It’s a fair question. There’s precedent where malware is embedded in PDFs.

The title is innacurate, or a least confusing.

At first I thought this was about a factory in Germany, but it’s about a factory in Ukraine:

Arms factories inside Ukraine run by German defense contractor Rheinmetall

His optimism for Britain to rejoin the bloc is not matched by Jean-Claude Juncker, another former European Commission chief, who in July suggested it would take “a century or two”.

Somewhere between 15 years and two centuries is a good guess.

It would be fair to compare browsers without adding extensions, with default settings.

This would show which browser have the best security and privacy out of the box. Also, the comparison would be practically impossible otherwise.

Most people use defaults, and I suspect a large portion of users install no extension, unless maybe if a tech-savy relative adds an adblocker.

Going to such extreme is probably costing the company on a medium/long term.

It may improve productivity for the first few weeks, but this is bad for employees physical and mental well-being. This is obviously increasing injuries and burnout. Meaning more sick leave, worse employee turnover.

He gave a reason, and said he’s not going to answers why questions, so your guess is as good as anyone else’s.

We should be thankful that this person maintained the app and put up with Google’s bullshit for so long.

If you find this app helpful, consider supporting whoever is willing to take over maintaining the app or a fork.

That may also explain why capturing nuclear power plants is so strategic in this war.

Israel argues that Unifil has failed to stabilise the region, and has asked peacekeepers to withdraw northwards so it can confront Hezbollah.

🤔

I guess integration with Google Drive is a big convenience for users.

But yes, if the cost of getting access is to high for indie developers, then it make sense to avoid Google Drive. Creating and maintaining your own cloud sync service for a specific app may not be worth it, they should investigate integration with existing Google Drive competitors/alternatives.

What about winning hearts and minds?

Fighting ennemies while antagonising civilians create new ennemies. I fear that strategy is fueling an endless war, rather than ending a war.

Why not mandate that 3 meals a week have at least X g of protein and Y g of fiber?

That’d be a better way to ensure healthy meals with proteins without requiring meat.

Thanks for the links, it’s interesting background. In that article from February 2021, The Artlantic states “There was also never a default”.

There was indeed no default as of February 2021. The default occured later, in April-May 2022, so we can’t expect a past article to include that information.

All major lenders need to take part in restructuring the debt indeed. That occured in 2023, and multiple lenders asked for a restructuring deal similar to the first one signed with China. I don’t know about the US, but Japan/India/French lender were looking for a similar restructuration terms. That sounds fair to me.

A debt rework between Sri Lanka and countries including Japan, India and France was also expected this week, but news of the EXIM deal took them by surprise. The three nations request comparability of debt treatment with China.

“As far as the information we have is concerned, conditions set by China are comparable to ours,” Kanda said.

The country’s default is clear evidence the overall debt wasn’t sustainable. Both Sri Lanka and its lenders have a responsibility on this. China is often the first mentioned because it was (still is?) Sri Lanka’s biggest foreign lender, although it would be good to have transparency of the country’s debt and interest rates on a per-lender basis, to see which ones are the most sustaonables.

The 2022 bloomberg article you cite first state:

It didn’t provide details on the value of the loans which it said matured at the end of 2021, nor did it state which nations owed the money.

I couldn’t read much further due to the paywal.

The Bloomberg article has too few details to make conclusions. We don’t know if AP and Bloomberg articles are referring to the same countries, nor whether it’s a significant portion or that country’s debt toward China.

The Reuters 2021 article has more details, and cite write-offs, as well as specific countries benefiting from deferrals: Angola, Pakistan, Kenya, the Republic of Congo. It’s good to read there’s some willingness to accomodate some countries.

Sadly that didn’t prevent Zambia and Sri Lanka from defaulting. China has lended hundred of billion of dollars with unsustainable terms, and this contributed to countries defaulting. That’s a bad situation for everyone involved.

I hope Tanzania and Zambia read the fine pints on the loan/inversement agreement.

Knowledge of the account is an obvious caveat. Yubikey-based MFA is an added layer of protection for accounts, so any kind of attack against MFA assumes the attacker already knows which account to target.

It’s like saying “our door lock is flawed, but the attacker would need to have knowledge of the door”.

The cost and complexity is what’s noteworthy and is more relevant. Although attack cost and complexity usuallu goes down with advances in tooling and research. So it may be a good idea to plan a progressive retirement of affected keys.

While that’s true, but there’s no indication of Microsoft brute forcing with million of combinations.

The article you link says Microsoft is only trying a few obvious passwords: the filename, and words found in the plaintext message.

Proper encryption isn’t just about using a strong algorithm. It’s also about proper key management, ie not sending the password in the clear via the same channel as the encrypted files.

ZIP isn’t a good way to encrypt, but what Microsoft is doing is simply reading the email, and decrypting zips with the password found in the email body.

All encryptions schemes can be trivially broken if you have the key. It’s not even breaking, it’s just normal decryption.

We have geo-engineered our way into this climate crisis

Well said.

It’s unfortunate that so much susidies go into burning wood, and fossil fuel.

I looked into a local nonprofit that support renewables, and it focus on biomass, less so on solar, and didn’t focus of wind at all (because of scale and upfront cost). Because of that focus on biomass and uncertainty on emissions from biomass I stayed away from them.

Quite the contrary.

Password hashing is standard nowadays.

When a database is compromised, brute forcing hashes is necessary to recover passwords, and the short ones are the first ones to be recovered.