George Mari @GeorgeMari@qoto.org

No versions of Red Hat Enterprise Linux (RHEL) are affected by xz-utils backdoor (liblzma5) https://www.redhat.com/en/blog/urgent-security-alert-fedora-41-and-rawhide-users However, Fedora Linux 40 users may have received. Fuck. Stop using Fedora 40. I hope you kept verified backups.

The FTC has confirmed what we suspected: During the pandemic supply chain disruptions, big grocery chains pressured food suppliers to favor them over smaller competitors and hiked food prices to rake in record profits.

Those prices have stayed high even as disruptions eased.

It's Friday, so that means time to hang with some friends and talk EVs. Lots of electric truck and towing talk in this one. Enjoy! https://youtu.be/nrkxW8bcP9M

This is so badass: Ukraine is using a network of thousands of mobile phones deployed across the country to track incoming drones and missiles.

h/t to @riskybusiness which notes on this week's podcast that Iranian drones apparently are really loud. So they use these network of phones to hear when lawn-mower drones trundle on by, and then shoot them down with small arms fire.

https://www.msn.com/en-gb/money/technology/how-ukraine-is-using-mobile-phones-on-6ft-poles-to-stop-drones/ar-BB1kzCIL

https://risky.biz/RB742/

After nearly three decades in Hong Kong, VOA's sister outlet Radio Free Asia has closed its physical bureau in the city and no longer has full-time staff there due to the declining press freedom landscape, the outlet announced in a statement Friday.

https://www.voanews.com/a/rfa-departs-hong-kong-citing-press-freedom-concerns/7548666.html #voanews

Sam Bankman-Fried is still gambling https://www.theverge.com/2024/3/29/24114864/sam-bankman-fried-trial-sentencing-lessons-ftx

This is insane! And they say this will make shared governance better lol

#HigherEd
@academicchatter

Kentucky president proposes to strip faculty body’s power
https://www.insidehighered.com/news/faculty-issues/shared-governance/2024/03/28/kentucky-president-proposes-strip-faculty-bodys

Well, my financial situation just abruptly changed for the scary. Lotta bad news at once.

I mention I have a patreon about once every 5 years and I've been redirecting the handful of donations to various radicals for a long while, but I could really use more stability rn. Definitely do not donate if you're just a poor punk; there are myriad prisoner support projects and radical spaces that could use cash too. But if you're a reader with extra sitting around...

https://www.patreon.com/williamgillis

A new project to resume development on the formerly open-source Redis project. This project was forked from the open source Redis project right before the transition to their new source available licenses. https://github.com/valkey-io/valkey Linux Foundation is behind this project. #opensource #unix #linux

OMG 😧 Playing doom using windows task manager
https://youtu.be/hSoCmAoIMOU?si=mvZ3YrFtRziyjw-A

Apple is an innovative company that is widely emulated around the world. But the advanced security of its products and their associated user accounts remain highly vulnerable to compromise because AFAICT Apple will not let you remove a mobile phone number from your account.

I've long advised readers to move away from relying on phone numbers for ANY form of authentication, and I've written time again about how many companies require a mobile number on signup, but allow you to remove the number from your profile after the account is set up. This is advisable if you have the option for more robust forms of 2FA, like security keys, app-based or OTP/push authentication.

The reason for this advice is that phone numbers are not great for security or authentication (they are transient and not property you control) and your phone company will not help you if one of their employees is tricked into navigating to a phishing page and giving away credentials that allow thieves to sim-swap your number to a device they control, and then request password reset links via SMS to all your important accounts.

But it doesn't seem like you can do that with Apple. And it's leading to stuff like this, without giving victims much in the way of anything they can do about it -- except maybe change their number to another number that isn't already tied to their identity.

https://krebsonsecurity.com/2024/03/recent-mfa-bombing-attacks-targeting-apple-users/

As a heavy Apple user, I hope I am wrong about this and that someone will set me straight. Because this is really bothering me right now.

Got to check out the Rivian R2 last week up close. Big crowds and not allowed to touch, but I managed to put a video together highlighting some of the differences and similarities between R2 and R1S. https://youtu.be/QqU88ksCNiM

okay, I urgently need a place to live at*, does anyone have a place available in a shared apartment or anywhere where I could live for at least a while? (in Dresden, Berlin or Leipzig)

*we'll get kicked out at 4th April as I have only just found out.

#MutualAid @mutualaid (feel free to add more hashtags and ping more necessary groups and such in the replies)

A Singapore-flagged cargo ship had a power failure for reasons still unknown and destroyed Baltimore’s bridge.

If you’re a Republican in 2024 America, your mission is clear: find a Black woman to blame.

https://www.sltrib.com/news/politics/2024/03/26/baltimore-bridge-collapse-caused/

Your periodic reminder that Medicare For All would save $450 billion in health care costs and 68,000 lives per year.

Maybe New York could kick in $175 million for Baltimore to rebuild the bridge, they could name the new one “Yankees Forever LOL LMAO” or something.

It's time again for me to ask if anyone knows of any long term projects or roles in illustration and design!

I have over 16 years experience in working within remote/distributed teams and agencies and am efficient in using Adobe CC, Figma, Webflow, Miro. I've done everything from icon and logo/brand design, editorial, interactive brochures and forms, character design.

https://andycarolan.com

#getfedihired #OpenToWork #remotework

the DOJ antitrust case against Apple is going to be a long haul, so I took the time to study the complaint, brush up on antitrust law, and survey 30+ articles that have been written about it so far.

I’ve distilled it all down to explain:

- How the Sherman Act works
- What the DOJ alleges
- Which of the DOJ's arguments are good and which are losers, and
- What you can expect to happen next

All on @macstories:

https://www.macstories.net/stories/understanding-the-dojs-antitrust-complaint-against-apple/

EU’s use of Microsoft 365 found to breach data protection rules

An investigation into the European Union’s use of Microsoft 365 has found the Commission breached the bloc’s data protection rules through its use of the cloud-based productivity software.

#datasovereignty #dataprotection

https://techcrunch.com/2024/03/11/edps-microsoft-365/

Dems are usually terrible at messaging

But this: this is a home run.

🇺🇸