photog.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A place for your photos and banter. Photog first is our motto Please refer to the site rules before posting.

Administered by:

Server stats:

242
active users

#security

140 posts104 participants3 posts today

GmsCompatConfig version 160 released:

github.com/GrapheneOS/platform

See the linked release notes for a summary of the improvements over the previous release and a link to the full changelog.

Forum discussion thread:

discuss.grapheneos.org/d/24386

GmsCompatConfig is the text-based configuration for the GrapheneOS sandboxed Google Play compatibility layer. It provides a large portion of the compatibility shims.

Changes in version 160:

disable feature flags for Play services Android Advanced Protection since sandboxed Play services can't control OS security features and we have stronger security features ...
GitHubRelease config-160 · GrapheneOS/platform_packages_apps_GmsCompatChanges in version 160: disable feature flags for Play services Android Advanced Protection since sandboxed Play services can't control OS security features and we have stronger security features ...

Women #Dating Safety App 'Tea' #Breached , Users' IDs Posted to #4chan

Users from 4chan claim to have discovered an exposed database hosted on Google’s mobile app development platform, #Firebase , belonging to the newly popular women’s dating safety app #Tea. Users say they are rifling through peoples’ personal data & selfies uploaded to the app, and then posting that data online, according to screenshots, 4chan posts, and code reviewed by 404 Media.
#privacy #security

404media.co/women-dating-safet

404 Media · Women Dating Safety App 'Tea' Breached, Users' IDs Posted to 4chan“DRIVERS LICENSES AND FACE PICS! GET THE FUCK IN HERE BEFORE THEY SHUT IT DOWN!” the thread read before being deleted.

Supply-chain attacks on open source software are getting out of hand

It has been a busy week for supply-chain attacks targeting open source software available in public repositories, with successful #breaches of multiple #developer accounts that resulted in malicious packages being pushed to unsuspecting users.
#security #supplychain #opensource

arstechnica.com/security/2025/

Gloved hands manipulate a laptop with a skull and crossbones on the display.
Ars Technica · Supply-chain attacks on open source software are getting out of handBy Dan Goodin

🛰️ Starlink endured one of its most serious global service failures on yesterday. The outage lasted about two and a half hours, traced back to a major internal software malfunction. Among others, it disrupted Ukrainian military communications that power critical drone and battlefield systems. Can governments and the military depend on a privately controlled satellite backbone? 📡

TL;DR
🧠 Software failure knocked service offline
🌐 Outage spanned ~2.5 hours globally
📉 Tens of thousands of users affected
🎯 Ukrainian warfront drone ops stalled

theverge.com/news/713359/starl
#Starlink #SatelliteInternet #CyberResilience #InfrastructureRisk #security #privacy #cloud #infosec #cybersecurity

A starlink dish against a bright sky as a jet flies past overhead.
The Verge · Starlink satellite internet service is down everywhereBy Richard Lawler