cm0002

joined 2 years ago
MODERATOR OF
 

AP spoke to the two contractors for UG Solutions, an American outfit subcontracted to hire security personnel for the distribution sites. They said bullets, stun grenades and pepper spray were used at nearly every distribution, even if there was no threat.

In one video, what appear to be heavily armed American security contractors at one of the sites in Gaza discuss how to disperse Palestinians nearby. One is heard saying he has arranged for a “show of force” by Israeli tanks.

“I don’t want this to be too aggressive,” he adds, “because this is calming down.” At that moment, bursts of gunfire erupt close by, at least 15 shots. “Whoo! Whoo!” one contractor yelps. “I think you hit one,” one says. Then comes a shout: “Hell, yeah, boy!”

 

Hehe nice

 
 

European authoritarians and their enablers in the media are misrepresenting GrapheneOS and even Pixel phones as if they're something for criminals. GrapheneOS is opposed to the mass surveillance police state these people want to impose on everyone.

https://www.xatakandroid.com/sociedad/cada-vez-que-vemos-google-pixel-pensamos-que-puede-ser-narcotraficante-movil-perfecto-para-crimen-sencilla-razon

There are ongoing coordinated attempts at misleading people about GrapheneOS and Signal in multiple European countries. A consistent pattern are completely unsubstantiated claims about exploits with no evidence. These are contradicted by actual evidence, leaks and their behavior.

GrapheneOS is not immune to exploitation, but the fearmongering done in these ongoing attacks on it is very clearly fabricated. They feel threatened enough by GrapheneOS to engage in coordinated attempts at convincing people that it's unable to protect their privacy and security.

GrapheneOS eliminates many classes of remotely exploitable vulnerabilities and makes the vast majority far harder to exploit. It even puts up a strong fight against attacks advanced forensic data extraction tools with physical access. See https://discuss.grapheneos.org/d/14344-cellebrite-premium-july-2024-documentation for an example.

There's currently an example of one of these attacks on the project ongoing across Swedish forums and social media. This reached our forum at https://discuss.grapheneos.org/d/23535-unsubstantiated-claims-about-sweden-exploiting-grapheneos-with-no-evidence. An account pretending to be just asking questions goes on to pretend to be an expert citing non-existent sources.

This same thing is currently ongoing across several Swedish forums and on social media. It's generally not in English which makes it inaccessible to the broader GrapheneOS and privacy community so they can get away with extraordinary, unsubstantiated claims much more easily.

GrapheneOS is not supposed to stop people installing malware and granting it invasive permission. It does provide alternatives to being coerced into granting invasive permissions by apps via our Storage Scopes, Contact Scopes and other permissions, but it's a user choice.

GrapheneOS similarly not supposed to prevent authorized access to data by someone with the PIN/password and access to the device. Rather, we provide far stronger protection against unauthorized access via exploit protections, 2-factor fingerprint unlock, duress PIN/password, etc.

Our features page at https://grapheneos.org/features provides an overview of how GrapheneOS improves privacy, security and other areas compared to the most secure Android devices running the stock OS. It's not immune to exploitation and cannot be. Products making that claim are scams.

Not being immune to exploitation doesn't mean it can be successfully exploited in a given real world scenario. It's significantly harder to develop and deploy an exploit successfully. It can be exploited, but it doesn't mean it is happening especially at scale or consistently.

Having far from perfect security does not mean real world attacks including sophisticated ones will be successful in practice. Don't fall for security nihilism propaganda. We'll keep working on advancing security for general purpose computing devices. It will keep getting better.

 

https://bsky.app/profile/iceblock.app/post/3lmzykc7rb42d

Apple stores which devices/users install which apps. They have the device IDs. US government could obtain a list of people who installed the app if a court authorized it. Not clear what they mean by having to store device IDs. Those IDs aren't accessible to Android apps.

ANDROID_ID is a per-app-per-profile random ID. Not clear why they would need it. Android has privacy-preserving hardware-based attestation if they're talking about making it harder to spoof a location. Can't prevent either iOS or Android users making false reports via attestation APIs regardless.

https://bsky.app/profile/iceblock.app/post/3lswryqarlk2l

Making posts with inaccurate technical claims about Android doesn't inspire confidence. It's a closed source app with a closed source service fully under their control. Why is that the approach if their goal is helping people rather than monetizing interest in it?

https://bsky.app/profile/iceblock.app/post/3lpewifycls27

Apple records which apps people install and requires an account to use their app store. Apple Push Notification Service (APNs) has comparable privacy to Firebase Cloud Messaging (FCM). However, iOS apps must use APNs for push while Android apps do not have to use FCM.

Android apps can implement their own push service or allow the user to choose a service via the UnifiedPush framework. Play Store has a policy of requiring FCM for most use cases for battery reasons but there are exceptions. Unlike iOS, Android allows installing apps from other app stores / sources.

ICEBlock app is very clearly misleading people about privacy and their safety. Apple has a list of which accounts/devices have installed the app. They will provide it to the US government if they receive a court order. FCM is also not less private than APNS and FCM doesn't work the way they claim.

iPhones have good overall privacy and security but Apple does collect telemetry, forces people to have accounts and knows which apps each user/device has installed. They do not have magical privacy and security properties. An app like this claiming iOS gives them 100% anonymity is very strange.

iOS has significantly worse support for VPNs than Android and requires using Apple services. Android exists without Google services and people can install apps from elsewhere. The mandatory or effectively mandatory services on Google Mobile Services devices and iOS have comparable privacy.

[–] cm0002@lemmy.world 1 points 6 hours ago

I'd say this is lost, while I can seemingly find other languages pretty easily, the Serbian dub specifically I've come up empty for as well

It's fairly common for a specific language of multi-language release content to be missing. Especially when it's outside of the mainstream languages like English, Spanish, Japanese etc.

I would suggest making a post over at https://forums.lostmediawiki.com/ as well to get more eyeballs on it

 

Tags:

  • 2025070100 (Pixel 6, Pixel 6 Pro, Pixel 6a, Pixel 7, Pixel 7 Pro, Pixel 7a, Pixel Tablet, Pixel Fold, Pixel 8, Pixel 8 Pro, Pixel 8a, Pixel 9, Pixel 9 Pro, Pixel 9 Pro XL, Pixel 9 Pro Fold, Pixel 9a, emulator, generic, other targets)

Changes since the 2025063000 release:

  • Exynos 5400 modem Pixels (Pixel 9, Pixel 9 Pro, Pixel 9 Pro XL, Pixel 9 Pro Fold): temporarily disable hardened_malloc and hardware memory tagging for shared_modem_platform executable due to an upstream write-after-free bug
  • Launcher: fix upstream bug causing a crash for the interface to add lockscreen widgets (currently a tablet only feature until Android 16 QPR1)
  • Vanadium: update to version 138.0.7204.63.0
  • add debug build functionality for toggling off hardened_malloc usage for vendor processes to make narrowing down issues quicker
[–] cm0002@lemmy.world 5 points 9 hours ago

Just as the prophecy foretold!

[–] cm0002@lemmy.world 19 points 9 hours ago

It's not, the needles or whatever are way to consistent, even in the darker areas. AI would have fucked all that up

Also, it's a basement well window, I have one of these as well. So OP would be standing on the side of the window in his house and the pinecone is on the other side in the fire escape well

Think of it like looking into a really big terrarium

[–] cm0002@lemmy.world 5 points 10 hours ago

Lol yea, because constantly spreading Russian propaganda like Ukraine being a Nazi regime or NK actually being really good and definitely not a brutal dictatorship is totally healthy for the Fediverse LMAO

[–] cm0002@lemmy.world 4 points 13 hours ago

While bozos on Nextdoor and elsewhere continually screech that they must be "up to something," and "where are the parents?" and other NIMBY horseshit.

One of the main reasons I maintain a ND account, to tell these NIMBY types to STFU and let kids be kids LMAO

In my area though, ND is fairly balanced, so once I start commenting that in a post, others usually join in lol

[–] cm0002@lemmy.world 14 points 15 hours ago

This has..... Meme potential hmmm

[–] cm0002@lemmy.world 12 points 17 hours ago* (last edited 17 hours ago) (1 children)

It's the age of the gig economy, I gotta have multiple side hustles going! Lmao

[–] cm0002@lemmy.world 16 points 18 hours ago

Interesting, I actually just adjust the volume knob on my desktop speakers so I didn't think of this when I wrote the meme.

But now I kinda wanna see if I can hijack this monitoring it does and fake 100% volume to the application at all times...hmm welp to the mile long project list it goes!

[–] cm0002@lemmy.world 5 points 18 hours ago (2 children)

PieFed! I'm more attached to Boost than the underlying server software anyways, so if it ever gets PieFed support I'll be leaving for that

[–] cm0002@lemmy.world 20 points 18 hours ago (1 children)
[–] cm0002@lemmy.world 15 points 18 hours ago (3 children)

Lol, lmao even! Hey, anyways I still haven't gotten my paycheck, do you have the number for CIA HR?

[–] cm0002@lemmy.world 2 points 18 hours ago* (last edited 18 hours ago)

Try to pivot to contract/consulting IT work, it's more of a PITA because you have to take care of things like health insurance on your own, but it might be a tad easier to pick up work that way since companies are always more willing to drop a grand or 2 here and there over hiring someone that needs commitment, benefits, support, training etc.

view more: next ›