Why not? Nationalize it and treat it like the infrastructure it is. Take the ISPs, too, while you’re at it.
Why not? Nationalize it and treat it like the infrastructure it is. Take the ISPs, too, while you’re at it.
Video is nearly impossible to host in a sustainable way. The bandwidth usage is among the most expensive things you can host. The only way you’re getting something better than YouTube is if it’s tax funded somehow.
I’m of the opinion that not every company needs to expand indefinitely. Most things should probably just stay at a sustainable level.
how is it an experiment to restore things to the way they used to be? pretty sure we already know how it works out.
I imagine if this attacker wasn’t in a rush to get the backdoor into the upcoming Debian and Fedora stable releases he would have been able to notice and correct the increased CPU usage tell and remain undetected.
I think ideas about prevention should be more concerned with the social engineering aspect of this attack. The code itself is certainly cleverly hidden, but any bad actor who gains the kind of access as Jia did could likely pull off something similar without duplicating their specific method or technique.
as long as you’re up to date on everything here: https://boehs.org/node/everything-i-know-about-the-xz-backdoor
the only additional thing i’ve seen noted is a possibilty that they were using Arch based on investigation of the tarball that they provided to distro maintainers
people do pay for discord though. that was the entire justification for Nitro and Server Boosts. they made $440 million in revenue in 2022. they aren’t publicly traded so there’s no way to compare that with expenses, but i’d be pretty surprised if they weren’t turning a significant profit.
I don’t foresee anyone with the kind of data needed to do more investigation releasing it to the public, so I doubt we’re going to be getting any satisfying answers to this. Microsoft may have an internal team combing through github logs, but if they find anything they’re unlikely to be sharing it with anyone but law enforcement agencies.
we know about the singapore VPN because they connected to IRC on libera chat with it. the only reason I can think people would believe they’re from hong kong is because of the pseudonym they used, but it’s not like that proves anything.
see link posted in another user’s reply: https://boehs.org/node/everything-i-know-about-the-xz-backdoor#irc
he was using a singapore VPN and had access to multiple sockpuppets. we know literally nothing else about them and anything you’ve heard to the contrary is baseless rumor.
leading theory is that it was a state-sponsored actor, but frankly even that much is speculation and which state is still way up in the air.
if you feel comfortable mucking about in your BIOS, disabling TPM will pretty much guarantee they don’t spring 11 on you. they are really dead set on that requirement for some reason.
nothing on this page mentions anything about Ozempic, semaglutide, or the amounts of funding received. the closest thing is a list of current diabetes research projects with, again, no amounts listed and no clear relation to ozempic.
if the stakes are so low then blocking them is as low-stakes as not, so why make a fuss about it?
Another dev who forgot to .AddGameplay()
i also remember having the cube around the same time in OSX somehow but I forget the method
Non invasive BCI capable of the exact stuff neuralink has demonstrated has existed for a while and its probably a much more viable way to help the disabled than cramming chips into their head.
There certainly is a history of attacking Apple over their use of encryption. I wonder if they’re still mad they didn’t get that iPhone backdoor they wanted.
In fairness I may be mistaken. It seems ISPs were extended common carrier protections in relation to hosting Usenet and email and I conflated that with the protocols themselves. Either way it was a long time ago and I doubt they’d extend those protections to generic web platforms these days, but I’d sure like someone to set a precedent for it.
“()()” is an ambigram, which wikipedia describes as “visual palindromes”, for whatever that’s worth.