DP
@dprudente.bsky.social
Building a compliance tool with sveltekit 🧡 → coming Q1 2026
sec + compliance insights |
occasional movie/gadget ramblings
sec + compliance insights |
occasional movie/gadget ramblings
Reposted by DP
France's postal service, La Poste, said it was hit by a disruptive cyberattack that knocked its services offline.
France's postal and banking services disrupted by suspected DDoS attack | TechCrunch
France's postal service, La Poste, said it was hit by a disruptive cyberattack that knocked its services offline.
techcrunch.com
December 23, 2025 at 3:44 PM
France's postal service, La Poste, said it was hit by a disruptive cyberattack that knocked its services offline.
Reposted by DP
Aflac, one of the largest insurance companies in the U.S., confirmed hackers stole reams of personal data, including Social Security numbers, identity documents, and health information.
US insurance giant Aflac says hackers stole personal and health data of 22.6 million | TechCrunch
Aflac, one of the largest insurance companies in the U.S., confirmed hackers stole reams of personal data, including Social Security numbers, identity documents, and health information.
techcrunch.com
December 23, 2025 at 5:19 PM
Aflac, one of the largest insurance companies in the U.S., confirmed hackers stole reams of personal data, including Social Security numbers, identity documents, and health information.
Reposted by DP
Our new Munich Security Analysis by @tobiasbunde.bsky.social and @valentindaur.bsky.social shows that Germans want a more self-confident policy toward great powers. Yet, this is only possible in cooperation with European partners.
📖 Read the full text here: securityconference.org/en/publicati...
📖 Read the full text here: securityconference.org/en/publicati...
December 22, 2025 at 11:06 AM
Our new Munich Security Analysis by @tobiasbunde.bsky.social and @valentindaur.bsky.social shows that Germans want a more self-confident policy toward great powers. Yet, this is only possible in cooperation with European partners.
📖 Read the full text here: securityconference.org/en/publicati...
📖 Read the full text here: securityconference.org/en/publicati...
Reposted by DP
#Development #Findings
Most parked domains are malicious · Over 90 percent now lead to harmful websites ilo.im/1697mi by Brian Krebs
_____
#Business #Domains #Websites #Malware #Security #Network #DNS #Browser #WebDev #Study
Most parked domains are malicious · Over 90 percent now lead to harmful websites ilo.im/1697mi by Brian Krebs
_____
#Business #Domains #Websites #Malware #Security #Network #DNS #Browser #WebDev #Study
Most Parked Domains Now Serving Malicious Content
41 thoughts on “Most Parked Domains Now Serving Malicious Content”
ilo.im
December 22, 2025 at 1:06 PM
Reposted by DP
CISA warns ASUS Live Update backdoor is still exploitable, seven years on
CISA warns ASUS Live Update backdoor is still exploitable, seven years on
www.malwarebytes.com
December 21, 2025 at 11:21 AM
CISA warns ASUS Live Update backdoor is still exploitable, seven years on
Reposted by DP
Privacy doesn't mean anything anymore, anonymity does
View Article | Join the HN Conversation
Summary of HN discussion 🧵👇 #hacker-news
View Article | Join the HN Conversation
Summary of HN discussion 🧵👇 #hacker-news
Privacy is Marketing. Anonymity is Architecture.
Privacy is when they promise to protect your data. Anonymity is when they never had your data to begin with.
servury.com
December 21, 2025 at 8:00 AM
Privacy doesn't mean anything anymore, anonymity does
View Article | Join the HN Conversation
Summary of HN discussion 🧵👇 #hacker-news
View Article | Join the HN Conversation
Summary of HN discussion 🧵👇 #hacker-news
Reposted by DP
NEW: Cloudflare detected the largest UDP DDoS attacks of the year—peaking at 29.7 Tbps. Aisuru's "short-burst" UDP carpet-bombing tactics are designed to maximize impact while evading traditional mitigation. https://cfl.re/4j66ZVo
Aisuru botnet: Early October attacks escalate into record-setting DDoS activity
On October 31st, 2025, Cloudflare’s network detected the largest UDP DDoS attacks of the year—peaking at 29.7 Tbps.
cfl.re
December 18, 2025 at 6:10 PM
NEW: Cloudflare detected the largest UDP DDoS attacks of the year—peaking at 29.7 Tbps. Aisuru's "short-burst" UDP carpet-bombing tactics are designed to maximize impact while evading traditional mitigation. https://cfl.re/4j66ZVo
Reposted by DP
Modern Svelte Kit - Complete Svelte Kit Course for Beginners
youtu.be/vkXxFfGwPao
youtu.be/vkXxFfGwPao
December 18, 2025 at 2:30 PM
Modern Svelte Kit - Complete Svelte Kit Course for Beginners
youtu.be/vkXxFfGwPao
youtu.be/vkXxFfGwPao
Reposted by DP
#Design #Pitfalls
Color contrast mistakes designers still make · “These accessibility gaps aren’t edge cases.” ilo.im/1698j3 by Allie Paschal
_____
#Color #Contrast #Accessibility #WCAG #DataViz #DesignSystems #Links #ProductDesign #UiDesign #WebDesign
Color contrast mistakes designers still make · “These accessibility gaps aren’t edge cases.” ilo.im/1698j3 by Allie Paschal
_____
#Color #Contrast #Accessibility #WCAG #DataViz #DesignSystems #Links #ProductDesign #UiDesign #WebDesign
ilo.im
December 17, 2025 at 11:14 PM
#Design #Pitfalls
Color contrast mistakes designers still make · “These accessibility gaps aren’t edge cases.” ilo.im/1698j3 by Allie Paschal
_____
#Color #Contrast #Accessibility #WCAG #DataViz #DesignSystems #Links #ProductDesign #UiDesign #WebDesign
Color contrast mistakes designers still make · “These accessibility gaps aren’t edge cases.” ilo.im/1698j3 by Allie Paschal
_____
#Color #Contrast #Accessibility #WCAG #DataViz #DesignSystems #Links #ProductDesign #UiDesign #WebDesign
Reposted by DP
Snag Puru now!
I'm looking for opportunities! Full-time/part-time remote roles.
Actions speak hella louder than words, so allow me to show you all the work I have done in the last 5 years as a professional developer
🧵1/n
Actions speak hella louder than words, so allow me to show you all the work I have done in the last 5 years as a professional developer
🧵1/n
December 17, 2025 at 1:48 PM
Snag Puru now!
Reposted by DP
More details than shared before about the us-east-1 outage in October.
No, it was not caused by “brain drain” (an assumption that those building the services left) - creators of the service causing the issue (DNS Enactor) were on the outage call!
Distributed systems are hard
No, it was not caused by “brain drain” (an assumption that those building the services left) - creators of the service causing the issue (DNS Enactor) were on the outage call!
Distributed systems are hard
December 16, 2025 at 6:54 PM
More details than shared before about the us-east-1 outage in October.
No, it was not caused by “brain drain” (an assumption that those building the services left) - creators of the service causing the issue (DNS Enactor) were on the outage call!
Distributed systems are hard
No, it was not caused by “brain drain” (an assumption that those building the services left) - creators of the service causing the issue (DNS Enactor) were on the outage call!
Distributed systems are hard
Reposted by DP
#Development #Trends
Cloudflare Radar 2025 Year in Review · Trends and patterns in internet usage over the year ilo.im/1696sa by Cloudflare
_____
#Business #Internet #AI #Connectivity #Security #WebTechnology #Browser #WebDev #Frontend #Backend
Cloudflare Radar 2025 Year in Review · Trends and patterns in internet usage over the year ilo.im/1696sa by Cloudflare
_____
#Business #Internet #AI #Connectivity #Security #WebTechnology #Browser #WebDev #Frontend #Backend
ilo.im
December 16, 2025 at 6:39 AM
#Development #Trends
Cloudflare Radar 2025 Year in Review · Trends and patterns in internet usage over the year ilo.im/1696sa by Cloudflare
_____
#Business #Internet #AI #Connectivity #Security #WebTechnology #Browser #WebDev #Frontend #Backend
Cloudflare Radar 2025 Year in Review · Trends and patterns in internet usage over the year ilo.im/1696sa by Cloudflare
_____
#Business #Internet #AI #Connectivity #Security #WebTechnology #Browser #WebDev #Frontend #Backend
Reposted by DP
CodeQL lets you query your code to find logic errors and security issues that standard text search completely misses.
It allows you to take one bug and automatically find every other place that same pattern exists—so you can fix them all at once.
Ready to try it out yourself? Here's how. ⬇️
It allows you to take one bug and automatically find every other place that same pattern exists—so you can fix them all at once.
Ready to try it out yourself? Here's how. ⬇️
About code scanning with CodeQL - GitHub Docs
You can use CodeQL to identify vulnerabilities and errors in your code. The results are shown as code scanning alerts in GitHub.
docs.github.com
December 15, 2025 at 9:10 PM
CodeQL lets you query your code to find logic errors and security issues that standard text search completely misses.
It allows you to take one bug and automatically find every other place that same pattern exists—so you can fix them all at once.
Ready to try it out yourself? Here's how. ⬇️
It allows you to take one bug and automatically find every other place that same pattern exists—so you can fix them all at once.
Ready to try it out yourself? Here's how. ⬇️
Reposted by DP
#Design #Analyses
AI detection tools? · “They cannot prove that text is AI-generated.” ilo.im/168xou by Sean Goedecke
_____
#Business #Humans #Machines #AI #Detection #Text #Content #ProductDesign #UiDesign #WebDesign
AI detection tools? · “They cannot prove that text is AI-generated.” ilo.im/168xou by Sean Goedecke
_____
#Business #Humans #Machines #AI #Detection #Text #Content #ProductDesign #UiDesign #WebDesign
AI detection tools cannot prove that text is AI-generated
--
ilo.im
December 13, 2025 at 6:15 PM
#Design #Analyses
AI detection tools? · “They cannot prove that text is AI-generated.” ilo.im/168xou by Sean Goedecke
_____
#Business #Humans #Machines #AI #Detection #Text #Content #ProductDesign #UiDesign #WebDesign
AI detection tools? · “They cannot prove that text is AI-generated.” ilo.im/168xou by Sean Goedecke
_____
#Business #Humans #Machines #AI #Detection #Text #Content #ProductDesign #UiDesign #WebDesign
Started using @raycast.com on Windows and I'm just loving it! Very first time for me and being able to make many things faster.
December 13, 2025 at 12:32 PM
Started using @raycast.com on Windows and I'm just loving it! Very first time for me and being able to make many things faster.
Reposted by DP
A security researcher tried to alert Home Depot to the security lapse exposing its backend GitHub source code repos and other internal cloud systems, but was ignored.
Exclusive: Home Depot exposed access to internal systems for a year, says researcher
A security researcher tried to alert Home Depot to the security lapse exposing its backend GitHub source code repos and other internal cloud systems, but was ignored.
techcrunch.com
December 12, 2025 at 4:48 PM
A security researcher tried to alert Home Depot to the security lapse exposing its backend GitHub source code repos and other internal cloud systems, but was ignored.
Reposted by DP
#Design #Approaches
Measuring the impact of features · Meet a simple, repeatable, meaningful UX metric ilo.im/168zw1 by Vitaly Friedman
_____
#Business #Metrics #Features #Conversion #TARS #ProductDesign #UxDesign #UiDesign #WebDesign
Measuring the impact of features · Meet a simple, repeatable, meaningful UX metric ilo.im/168zw1 by Vitaly Friedman
_____
#Business #Metrics #Features #Conversion #TARS #ProductDesign #UxDesign #UiDesign #WebDesign
How To Measure The Impact Of Features - Smart Interface Design Patterns
Meet TARS — a simple, repeatable, meaningful UX metric, designed specifically to track the performance of product features.
ilo.im
December 11, 2025 at 8:24 PM
#Design #Approaches
Measuring the impact of features · Meet a simple, repeatable, meaningful UX metric ilo.im/168zw1 by Vitaly Friedman
_____
#Business #Metrics #Features #Conversion #TARS #ProductDesign #UxDesign #UiDesign #WebDesign
Measuring the impact of features · Meet a simple, repeatable, meaningful UX metric ilo.im/168zw1 by Vitaly Friedman
_____
#Business #Metrics #Features #Conversion #TARS #ProductDesign #UxDesign #UiDesign #WebDesign
Reposted by DP
🚨 Action required: 2 additional newly disclosed vulnerabilities affect multiple versions of React, Next.js, & other RSC-based frameworks.
As w/ last week's disclosure, Netlify has been working w/ the @react.dev & @nextjs.org teams to deploy network-level mitigations against these vulnerabilities. 🧵
As w/ last week's disclosure, Netlify has been working w/ the @react.dev & @nextjs.org teams to deploy network-level mitigations against these vulnerabilities. 🧵
December 11, 2025 at 9:21 PM
🚨 Action required: 2 additional newly disclosed vulnerabilities affect multiple versions of React, Next.js, & other RSC-based frameworks.
As w/ last week's disclosure, Netlify has been working w/ the @react.dev & @nextjs.org teams to deploy network-level mitigations against these vulnerabilities. 🧵
As w/ last week's disclosure, Netlify has been working w/ the @react.dev & @nextjs.org teams to deploy network-level mitigations against these vulnerabilities. 🧵
A new vulnerability class called `IDEsaster` can turn standard IDE features into attack vectors, and 100% of the tested AI coding assistants were vulnerable.
you can check it at maccarita.com/posts/idesas... , written by Arik Marzouk.
you can check it at maccarita.com/posts/idesas... , written by Arik Marzouk.
IDEsaster: A Novel Vulnerability Class in AI IDEs
Don’t want to miss my next post? Follow me on X or connect on LinkedIn Summary We all know AI reshaped how we build software. Autocomplete evolved into AI agents that can autonomously act on behalf of...
maccarita.com
December 11, 2025 at 10:46 AM
A new vulnerability class called `IDEsaster` can turn standard IDE features into attack vectors, and 100% of the tested AI coding assistants were vulnerable.
you can check it at maccarita.com/posts/idesas... , written by Arik Marzouk.
you can check it at maccarita.com/posts/idesas... , written by Arik Marzouk.
Reposted by DP
The massive data breach at the South Korean retail giant Coupang affects more than half of the country's population.
CEO of South Korean retail giant Coupang resigns after massive data breach | TechCrunch
The massive data breach at the South Korean retail giant Coupang affects more than half of the country's population.
techcrunch.com
December 10, 2025 at 9:11 PM
The massive data breach at the South Korean retail giant Coupang affects more than half of the country's population.
Reposted by DP
Anthropic, Block, and OpenAI are backing the Linux Foundation’s new Agentic AI Foundation, donating MCP, Goose, and AGENTS.md to standardize AI agents, boost interoperability, and curb proprietary fragmentation.
OpenAI, Anthropic and Block join new Linux Foundation effort to standardize the AI agent era | TechCrunch
Anthropic, Block, and OpenAI are backing the Linux Foundation’s new Agentic AI Foundation, donating MCP, Goose, and AGENTS.md to standardize AI agents, boost interoperability, and curb proprietary fragmentation.
techcrunch.com
December 9, 2025 at 5:31 PM
Anthropic, Block, and OpenAI are backing the Linux Foundation’s new Agentic AI Foundation, donating MCP, Goose, and AGENTS.md to standardize AI agents, boost interoperability, and curb proprietary fragmentation.
Reposted by DP
Think twice before downloading! 🚨 Unknown browser extensions, freeware, or pirated content can hide malware that steals your data or hijacks your system. Stick to trusted app stores & official vendor websites. When in doubt, don't download it!
December 9, 2025 at 3:54 PM
Think twice before downloading! 🚨 Unknown browser extensions, freeware, or pirated content can hide malware that steals your data or hijacks your system. Stick to trusted app stores & official vendor websites. When in doubt, don't download it!
Reposted by DP
#Design #Misconceptions
Common misconceptions about disability · Understanding disability means understanding real people ilo.im/168vsa by Felicity Miners-Jones
_____
#Inclusion #Disability #Accessibility #ProductDesign #UxDesign #UiDesign #WebDesign #Development #WebDev #Frontend
Common misconceptions about disability · Understanding disability means understanding real people ilo.im/168vsa by Felicity Miners-Jones
_____
#Inclusion #Disability #Accessibility #ProductDesign #UxDesign #UiDesign #WebDesign #Development #WebDev #Frontend
Common misconceptions about disability - TetraLogical
Disability is often misunderstood or misrepresented online and in mainstream media. In this post, we look at some common misconceptions surrounding disability.
ilo.im
December 9, 2025 at 12:02 PM
#Design #Misconceptions
Common misconceptions about disability · Understanding disability means understanding real people ilo.im/168vsa by Felicity Miners-Jones
_____
#Inclusion #Disability #Accessibility #ProductDesign #UxDesign #UiDesign #WebDesign #Development #WebDev #Frontend
Common misconceptions about disability · Understanding disability means understanding real people ilo.im/168vsa by Felicity Miners-Jones
_____
#Inclusion #Disability #Accessibility #ProductDesign #UxDesign #UiDesign #WebDesign #Development #WebDev #Frontend
Reposted by DP
We tested one of the most common prompting techniques: giving the AI a persona to make it more accurate
We found that telling the AI "you are a great physicist" doesn't make it significantly more accurate at answering physics questions, nor does "you are a lawyer" make it worse.
We found that telling the AI "you are a great physicist" doesn't make it significantly more accurate at answering physics questions, nor does "you are a lawyer" make it worse.
December 8, 2025 at 6:32 PM
We tested one of the most common prompting techniques: giving the AI a persona to make it more accurate
We found that telling the AI "you are a great physicist" doesn't make it significantly more accurate at answering physics questions, nor does "you are a lawyer" make it worse.
We found that telling the AI "you are a great physicist" doesn't make it significantly more accurate at answering physics questions, nor does "you are a lawyer" make it worse.
Reposted by DP
Introducing Web Vitals Performance Issues 🌐
a new type of perf issue that's triggered when the highest traffic pages of your app are showing poor vitals metrics for an extended period of time
a new type of perf issue that's triggered when the highest traffic pages of your app are showing poor vitals metrics for an extended period of time
December 8, 2025 at 7:30 PM
Introducing Web Vitals Performance Issues 🌐
a new type of perf issue that's triggered when the highest traffic pages of your app are showing poor vitals metrics for an extended period of time
a new type of perf issue that's triggered when the highest traffic pages of your app are showing poor vitals metrics for an extended period of time