Source Byte

Bitcoin accepted😅

Mullvad exit IPs as a fingerprinting vector Mullvad is one of the few VPN providers that offers multiple exit IPs for its servers. If two people connect to the same server, they will usually end up with different public IPs.With only 578 servers (compared to Proton VPN’s 20,000), this kind of vertical scaling makes sense to avoid cramming too many users onto one IP, which would be a problem on sites with overzealous IP blocks and ratelimits.Surprisingly, the exit IP you are given is not randomized each time you connect to the server, but deterministically picked based on your WireGuard key, which rotates every 1 to 30 days (unless you use a third-party client, in which case it never rotates).But wait.. if each server assigns you an independently picked static exit IP, wouldn’t just a few of those be enough to uniquely identify you among every other Mullvad user? https://tmctmt.com/posts/mullvad-exit-ips-as-a-fingerprinting-vector/

Any app on recent Android versions can leak certain traffic A recently discovered bug in Android 16 allows any app to leak traffic outside the VPN tunnel. As reported in the post The Tiny UDP Cannon: An Android VPN Bypass, Android 16 introduced a bug that allows a malicious app to send traffic outside the VPN tunnel, including with “Always-On VPN” + “Block connections without VPN” turned on. This affects all VPN apps, not just Mullvad VPN. This blog post aims to spread knowledge about this issue to help keep our users safe. https://mullvad.net/en/blog/any-app-on-recent-android-versions-can-leak-certain-traffic

از اینترنت باز تا حاکمیت اینترنتی: ایران در آستانه عصر تازه‌ای از سرکوب دیجیتال https://filter.watch/2026/04/20/nvestigative-report-april-2026-from-the-open-internet-to-internet-sovereignty/

Adversaries Leverage AI for Vulnerability Exploitation, Augmented Operations, and Initial Access https://cloud.google.com/blog/topics/threat-intelligence/ai-vulnerability-exploitation-initial-access

A critical no-interaction proximal/adjacent remote code execution vulnerability in adbd's ADB-over-TCP authentication path. https://barghest.asia/blog/cve-2026-0073-adb-tls-auth-bypass/ #CVE-2026-0073

gdrv3.sys – Reverse Engineering a Signed Kernel Driver with 13 Hardware Access Primitives https://core-jmp.org/2026/05/gdrv3-sys-reverse-engineering-a-signed-kernel-driver-with-13-hardware-access-primitives/

USB Made Simple An introduction to USB https://web.archive.org/web/20141226231324/http://www.usbmadesimple.co.uk/ums_1.htm

Copy Fail (CVE-2026-31431): Technical summary of this Linux flaw https://www.linuxtricks.fr/news/10-logiciels-libres/600-copy-fail-cve-2026-31431-synthese-technique-sur-cette-faille-linux/

Ghost Operators: How Israeli Telecoms Were Exploited to Track Citizens Worldwide Report shows how an SMS exploit turns smartphones into tracking devices – and how 4G and 5G networks are abused https://www.haaretz.com/israel-news/security-aviation/2026-05-03/ty-article-magazine/ghost-operators-how-israeli-telecoms-were-exploited-to-track-citizens-worldwide/0000019d-e9c0-dd9a-a79d-ede90a450000

LLM Internals Learn LLM internals step by step - from tokenization to attention to inference optimization. https://github.com/amitshekhariitbhu/llm-internals

[ + ] They appear from nowhere [ + ] say we are fighting GOV [ + ] leak some MCI internal chats [ + ] start sharing VPNs plz don't fight 😆

ما با موفقیت به اپراتور همراه اول و نظام صنفی رایانه ای کشور نفوذ کردیم و جزئیات این اقدام که در اعتراض به اینترنت پرو انجام شده بزودی منتشر خواهد شد

soon : let's run it on a toaster

DeepSeek-V4 https://www.k-a.in/DeepSeek-V4.html

Some programs only accept filenames, even when input comes from a pipe. A common convention is - for stdin, but each program has to implement that itself. Example from diffutils:

if (STREQ (cmp.file[f].name, "-")) {
    fd = STDIN_FILENO; // <- THIS
    ...
}

That's what makes this work:

ls | diff -u - oldfilelist

But /dev/fd/0 avoids depending on that convention. It gives the current process's stdin a real pathname:

ls | diff -u /dev/fd/0 oldfilelist

On Linux, /proc/self/fd comes from the kernel via procfs, while /dev/fd, /dev/stdin, /dev/stdout, and /dev/stderr are usually set up in early userspace by udev. Ref: - https://cgit.git.savannah.gnu.org/cgit/diffutils.git/tree/src/diff.c#n1481 - https://github.com/systemd/systemd/blob/v260.1/src/shared/dev-setup.c#L22

HTA writing files when Windows doesnt want it to https://branestawmc.pages.dev/posts/2025-07-24-HTA-writing-files-when-Windows-doesnt-want-it-to