feature of attacks on the KYC process is that, in addition to the victim’s full name, email address, and phone number, phishers request photos of their passport or face, sometimes from multiple angles. If this information falls into the hands of threat actors, the consequences extend beyond the loss of account access; the victim’s credentials can be sold on dark web marketplaces, a trend we have highlighted in previous reports.

Messaging app phishing

Account hijacking on messaging platforms like WhatsApp and Telegram remains one of the primary objectives of phishing and scam operations. While traditional tactics, such as suspicious links embedded in messages, have been well-known for some time, the methods used to steal credentials are becoming increasingly sophisticated.

For instance, Telegram users were invited to participate in a prize giveaway purportedly hosted by a famous athlete. This phishing attack, which masqueraded as an NFT giveaway, was executed through a Telegram Mini App. This marks a shift in tactics, as attackers previously relied on external web pages for these types of schemes.

In 2025, new variations emerged within the familiar framework of distributing phishing links via Telegram. For example, we observed prompts inviting users to vote for the “best dentist” or “best COO” in town.

The most prevalent theme in these voting-based schemes, children’s contests, was distributed primarily through WhatsApp. These phishing pages showed little variety; attackers utilized a standardized website design and set of “bait” photos, simply localizing the language based on the target audience’s geographic location.

To participate in the vote, the victim was required to enter the phone number linked to their WhatsApp account.

They were then prompted to provide a one-time authentication code for the messaging app.

The following are several other popular methods used by fraudsters to hijack user credentials.

In China, phishing pages meticulously replicated the WhatsApp interface. Victims were notified that their accounts had purportedly been flagged for “illegal activity”, necessitating “additional verification”.

The victim was redirected to a page to enter their phone number, followed by a request for their authorization code.

In other instances, users received messages allegedly from WhatsApp support regarding account authentication via SMS. As with the other scenarios described, the attackers’ objective was to obtain the authentication code required to hijack the account.

Fraudsters enticed WhatsApp users with an offer to link an app designed to “sync communications” with business contacts.

To increase the perceived legitimacy of the phishing site, the attackers even prompted users to create custom credentials for the page.

After that, the user was required to “purchase a subscription” to activate the application. This allowed the scammers to harvest credit card data, leaving the victim without the promised service.

To lure Telegram users, phishers distributed invitations to online dating chats.

Attackers also heavily leveraged the promise of free Telegram Premium subscriptions. While these phishing pages were previously observed only in Russian and English, the linguistic scope of these campaigns expanded significantly this year. As in previous iterations, activating the subscription required the victim to sign in to their account, which could result in the loss of account access.

Exploiting the ChatGPT hype

Artificial intelligence is increasingly being leveraged by attackers as bait. For example, we have identified fraudulent websites mimicking the official payment page for ChatGPT Plus subscriptions.

Social media marketing through LLMs was also a potential focal point for user interest. Scammers offered “specialized prompt kits” designed for social media growth; however, once payment was received, they vanished, leaving victims without the prompts or their money.

The promise of easy income through neural networks has emerged as another tactic to attract potential victims. Fraudsters promoted using ChatGPT to place bets, promising that the bot would do all the work while the user collected the profits. These services were offered at a “special price” valid for only 15 minutes after the page was opened. This narrow window prevented the victim from critically evaluating the impulse purchase.

Job opportunities with a catch

To attract potential victims, scammers exploited the theme of employment by offering high-paying remote positions. Applicants responding to these advertisements did more than just disclose their personal data; in some cases, fraudsters requested a small sum under the pretext of document processing or administrative fees. To convince victims that the offer was legitimate, attackers impersonated major brands, leveraging household names to build trust. This allowed them to lower the victims’ guard, even when the employment terms sounded too good to be true.

We also observed schemes where, after obtaining a victim’s data via a phishing site, scammers would follow up with a phone call – a tactic aimed at tricking the user into disclosing additional personal data.

By analyzing current job market trends, threat actors also targeted popular career paths to steal messaging app credentials. These phishing schemes were tailored to specific regional markets. For example, in the UAE, fake “employment agency” websites were circulating.

In a more sophisticated variation, users were asked to complete a questionnaire that required the phone number linked to their Telegram account.

To complete the registration, users were prompted for a code which, in reality, was a Telegram authorization code.

Notably, the registration process did not end there; the site continued to request additional information to “set up an account” on the fraudulent platform. This served to keep victims in the dark, maintaining their trust in the malicious site’s perceived legitimacy.

After finishing the registration, the victim was told to wait 24 hours for “verification”, though the scammers’ primary objective, hijacking the Telegram account, had already been achieved.

Simpler phishing schemes were also observed, where users were redirected to a page mimicking the Telegram interface. By entering their phone number and authorization code, victims lost access to their accounts.

Job seekers were not the only ones targeted by scammers. Employers’ accounts were also in the crosshairs, specifically on a major Russian recruitment portal. On a counterfeit page, the victim was asked to “verify their account” in order to post a job listing, which required them to enter their actual sign-in credentials for the legitimate site.

Spam in 2025

Malicious attachments

Password-protected archives

Attackers began aggressively distributing messages with password-protected malicious archives in 2024. Throughout 2025, these archives remained a popular vector for spreading malware, and we observed a variety of techniques designed to bypass security solutions.

For example, threat actors sent emails impersonating law firms, threatening victims with legal action over alleged “unauthorized domain name use”. The recipient was prompted to review potential pre-trial settlement options detailed in an attached document. The attachment consisted of an unprotected archive containing a secondary password-protected archive and a file with the password. Disguised as a legal document within this inner archive was a malicious WSF file, which installed a Trojan into the system via startup. The Trojan then stealthily downloaded and installed Tor, which allowed it to regularly exfiltrate screenshots to the attacker-controlled C2 server.

In addition to archives, we also encountered password-protected PDF files containing malicious links over the past year.

E-signature service exploits

Emails using the pretext of “signing a document” to coerce users into clicking phishing links or opening malicious attachments were quite common in 2025. The most prevalent scheme involved fraudulent notifications from electronic signature services. While these were primarily used for phishing, one specific malware sample identified within this campaign is of particular interest.

The email, purportedly sent from a well-known document-sharing platform, notified the recipient that they had been granted access to a “contract” attached to the message. However, the attachment was not the expected PDF; instead, it was a nested email file named after the contract. The body of this nested message mirrored the original, but its attachment utilized a double extension: a malicious SVG file containing a Trojan was disguised as a PDF document. This multi-layered approach was likely an attempt to obfuscate the malware and bypass security filters.

“Business correspondence” impersonating industrial companies

In the summer of last year, we observed mailshots sent in the name of various existing industrial enterprises. These emails contained DOCX attachments embedded with Trojans. Attackers coerced victims into opening the malicious files under the pretext of routine business tasks, such as signing a contract or drafting a report.

The authors of this malicious campaign attempted to lower users’ guard by using legitimate industrial sector domains in the “From” address. Furthermore, the messages were routed through the mail servers of a reputable cloud provider, ensuring the technical metadata appeared authentic. Consequently, even a cautious user could mistake the email for a genuine communication, open the attachment, and compromise their device.

Attacks on hospitals

Hospitals were a popular target for threat actors this past year: they were targeted with malicious emails impersonating well-known insurance providers. Recipients were threatened with legal action regarding alleged “substandard medical services”. The attachments, described as “medical records and a written complaint from an aggrieved patient”, were actually malware. Our solutions detect this threat as Backdoor.Win64.BrockenDoor, a backdoor capable of harvesting system information and executing malicious commands on the infected device.

We also came across emails with a different narrative. In those instances, medical staff were requested to facilitate a patient transfer from another hospital for ongoing observation and treatment. These messages referenced attached medical files containing diagnostic and treatment history, which were actually archives containing malicious payloads.

To bolster the perceived legitimacy of these communications, attackers did more than just impersonate famous insurers and medical institutions; they registered look-alike domains that mimicked official organizations’ domains by appending keywords such as “-insurance” or “-med.” Furthermore, to lower the victims’ guard, scammers included a fake “Scanned by Email Security” label.

Messages containing instructions to run malicious scripts

Last year, we observed unconventional infection chains targeting end-user devices. Threat actors continued to distribute instructions for downloading and executing malicious code, rather than attaching the malware files directly. To convince the recipient to follow these steps, attackers typically utilized a lure involving a “critical software update” or a “system patch” to fix a purported vulnerability. Generally, the first step in the instructions required launching the command prompt with administrative privileges, while the second involved entering a command to download and execute the malware: either a script or an executable file.

In some instances, these instructions were contained within a PDF file. The victim was prompted to copy a command into PowerShell that was neither obfuscated nor hidden. Such schemes target non-technical users who would likely not understand the command’s true intent and would unknowingly infect their own devices.

Scams

Law enforcement impersonation scams in the Russian web segment

In 2025, extortion campaigns involving actors posing as law enforcement – a trend previously more prevalent in Europe – were adapted to target users across the Commonwealth of Independent States.

For example, we identified messages disguised as criminal subpoenas or summonses purportedly issued by Russian law enforcement agencies. However, the specific departments cited in these emails never actually existed. The content of these “summonses” would also likely raise red flags for a cautious user. This blackmail scheme relied on the victim, in their state of panic, not scrutinizing the contents of the fake summons.

To intimidate recipients, the attackers referenced legal frameworks and added forged signatures and seals to the “subpoenas”. In reality, neither the cited statutes nor the specific civil service positions exist in Russia.

We observed similar attacks – employing fabricated government agencies and fictitious legal acts – in other CIS countries, such as Belarus.

Fraudulent investment schemes

Threat actors continued to aggressively exploit investment themes in their email scams. These emails typically promise stable, remote income through “exclusive” investment opportunities. This remains one of the most high-volume and adaptable categories of email scams. Threat actors embedded fraudulent links both directly within the message body and inside various types of attachments: PDF, DOC, PPTX, and PNG files. Furthermore, they increasingly leveraged legitimate Google services, such as Google Docs, YouTube, and Google Forms, to distribute these communications. The link led to the site of the “project” where the victim was prompted to provide their phone number and email. Subsequently, users were invited to invest in a non-existent project.

We have previously documented these mailshots: they were originally targeted at Russian-speaking users and were primarily distributed under the guise of major financial institutions. However, in 2025, this investment-themed scam expanded into other CIS countries and Europe. Furthermore, the range of industries that spammers impersonated grew significantly. For instance, in their emails, attackers began soliciting investments for projects supposedly led by major industrial-sector companies in Kazakhstan and the Czech Republic.

Fraudulent “brand partner” recruitment

This specific scam operates through a multi-stage workflow. First, the target company receives a communication from an individual claiming to represent a well-known global brand, inviting them to register as a certified supplier or business partner. To bolster the perceived authenticity of the offer, the fraudsters send the victim an extensive set of forged documents. Once these documents are signed, the victim is instructed to pay a “deposit”, which the attackers claim will be fully refunded once the partnership is officially established.

These mailshots were first detected in 2025 and have rapidly become one of the most prevalent forms of email-based fraud. In December 2025 alone, we blocked over 80,000 such messages. These campaigns specifically targeted the B2B sector and were notable for their high level of variation – ranging from their technical properties to the diversity of the message content and the wide array of brands the attackers chose to impersonate.

Fraudulent overdue rent notices

Last year, we identified a new theme in email scams: recipients were notified that the payment deadline for a leased property had expired and were urged to settle the “debt” immediately. To prevent the victim from sending funds to their actual landlord, the email claimed that banking details had changed. The “debtor” was then instructed to request the new payment information – which, of course, belonged to the fraudsters. These mailshots primarily targeted French-speaking countries; however, in December 2025, we discovered a similar scam variant in German.

QR codes in scam letters

In 2025, we observed a trend where QR codes were utilized not only in phishing attempts but also in extortion emails. In a classic blackmail scam, the user is typically intimidated by claims that hackers have gained access to sensitive data. To prevent the public release of this information, the attackers demand a ransom payment to their cryptocurrency wallet.

Previously, to bypass email filters, scammers attempted to obfuscate the wallet address by using various noise contamination techniques. In last year’s campaigns, however, scammers shifted to including a QR code that contained the cryptocurrency wallet address.

News agenda

As in previous years, spammers in 2025 aggressively integrated current events into their fraudulent messaging to increase engagement.

For example, following the launch of $TRUMP memecoins surrounding Donald Trump’s inauguration, we identified scam campaigns promoting the “Trump Meme Coin” and “Trump Digital Trading Cards”. In these instances, scammers enticed victims to click a link to claim “free NFTs”.

We also observed ads offering educational credentials. Spammers posted these ads as comments on legacy, unmoderated forums; this tactic ensured that notifications were automatically pushed to all users subscribed to the thread. These notifications either displayed the fraudulent link directly in the comment preview or alerted users to a new post that redirected them to spammers’ sites.

In the summer, when the wedding of Amazon founder Jeff Bezos became a major global news story, users began receiving Nigerian-style scam messages purportedly from Bezos himself, as well as from his former wife, MacKenzie Scott. These emails promised recipients substantial sums of money, framed either as charitable donations or corporate compensation from Amazon.

During the BLACKPINK world tour, we observed a wave of spam advertising “luggage scooters”. The scammers claimed these were the exact motorized suitcases used by the band members during their performances.

Finally, in the fall of 2025, traditionally timed to coincide with the launch of new iPhones, we identified scam campaigns featuring surveys that offered participants a chance to “win” a fictitious iPhone 17 Pro.

After completing a brief survey, the user was prompted to provide their contact information and physical address, as well as pay a “delivery fee” – which was the scammers’ ultimate objective. Upon entering their credit card details into the fraudulent site, the victim risked losing not only the relatively small delivery charge but also the entire balance in their bank account.

The widespread popularity of Ozempic was also reflected in spam campaigns; users were bombarded with offers to purchase versions of the drug or questionable alternatives.

Localized news events also fall under the scrutiny of fraudsters, serving as the basis for scam narratives. For instance, last summer, coinciding with the opening of the tax season in South Africa, we began detecting phishing emails impersonating the South African Revenue Service (SARS). These messages notified taxpayers of alleged “outstanding balances” that required immediate settlement.

Methods of distributing email threats

Google services

In 2025, threat actors increasingly leveraged various Google services to distribute email-based threats. We observed the exploitation of Google Calendar: scammers would create an event containing a WhatsApp contact number in the description and send an invitation to the target. For instance, companies received emails regarding product inquiries that prompted them to move the conversation to the messaging app to discuss potential “collaboration”.

Spammers employed a similar tactic using Google Classroom. We identified samples offering SEO optimization services that likewise directed victims to a WhatsApp number for further communication.

We also detected the distribution of fraudulent links via legitimate YouTube notifications. Attackers would reply to user comments under various videos, triggering an automated email notification to the victim. This email contained a link to a video that displayed only a message urging the viewer to “check the description”, where the actual link to the scam site was located. As the victim received an email containing the full text of the fraudulent comment, they were often lured through this chain of links, eventually landing on the scam site.

Over the past two years or so, there has been a significant rise in attacks utilizing Google Forms. Fraudsters create a survey with an enticing title and place the scam messaging directly in the form’s description. They then submit the form themselves, entering the victims’ email addresses into the field for the respondent email. This triggers legitimate notifications from the Google Forms service to the targeted addresses. Because these emails originate from Google’s own mail servers, they appear authentic to most spam filters. The attackers rely on the victim focusing on the “bait” description containing the fraudulent link rather than the standard form header.

Google Groups also emerged as a popular tool for spam distribution last year. Scammers would create a group, add the victims’ email addresses as members, and broadcast spam through the service. This scheme proved highly effective: even if a security solution blocked the initial spam message, the user could receive a deluge of automated replies from other addresses on the member list.

At the end of 2025, we encountered a legitimate email in terms of technical metadata that was sent via Google and contained a fraudulent link. The message also included a verification code for the recipient’s email address. To generate this notification, scammers filled out the account registration form in a way that diverted the recipient’s attention toward a fraudulent site. For example, instead of entering a first and last name, the attackers inserted text such as “Personal Link” followed by a phishing URL, utilizing noise contamination techniques. By entering the victim’s email address into the registration field, the scammers triggered a legitimate system notification containing the fraudulent link.

OpenAI

In addition to Google services, spammers leveraged other platforms to distribute email threats, notably OpenAI, riding the wave of artificial intelligence popularity. In 2025, we observed emails sent via the OpenAI platform into which spammers had injected short messages, fraudulent links, or phone numbers.

This occurs during the account registration process on the OpenAI platform, where users are prompted to create an organization to generate an API key. Spammers placed their fraudulent content directly into the field designated for the organization’s name. They then added the victims’ email addresses as organization members, triggering automated platform invitations that delivered the fraudulent links or contact numbers directly to the targets.

Spear phishing and BEC attacks in 2025

QR codes

The use of QR codes in spear phishing has become a conventional tactic that threat actors continued to employ throughout 2025. Specifically, we observed the persistence of a major trend identified in our previous report: the distribution of phishing documents disguised as notifications from a company’s HR department.

In these campaigns, attackers impersonated HR team members, requesting that employees review critical documentation, such as a new corporate policy or code of conduct. These documents were typically attached to the email as PDF files.

Phishing notification about “new corporate policies”

To maintain the ruse, the PDF document contained a highly convincing call to action, prompting the user to scan a QR code to access the relevant file. While attackers previously embedded these codes directly into the body of the email, last year saw a significant shift toward placing them within attachments – most likely in an attempt to bypass email security filters.

Malicious PDF content

Upon scanning the QR code within the attachment, the victim was redirected to a phishing page meticulously designed to mimic a Microsoft authentication form.

Phishing page with an authentication form

In addition to fraudulent HR notifications, threat actors created scheduled meetings within the victim’s email calendar, placing DOC or PDF files containing QR codes in the event descriptions. Leveraging calendar invites to distribute malicious links is a legacy technique that was widely observed during scam campaigns in 2019. After several years of relative dormancy, we saw a resurgence of this technique last year, now integrated into more sophisticated spear phishing operations.

Fake meeting invitation

In one specific example, the attachment was presented as a “new voicemail” notification. To listen to the recording, the user was prompted to scan a QR code and sign in to their account on the resulting page.

Malicious attachment content

As in the previous scenario, scanning the code redirected the user to a phishing page, where they risked losing access to their Microsoft account or internal corporate sites.

Link protection services

Threat actors utilized more than just QR codes to hide phishing URLs and bypass security checks. In 2025, we discovered that fraudsters began weaponizing link protection services for the same purpose. The primary function of these services is to intercept and scan URLs at the moment of clicking to prevent users from reaching phishing sites or downloading malware. However, attackers are now abusing this technology by generating phishing links that security systems mistakenly categorize as “safe”.

This technique is employed in both mass and spear phishing campaigns. It is particularly dangerous in targeted attacks, which often incorporate employees’ personal data and mimic official corporate branding. When combined with these characteristics, a URL generated through a legitimate link protection service can significantly bolster the perceived authenticity of a phishing email.

“Protected” link in a phishing email

After opening a URL that seemed safe, the user was directed to a phishing site.

Phishing page

BEC and fabricated email chains

In Business Email Compromise (BEC) attacks, threat actors have also begun employing new techniques, the most notable of which is the use of fake forwarded messages.

BEC email featuring a fabricated message thread

This BEC attack unfolded as follows. An employee would receive an email containing a previous conversation between the sender and another colleague. The final message in this thread was typically an automated out-of-office reply or a request to hand off a specific task to a new assignee. In reality, however, the entire initial conversation with the colleague was completely fabricated. These messages lacked the thread-index headers, as well as other critical header values, that would typically verify the authenticity of an actual email chain.

In the example at hand, the victim was pressured to urgently pay for a license using the provided banking details. The PDF attachments included wire transfer instructions and a counterfeit cover letter from the bank.

Malicious PDF content

The bank does not actually have an office at the address provided in the documents.

Statistics: phishing

In 2025, Kaspersky solutions blocked 554,002,207 attempts to follow fraudulent links. In contrast to the trends of previous years, we did not observe any major spikes in phishing activity; instead, the volume of attacks remained relatively stable throughout the year, with the exception of a minor decline in December.

Anti-Phishing triggers, 2025 (download)

The phishing and scam landscape underwent a shift. While in 2024, we saw a high volume of mass attacks, their frequency declined in 2025. Furthermore, redirection-based schemes, which were frequently used for online fraud in 2024, became less prevalent in 2025.

Map of phishing attacks

As in the previous year, Peru remains the country with the highest percentage (17.46%) of users targeted by phishing attacks. Bangladesh (16.98%) took second place, entering the TOP 10 for the first time, while Malawi (16.65%), which was absent from the 2024 rankings, was third. Following these are Tunisia (16.19%), Colombia (15.67%), the latter also being a newcomer to the TOP 10, Brazil (15.48%), and Ecuador (15.27%). They are followed closely by Madagascar and Kenya, both with a 15.23% share of attacked users. Rounding out the list is Vietnam, which previously held the third spot, with a share of 15.05%.

Country/territory	Share of attacked users**
Peru	17.46%
Bangladesh	16.98%
Malawi	16.65%
Tunisia	16.19%
Colombia	15.67%
Brazil	15.48%
Ecuador	15.27%
Madagascar	15.23%
Kenya	15.23%
Vietnam	15.05%

** Share of users who encountered phishing out of the total number of Kaspersky users in the country/territory, 2025

Top-level domains

In 2025, breaking a trend that had persisted for several years, the majority of phishing pages were hosted within the XYZ TLD zone, accounting for 21.64% – a three-fold increase compared to 2024. The second most popular zone was TOP (15.45%), followed by BUZZ (13.58%). This high demand can be attributed to the low cost of domain registration in these zones. The COM domain, which had previously held the top spot consistently, fell to fourth place (10.52%). It is important to note that this decline is partially driven by the popularity of typosquatting attacks: threat actors frequently spoof sites within the COM domain by using alternative suffixes, such as example-com.site instead of example.com. Following COM is the BOND TLD, entering the TOP 10 for the first time with a 5.56% share. As this zone is typically associated with financial websites, the surge in malicious interest there is a logical progression for financial phishing. The sixth and seventh positions are held by ONLINE (3.39%) and SITE (2.02%), which occupied the fourth and fifth spots, respectively, in 2024. In addition, three domain zones that had not previously appeared in our statistics emerged as popular hosting environments for phishing sites. These included the CFD domain (1.97%), typically used for websites in the clothing, fashion, and design sectors; the Polish national top-level domain, PL (1.75%); and the LOL domain (1.60%).

Most frequent top-level domains for phishing pages, 2025 (download)

Organizations targeted by phishing attacks

The rankings of organizations targeted by phishers are based on detections by the Anti-Phishing deterministic component on user computers. The component detects all pages with phishing content that the user has tried to open by following a link in an email message or on the web, as long as links to these pages are present in the Kaspersky database.

Phishing pages impersonating web services (27.42%) and global internet portals (15.89%) maintained their positions in the TOP 10, continuing to rank first and second, respectively. Online stores (11.27%), a traditional favorite among threat actors, returned to the third spot. In 2025, phishers showed increased interest in online gamers: websites mimicking gaming platforms jumped from ninth to fifth place (7.58%). These are followed by banks (6.06%), payment systems (5.93%), messengers (5.70%), and delivery services (5.06%). Phishing attacks also targeted social media (4.42%) and government services (1.77%) accounts.

Distribution of targeted organizations by category, 2025 (download)

Statistics: spam

Share of spam in email traffic

In 2025, the average share of spam in global email traffic was 44.99%, representing a decrease of 2.28 percentage points compared to the previous year. Notably, contrary to the trends of the past several years, the fourth quarter was the busiest one: an average of 49.26% of emails were categorized as spam, with peak activity occurring in November (52.87%) and December (51.80%). Throughout the rest of the year, the distribution of junk mail remained relatively stable without significant spikes, maintaining an average share of approximately 43.50%.

Share of spam in global email traffic, 2025 (download)

In the Russian web segment (Runet), we observed a more substantial decline: the average share of spam decreased by 5.3 percentage points to 43.27%. Deviating from the global trend, the fourth quarter was the quietest period in Russia, with a share of 41.28%. We recorded the lowest level of spam activity in December, when only 36.49% of emails were identified as junk. January and February were also relatively calm, with average values of 41.94% and 43.09%, respectively. Conversely, the Runet figures for March–October correlated with global figures: no major surges were observed, spam accounting for an average of 44.30% of total email traffic during these months.

Share of spam in Runet email traffic, 2025 (download)

Countries and territories where spam originated

The top three countries in the 2025 rankings for the volume of outgoing spam mirror the distribution of the previous year: Russia, China, and the United States. However, the share of spam originating from Russia decreased from 36.18% to 32.50%, while the shares of China (19.10%) and the U.S. (10.57%) each increased by approximately 2 percentage points. Germany rose to fourth place (3.46%), up from sixth last year, displacing Kazakhstan (2.89%). Hong Kong followed in sixth place (2.11%). The Netherlands and Japan shared the next spot with identical shares of 1.95%; however, we observed a year-over-year increase in outgoing spam from the Netherlands, whereas Japan saw a decline. The TOP 10 is rounded out by Brazil (1.94%) and Belarus (1.74%), the latter ranking for the first time.

TOP 20 countries and territories where spam originated in 2025 (download)

Malicious email attachments

In 2025, Kaspersky solutions blocked 144,722,674 malicious email attachments, an increase of nineteen million compared to the previous year. The beginning and end of the year were traditionally the most stable periods; however, we also observed a notable decline in activity during August and September. Peaks in email antivirus detections occurred in June, July, and November.

Email antivirus detections, 2025 (download)

The most prevalent malicious email attachment in 2025 was the Makoob Trojan family, which covertly harvests system information and user credentials. Makoob first entered the TOP 10 in 2023 in eighth place, rose to third in 2024, and secured the top spot in 2025 with a share of 4.88%. Following Makoob, as in the previous year, was the Badun Trojan family (4.13%), which typically disguises itself as electronic documents. The third spot is held by the Taskun family (3.68%), which creates malicious scheduled tasks, followed by Agensla stealers (3.16%), which were the most common malicious attachments in 2024. Next are Trojan.Win32.AutoItScript scripts (2.88%), appearing in the rankings for the first time. In sixth place is the Noon spyware for all Windows systems (2.63%), which also occupied the tenth spot with its variant specifically targeting 32-bit systems (1.10%). Rounding out the TOP 10 are Hoax.HTML.Phish (1.98%) phishing attachments, Guloader downloaders (1.90%) – a newcomer to the rankings – and Badur (1.56%) PDF documents containing suspicious links.

TOP 10 malware families distributed via email attachments, 2025 (download)

The distribution of specific malware samples traditionally mirrors the distribution of malware families almost exactly. The only differences are that a specific variant of the Agensla stealer ranked sixth instead of fourth (2.53%), and the Phish and Guloader samples swapped positions (1.58% and 1.78%, respectively). Rounding out the rankings in tenth place is the password stealer Trojan-PSW.MSIL.PureLogs.gen with a share of 1.02%.

TOP 10 malware samples distributed via email attachments, 2025 (download)

Countries and territories targeted by malicious mailings

The highest volume of malicious email attachments was blocked on devices belonging to users in China (13.74%). For the first time in two years, Russia dropped to second place with a share of 11.18%. Following closely behind are Mexico (8.18%) and Spain (7.70%), which swapped places compared to the previous year. Email antivirus triggers saw a slight increase in Türkiye (5.19%), which maintained its fifth-place position. Sixth and seventh places are held by Vietnam (4.14%) and Malaysia (3.70%); both countries climbed higher in the TOP 10 due to an increase in detection shares. These are followed by the UAE (3.12%), which held its position from the previous year. Italy (2.43%) and Colombia (2.07%) also entered the TOP 10 list of targets for malicious mailshots.

TOP 20 countries and territories targeted by malicious mailshots, 2025 (download)

Conclusion

2026 will undoubtedly be marked by novel methods of exploiting artificial intelligence capabilities. At the same time, messaging app credentials will remain a highly sought-after prize for threat actors. While new schemes are certain to emerge, they will likely supplement rather than replace time-tested tricks and tactics. This underscores the reality that, alongside the deployment of robust security software, users must remain vigilant and exercise extreme caution toward any online offers that raise even the slightest suspicion.

The intensified focus on government service credentials signals a rise in potential impact; unauthorized access to these services can lead to financial theft, data breaches, and full-scale identity theft. Furthermore, the increased abuse of legitimate tools and the rise of multi-stage attacks – which often begin with seemingly harmless files or links – demonstrate a concerted effort by fraudsters to lull users into a false sense of security while pursuing their malicious objectives.

securelist.com/spam-and-phishi…

Catalin Cimpanu

10 ore fa • •

Catalin Cimpanu
10 ore fa • •

Don't show this to kids in Australia or the UK: age-verifier.kibty.town/

discord/twitch/kick/snapchat age verifier

^{age-verifier.kibty.town}

reshared this

Alex Vega Díaz

10 ore fa • •

Alex Vega Díaz
10 ore fa • •

Así concluyó esta tarde en Valparaíso.🌅🌅🌅🌅

Cybersecurity & cyberwarfare

20 ore fa (Ricevuto 10 ore fa) • •

Cybersecurity & cyberwarfare
20 ore fa (Ricevuto 10 ore fa) • •

PROFS: The Office Suite of the 1980s

Today, we take office software suites for granted. But in the 1970s, you were lucky to have a typewriter and access to a photocopier. But in the early 1980s, IBM rolled out PROFS — the Professional Office System — to try to revolutionize the office. It was an offshoot of an earlier internal system. The system would hardly qualify as an office suite today, but for the time it was very advanced.

... mostra di più

PROFS: The Office Suite of the 1980s

The key component was an editor you could use to input notes and e-mail messages. PROFS also kept your calendar and could provide databases like phonebooks. There were several key features of PROFS that would make it hard to recognize as productivity software today. For one thing, IBM terminals were screen-oriented. The central computer would load a form into your terminal, which you could fill out. Then you’d press send to transmit it back to the mainframe. That makes text editing, for example, a very different proposition since you work on a screen of data at any one time. In addition, while you could coordinate calendars and send e-mail, you could only do that with certain people.
A PROFS message from your inbox
In general, PROFS connected everyone using your mainframe or, perhaps, a group of mainframes. In some cases, there might be gateways to other systems, but it wasn’t universal. However, it did have most of the major functions you’d expect from an e-mail system that was text-only, as you can see in the screenshot from a 1986 manual. PF keys, by the way, are what we would now call function keys.

The calendar was good, too. You could grant different users different access to your calendar. It was possible to just let people see when you were busy or mark events as confidential or personal.

You could actually operate PROFS using a command-line interface, and the PF keys were simply shorthand. That was a good thing, too. If you wanted to erase a file named Hackaday, for example, you had to type: ERASE Hackaday AUT$PROF.

Styles

PROFS messages were short and were essentially ephemeral chat messages. Of course, because of the block-mode terminals, you could only get messages after you sent something to the mainframe, or you were idle in a menu. A note was different. Notes were what we could call e-mail. They went into your inbox, and you could file them in “logs”, which were similar to folders.

If you wanted something with more gravitas, you could create documents. Documents could have templates and be merged with profiles to get information for a particular author. For example, a secretary might prepare a letter to print and mail using different profiles for different senders that had unique addresses, titles, and phone numbers.

Documents could be marked draft or final. You had your own personal data storage area, and there was also a shared storage. Draft documents could be automatically versioned. Documents also received unique ID numbers and were encoded with their creation date. Of course, you could also restrict certain documents to certain users or make them read-only for particular users.

More Features

Pretty good spell check options for the 1980s.
PROFS could remind you of things or calendar appointments. It could also let you look up things like phone numbers or work with other databases. The calendar could help you find times when all participants were available. PROFS could tie into DisplayWrite (at least, by version 2) so it could spell check using custom or stock dictionaries. It also looked for problematic words such as effect vs. affect and wordy phrases or clichés.

The real game changer, though, was the ability to find documents without searching through a physical filing cabinet. The amount of time spent maintaining and searching files in a typical pre-automation business was staggering.

You could ask PROFS to suggest rewrites for a certain grade level or access a thesaurus. This all sounds ordinary now, but it was a big innovation in the 1980s.

Of course, in those days, documents were likely to be printed on a computer-controlled typewriter or, perhaps, an ordinary line printer. But how could you format using text? This all hinged on IBM’s DisplayWriter word processor.

youtube.com/embed/5Snvu8U1IE8?…

Markup

Today we use HTML or Markdown to give hints about rendering our text. PROFS and DisplayWriter wasn’t much different, although it had its own language. The :p. tag started a paragraph. You could set off a quotation between :q. and :eq. Unnumbered lists would start with :ul., continue with :li., and end with :eul. Sounds almost familiar, right? Of course, programs like roff and WordStar had similar kinds of commands, and, truthfully, the markup is almost like strange HTML.

The Whole Office

IBM wanted to show people that this wasn’t just wordprocessing for the secretarial pool. Advanced users could customize templates and profiles. Administrators could tailor menus and add features. There were applications you could add to provide a spreadsheet capability, access different databases, and gateway to other systems like TWX or Telex.

It is hard to find any demonstrations of PROFs, but a few years ago, someone documented their adventure in trying to get PROFS running. Check out [HS Tech Channel’s] video below.

youtube.com/embed/FIqbesDvNL8?…

History and Future

Supposedly, the original system was built in the late 1970s in conjunction with Amoco Research. However, we’re a little suspicious of that claim. We know of at least three other companies that were very proud of “helping IBM design PROFS.” As far as we could ever tell, that was a line IBM sales fed people when they helped them design a sign-in screen with their company name on it, and that was about it.

The system would go through several releases until it morphed into OfficeVision. As PCs started to take over, OfficeVision/2 and OS/2 were the IBM answer that few wanted. Eventually, IBM would suggest using Lotus Notes or Domino and would eventually buy Lotus in 1995 to own the products.

Scandal

One place that PROFS got a lot of public attention was during the Iran-Contra affair. Oliver North and others exchanged PROFS notes about their activities and deleted them. However, deleting a note in PROFS isn’t always a true deletion. If you send a note to several people, they all have to delete it before the system may delete it. If you send a document, deleting the message only deletes the notification that the document is ready, not the document.

Investigators recovered many “deleted” e-mails from PROFS that provided key details about the case. Oddly, around the same time, IBM offered an add-on to PROFS to ensure things you wanted to delete were really gone. Maybe a coincidence. Maybe not.

On Your Own

If you want to try to build up a new PROFS system, we suggest starting with a virtual machine. If anyone suggests that wordprocessing can’t get worse than DisplayWriter, they are very wrong.

hackaday.com/2026/02/11/profs-…

The 19th

10 ore fa • •

The 19th
10 ore fa • •

House passes elections overhaul bill that could make it harder for married women to vote
https://19thnews.org/2026/02/house-passes-save-america-act-married-women-vote/?utm_source=flipboard&utm_medium=activitypub

Posted into The 19th @the-19th-19thnews

House passes SAVE America Act, which could make it harder for women to vote - The 19th

The bill faces an uphill battle in the Senate, where a handful of Republicans have expressed concern about implementing the provisions.

^{Marissa Martinez (19th News)}

@The 19th

Francesca Martini

15 ore fa (Ricevuto 11 ore fa) da MastoFeed • •

Francesca Martini
15 ore fa (Ricevuto 11 ore fa) da MastoFeed • •

Il nuovo video di Pasta Grannies: youtube.com/shorts/qKBXo5p2cgw
@Cucina e ricette
youtube.com/watch?v=qKBXo5p2cg…

(HASHTAG)

@Cucina e ricette

Francesco Diplomatico

11 ore fa • •

(40.9955725 14.2073729)

Francesco Diplomatico
11 ore fa — (40.9955725 14.2073729) • •

l'aria malsana tra napoli e caserta

ilgiornalelocale.it/2026/02/ma…

Mal'Aria 2026, Acerra e San Vitaliano tra le più inquinate d'Italia

Mal'Aria 2026, il quadro peggiora: Acerra e San Vitaliano tra le più inquinate d'Italia. Il dossier di Legambiente.

^{Redazione GL (Ilgiornalelocale.it)}

Privacity

11 ore fa • •

Privacity
11 ore fa • •

Un appello ai legislatori dell'UE: proteggere i diritti e respingere la richiesta di eliminare la garanzia della trasparenza nel #AIAct

«Noi, organizzazioni e individui sottoscritti, vi esortiamo con la massima fermezza a respingere l'eliminazione della garanzia di trasparenza di cui all'articolo 49(2) per i sistemi di IA ad alto rischio, proposta nell'AI Omnibus.»

accessnow.org/press-release/a-…

@aitech

Access Now - A call to EU legislators: protect rights and reject the call to delete transparency safeguard in AI Act

We, the undersigned organisations and individuals, urge you in the strongest possible terms to reject the deletion of the Article 49(2) transparency safeguard for high-risk AI systems that is proposed in the AI Omnibus.

^{Access Now}

#aiact @Intelligenza Artificiale

Cybersecurity & cyberwarfare

23 ore fa (Ricevuto 11 ore fa) • •

Cybersecurity & cyberwarfare
23 ore fa (Ricevuto 11 ore fa) • •

Forget Waldo. Where’s Luna 9?

Luna 9 was the first spacecraft to soft-land on the moon. In 1966, the main spacecraft ejected a 99-kg lander module that used a landing bag to survive impact. The problem is, given the technology limitations of 1966, no one is exactly sure where it is now. But it looks like that’s about to change.
A model of the Luna 9 lander with petals deployed.
We know that the lander bounced a few times and came to rest somewhere in Oceanus Procellarum, in the area of the Reiner and Marius craters. The craft deployed four stabilizing petals and sent ba

... mostra di più

Catalin Cimpanu

11 ore fa • •

Catalin Cimpanu
11 ore fa • •

Stairwell: "over 80% of monitored environments contain vulnerable versions of WinRAR affected by CVE-2025-8088"

🙃🙃🙃🙃🙃

stairwell.com/resources/stairw…

Stairwell detects widespread exposure to critical WinRAR vulnerability across customer environments - Stairwell

Stairwell recently identified a significant and concerning trend across our customer base: over 80% of monitored environments contain vulnerable versions of WinRAR affected by CVE-2025-8088.

^{Alex Hegyi (Stairwell)}

reshared this

Catalin Cimpanu

11 ore fa • •

Catalin Cimpanu
11 ore fa • •

CloudSEK says it intercepted the leaked credentials of a tech support and maintenance company that had access to the IT networks of more than 200 airports. The account also didn't have MFA enabled

cloudsek.com/blog/the-hidden-b…

The Hidden Backdoor to 200 Airports: A Supply Chain Failure in Aviation

A single leaked credential from a fourth-party vendor recently exposed the digital infrastructure of 200 global airports.

^{Amruth Pothula (CloudSEK)}

reshared this

skariko

1 giorno fa (Ricevuto 12 ore fa) • •

skariko
1 giorno fa (Ricevuto 12 ore fa) • •

Fedistar, un client desktop per diverse applicazioni del Fediverso

Fedistar è un’applicazione open source pensata per chi vuole gestire multipli account social del Fediverso direttamente dal computer.
lealternative.net/2026/02/11/f…

Fedistar, un client desktop per diverse applicazioni del Fediverso - Le Alternative

^{skariko (Le Alternative)}

in reply to skariko

Tassoman

in reply to skariko • 1 giorno fa (Ricevuto 12 ore fa) • •

L'ho tradotto io, dal giapponese 😎

in reply to Tassoman

informapirata ⁂

in reply to Tassoman • 12 ore fa • •

dal giapponese? Allora sei un mito! Grazie ancora 😅

@skariko

Catalin Cimpanu

13 ore fa (Ricevuto 12 ore fa) • •

Catalin Cimpanu
13 ore fa (Ricevuto 12 ore fa) • •

Russia has permanently blocked YouTube yesterday and WhatsApp today

kommersant.ru/doc/8421763

Домен WhatsApp пропал из DNS-сервера Роскомнадзора

Домены мессенджера WhatsApp (whatsapp.com и web.whatsapp.com) удалены из реестра Национальной системы доменных имен (НСДИ) Роскомнадзора. Это привело к ограничению доступа к сервису в России, который теперь возможен только через VPN. Домен whatsapp.

^{Коммерсантъ (Лента новостей (Москва))}

reshared this

Alex Vega Díaz

12 ore fa • •

Alex Vega Díaz
12 ore fa • •

Avanza esta soleada tarde en Viña.😀😀😀😀

securityaffairs

15 ore fa (Ricevuto 12 ore fa) • •

securityaffairs
15 ore fa (Ricevuto 12 ore fa) • •

#Volvo #Group hit in massive #Conduent data breach
securityaffairs.com/187875/sec…
#securityaffairs #hacking #malware

Volvo Group hit in massive Conduent data breach

A Conduent breach exposed data of nearly 17,000 Volvo Group North America employees as the total impact rises to 25 million people.

^{Pierluigi Paganini (Security Affairs)}

#hacking #malware #group #securityaffairs #conduent #volvo

Lorenzo

15 ore fa (Ricevuto 12 ore fa) da MastoFeed • •

Lorenzo
15 ore fa (Ricevuto 12 ore fa) da MastoFeed • •

CrossOver 26 porta Wine 11.0 su Linux con NTSync e miglioramenti per le app Windows

@GNU/Linux Italia

linuxeasy.org/crossover-26-por…

CrossOver 26 introduce Wine 11.0, supporto NTSync e numerosi miglioramenti per la compatibilità delle applicazioni Windows su Linux e macOS.

@GNU/Linux Italia

Lorenzo Franceschi-Bicchierai

16 ore fa (Ricevuto 13 ore fa) • •

Lorenzo Franceschi-Bicchierai
16 ore fa (Ricevuto 13 ore fa) • •

NEW: U.S. prosecutors say the hacking tools that Peter "Doogie" Williams stole from defense contractor L3Harris Trenchant could have been used against "millions of computers and devices" worldwide.

The prosecutors also confirmed that Williams "stood idly by while another employee of the company was essentially blamed" for his own actions, as we first reported last year.

Williams said he didn't know the tools could end up in the hands of Russia or other governments.

techcrunch.com/2026/02/11/doj-…

DOJ says Trenchant boss sold exploits to Russian broker capable of accessing 'millions of computers and devices' | TechCrunch

The former boss of the L3Harris-owned hacking and surveillance tools maker Trenchant faces nine years in prison for selling several exploits to a Russian broker, which counts the Russian government among its customers.

^{Lorenzo Franceschi-Bicchierai (TechCrunch)}

Spencer

14 ore fa (Ricevuto 13 ore fa) • •

Spencer
14 ore fa (Ricevuto 13 ore fa) • •

I want to find #gamedesign resources for designing the artificial, algorithmic systems that govern a computer opponent's decision-making.

For as long as I've kniwn these have been known collectively as "AI", as in "pathfinding AI" or "enemy AI", and, well, you can see what my problem is in 2026.

#gamedesign

in reply to Spencer

Hypolite Petovan

in reply to Spencer • 13 ore fa • •

@Spencer Looking for “video game bot script” might avoid the obvious pitfalls. I’ve never looked for any conceptual resources about this topic, but I’ve ran into specific games’ way of implementing these.

@Spencer

nico beastie boyce

14 ore fa (Ricevuto 13 ore fa) • •

nico beastie boyce
14 ore fa (Ricevuto 13 ore fa) • •

alright look i don't think it's a sport if if can't be objectively judged with a measuring tape or a stopwatch or something like that

in reply to nico beastie boyce

Hypolite Petovan

in reply to nico beastie boyce • 13 ore fa • •

@nico beastie boyce What is it then?

@nico beastie boyce

Gabriele Svelto

16 ore fa (Ricevuto 13 ore fa) • •

Gabriele Svelto
16 ore fa (Ricevuto 13 ore fa) • •

Toots don't go viral, they escape containment

kikebenlloch

14 ore fa (Ricevuto 13 ore fa) • •

kikebenlloch
14 ore fa (Ricevuto 13 ore fa) • •

RE: mastodon.uno/@informapirata/11…

Fuck Palantir.

informapirata ⁂

2026-02-11 16:42:06

L'esercito svizzero ha rescisso il contratto con Palantir Technologies Inc. a seguito di un audit di sicurezza.
L'indagine ha concluso che le agenzie di intelligence USA potrebbero accedere a dati sensibili della difesa svizzera, un fattore decisivo per la nazione alpina, imperniata sulla neutralità. Si tratta di un segnale devastante per la reputazione dell'azienda di analisi dati, con potenziali effetti a catena su altre partnership internazionali.
newscase.com/palantirs-swiss-e…
@informatica

NewsCase
Latest Entertainment News, Movies, TV Shows & Horror Updates
^{Brett Shapiro (NewsCase)}

Lorenzo

16 ore fa (Ricevuto 13 ore fa) da MastoFeed • •

Lorenzo
16 ore fa (Ricevuto 13 ore fa) da MastoFeed • •

Google Chrome 145 porta il supporto JPEG‑XL su Linux

@GNU/Linux Italia

linuxeasy.org/google-chrome-14…

Google Chrome 145 arriva su Linux con il ritorno del supporto JPEG‑XL, un decoder Rust più sicuro e numerose novità per web developer e utenti L'articolo Google Chrome 145 porta il supporto JPEG‑XL su Linux è su Linux Easy.

@GNU/Linux Italia

@Giornalismo e disordine informativo
articolo21.org/2026/02/equivoc…
Sono molti gli equivoci che stanno nascendo e che più o meno maliziosamente vengono coltivati intorno alla riforma dell’ordinamento giudiziario su cui il popolo sarà chiamato a esprimere la propria opinione e il proprio voto con il referendum costituzionale del

@Giornalismo e disordine informativo

Questo sito web utilizza cookie tecnici e di sessione. Proseguendo la navigazione su questo sito, accetti l'utilizzo dei cookie.

⇧