@Techmeme@techhub.socialThe US House passes a bipartisan bill to expand US export controls to restrict Chinese companies' remote access to US AI chips from data centers outside China (Juro Osawa/The Information)
https://www.theinformation.com/briefings/house-passe…
@keithp@fosstodon.orgToday, I learned that emacs can access remote files:
/ssh:<host>:<path>
Why do I feel like I should have known this like thirty years ago?
@geant@mstdn.socialMore than 230 universities and research institutions use #eduVPN as their corporate VPN solution.
But what makes them choose it?
We asked Tuukka Vainio from the University of Turku to walk us through their journey of why they chose eduVPN and what it changed for students, researchers and staff.
See highlights from the case study below 👇
🔗 Read the full story:
@cdarwin@c.imTo house the hundreds or thousands of temporary workers needed to build an AI data center, developers are increasingly relying on temporary villages known as "man camps".
This style of camp was popularized as housing for men working in remote oil fields.
For example, as a Bitcoin mining facility in rural Dickens County, Texas is converted into a 1.6 gigawatt data center, Bloomberg reports its workers are living in gray housing units with access to a gym, a laundromat, g…
@deepthoughts10@infosec.exchangeReliaquest has a post on attacker’s use of .SCR files to install remote access software. SCR (screensaver) files _are_ executable files. If you don’t already, please block .scr files from being emailed to your end users. #cybersecurity
@aral@mastodon.ar.alIf you’re looking for an ngrok alternative for tunnelling that is affordable and just works (e.g., with Kitten¹), I can highly recommend LocalXpose (https://localxpose.io/).
(Not affiliated with them in any way; just use their tunnels for testing with Kitten on a daily basis.)
PS. If you have a static IPv4 …
@michabbb@social.vivaldi.net🎭 Threat actor also published 3 clean packages (lara-media, snooze, syslog) to build credibility before deploying malicious ones — classic supply chain deception
💀 Impact: Full remote shell access, arbitrary file read/write, harvesting of .env contents including database credentials & API keys — RAT runs at app boot with same permissions as the web app
@geant@mstdn.social#eduVPN case study: Ca’ Foscari University of Venice (Part 2)
University adopted eduVPN as its sole remote-access system for the entire institutional community.
For Ca’ Foscari, choosing a solution designed specifically by and for the R&E community and supported in Italy by GARR was an important step in aligning remote access with its broader digital infrastructure.
Stefano C…
@mgorny@social.treehouse.systemsModern use of LLMs often involves giving them access to the local system: to read and write your project files, and to execute arbitrary commands, often unsupervised. So aren't people worried about a harness just doing what a remote #LLM tells it to do?
I think a statement I've heard lately summarizes the mindset well. It went something along the lines "I can't give you 100% guarantee, but I've noticed that LLMs are very good at following instructions, and they're getting better and better, so I don't worry about that anymore".
Like, it is completely fine to introduce a humongous security hole, because the probability that a model will *accidentally* do something horrible is decreasing.
#AI #NoAI #NoLLM #security
@newsie@darktundra.xyz @geant@mstdn.social#eduVPN case study: Ca’ Foscari University of Venice (Part 1)
Ca’ Foscari University of Venice has adopted eduVPN as its sole remote-access system for the entire institutional community.
👇 Check the highlights below from the case study
🔗 Read the full story:
@michabbb@social.vivaldi.net✅ Immediate action required: Update to GNU Inetutils 2.8 or migrate to #SSH for secure remote access
https://nvd.nist.gov/vuln/detail/CVE-2026-24061
