Tootfinder

A post from the archive 📫:
Invalid Access to memory location in KUDU App Services
https://www.poppastring.com/blog/invalid-access-to-memory-location-in-kudu-app-services

"Open Access and Citation Impact: Modality, Funding, Publisher, and Disciplinary Trends at the University of Kentucky" #OpenAccess

State Protects Life-Saving Immunization Access for Illinoisans
https://chicagocrusader.com/state-protects-life-saving-immunization-access-for-illinoisans/

Fed Lost Access to Private Jobs Data Ahead of Government Shutdown (Nick Timiraos/Wall Street Journal)
https://www.wsj.com/economy/central-banking/fed-lost-access-to-private-jobs-data-ahead-of-government-shutdown-95225bd4?st=X3jCUU&reflink=desktopwebshare_permalink
http://www.memeorandum.com/251022/p118#a251022p118

Sources: the US FDA's AI tool Elsa has fabricated nonexistent studies, misrepresented research, and cannot access relevant documents to assist with review work (Sarah Owermohle/CNN)
https://cnn.com/2025/07/23/politics/fda-ai-elsa-drug-regulation-makary

FDA’s artificial intelligence is supposed to revolutionize drug approvals. It’s making up studies
Insiders tell CNN the FDA’s AI is “hallucinating” studies and can’t access key documents. Agency leaders insist the AI is getting better, and use is not mandatory.

Officials in a large North Texas county decided this week to cut more than 100 Election Day polling sites -- and reduce the number of early voting locations,
amid growing concern about GOP efforts to limit voting access ahead of next year’s midterm elections.
The 3-2 vote on Tuesday by commissioners in Tarrant County, 💥which includes Fort Worth,
came one day after Donald Trump vowed to end the use of mail-in ballots.
The president lacks the unilateral power to decid…

A Texas County Cuts Over 100 Polling Sites as Trump Attacks Mail-In Voting Nationally
The decision by commissioners in Tarrant County, which includes Fort Worth, comes amid growing concern about GOP efforts to limit voting access ahead of next year’s midterm elections.

AI Agent Access (A\^3) Network: An Embodied, Communication-Aware Multi-Agent Framework for 6G Coverage
Han Zeng, Haibo Wang, Luhao Fan, Bingcheng Zhu, Xiaohu You, Zaichen Zhang
https://arxiv.org/abs/2509.18526

Big feature!
From: @…
https://infosec.exchange/@fabian_bader/115073468167462730

Fabian Bader (@fabian_bader@infosec.exchange)
Attached: 1 image Token Protection in Microsoft Entra Conditional Access for Windows is now GA! 🎉 #EntraID #Token https://learn.microsoft.com/en-us/entra/identity/conditional-access/concept-token-protection

"Can This #OpenAccess Publishing #Platform Attract Researchers’ Attention?"

Slow Fluid Antenna Multiple Access with Multiport Receivers
Jos\'e P. Gonz\'alez-Coma, F. Javier L\'opez-Mart\'inez
https://arxiv.org/abs/2507.17505 https://

Slow Fluid Antenna Multiple Access with Multiport Receivers
We investigate whether equipping fluid-antenna (FA) receivers with multiple ($L>1$) radiofrequency (RF) chains can improve the performance of the slow fluid-antenna multiple access (FAMA) technique, which enables open-loop connectivity with channel state information (CSI) available only at the receiver side. We analyze the case of slow-FAMA users equipped with multiport receivers, so that $L$ ports of the FA are selected and combined to reduce interference. We show that a joint design of the po…

the "i am routinely looking at access logs of the static file server for purposes of development" version of "someone's talking about me, my ears are burning!":
someone (no idea who or where) posted a link to https://glasgow-embedded.org/latest/conduct.html

A Virtual Quantum Network Prototype for Open Access
Raj Kamleshkumar Madhu, Visuttha Manthamkarn, Zheshen Zhang, Jianqing Liu
https://arxiv.org/abs/2507.17495 https://

A Virtual Quantum Network Prototype for Open Access
The rise of quantum networks has revolutionized domains such as communication, sensing, and cybersecurity. Despite this progress, current quantum network systems remain limited in scale, are highly application-specific (e.g., for quantum key distribution), and lack a clear road map for global expansion. These limitations are largely driven by a shortage of skilled professionals, limited accessibility to quantum infrastructure, and the high complexity and cost associated with building and operat…

Sources: Visa shut down its open-banking business in the US amid regulatory uncertainty; the unit provided tools to help fintechs access customer-account data (Paige Smith/Bloomberg)
https://www.bloomberg.com/news/articles/2025-…

There's a popular "digital rights" perspective that turns "not having kids on social media before 14 or 16" into a binary. That allows to make this a thing about overreach and censorship and all that. In combination with the complexities of ensuring access/restrictions it builds a great straw man.
But I do totally think that just throwing kids into general social media (think Instagram, TikTok but also Bluesky or Mastodon) is harmful to them and is just us older…

Two Years After Cormac McCarthy's Death, Rare Access to His Personal Library Reveals the Man Behind the Myth
https://www.smithsonianmag.com/arts-culture/two-years-cormac-mccarthys-death-rare-access-to-personal-library-reveals-man-behind-myth-180987150/
One my favorite articles I've ever read, beautiful.

Every now and then I check my #Google account quota (https://drive.google.com/drive/u/0/quota) to make sure its not pulling any sneaky shit like automatically uploading my

Locking Down Science Gateways
Steven R Brandt, Max Morris, Patrick Diehl, Christopher Bowen, Jacob Tucker, Lauren Bristol, Golden G. Richard III
https://arxiv.org/abs/2509.18548

If anyone has access to the Telegraph, please could you mail me a copy of this piece
https://www.telegraph.co.uk/us/news/2025/09/23/donald-trump-links-paracetamol-use-pregnancy-autism/

Donald Trump links paracetamol use during pregnancy with autism
Health Secretary rejects US president’s warning for women to avoid the painkiller as medical experts condemn ‘fearmongering’

The title is “DC’s Access Journalists Turned the News Into a Luxury Good” and I for one hadn’t realized how true this is until I read https://talkingpointsmemo.com/tpm-25/dcs-access-journalists-turned-the-news-into-a-luxury-good

DC’s Access Journalists Turned the News Into a Luxury Good
Before the internet, what would today be called a “paywall” was just...

Microsoft Curbs Early Access for Chinese Firms to Notifications About Cybersecurity Flaws
https://www.bloomberg.com/news/articles/2025-08-20/microsoft-curbs-early-access-for-chinese-firms-to-cyber-flaws

Asteria: Semantic-Aware Cross-Region Caching for Agentic LLM Tool Access
Chaoyi Ruan, Chao Bi, Kaiwen Zheng, Ziji Shi, Xinyi Wan, Jialin Li
https://arxiv.org/abs/2509.17360 http…

Asteria: Semantic-Aware Cross-Region Caching for Agentic LLM Tool Access
Large Language Model (LLM) agents tackle data-intensive tasks such as deep research and code generation. However, their effectiveness depends on frequent interactions with knowledge sources across remote clouds or regions. Such interactions can create non-trivial latency and cost bottlenecks. Existing caching solutions focus on exact-match queries, limiting their effectiveness for semantic knowledge reuse. To address this challenge, we introduce Asteria, a novel cross-region knowledge caching…

Bluesky blocks access to its service in Mississippi, saying it doesn't have the resources to comply with the state's broad new law requiring age verification (Sarah Perez/TechCrunch)
https://techcrunch.com/2025/08/22/bluesky-blocks-serv…

Bluesky blocks service in Mississippi over age assurance law | TechCrunch
In a blog post published on Friday, the company explains that, as a small team, it doesn't have the resources to make the substantial technical changes this type of law would require, and it raised concerns about the law's broad scope and privacy implications.

Just discovered a new RAT at #hacklu and it seems the name can confuse a lot of french-speaking persons.
RATatouille
Not sure it''s a good idea for the SEO of the RAT author. ;-)
🔗 http…

RATatouille: A Malicious Recipe Hidden in rand-user-agent (Supply Chain Compromise)
RATatouille: A Malicious Recipe Hidden in rand-user-agent (Supply Chain Compromise)

With increasing momentum, voices on the Christian right are preaching that EMPATHY has become a VICE.
For them, empathy is a cudgel for the left:
It can manipulate caring people into accepting all manner of sins according to a conservative Christian perspective, including abortion access, LGBTQ rights, illegal immigration and certain views on social and racial justice
“Empathy becomes toxic when it encourages you to affirm sin, validate lies or support destructive policie…

Conservative Christians argue empathy can lead to sin
Some voices on the Christian right are arguing the virtue of empathy has become a vice. Those Christians claim empathy can manipulate people into accepting what they see as sins, like abortion access and LGBTQ+ rights. Conservative evangelicals Allie Beth Stuckey and Joe Rigney have written books within the past year criticizing certain forms of empathy. Stuckey's and Rigney's views have gained traction among President Donald Trump’s Christian base as his Republican administration enacts hard…

Bluesky tells Mississippi to go suck eggs.
https://bsky.social/about/blog/08-22-2025-mississippi-hb1126

Happy that 28 out of 33 talk submissions for Alpaca (https://2025.algorithmicpattern.org/) opted to use markdown rather than PDF. I expected half-and-half, this is really great! PDFs are an awful format - inaccessible, practically unmodifiable (so _not_ open access), with no capacity for embedd…

As scientists show they can read inner speech, brain implant ‘pioneers’ fight for neural data privacy, access rights https://therecord.media/neural-data-privacy-brain-implants

Android makes it hard to run background processes, but one hack to work around it is to display a notification. So my entire phone's notifications screen is now filled with notifications that allow background jobs to run. GPS tracker, fitness tracker, web messages access, syncthing, doze stopper (itself to fix another Android bug). This is a very bad user experience.

from my link log —
Cracking the Vault: flaws in authentication, identity, and authorization in HashiCorp Vault.
https://cyata.ai/blog/cracking-the-vault-how-we-found-zero-day-flaws-in-authe…

Cracking the Vault: how we found zero-day flaws in authentication, identity, and authorization in HashiCorp Vault - Cyata | The Control Plane for Agentic Identity
Introduction: when the trust model can’t be trusted Secrets vaults are the backbone of digital infrastructure. They store the credentials, tokens, and certificates that govern access to systems, services, APIs, and data. They’re not just a part of the trust model, they are the trust model. In other words, if your vault is compromised, your […]

Wow.
https://fed.brid.gy/r/https://bsky.app/profile/did:plc:mxc7liuon6iq5gzapmmwkq22/post/3lzkmh6jvfk22

Anonymous (@youranoncentral.bsky.social)
As President Macron walked down the US street onlookers smiled and even took selfies with him; many of them happy to experience seeing a real president in the United States after months of the demonic autocratic clown show emanating out of the White House.

Mailed a few people: “Please provide input for subject A in this document [link] and for subject B in this document [link] in our shared SwitchDrive folder” (Yes, everyone involved has access to it!)
Resulting in my inbox exploding with reply-to-alls mixing both subjects, commenting on some of the ideas mentioned, lengthy praising of each other, etc.
What’s wrong with people?
#AcademicChatter

An important change by the UK energy regulator: consumers with EVs, heat pumps and batteries in their homes now have access to flex markets without being dependent on their supplier
https://www.linkedin.com/posts/marzia-zafa

Today, Ofgem approved code modification P483, some would say a small step, I say a giant step. On its own, P483 might seem like a minor technical change. But in the bigger picture, it’s a crucial… | Marzia Zafar
Today, Ofgem approved code modification P483, some would say a small step, I say a giant step. On its own, P483 might seem like a minor technical change. But in the bigger picture, it’s a crucial piece of the puzzle that will unlock new opportunities for customers to participate in the Green Revolution effortlessly. 📢 What does P483 do? It enables customers who haven’t yet been transitioned to half-hourly settlement by their supplier to still access the flexibility market. Through agg…

Bridging continents through connectivity 🌍
Through the GÉANT Twinning Programme, a collaboration between Jisc and KENET brought #eduroam to one of Kenya’s most remote research sites—proving how global NREN partnerships can transform access to connectivity.
🔗 Read the full story, detailed results, and reflections from Peter Kent (Jisc):

Distribution Testing in the Presence of Arbitrarily Dominant Noise with Verification Queries
Hadley Black, Christopher Ye
https://arxiv.org/abs/2509.17269 https://

Distribution Testing in the Presence of Arbitrarily Dominant Noise with Verification Queries
We study distribution testing without direct access to a source of relevant data, but rather to one where only a tiny fraction is relevant. To enable this, we introduce the following verification query model. The goal is to perform a statistical task on distribution $\boldsymbol{p}$ given sample access to a mixture $\boldsymbol{r} = λ\boldsymbol{p} + (1-λ)\boldsymbol{q}$ and the ability to query whether a sample was generated by $\boldsymbol{p}$ or by $\boldsymbol{q}$. In general, if $m_0$ sa…

@… is suing ICE over their contract with spyware companies. *Please* support them financially if you can afford it.
https://www.404media.co/were-suing-ice-for

We’re Suing ICE for Its $2 Million Spyware Contract
404 Media has filed a lawsuit against ICE for access to its contract with Paragon, a company that sells powerful spyware for breaking into phones and accessing encrypted messaging apps.

"Further, outdated rules on the use of cookies and other tracking technologies are still governing the protection of the user’s terminal equipment and the access and collection to information from user’s terminal equipment. This requires pragmatic and immediate clarifications to limit consent fatigue, provide legal clarity on rightful access and processing, and enhanced data availability to businesses."
My fatigue stems more from politics leaving their citizens alone...

So Silent Hill F comes out in early access at midnight EST but ChristianTok says it’s coming tomorrow so the potential to be really bummed for eternity is there.

PSA/TIL #fedora dracut does an fsfreeze on /boot - so do not do something like:
cd /boot
dracut --debug ... > dracut.debug 2>&1
because then the system starts locking up on any access to /boot with unkillable processes.
Discovered the hard way.

Zensec has a good article on the Akira ransomware group's tactics taken directly from their DFIR experience on 16 incidents. A few key take-aways:
- Initial Access: Please, please please patch your Internet-facing VPN and firewall devices including your Sonicwall, Cisco ASA and Watchguard devices.
- Patch our Veeam software. They used vulnerable Veeam installs to perform privilege escalation
- Block access to Anydesk.com and remotedesktop.google.com if you don't use…

Unmasking Akira: The ransomware tactics you can’t afford to ignore - Zensec
If you are reading this because you have experienced a ransomware incident and are unsure how to deal with it, contact Zensec immediately.

Analysis of an Architecture for Integrated Sensing and Communication in 5G OpenRAN
Daniel Lindenschmitt, Tobias Jung, Prudhvi Kumar Kakani, Torsten Reissland, Norman Franchi, Hans D. Schotten
https://arxiv.org/abs/2509.16917

Analysis of an Architecture for Integrated Sensing and Communication in 5G OpenRAN
This paper analyzes the functional requirements and architectural considerations for Integrated Sensing and Communication ( ISAC) in a 5G Open Radio Access Network (OpenRAN) environment, with emphasis on secure and modular deployment. Focusing on a mono-static, half-duplex sensing approach, it evaluates radar setup options, signal types, and processing placement within the Radio Access Network ( RAN), considering performance and security implications. The proposed architecture minimizes hardwar…

As fascism descends, you are going to need easy to access and use alternatives to Big Tech (aka Fascist Tech).
So maybe bookmark the Chatons collective site initiated by our friends at Framasoft with hosted versions of free-software services for collaborative writing, video conferencing, scheduling appointments, collaborative spreadsheets, file sharing, picture sharing, etc.

TIL: Slack messages from private channels aren't private anymore, if someone post it in a public channel :🤯
Then everyone can read it.
I guess it's a feature and not a bug,, but I was really not expecting this!
#privacy #security

aiXiv: A Next-Generation Open Access Ecosystem for Scientific Discovery Generated by AI Scientists
Pengsong Zhang, Xiang Hu, Guowei Huang, Yang Qi, Heng Zhang, Xiuxu Li, Jiaxing Song, Jiabin Luo, Yijiang Li, Shuo Yin, Chengxiao Dai, Eric Hanchen Jiang, Xiaoyan Zhou, Zhenfei Yin, Boqin Yuan, Jing Dong, Guinan Su, Guanren Qiao, Haiming Tang, Anghong Du, Lili Pan, Zhenzhong Lan, Xinyu Liu

aiXiv: A Next-Generation Open Access Ecosystem for Scientific Discovery Generated by AI Scientists
Recent advances in large language models (LLMs) have enabled AI agents to autonomously generate scientific proposals, conduct experiments, author papers, and perform peer reviews. Yet this flood of AI-generated research content collides with a fragmented and largely closed publication ecosystem. Traditional journals and conferences rely on human peer review, making them difficult to scale and often reluctant to accept AI-generated research content; existing preprint servers (e.g. arXiv) lack ri…

Just finished "Get a Life, Chloe Brown" by Talia Hibbert. It's... much less chaste than most of the other romances I've been reading, but also incredibly sweet and positive, so I enjoyed it a lot.
My one reservation is that it does the thing a lot of romance novels do where they equate physical desire with romantic desire, and physical flirtations/advances with actual communication, and yes people equate those things in the real world all the time, by it's often really harmful when they do that.
This novel does better with consent than 99% of the field probably, and legitimately deserves props for that, so this isn't the harsh criticism I'd level if it seriously broke the "would this be okay if we didn't have access to interior monologues" test, but it skirts the edges of that a bit.
#AmReading

@…
Codeberg - Git access should be limited to ssh and strictly for account holders, others can always downloaded the latest zip.
#unpopularopinion #codeberg

US public mapping data being removed from public access.
https://www.reddit.com/r/Archiveteam/comments/1mxl80n/can_someone_help_preserve_this_massive_public/

Model Compression Engine for Wearable Devices Skin Cancer Diagnosis
Jacob M. Delgado-L\'opez, Andrea P. Seda-Hernandez, Juan D. Guadalupe-Rosado, Luis E. Fernandez Ramirez, Miguel Giboyeaux-Camilo, Wilfredo E. Lugo-Beauchamp
https://arxiv.org/abs/2507.17125

Model Compression Engine for Wearable Devices Skin Cancer Diagnosis
Skin cancer is one of the most prevalent and preventable types of cancer, yet its early detection remains a challenge, particularly in resource-limited settings where access to specialized healthcare is scarce. This study proposes an AI-driven diagnostic tool optimized for embedded systems to address this gap. Using transfer learning with the MobileNetV2 architecture, the model was adapted for binary classification of skin lesions into "Skin Cancer" and "Other." The TensorRT framework was emplo…

Leveraging Synthetic Data for Question Answering with Multilingual LLMs in the Agricultural Domain
Rishemjit Kaur, Arshdeep Singh Bhankhar, Surangika Ranathunga, Jashanpreet Singh Salh, Sudhir Rajput, Vidhi, Kashish Mahendra, Bhavika Berwal, Ritesh Kumar
https://arxiv.org/abs/2507.16974…

Leveraging Synthetic Data for Question Answering with Multilingual LLMs in the Agricultural Domain
Enabling farmers to access accurate agriculture-related information in their native languages in a timely manner is crucial for the success of the agriculture field. Although large language models (LLMs) can be used to implement Question Answering (QA) systems, simply using publicly available general-purpose LLMs in agriculture typically offer generic advisories, lacking precision in local and multilingual contexts due to insufficient domain-specific training and scarcity of high-quality, regio…

This is why you apply the Principle of Least Privilege, friends.
(Short: don’t give access to things people don’t absolutely need access to; and then when you DO have access to something, don’t use it persistently unless you absolutely need to.)
(link via @… )

When Collaborative Maintenance Falls Short: The Persistence of Retracted Papers on Wikipedia
Haohan Shi, Yulin Yu, Daniel M. Romero, Em\H{o}ke-\'Agnes Horv\'at
https://arxiv.org/abs/2509.18403 …

Precision over Noise: Tailoring S3 Public Access Detection to Reduce False Positives in Cloud Security Platforms
Dikshant, Geetika Verma
https://arxiv.org/abs/2508.14402 https:/…

Precision over Noise: Tailoring S3 Public Access Detection to Reduce False Positives in Cloud Security Platforms
Excessive and spurious alert generation by cloud security solutions is a root cause of analyst fatigue and operational inefficiencies. In this study, the long-standing issue of false positives from publicly accessible alerts in Amazon S3, as generated by a licensed cloud-native security solution, is examined. In a simulated production test environment, which consisted of over 1,000 Amazon S3 buckets with diverse access configurations, it was discovered that over 80\% of the alerts generated by …

Robot Learning with Sparsity and Scarcity
Jingxi Xu
https://arxiv.org/abs/2509.16834 https://arxiv.org/pdf/2509.16834…

Robot Learning with Sparsity and Scarcity
Unlike in language or vision, one of the fundamental challenges in robot learning is the lack of access to vast data resources. We can further break down the problem into (1) data sparsity from the angle of data representation and (2) data scarcity from the angle of data quantity. In this thesis, I will discuss selected works on two domains: (1) tactile sensing and (2) rehabilitation robots, which are exemplars of data sparsity and scarcity, respectively. Tactile sensing is an essential modalit…

The best study, by far, of paracetamol / Tylenol in pregnancy is open access. There is no sign of any harm, Trump and RFK Jr are talking through their ****. You can read the paper at https://jamanetwork.com/journals/jama/fullarticle/2817406

A decentralized future for the open-science databases
Gaurav Sharma, Viorel Munteanu, Nika Mansouri Ghiasi, Jineta Banerjee, Susheel Varma, Luca Foschini, Kyle Ellrott, Onur Mutlu, Dumitru Ciorb\u{a}, Roel A. Ophoff, Viorel Bostan, Christopher E Mason, Jason H. Moore, Despoina Sousoni, Arunkumar Krishnan, Christopher E. Mason, Mihai Dimian, Gustavo Stolovitzky, Fabio G. Liberante, Taras K. Oleksyk, Serghei Mangul

There are at least two Aotearoa native grass skinks in this picture... Can you see them?
#Herptophile

A community-driven optimization framework for redrawing school attendance boundaries
Hongzhao Guan, Paul Riggins, Tyler Simko, Jasmine Mangat, Cassandra Moe, Urooj Haider, Frank Pantano, Effie G. McMillian, Genevieve Siegel-Hawley, Pascal Van Hentenryck, Nabeel Gillani
https://arxiv.org/abs/2509.17130

A community-driven optimization framework for redrawing school attendance boundaries
The vast majority of US public school districts use school attendance boundaries to determine which student addresses are assigned to which schools. Existing work shows how redrawing boundaries can be a powerful policy lever for increasing access and opportunity for historically disadvantaged groups, even while maintaining other priorities like minimizing driving distances and preserving existing social ties between students and families. This study introduces a multi-objective algorithmic scho…

Model fine-tuning without compromising information access controls.
"Copilot Tuning" attaches fine-tuning datasets to LLMs while respecting your permissions. See how:
youtu.be/6udJzJAyT5I
#CopilotTuning #copilot

As GenAI disrupts media content creation by lowering barriers and costs, value will shift to complements such as merchandise, live events, and exclusive access (Doug Shapiro/The Mediator)
https://dougshapiro.substack.com/p/what-if-all-media-is-marketing-no

What If All Media is Marketing? (No Paywall)
The Logical Conclusion of Plummeting Creation Costs

Hegseth moves to restrict journalistic reporting at the Pentagon
https://abcnews.go.com/amp/Politics/hegseth-unveils-new-restrictions-pentagon-press-access/story?id=125754272

Bluesky blocks access to its service in Mississippi, saying it doesn't have the resources to comply with the state's broad new law requiring age verification (Sarah Perez/TechCrunch)
https://techcrunch.com/2025/08/22/bluesky-blocks-serv…

Bluesky blocks service in Mississippi over age assurance law | TechCrunch
In a blog post published on Friday, the company explains that, as a small team, it doesn't have the resources to make the substantial technical changes this type of law would require, and it raised concerns about the law's broad scope and privacy implications.

A Grant-free Coded Random Access Scheme for Near-field Communications
Enrico Testi, Giulia Torcolacci, Nicol\`o Decarli, Davide Dardari, Enrico Paolini
https://arxiv.org/abs/2508.15673

A Grant-free Coded Random Access Scheme for Near-field Communications
The industrial Internet of things (IIoT) is revolutionizing industrial processes by facilitating massive machine-type communications among countless interconnected devices. To efficiently handle the resulting large-scale and sporadic traffic, grant-free random access protocols-especially coded random access (CRA)-have emerged as scalable and reliable solutions. At the same time, advancements in wireless hardware, including extremely large-scale MIMO arrays and high-frequency communication (e.g.…

Pentagon To Reporters: Publish Approved Information Or Lose Access https://thedissenter.org/pentagon-to-reporters-publish-approved-information-or-lose-access/

Trump Folds: ACLU Wins Access at “Alligator Alcatraz”
https://michaelpopok.substack.com/p/trump-folds-aclu-wins-access-at-alligator

Google confirms hackers gained access to law enforcement portal
https://www.bleepingcomputer.com/news/security/google-confirms-hackers-gained-access-to-law-enforcement-portal/

Google confirms hackers gained access to law enforcement portal
Google has confirmed that hackers created a fraudulent account in its Law Enforcement Request System (LERS) platform that law enforcement uses to submit official data requests to the company

A warrant reviewed by Forbes, filed towards the end of last week,
now allows the government to force unlock a suspect’s phone by
💥applying the defendant’s fingerprints to the device,
💥or holding up the phone to their face, depending on what, if any, biometric access features they’re using.
A "pen register" is a device that records all outgoing phone numbers dialed from a specific telephone line, but it does not capture the content of the conversations.

How ICE Spies On WhatsApp
ICE’s HSI division gets contacts from the WhatsApp account of a fake ID dealer and has little trouble identifying them, according to warrant.

LLMZ : Contextual Prompt Whitelist Principles for Agentic LLMs
Tom Pawelek, Raj Patel, Charlotte Crowell, Noorbakhsh Amiri, Sudip Mittal, Shahram Rahimi, Andy Perkins
https://arxiv.org/abs/2509.18557

LLMZ+: Contextual Prompt Whitelist Principles for Agentic LLMs
Compared to traditional models, agentic AI represents a highly valuable target for potential attackers as they possess privileged access to data sources and API tools, which are traditionally not incorporated into classical agents. Unlike a typical software application residing in a Demilitarized Zone (DMZ), agentic LLMs consciously rely on nondeterministic behavior of the AI (only defining a final goal, leaving the path selection to LLM). This characteristic introduces substantial security ris…

Sam Altman says OpenAI wants to create "a factory that can produce a gigawatt of new AI infrastructure every week" and plans to reveal more details this year (Sam Altman)
https://blog.samaltman.com/abundant-intelligence

Harnessing RLHF for Robust Unanswerability Recognition and Trustworthy Response Generation in LLMs
Shuyuan Lin, Lei Duan, Philip Hughes, Yuxuan Sheng
https://arxiv.org/abs/2507.16951

Harnessing RLHF for Robust Unanswerability Recognition and Trustworthy Response Generation in LLMs
Conversational Information Retrieval (CIR) systems, while offering intuitive access to information, face a significant challenge: reliably handling unanswerable questions to prevent the generation of misleading or hallucinated content. Traditional approaches often rely on external classifiers, which can introduce inconsistencies with the core generative Large Language Models (LLMs). This paper introduces Self-Aware LLM for Unanswerability (SALU), a novel approach that deeply integrates unanswer…

Markov Chain-based Model of Blockchain Radio Access Networks
Vasileios Kouvakis, Stylianos E. Trevlakis, Alexandros-Apostolos A. Boulogeorgos, Hongwu Liu, Theodoros A. Tsiftsis, Octavia A. Dobre
https://arxiv.org/abs/2508.14519

Markov Chain-based Model of Blockchain Radio Access Networks
Security has always been a priority, for researchers, service providers and network operators when it comes to radio access networks (RAN). One wireless access approach that has captured attention is blockchain enabled RAN (B-RAN) due to its secure nature. This research introduces a framework that integrates blockchain technology into RAN while also addressing the limitations of state-of-the-art models. The proposed framework utilizes queuing and Markov chain theory to model the aspects of B-RA…

Obelix: Mitigating Side-Channels Through Dynamic Obfuscation
Jan Wichelmann, Anja Rabich, Anna P"atschke, Thomas Eisenbarth
https://arxiv.org/abs/2509.18909 https://…

Uncut Gem - An Open-Source Hackable Quantum Sensor
Mark Carney, Victoria Kumaran
https://arxiv.org/abs/2509.18329 https://arxiv.org/pdf/2509.18329

Uncut Gem - An Open-Source Hackable Quantum Sensor
This work presents an overview of our fully open-source, hackable quantum sensor platform based on nitrogen-vacancy (NV) center diamond magnetometry. This initiative aims to democratize access to quantum sensing by providing a comprehensive, modular, and cost-effective system. The design leverages consumer off-the-shelf (COTS) components in a novel hardware configuration, complemented by open-source firmware written in the Arduino IDE, facilitating portability, ease of customization, and future…

6G Twin: Hybrid Gaussian Radio Fields for Channel Estimation and Non-Linear Precoder Design for Radio Access Networks
Muhammad Ahmed Mohsin, Muhammad Umer, Ahsan Bilal, Muhammad Ali Jamshed, Dean F. Hougen, John M. Cioffi
https://arxiv.org/abs/2509.18735

Does Embodiment Matter to Biomechanics and Function? A Comparative Analysis of Head-Mounted and Hand-Held Assistive Devices for Individuals with Blindness and Low Vision
Gaurav Seth, Hoa Pham, Giles Hamilton-Fletcher, Charles Leclercq, John-Ross Rizzo
https://arxiv.org/abs/2509.18391

Does Embodiment Matter to Biomechanics and Function? A Comparative Analysis of Head-Mounted and Hand-Held Assistive Devices for Individuals with Blindness and Low Vision
Visual assistive technologies, such as Microsoft Seeing AI, can improve access to environmental information for persons with blindness or low vision (pBLV). Yet, the physical and functional implications of different device embodiments remain unclear. In this study, 11 pBLV participants used Seeing AI on a hand-held smartphone and on a head-mounted ARx Vision system to perform six activities of daily living, while their movements were captured with Xsens motion capture. Functional outcomes inclu…

Implementation of the Collision Avoidance System for DO-178C Compliance
Rim Zrelli, Henrique Amaral Misson, Sorelle Kamkuimo, Maroua Ben Attia, Abdo Shabah, Felipe Gohring de Magalhaes, Gabriela Nicolescu
https://arxiv.org/abs/2509.16844

Implementation of the Collision Avoidance System for DO-178C Compliance
This technical report presents the detailed implementation of a Collision Avoidance System (CAS) for Unmanned Aerial Vehicles (UAVs), developed as a case study to demonstrate a rigorous methodology for achieving DO-178C compliance in safety-critical software. The CAS is based on functional requirements inspired by NASA's Access 5 project and is designed to autonomously detect, evaluate, and avoid potential collision threats in real-time, supporting the safe integration of UAVs into civil airspa…

Google announces Play Games Sidekick for Android, an in-game overlay that provides access to Gemini Live while playing games downloaded from the Play Store (Abner Li/9to5Google)
https://9to5google.com/2025/09/23/play-games-sidekick-gemini-live/

Play Games Sidekick is Gemini Live for Android games 
Google is bringing Gemini Live to gaming on Android with Play Games Sidekick. Like a coach, it’s meant to be...

Recommendations include —
•Avoid repeating misinfo w/o correction
•Leverage trusted sources to counter misinformation & provide accurate health info
•Debunk misinformation often &repeatedly w/ evidence-based methods
**•Fund basic & translational
research on the psychology of health misinformation , including effective ways to counter it **

Sander van der Linden (@profsanderlinden.bsky.social)
Public health is under attack by a deluge of misinformation. We offer a consensus report from the American Psychological Association summarizing what we know & what interventions are effective in countering it. We provide 8 concrete recommendations. Open-access - https://awspntest.apa.org/fulltext/2026-77135-001.pdf

Ukraine says it has now deployed 30K free physical security keys, called YubiKeys, including 22K to access battle system Delta, up from ~10K in April 2022 (Katrina Manson/Bloomberg)
https://www.bloomberg.com/news/newsletters

Memory in Large Language Models: Mechanisms, Evaluation and Evolution
Dianxing Zhang, Wendong Li, Kani Song, Jiaye Lu, Gang Li, Liuchun Yang, Sheng Li
https://arxiv.org/abs/2509.18868

Memory in Large Language Models: Mechanisms, Evaluation and Evolution
Under a unified operational definition, we define LLM memory as a persistent state written during pretraining, finetuning, or inference that can later be addressed and that stably influences outputs. We propose a four-part taxonomy (parametric, contextual, external, procedural/episodic) and a memory quadruple (location, persistence, write/access path, controllability). We link mechanism, evaluation, and governance via the chain write -> read -> inhibit/update. To avoid distorted comparisons acr…

Federated Learning in the Wild: A Comparative Study for Cybersecurity under Non-IID and Unbalanced Settings
Roberto Doriguzzi-Corin, Petr Sabel, Silvio Cretti, Silvio Ranise
https://arxiv.org/abs/2509.17836

Federated Learning in the Wild: A Comparative Study for Cybersecurity under Non-IID and Unbalanced Settings
Machine Learning (ML) techniques have shown strong potential for network traffic analysis; however, their effectiveness depends on access to representative, up-to-date datasets, which is limited in cybersecurity due to privacy and data-sharing restrictions. To address this challenge, Federated Learning (FL) has recently emerged as a novel paradigm that enables collaborative training of ML models across multiple clients while ensuring that sensitive data remains local. Nevertheless, Federated Av…

Anthropic and Google officially announce their cloud partnership worth tens of billions, giving Anthropic access to 1M TPUs and 1 GW of capacity in 2026 (MacKenzie Sigalos/CNBC)
https://www.cnbc.com/2025/10/23/anthropic-google-cloud-deal-tpu.html

Google and Anthropic announce cloud deal worth tens of billions of dollars
While Google is powering Anthropic's next phase of compute expansion, Amazon remains its most deeply embedded partner.

These items are going to be in today's Metacurity, but it's not only Jaguar Land Rover who are being targeted by malicious actors.
Stellantis, Chrysler's parent, announced it experienced unauthorized access to its N. American customer platform.

Cooperative Dynamics of Censorship, Misinformation, and Influence Operations: Insights from the Global South and U.S
Zaid Hakami, Yuzhou Feng, Bogdan Carbunar
https://arxiv.org/abs/2509.17933

Cooperative Dynamics of Censorship, Misinformation, and Influence Operations: Insights from the Global South and U.S
Censorship and the distribution of false information, tools used to manipulate what users see and believe, are seemingly at opposite ends of the information access spectrum. Most previous work has examined them in isolation and within individual countries, leaving gaps in our understanding of how these information manipulation tools interact and reinforce each other across diverse societies. In this paper, we study perceptions about the interplay between censorship, false information, and influ…

SWE-Bench Pro: Can AI Agents Solve Long-Horizon Software Engineering Tasks?
Xiang Deng, Jeff Da, Edwin Pan, Yannis Yiming He, Charles Ide, Kanak Garg, Niklas Lauffer, Andrew Park, Nitin Pasari, Chetan Rane, Karmini Sampath, Maya Krishnan, Srivatsa Kundurthy, Sean Hendryx, Zifan Wang, Chen Bo Calvin Zhang, Noah Jacobson, Bing Liu, Brad Kenstler
https://

SWE-Bench Pro: Can AI Agents Solve Long-Horizon Software Engineering Tasks?
We introduce SWE-Bench Pro, a substantially more challenging benchmark that builds upon the best practices of SWE-BENCH [25], but is explicitly designed to capture realistic, complex, enterprise-level problems beyond the scope of SWE-BENCH. SWE-BENCH PRO contains 1,865 problems sourced from a diverse set of 41 actively maintained repositories spanning business applications, B2B services, and developer tools. The benchmark is partitioned into a public set with open access to problems sourced fro…

TACTFL: Temporal Contrastive Training for Multi-modal Federated Learning with Similarity-guided Model Aggregation
Guanxiong Sun, Majid Mirmehdi, Zahraa Abdallah, Raul Santos-Rodriguez, Ian Craddock, Telmo de Menezes e Silva Filho
https://arxiv.org/abs/2509.17532

TACTFL: Temporal Contrastive Training for Multi-modal Federated Learning with Similarity-guided Model Aggregation
Real-world federated learning faces two key challenges: limited access to labelled data and the presence of heterogeneous multi-modal inputs. This paper proposes TACTFL, a unified framework for semi-supervised multi-modal federated learning. TACTFL introduces a modality-agnostic temporal contrastive training scheme that conducts representation learning from unlabelled client data by leveraging temporal alignment across modalities. However, as clients perform self-supervised training on heteroge…

About 40 to 50 Pentagon reporters turned in access badges and exited the Pentagon rather than agree to new US government-imposed restrictions on their work (David Bauder/Associated Press)
https://apnews.com/article/pentagon-press-a…

Journalists exit Pentagon rather than agree to new reporting rules
Journalists at the Pentagon turned in access badges and cleaned out their workspaces, the price for refusing to agree to new restrictions on their jobs at the seat of U.S. military power. The refusal was near-unanimous, from trade publications, wire services, television networks and newspapers, and included outlets that appeal largely to conservatives like Fox News Channel and Newsmax. Many of the reporters chose to turn in their badges together at the 4 p.m. deadline set by the Defense Departm…

OpenAI CISO Dane Stuckey outlines prompt injection mitigations in ChatGPT Atlas, including a "logged out mode" that blocks agent access to user credentials (Dane Stuckey/@cryps1s)
https://x.com/cryps1s/status/1981037851279278414

DANΞ (@cryps1s) on X
Yesterday we launched ChatGPT Atlas, our new web browser. In Atlas, ChatGPT agent can get things done for you. We’re excited to see how this feature makes work and day-to-day life more efficient and effective for people. ChatGPT agent is powerful and helpful, and designed to be

A Cost-Benefit Analysis of On-Premise Large Language Model Deployment: Breaking Even with Commercial LLM Services
Guanzhong Pan, Haibo Wang
https://arxiv.org/abs/2509.18101 http…

A Cost-Benefit Analysis of On-Premise Large Language Model Deployment: Breaking Even with Commercial LLM Services
Large language models (LLMs) are becoming increasingly widespread. Organizations that want to use AI for productivity now face an important decision. They can subscribe to commercial LLM services or deploy models on their own infrastructure. Cloud services from providers such as OpenAI, Anthropic, and Google are attractive because they provide easy access to state-of-the-art models and are easy to scale. However, concerns about data privacy, the difficulty of switching service providers, and lo…

Privacy-Preserving State Estimation with Crowd Sensors: An Information-Theoretic Respective
Farhad Farokhi
https://arxiv.org/abs/2509.17266 https://arxiv.o…

Privacy-Preserving State Estimation with Crowd Sensors: An Information-Theoretic Respective
Privacy-preserving state estimation for linear time-invariant dynamical systems with crowd sensors is considered. At any time step, the estimator has access to measurements from a randomly selected sensor from a pool of sensors with pre-specified models and noise profiles. A Luenberger-like observer is used to fuse the measurements with the underlying model of the system to recursively generate the state estimates. An additive privacy-preserving noise is used to constrain information leakage. I…

Sources: Snap is in talks with investors, including Saudi Arabia's Public Investment Fund, to raise at least $1B for its AR glasses division (Alex Heath/Sources)
https://sources.news/p/snap-eyes-1-billion-fundraise-for

Snap eyes $1 billion fundraise for AR glasses
New details on Evan Spiegel's quest to win the AR race. Also: this week on ACCESS.

Toward Affordable and Non-Invasive Detection of Hypoglycemia: A Machine Learning Approach
Lawrence Obiuwevwi, Krzysztof J. Rechowicz, Vikas Ashok, Sampath Jayarathna
https://arxiv.org/abs/2509.17842

Toward Affordable and Non-Invasive Detection of Hypoglycemia: A Machine Learning Approach
Diabetes mellitus is a growing global health issue, with Type 1 Diabetes (T1D) requiring constant monitoring to avoid hypoglycemia. Although Continuous Glucose Monitors (CGMs) are effective, their cost and invasiveness limit access, particularly in low-resource settings. This paper proposes a non-invasive method to classify glycemic states using Galvanic Skin Response (GSR), a biosignal commonly captured by wearable sensors. We use the merged OhioT1DM 2018 and 2020 datasets to build a machine l…

CompLeak: Deep Learning Model Compression Exacerbates Privacy Leakage
Na Li, Yansong Gao, Hongsheng Hu, Boyu Kuang, Anmin Fu
https://arxiv.org/abs/2507.16872 https://

CompLeak: Deep Learning Model Compression Exacerbates Privacy Leakage
Model compression is crucial for minimizing memory storage and accelerating inference in deep learning (DL) models, including recent foundation models like large language models (LLMs). Users can access different compressed model versions according to their resources and budget. However, while existing compression operations primarily focus on optimizing the trade-off between resource efficiency and model performance, the privacy risks introduced by compression remain overlooked and insufficien…

Nearly half of rural hospitals now operate at a loss.
As new federal budget cuts take effect, analysts warn that hundreds of rural hospitals more may close.
-- threatening to turn vast stretches of the country into health-care deserts.
At the center of this growing crisis lies a rollback in federal health-coverage spending.
Nonpartisan analyses show large Medicaid reductions over ten years.
-- the total is on the order of eight to nine hundred billion dollars f…

Rural Hospitals in the United States Face Collapse
As Medicaid cuts deepen, small-town hospitals across Republican states are closing, leaving millions without access to emergency care.

Privileged Self-Access Matters for Introspection in AI
Siyuan Song, Harvey Lederman, Jennifer Hu, Kyle Mahowald
https://arxiv.org/abs/2508.14802 https://ar…

Privileged Self-Access Matters for Introspection in AI
Whether AI models can introspect is an increasingly important practical question. But there is no consensus on how introspection is to be defined. Beginning from a recently proposed ''lightweight'' definition, we argue instead for a thicker one. According to our proposal, introspection in AI is any process which yields information about internal states through a process more reliable than one with equal or lower computational cost available to a third party. Using experiments where LLMs reason …

Generative AI alone may not be enough: Evaluating AI Support for Learning Mathematical Proof
Eason Chen, Sophia Judicke, Kayla Beigh, Xinyi Tang, Zimo Xiao, Chuangji Li, Shizhuo Li, Reed Luttmer, Shreya Singh, Maria Yampolsky, Naman Parikh, Yi Zhao, Meiyi Chen, Scarlett Huang, Anishka Mohanty, Gregory Johnson, John Mackey, Jionghao Lin, Ken Koedinger
https://…

Generative AI alone may not be enough: Evaluating AI Support for Learning Mathematical Proof
We evaluate the effectiveness of LLM-Tutor, a large language model (LLM)-powered tutoring system that combines an AI-based proof-review tutor for real-time feedback on proof-writing and a chatbot for mathematics-related queries. Our experiment, involving 148 students, demonstrated that the use of LLM-Tutor significantly improved homework performance compared to a control group without access to the system. However, its impact on exam performance and time spent on tasks was found to be insignifi…

For years, China’s government has used what’s known as the
“Great Firewall” to censor the internet inside its country and block access to select foreign websites.
Now, a document leak shows that little-known Chinese company
'Geedge' is exporting these tools to other countries,
including Myanmar, Pakistan, Kazakhstan and Ethiopia.

Massive leak exposes how China’s ‘Great Firewall’ is being exported to other countries
For years, China’s government has used what’s known as the “Great Firewall” to censor the internet inside its country and block access to select foreign websites. Now, a document leak shows that a little-known Chinese company is exporting these tools to other countries, including Myanmar, Pakistan, Kazakhstan and Ethiopia. Ali Rogin speaks with WIRED senior writer Zeyi Yang to learn more.

Rethinking HSM and TPM Security in the Cloud: Real-World Attacks and Next-Gen Defenses
Shams Shaikh, Trima P. Fernandes e Fizardo
https://arxiv.org/abs/2507.17655 https://

Rethinking HSM and TPM Security in the Cloud: Real-World Attacks and Next-Gen Defenses
As organizations rapidly migrate to the cloud, the security of cryptographic key management has become a growing concern. Hardware Security Modules (HSMs) and Trusted Platform Modules (TPMs), traditionally seen as the gold standard for securing encryption keys and digital trust, are increasingly challenged by cloud-native threats. Real-world breaches have exposed weaknesses in cloud deployments, including misconfigurations, API abuse, and privilege escalations, allowing attackers to access sens…

Microsoft says it curtailed Chinese companies' access to advance vulnerability notifications via MAPP starting in July, after probing the SharePoint breach (Ryan Gallagher/Bloomberg)

Keycard, which lets enterprises manage AI agent access to internal systems, raised a $30M Series A led by Acrew Capital and a $8M seed led by a16z and boldstart (Maria Deutscher/SiliconANGLE)
https://siliconangle.com/2025/10/21/ai-agent-security-startup-keyca…

AI agent security startup Keycard reels in $38M - SiliconANGLE
AI agent security startup Keycard reels in $38M - SiliconANGLE

Hyro, whose AI agents let US health care organizations automate tasks like scheduling and prescription renewals, raised $45M, taking its total funding to $95M (Sophie Shulman/CTech)
https://www.calcalistech.com/ctechnews/article/rylcu6valg

Hyro secures $45 million to scale AI automation in US healthcare
The startup aims to ease staffing pressures and improve patient access by deploying AI agents across hospitals and health systems nationwide.