atx_aquarian

Might have just found out about another?

Hezbollah hand-held radios detonate across Lebanon, sources say - https://www.reuters.com/world/middle-east/israel-planted-explosives-hezbollahs-taiwan-made-pagers-say-sources-2024-09-18/

If you're on a ".gov" site, it's safe to expect that it is a legit site of the US government.

Nice

Sun Tzu nods, wisely.

It's absolutely not enough time. Those are serial killers in the making.

Fuck is wrong with you?

I'd had this over my front door for however long it took for them to build it. My pest control service said the size of the nest can affect how aggressively defensive they might respond to perceived intruders. I guess maybe I was just lucky we caught this one before it got any more developed.

I thought it was because he’s afraid he sounds like he's saying "lion" instead of "lying", and he doesn't want to risk sounding complimentary.

~~It blows my mind that centuries-old concepts "let's not jump to hasty conclusions" and "people should be free to protest the government but not break the law" just got called "flaming progressive".~~

edit: Sorry, now I see what you're saying, that those were some points that pull people from across the aisle.

“Incomplete paper and online applications will not be accepted,” Evans said in the statement. (Parker’s [demonstration] cancellation request would have lacked a driver’s license number.) The Secretary of State’s Office did not respond to individual questions about what testing the portal underwent before launch, the system’s security procedures, what happened to Parker’s cancellation request....

Yeah, that tells us we just don't know if this was a problem after all. Evans's statement basically claims it wasn't a vulnerability. If that's correct, then the worst thing might be if someone's browser tripped on the validation JS and allowed them down a blind alley execution path. If the claim is correct and if the page's JS never shits the bed, then in that case the only negative outcome would be someone dicking with the in-browser source could lead themselves down the blind alley, in which case who cares. The only terrible outcome seems like it would be if the claim is incorrect--i.e. if an incomplete application submission would be processed, thus allowing exploit.

Short of an internal audit, there's no smoking gun here.

Source code escrow is a thing, too. I've only seen it in the context of (as I understood it) protection against going out of business, but perhaps it could apply to discontinued products, as well?