fo0

coucou @radiocampus45 petit message de sympathie et souten pour Radio Begum que vous recevez actuellement :)

Je ne m’en lasse pas!! En plus venant d’une Russe, cela va en faire suer plus d’un au RN!! La vidéo que JordÂne refuse de visionner…🤭🤭🤭🤭

It is interesting to watch Meredith Whittaker, president of the Signal Foundation, talking about Government access to encrypted messaging services

There's a reason the privacy community doesn't recommend NordVPN. Here's why. NordVPN markets "Panama jurisdiction" for privacy. The documented reality is more complicated. Corporate structure: Co-founders Tomas Okmanas and Eimantas Sabaliauskas also founded Tesonet, a Lithuanian startup accelerator. Court documents from Luminati v. Tesonet explicitly identified "Tesonet's VPN service called NordVPN." Operations center on Vilnius, Lithuania (EU jurisdiction). Parent company Nord Security is Netherlands-registered. Panama holds the trademark. Tesonet's portfolio includes Oxylabs, a major proxy and web scraping service. Data extraction business under the same roof as a privacy VPN. 2018 breach: Server in Finland compromised via exposed iLO remote management. Attacker got root access, TLS keys, OpenVPN CA key. Disclosed October 2019 only after @hexdefined forced it on Twitter. 19-month delay. They knew for over a year and said nothing while millions of users routed traffic through a compromised server. Kenn White (Open Crypto Audit Project): "The Nord VPN not-a-hacker had full remote admin on their Finland node LXC containers. That's God Mode folks. And they didn't log and didn't detect it." From their own privacy policy: A/B price testing data collection admitted. Billing data retained 10 years. AppsFlyer for marketing/analytics. Device identifiers for "marketing or analytics purposes." Regulatory pressure: UK ASA ruled ads misleading twice (2019, 2023). First for exaggerating WiFi threats, second for "switch off malware" claim. Multiple US class actions allege deceptive auto-renewal and charging 14 days early. Affiliate ecosystem: When every "unbiased" review ranks them #1, follow the money. Nord offers 100% commission on first-month signups, 40% on longer plans. You're reading ads, not reviews.

@Ludoc C'était dans les locaux de la régie publicitaire Mixicom. De rien.

En 2018, une prise d’otage a éclaté dans le plus célèbre studio de Youtubeurs … et personne n’en a jamais entendu parler ! Nouvelle série documentaire sur ma chaîne Youtube à partir du 23 janvier. Plus d’informations ⬇

C'était dans les locaux de la régie publicitaire Mixicom ... et non dans un studio. Ca promet sur la qualité du dit "documentaire".

‼️A German hacker known as "Martha Root" dressed as a pink Power Ranger and deleted a white supremacist dating website live onstage This happened during the recent CCC conference. Martha had infiltrated the site, ran her own AI chatbot to extract as much information from users as possible, and downloaded every profile. She also uncovered the owner of the site. She has published all of the data.

Geek tip from the Tuta Team: How NOT to see AI images. Use this HUGE AI BLOCKLIST for uBlock Origin: github.com/laylavish/uBlo… Enjoy your holidays. 🎉

@GrablyR Imagine y a la même avec insta, etc ... et que y a un Patriot Act en bout de chaine. Imagine ..

Ça a le mérite d’être clair: TikTok envoie vos données en Chine (et les rend potentiellement accessibles au Parti communiste chinois).

🚨 ALERTE FUITE DE DONNÉES – ACCÈS LIVE BDD MONDIAL RELAY Un accès direct (LIVE ACCESS) à la base de données Mondial Relay a été proposé à la vente en ligne. Les captures montrent un accès fonctionnel aux interfaces internes de suivi logistique, sans anonymisation. (décembre 2025) 👉 Il ne s’agit pas d’un simple leak statique, mais d’un accès actif à des systèmes internes. 📂 Données exposées via l’accès • Identités complètes des destinataires (nom, prénom) • Adresses postales précises • Numéros de téléphone • Adresses e-mail • Numéros d’expédition et de commandes • Statuts de livraison détaillés (dates, heures, lieux, points relais) • Historique logistique complet par colis • Interfaces internes de gestion et de recherche avancée ⚠️ Risques majeurs ➡️ Atteinte grave à la vie privée des clients ➡️ Phishing et arnaques ultra-ciblées (SMS / e-mail / faux avis de livraison) ➡️ Fraudes à la livraison et détournement de colis ➡️ Repérage physique des destinataires et points relais ➡️ Exploitation industrielle des données (scraping massif) 🧩 Cause probable ➡️ Mauvaise sécurisation d’un accès interne ➡️ Identifiants compromis ou absence de contrôle d’accès renforcé ➡️ Manque de segmentation et de journalisation des accès 🔒 Un incident critique, impliquant un accès non autorisé à des données personnelles à grande échelle, soulevant de lourdes questions de sécurité des systèmes, gouvernance IT et conformité RGPD.

@AudreyPrsq_ @AureaLibe coucou les USA PirateBay est toujours là. :)

🔴 Anna's Archive, le plus grand site d'archivage (illégal) de livres vient de créer la première archive ouverte de sauvegarde de musique. Le site a sauvegardé plus de 300 To de métadonnées et de fichiers audio de Spotify. Distribuée gratuitement en torrent. C'est la plus grande base de données publique de métadonnées musicales (256 millions de pistes, 186 millions d'ISRC uniques), couvrant 86 millions de fichiers audio représentant 99,6 % des écoutes mondiales. Pour ceux qui ne savent pas, Anna's Archive est la plus grande bibliothèque ouverte de l’histoire humaine. Elle archive et permet de télécharger gratuitement plus de 61 millions de livres et plus de 95 millions d’articles. Afin de ne jamais perdre ce savoir, tous les backups des archives sont disponibles en torrent pour qui le souhaite. Tout le site est open source. Jusqu’à maintenant, Anna's Archive se contentait de préserver le savoir écrit. Maintenant, le projet commence également à préserver le savoir musical. C’est la nouvelle bibliothèque d’Alexandrie numérique. C’est gratuit. C’est open source.

🚨 On vient de nettoyer plusieurs VPS compromis via l'exploit Next.js RCE. On a donc recensé tout ce qui était compromis, installé sur les machines, et nettoyé l'intégralité de celles-ci Voici EXACTEMENT ce que les hackers installent sur vos serveurs et comment vous protéger 👇

Polish police detained three Ukrainians with professional hacking equipment: FLIPPER, spy detector, antennas, laptops, SIM cards. Charges include attempted damage to IT data critical for national security. Suspects couldn't explain equipment's purpose (when asked, they suddenly "forgot" how to communicate in english language). The likely goal was close-access cyber operations.

Pour les amateurs de Pixels qui n'ont pas encore switch sur @GrapheneOS ⬇️ cert.ssi.gouv.fr/avis/CERTFR-20…

Holy shit… the exploitation of CVE-2025-55182 has reached a new level. There’s now a publicly available Chrome extension on GitHub that automatically scans for and exploits vulnerable sites as you browse. Absolutely wild. 🤦‍♂️

@vxunderground @TorGuard hmmmmm :)

Giveaway. @TorGuard has sponsored a vx-underground harddrive (complete collection) giveaway. If you're the selected winner I will mail you an external harddrive with everything from vx-underground. As a bonus, I will also throw in some TorGuard stickers. What you will get: - 45,000,000+- malware samples - 90,000+- malware papers - 10,000+ malware builders - All vx-underground artwork - Lots of cat pictures - TorGuard stickers How to enter: - Follow @TorGuard on Xitter - Leave a comment below A winner will be selected in 24 hours. tl;dr look inside, malware

NO! lanation.bj/actualites/ten… This is a small group that has taken over national television. They attempted to approach the head of state's residence but were repelled. The Minister of the Interior address the nation on national television. Thank @Factoscope_ for this information.

What I Found Extracting My Own Twitter Logs Let me show you something most people have no idea is even possible but it actually is. During a forensic extraction I performed on my own device, something interesting happened again: every single application log was pulled out including X(Twitter). But today, let’s focus on just X(Twitter), because what I found is wild. Inside the analyzed folder of the Twitter logs, the extraction revealed numerous posts I made on X(Twitter) that contained images or videos specifically those created on the same device being examined. I’m not talking about just seeing the media. I’m talking about pulling out the full file itself plus every tiny detail attached to it: •The exact image/video file •File name •Original file path •Size of the media •Date created •Date modified •Date accessed •Width & height of the media •File format But here’s the part that stood out the most… I checked the Date Created of few of the extracted files, then opened my Twitter profile to compare. The date and time the file was created in the report matched the exact date and time I posted it on Twitter. That means: •Even if you delete the original file •Even if you clear your gallery •Even if you wipe your Twitter drafts The logs still quietly store traces that link your posts to the exact moment and media used to create them. This is huge for digital forensic investigators. Why? Because: •It verifies whether a post was genuinely made by the device owner •It shows exact timestamps without relying on what’s visible on Twitter •It retrieves original media details, even when the user thinks they deleted them •It helps confirm device ownership, intent, and timeline reconstruction And remember, this was pulled only from application logs, and not device media folders because I delete these media as soon as I make these posts to save space. I added screenshots and a video screen recording showing: 1️⃣ The extracted media file with its original creation timestamp 2️⃣ My Twitter profile showing the post date both matching perfectly. People really underestimate how much their apps silently record. If your device ever finds itself in a forensic lab, your digital footprints will speak louder than you think. Follow @elormkdaniel for more

Privacy nightmare in the making: India's 🇮🇳 DoT just ordered Apple to pre-install an undeletable 'state security app' (Sanchar Saathi) on all new iPhones sold there, plus push it to existing ones via updates. Officially for tracking lost/stolen phones, but it's basically gov't surveillance baked in. This follows a recent directive that requires messengers to link accounts to SIM cards. People will not be able to run messengers without the SIM card with which they registered.