Eric Duncan 🔵
@eduncan911.com
Father, IT, Linux, CyberSec, 3DP, IoT, RC, HomeLab, CAD, PCB, Car Builder, Home Remodeling, and local AI enthusiasts.
Maker & guru of all things geek.
You have the #RightToRepair anything!
DMs open or https://signal.me/#u/eduncan.911
Maker & guru of all things geek.
You have the #RightToRepair anything!
DMs open or https://signal.me/#u/eduncan.911
Pinned
Tech billionaires built a private operating system for your government. "It's like becoming stuck in that mobile contract you don't want anymore."
👉 www.youtube.com/watch?v=jpte...
👉 authoritarian-stack.info
👉 www.youtube.com/watch?v=jpte...
👉 authoritarian-stack.info
The Authoritarian Stack
How Tech Billionaires Are Building a Post-Democratic America — And Why Europe Is Next
authoritarian-stack.info
It's much worse than you could have ever imagined.
This episode took a big left turn at the end. Totally unexpected, and now I want one.
Darknet Diaries – True stories from the dark side of the Intern…
@darknetdiaries.com.web.brid.gy
· 5d
166: Maxie
Maxie Reynolds loves an adventure, especially the kind where she’s breaking into buildings (legally). In this episode, she shares stories from her time as a professional penetration tester, including high-stakes physical intrusions, red team chaos, and the unique adrenaline of hacking the real world.
Her book: **The Art of Attack: Attacker Mindset for Security Professionals****(https://amzn.to/4ojYSVZ)**
Her data center: **www.subseacloud.com/**
darknetdiaries.com
December 7, 2025 at 1:22 PM
This episode took a big left turn at the end. Totally unexpected, and now I want one.
Reposted by Eric Duncan 🔵
> satellite location tracking that is always activated
That's confusing. GPS/Satellite tracking is only *one-way*. Your device receives data from at least 4 satellites and triangulates.
Google/Apple apps exploit this is by logging all locations on said device - and read it at a later time.
That's confusing. GPS/Satellite tracking is only *one-way*. Your device receives data from at least 4 satellites and triangulates.
Google/Apple apps exploit this is by logging all locations on said device - and read it at a later time.
December 5, 2025 at 9:28 PM
> satellite location tracking that is always activated
That's confusing. GPS/Satellite tracking is only *one-way*. Your device receives data from at least 4 satellites and triangulates.
Google/Apple apps exploit this is by logging all locations on said device - and read it at a later time.
That's confusing. GPS/Satellite tracking is only *one-way*. Your device receives data from at least 4 satellites and triangulates.
Google/Apple apps exploit this is by logging all locations on said device - and read it at a later time.
Reposted by Eric Duncan 🔵
In #CyberSecurityToday...
The latest corruption is the SEC ending its long-standing case against #SolarWinds and their CISO Tim Brown.
FCC reverses ALL cybersecurity mandates originally set after the #SaltTyphoon hacks. WTAF?!
h/t @technewsday.bsky.social
#CyberSecurity
The latest corruption is the SEC ending its long-standing case against #SolarWinds and their CISO Tim Brown.
FCC reverses ALL cybersecurity mandates originally set after the #SaltTyphoon hacks. WTAF?!
h/t @technewsday.bsky.social
#CyberSecurity
Checkout.com Takes a Bold Stance, SolarWinds Case Dismissed, and FCC Reverses Mandate
YouTube video by Tech Newsday
www.youtube.com
December 4, 2025 at 5:56 PM
In #CyberSecurityToday...
The latest corruption is the SEC ending its long-standing case against #SolarWinds and their CISO Tim Brown.
FCC reverses ALL cybersecurity mandates originally set after the #SaltTyphoon hacks. WTAF?!
h/t @technewsday.bsky.social
#CyberSecurity
The latest corruption is the SEC ending its long-standing case against #SolarWinds and their CISO Tim Brown.
FCC reverses ALL cybersecurity mandates originally set after the #SaltTyphoon hacks. WTAF?!
h/t @technewsday.bsky.social
#CyberSecurity
Reposted by Eric Duncan 🔵
I propose a solution to our ongoing RAM shortage:
December 6, 2025 at 2:32 AM
I propose a solution to our ongoing RAM shortage:
Reposted by Eric Duncan 🔵
Leading the way in Anarchist Influencer Marketing!
December 6, 2025 at 5:19 AM
Leading the way in Anarchist Influencer Marketing!
Reposted by Eric Duncan 🔵
Name another federal agency that actively recruits citizens to collect evidence to be used against other citizens.
Volunteer Monitor Program
The American Radio Relay League (ARRL) is the national association for amateur radio, connecting hams around the U.S. with news, information and resources.
www.arrl.org
December 6, 2025 at 5:55 PM
Name another federal agency that actively recruits citizens to collect evidence to be used against other citizens.
Reposted by Eric Duncan 🔵
This is horrific and exactly what those of us in Black studies, gender studies, women’s studies have been warning our colleagues in the sciences about. Their seeming neutrality will not save them.
Heartbreaking. The University of Nebraska will terminate its entire Earth science department.
One of the country's most successful and respected geology & climate programs: gone.
When ideologues & politicians are threatened by the very act of studying climate change, I wonder: who of us is next?
One of the country's most successful and respected geology & climate programs: gone.
When ideologues & politicians are threatened by the very act of studying climate change, I wonder: who of us is next?
It's over.
Despite the fact that the academic council recommended against it, despite the fact that the program brought in more tuition than it cost, and despite the fact that Nebraskans need & deserve this expertise, Earth & Atmospheric Sciences will be cut.
www.dailynebraskan.com/news/adminis...
Despite the fact that the academic council recommended against it, despite the fact that the program brought in more tuition than it cost, and despite the fact that Nebraskans need & deserve this expertise, Earth & Atmospheric Sciences will be cut.
www.dailynebraskan.com/news/adminis...
December 7, 2025 at 5:13 AM
This is horrific and exactly what those of us in Black studies, gender studies, women’s studies have been warning our colleagues in the sciences about. Their seeming neutrality will not save them.
Reposted by Eric Duncan 🔵
On January 1, Illinois begins to regulate employer use of AI, making it a civil rights violation to use AI tools that result in discrimination based on protected characteristics in hiring, promotion, discipline, termination, or other employment terms and requiring notice of AI use. #AIBillofRights
Illinois becomes one of the few states to regulate employer use of AI. House Bill 3773 amends the Illinois Human Rights Act to make it a civil rights violation for employers to use AI tools that result in discrimination based on race, gender, age, or disability.
www.mystateline.com/news/local-n...
www.mystateline.com/news/local-n...
www.mystateline.com
December 6, 2025 at 10:49 PM
On January 1, Illinois begins to regulate employer use of AI, making it a civil rights violation to use AI tools that result in discrimination based on protected characteristics in hiring, promotion, discipline, termination, or other employment terms and requiring notice of AI use. #AIBillofRights
DITTO!
This is exactly why I chickened out on a HAM license as well.
When you find out about the "Volunteer Monitors", combined with the waiver of the 4th, I said hell no!
Also, obfuscation/any encoding at all (e.g. encryption) is illegal.
This is exactly why I chickened out on a HAM license as well.
When you find out about the "Volunteer Monitors", combined with the waiver of the 4th, I said hell no!
Also, obfuscation/any encoding at all (e.g. encryption) is illegal.
I had an appointment for a ham license and got cold feet after reading the conditions.
It appears that it requires waiving your 4th Amendment rights by agreeing to random warrentless "FCC inspections".
Without a license, this becomes much less actionable regardless of what the FCC claims.
It appears that it requires waiving your 4th Amendment rights by agreeing to random warrentless "FCC inspections".
Without a license, this becomes much less actionable regardless of what the FCC claims.
December 6, 2025 at 5:05 PM
DITTO!
This is exactly why I chickened out on a HAM license as well.
When you find out about the "Volunteer Monitors", combined with the waiver of the 4th, I said hell no!
Also, obfuscation/any encoding at all (e.g. encryption) is illegal.
This is exactly why I chickened out on a HAM license as well.
When you find out about the "Volunteer Monitors", combined with the waiver of the 4th, I said hell no!
Also, obfuscation/any encoding at all (e.g. encryption) is illegal.
It's much worse than you could have ever imagined.
Tech billionaires built a private operating system for your government. "It's like becoming stuck in that mobile contract you don't want anymore."
👉 www.youtube.com/watch?v=jpte...
👉 authoritarian-stack.info
👉 www.youtube.com/watch?v=jpte...
👉 authoritarian-stack.info
The Authoritarian Stack
How Tech Billionaires Are Building a Post-Democratic America — And Why Europe Is Next
authoritarian-stack.info
December 6, 2025 at 12:36 PM
It's much worse than you could have ever imagined.
And how many are funded by state actors? We've previously seen 3 over the last 8 years (most recently: Anon, see link).
A few on the list is decent, like the Pixel + GrapheneOS (or frankly, anything with GrapheneOS and encrypted drive support).
A few on the list is decent, like the Pixel + GrapheneOS (or frankly, anything with GrapheneOS and encrypted drive support).
New guide just dropped: The Private Smartphone Shortlist (2025 Edition).
A simple, practical breakdown of the most privacy focused phones available today, plus steps anyone can take to reduce tracking.
👉 shorturl.at/ERKqj
#Privacy #Cybersecurity #MobileSecurity #CyberLifeCoach #DigitalSafety
A simple, practical breakdown of the most privacy focused phones available today, plus steps anyone can take to reduce tracking.
👉 shorturl.at/ERKqj
#Privacy #Cybersecurity #MobileSecurity #CyberLifeCoach #DigitalSafety
The Private Smartphone Shortlist (2025 Edition)
A practical guide to choosing a privacy first smartphone without losing your sanity
shorturl.at
December 5, 2025 at 6:45 PM
And how many are funded by state actors? We've previously seen 3 over the last 8 years (most recently: Anon, see link).
A few on the list is decent, like the Pixel + GrapheneOS (or frankly, anything with GrapheneOS and encrypted drive support).
A few on the list is decent, like the Pixel + GrapheneOS (or frankly, anything with GrapheneOS and encrypted drive support).
> Why are we talking about stock price, it's because it's the ONLY FUCKING language these people understand. To them, this is a JobWellDone™.
> ...while [Jensen Huang (NVDA)] shoves his hand UP THE US Government's ASS for his next award winning puppet show.
Thanks Steve!
@gamersnexus.bsky.social
> ...while [Jensen Huang (NVDA)] shoves his hand UP THE US Government's ASS for his next award winning puppet show.
Thanks Steve!
@gamersnexus.bsky.social
December 5, 2025 at 4:34 PM
> Why are we talking about stock price, it's because it's the ONLY FUCKING language these people understand. To them, this is a JobWellDone™.
> ...while [Jensen Huang (NVDA)] shoves his hand UP THE US Government's ASS for his next award winning puppet show.
Thanks Steve!
@gamersnexus.bsky.social
> ...while [Jensen Huang (NVDA)] shoves his hand UP THE US Government's ASS for his next award winning puppet show.
Thanks Steve!
@gamersnexus.bsky.social
China-nexus threat groups are rapidly exploiting the critical React2Shell vulnerability (CVE-2025-55182) in React and Next.js applications, prompting immediate patching recommendations for customers running these frameworks in their own environments.
China-nexus cyber threat groups rapidly exploit React2Shell vulnerability (CVE-2025-55182)
China-nexus threat groups are rapidly exploiting the critical React2Shell vulnerability (CVE-2025-55182) in React and Next.js applications, prompting immediate patching recommendations for customers running these frameworks in their own environments.
aws-news.com
December 5, 2025 at 2:28 PM
I've been digitally categorizing my spending since the 90s. Here's weekly:
2019: $288
2022 (Jan): $341
-cutting back-
2022 (Dec): $462
2024 (Nov): $355
2025 (Nov): $448 (bare min!!)
Why? I have #Celiac Disease, which most inexpensive specialized foods are IMPORTED and taxed (tariffed) to hell.
2019: $288
2022 (Jan): $341
-cutting back-
2022 (Dec): $462
2024 (Nov): $355
2025 (Nov): $448 (bare min!!)
Why? I have #Celiac Disease, which most inexpensive specialized foods are IMPORTED and taxed (tariffed) to hell.
Americans are exposing Trump's "no inflation" lies with actual grocery receipts.
The receipts are BRUTAL.
#TrumpAffordabilityCrisis
#USDemocracy #Voices4Victory
The receipts are BRUTAL.
#TrumpAffordabilityCrisis
#USDemocracy #Voices4Victory
December 5, 2025 at 2:22 PM
I've been digitally categorizing my spending since the 90s. Here's weekly:
2019: $288
2022 (Jan): $341
-cutting back-
2022 (Dec): $462
2024 (Nov): $355
2025 (Nov): $448 (bare min!!)
Why? I have #Celiac Disease, which most inexpensive specialized foods are IMPORTED and taxed (tariffed) to hell.
2019: $288
2022 (Jan): $341
-cutting back-
2022 (Dec): $462
2024 (Nov): $355
2025 (Nov): $448 (bare min!!)
Why? I have #Celiac Disease, which most inexpensive specialized foods are IMPORTED and taxed (tariffed) to hell.
Reposted by Eric Duncan 🔵
The news article reporting the alleged ransomware attack on the Church of Scientology has been temporarily removed at the request of the organisation's representatives. It will be republished once the attack is officially confirmed or denied.
December 5, 2025 at 2:07 AM
The news article reporting the alleged ransomware attack on the Church of Scientology has been temporarily removed at the request of the organisation's representatives. It will be republished once the attack is officially confirmed or denied.
Reposted by Eric Duncan 🔵
Crucial is shutting down — because Micron wants to sell its RAM and SSDs to AI companies instead
Crucial is shutting down — because Micron wants to sell its RAM and SSDs to AI companies instead
Another blow to PC gaming.
www.theverge.com
December 3, 2025 at 7:11 PM
Crucial is shutting down — because Micron wants to sell its RAM and SSDs to AI companies instead
Reposted by Eric Duncan 🔵
I'm begging any artists still using Twitter claiming it's integral to their work to just leave. It's been revealed the site works off a made up "credit score" from hell and punishes you for posting like a normal human being.
Abandon Twitter for good. It's time. It's been time.
Abandon Twitter for good. It's time. It's been time.
December 4, 2025 at 2:44 PM
I'm begging any artists still using Twitter claiming it's integral to their work to just leave. It's been revealed the site works off a made up "credit score" from hell and punishes you for posting like a normal human being.
Abandon Twitter for good. It's time. It's been time.
Abandon Twitter for good. It's time. It's been time.
The philosophy of #golang interfaces is actually used in the reverse (but people abuse it like the quote below).
Golang interfaces are "implicit." Meaning, a type implements an interface simply by having the required methods, without any "explicit" declaration like C# requires of the consumer.
Golang interfaces are "implicit." Meaning, a type implements an interface simply by having the required methods, without any "explicit" declaration like C# requires of the consumer.
December 4, 2025 at 7:03 PM
The philosophy of #golang interfaces is actually used in the reverse (but people abuse it like the quote below).
Golang interfaces are "implicit." Meaning, a type implements an interface simply by having the required methods, without any "explicit" declaration like C# requires of the consumer.
Golang interfaces are "implicit." Meaning, a type implements an interface simply by having the required methods, without any "explicit" declaration like C# requires of the consumer.
Reposted by Eric Duncan 🔵
Objective truths are still out there. It’s just harder than ever to know what they look like.
What’s Up With That?
[StarTalk video: 15min]
www.youtube.com/watch?v=o4I_...
What’s Up With That?
[StarTalk video: 15min]
www.youtube.com/watch?v=o4I_...
How to Tell What’s Real Online
YouTube video by StarTalk
www.youtube.com
December 4, 2025 at 12:21 PM
Objective truths are still out there. It’s just harder than ever to know what they look like.
What’s Up With That?
[StarTalk video: 15min]
www.youtube.com/watch?v=o4I_...
What’s Up With That?
[StarTalk video: 15min]
www.youtube.com/watch?v=o4I_...
Reposted by Eric Duncan 🔵
A near perfect 9.9 CVE score in ASP.NET Core is out.
How much do you wager old #aspnetcore websites, like 100% all old sites ever built!!, will have it's authentication code "refactored"?
Yeah, didn't think so.
CVE-2025-55315
h/t #CyberSecurityToday
cybersecuritytoday.libsyn.com/critical-sec...
How much do you wager old #aspnetcore websites, like 100% all old sites ever built!!, will have it's authentication code "refactored"?
Yeah, didn't think so.
CVE-2025-55315
h/t #CyberSecurityToday
cybersecuritytoday.libsyn.com/critical-sec...
Cybersecurity Today: Critical Security Alerts: TikTok Malware & Europol's SIM Farm Takedown
In this episode of Cybersecurity Today, host David Shipley covers the latest developments in cyber threats and law enforcement victories. Topics include: cybercriminals using TikTok videos to dissemin...
cybersecuritytoday.libsyn.com
October 22, 2025 at 4:03 PM
A near perfect 9.9 CVE score in ASP.NET Core is out.
How much do you wager old #aspnetcore websites, like 100% all old sites ever built!!, will have it's authentication code "refactored"?
Yeah, didn't think so.
CVE-2025-55315
h/t #CyberSecurityToday
cybersecuritytoday.libsyn.com/critical-sec...
How much do you wager old #aspnetcore websites, like 100% all old sites ever built!!, will have it's authentication code "refactored"?
Yeah, didn't think so.
CVE-2025-55315
h/t #CyberSecurityToday
cybersecuritytoday.libsyn.com/critical-sec...
A new StealC malware campaign targets #Blender creators.
Tainted ".blend" files can auto-run Python embedded within them, which is enabled by default in older versions of
@blender.org.
Next time Blender asks you to "Migrate Settings", say no.
h/t @technewsday.bsky.social #CyberSecurityToday
Tainted ".blend" files can auto-run Python embedded within them, which is enabled by default in older versions of
@blender.org.
Next time Blender asks you to "Migrate Settings", say no.
h/t @technewsday.bsky.social #CyberSecurityToday
Cybersecurity Update: Incorrect Company Naming, Major Breaches, and New Malware Campaigns
YouTube video by Tech Newsday
www.youtube.com
December 4, 2025 at 6:33 PM
A new StealC malware campaign targets #Blender creators.
Tainted ".blend" files can auto-run Python embedded within them, which is enabled by default in older versions of
@blender.org.
Next time Blender asks you to "Migrate Settings", say no.
h/t @technewsday.bsky.social #CyberSecurityToday
Tainted ".blend" files can auto-run Python embedded within them, which is enabled by default in older versions of
@blender.org.
Next time Blender asks you to "Migrate Settings", say no.
h/t @technewsday.bsky.social #CyberSecurityToday
ALERT: #NODEJS WEBSITES ARE MOST LIKELY COMPROMISED BY #Shai-Hulud malware - and most devs have no idea.
"Blindly pushing updates from NPM is no longer safe."
Horrible infosec leads to infections of 500+ of popular packages.
h/t @technewsday.bsky.social
#CyberSecurity #CyberSecurityToday
"Blindly pushing updates from NPM is no longer safe."
Horrible infosec leads to infections of 500+ of popular packages.
h/t @technewsday.bsky.social
#CyberSecurity #CyberSecurityToday
Cybersecurity Update: Incorrect Company Naming, Major Breaches, and New Malware Campaigns
YouTube video by Tech Newsday
www.youtube.com
December 4, 2025 at 6:24 PM
ALERT: #NODEJS WEBSITES ARE MOST LIKELY COMPROMISED BY #Shai-Hulud malware - and most devs have no idea.
"Blindly pushing updates from NPM is no longer safe."
Horrible infosec leads to infections of 500+ of popular packages.
h/t @technewsday.bsky.social
#CyberSecurity #CyberSecurityToday
"Blindly pushing updates from NPM is no longer safe."
Horrible infosec leads to infections of 500+ of popular packages.
h/t @technewsday.bsky.social
#CyberSecurity #CyberSecurityToday
In #CyberSecurityToday...
The latest corruption is the SEC ending its long-standing case against #SolarWinds and their CISO Tim Brown.
FCC reverses ALL cybersecurity mandates originally set after the #SaltTyphoon hacks. WTAF?!
h/t @technewsday.bsky.social
#CyberSecurity
The latest corruption is the SEC ending its long-standing case against #SolarWinds and their CISO Tim Brown.
FCC reverses ALL cybersecurity mandates originally set after the #SaltTyphoon hacks. WTAF?!
h/t @technewsday.bsky.social
#CyberSecurity
Checkout.com Takes a Bold Stance, SolarWinds Case Dismissed, and FCC Reverses Mandate
YouTube video by Tech Newsday
www.youtube.com
December 4, 2025 at 5:56 PM
In #CyberSecurityToday...
The latest corruption is the SEC ending its long-standing case against #SolarWinds and their CISO Tim Brown.
FCC reverses ALL cybersecurity mandates originally set after the #SaltTyphoon hacks. WTAF?!
h/t @technewsday.bsky.social
#CyberSecurity
The latest corruption is the SEC ending its long-standing case against #SolarWinds and their CISO Tim Brown.
FCC reverses ALL cybersecurity mandates originally set after the #SaltTyphoon hacks. WTAF?!
h/t @technewsday.bsky.social
#CyberSecurity
Reposted by Eric Duncan 🔵
The boats the regime is claiming are going from Venezuela to the US would need to refuel over 20 times to get to Miami.
They are lying to us.
They are lying to us.
December 3, 2025 at 5:40 PM
The boats the regime is claiming are going from Venezuela to the US would need to refuel over 20 times to get to Miami.
They are lying to us.
They are lying to us.
What's the effect of corrupting a US federal agency with anti-science & anti-vax leadership?
The policies they release are seen as untrustworthy for other countries to follow and rightfully treated as outright lies and profiteering.
(The British Medical Journal is protesting the use of the FDA)
The policies they release are seen as untrustworthy for other countries to follow and rightfully treated as outright lies and profiteering.
(The British Medical Journal is protesting the use of the FDA)
UK fast track drug approval system risks “outsourcing critical judgment” buff.ly/IZZBr8L
www.bmj.com
December 4, 2025 at 5:21 PM
What's the effect of corrupting a US federal agency with anti-science & anti-vax leadership?
The policies they release are seen as untrustworthy for other countries to follow and rightfully treated as outright lies and profiteering.
(The British Medical Journal is protesting the use of the FDA)
The policies they release are seen as untrustworthy for other countries to follow and rightfully treated as outright lies and profiteering.
(The British Medical Journal is protesting the use of the FDA)