CL0Pinette

@EuCyberCup pas mal la souveraineté numérique quand @rootme_org existe... M'enfin pas étonnant pour cet événement

Le CTF Jeopardy a rendu son verdict ! 🏁💻 Le chrono s'est arrêté et la tension retombe enfin au Grand Palais : entre criminalistique, exploitation web et rétro-ingénierie, cette seconde épreuve de l'EC2 a poussé les candidats dans leurs derniers retranchements techniques. Bravo à l'équipe Esnarcotrafiquants de l'ESNA qui s'impose sur ce challenge de haut vol orchestré par notre partenaire @hackthebox_eu ! 🏆🔍 Félicitations à eux pour cette victoire méritée ! 👏 #INCYBERFORUM

Like I said in a previous post on the topic of ID/Age Verification - I started digging into the topic quite a bit, especially after that Meta lobbying exposed news dropped. What I have (and more of others) found is something that is so stupid, but also makes a whole lot of sense...in fact imo its the perfect piece of the puzzle. I will lay out my digging through a series of events: 1. Advertisers (ie Corporations with products or services to sell), contract with big Social media platforms, paying boatloads of money for adspace. The logic is that even if 10% of the tens of millions of users buy into their ads, its worth the investment. 2. The onset of botting, has led to ads being viewers by more bots than they do humans. No matter how many bots watch your ads, they never need your products or services. So they will never give advertisers' money and business. 3. This essentially means that, Advertisers are proverbially throwing money into the drain. Paying the price with practically no ROI. Many reports indicate that this botting problem resulted in multi-billion dollar wastage on ad spending. 4. Advertisers have started grilling social media companies, especially Meta which was one of the biggest sources of the issue. This resulted in many advertisers basically threatening to pull ad money until the botting situation is controlled. 5. The botting situation became even WORSE around 2023-2025 with the Ai-Bros and Ai Companies hard pushing Ai development. The past anti-bot systems and measures lose effectiveness as Ai makes bots more sophisticated. 6. Then late 2025/2026, you can see the SNAP. The nuclear solution - Age/ID verification being pushed or implemented across multiple countries at around the same timing (within months). 7. Then now all the news about Socmed and big tech corps lobbying politicians and governments for mass ID/Age Verification on an OS/Appstore level. 8. Why? Since you pick your poison to "age verify"...a selfie, submit your ID, or Ping your credit card. Sure your age will be "verified", but it also comes with the useful byproduct of confirming you are HUMAN. So as a takeaway, what does this mean? Well to me at least, this quite neatly explains why BOTH Governments and large Corporations have collaborated and colluded to push for ID Verification at an alarming pace Globally. In the end, it really was about money. It also means quite simply in my opinion - these Corporations and Governments, NEVER really cared about "the children". "Think of the Children" imo, has always been, and will continue to be the convenient excuse for these corporations and politicians to implement this privacy-invasive system. Because if only PROVEN humans can use social media, or other similar sites/services - Advertisers will be mollified and continue to throw money at these Big Tech corporations for continued ad space. This ALSO means - that the so-called parents and people like the Riceman who run defence of ID Verification, are either very stupid, or complicit in this. Either way, the only winners are the Advertisers, the Big Tech Corpos, and the Politicians. We all however, lose.

SystemD has added birth date storage in order to comply with Brazil and California Age Verification laws. Let that sink in. A Linux init system now handles Age Verification. github.com/systemd/system…

@NXT4EU LOL olvid. Their entire app depends on aws lambda so I definitely wouldn't recomment it. Use element/matrix instead which you can self-host

Privacy needed? Europe got your back. We have a full suite of companies providing shelter from American big-tech.

@sama shut the fuck up you technocrat piece of shit

#proxmox loadbalancing is coming ^_^

@davidnburgess Critical is a bit overkill for this vulnerability. Even the maintainer says it is a moderate vulnerability. The vulnerability doesn't give any code execution so it is definitely not critical

Uptime Kuma 2.2.0 just dropped! Critical security fix included - update NOW! Plus, new ways to get alerts: WhatsApp notifications! Bug fixes & improvements. Keep your homelab secure & informed! github.com/louislam/uptim… #UptimeKuma #selfhosted

@KuptoKosmos @lsr874 de rentrer un autre code différents du login/mot de passe. Le seul moyen d'avoir accès aux discussions est donc d'avoir accès à la machine même de la personne. Donc stop le bullshit au soi-disant hack en tout genre et apprenez à lire les docs techniques des protocoles utilisées.

@KuptoKosmos @lsr874 Lol, dit que tu ne connais pas l'informatique sans dire que tu bite rien a l'info. On est juste sur une personne qui s'est fait péter son compte et donc accès aux discussions. Et encore l'accès aux discussions est a prendre avec des pincettes car chaque nouvelle session nécessite

🚨🇫🇷🗃️ ÉNIÈME FIASCO NATIONAL : Le 2 mars "epi" un hacker solo, attaque la France en 24h chrono et l’État continue son silence 🤦‍♂️ MENACE ÉLEVÉE, 5 cibles françaises au menu, dont la messagerie « ultra-sécurisée du gouvernement ! Les sites sont toujours en ligne, zéro alerte pourtant le hackeur possède vraiment les données. La CNIL doit encore boire son café... Les données volées en détail : 🔴 Tchap Gouv... La messagerie censée être ultra-sécurisée pour la police et ministres, le Signal à la française. Scrapée en 33 minutes ! +10 000 adresses emails officielles (@ interieur .gouv.fr, @ gendarmerie .interieur.gouv.fr, @ tchap .gouv.fr) 7 conversations complètes + groupes internes entiers : Police Nationale, Gendarmerie Nationale, Police Judiciaire, PC STORM Admins, Forge MI, DTNUM Intérieur, Tchap Retex. Bref tout le bottin des forces de l’ordre en libre-service sur Telegram ! 🔴 URSSAF / Pajemploi... Frappé DEUX FOIS le même jour ! Des millions de numéros de Sécu (NIR), RIB bancaires, adresses postales, revenus déclarés, historiques familiaux, allocations nounou et cotisations sociales. Parfait pour frauder les prestations ou envoyer le phishing comme "Votre Pajemploi a changé" ! 🔴 Hôpital de Paris (AP-HP)... Dossiers médicaux complets : antécédents, diagnostics (cancers inclus), traitements en cours, ordonnances, identifiants patients et données de santé ultra-sensibles 💢 🔴 DVM Records... Même le label rap urbain s’est fait plumer (deux fois aussi) !! Noms complets, emails vérifiés, adresses postales, numéros de téléphone, historiques d’achats précis (titres, dates, montants, cartes bancaires liées). Pour les fans évitez les mails style "Remboursement album incoming" 🔴 Bonus en février le même hackeur à revendu les données de Bioserveur : Serveur santé/recherche. Données biologiques, dossiers patients et résultats d’analyses. ⚠️ "epi" possède vraiment les données : il a publié des samples concrets (emails @ gouv .fr, listes de groupes) sur les forums. Pas de dump gratuit public pour l’instant, mais tout est bien chez lui et déjà en vente privée sur Telegram/forums. Silence radio des entreprises et gouvernement 🤫🇫🇷🩸 Protégez-vous, parce que clairement… personne d’autre ne le fera. La France, self-service des hackers ! #CyberAttack #CyberSecurity

The Linux community of 20 years ago would've taken one look at AB 1043 and pushed an update that limited the network speed of every machine in California to 1 kbps until it was repealed.

programer: includes c compilers as a part of opus training data opus: builds c compiler ai posters: 🤯😮

Today my entire feed is about the C compiler built by claude. Different opinions. Endless threads. So many takes. But I doubt you will find anything better than comments in github.com/anthropics/cla…

Imagine spending $20,000 to build a compiler that makes Doom run at 2 FPS at 160x100 resolution. And then flexing it. Every AI ad I see is like this. “You know that Good Thing™️? Now we made it worse, but at least it’s more expensive!”

Sounds incredible until you read the fine print. The compiler generates less efficient code than GCC with all optimizations disabled. It doesn’t have its own assembler or linker. It can’t produce a 16-bit x86 code generator. And Carlini himself says it has “nearly reached the limits of Opus’s abilities.” New features and bugfixes kept breaking existing functionality. So what did $20,000 and two weeks actually buy? A compiler that passes 99% of GCC’s torture tests but can’t match the output quality of a tool that’s had 37 years of human engineering. That’s the constraint nobody’s pricing in. The real story is in the cost curve, not the capability demo. $20,000 for 100,000 lines means $0.20 per line of generated code. A senior compiler engineer costs roughly $150/hour. At maybe 50 polished lines per hour for something this complex, that’s $3/line. AI just did it at 15x cheaper, and it will only get cheaper from here. But the code isn’t equivalent. The AI version needs a human to finish the assembler, fix the linker, optimize the output, and prevent regressions. Those are the hardest 20% of the problem, and they represent 80% of the engineering value. Anthropic built the demo. Shipping the product still requires humans. This tells you exactly where we are in the autonomous software timeline. AI can now produce impressive first drafts of complex systems at trivial cost. Turning those drafts into production software still requires the judgment that costs $300K+ per year in compiler engineer salary. The gap between “compiles the Linux kernel” and “replaces GCC” is measured in decades of accumulated engineering wisdom that no model has internalized yet. The companies that understand this will use agent teams to generate the 80% and hire engineers to finish the 20%. The companies that don’t will ship $20,000 compilers that produce slower code than a free tool from 1987.

Holy shit, Anna's Archive scraped almost all of Spotify. 300TB. annas-archive.li/blog/backing-u…

The European Commission lost the Chat Control 2.0 battle over access to end-to-end encrypted data. By the summer 2026, they will be back with their next attempt: Going Dark. This time some EU member states want to include VPN services. The Going Dark initiative, or ProtectEU as the Commission now calls it, wants to “enable law enforcement authorities to access encrypted data in a lawful manner”. This is a Chat Control 3.0 attempt. The EU Commission and several member states are also looking for new rules on data retention. In a new ”Presidency outcome paper”, the member states discuss metadata retention: which websites you visit, and who is communicating with whom, when and how often. The ambition is “to have the broadest possible scope of application” and this time some member states also want the proposal to include VPN services. Mullvad has spent the last three years opposing Chat Control 2.0 – even though the law would have affected our business positively. We will continue to fight Going Dark with full force, regardless of whether VPNs are included or not. If VPNs are included, and if Going Dark becomes law, we will never spy on our customers no matter what.

France's cybersecurity agency was previously actively using GrapheneOS. They helped us by auditing our code and submitting bug reports such as this one: github.com/GrapheneOS/har… They also made suggestions for security improvements to improve protection against exploits.

there's been a significant uptick on cloud service provider outages since we've entered tHe ArTifiCiaL InTelliGencE ErA coincidence? probably.

"Pourquoi la souveraineté numérique avec les partenaires américains est un conte de fées. Les fournisseurs de services cloud basés aux États-Unis font la promotion de « clouds souverains » et d'une souveraineté des données conforme aux normes européennes sur le marché européen. Cependant, en vertu de réglementations telles que le CLOUD Act et le FISA 702, les données européennes ne sont jamais protégées contre les États-Unis". it-daily.net/it-management/…

Swiss surveillance could become worse than US If passed, chat, email & VPN providers from #Switzerland must: 🚨 Log IP addresses 🚨 Ask for ID upon sign up 🚨 Decrypt data upon request Swiss Bundesrat is still discussing this draft bill, decision will likely be made in 2026. Let's fight for #privacy! 👉 tuta.com/blog/switzerla…