[09:22] schestowitz[09:22] schestowitzJacquard looms are complex machines with many moving parts, but the accessible design extends to the electronic components and actuators. SPEERLoom requires 40 linear actuators and an Arduino Mega 2560 board controls those through MCP23017 I2C port expanders and 40 EasyDriver modules. A custom GUI written in Python lets users send weave patterns, stored as CSV files, to the Arduino to get the p [09:22] schestowitz rocess started.
[09:22] schestowitz
[12:13] schestowitz[12:13] schestowitzThe EU Cyber Resilience Act (CRA) proposal aims to make products containing software and the software itself more secure. EDRi member Vrijschrift Foundation endorses this objective, but argues in a letter to Dutch Parliament that if the CRA is adopted in its present form it would seriously harm the open source ecosystem and the competitiveness of the European economy.
[12:13] schestowitzEU Council and Parliament have decided to fast-track the legislative process.
[12:13] schestowitz
[13:02] schestowitz[13:02] schestowitzThere is a version of pledge ported to linux. Using that, I can make a go module, which should work anywhere. Well, it will work on OpenBSD, mostly work on Linux, and cheerfully pretend to work everywhere else. Good enough.
[13:02] schestowitzThe trick is we need to integrate this into gos build process, without wrangling with another libc on the system.
[13:02] schestowitz
[13:27] schestowitz[13:27] schestowitzThe City of Philadelphia has revealed that the information of certain individuals was stolen in a cyberattack earlier this year.
[13:27] schestowitzThe malicious activity, the city says in an incident notification (PDF) on its website, was initially identified on May 24, and involved its email environment.
[13:27] schestowitz
[13:29] schestowitz[13:29] schestowitzVirtualization technology powerhouse VMware is calling urgent attention to a critical remote code execution flaw haunting its vCenter Server and VMware Cloud Foundation products.
[13:29] schestowitzThe company said the vulnerability, tagged as CVE-2023-34048, allows a malicious hacker with network access to launch remote code execution exploits.
[13:29] schestowitz
[13:30] schestowitz[13:30] schestowitzA new report from G Data Software Tuesday about a recent attack using malware-laced Facebook ads shows how it can happen and the depths of the danger, and it offers some suggestions on potentially how to avoid future situations.
[13:30] schestowitzThe report describes the takeover of a business account. Instead of creating accounts themselves and risking a block on their own accounts, criminals hijack other peoples business accounts for their own purposes, wrote Tim Berghoff, a security evangelist with the company. He documented the numerous steps involved in the attack G Data witnessed on a marketing agency that took place in [13:30] schestowitz July.
[13:30] schestowitz