Richi Jennings
@richi.bsky.social
Foolish #analyst/#editor: #TechstrongGroup #ReversingLabs #OstermanRsch | Links: https://richi.uk
Pinned
US Defense Contractor Boss Sold Zero Days to Russia — Cops a Plea
So long and thanks for all the fish: Peter Williams admits to selling unpatched iPhone bugs to a shady Russian broker.
securityboulevard.com
Former head of #L3Harris’s #Trenchant “offensive cyber” division admits to stealing weapons-grade exploit chain worth $35 million and then selling it for personal gain.
Raises important questions about national security risks of outsourcing such weaponry. In #SBBlogwatch, we go out with a whimper:
Raises important questions about national security risks of outsourcing such weaponry. In #SBBlogwatch, we go out with a whimper:
Former head of #L3Harris’s #Trenchant “offensive cyber” division admits to stealing weapons-grade exploit chain worth $35 million and then selling it for personal gain.
Raises important questions about national security risks of outsourcing such weaponry. In #SBBlogwatch, we go out with a whimper:
Raises important questions about national security risks of outsourcing such weaponry. In #SBBlogwatch, we go out with a whimper:
US Defense Contractor Boss Sold Zero Days to Russia — Cops a Plea
So long and thanks for all the fish: Peter Williams admits to selling unpatched iPhone bugs to a shady Russian broker.
securityboulevard.com
October 30, 2025 at 6:27 PM
Former head of #L3Harris’s #Trenchant “offensive cyber” division admits to stealing weapons-grade exploit chain worth $35 million and then selling it for personal gain.
Raises important questions about national security risks of outsourcing such weaponry. In #SBBlogwatch, we go out with a whimper:
Raises important questions about national security risks of outsourcing such weaponry. In #SBBlogwatch, we go out with a whimper:
Reposted by Richi Jennings
How To Get Bare-Metal GPU Performance in Confidential VMs: thenewstack.io/how-to-get-b... via @thenewstack.io & @sjvn.bsky.social
A top #NVIDIA engineer explains how you can keep your AI workloads both safe and fast using Kata Containers and Confidential Computing.
A top #NVIDIA engineer explains how you can keep your AI workloads both safe and fast using Kata Containers and Confidential Computing.
How To Get Bare-Metal GPU Performance in Confidential VMs
For when you want to make darn sure that your AI data, model and their use are all secure from snoopers.
thenewstack.io
October 21, 2025 at 7:09 PM
How To Get Bare-Metal GPU Performance in Confidential VMs: thenewstack.io/how-to-get-b... via @thenewstack.io & @sjvn.bsky.social
A top #NVIDIA engineer explains how you can keep your AI workloads both safe and fast using Kata Containers and Confidential Computing.
A top #NVIDIA engineer explains how you can keep your AI workloads both safe and fast using Kata Containers and Confidential Computing.
Reposted by Richi Jennings
Model Context Protocol (MCP) is the 'USB-C of LLM,' and every bit as hot as AI itself. Find out why in my latest article in InformationWeek www.informationweek.com/responsible-...
Why CIOs Should Put MCP on Their Radar Now
Model Context Protocol is the 'USB-C of LLM,' and every bit as hot as AI itself. Here's why.
www.informationweek.com
October 22, 2025 at 3:58 PM
Model Context Protocol (MCP) is the 'USB-C of LLM,' and every bit as hot as AI itself. Find out why in my latest article in InformationWeek www.informationweek.com/responsible-...
Reposted by Richi Jennings
AI is supposed to give humans less work and make things easier...right? Maybe not according to some new research from Snowflake that 77% say their data engineering teams' workloads are getting heavier, not lighter.
venturebeat.com/data-infrast...
venturebeat.com/data-infrast...
venturebeat.com
October 23, 2025 at 2:48 PM
AI is supposed to give humans less work and make things easier...right? Maybe not according to some new research from Snowflake that 77% say their data engineering teams' workloads are getting heavier, not lighter.
venturebeat.com/data-infrast...
venturebeat.com/data-infrast...
Reposted by Richi Jennings
Just published on FOSS Force: Percona’s New CEO Peter Farkas Returns to a Company He Never Really Left fossforce.com/2025/10/perc...
Percona's New CEO Peter Farkas Returns to a Company He Never Really Left - FOSS Force
In an exclusive conversation, newly minted Percona CEO Peter Farkas explains why the company’s open source-first approach still works -- and how he plans to build on it across global teams and new database...
fossforce.com
October 21, 2025 at 7:41 PM
Just published on FOSS Force: Percona’s New CEO Peter Farkas Returns to a Company He Never Really Left fossforce.com/2025/10/perc...
One notorious center for the grotesquely evil practice of #PigButchering is #Myanmar.
This week, #SpaceX is crowing about how it’s blocked 2,500 #Starlink satellite internet terminals being used by these scumbags to reach their victims. In #SBBlogwatch, we wonder what took Elon so long.
This week, #SpaceX is crowing about how it’s blocked 2,500 #Starlink satellite internet terminals being used by these scumbags to reach their victims. In #SBBlogwatch, we wonder what took Elon so long.
Elon Musk’s SpaceX ‘is Facilitating’ Scams via Starlink
Low Earth Pork: Pig-butchering scammers in Myanmar lose use of 2,500 Starlink terminals.
securityboulevard.com
October 23, 2025 at 5:09 PM
One notorious center for the grotesquely evil practice of #PigButchering is #Myanmar.
This week, #SpaceX is crowing about how it’s blocked 2,500 #Starlink satellite internet terminals being used by these scumbags to reach their victims. In #SBBlogwatch, we wonder what took Elon so long.
This week, #SpaceX is crowing about how it’s blocked 2,500 #Starlink satellite internet terminals being used by these scumbags to reach their victims. In #SBBlogwatch, we wonder what took Elon so long.
Reposted by Richi Jennings
Just published on FOSS Force: All Things Open Has More in Store for 2025, Including an Added Measure of AI fossforce.com/2025/10/all-...
All Things Open Has More in Store for 2025, Including an Added Measure of AI - FOSS Force
The ATO 2025 conference may be in the books, but the organization has more events planned before year’s end—and new events are already on its 2026 dance card.
fossforce.com
October 20, 2025 at 7:08 PM
Just published on FOSS Force: All Things Open Has More in Store for 2025, Including an Added Measure of AI fossforce.com/2025/10/all-...
Reposted by Richi Jennings
Usually each new Wi-Fi spec offers the promise of more speed..but speed isn't the only thing that users need. Wi-Fi 8 could be the most important networking spec in a generation. @networkworld.bsky.social www.networkworld.com/article/4073...
Wi-Fi 8 is coming and it's going to make AI a lot faster
Wi-Fi 8 prioritizes consistent performance under challenging conditions and introduces dynamic spectrum management and hardware-accelerated telemetry designed for AI workloads at the network edge.
www.networkworld.com
October 20, 2025 at 2:36 PM
Usually each new Wi-Fi spec offers the promise of more speed..but speed isn't the only thing that users need. Wi-Fi 8 could be the most important networking spec in a generation. @networkworld.bsky.social www.networkworld.com/article/4073...
Reposted by Richi Jennings
Europe's plan to ditch US tech giants is built on open source - and it's gaining steam www.zdnet.com/article/euro... via @zdnet.bsky.social & @sjvn.bsky.social
Europe is really sick of US policies and tech companies, so they're turing to #OpenSource -based European companies.
Europe is really sick of US policies and tech companies, so they're turing to #OpenSource -based European companies.
Europe's plan to ditch US tech giants is built on open source - and it's gaining steam
One topic dominated the recent 2025 OpenInfra Summit Europe, and it wasn't AI.
www.zdnet.com
October 20, 2025 at 6:45 PM
Europe's plan to ditch US tech giants is built on open source - and it's gaining steam www.zdnet.com/article/euro... via @zdnet.bsky.social & @sjvn.bsky.social
Europe is really sick of US policies and tech companies, so they're turing to #OpenSource -based European companies.
Europe is really sick of US policies and tech companies, so they're turing to #OpenSource -based European companies.
#Microsoft’s #Windows security update rollup is badly buggy this month. #WinRE recovery environment doesn’t work with most keyboards and mice. And a fix for a cryptography bypass bug is causing failures.
Leading to concerns about the #Windows dev process. In #SBBlogwatch, we grab a Linux ISO:
Leading to concerns about the #Windows dev process. In #SBBlogwatch, we grab a Linux ISO:
October Patch Tuesday Fails Hard — Windows Update Considered Harmful?
Satya fiddles while Redmond burns? Showstopper bugs with security certificates—plus failing USB keyboards and mice—cause QA questions.
securityboulevard.com
October 21, 2025 at 3:48 PM
#Microsoft’s #Windows security update rollup is badly buggy this month. #WinRE recovery environment doesn’t work with most keyboards and mice. And a fix for a cryptography bypass bug is causing failures.
Leading to concerns about the #Windows dev process. In #SBBlogwatch, we grab a Linux ISO:
Leading to concerns about the #Windows dev process. In #SBBlogwatch, we grab a Linux ISO:
Reposted by Richi Jennings
People have a right to speak. They don’t have a right for anyone else to have to listen. That’s why block lists etc exist. I don’t give people the benefit of assuming good faith in the same way I wouldn’t if someone followed me down the street demanding I debate them. I’d call the cops, to be honest
December 15, 2024 at 12:50 PM
People have a right to speak. They don’t have a right for anyone else to have to listen. That’s why block lists etc exist. I don’t give people the benefit of assuming good faith in the same way I wouldn’t if someone followed me down the street demanding I debate them. I’d call the cops, to be honest
Reposted by Richi Jennings
Just published on FOSS Force: MX Linux 23.6 Libreto: High Performance on Legacy or Bleeding-Edge Hardware fossforce.com/2025/10/mx-l...
MX Linux 23.6 Libreto: High Performance on Legacy or Bleeding-Edge Hardware - FOSS Force
Whether reviving old gear or maxing out new silicon, MX Linux 23.6 Libretto stays cool, collected, and gets the job done.
fossforce.com
October 9, 2025 at 8:04 AM
Just published on FOSS Force: MX Linux 23.6 Libreto: High Performance on Legacy or Bleeding-Edge Hardware fossforce.com/2025/10/mx-l...
Reposted by Richi Jennings
Enterprises expanding AI deployments are hitting an invisible performance wall. The culprit? Static speculators that can't keep up with shifting workloads. The answer would be a new type of self-adaptive system.
venturebeat.com/ai/together-...
venturebeat.com/ai/together-...
venturebeat.com
October 10, 2025 at 5:12 PM
Enterprises expanding AI deployments are hitting an invisible performance wall. The culprit? Static speculators that can't keep up with shifting workloads. The answer would be a new type of self-adaptive system.
venturebeat.com/ai/together-...
venturebeat.com/ai/together-...
Reposted by Richi Jennings
German state replaces Microsoft Exchange and Outlook with open-source email www.zdnet.com/article/germ... via @zdnet.bsky.social & @sjvn.bsky.social
If European governments can dump Microsoft software and services for #Linux and #opensource software, why can't everyone?
If European governments can dump Microsoft software and services for #Linux and #opensource software, why can't everyone?
German state replaces Microsoft Exchange and Outlook with open-source email
Digital sovereignty isn't a phrase you often hear in the US, but it's a big deal in Europe. Here's why.
www.zdnet.com
October 13, 2025 at 7:01 PM
German state replaces Microsoft Exchange and Outlook with open-source email www.zdnet.com/article/germ... via @zdnet.bsky.social & @sjvn.bsky.social
If European governments can dump Microsoft software and services for #Linux and #opensource software, why can't everyone?
If European governments can dump Microsoft software and services for #Linux and #opensource software, why can't everyone?
Reposted by Richi Jennings
Proximity Networking: Essential Wireless Standards
Sharing data wirelessly over a relatively short range is accomplished with a set of technologies called proximity networking. Want to come up to speed on RFID, NFC, Bluetooth, and Qi? Start here.
www.aptiv.com/en/insights/...
Sharing data wirelessly over a relatively short range is accomplished with a set of technologies called proximity networking. Want to come up to speed on RFID, NFC, Bluetooth, and Qi? Start here.
www.aptiv.com/en/insights/...
Proximity Networking: Essential Wireless Standards
Sharing data wirelessly over a relatively short range is accomplished with a set of technologies called proximity networking.
www.aptiv.com
October 13, 2025 at 8:54 PM
Proximity Networking: Essential Wireless Standards
Sharing data wirelessly over a relatively short range is accomplished with a set of technologies called proximity networking. Want to come up to speed on RFID, NFC, Bluetooth, and Qi? Start here.
www.aptiv.com/en/insights/...
Sharing data wirelessly over a relatively short range is accomplished with a set of technologies called proximity networking. Want to come up to speed on RFID, NFC, Bluetooth, and Qi? Start here.
www.aptiv.com/en/insights/...
Anything any #Android app can display is vulnerable to #Pixnapping attack—including #2FA codes. “It’s like Rowhammer, but for the screen,” quips one wag.
Google thought it had already fixed the previously undisclosed flaw. But the group’s demo says not. In #SBBlogwatch, we blur the pels:
Google thought it had already fixed the previously undisclosed flaw. But the group’s demo says not. In #SBBlogwatch, we blur the pels:
#Pixnapping: Android Timing Attack Sends Google Back to the Drawing Board
If at first you don’t succeed: Researchers discover a new way to steal secrets from Android apps.
securityboulevard.com
October 14, 2025 at 3:21 PM
Anything any #Android app can display is vulnerable to #Pixnapping attack—including #2FA codes. “It’s like Rowhammer, but for the screen,” quips one wag.
Google thought it had already fixed the previously undisclosed flaw. But the group’s demo says not. In #SBBlogwatch, we blur the pels:
Google thought it had already fixed the previously undisclosed flaw. But the group’s demo says not. In #SBBlogwatch, we blur the pels:
Reposted by Richi Jennings
My latest venture into travel writing, a little guide on how to pack light. Seriously light. I obsess over optimizing everything I carry with me, and here are a few of my favorites!
www.theguardian.com/thefilter-us...
www.theguardian.com/thefilter-us...
Travel essentials: eight items to pack for your next trip – and what to leave at home
Skip the bulky neck pillow. Ditch your chargers. Pack these lighter, more useful gear for your next plane trip
www.theguardian.com
October 6, 2025 at 8:46 PM
My latest venture into travel writing, a little guide on how to pack light. Seriously light. I obsess over optimizing everything I carry with me, and here are a few of my favorites!
www.theguardian.com/thefilter-us...
www.theguardian.com/thefilter-us...
Reposted by Richi Jennings
Just published on FOSS Force: California Slaps Tractor Supply with Record $1.35M Privacy Fine fossforce.com/2025/10/cali...
California Slaps Tractor Supply with Record $1.35M Privacy Fine - FOSS Force
It wasn’t a big tech firm, but the biggest rural retailer in America that got the largest wallop ever from California’s toughest privacy watchdog.
fossforce.com
October 8, 2025 at 6:08 PM
Just published on FOSS Force: California Slaps Tractor Supply with Record $1.35M Privacy Fine fossforce.com/2025/10/cali...
Reposted by Richi Jennings
How to switch your Windows 10 PC to Linux Mint - for free zdnet.com/article/how-... via @zdnet.bsky.social & @sjvn.bsky.social
There’s still time to switch from #Windows10 to #Linux. Just saying!
There’s still time to switch from #Windows10 to #Linux. Just saying!
How to switch your Windows 10 PC to Linux Mint - for free
You can even try out Mint on your PC first - without installing anything! - to make sure you like it. Just follow these simple steps.
zdnet.com
October 9, 2025 at 8:22 AM
How to switch your Windows 10 PC to Linux Mint - for free zdnet.com/article/how-... via @zdnet.bsky.social & @sjvn.bsky.social
There’s still time to switch from #Windows10 to #Linux. Just saying!
There’s still time to switch from #Windows10 to #Linux. Just saying!
#Redis (Remote Dictionary Server) and its open source fork #Valkey share a scary flaw that can give an attacker full RCE. It’s been assigned a max CVSS score of 10.0—you don’t often see that.
#Redis shouldn’t normally be exposed to the internet, but it often is. In #SBBlogwatch, we descend a layer:
#Redis shouldn’t normally be exposed to the internet, but it often is. In #SBBlogwatch, we descend a layer:
#RediShell: Redis/Valkey Get ‘Perfect 10’ Critical RCE Vuln
Redis hell: CVSS 10.0 vulnerability in ubiquitous cloud storage layer. PATCH NOW.
securityboulevard.com
October 8, 2025 at 12:57 PM
#Redis (Remote Dictionary Server) and its open source fork #Valkey share a scary flaw that can give an attacker full RCE. It’s been assigned a max CVSS score of 10.0—you don’t often see that.
#Redis shouldn’t normally be exposed to the internet, but it often is. In #SBBlogwatch, we descend a layer:
#Redis shouldn’t normally be exposed to the internet, but it often is. In #SBBlogwatch, we descend a layer:
Reposted by Richi Jennings
15 yrs later...OpenStack continues to improve
->Security improvements and confidential computing enhancements are also part of OpenStack 2025.2, known as Flamingo. www.networkworld.com/article/4066... @networkworld.bsky.social
->Security improvements and confidential computing enhancements are also part of OpenStack 2025.2, known as Flamingo. www.networkworld.com/article/4066... @networkworld.bsky.social
OpenStack Flamingo pays down technical debt as adoption continues to climb
Security improvements and confidential computing enhancements are also part of OpenStack 2025.2, known as Flamingo.
www.networkworld.com
October 1, 2025 at 7:20 PM
15 yrs later...OpenStack continues to improve
->Security improvements and confidential computing enhancements are also part of OpenStack 2025.2, known as Flamingo. www.networkworld.com/article/4066... @networkworld.bsky.social
->Security improvements and confidential computing enhancements are also part of OpenStack 2025.2, known as Flamingo. www.networkworld.com/article/4066... @networkworld.bsky.social
Reposted by Richi Jennings
Greg Kroah-Hartman explains the Cyber Resilience Act for open source developers theregister.com/2025/09/30/c... via @theregister.com & @sjvn.bsky.social
Greg K-H explains what #opensource developers need to know about the CRA, but why they don't need to be worried sick about it.
Greg K-H explains what #opensource developers need to know about the CRA, but why they don't need to be worried sick about it.
Kroah-Hartman explains Cyber Resilience Act for open source
Opinion: Impact? Nope, don't worry, be happy, says Linux veteran
theregister.com
October 2, 2025 at 9:40 AM
Greg Kroah-Hartman explains the Cyber Resilience Act for open source developers theregister.com/2025/09/30/c... via @theregister.com & @sjvn.bsky.social
Greg K-H explains what #opensource developers need to know about the CRA, but why they don't need to be worried sick about it.
Greg K-H explains what #opensource developers need to know about the CRA, but why they don't need to be worried sick about it.
Reposted by Richi Jennings
Just published on FOSS Force: ElementaryOS 8.0.2: Not a Grand Slam, but a Solid Base Hit fossforce.com/2025/10/elem...
ElementaryOS 8.0.2: Not a Grand Slam, but a Solid Base Hit - FOSS Force
Although downloading the distro might feel like a confrontation with an overzealous panhandler, once installed, elementaryOS rewards users with a robust Linux experience.
fossforce.com
October 2, 2025 at 6:06 PM
Just published on FOSS Force: ElementaryOS 8.0.2: Not a Grand Slam, but a Solid Base Hit fossforce.com/2025/10/elem...
#Japan’s biggest producer of beer is still not producing any beer this week. #Asahi Group Holdings shut down production Monday after detecting a cyber intruder.
And today it’s confirmed fears of #ransomware. In #SBBlogwatch, we dry out.
securityboulevard.com/2025/10/japa...
And today it’s confirmed fears of #ransomware. In #SBBlogwatch, we dry out.
securityboulevard.com/2025/10/japa...
Asahi Hack Update: Beer-Free Day #5 Dawns in Japanese Ransomware Crisis
金のうんこ! Breaking: Big beer brewer belatedly believes bitten by ransomware—and likely a data breach.
securityboulevard.com
October 3, 2025 at 3:12 PM
#Japan’s biggest producer of beer is still not producing any beer this week. #Asahi Group Holdings shut down production Monday after detecting a cyber intruder.
And today it’s confirmed fears of #ransomware. In #SBBlogwatch, we dry out.
securityboulevard.com/2025/10/japa...
And today it’s confirmed fears of #ransomware. In #SBBlogwatch, we dry out.
securityboulevard.com/2025/10/japa...
Reposted by Richi Jennings
New research released today from Databricks shows how its GEPA (Generative Evolutionary Prompt Adaptation) technique improves prompt optimization by an order of magnitude.
venturebeat.com/ai/the-usd10...
venturebeat.com/ai/the-usd10...
venturebeat.com
September 25, 2025 at 9:56 PM
New research released today from Databricks shows how its GEPA (Generative Evolutionary Prompt Adaptation) technique improves prompt optimization by an order of magnitude.
venturebeat.com/ai/the-usd10...
venturebeat.com/ai/the-usd10...