stvir.go

It’s absurd that American authorities can purchase personal data – that they’re not allowed to gather themselves without a warrant – directly from data brokers. This violates the Fourth Amendment, and it’s time to close the data broker loophole. Today, @RepThomasMassie, @RepBoebert and @naomibrockwell at the @LudlowInstitute introduced the Surveillance Accountability Act. It requires warrants based on probable cause for all government surveillance and data access. You can read more about it at surveillanceaccountability.com

@mary_ext Though $59.99 seems a little bit too much.

interesting popup

@ShortageIsKey @MadsPosting @GrapheneOS There is explanation to it on the website, read their replies. Google Pixel is currently the only smartphone that meets security requirements for GrapheneOS. They are also working with Motorola to bring more device to support GrapheneOS.

@MadsPosting @GrapheneOS what would you say?

there is no escape from google

@hello_volla @GrapheneOS Also, what about @vollaficationist on Mastodon? Is that your employee spreading nonsense about @GrapheneOS?

@hello_volla @GrapheneOS As a user, I really fail to see a point in another Attestation API with a single point of control (a bunch of companies deciding who is permitted to run certain apps on certain OSes) instead of fighting against Play Integrity API. @GrapheneOS position makes more sense.

Android provides a standard hardware attestation system with support for alternate operating systems via allowing their verified boot key fingerprints. It's mainly used with Google's root of trust and remote key provisioning service but the API supports alternative roots of trust. Volla's Unified Attestation is fully built on Android's hardware attestation API. It solely exists to create a centralized authority and service determining what's allowed under their control. @volla/116238706890314617" target="_blank" rel="nofollow noopener">mastodon.social/@volla/1162387… Unified Attestation will permit using products from the companies involved in it while forbidding using arbitrary alternatives. They clearly aren't going to enforce reasonable security standards since their products wouldn't meet those. The whole purpose of the system is to permit their products regardless of merit and convince banking/government apps to adopt it. There's nothing neutral or fair about a system controlled by companies approving their own products while disallowing other options. Companies forming an anti-competitive cartel providing a service which permitting their products and while disallowing others isn't legal regardless of how they market it. It's not legal when Google does it with the Play Integrity API and it's not legal when it's Volla, Murena and iodé doing it. We won't be participating in a system which gives these companies veto power over app compatibility on GrapheneOS. These companies will not be given the power to make arbitrary demands of GrapheneOS. We've been talking back and forth with multiple regulators over the past several years about the Play Integrity API to have action taken against it. Unified Attestation is a massive disruption to our efforts and will get in the way of having regulators take action against this. We've also been considering filing a lawsuit against Google over the Play Integrity API. Unlike Google, the companies involved in Unified Attestation don't have massive resources to defend their anti-competitive system. Android's standard hardware API doesn't require delegating verification to a centralized service. One or more neutral organizations could exist certifying devices and operating systems without providing a centralized API. Those organizations could simply provide signed releases with the roots of trust, revoked keys and operating system key fingerprints. Apps could use multiple different certifying organizations. This is already something Android's hardware attestation API fully supports today. Volla, Murena and iodé are each a for-profit company selling devices. Each of them has failed to keep up with important security patches and protections. Each has marketed their products as providing a level of security they don't provide. It's very clear why these 3 companies want to be in charge of choosing which devices and operating systems people are allowed to use. They want to make sure their products are permitted and want to have an advantage over others to boost their profits. Unified Attestation is an anti-competitive cartel turning a decentralized decision into a centralized one. Instead of neutral organizations being formed to certify devices without a massive conflict of interest, these companies will sign off on their products regardless of the level of insecurity. Multiple competing companies forming a cartel which locks out other options is not legal. We're fully willing to file one or more lawsuits over this. It should be discontinued now prior to harming us.

Do you remember when you joined X? I do! #MyXAnniversary

@CastrumOS @Proton_Pass What exactly makes Pixel or future Motorola devices untrustworthy?

@Proton_Pass A secure OS only works if the hardware and boot chain beneath it are trustworthy.

TFW when you buy a Pixel in order to install GrapheneOS

@MarauderMag @Proton_Pass Any proofs for your claim?

@Proton_Pass Im willing to bet that Google has backdoor access on its devices, even if the bootloader is unlocked and the stock AndroidOS replaced.

@Beatz106_ok @GrapheneOS @Techjunkie_Aman Hardware-based attestation.

@GrapheneOS @Techjunkie_Aman Do you have any initiatives other than "persuasion," or are you waiting for someone else's idea to implement and then somehow take credit for it? For a long time now, all we hear are complaints from you.

Banking apps not working on custom ROMs might finally have a solution. A new open-source project called UnifiedAttestation aims to replace Google’s Play Integrity checks. Right now many apps refuse to run on: • LineageOS • /e/OS • iodéOS • other Google-free Android forks UnifiedAttestation would allow apps to verify device integrity without relying on Google. Backed by: • Volla • Murena • iodéOS developers The idea: apps could support custom ROMs with just a few lines of code. But developers will still need to adopt it. So it won’t magically fix everything overnight.

@UmbraAtrox_ @GrapheneOS @Techjunkie_Aman Hardware-based attestation.

@GrapheneOS @Techjunkie_Aman So ok, what's your solution other than the apps i want to use just don't work or fucking around with trickystore every other month?

@BrendanEich @TPnTexas @bee_fumo When should we expect an update to Brave on iOS with Liquid Glass and iOS 26 keyboard design? I wish it was as smooth as Safari on iOS...

@TPnTexas @bee_fumo The draining battery + risking fire in backpack, then suspend the moment I open it with oven mitts on, really put me off Linux. Mac (and iPhone) hardware is superb (let's ignore the touchstrip -- hope someone got fired — all good w/ magsafe + 3 USB-C + HDMI now), s/w mediocre.

youtube.com/watch?v=o7SpmX… Krusty: "I'll be tastin' that for weeks!"

@nym How did I pay $62.16 back in August for the same 2 Year plan ($57.36 on website) as an early supporter? 🤔

Nym is rolling out a new low price for NymVPN which we hope will make the app significantly more accessible to people around the world. ⤵️ nym.com/pricing?mtm_ca…

@dronhack @CorpseBride111 @mediazzzona Русич бы с тобой поспорили.

@CorpseBride111 @mediazzzona Фашизм на Украине

Фильм «Господин Никто против Путина» получил премию BAFTA в номинации лучший документальный фильм. Создатель фильма — Павел Таланкин из города Карабаш Челябинской области. Он работал педагогом-организатором и видеографом в местной школе. После начала российского вторжения в Украину школьное воспитание оказалось подчинено милитаристской пропаганде, и камера педагога невольно фиксировала эти перемены. Летом 2024 года Таланкин уехал из России, забрав с собой семь жестких дисков с отснятым материалом

@dronhack @AryavaloFume @tekkrrforever @angryvegy @mediazzzona Не восприимчив к западной, но ужасно восприимчив к родной русской пропаганде?

@AryavaloFume @tekkrrforever @angryvegy @mediazzzona Вата у вас это те кто не восприимчив к западной пропаганде?

@rickcsong Dear Mr. Song, could you please clarify the recent security incident regarding Persona’s exposed frontend code used for Discord's age verification? Additionally, if user IDs are solely used for verification purposes, why is it necessary to store them on your servers at all?

You don't have to verify yourself. It's optional to do so. However, I think you should still be able to prove you are human without having to be subject to this. I'm a public figure - my face is already online. I don't put my photo on these platforms to make a statement.

But I am verified. That's the entire point. It's dystopian that we want people to facedox themselves to everyone to be real online. It's ironic that folks posting about privacy want me to facedox to everyone. I want people to know I'm real without them judging how I look.

@dheelakaccha @mohansson @EmmanuelMacron So you’re also saying that freedom of speech is bullshit. Got it.

@mohansson @abhinavmaniac @EmmanuelMacron i have nothing to hide

✅ Thanks for joining the movement.

@brave What I would like to see is: - A version of Brave without Web3 stuff (Wallet, AI) with Sync and Brave Shield function. - iOS Liquid Glass / Android Material Expressive design guidelines on mobile apps.

Is Brave one of multiple browsers you use? If so, what would make you fully switch to Brave? 👀

@dvndr396 @Jonas466798 @durov Proved E2E Encryption protocol, fully open-source, Sealed Sender feature, almost no metadata collected, no subpoena revealing actual message contents or any other identifiable information. You can do research yourself as well.

@Jonas466798 @durov How are you so sure about that?

You’d have to be braindead to believe WhatsApp is secure in 2026. When we analyzed how WhatsApp implemented its “encryption”, we found multiple attack vectors.

@doomRat_ @enteio Linux on Mobile is extremely insecure OS to use compared to GrapheneOS. No need to curse GrapheneOS as well.

Reminder.

@rasterized_doom @enteio @Fairphone @e_mydata /e/OS lacks in both security and privacy compared to GrapheneOS. Also Sandboxed Google Play Services provides broader compatibility than microG.

@enteio IMHO, buying a @Fairphone with @e_mydata is far better option. First of all you do not pay for the Google device and secondly you face way less compability issues with the banking apps for example.