Adventures in Dystopia

Following a NYT report that the US and Israel discussed a potential post-war role for Mahmoud Ahmadinejad, some Iranian hardliners began accusing the former president of being an Israeli asset, despite no public evidence supporting the claim. (Source: https://www.nytimes.com/2026/05/19/us/politics/iran-israel-us-leader-ahmadinejad.html)

awesome

Telegram does not need to have its message encryption broken for users to be tracked at the network layer. Telegram sends MTProto over unencrypted TCP, exposing auth_key_id - a long-lived identifier tied to the client’s authorisation key. An ISP, hotel WiFi operator, mobile carrier, transit provider, or surveillance system on the network path can see that identifier if they can observe the traffic. It can remain stable across app restarts, IP changes, VPN use, network switches, and location changes. Secret Chats protect message content, but this leak is below that layer. That makes the attack passive. The risk is in retroactive correlation. Think a journalist using Telegram from different networks for months, then joining hotel or corporate WiFi under a real name. That one identity anchor could make old logs searchable for the same auth_key_id. The fix is simple - mandatory transport encryption for all MTProto connections, with no unencrypted fallback. Telegram chose not to do this. Source: @kaepora symbolic.software/pdf/gnmx-01.pdf P.s.: Long life, global passive observer

Telegram does not need to have its message encryption broken for users to be tracked at the network layer. Telegram sends MTProto over unencrypted TCP, exposing auth_key_id - a long-lived identifier tied to the client’s authorisation key. An ISP, hotel WiFi operator, mobile carrier, transit provider, or surveillance system on the network path can see that identifier if they can observe the traffic. It can remain stable across app restarts, IP changes, VPN use, network switches, and location changes. Secret Chats protect message content, but this leak is below that layer. That makes the attack passive. The risk is in retroactive correlation. Think a journalist using Telegram from different networks for months, then joining hotel or corporate WiFi under a real name. That one identity anchor could make old logs searchable for the same auth_key_id. The fix is simple - mandatory transport encryption for all MTProto connections, with no unencrypted fallback. Telegram chose not to do this. Source: @kaepora symbolic.software/pdf/gnmx-01.pdf

Funny fact: in Moscow, it is hotter than in Tehran.

Each git commit remember me @toberg

Source: X

Через час после окончания сегодняшней акции приглашаем собрать те самолетики, которые Вы найдете у Вашего дома.

интересное исследование про названия цветов в разных языках. видно как в английском (2) проседает словарь для оттенков синего. в китайском (1) очень детально описывается часть от красного к оранжевому, но при этом нет жёлтого. во французском (3) очень много слов для светло- и тёмно-синего и практически нет зелёного. на сайте можно навести на цвет, чтобы увидеть название: https://idl.uw.edu/color-naming-in-different-languages/vis/stacked-spectrum.html

PASSWORD MANAGER 'BITWARDEN' CLI WAS COMPROMISED IN A SUPPLY CHAIN ATTACK ⚠️ BITWARDEN CLI 2026.4.0 WAS COMPROMISED AS PART OF THE ONGOING CHECKMARX SUPPLY CHAIN CAMPAIGN AFTER ATTACKERS ABUSED A GITHUB ACTION IN BITWARDEN’S CI/CD PIPELINE: SOCKET - INFINITYHEDGE SOCKET: IF YOU USE BITWARDEN CLI, WE RECOMMEND REVIEWING YOUR CI LOGS AND ROTATING ANY SECRETS THAT MAY HAVE BEEN EXPOSED TO THE COMPROMISED WORKFLOW SECURITY RESEARCHER ADNAN: I BELIEVE THIS IS THE FIRST TIME A PACKAGE USING NPM TRUSTED PUBLISHING HAS BEEN COMPROMISED

Little free promotion: https://t.me/claimer_best There you may buy good usernames (non NFT usually) with fair prices. Enjoy!

Is dividing everyone into binary and non-binary itself binary or non-binary?