Regulations? Fine. Compliance? Sure. But Chat Control isn't regulation it's surveillance. Mass privacy invasion doesn't fight crime, it creates a police state. #chatcontrol
Chat Control 1 is back. Despite the European Parliament voting down the legislation twice this year, the Council of the European Union and parts of the Parliament today managed – through an urgent procedure – to extend it for another two years. The law was originally introduced as temporary legislation, so that its effectiveness could be evaluated. At the end of 2025, the European Commission itself concluded that it was not possible to determine whether the law had any measurable effect. Even so, it has now been pushed through.
Some of today's amendments could have stopped the law. And a majority of the voting MEPs wanted to do so. By a margin of 314-276, the Parliament voted to reject the proposal through these amendments. However, since it was an urgent procedure, 361 votes were required. As a result, the majority lost today and Chat Control 1 was passed. The urgent procedure was a dirty play by the Council and parts of the Parliament – it’s a procedure not meant to be used on legislation already rejected by the Parliament.
For now, Chat Control 1 will remain in effect. This means that tech companies may continue scanning communications without a warrant or suspicion.
However, the real battle is Chat Control 2. Unlike Chat Control 1, it would require all providers to scan communications, and to do so far more extensively than Chat Control 1 ever has.
❗️🚨 Microsoft Edge keeps every saved password in process memory as cleartext from the moment it launches. Microsoft's responsed when reported: "by design."
All of them. Including credentials for sites you won't open this session.
Researcher @L1v1ng0ffTh3L4N tested every major Chromium browser. Edge is the only one that behaves this way.
Chrome decrypts credentials on demand, and App-Bound Encryption locks the keys to an authenticated Chrome process so other processes can't reuse them.
In Chrome, plaintext surfaces only during autofill or when a password is viewed, making memory scraping far less useful.
What makes this extra weird is that Edge still demands re-authentication before revealing those passwords in its Password Manager UI, while the same browser process already holds every one of them in plaintext.
In shared environments, this turns into a credential harvest. On a terminal server, an attacker with admin rights can read the memory of every logged-on user process. In the published PoC video, a compromised admin account lifts stored credentials from two other logged-on (and even disconnected) users with Edge running.
Microsoft's official response when notified: "by design."
The finding was disclosed April 29 at BigBiteOfTech by PaloAltoNtwks Norway, alongside a small educational tool that lets anyone verify the cleartext storage for themselves.
@sabir_huss50540@aiwithjainam Use https://t.co/qulwbkL8VU
It uses zero knowledge encryption, no one can access your data unless u added a person as a trusted entity
Starting today, agents can now be Cloudflare customers. They can create a Cloudflare account, start a paid subscription, register a domain, and get back an API token to deploy code right away. https://t.co/qFgCivQTTi
@Rational_Answer В Швеции и Норвегии та же история. Пять лет нельзя приезжать больше чем на 30 дней (точно не помню). Плюс не должно быть связей со страной, а то занеси долляр с доходов😂
We have successfully completed the ISO 27001:2022 security audit.
This certification formalizes how we manage information security across the entire organization: access controls, risk management, incident response, and continuous monitoring. For institutions building on our infrastructure, this translates into a predictable and auditable security posture.
With ISO 27001:2022, our security systems are built to identify risks early and adapt as the threat landscape evolves - the same standards you apply internally are now enforced across the systems you rely on.
We build infrastructure for regulated financial workflows. Security is part of our operating model.
@AriaWestcott And u can store all this information in https://t.co/qulwbkL8VU
We use zero knowledge encryption which means your data is safe and can't be read by anyone but your trusted partner.
@ElsaSofia__AI You can also use https://t.co/ROF5GRKULj for this case. The project uses zero-knowledge encryption, so no one can access your data unless you specifically designate a trusted person.
@escapasistema También puedes usar https://t.co/ROF5GRKULj para este caso. El proyecto utiliza cifrado de conocimiento cero, por lo que nadie puede acceder a tus datos a menos que designes específicamente a una persona de confianza.
@isafernan También puedes usar https://t.co/qulwbkL8VU para este caso. El proyecto utiliza cifrado de conocimiento cero, por lo que nadie puede acceder a tus datos a menos que designes específicamente a una persona de confianza.
Vercel got hit by a security incident.
So i urge everyone to do a vercel cleanup, as of now:
1. i would not trust any sensitive variable that it's stored in vercel
2. make sure you do not have people that should not be invited into your organization
3. Disconnect githubs and connect again