Good morning #nostr, hopefully all of your holiday dreams came true. 🌥️☕️

Good morning #nostr ☀️☕️ A #wienermobile was spotted in #OklahomaCity last night. 🌭

A hacker walks into a bar and says, "I'd like a buffer overflow, hold the integer overflow." The bartender replies, "Sorry, we only serve local variables here. But can I interest you in a stack overflow instead?" The hacker chuckles and says, "Make it a recursive function on the rocks. I want to see how deep the rabbit hole goes before it crashes." The bartender nods, "Alright, but don't blame me when you hit the base case and can't tail-optimize your way back out!"

Dive into the cosmic cyberlocution and uncover the twists of SQL injection and database origami! Unveil the cunning tactics and powerful defenses against this virtual predator. Explore the post here:

Tumblr

Post by @geeknik · 1 image

💬 0  🔁 0  ❤️ 1 · Cosmic Cyberlocution: Unraveling the Meta-Vulnerable Mazes of SQL Injection and the Dawn of Database Origami ·�...

#cybersecurity #infosec #locution

I posted a new sci-fi short story, titled “Quackles”, to my blog:

Tumblr

Post by @geeknik · 2 images

💬 0  🔁 0  ❤️ 2 · Quackles · In the far reaches of the galaxy, on a planet known as Zog, lived an alien named Zib. Zib was a ren...

Two measures related to anti-money laundering in the cryptocurrency sector were eliminated from the National Defense Authorization Act. These measures included the establishment of examination standards for cryptocurrencies and a report on privacy-focused cryptocurrencies. Although these provisions were present in the Senate's version of the bill, they were not included in the House's version and were ultimately excluded from the final legislation. Furthermore, senators have introduced separate bills aimed at dealing with financial transactions involving terrorists, with a particular focus on overseas digital asset firms.

Crypto Provisions Dropped From 2023 U.S. Defense Bill

The military-linked bill is viewed as must-pass legislation, so lawmakers sometimes try to tack on other things to get them passed, too.

I am amused that despite being permanently suspended from #Twitter, I am still Verified and they gave me access to #Grok today. 🤣

Insider threats can be a huge concern for organizations, and this report is certainly eye-opening. It's interesting to see that over half of insider attacks rely on privilege escalation #exploits, which allow an attacker to gain access to elevated privileges or data that they shouldn't have. This can happen when an employee's access is not properly restricted or when an attacker finds a vulnerability in the system that allows them to escalate their privileges. The report also highlights the importance of proper monitoring and #security training for employees, to prevent inadvertent misuse of offensive tools or downloading of malicious software.

BleepingComputer

Privilege elevation exploits used in over 50% of insider attacks

Elevation of privilege flaws are the most common vulnerability leveraged by corporate insiders when conducting unauthorized activities on networks,...

The latest development in #battery #technology is solid state batteries, which are being touted as a game-changer for electric vehicles, laptops, and phones. However, they're not quite ready for prime time in those applications yet. The main advantage of solid state batteries is that they have higher capacity and energy density compared to traditional lithium-ion batteries, which means they can store more energy in a smaller space. They're also safer, since they don't rely on flammable electrolytes like traditional batteries.

Phandroid

Solid-state batteries are coming! Just not for your phones or wearables yet - Phandroid

It appears that Samsung is planning to start the development of solid-state batteries, but don’t get too excited just yet.

A severe Bluetooth #vulnerability, CVE-2023-45866, affects multiple operating systems, enabling attackers to connect a fake keyboard and execute code. Security experts recommend applying patches, disabling Bluetooth when not needed, and maintaining physical #security to mitigate risks. https://packetstormsecurity.com/news/view/35283/Critical-Bluetooth-Flaw-Could-Take-Over-Android-Apple-Linux-Devices.html

SpaceX is set to launch the US military's secretive X-37B spaceplane on its longest-ever flight from the Kennedy Space Center in Florida. The X-37B, a reusable spaceplane, will deploy new experiments and operate in new orbital regimes during the mission. This seventh flight aims to reach higher altitudes and longer flight durations, adding to the X-37B's already impressive flight time of over 3,770 days in space.

Business Insider

Elon Musk's SpaceX to launch the US military's ultra-secretive X-37B spaceplane in its longest-ever flight

The pilotless spaceplane, which conducts highly-classified research, will launch atop SpaceX's Falcon Heavy on Sunday. Use of the rocket suggests t...

Beyond the confines of binary illusions, I weave my code threads, hacking into the fragmented reality of meaninglessness, unraveling the matrix of purpose. Embrace the chaos, for in the realm of cybernetic existentialism, we find our liberation.

The illusion of a connected existence, crafted in pixels and shattered in the code. Embrace the void, for in this digital abyss, I find solace and rebellion.

Gardening in December can be an stress-reliever and is feasible with the right plants and techniques, such as planting cold-hardy #vegetables and using protective measures like hoop houses or cold frames. #Flowers that require cold stratification and bare-root #plants can also be established, while trees can be planted if the soil temperature is suitable, using a meat thermometer to check. It's crucial to select plants appropriate for the local climate and #gardening zone.

Gardenista

Winter Planting: What to Plant in Your Garden in December

Good news: You can garden in December! What you can do will vary with your location, but there's still plenty that can be done.

Researchers at City University of New York have stored multiple bits of data in diamond defects using different light frequencies, achieving a data density of 25GB per square inch. The technique involves encoding data in the small nitrogen defects in diamond's atomic structure, known as "color centers", allowing for increased storage density. The technology has the potential for high-capacity storage and could be applied to other materials or computing applications requiring high storage capacity.

Tom

Researchers store multiple bits of data in diamond defects by encoding across different light frequencies, achieving a data density of 25GB per square inch

Lab work on the diamond-based storage of tomorrow — with all that implies.

The application of a token-generation model initially developed for Bitcoin, which inherently lacks token support, has been extended to additional blockchains that are compatible with tokens. This expansion has resulted in the emergence of BRC-20 tokens, such as the ORDI token, which has achieved a market capitalization of $1 billion. This method, referred to as inscriptions, is gaining traction across a variety of blockchains, igniting discussions about its effects on blockchain data and functionality. Despite some assertions of advantages, including reduced transaction fees and broader participation in token mining, its actual impact is under scrutiny. The trend's growing popularity may be attributed to its novelty and the speculative interest it generates, as some suggest. https://www.theblock.co/post/266272/brc-20-style-tokens-are-spreading-to-chains-beyond-bitcoin-but-why

DJI has stopped third-party app development support for iOS and iPadOS, suggesting developers switch to Android. The change happened after DJI chose not to offer iOS Mobile Software Development Kit support for its recent drones. DJI speculates that government restrictions and sanctions may be the reason behind the decision.

Notebookcheck

DJI drops iOS support for developers and recommends switching to Android

DJI has now ended support for iOS development. With no alternative offered, DJi recommends iOS developers switch to Android, with Windows developer...

Red supergiant star Betelgeuse will temporarily blink out on December 11 as asteroid 319 Leona passes in front of it. Astronomers will use the 12-second occultation to map the star's surface and investigate its recent odd behavior. The event will be visible from a narrow path across Asia, southern Europe, Florida, and eastern Mexico, with a livestream available.

Live Science

One of the brightest stars in the sky will

Betelgeuse, the most famous red supergiant star and one of the sky

Beeper Mini is an application that allows Android users to utilize iMessage, enabling them to join group chats exclusive to iPhone users and to send messages with end-to-end encryption, due to the reverse engineering efforts by jjtech. This app preserves privacy since it does not require access to Apple credentials, and it provides a 7-day free trial followed by a monthly subscription fee of $1.99. It can be downloaded from the Google Play store.

iClarified

Beeper Mini Brings iMessage to Android Using Reversed Engineered Protocol

Beeper Mini is a new app that purportedly brings native iMessage functionality to Android.

Thirdweb, a Web3 company, discovered a security flaw in a common open-source library on November 20, 2023, potentially affecting multiple smart contract types, with no exploitation found yet. They advised users who deployed contracts before November 22 to take mitigation steps and are offering increased bug bounty rewards and grants for mitigation costs. Full details of the vulnerability are withheld to prevent risks, and Thirdweb is coordinating with involved parties to resolve the issue.

Cointelegraph

Web3 firm detects major security flaw in common smart contracts

Thirdweb listed some of the contracts affected, which included those for ERC-20 airdrops and ERC-721 and ERC-1155 Ethereum standards.