Lightnews — Scholar-powered news

Dan Goodin

@dangoodin.bsky.social

Two security professionals who were arrested in 2019 after performing an authorized security assessment of a county courthouse in Iowa will receive $600,000 to settle a lawsuit they brought alleging wrongful arrest and defamation.

arstechnica.com/security/202...

County pays $600,000 to pentesters it arrested for assessing courthouse security

Settlement comes more than 6 years after Gary DeMercurio and Justin Wynn's ordeal began.

arstechnica.com

January 29, 2026 at 7:58 PM

Reposted by Dan Goodin

Ed Bott

@edbott.com

Trump’s federal thugs beat up on
His face and his chest
Then we heard the gunshots
And Alex Pretti lay in the snow, dead
Their claim was self defense, sir
Just don’t believe your eyes
It’s our blood and bones
And these whistles and phones
Against Miller and Noem’s dirty lies

(Full lyrics @ YT page)

Bruce Springsteen @brucespringsteen.net · 10d

I wrote this song on Saturday, recorded it yesterday and released it to you today in response to the state terror being visited on the city of Minneapolis. It’s dedicated to the people of Minneapolis, our innocent immigrant neighbors and in memory of Alex Pretti and Renee Good.

Stay free

Bruce Springsteen - Streets Of Minneapolis (Official Audio)

YouTube video by Bruce Springsteen

youtu.be

January 28, 2026 at 5:15 PM

Reposted by Dan Goodin

Val

@vallha11a.neocities.org

Thanks to @dangoodin.bsky.social for writing one of the few articles that actually questioned the @nytimes.com report.

Val @vallha11a.neocities.org · 20d

Affirming that a U.S. cyberattack caused a large scale power outage in Caracas on Jan 3, while not even mentioning the intentional bombing of power infrastructure, is misleading.

The NYT article is speculative and doesn't provide any technical evidence.

👉 arstechnica.com/security/202...

Why I’m withholding certainty that “precise” US cyber-op disrupted Venezuelan electricity

NYT says US hackers were able to turn off power and then quickly turn it back on.

arstechnica.com

January 19, 2026 at 3:59 PM

Reposted by Dan Goodin

The Onion

@theonion.com

Conservatives Say Renée Good Was Brainwashed By Bible Into Loving Thy Neighbor https://theonion.com/conservatives-say-renee-good-was-brainwashed-by-bible-into-loving-thy-neighbor/

January 15, 2026 at 4:30 PM

Reposted by Dan Goodin

Zack Whittaker

@zackwhittaker.com

New, by me: Security researcher Eaton Zveare spent weeks trying to alert a little-known but critical U.S. cargo tech giant that their shipping systems and customers' data were exposed to the web.

After weeks of trying, Zveare asked TechCrunch for help. We heard back! ...from the company's law firm.

Exclusive: US cargo tech company publicly exposed its shipping systems and customer data to the web

Shipping tech company Bluspark left internal plaintext passwords, including those of executives, exposed to the internet, at a time when hacks in the shipping industry are on the rise.

techcrunch.com

January 14, 2026 at 4:14 PM

Reposted by Dan Goodin

Seanie Byrne 🦡

@seaniebyrne.bsky.social

The novel use of PassKeys to store the private key material is 👨🏻‍🍳💋

by @dangoodin.bsky.social

arstechnica.com/security/202...

Signal creator Moxie Marlinspike wants to do for AI what he did for messaging

Introducing Confer, an end-to-end AI assistant that just works.

arstechnica.com

January 13, 2026 at 12:17 PM

Dan Goodin

@dangoodin.bsky.social

Moxie Marlinspike—the engineer who set a new standard for private messaging with the creation of the Signal Messenger—is now aiming to revolutionize AI chatbots in a similar way.

arstechnica.com/security/202...

Signal creator Moxie Marlinspike wants to do for AI what he did for messaging

Introducing Confer, an end-to-end AI assistant that just works.

arstechnica.com

January 13, 2026 at 4:42 PM

Dan Goodin

@dangoodin.bsky.social

In 15 minutes, NY AG Letitia James will participate in the Conde Nast union rally supporting the immediate reinstatement of 4 of our colleagues who were illegally fired in a union-busting move. If you're near WTC in Manhattan, please come and show your support.

"Flyer: Conde Nast union: Defend our rights Wednesday, Nov 12 6 PM Reinstate the Fired four." Four images of red fists raised in the air.

November 12, 2025 at 10:45 PM

Dan Goodin

@dangoodin.bsky.social

Dear @undetectableai.bsky.social: The comments attributed to your CEO, Christian Perry, in the WGCU post borders on quackery. There is 0 evidence AI is doing the things you say it is. Please stop spreading misinformation. Oddly, WGCU in Fort Meyers, Florida, has no removed the story. I wonder why

Headline and byline:

Detection expert says hackers likely used AI to penetrate airport system

WGCU | By Undetectable.ai/Special to WGCU
Published September 23, 2025 at 9:23 AM EDT

November 12, 2025 at 10:21 PM

Dan Goodin

@dangoodin.bsky.social

ICYMI: 4 Conde Nast employees were illegally fired for exercising permitted speech in our workplace. Tonight, NY AG Letitia James will call out this union-busting move by our management. Please attend. Pls also sign our petition to reinstate our fired colleagues. actionnetwork.org/petitions/te...

November 12, 2025 at 7:18 PM

Reposted by Dan Goodin

Sam Machkovech

@samred.com

Hi hi! I'm happy and proud to announce that I've spent the last few weeks preparing the relaunch of @digitalfoundry.bsky.social as its Launch Site Editor! A dream role in many ways. I'll be translating the DF team's videos in the site's early months while building exclusive content. Check it out:

Digital Foundry

Digital Foundry was founded in 2004 and specialises in technical analysis of video games and hardware, using our own bespoke tools for frame-rate analysis – covering everything from console, PC and be...

digitalfoundry.net

November 6, 2025 at 4:42 PM

Reposted by Dan Goodin

The New York Times

@nytimes.com

The administration at Indiana University Bloomington fired the adviser to the student newspaper and barred the publication from putting out a print edition. The dispute has left student journalists and press advocates accusing the university of censorship.

Indiana University Fires Adviser to Student Newspaper and Bars Print Publication

The administration at Indiana University Bloomington fired the adviser to the paper and barred the publication from putting out a print edition.

nyti.ms

October 17, 2025 at 4:00 PM

Reposted by Dan Goodin

Senator Ron Wyden

@wyden.senate.gov

For over 3 years my investigation has exposed how major banks enabled Epstein’s sex trafficking operation. I’m glad that his victims are able to use those findings to hold big banks accountable. I fully intend to keep following the money on Epstein. Stay tuned.

Epstein victims sue Bank of America, Bank of NY Mellon, for allegedly funding sex trafficking

Women abused by Jeffrey Epstein sued Bank of America and Bank of New York Mellon in Manhattan on Wednesday, alleging their executives violated banking laws and ignored red flags out of “absolute lo…

www.nydailynews.com

October 17, 2025 at 4:12 PM

Dan Goodin

@dangoodin.bsky.social

The problem solving required for making Signal quantum safe is as daunting as any in engineering. In less adept hands, mucking about with an instrument this complex could have led to unintended consequences. Yet this upgrade is nothing short of a triumph!

arstechnica.com/security/202...

Why Signal’s post-quantum makeover is an amazing engineering achievement

New design sets a high standard for post-quantum readiness.

arstechnica.com

October 13, 2025 at 4:59 PM

Dan Goodin

@dangoodin.bsky.social

How long until the FBI opens an investigation into this judge?

September 19, 2025 at 5:11 PM

Reposted by Dan Goodin

Eric Goldman

@ericgoldman.bsky.social

Judge Merryday has no fucks left to give for Trump's defamation complaint against the NYT:

"As every lawyer knows (or is presumed to know), a complaint isn't a public forum for vituperation & invective—not a protected platform to rage against an adversary"

storage.courtlistener.com/recap/gov.us...

storage.courtlistener.com

September 19, 2025 at 4:42 PM

Reposted by Dan Goodin

Mike Masnick

@masnick.com

Wow. Florida judge makes quick work of the Trump lawsuit against the NYTimes and Penguin Random House. The lawsuit was silly and Judge Merryday does not hide how he feels about it!

Trump can amend though.

storage.courtlistener.com/recap/gov.us...

Even under the most generous and lenient application of Rule 8, the complaint is decidedly improper and impermissible. The pleader initially alleges an electoral victory by President Trump “in historic fashion” — by “trouncing” the opponent — and alludes to “persistent election interference from the legacy media, led
most notoriously by the New York Times.” The pleader alludes to “the halcyon
days” of the newspaper but complains that the newspaper has become a “fullthroated mouthpiece of the Democrat party,” which allegedly resulted in the “deranged endorsement” of President Trump’s principal opponent in the most recent
presidential election. The reader of the complaint must labor through allegations,
such as “a new journalistic low for the hopelessly compromised and tarnished ‘Gray
Lady.’” The reader must endure an allegation of “the desperate need to defame with
a partisan spear rather than report with an authentic looking glass” and an allegation
that “the false narrative about ‘The Apprentice’ was just the tip of Defendants’ melting iceberg of falsehoods.” Similarly, in one of many, often repetitive, and laudatory
(toward President Trump) but superfluous allegations, the pleader states, “‘The

Apprentice’ represented the cultural magnitude of President Trump’s singular brilliance, which captured the [Z]eitgeist of our time.”
The complaint continues with allegations in defense of President Trump’s father and the acquisition of the Trumps’ wealth; with a protracted list of the many
properties owned, developed, or managed by The Trump Organization and a list of
President Trump’s many books; with a long account of the history of “The Apprentice”; with an extensive list of President Trump’s “media appearances”; with a detailed account of other legal actions both by and against President Trump, including
an account of the “Russia Collusion Hoax” and incidents of alleged “lawfare”
against President Trump; and with much more, persistently alleged in abundant,
florid, and enervating detail.
Even assuming that each allegation in the complaint is true (of course, that is
for a jury to decide and is not pertinent here; this order suggests nothing about the
truth of the allegations or the validity of the claims but addresses only the manner of
the presentation of the allegations in the complaint); even assuming that at trial the
plaintiff offers evidence supporting every allegation in the complaint and that the evidence is accepted by the jury as fact; and even assuming that after finally “melting”
the defendants’ alleged “iceberg of falsehoods” the plaintiff prevails for each reason
alleged in the complaint — even assuming all of that — a complaint remains an improper and impermissible place for the tedious and burdensome aggregation of prospective evidence, for the rehearsal of tendentious arguments, or for the protracted
recitation and explanation of legal authority putatively supporting the pleader’s claim

for relief. As every lawyer knows (or is presumed to know), a complaint is not a public forum for vituperation and invective — not a protected platform to rage against an
adversary. A complaint is not a megaphone for public relations or a podium for a
passionate oration at a political rally or the functional equivalent of the Hyde Park
Speakers’ Corner.
A complaint is a mechanism to fairly, precisely, directly, soberly, and economically inform the defendants — in a professionally constrained manner consistent
with the dignity of the adversarial process in an Article III court of the United States
— of the nature and content of the claims. A complaint is a short, plain, direct statement of allegations of fact sufficient to create a facially plausible claim for relief and
sufficient to permit the formulation of an informed response. Although lawyers receive a modicum of expressive latitude in pleading the claim of a client, the complaint in this action extends far beyond the outer bound of that latitude.
This complaint stands unmistakably and inexcusably athwart the requirements
of Rule 8. This action will begin, will continue, and will end in accord with the rules
of procedure and in a professional and dignified manner. The complaint is STRUCK
with leave to amend within twenty-eight days. The amended complaint must not exceed forty pages, excluding only the caption, the signature, and any attachment.
ORDERED in Tampa, Florida, on September 19, 2025.

September 19, 2025 at 4:50 PM

Dan Goodin

@dangoodin.bsky.social

So long, #disneyplus. I stand for @jimmykimmel.com and for media independence.

Also, nothing Jimmy said about the MAGA people politicizing and weaponizing Kirk's assassination was untrue.

cc: @jimmykimmellive.bsky.social

Ok, your subscription has been cancelled
We’ve sent a confirmation to your email on file. You may continue to watch Disney+ until October 5, 2025.

September 18, 2025 at 7:12 PM

Reposted by Dan Goodin

Ars Technica

@arstechnica.com

New attack on ChatGPT research agent pilfers secrets from Gmail inboxes

Unlike most prompt injections, ShadowLeak executes on OpenAI’s cloud-based infrastructure.

arstechnica.com

September 18, 2025 at 4:29 PM

Reposted by Dan Goodin

Noah Shachtman

@noahshachtman.bsky.social

@lurabardley.bsky.social sees this for what it is www.vanityfair.com/hollywood/st...

Late-Night TV Isn’t Dying—It’s Being Murdered

And we’re not just talking about Jimmy Kimmel. In part one of a two-part series, nearly a dozen insiders explain how one of comedy’s oldest genres is being strangled—starting with the chilling effect ...

www.vanityfair.com

September 18, 2025 at 4:49 PM

Reposted by Dan Goodin

Nicholas Weaver

@ncweaver.skerry-tech.com

This really makes it clear just HOW negligent Microsoft is in their design. Enabling such a trivially vulnerable default fallback is outright misconduct. It should have been moved to default off over a decade ago, REQUIRING admins to turn it on if they have old broken shit.

September 18, 2025 at 4:59 PM

Reposted by Dan Goodin

Matthew Green

@matthewdgreen.bsky.social

Nice article by @dangoodin.bsky.social on the Ascension hack and bad Kerberos: arstechnica.com/security/202...

How weak passwords and other failings led to catastrophic breach of Ascension

A deep-dive into Active Directory and how “Kerberoasting” breaks it wide open.

arstechnica.com

September 18, 2025 at 4:53 PM

Dan Goodin

@dangoodin.bsky.social

Wednesday’s discovery of 3 unauthorized TLS certificates for Cloudflare’s 1.1.1.1 generated intense interest and concern. Since then, new information has become available, including the issuance of 9 more certificates. This FAQ answers questions and gives the latest: arstechnica.com/information-...

The number of mis-issued 1.1.1.1 certificates grows. Here’s the latest.

Everything to know about the mishap that threatened to expose millions of users’ queries.

arstechnica.com

September 5, 2025 at 4:16 PM

Reposted by Dan Goodin

Ian Campbell

@neurovagrant.bsky.social

Dunno who Fina Root CA is, but they finna learn some hard lessons in TLS certificate justice.

Always appreciate @dangoodin.bsky.social getting stuff like this out into the daylight.

#infosec #cybersecurity

arstechnica.com/security/202...