Search results for tag #knowledge
State of (in)security - Week 11, 2026
During the week of March 9–16, 2026, the cybersecurity landscape saw 22 advisories and 16 incidents including ransomware, data breaches, and actively exploited vulnerabilities in products like SolarWinds, Ivanti, and Salesforce. Over 3.3 million individuals impacted, largely by a single Cal AI breach exposing 3 million records. Malware/ransomware and software vulnerability exploits were the leading causes, hitting sectors from healthcare and finance to consulting and food & beverage.
**If you use AI platforms and chatbots, remember that they are just web applications and have a bunch of other possible flaws. Make sure databases, API endpoints, and system prompts are locked down with proper authentication, access controls, and integrity monitoring, not left exposed as an afterthought. Regularly audit your AI infrastructure for basic web application flaws like exposed APIs, SQL injection, and missing authentication, because even the most advanced AI tools can be undone by classic, well-known security mistakes.**
#cybersecurity #infosec #knowledge #weeklyreport
https://beyondmachines.net/event_details/state-of-in-security-week-11-2026-m-2-h-j-4/gD2P6Ple2L
#ITByte: Pre-trained #LLMs have challenges to answer domain specific queries.
Researchers have turned their attention to the concept of #Knowledge #Injection. Knowledge injection is the process of incorporating outside knowledge into language models to improve their performance on certain tasks.
https://knowledgezone.co.in/posts/LLM-Knowledge-Injection-65eeb46130e0a664101a7f74
“We're past the point of fixing anything… We have to understand the world around us best if we are going to adapt to it… (or) we're not going to survive very long as a species.”
State of (in)security - Week 7, 2026
During the week of Feb. 9–16, 2026, 19 vulnerability advisories and 16 incidents were recorded. Critical patches were released by major vendors including Microsoft, Apple, Adobe, Fortinet, and Ivanti, several are actively exploited. Data breaches and ransomware attacks hit healthcare, government, and tech sectors and impacted over 50.8 million individuals. The largest exposure was caused from a Firebase misconfiguration in the Codeway AI Chat App leaking 300 million messages.
**Disable AI extensions that have local system access if they also read data from public sources like calendars or email. You should never allow an autonomous agent to bridge untrusted external content directly to your operating system's command line. Treat AI agents as privileged entities and implement monitoring to detect unauthorized command execution.
When developing a product, always make sure to patch your own product instances. Because you are just as exposed, and you don't have a lot of reasonable arguments not to patch.**
#cybersecurity #infosec #knowledge #weeklyreport
https://beyondmachines.net/event_details/state-of-in-security-week-7-2026-r-9-i-o-b/gD2P6Ple2L
An intriguing read. It confirms a theory about life I've had for a long time…
( No paywall: https://archive.is/FtA31 )
#science #life #brain #neuroscience #biology #research #knowledge #info #information #reading #article
State of (in)security - Week 6, 2026
**AI tools are under attack and full of vulnetabilities in the past week. The rule stands, this is a half-baked technology, and everyone is rushing to push out incomplete and very insecure products. Research a lot before deploying, and always deploy with a lot of isolation and blocks from your real life. Or just accept you have installed something imminently vulnerable.**
#cybersecurity #infosec #knowledge #weeklyreport
https://beyondmachines.net/event_details/state-of-in-security-week-6-2026-9-i-9-j-j/gD2P6Ple2L
@vermaden Thank you 💕 for the hard work Vermaden. I'll put this book on my list of goodies in *nix*BSD
https://vermaden.wordpress.com/2022/02/04/books-about-freebsd#book-pf-4th
#BSD #OperatingSystem #freeBSD ghostBSD #openBSD #programming #technology #firewall #book #reading #knowledge
I feel closely related to the Xenoturbella…
#animal #animals #life #sea #biology #science #knowledge #interesting #info #information
Alt...
Today | learned about the Xenoturbella, an organism without brain, eyes and organs with just one hole (for food to get in and out again). It just slides through the deep sea floor, existing for no clear reason.
State of (in)security - Week 4, 2026
During the week of January 19-26, 2026, there were 15 vulnerability advisories and 20 security incidents, with a massive infostealer database breach exposing 149 million credentials accounting for the majority of 149.7 million total impacted individuals. The week saw active exploitation of vulnerabilities on multiple platforms (Fortinet, VMware, Cisco) and ransomware attacks. Healthcare is the most targeted industry sector.
**Be aware that all MCP servers are vulnerable various prompt injections. Always add filtering and validation to all inputs to the AI Agent and to the MCP server. If you are using Anthropic mcp-server-git, update it to version 2025.12.18 ASAP and avoid running Git and filesystem MCP servers on the same host.**
#cybersecurity #infosec #knowledge #weeklyreport
https://beyondmachines.net/event_details/state-of-in-security-week-4-2026-s-m-n-e-r/gD2P6Ple2L
I decided I need to educate myself about Rev. Dr. Martin Luther King, Jr. My 1980s rural NC American History education ain’t getting the job done. I’ve learned many things in adulthood about Dr. King I didn’t know!
If we want to fight the system and the oppression we’re living through currently, we need to arm ourselves first with #knowledge.
It’s clear that Dr. King was a genius, a scholar, and a godly man. I got help at my local public #library to find this book, “King: A Life”, by Jonathan Eig. Excited to get started!
#racism #education #mlk #blackhistory #knowledgeispower #books #reading #bookstodon
Alt...
“King: A Life”, by Jonathan Eig
State of (in)security - Week 3, 2026
During the week of January 12-19, 2026, there were 25 vulnerability advisories and 21 security incidents affecting approximately 20.6 million individuals. The week saw critical vulnerabilities across major platforms (Microsoft, Adobe, Google, SAP, Fortinet) and significant ransomware attacks. Healthcare is the most impacted industry sector.
**Even if you are a cybercrime forum, you still need to be very careful about security practices. Probably even more so, because both criminals and law enforcement are watching. And there is no honor towards a cybercrime forum.**
#cybersecurity #infosec #knowledge #weeklyreport
https://beyondmachines.net/event_details/state-of-in-security-week-3-2026-h-o-4-7-e/gD2P6Ple2L
Good morning. 🦆🪿🦢
14 January 2026
I often find myself wondering why some people can’t wrap their heads around concepts that seem completely obvious. I’ve got a saying for it: “We’re not all issued the same toolkit.” I don’t claim to be the smartest guy in the room, but I’m still amazed at how often I’ve watched people struggle with things that feel straightforward. Education plays a role, sure, but it doesn’t fully account for what I’ve seen.
Take natural selection, for example. I don’t have much formal education in biology, yet the basic logic of natural selection—survival of the fittest—has always made sense to me. It isn’t hard to grasp how tiny changes, stretched across vast spans of time, can accumulate and produce new species. Once you see that mechanism, you can’t unsee it. And yet some people, as I’ve said, just don’t get it… or maybe they refuse to.
I’m not trying to wander into theology, but belief systems absolutely shape this particular conversation. For many folks, understanding evolution feels like betraying their faith, so they choose not to understand. I’ve seen it firsthand—students in college biology classes arguing with the instructor, practically ready to cover their ears and hum just to avoid hearing the explanation. I’m exaggerating, but only a little. People get emotional about this stuff.
C’est la vie. What can you do.
“Everything that irritates us about others can lead us to an understanding of ourselves.” — Carl Jung
“Just because you don’t understand it doesn’t mean it isn’t so.” — Lemony Snicket
“Evolution is one of the shattering ideas that overturns past hopes and assumptions.” — Stephen Jay Gould
“Ignorance more frequently begets confidence than does knowledge.” — Charles Darwin
#photo #photography #photographer #photographylovers #wildlife #nature #bird #birds #birding #birdwatching #birdphotography #morning #knowledge #naturalselection #biology #ducks #geese #thought
Alt...
Where the Flock Goes
"A lively procession of ducks and geese moves across a sunlit grassy field, their bodies angled in the same direction as if drawn by a shared instinct or silent signal. The flock is a patchwork of plumage—some birds are pure white, others deep black, and many wear mottled coats of gray, brown, or cream. Their feathers catch the morning light, revealing soft textures and subtle iridescence. Shadows stretch behind them, long and gentle, anchoring their movement to the earth. The grass beneath is lush and uneven, dotted with tufts and dips that ripple like a green quilt. The birds walk with purpose—some with heads held high, others pecking or glancing sideways—yet the overall motion feels unified, like a slow, deliberate migration or a communal march. In the bottom corner, the photographer’s credit, “© Swede’s Photographs,” marks the image as a captured moment of quiet ceremony." - Microsoft Copilot
“Wikipedia represents something unprecedented: the only major platform on which truth emerges through transparent debate, rather than algorithmic opacity or corporate interests. Every edit is logged, every discussion archived”
I use the Wikipedia app. The hell with the AI companies.
#knowledge #Encyclopedia #Science
https://www.nature.com/articles/d41586-026-00075-0
State of (in)security - Week 1, 2026
During the week of December 29, 2025 to January 5, 2026, there were 7 vulnerability advisories and 19 security incidents affecting over 1 million reported individuals. Healthcare and finance are the most targeted sectors. The largest breach was the Illinois Department of Human Services incident exposing 705,000 people's data. Critical flaws were reported in multiple systems including Apache, GNU Wget2, and SmarterMail.
**Make sure all MongoDB database servers are isolated from the internet and accessible from trusted networks only. Then patch ASAP! If you can't update your MongoDB instance immediately, disable zlib compression.**
#cybersecurity #infosec #knowledge #weeklyreport
https://beyondmachines.net/event_details/state-of-in-security-week-1-2026-x-u-n-j-e/gD2P6Ple2L
@GhostOnTheHalfShell @internetarchive yeah, OFC depriving #NASA (and the public!) of #knowledge & #access to #documentation and #research isn't a new method!
The so-called #audiophile community is famous for the amount of #woo that passes for knowledge or expertise.
When you look at the DIY audio community - building things up from #electronic components or modules - you add in the cargo-cult processes used by people with no basic electronics knowledge building these things, and the false-but-confident beliefs of those with some knowledge but more assurance of their own intelligence 🙄 - and you get some real doozies in discussion threads [1] on audio/electronics fora.
I just came across one that will stick with me:
A: I saw some people are doing <X> to increase the bass from this little amp. Should I do it?
B (actually knowledgeable): Depends on the design. If it's lacking <Y>, it can help the subjective bass response of the amp.
C (overly confident): BS! OBJECTIVELY (!) you get more and better boom.
Boom-boom, you know? Your guts will tell you the objective truth.
... that is LITERALLY the definition of "subjective". 🤣
[1] A.K.A. arguments on the instalment plan.
#literally #argument #discussion #thread #forum #fora #electronics #audio #hobby #DIY #DunningKrueger #knowledge #experience #objective #subjective #CargoCult
State of (in)security - Week 52, 2025
During the week of December 22-29, 2025, there were 20 cybersecurity incidents (up from 16 the previous week) and 6 vulnerability advisories, impacting approximately 2.8 million individual. The largest breach is WIRED/Condé Nast affecting 2.3 million subscribers. The incidents were primarily driven by malware/ransomware attacks and third-party compromises. The finance and IT sectors being the most heavily targeted.
**If you're running MongoDB servers, first check if they are exposed to the internet. If yes this is urgent. Upgrade to the patched versions (8.2.3, 8.0.17, 7.0.28, 6.0.27, 5.0.32, or 4.4.30). Alternatively, isolate from the intenet, disable zlib compression and plan a patch cycle.**
#cybersecurity #infosec #knowledge #weeklyreport
https://beyondmachines.net/event_details/state-of-in-security-week-52-2025-k-y-a-i-8/gD2P6Ple2L
Some very interesting links for all who want to improve #plant #awareness as #teachers, #academics, or #sciComm activists: https://nph.onlinelibrary.wiley.com/doi/toc/10.1002/(ISSN)2572-2611.fostering-plant-awareness
#botany #academicChatter #biology #plants #education #biodiversity #knowledge #ecology #phytology
Alt...
Page of my herbarium from walking with my dog: I collected only plants that my dog discovered. Here are three parts of grass (false oatgrass) which he liked to eat. I noted the species, how he discovered them, and why he could have eaten them (amount of phosphorus, calcium and saponines).
State of (in)security - Week 51, 2025
During the week of December 15-22, 2025, there were 17 vulnerability/advisory events and 16 data breach incidents, and over 28 million individuals impacted primarily due to the SoundCloud breach. The cybersecurity landscape is dominated by actively exploited critical vulnerabilities on multiple platforms (including Fortinet, Cisco, ASUS, and WatchGuard) and ransomware attacks. Healthcare is the most targeted industry.
**We've seen secrets in code, but storing PII in code repository is totally weird, especially when you think of the code repository of just program code and forget the data files. Never store PII in code repository. There are so many ways to expose it. And make sure to delete data of former customers unless you are legally required to keep it.**
#cybersecurity #infosec #knowledge #weeklyreport
https://beyondmachines.net/event_details/state-of-in-security-week-51-2025-k-r-k-t-z/gD2P6Ple2L
We certainly will need to preserve the #tech and #knowledge to build these and consider using #WasteHeat that way more often than not, because it is #simple, #efficient, has no moving parts and thus not failure points.
- It certainly would make it easier and simpler to build a lot of #passive #sensors and also enable more #FrugalComputing just by virtue of being a non-moving, no-maintenance deal.
In case anyone gets reminded by this design: Yes, the Russians did abuse the same principle for RTGs like the infamous Beta-M...
Alt...
Abandoned Beta-M type RTGs on the Kola Peninsula.
- An IBC-style container frame with a big metal cylinder mounted inside it. It has vertical cooling fins oun the outside. The container's side panels are gone alongside it's warning signs for the radioactive content of the RTG.
- A second, less-vandalized container is next to it, tho similarly disrepaired and abandoned to the elements.
Source: Apparently from bellona.no, which claims "(c) BELLONA -- Reuse and reprint recommended provided source is stated"; they credit the image to "Finnmark region government".
https://commons.wikimedia.org/wiki/File:Soviet_RTG.jpg
State of (in)security - Week 50, 2025
During the week of December 8-15, 2025, there were 16 vulnerability advisories (including actively exploited flaws in GeoServer, Gogs, Chrome and WebKit) and 13 security incidents affecting 296,100 individuals. Ransomware attacks dominate breach causes and healthcare is the most targeted industry. Critical vulnerabilities were patched across major vendors including Microsoft, Apple, Adobe, Fortinet, Google and ConnectWise.
**Data brokers are just greedy, but not at all good with their data protection. Because it's not their data, it's simply grabbed and abused.**
#cybersecurity #infosec #knowledge #weeklyreport
https://beyondmachines.net/event_details/state-of-in-security-week-50-2025-w-9-g-3-l/gD2P6Ple2L
THREAD
1/
I don’t read the news, but today I did, and it really got me thinking.
Internet culture has reshaped how we relate to knowledge. Alignment now seems to matter more than accuracy, and online, there is always some place, or some person, willing to offer alignment.
#Scotland #Internet #Knowledge #Truth #SocialMedia #News #Misinformation #Writing #WritingCommunity #Reading #Culture #TV #UK
Alt...
A black and white photograph of a small island of tall trees standing in the middle of a calm loch, partially veiled by mist. The water is smooth and reflective, mirroring the dark silhouettes of the trees. Pale hills fade into the fog in the background, and a few birds skim low over the water to the right, adding a sense of quiet movement to the still scene.
#Knowledge Byte: Amazon's Jeff Bezos is building a giant 10,000-year clock inside a mountain in West Texas.
Once completed, the clock will stand 500 feet (152 meters) tall and will be powered by the Earth's thermal cycles.
https://knowledgezone.co.in/posts/10000-Year-Clock-656c19007bb76758f69bc689
State of (in)security - Week 48, 2025
During the week of November 24-December 1, 2025, cybersecurity activity showed 8 vulnerability advisories and 13 incidents affecting approximately 474,000 individuals across multiple sectors. Healthcare is the most targeted industry (4 incidents). The week featured a mix of critical vulnerabilities requiring patching, active exploitation campaigns (including AI framework and NPM supply chain attacks), and significant data breaches. The largest being a UK broadband provider breach exposing over 230,000 customer records.
**Don't panic over urgent "account blocked" warnings in unexpected emails. Never click links or open files in these messages. Instead, type the official website address of your cloud provider directly into your browser to check your actual account status.**
#cybersecurity #infosec #knowledge #weeklyreport
https://beyondmachines.net/event_details/state-of-in-security-week-48-2025-j-z-k-0-j/gD2P6Ple2L
@spiegelmama Oh yes! In such moments I become curious to know how they made it. So much #craft #knowledge is lost, and often, our research takes a lot of time.
In this case, the trace leads me to the end of the 1960s/1970 when it was a trend to use this technique for tablecloths, scarves etc.
They often used fishermen's twine and it seems to be made on a wooden frame using stitching from behind. Here a photo from the Internet showing a backside.
Alt...
On the backside the pattern is stitched with coloured yarn to get the flower-like effects.