Keeping you up to date with the latest crawl
Top story from grapheneos.social
Apple and Google are expanding their use of hardware-based attestation, a technology that verifies the integrity of a device's hardware and software. This is being adopted by a growing number of services, including Google's Play Integrity API and Apple's App Attest API. Apple has also brought this technology to the web via Privacy Pass, with Google planning to do the same.
An Obsidian plugin was exploited in a social engineering campaign to deliver a new remote access trojan (RAT) called PHANTOMPULSE. The campaign targeted users with a malicious plugin that allowed attackers to gain unauthorized access to compromised systems.
Joanna Rutkowska, a computer systems security expert, has launched a new blog, "Traces Of Humanity", after a seven-year hiatus. The blog will focus on computer systems security and operating systems, building on her previous work on Qubes OS1, a paranoid-security OS.
Maryland citizens are facing a $2 billion bill to upgrade the state's power grid, largely due to the increased energy demands of out-of-state AI data centers. The state has complained to federal energy regulators, citing a "ratepayer protection pledge" that it claims was broken by the data centers' operators.
The author, a former advocate for Amazon Web Services (AWS), returned to the platform after a period of time and was reminded of the reasons they left. They highlight the complexity and steep learning curve of AWS, which can be overwhelming for users. The author notes that while AWS has made significant improvements, it still lacks a user-friendly interface and can be difficult to navigate, particularly for those without extensive technical expertise.
Eight more 8-bit era microprocessors have been identified, bringing the total number of known chips from this era to a higher count. These newly discovered chips are part of a larger collection of microprocessors from the 1970s and 1980s. The exact specifications and details of these chips are not yet available.
A script called ssh-init-vm has been developed to prevent Man-in-the-Middle (MITM) attacks on the first SSH connection to a new virtual private server (VPS) or cloud provider. This script can be used on providers that do not offer proprietary solutions to prevent such attacks.
In Brief