fosstodon.org is one of the many independent Mastodon servers you can use to participate in the fediverse.
Fosstodon is an invite only Mastodon instance that is open to those who are interested in technology; particularly free & open source software. If you wish to join, contact us for an invite.

Administered by:

Server stats:

8.6K
active users

Well fuck. Reflect Orbital just filed for their first satellite with the FCC. reflectorbital.com/

I hate them even more than AST SpaceMobile. At least AST does something mildly useful, unlike Reflect Orbital, which is 100% a scam and will collide with a lot of junk in orbit.

Time to go rage-scream in the hay field. And then go to a meeting with astronomers to talk about what we can do to fight it.

www.reflectorbital.comReflect OrbitalSunlight after dark

A reminder that software makers, hardware makers, cloud services, payment processors, and the like will throw their customers under the bus whenever it suits them. Your payment card, food delivery account, AWS instance, Gmail address -- all can be taken away on a whim for any reason or no reason. These providers are NOT your friend. Make plans now. Have backups in place. Practice self-reliance. Ween yourself off these one at a time.

Bro you gotta join ICE, the benefits are insane. Free diapers in case you shit your pants when you see a brown person. Everyone gets protective sunglasses not just for the job but also for when a girl pepper sprays you because you tried to talk to her. Roofies in the kidnapping van are up for grabs.

CISA has published a severe vulnerability notice regarding a Microsoft Exchange flaw that was disclosed at Black Hat in Las Vegas:

"CISA is aware of the newly disclosed high-severity vulnerability, CVE-2025-53786, that allows a cyber threat actor with administrative access to an on-premise Microsoft Exchange server to escalate privileges by exploiting vulnerable hybrid-joined configurations. This vulnerability, if not addressed, could impact the identity integrity of an organization’s Exchange Online service."

"While Microsoft has stated there is no observed exploitation as of the time of this alert’s publication, CISA strongly urges organizations to implement Microsoft’s Exchange Server Hybrid Deployment Elevation of Privilege Vulnerability guidance outlined below, or risk leaving the organization vulnerable to a hybrid cloud and on-premises total domain compromise."

cisa.gov/news-events/alerts/20

NextGov writes:

"At Black Hat in Las Vegas, Nevada, Outsider Security researcher Dirk-jan Mollema presented a long-form demo exploiting the flaw, where he said he was able to modify user passwords, convert cloud users to hybrid users and impersonate hybrid users."

"Through the exploit, hackers could also modify executive permissions, known as service principals, where they could escalate network access privileges or establish persistent access between on-premises Exchange and Microsoft 365 by tampering with the identities and permissions set up on a network."

No patch, but CISA's alert includes some guidance on hardening and mitigations.

MS advisory: msrc.microsoft.com/update-guid

Cybersecurity and Infrastructure Security Agency CISAMicrosoft Releases Guidance on High-Severity Vulnerability (CVE-2025-53786) in Hybrid Exchange Deployments | CISA

Does anyone on Mastodon still mess with minidisc, I’d love to purchase a minidisc recorded with an alternative rock playlist as a little car warming gift for my friend.

Please boost for reach!

Welcome back to AI Terms Explained!

“Without thinking”: without thinking
“With thinking”: without thinking

Tune in again next time to AI Terms Explained!

FYI the ebook of Old Man's War is going for $1.99 here in US/Canada at (most) ebook stores, for, I think, today. Get it! Cheap! And then buy all the rest of the series including the upcoming seventh installment, The Shattering Peace! The cats need tuna!