@Techmeme@techhub.socialHow hacker group TeamPCP exploited the open source trust model and distribution method to compromise and inject malware into over 1,000 software packages (Matt Kapko/CyberScoop)
https://cyberscoop.com/teampcp-breaks-open-source-software-trust-model/
@heiseonline@social.heise.de
@metacurity@infosec.exchangeDon't miss today's Metacurity for the most critical cybersecurity developments you might have missed over the weekend, including
--White House opens backchannel to Anthropic as Pentagon fight simmers,
--Anthropic gave NSA access to Mythos Preview,
--Anthropic's donation to open source developers highlights how under-sourced they are,
--Asian regulators urge banks to use Mythos,
--LayerZero-powered cross-chain bridge Kelp DAO lost $292m in DPRK exploit…
@Techmeme@techhub.socialMoonshot introduces Kimi K2.6, an open-weight model that it says shows strong improvements in long-horizon coding tasks, available under a modified MIT License (Kimi AI)
https://www.kimi.com/blog/kimi-k2-6
@gevoel@mastodon.greenThe Baker, the Polluters and the Planet
https://open.substack.com/pub/theclimatehistorian/p/the-baker-the-polluters-and-the-planet?utm_source=share&utm_medium=android&r=e4myx
@jdrm@social.linux.pizzaEurope’s Digital Future
The EU Tech Sovereignty Package is a once-in-a-generation opportunity to reclaim control over our digital foundations.
For too long, public sector procurement has defaulted to proprietary lock-in, creating a weak sovereignty posture that hinders European resilience.
We are calling for a fundamental shift: the Open Source First principle.
@privacity@social.linux.pizzaPaperweight è un'applicazione desktop open-source, pensata per l'utilizzo locale che analizza la tua casella di posta per mappare la tua impronta digitale e a riprendere il controllo e a eliminare i tuoi dati.
Cosa fa:
- Inventario degli account: mappa tutte le aziende che ti hanno mai contattato via email, con classificazione dei rischi e raccomandazioni sulle azioni da intraprendere.
- Annullamento iscrizione in blocco: trova e annulla l'iscrizione a tutte le li…
@adulau@infosec.exchange
@ethanwhite@hachyderm.ioDo you have experience developing Open Educational Resources (OER) or developing educational software? The Journal of Open Source Education (JOSE) is looking for reviewers to help with our check-list driven peer review process. Happy to answer questions about reviewing for JOSE if you're interested.
https://forms.gle/Rizd3TcHnQKhrbYY7
@johnleonard@mastodon.socialGoogle has re-engineered its search engine to keep users inside its own ecosystem with AI-powered interactive experiences. If your task is to find and critically assess information on the open web, you're fresh out of luck.
https://www.
@heiseonline@social.heise.de
@kubikpixel@chaos.social«Sniffnet 1.5: Welches Programm funkt nach Hause?
Der Open-Source-Netzwerkmonitor @… ordnet Traffic nun einzelnen Programmen zu. Version 1.5.0 bringt zudem Blacklists und Adapter-Vorschauen»
Zu viele glauben immer noch nichts zu verbergen zu haben und realisieren nicht, dass sie das Produkt sind anhand von IT- & Online-Tools.
🕵️
@rberger@hachyderm.ioShort of a total fascist takeover, Open Source will be the winner again. Here's another drop creating the ocean https://magnitude.dev/
@acka47@openbiblio.socialHeute um 9:15 Uhr wird der diesjährige Workshop des KIM – Kompetenzzentrum Interoperable #Metadaten eröffnet. Jede:r kann hier online teilnehmen: https://meet.academiccloud.de/gl/rooms…
@Techmeme@techhub.socialAfter EV maker Fisker's collapse, ~4,000 car owners formed a nonprofit to keep their cars working by reverse-engineering software and building open-source tools (Fred Lambert/Electrek)
https://electrek.co/2026/05/16/fisker-ocean-open-source-ev-story-aft…
@ErikJonker@mastodon.social
@Marwe@troet.cafehttps://open-source-wettbewerb.de/
> das Bundesministerium für Digitales und Staatsmodernisierung übernimmt erneut die Schirmherrschaft für den Open Source Wettbewerb.
> Der Wettbewerb zeichnet Projekte aus, die digitale Verwaltungsprozesse verbessern, die Zusammenarbeit in der Verwaltung …
@fanf@mendeddrum.orgfrom my link log —
Can we trust Microsoft with Open Source?
https://dusted.codes/can-we-trust-microsoft-with-open-source
saved 2021-10-23
@fell@ma.fellr.netMy neurologist advised that I should try EEG Neurofeedback. Unfortunately public health insurance doesn't cover it.
Well, I'm just going to DIY it. I just ordered an open source Neurofeedback device with some electrodes.
https://www.olimex.com/Products/EEG/OpenEE
@beoz@det.socialVor 20 Jahren trat der erste bekannte Y2K38-Bug in Produktion auf.
Beim Open-Source-Webserver AOLserver führte „jetzt 1 Milliarde Sekunden“ erstmals über die 32-Bit-Zeitgrenze hinaus. Verbindungen liefen sofort ab, Timer kippten, Scheduler blockierten.
Das Jahr-2038-Problem war damit nicht mehr theoretisch.
Und 20 Jahre später ist es noch immer nicht gelöst.
@EarthOrgUK@mastodon.energy
@grahamperrin@bsd.cafe@… the spirit of open source will never allow it. Instead, it's to be renamed:
LibreDaemon Noir Ultra
#FreeBSD
@heiseonline@social.heise.deEinige der zuletzt hier besonders häufig geteilten #News:
Stringman: Fest montierter Open-Source-Roboter räumt einzelne Räume auf
@frankel@mastodon.top
@aral@mastodon.ar.alNeedless to say, do not sign up for W or give them your ID information no matter how simple they eventually manage to make it.
You simply don’t need to.
You’re already in a far superior – non-corporate, federated – space.
Do not sign up for W. And warn your friends.
The only time you have any power to stop this is now. If they succeed in gaining network effects, you will be as powerless to stop them as you are with X.
And yes, they’re just another venture capita…
@padraig@mastodon.ie
@theodric@social.linux.pizzaTimeQubes
@yaxu@post.lurk.orgAs far as I can tell mainstream open source, github-native culture is now completely horrible, co-opted by Microsoft, and destroyed by Anthropic, Google and OpenAI. The free/open source projects I'm involved with are constantly ripped off by vibe-coded interfaces that ignore the license, and when I point this out I get abuse. I just got told by a reddit user "thank you for your work but it doesn't matter much any more". Only
@NFL@darktundra.xyzNFL owners to vote on Nashville hosting 2030 Super Bowl: Source https://www.nytimes.com/athletic/7212952/2026/05/18/super-bowl-64-nashville-location-vote/
@Techmeme@techhub.socialHow tech companies are using open source initiatives to achieve critical strategic goals and how such efforts are reshaping industries like AI, AVs, and more (Bill Gurley/Bill's Substack)
https://p3institute.substack.com/p/from-open-source-software-to-open…
@cdarwin@c.imEvery modern digital technology
– from AI to quantum computing
– is based on foundational open source software building blocks.
Open source code is embedded in almost all products and services,
enabling economic growth and ensuring the resilience of our society and government.
While open source software has become the backbone of our digital infrastructure,
these essential components do not receive adequate support and investment.
Targeted and long…
@beoz@det.socialVor 20 Jahren trat der erste bekannte Y2K38-Bug in Produktion auf.
Beim Open-Source-Webserver AOLserver führte „jetzt 1 Milliarde Sekunden“ erstmals über die 32-Bit-Zeitgrenze hinaus. Verbindungen liefen sofort ab, Timer kippten, Scheduler blockierten.
Das Jahr-2038-Problem war damit nicht mehr theoretisch.
Und 20 Jahre später ist es noch immer nicht gelöst.
@johnleonard@mastodon.socialThe Irish Council for Civil Liberties (#ICCL) has released an open source tool designed to reduce LLM hallucinations.
If my 15-year-old PC had a GPU I'd be tempted to give it a try.
https://www.
@hex@kolektiva.socialRE: #DearLazyWeb (#Anarchist lazy web): does anyone know if anything like this already exists?
@grumpybozo@toad.socialThere’s a timeline where Sam Altman was a man of unassailable integrity and honesty, where AI research wasn’t constantly infested with people looking to re-invent theology, and where all software is open source.
In that timeline, there are LLMs as good or better than those we have at producing code. They do not consume insane quantities of energy to operate, or require the corporate abuse of people in poor countries to train for rich people to use.
I wish we all lived there but…
@lightweight@mastodon.nzoss.nzHi all, just a tardy reminder that a few (a bunch?) of us will be meeting at https://meeting.iridescent.nz at 20:00 NZST tonight (Tue 14 Apr) to discuss libre/open source state of play. This is coming on heels of the weekend's Ōtautahi InstallFest which went quite well, I think! We'll have a debrief on t…
@digitalnaiv@mastodon.socialFrankreich verpflichtet alle Ministerien bis Herbst 2026 zu Open-Source-Plänen. Alle Ministerien müssen bis Herbst 2026 Pläne für den Wechsel zu Open-Source-Software vorlegen. Das Kalkül dahinter ist nüchtern: Wer die Software kontrolliert, kontrolliert die Infrastruktur. Deutschland diskutiert noch. Horst Schulte über eine Lücke, die größer wird.
#OpenSource
@heiseonline@social.heise.de
@theprivacydad@social.linux.pizzaDisabling Google's default apps on Android can help reduce your exposure to Google's data mining system somewhat, while their open source alternatives are generally excellent.
https://theprivacydad.com/using-android-without-a-google-account-in-2026/…
@berlinbuzzwords@floss.socialMost organisations lack the visibility to meaningfully reduce their cloud carbon footprint. Julien Nioche (DigitalPebble, creator of SPRUCE) is at #bbuzz26 to show what GreenOps at scale actually looks like with open source tooling.
Learn more: https://2026.berlinbuzzwords.de/session/spruce-it-up-open-source-greenops-at-scale/
@simon_brooke@mastodon.scotThis is actually a superb, humane podcast on mental health, from an unlikely source. Highly recommended!
Scotcast: Mental health: unhappier than ever, or overmedicated?
Episode webpage: http://www.bbc.co.uk/programmes/p0nl8mg9
Media file:
@jackie@social.linux.pizza<rant> AI bros need to stop fucking saying they used AI to create something "from scratch", it's never from scratch, that isn't how LLMs work
during the few days when fable was out some claude fans said they used to recreate Minecraft "from scratch", except:
1. Claude's training data includes all open source projects on Github
2. there are several open source Minecraft clones on Github
yeah I too could create Minecraft "from s…
@yetiinabox@todon.nl
@gray17@mastodon.socialthinking, open source projects should consider doing video call code reviews for new contributors. this is going to be an obstacle for some sincere newbies, but the socialization is good for both sides of this, and it's low stakes, not like job interviews.
@fanf@mendeddrum.orgfrom my link log —
MiniZinc high-level solver-independent constraint satisfaction and optimization modelling language.
https://www.minizinc.org/index.html
saved 2019-09-30
@macandi@social.heise.de @Techmeme@techhub.socialCal.com, which provides scheduling software, is moving its core open-source codebase to a closed repository, citing the dangers of AI hacking its open code (Steven Vaughan-Nichols/ZDNET)
https://www.zdnet.com/article/ai-security-worries-force-company-t…
@mlncn@social.coopi know it is hardly the worst thing Mozilla has done to the community but after the SpreadFirefox campaign (an early "high profile" #Drupal site!) driven by a huge swath of the Free/Libre and Open Source Software community lo so many years ago it feels like a punch in the face to not have a single mention of ditching Windows entirely as an option on the Firefox page about Microsoft ending W…
@burger_jaap@mastodon.socialRE: https://social.bund.de/@bmv/116736117872259496
Dann bau doch endlich diese Radwege!
(Aber ansonsten ein großes Lob für so eine Open-Source-Lösung, zusammen mit -ebenfalls Open Source- QGIS)
@privacity@social.linux.pizzaUna lettera aperta agli utenti di suite per ufficio, poco prima dell'annuncio di Euro-Office
«Negli ultimi giorni avrete letto diversi articoli che annunciano l'arrivo di EuroOffice, presentato come la prima suite per ufficio open source sviluppata in Europa. Ci sentiamo in dovere – seppur a malincuore, poiché l'open source dovrebbe basarsi sulla trasparenza e non sull'inganno – di correggere questa affermazione. La prima suite per ufficio open source sviluppata in Euro…
@metacurity@infosec.exchangeSome organizations are doing panicky things over Mythos.
NHS Goes To War Against Open Source
https://shkspr.mobi/blog/2026/05/nhs-goes-to-war-against-open-source/
@heiseonline@social.heise.de @cdarwin@c.imJust over a week after Mosaic 1.0 was released, CERN gifted the Web to the world as open source software. As of 30 April 1993, the still relatively new Internet communications platform was suddenly free for anyone to use, with no strings attached.
https://cybercultural.com/p/1993-mosai
@grahamperrin@bsd.cafeYugabyte bets on open-source memory infrastructure for AI agents
<https://www.forkable.io/p/yugabyte-bets-on-open-source-memory> (Paul Sawers, 2026-05-12)
"… I check in with Karthik Ranganathan, CEO and co-founder of Yugabyte, an open-source database com…
@jdrm@social.linux.pizzaNo puede haber una IA de código abierto si todas sus partes no son de código abierto, y eso significa que también deben de ser accesibles los datos utilizados para entrenarla https://opensource.org/ai/open-source-ai-definition
@ErikJonker@mastodon.socialAre they right? 🤔
"Euro-Office defaults to the fully proprietary OOXML document format, developed and controlled solely by Microsoft. This makes it a de facto ally of Microsoft in its content lock-in strategy, with control remaining firmly in Redmond and far from Europe."
https://blog.do…
@Techmeme@techhub.socialSocket, which helps companies safeguard open-source code against hackers, raised $60M led by Thrive Capital at a $1B valuation (Dina Bass/Bloomberg)
https://www.bloomberg.com/news/articles/2026-05-20/security-firm-thwarting-…
@EarthOrgUK@mastodon.energy @aral@mastodon.ar.al @heiseonline@social.heise.deNoch ein paar der zuletzt hier besonders häufig geteilten #News:
Münchens IT-Wende: Open Source ist für die neue Koalition der Normalfall
@kubikpixel@chaos.social @yaxu@post.lurk.orgMaintaining a project on microsoft/azure github seems as bad as maintaining a profile on X. Reputational damage for maintaining a github repo will hopefully catch up to reality soon.
It's bonkers that we let the free/open source community get so comprehensively captured by closed source, inhumane corporate tech.
If your community on there doesn't have an exit plan, it might be worth applying some pressure !
@johnleonard@mastodon.socialMicrosoft has locked the lead developers of two prominent open source security projects out of their accounts.
https://www.computing.co.uk/news/2026/microsoft-locks-open-so…
@Techmeme@techhub.socialParis-based Kyber, which develops a low-latency remote device control SDK and is founded by VLC lead developer Jean-Baptiste Kempf, raised $5M led by Lightspeed (Anna Heim/TechCrunch)
https://techcrunch.com/2026/06/19/he-made-your-…
@frankel@mastodon.topfakecloud, #local #AWS cloud emulator for #integrationtests
https://…
@lightweight@mastodon.nzoss.nz @berlinbuzzwords@floss.socialOpen source has always been built on people lifting each other up. Tilda Udufo and Busayo ojo are joining #bbuzz26 to explore what mentoring looks like in the age of AI and how communities can stay human-centred, keep growing new contributors, and make sure the knowledge transfer continues.
Learn more about their session: https://lnkd.in/eFAf7tx3
@EarthOrgUK@mastodon.energy @kubikpixel@chaos.socialFediSuite: Open-Source Social-Media-Management fürs Fediverse — Alle deine Fediverse-Accounts an einem Ort.
FediSuite ist eine kostenlose Open-Source-Plattform zum Planen von Beiträgen, automatischen Aufteilen langer Posts in Threads, Verwalten von Benachrichtigungen und dem Handling mehrerer Accounts auf 14 Fediverse-Plattformen — @…,
@ErikJonker@mastodon.socialDe GPT-NL dataset staat beschreven op Huggingface, https://huggingface.co/datasets/GPT-NL/GPT-NL_Public_Corpus
met de genoemde hoeveelheid data kan het model qua parameters alleen in de GPT-3 klasse zijn lijkt me? Of zit dat anders?
@heiseonline@social.heise.deMeta: Neue KI-Modelle sollen teils Open-Source werden
Meta plant, neue KI-Modelle zu veröffentlichen. Die sollen in Teilen unter Open-Source-Lizenzen herausgegeben werden.
https://www.heis…
@grahamperrin@bsd.cafeDid anyone attend OSFS last month?
https://05f5.com/ – Open Source Founders Summit
― The conference about building financially successful and sustainable open source companies.
Via <
@Techmeme@techhub.socialMozilla launches Thunderbolt, an open-source AI client for users and businesses who want to run their own self-hosted AI infrastructure, available on GitHub (Kyle Orland/Ars Technica)
https://arstechnica.com/ai/2026/04/mozil…
@cdarwin@c.imA suspected North Korean hacker has hijacked and modified a popular open source software development tool
to deliver malware that could put millions of developers at risk of being compromised.
On Monday, a hacker pushed malicious versions of the widely used JavaScript library called Axios,
which developers rely on to allow their software to connect to the internet.
The affected library was hosted on npm, a software repository that stores code for open source projects…
@kubikpixel@chaos.social«Warum Cloud-Lock-in zum Sicherheitsrisiko wird—Digitale Souveränität braucht einen Exit-Plan:
Mit dem Wechsel hin zu Open-Source-Strukturen hat Schleswig-Holstein Anfang des Jahres ein deutliches Signal gesetzt. Die Abhängigkeit von großen Technologiekonzernen ist kein Naturgesetz.»
Viele verantwortliche Leute glauben wenn sie die Tools aufzuzählen, dass dies ein Plan sei. Es ist komplexer & benötigt Zeit.
💻
@EarthOrgUK@mastodon.energy @heiseonline@social.heise.de @Techmeme@techhub.socialAnthropic's Mythos adds to concerns about rising workloads for open-source maintainers, as many have already been dealing with a "crazy" number of bug reports (Chris Stokel-Walker/Bloomberg)
https://www.bloomberg.com/news/articles/20
@cdarwin@c.imFrance will cut its reliance on extra-EU proprietary tech, favoring open-source and digital sovereignty.
DINUM orders ministries to map dependencies and plan exit from extra-European tech by fall.
France plans to replace Windows with Linux; EU open-source options include openSUSE
https://www.
@kubikpixel@chaos.social«Statt Microsoft: Diese vier Office-Pakete solltet ihr kennen!
Wer nach datenschutzfreundlichem und günstigerem Ersatz für Microsoft Office sucht, findet mindestens vier gute Alternativen.»
Das Thema ist nicht neu aber aktueller als je zuvor. Bis anhin wurde ich immer als unproffesioneller Spinner gekenntzeichnet, da ich ein Open-Source Fan bin. Jetzt aber betteln viele um Rat weil sie überfordert sind.
📺
@heiseonline@social.heise.de @EarthOrgUK@mastodon.energy @heiseonline@social.heise.de @heiseonline@social.heise.de @Techmeme@techhub.socialCybersecurity startup Chainguard, Cisco, Cloudflare, JPMorgan Chase, and others launch Athena, a coalition to secure open-source software using AI (Rachel Metz/Bloomberg)
https://www.bloomberg.com/news/articles/2026-06-15/chaingu…
@kubikpixel@chaos.social«KI baut Open-Source-Projekte in Minuten als kommerzielle App nach:
KI stellt die Open-Source-Community vor eine grundlegende Herausforderung - Neue Werkzeuge sind inzwischen in der Lage, komplette Softwareprojekte nahezu automatisch nachzubilden. Das wirft drängende Fragen zu Urheberrecht und Fairness auf.»
Das KI Daten klaut um Faule zu "bereichern" sollte eigentlich allen mittlerweile bewusst sein.
🤖
@heiseonline@social.heise.deServus, freie Software! 🥨 In München weht ein neuer Wind durchs Rathaus – und der riecht verdächtig nach Open Source.
Zum Artikel: https://heise.de/-11292444?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_sou…
@Techmeme@techhub.socialSources: Meta is preparing to release the first AI models developed under Alexandr Wang, with plans to offer versions of those models via an open source license (Ina Fried/Axios)
https://www.axios.com/2026/04/06/meta-open-source-ai-models
@heiseonline@social.heise.deEuropa hat jetzt sein eigenes Office – und das ist auch noch Open Source! 🚀
Zum Artikel: https://heise.de/-11320254?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon
@heiseonline@social.heise.deEinige der zuletzt hier besonders häufig geteilten #News:
OpenReception 1.0: Open-Source-Terminverwaltung für Arztpraxen ist fertig
@heiseonline@social.heise.deNoch ein paar der zuletzt hier besonders häufig geteilten #News:
OpenReception 1.0: Open-Source-Terminverwaltung für Arztpraxen ist fertig
@Techmeme@techhub.socialAnthropic commits up to $100M in usage credits for Project Glasswing, along with $4M in direct donations to open-source security organizations (Greg Otto/CyberScoop)
https://cyberscoop.com/project-glasswing-anthropic-ai-open-source-software-vulnera…
@heiseonline@social.heise.de @Techmeme@techhub.socialInference cloud startup DeepInfra raised a $107M Series B co-led by 500 Global and Georges Harik; it currently supports more than 190 open models (Mike Wheatley/SiliconANGLE)
https://siliconangle.com/2026/05/04/deepinfra-la…
@heiseonline@social.heise.deNoch ein paar der zuletzt hier besonders häufig geteilten #News:
OpenReception 1.0: Open-Source-Terminverwaltung für Arztpraxen ist fertig
@Techmeme@techhub.socialStudy: Mistral and other open-source AI models are among the weakest at filtering Russian disinformation; Mistral's top model ranks 47 out of 60 tested models (Andrew Jack/Financial Times)
https://www.ft.com/content/9703cd44-a966-42ff-bd2e-bfd3bcbc22bb
@Techmeme@techhub.socialGoogle attributes the supply chain attack on HTTP client Axios to a suspected North Korean threat actor it calls UNC1069 (Lorenzo Franceschi-Bicchierai/TechCrunch)
https://techcrunch.com/2026/03/31/hacker-hijacks-axios-open-source-…
@heiseonline@social.heise.deGoogle: Neues KI-Modell läuft auch auf Laptops mit nur 16GB RAM
Google veröffentlicht Gemma 4 12B: Das lokale Open-Source-Modell läuft schon auf Laptops mit nur 16 GByte RAM.
https://www.
@Techmeme@techhub.socialThe EU unveils an open-source age verification app that requires legal ID to shield minors from harmful content, aiming to standardize verification in the bloc (Gian Volpicelli/Bloomberg)
https://www.bloomberg.com/news/articles/20
@heiseonline@social.heise.deTotgesagte leben länger: Lokale Bilder-KI Amuse 3.2.0 erschienen
Die Entwicklung an der Bild- und Video-KI Amuse wurde eingestellt, die Quellen als Open Source veröffentlicht. Nun gibt es erste Updates.
htt…
