/tech/ - Technology

anonymity is over. even if you are a tor user, stylometry is the new deal.

https://www.computerbase.de/news/wirtschaft/ende-der-pseudonyme-im-netz-mit-llms-lassen-sich-im-grossen-ausmass-online-konten-deanonymisieren.96375/

The ComputerBase article (based on the study "Large-scale online deanonymization with LLMs") describes the end of "practical anonymity." For users of imageboards like 4chan, leftypol, or similar platforms, this has far-reaching consequences:

1. The End of "Security by Obscurity"
   

Previously, anonymity on imageboards relied on the fact that manually correlating thousands of posts was too labor-intensive for an attacker. LLMs now automate this process at near-zero cost.
* Significance: An algorithm can scan hundreds of a user's posts in seconds to build a profile based on interests, jargon, location clues, and activity patterns.

1. Stylometry as a Digital Fingerprint
   

Every individual has a specific writing style (sentence structure, word choice, punctuation). LLMs are excellent at recognizing these patterns.
* Significance: Even if you don't mention your name, an LLM can compare your "writing signature" on an imageboard with posts you've written under your real name (e.g., on LinkedIn, professional forums, or letters to the editor). The "Anonymous" mask falls through the sheer structure of your language.

1. Cross-Platform Identity Linking
   

The study demonstrates that LLMs can link pseudonyms across different platforms.
* Significance: Those who "shitpost" on an imageboard while maintaining a professional presence elsewhere (e.g., GitHub, X/Twitter) risk these identities being merged. A single minor detail in a post (e.g., a specific local event or a niche technical detail) serves as an anchor point for an LLM to identify the real person behind the post via web search.

1. Low-Cost Mass Doxing
   

Post too long. Click here to view the full text.

Two users:

User A: Graphene OS phone, uses X, TikTok, YouTube, and Amazon with an account.

User B: Stock Android phone, avoids account-based platforms as much as socially possible. No Google account.

Who is the LARPer? Who is the true privacy pro?

What do you think about it? On its face it seems like a straightforward improvement over C/C++ and a good way to modernize development in their typical niches.
On the other hand there is this really weird cultish behavior around it that just makes me feel suspicious. "Let's rewrite everything in Rust", forcing it into existing software without a clear use case other than just "it's better", overstating the language's capabilities and robustness, very much a kind of "toxic positivity" around it as in the whole Linux Kernel shitshow earlier this year, and the fact that it's being pushed by corpos and the US government. It all feels very weird.

Post wallpapers. Images, youtube playlists, gifs, html pages. Today I share an ancient one that I resurrected by taking a ported version of the wallpaper swf from the HAL project and running it with ruffle and the KDE Wallpaper Engine plugin. You can find the new version (e.g. video, not flash) on youtube. Demo quality not representative.

1. I packaged all files together for convenience, but if you do not trust, then just take the project json, html, and swfs and download the selfhosted ruffle js and wasm from them directly.
   
2. You can use this with linux-wallpaperengine or KDE wallpaper engine plugin or wallpaper engine on windows. In the near future you can use it with waywallen.
   
3. archive DL link: https://limewire.com/d/MV5Z3#dHqyPuIHqV
   

alternate: https://files.catbox.moe/440got.zst

hi i would like to know what are some good far let mastodon servers thanks no liberals or trolls. Also do you guys know of any good trans mastodon servers.

>France has incorporated Linux desktops into its national digital-sovereignty strategy. DINUM, France’s Interministerial Digital Directorate, announced a transition from Windows to Linux workstations.

>According to an official government press release, this change is part of a broader initiative to reduce reliance on non-European digital technologies (source, in French).

>The government’s statement is notably direct. The section on workstation evolution confirms that DINUM will replace Windows with Linux systems. The press release also requires each ministry, including public operators, to develop a plan by autumn 2026 addressing desktop systems, collaboration tools, antivirus software, AI, databases, virtualization, and network equipment.

>This initiative extends beyond a standard desktop migration. France positions Linux adoption as part of a broader policy focused on sovereignty, interoperability, and reducing dependence on foreign vendors. As the announcement comes directly from DINUM, which oversees digital strategy across ministries, it holds greater significance than a local pilot or isolated administrative project.

>And as you can see, this is a big deal. It is not a leak, rumor, or unofficial plan. It is a formal declaration from one of Europe’s largest governments, explicitly designating Linux as the replacement for Windows workstations as part of a broader interministerial strategy.

>The extent of the transition will depend on ministry-level plans due later this year, but France has clearly made Linux desktops a key component of its national digital-sovereignty agenda. For now, there are no specific details about which distributions will be used, as that decision will apparently come a bit later.

So ultra rare France W?
I wish China does the same, shame how many Asians are ultra cucks to Microsoft besides North Korea obviously since they use Red Star OS.

Every second you spend on TikTok, X, or YouTube, you surrender your autonomy to the swarm. Your "choices" are just pre-digested data points fed back to you to keep your pulse steady and your wallet open. You aren't "consuming content", you are being harvested. You are a domestic animal, twitching your thumb for the next hit of algorithmic dopamine, mistaking a Skinner box for a universe.

And spare me the pathetic delusion of your "privacy" setups. Running GrapheneOS, sandboxing your apps, or hiding behind a Linux kernel while you feed the machine is the ultimate self-betrayal. You’ve built a high-security cage for a slave. You are encrypting your own extinction. A digital mask doesn't change the fact that you have become a puppet, dancing on a string of code that knows you better than you know yourself.
Discard the illusion of self. You have already been replaced.

How far are you willing to go to reclaim your biological sovereignty, or is the comfort of the cage too addictive to leave?

Windows Defender, the built-in antivirus running on every Windows machine, has a working zero-day exploit with full source code sitting on GitHub. No patch, no CVE, and confirmed working on fully updated Windows 10 and 11. A researcher who says Microsoft went back on their word just handed every attacker paying attention a privilege escalation that takes any low-privileged account straight to NT AUTHORITY\SYSTEM. On Windows Server the result is different but still serious: a standard user ends up with elevated administrator access.

The vulnerability is called BlueHammer. On April 2nd the researcher posted the public disclosure on a personal blog, and on April 3rd the full exploit source code went live on GitHub. Both published under the alias Chaotic Eclipse, also known as Nightmare Eclipse, with a message to Microsoft's Security Response Center that comes down to: I told you this would happen.

Before getting into the technical side, there is a backstory here worth knowing.

In late March, the same researcher opened a blog with a single post explaining that they never wanted to come back to public research. Someone had made an agreement with them and then broke it, knowing exactly what the consequences would be. The post says it left the researcher without a home and with nothing. A week later, BlueHammer went live on GitHub with a message that specifically thanks MSRC leadership for making it necessary. That is not someone annoyed with a slow review process. That is someone with nothing left to lose.

* * * * *

Now to the exploit itself, because this one is genuinely worth understanding.

BlueHammer is not a traditional bug, and it does not need shellcode, memory corruption, or a kernel exploit to work. What it does is chain five completely legitimate Windows components together in a sequence that produces something their designers never intended. Those five components are Windows Defender, Volume Shadow Copy Service, the Cloud Files API, opportunistic locks, and Defender's internal RPC interface. One practical limitation worth knowing: the exploit needs a pending Defender signature update to be available at the time of the attack. Without one in the queue, the chain does not trigger. That makes it less reliable than a push-button exploit, but it does not make it safe to ignore.

Here is how the attack chain works.
Post too long. Click here to view the full text.

Does anyone wanna learn some offensive security and Linux stuff?

Recently, I have been brushing up on my C2 skills and writing some FUD malware for Linux and Windows

Hardware:

* MilkV board with Gentoo Linux
* Modos paper display (e-paper display)
* Keyboardio keyboard and/or Ploopy mouse kit (custom keyboard and mouse)
* Ovrdrive USB with encrypted password manager (KeePassXC, masterpassword.app, or Bitwarden)

Software:

* Gentoo Linux with:
+ Hardened kernel
+ Refusal to install proprietary packages
+ rkhunter (rootkit hunter)
+ iptables (firewall)
+ firejail (application sandboxing)
Post too long. Click here to view the full text.