kiding 🧑‍💻

Help us test WEBCAT alpha Web applications are only as trustworthy as the servers that serve them, and servers can get hacked. So, last year, we introduced WEBCAT (Web-Based Code Assurance and Transparency), a project designed...

Web applications are only as trustworthy as their servers, and servers can get hacked. That’s why we are introducing WEBCAT, which lets web browsers verify the origin of code before it runs.

🌞 Today, WEBCAT enters alpha testing! If you like to experiment with cutting-edge software, give it a try:

YouTube video by 한국닌텐도 공식 채널 Indie World 2026.3.3

개발자 인터뷰 2:15

한국 게임 개발 스튜디오 드림모션이 제작한 "마이 리틀 퍼피"가 3월 3일 닌텐도 인디 월드에서 소개되었습니다.

오... 진짜 나찌나 할 소리를

Forced to choose between "Oops, I was being evil" and "Oops, I was being stupid," Sam Altman has gone with "stupid."

if you’re cis and you don’t get it this is LITERAL TORTURE

it will result in dead trans people

and with their other goal of making us “sexually explicit” for existing

you see the pipeline right?

we exist -> we’re jailed for it -> we’re tortured and die

WE NEED YOU TO STOP THIS

Hacktivists claim to have hacked Homeland Security to release ICE contract data | TechCrunch A hacking group called Department of Peace said they hacked a specific office within Homeland Security to protest ICE’s mass deportation campaign, and the companies aiding it.

NEW: A group of hacktivists calling themselves "Department of Peace" claims to have hacked an office wihin the Department of Homeland Security.

The hacktivists leaked data on more than 6,000 contracts between DHS/ICE and private companies to the transparency website Distributed Denial of Secrets.

they will tell you that they need to do regime change iran to liberate the women, and while you docilely repeat their propaganda they will bomb a girls school in broad daylight and laugh at how much contempt they have for you for buying their lies

The first deaths announced from the US-Israeli strikes on Iran: dozens of school girls. They hit an elementary school in Hormozgan.

직장인이고 동료가 있는 "대다수"에게는 이미 웬만한 검진기관에서 돈 더 받고 대장내시경 하고 있다는 정보 정도는 기본값인데, 그런 환경이 아닌 삶을 사는 사람들에게는 이상하게 느껴질 수도 있겠다는 생각이 들기는 한다. 놓치는 것 없이 보편적인 사람에게 꼼꼼히 정보를 전달하고 설명하는 것이 언론의 역할이겠으나 한국 언론은 그 책임을 완전히 놓아버린지 오래. 클릭질 장사만을 위해 클릭베이트 헤드라인을 뽑아내고 숏폼마냥 스쳐지나가며 소비되는 지형에서 미디어 리터러시니 독자가 교차검증하라 해서 무엇하겠나. 뿌리부터 언론개혁이 필요하다.

서울경제 헤드라인인데 국가건강검진을 한번이라도 받아본 사람이라면 건강검진 항목 하나 더 추가되는 걸로 이해하지만, 문장만 떼서 읽으면 굉장히 이상하게 이해될 수도 있겠다. 내용은 건강검진시 기존 50세 이상 분변잠혈검사 대신 45세 이상 10년 주기 대장내시경으로 전환한다는 얘기라 의료(정확히는 검진) 시스템에 부담될 것도 없다. 정책브리핑 공식 워딩은 "권고"인데 서울경제가 또 "경제지" 하면서 무슨 병역의무마냥 갈겨놨고. 국가검진은 여러가지 사유로 대상자 제외신청도 가능하니 사실 어떤 면에서든 좋은 변화인데 한국 언론은 도대체.

Does any human being understand YouTube recommendation engine?

This App Warns You if Someone Is Wearing Smart Glasses Nearby The creator of Nearby Glasses made the app after reading 404 Media's coverage of how people are using Meta's Ray-Bans smartglasses to film people without their knowledge or consent. “I consider it to ...

NEW: A hobbyist has created Nearby Glasses, an app that warns you if someone close by is wearing smart glasses. 404 Media spoke to the creator who said he was inspired by our coverage that uncovers how men are wearing Meta's Ray-Bans to covertly film massage parlor workers.

Reverse CAPTCHA: Evaluating LLM Susceptibility to Invisible Unicode Instruction Injection

Previously harmless Google API keys now expose Gemini AI data Google API keys for services like Maps embedded in accessible client-side code could be used to authenticate to the Gemini AI assistant and access private data.

Google API keys for services like Maps embedded in accessible client-side code could be used to authenticate to the Gemini AI assistant and access private data.

We found that Wi-Fi client isolation can often be bypassed. This allows an attacker who can connect to a network, either as a malicious insider or by connecting to a co-located open network, to attack others.

NDSS'26 paper: www.ndss-symposium.org/wp-content/u...
GitHub: github.com/vanhoefm/air...

LLMs killed the privacy star, we can't rewind, we've gone too far You'll find these days that there's no hiding place Add privacy to the list of potential casualties caused by the proliferation of AI, because researchers have found that large language models (LLMs) can be used to deanonymize internet users – even those who use pseudonyms – more efficiently than human sleuths.…

LLMs killed the privacy star, we can't rewind, we've gone too far

FBI agents visited my home about an article I wrote, and now I can't go to Mexico Mexico formally requested the FBI's help in seeking answers about one of my stories. Having federal agents on my doorstep sparked my own years-long effort to pry information out of the FBI to explain ...

In 2020, the FBI came to my house to try to ask me questions about a story I'd written. I declined.

For this.weekinsecurity.com, I wrote about the back-story of what happened that day and after, my outstanding questions, and why press freedoms have taken a major step back under Trump's second term.

> 고양이 알레르기 심하면 뭐 얼마나 심하다고.
저를 현실에서 보신 분은 아시겠지만 삶의 질 추락이 굉장하죠. 위에서 언급한 그 동료는 고양이 샤워시켜 주다가 아나필락시스가 두번 정도 와서 실려갔었습니다. 현재는 비염이 천식으로 발전해서 스테로이드 흡입기 들고 다니고.

본인은 고양이···를 집에서 키우는 회사 동료···가 어제···앉아 있던 의자···옆 의자에 앉는 정도로도 알레르기가 심하게 올라와서 이건 반기기 좀 어려운 결정. 반려동물 동반 출입업소 붙어있는 곳은 그냥 피하면 그만일 수 있지만, 다른 이유로 가고 싶었던 곳이거나 다른 선택지가 없는 곳이라면. 반려동물 인구가 증가추세이니 어느 정도 이해가 되지 않는 것은 아니지만, 누군가는 커피를 마시러 갔다가 이유도 모른채 하루이틀 죽어있어야 하는 것인지. 아, 저도 고양이 정말 좋아하는데요...

@atp.fm

No mention in documents, no easy workaround, just an obscure Console message. A viable workaround is to abandon IOHID all together for CGEventTap. I'm not sure what the point of this is when 1) user explicitly allowed the app to grab keyboard inputs 2) OS disallows it *only* for internal keyboards?

Karabiner Elements stops working on internal keyboard on MacOS 26.4 beta 1 · Issue #4402 · pqrs-org/Karabiner-Elements It shows no errors, just stops working. Probably not a karabiner issue since it was working before, but I wanted to warn.

With macOS 26.4 beta, Apple silently introduced a "protection" for internal keyboards, breaking ALL keyboard-related applications making use of IOHID: Karabiner-Elements, Katana, and my own SokIM.

Goodbye innerHTML, Hello setHTML: Stronger XSS Protection in Firefox 148 – Mozilla Hacks - the Web developer blog Cross-site scripting (XSS) remains one of the most prevalent vulnerabilities on the web. The new standardized Sanitizer API provides a straightforward way for web developers to sanitize untrusted…

The Sanitizer API landed in Firefox 148, along with element.setHTML().

This lets you fully configure how HTML strings are cleaned as they're parsed.

hacks.mozilla.org/2026/02/good...

Donald Trump’s ‘Board of Peace’ explores stablecoin for Gaza Proposal to launch cryptocurrency pegged to US dollar comes after cash supply was decimated during Israeli offensive

Officials advising Donald Trump’s “Board of Peace” are exploring a US dollar-backed crypto stablecoin for Gaza.

According to the Financial Times, this crypto concept is in an exploratory phase, but it could spell the rebuilding of Gaza being tied to a crypto experiment.

www.ft.com/content/cf4f...

Hackers Expose Age-Verification Software Powering Surveillance Web Three hacktivists tried to find a workaround to Discord’s age-verification software. Instead, they found its frontend exposed to the open internet.

Hacktivists tried to find a workaround to Discord’s age-verification software, Persona. Instead, they found its frontend exposed to the open internet, and that was just the beginning.

www.therage.co/persona-age-...

i mean like so many people outside the US are forced to learn American English + politics + culture just for survival… the sentiment is understandable in my head yet sometimes not