ء

cadet was the best storyteller period 🕊

@troyhunt @elormkdaniel @haveibeenpwned I’m not sure if you’d be allowed to say but are they paying for access to your API at all?

@elormkdaniel Do you have a reference for how Apple is doing this? I’ve not seen technical details before, and the only way they could feasibly use our data from @haveibeenpwned (which would be awesome!) is if they implement k-anonymity using SHA-1 and have their own repository of our data.

Apple’s servers hold a database of hundreds of millions of hashed passwords from known data breaches around the world sourced from breach databases like Have I Been Pwned, which aggregates leaked credentials from thousands of incidents. When your hash prefix arrives, the server returns every hashed password in its database that starts with those same few characters. That could be hundreds of entries. Apple sends all of them back to your device. Your device then does the final comparison locally. It checks whether your full hash matches any entry in that returned list entirely on your phone, without Apple ever seeing the complete hash or the original password (allegedly). If there’s a match, the alert fires. If there isn’t, nothing happens and nothing was exposed. This means Apple’s server never received enough information to identify your password. It received a fragment; a prefix shared by hundreds of different hashes and returned a broad set of possible matches. The actual check happened on your device where only you have the complete picture (allegedly). The breach database itself is maintained using data from security researchers, breach notification services, and publicly documented leaks. When a company gets breached and millions of credentials are dumped online, those passwords get hashed and added to the database. Your password is never compared against plaintext. It’s always hash against hash, prefix against prefix, with the final answer computed privately on your own device (allegedly). Apple knowing your password was leaked is not the same as Apple knowing your password (allegedly). The entire system was designed so that those two things never have to be the same.

@GastonW250 This guy’s shit music has led me down such a deep rabbit hole. It’s actually crazy.

Zweite Person: Thadaeus Friedemann Otto. Er ist CEO der AILOE GmbH, einem Medienunternehmen das von Musik bis Bücher alles verlegt. Das erstaunliche ist, dass das registrierte Kapital dieser Gesellschaft, über die sich sonst nichts anderes als den Registereintrag finden lässt...

Volt finanziert sich aus drei Grossspendern zu über 60% seines Parteivermögens. Wer sind diese drei Personen? Ratet.

Plastic 100°C might be the best song ever created

Lowkey miss being on Twitter. One of the sources of my random knowledge. Always end up finding cool shit on here.

Saw a video on instagram about this. Story behind this is that the Imam used to be an owner of a nightclub. When he decided to follow the path of Islam he ended up bringing his old gear into the mosque. The mosque itself used to be a synagogue too.

I’m in Liverpool🍺😄!!

nobody: absolutely nobody: guillermo:

Oh I forgot… federal cuts

Can @DeptofDefense @DISADOD please make a STIG viewer for MacOS 🥺 Sick of using VMs

“i have made a severe and continuous lapse in my judgement” - hamz paul nah but fr i forgot how twitter works. further deranged rantings between me and my mates will continue on my private account. jolly good day cheerio 👋🏽

@thisisaleksey @NSA_Employee39 What are you on about???

as twitter dies I maintain that there will never be a time on here as insane as mid-late 2014 when ISIS accounts were openly posting complaining about their slaves and making Call of Duty jokes about blowing themselves up

@UN1VERS3_C1TY wtf happened to faze miyake’s twitter. ts was so funny

UNLESS you’re faze miyake and have nothing to do with those bums (he should really change his name)

@MiaTheBombshell found the bird that cries when she sees clocks ⬆️

While the little girl’s not technically wrong, she does not understand what achieving a lifelong dream may feel like or achieving something that was incredibly hard to do and being overwhelmed with joy. Deep sigh

@ThuleanFuturist Every day there’s a new terminal client. I use Hyper by @vercel and it’s enough tbh.

Ok guys I downloaded Ghostty, now what? How do I get it to do all the cool stuff?

BREAKING: SANTA HAS BEEN SLAIN OUTSIDE OF HIS HOTEL.

@DataBunnyLLC @n3wuser12 Fellow man of culture 🫡

@n3wuser12 lol porn? You heard of Cooking with Kya? There’s a woman talking about her. Look it up buddy

This shit should not be in an apartment 😂

theory is confirmed: only dudes understand sky king ✈️🤍