𝐿𝑖𝑛𝑢𝑥 𝑢𝑠𝑒𝑟

13.2K posts

𝐿𝑖𝑛𝑢𝑥 𝑢𝑠𝑒𝑟 banner
𝐿𝑖𝑛𝑢𝑥 𝑢𝑠𝑒𝑟

𝐿𝑖𝑛𝑢𝑥 𝑢𝑠𝑒𝑟

@linuxuser1996

Linux & GrapheneOS • Monero • Spreading awareness of privacy rights • Locked and loaded against mass surveillance & censorship

In space Katılım Temmuz 2024
389 Takip Edilen1.1K Takipçiler
𝐿𝑖𝑛𝑢𝑥 𝑢𝑠𝑒𝑟
Google wants to fuck security on old devices, software side. Be careful. Especially if you're on an old Android device.
𝐿𝑖𝑛𝑢𝑥 𝑢𝑠𝑒𝑟 tweet media
GrapheneOS@GrapheneOS

Android's security policy for the past several years has been to backport patches for Critical and High severity Android vulnerabilities to the past 3 major yearly releases. Moderate and Low severity patches including most fixes for privacy weaknesses have required upgrading to the latest releases. Google recently informed OEMs of greatly reduced security support for older releases of Android. For the vast majority of discovered vulnerabilities, only Critical severity issues deemed to be an imminent risk will be backported at all and only to the most recent 2 major yearly releases (16 and 17). Externally reported vulnerabilities will currently still follow the same policy for backports as before. High and Critical severity vulnerabilities reported to Google by external parties will be backported to releases going back around 3 years (currently 14, 15, 16 and the current latest stable 17). Android Security Bulletins already omit Moderate and Low severity patches. They're already dated 2-4 months after the vulnerabilities were disclosed to OEMs and allowed to be shipped. Only Samsung flagships and Pixels ship any of it 'early' on practice. Only GrapheneOS ships the full set 'early'. The vast majority of vulnerabilities are now being discovered internally by Google for Android and Chrome. These are largely being discovered with AI. The subset deemed Critical severity and an imminent risk will be backported to 16 and 17. Bare minimum security support for older releases is over. Bare minimum Android security patches now require being on Android 16, 16 QPR2 or 17 and quickly moving to Android 18 when it's released. Once Android 18 is released, it will be the only release with current High and Critical severity patches. Serious support for older Android releases has ended. Android 17 is the only Android release with the current set of disclosed Moderate and Low severity patches. Android 16, 16 QPR2 and 17 will soon be the only releases with the current set of disclosed Critical and High severity patches too. Once Android 18 is released, it will be the only one. Vast majority of Linux kernel vulnerabilities aren't covered by Android Security Bulletins, externally disclosed patches are backported very slowly and Android Security Bulletins come 2-4 months later than when Android patches can be shipped. If you want bare minimum patches, use iOS or GrapheneOS. We're going to need to do a lot of work with Motorola and Qualcomm to provide serious patches for GrapheneOS devices. We're going to need more developers. After the launch of the new devices with GrapheneOS support, we want to repeatedly port to the latest Linux LTS branch among other major changes. Google is completely overwhelmed by the massive torrent of vulnerabilities discovered by AI models. They've done repeated cycles of layoffs and buyouts crippling their ability to handle it. The change to the schedule for Android Security Bulletins is also extremely at odds with this new reality. Google switched to a performative Android Security Bulletin system with vulnerabilities listed 2-4 months after they're shipped. They're pretending as if not open sourcing patches protects people from OEMs not patching them. Our community has people successfully reverse engineering binary patches. Google needs to start open sourcing QPR1 and QPR3 releases again along with open sourcing security preview patches shortly after disclosure to OEMs. Otherwise, we'll just hire people to start doing reverse engineering work in an official capacity to start publishing the changes as open source early.

English
1
0
10
863
𝐿𝑖𝑛𝑢𝑥 𝑢𝑠𝑒𝑟
Grok Build was caught uploading entire git repos, secrets & deleted history to Google Cloud, ignoring file denials. xAI fixed it server-side, purged data & added /privacy. Privacy matters, even for AI tools. Rotate keys if you used it.
𝐿𝑖𝑛𝑢𝑥 𝑢𝑠𝑒𝑟 tweet media𝐿𝑖𝑛𝑢𝑥 𝑢𝑠𝑒𝑟 tweet media
English
0
1
3
335
Ursula von der Leyen
Ursula von der Leyen@vonderleyen·
Whoever wins tonight, a strong European team will be in the final!
Ursula von der Leyen tweet media
English
2.2K
385
6.8K
620K
𝐿𝑖𝑛𝑢𝑥 𝑢𝑠𝑒𝑟
Durov criticize Chat Control > t.me got suspended
domain .ME@domainME

Statement Regarding the Suspension of t.me The .ME Registry works closely with law enforcement to monitor and mitigate issues across the .ME domain in accordance with applicable laws, including sanctions requirements. On 13 July, First VPN Service (1VPNS) was included as a sanctioned entity by the U.S. Department of the Treasury. A Telegram channel using the t.me domain was among 1VPNS identified infrastructure. Accordingly, the t.me domain was suspended. On 14 July, Telegram provided confirmation that it had removed its links and affiliations with 1VPNS. Once the confirmation was reviewed and verified, the suspension was removed from the t.me domain. We appreciate Telegram’s prompt cooperation in resolving this matter.

English
1
3
27
823
Peter Langer 🇪🇺
Peter Langer 🇪🇺@peterlangerrr·
Hey EU-Folks! There’s a reason @vonderleyen was long nicknamed “Zensursula” in Germany (a play on “censorship” & “Ursula”). With Chatcontrol and mandatory identity verification, she is planning a massive assault on our civil liberties. We must stand up against that threat! 🗽
English
20
105
590
6.1K
𝐿𝑖𝑛𝑢𝑥 𝑢𝑠𝑒𝑟
Epstein ties everywhere. UK/EU grooming networks were real. Authorities looked away. CSAM tools fight child abuse… but encryption & privacy aren’t optional. Facts > narrative. Always. Spread that.
𝐿𝑖𝑛𝑢𝑥 𝑢𝑠𝑒𝑟 tweet media𝐿𝑖𝑛𝑢𝑥 𝑢𝑠𝑒𝑟 tweet media
English
1
11
44
1.9K
𝐿𝑖𝑛𝑢𝑥 𝑢𝑠𝑒𝑟
This is all about knowing who's behind every social media accunt. Activists too.
𝐿𝑖𝑛𝑢𝑥 𝑢𝑠𝑒𝑟 tweet media
Blueblur@Blueblur_23

Ursula von der Leyen rolling out an age verification app on April 15, 2026 and pushing Chat Controls for the EU is a massive red flag. It is just another attempt by an official (unelected by the people in this case) trying to use the protection of children as an excuse to obtain control by collecting IDs and scanning private messages. If your country is trying something similar, please pushback as this could also mean spillover into other countries. The age verification app turned out to be ridiculously easy to hack. An attacker only needed to delete specific values tied to the PIN from the app’s configuration files and restart it, then just set a new PIN while retaining access to the already created credentials. 🤦‍♂️ Despite this, the Commission doubled down on April 29 with a formal Recommendation urging member states to accelerate the rollout. Chat Controls would require scanning private encrypted messages across major platforms. This would likely flag completely normal photos such as holiday pictures as suspicious, producing too many false positives and overloading the authorities, leading to fewer real investigation successes. This governmental overreach is nothing new as we already have a major example from over a decade ago. Let’s dive in! The South Korean “Real Name” Disaster (2007-2012): The pretext was very similar: Celebrity suicides and cyberbullying. The government passed the “Internet Real-Name System,” requiring any site with over 100,000 daily visitors to verify users’ identities via their Resident Registration Numbers (RRNs) (that’s the Korean equivalent of a Social Security Number). Here is why it was catastrophic (and why it was reversed): The Great Data Heist (2011): Since the law forced companies to store the private ID data of millions, those websites became basically playgrounds for hackers.
 In 2011, hackers hit SK Communications (Cyworld) and stole the personal data, including names, phone numbers, and resident ID numbers, of 35 MILLION people! 😳 
That was roughly 70% of the entire population of South Korea. Zero Effect on “Safety”: The most embarrassing part for the government was that the data showed the law didn’t even work. Studies conducted after the law was passed showed that “malicious comments” decreased by a grand total of… 0.9%. People didn’t stop bullying; they just did it using their real names or someone else’s stolen ID! 🤯 The Constitutional Death Blow (2012): In 2012, the Constitutional Court of Korea ruled the law unconstitutional. They noted that it stifled free speech, caused people to flee to overseas sites (like YouTube and Twitter), and, crucially, that the risk of data theft far outweighed any minor public benefit. Hackers Did Not Take a Break (2024-2025): Some might clap back that technology has improved since then, but hackers have not been idle. Just look at the massive 2024 Change Healthcare breach, the National Public Data breach that exposed approximately 2.9 billion data records impacting 1.3 billion individuals, and the 16 billion credential leak discovered in 2025. 😳 Centralized mountains of personal ID data still turn platforms into irresistible targets. The risks have not gone away. They have only scaled up. The history is clear, and the modern data proves it: centralizing our data makes us targets. You can read more here: Change Healthcare 2024: hipaajournal.com/largest-health… National Public Data (approximately 2.9 billion data records impacting 1.3 billion individuals): upguard.com/blog/biggest-d… 16 billion credential leak 2025: guardz.com/blog/top-recen…

English
13
80
640
8.4K
𝐿𝑖𝑛𝑢𝑥 𝑢𝑠𝑒𝑟 retweetledi
Mads
Mads@europemaxxed·
i wonder what meme he mailed me this time
Mads tweet media
English
21
264
6.2K
58.4K
Desert Fox
Desert Fox@DesertF52727867·
@linuxuser1996 I wonder how many of these politicians were tied to Epstein. How many are tied to 3rd worlders and their organised rape and human trafficking groups? It's the foxes coming for your chicken.
English
1
0
0
22
𝐿𝑖𝑛𝑢𝑥 𝑢𝑠𝑒𝑟 retweetledi
0wned
0wned@0wned_0x·
0wned tweet media
QME
2
17
260
6.3K
𝐿𝑖𝑛𝑢𝑥 𝑢𝑠𝑒𝑟
Samsung Health is warning users that their data could be deleted if they refuse to let Samsung use it to train AI.
𝐿𝑖𝑛𝑢𝑥 𝑢𝑠𝑒𝑟 tweet media𝐿𝑖𝑛𝑢𝑥 𝑢𝑠𝑒𝑟 tweet media
English
2
0
27
1.1K