Lightnews — Scholar-powered news

Reposted by ronin3510.bsky.social

Sheridan Computers @sheridan.co.uk · 1d

Overview of changes in OPNsense
25.7.5, including security updates, driver fixes, and migration to @ipinfo
for GeoIP handling.

#OPNsense #OpenSource #Firewalls #IPinfo

youtu.be/L574hdKeEzE?...

OPNsense 25.7.5 - What you need to know

YouTube video by Sheridan Computers

youtu.be

1 1

Reposted by ronin3510.bsky.social

Sean Carroll @seanmcarroll.bsky.social · 1d

I feel bad for the ordinary person who looks to purportedly respectable scientific figures for insight into the wonders of the universe, only to be met by absurd speculations that an interstellar comet is alien technology. (It is not.)

No better than anti-vax nonsense.

imgur.com/gallery/theo...

Theoretical physicist Michio Kaku speculates about the 3 Visitors

Discover topics like michio kaku, atlas 3i comet, Astronomy, and the magic of the internet at Imgur, a community powered entertainment destination. Lift your spirits with funny jokes, trending memes, ...

imgur.com

30 31 220

Reposted by ronin3510.bsky.social

Matthew Green @matthewdgreen.bsky.social · 21h

The “age verification” and the “human identification” problem are the same problem. It upsets me to be around people who think they’re working on the first, but don’t understand they’re actually working on the second.

a woman in a purple sweater says they are the same picture

ALT: a woman in a purple sweater says they are the same picture

media.tenor.com

2 31 100

Reposted by ronin3510.bsky.social

Home Assistant @home-assistant.io · 17h

⚠️ WE'RE ENDING PRODUCTION OF THE HOME ASSISTANT YELLOW ⚠️

Rest assured, it will continue to be supported 😌 but if you've considered buying one get it before stock runs out! Learn why this decision was made, what support looks like moving forward, & a peek into the future 👇🏼

Ending production of Home Assistant Yellow

Software support continues, and we start looking at what hardware is next for our power-users.

www.home-assistant.io

2 5 35

Reposted by ronin3510.bsky.social

Jake Williams @malwarejake.bsky.social · 20h

Do you use F5? Zero trust with comms to or from F5's is the name of the game. Threat actors have stolen source code and undisclosed vulnerabilities in F5 BIG-IP.
www.bleepingcomputer.com/news/securit...

F5 says hackers stole undisclosed BIG-IP flaws, source code

U.S. cybersecurity company F5 disclosed that nation-state hackers breached its systems and stole undisclosed BIG-IP security vulnerabilities and source code.

www.bleepingcomputer.com

2 14 25

Reposted by ronin3510.bsky.social

OPNsense @opnsense.org · 23h

#OPNsense 25.10 business edition is out now, for details see below

OPNsense 25.10 business edition released

forum.opnsense.org

2 5

Reposted by ronin3510.bsky.social

The Francis Crick Institute @crick.ac.uk · 1d

NEW EPISODE: Will we survive climate change?

Join our expert panellists as they answer your questions about curbing rising global temperatures and what life could be like in a warmer world.

Listen on your favourite podcast platform: www.lnk.to/AQOSClimateBB

Panel of speakers with the title ‘Can We Survive Climate Change?’ from BBC Studios and The Francis Crick Institute.

11 34 76

Reposted by ronin3510.bsky.social

Benjamin Pope @benjaminpope.bsky.social · 2d

Thrilled to have two years' of work out, in a pair of papers led by @gradientrider.bsky.social and @maxecharles.bsky.social.

We've built a data-driven calibration of the James Webb Interferometer to near its fundamental limits for high-res imaging - explainer at @aunz.theconversation.com!

How we sharpened the James Webb telescope’s vision from a million kilometres away

The only Australian hardware on board the legendary telescope is starting to fulfil its duties.

theconversation.com

1 41 150

ronin3510.bsky.social @ronin3510.bsky.social · 1d

If you have to ask-you’ve succeeded 😉

Reposted by ronin3510.bsky.social

Matthew Green @matthewdgreen.bsky.social · 1d

I love stuff like this. tosc.iacr.org/index.php/To...

Subverting Telegram’s End-to-End Encryption | IACR Transactions on Symmetric Cryptology

tosc.iacr.org

1 12 30

Reposted by ronin3510.bsky.social

evacide @evacide.bsky.social · 1d

Truly, SS7 is the surveillance gift that keeps on giving: www.motherjones.com/politics/202...

The surveillance empire that tracked world leaders, a Vatican enemy, and maybe you

Inside the hidden world of First Wap, whose untraceable tech has targeted politicians, journalists, celebrities, and activists around the globe.

www.motherjones.com

2 41 65

Reposted by ronin3510.bsky.social

Barry Dorrans @blowdart.me · 1d

It's Patch Tuesday and ASP.NET Core has a doozy, with a CVSS score of 9.9, our highest ever. Let's examine why.

The bug enables http request smuggling, which on its own for ASP.NET Core would be nowhere near that high, but that's not how we rate things...

* Thread- (1/7)

Microsoft Security Advisory CVE-2025-55315: .NET Security Feature Bypass Vulnerability · Issue #371 · dotnet/announcements

Microsoft Security Advisory CVE-2025-55315: .NET Security Feature Bypass Vulnerability Executive summary Microsoft is releasing this security advisory to provide information about a vulnerability i...

github.com

6 43 50

Reposted by ronin3510.bsky.social

Paul Byrne @theplanetaryguy.bsky.social · 1d

Layoff notices at JPL are going out today.

About 11% of the Lab, or 550 people, are being let go.

I'm thinking of my friends and colleagues there, some of whom will still be employed after today and some of whom won't.

I'm sorry you're having to deal with this.

12 84 300

Reposted by ronin3510.bsky.social

openSUSE @opensuse.org · 2d

Install #Linux today #Windows10 users. Your #computer still works, so install #Linux & get your maintenance & #security updates without signing up for a #Microsoft account. #Privacy #Endof10 news.opensuse.org/2025/07/23/u...

4 18

Reposted by ronin3510.bsky.social

Home Assistant @home-assistant.io · 1d

When we launched the Connect ZWA-2, one point of feedback was clear: people want flexibility in where they could place it. Message received. 😎

Introducing Portable Z-Wave, an experimental firmware that lets you use Z-Wave over the built-in Wi-Fi or add on PoE! 🚀 Learn how it works 👇🏼

#SmartHome

Connect ZWA-2 anywhere: Use Z-Wave over Wi-Fi or PoE

Introducing Portable Z-Wave, an experimental firmware that lets you use Z-Wave over the built-in Wi-Fi or even add PoE.

www.home-assistant.io

3 2 25

Reposted by ronin3510.bsky.social

Matthew Green @matthewdgreen.bsky.social · 2d

This work really helps to illustrate the role of public and academic security research. Yesterday there were people at satcos who knew these unencrypted links were dangerous, but weren’t empowered to do anything about it. Now they will be.

8 41

Reposted by ronin3510.bsky.social

Matthew Green @matthewdgreen.bsky.social · 2d

Here’s an article about it in WIRED: www.wired.com/story/satell...

https://www.wired.com/story/satellites-are-leaking-the-worlds-secrets-calls-texts-military-and-corporate-data/

t.co

1 10 38

Reposted by ronin3510.bsky.social

Matthew Green @matthewdgreen.bsky.social · 2d

This is amazing research by Nadia Heninger and her co-authors Wenyi Morty Zhang, Annie Dai, Keegan Ryan, Dave Levin and Aaron Schulman. TL;DR a huge number of satellite links over our heads are totally unencrypted. satcom.sysnet.ucsd.edu

🛰️ SATCOM Security

Research project homepage for SATCOM Security: papers, source code, and recent satellite communications vulnerabilities.

satcom.sysnet.ucsd.edu

5 66 140

Reposted by ronin3510.bsky.social

Deirdre Connolly¹ ² @durumcrustulum.com · 2d

I finally got a tight edit up of the Signal PQ Ratchet deep dive:

www.youtube.com/watch?v=ZqUE...

Signal's Sparse Post-Quantum Ratchet

YouTube video by Deirdre Connolly

www.youtube.com

1 10

Reposted by ronin3510.bsky.social

Scientific American @sciam.bsky.social · 5d

Samples from the seafloor reveal evidence of several earthquakes along the West Coast’s two major fault zones happening in quick succession over the past 3,000 years

The Most Infamous Faults in the U.S. May Produce Synchronized Earthquakes

Samples from the seafloor reveal evidence of several earthquakes along the West Coast’s two major fault zones happening in quick succession over the past 3,000 years

www.scientificamerican.com

1 8 29

Reposted by ronin3510.bsky.social

Deirdre Connolly¹ ² @durumcrustulum.com · 5d

let's read some legal agreements

www.youtube.com/watch?v=nmvf...

Is ML-KEM Patent-Encumbered?

YouTube video by Deirdre Connolly

www.youtube.com

1 2 7

Reposted by ronin3510.bsky.social

Sheryl Gay Stolberg @sherylnyt.bsky.social · 5d

FULL STORY HERE: Emails began flooding CDC inboxes late Friday night announcing dozens of layoffs. HR people brought back from furlough to oversee the RIFs. Disease detectives, entire Washington office, global health, injury prevention, MMWR staff among those hit.
www.nytimes.com/2025/10/11/u...

Trump Administration Lays Off Dozens of C.D.C. Officials

www.nytimes.com

67 820 1.5K

Reposted by ronin3510.bsky.social

Sheryl Gay Stolberg @sherylnyt.bsky.social · 5d

BREAKING: Friday night massacre underway at CDC. Doznes of "disease detectives," high-level scientists, entire Washington staff and editors of the MMWR (Morbidity and Mortality Weekly Report) have all been RIFed and received the following notice:

860 8.5K 15K

Reposted by ronin3510.bsky.social

Damien Miller @damienmiller.bsky.social · 6d

OpenSSH 10.2 has just been released.

This release contains only non-security bugfixes, most notably for a bad regression that made interactive that used ControlPersist basically unusable

Full release notes at openssh.com/releasenotes...

OpenSSH: Release Notes

OpenSSH release notes

openssh.com

7 13

Reposted by ronin3510.bsky.social

404 Media @404media.co · 6d

BREAKING: A catastrophic breach has impacted Discord user data including selfies and identity documents uploaded as part of the app’s verification process, email addresses, phone numbers, approximately where the user lives, and much more.

🔗 www.404media.co/the-discord-...

The Discord Hack is Every Users’ Worst Nightmare

A hack impacting Discord’s age verification process shows in stark terms the risk of tech companies collecting users’ ID documents. Now the hackers are posting peoples’ IDs and other sensitive informa...

www.404media.co

87 1.6K 2.5K