Communick News

The path to achieving professional certifications has never been more dynamic or challenging, with each certification demanding a tailored approach to preparation. Exam Future, with its innovative adaptive strategies, has revolutionized the way candidates prepare for certifications. By offering a comprehensive and flexible methodology, Exam Future ensures that candidates not only understand exam topics but also gain the confidence to tackle exam questions and answers with precision.

Adaptive strategies focus on customizing exam prep to fit individual needs, learning styles, and schedules. Exam Future has mastered this approach by integrating tools such as exam dumps, practice exams, and real-time performance analytics. This adaptability allows candidates to focus on weak areas, whether they’re tackling Amazon AWS Certifications, CompTIA Certifications, or PMI Certifications.

By constantly analyzing a learner’s progress, Exam Future creates a personalized roadmap for success, ensuring every minute spent studying contributes to achieving certification goals.

Exam Future recognizes the diversity of certifications, from Salesforce Certifications and Microsoft Certifications to more specialized ones like Prince2Certifications or ISC2 Certifications. Its adaptive strategies begin with providing clear and updated certification exam info, ensuring candidates understand what’s expected in their respective exams.

Detailed study guides and exam questions are customized to each certification, helping learners focus on the most critical areas. Whether it’s mastering cloud technology for RedHat Certifications or honing security expertise for ECCouncil Certifications, Exam Future’s tailored materials make preparation efficient and effective.

Get most valid and up to date certification exam info >>>> https://exam4future.com/

Summary

A jury awarded $98 million to the family of Botham Jean, a Black man fatally shot in his home in 2018 by former Dallas police officer Amber Guyger.

The jury found Guyger acted with “malice” and awarded $60 million in punitive damages and $38 million in compensatory damages.

Guyger, who was off-duty and mistook Jean’s apartment for her own, was convicted of murder in 2019 and sentenced to 10 years in prison.

Jean’s family called the verdict a message on racial bias and police accountability.

I'm trying to watch some DVDs on my laptop (tuxedo os w/ external optical drive) but VLC won't play the video, only the audio. It played the menu once but I couldn't replicate it. Pretty sure i've downloaded all of the necessary codecs. Y'all have any idea how to fix it?

Edit: just switched to the flatpak (system had the Ubuntu package by default) and it works but the options to use VLC directly from the devices menu in the system tray are now gone.

https://x.com/josephfcox/status/1858883894050754795

We have a good idea of what's happening here based on the detailed info we obtained about MSAB's XRY exploit tool. We reported those exploits to Google in January 2024 with multiple proposals on how to stop it. April 2024 is when the first 2 shipped.

Our thread on the April 2024 Pixel patches for 2 of the issues we reported is here:

https://x.com/GrapheneOS/status/1775305179581018286

XRY was exploiting littlekernel-based fastboot mode firmware used on Pixels via USB. Many other devices also use littlekernel for this, or the higher attack surface EDK2.

CVE-2024-29745 is the identifier for the reset attack vulnerability we reported in fastboot mode. Google addressed this in April 2024 by implementing our proposal of zeroing memory on boot. This explains why Graykey was downgraded was Full access to Partial access in April 2024.

Cellebrite Premium is clearly exploiting the stock Pixel OS via USB rather than using this approach. Therefore, Cellebrite didn't lose any capabilities because of the improvement. Our exploit protections have been successfully blocking them even before major improvements in 2024.

Data is divided in 2 parts: vast majority of data is Credential Encrypted (CE) per-profile and a small portion of OS data is Device Encrypted (DE). DE data is available to the OS Before First Unlock (BFU). Exploiting fastboot mode will only give DE data since April 2024.

One of our planned features is a boot authentication toggle to request the Owner lock method in early boot. This will protect the small amount of DE data such as installed packages and saved Wi-Fi networks from firmware/hardware exploits. However, it's not sensitive user data.

Cellebrite's approach of exploiting the OS itself is more difficult but they avoided having nearly all their capabilities wiped out by the reset attack mitigation we successfully got Pixels to implement. Other Android devices haven't implemented reset attack mitigation though.

The way Google implemented it only covers fastboot mode. We wanted them to cover the OS boot modes too but they haven't shipped it yet. Our zero-on-free feature addresses it for OS reboot/shutdown and we plan to add zero on boot too until we convince them to add it in firmware.

Cellebrite's approach involves attacking the OS itself so all of our generic memory corruption exploit protections and other defenses are there to stop it. We also nearly fully wiped out the USB attack vector for the OS with our 2024 overhaul of our USB attack surface reduction.

By default, GrapheneOS disables new USB-C connections as soon as the device is locked at both a hardware and software level. It then fully disables USB-C data at a hardware level once existing connections end or right away if there weren't any. They'd need another attack vector.

For example, they could still target GrapheneOS via Wi-Fi, Bluetooth or cellular. However, getting into the device from any of those will still be much harder than with the stock OS, and it's more complex than USB in general. There's a reason they have always preferred USB.

Since 2021, we've had an auto-reboot timer feature which reboots the device after it's locked if it isn't unlocked before the timer expires. iOS recently added this with a hard-wired 72 hour timer. Our default is 18 hours but users can configure it from 10 minutes to 72 hours.

If you need max protection, using the 10 minute auto-reboot would be ideal. There's also the option to fully disabling USB-C while OS is booted by also disabling charging including USB-PD. Can also enable turning off Wi-Fi and Bluetooth via timers, which we plan to extend to NFC.

On Monday night, a large metal sheet fell from the roof of AT&T Stadium to the playing field.

Per- and polyfluorinated alkyl substances (PFAS) have been found to contaminate the global environment and have been implicated in a wide range of health problems. But the tough carbon-fluorine bonds in the compounds resist being torn apart, leading to expensive remediation schemes that rely on powerful chemicals and high temperatures and pressures. Today, two groups report in Nature the discovery of catalysts that could offer a cheaper way to clean up the chemicals. When energized by light, the catalysts break down a wide range of PFAS compounds at low temperatures and ambient pressures.

According to records filed in the case, Achtemeier conspired with mechanics in garages and operators of truck fleets to disable the anti-pollution software installed on diesel trucks. Coconspirators who wanted to disable their trucks’ pollution control hardware system—a process commonly known as “deleting”—sought Achtemeier’s help to trick the truck’s software into believing the emissions control systems were still functional, a process known as “tuning.” Monitoring software on a deleted truck will detect that the pollution control hardware is not functioning and will prevent the truck from running. Achtemeier disabled the monitoring software on his client’s trucks by connecting to laptops he had provided to various coconspirators. Some of the coconspirators would pass the laptop on to others seeking to have the anti-pollution software disabled on their trucks. Once the laptop was hooked up to the truck’s onboard computer, Achtemeier could access it from his computer and tune the software designed to slow the truck if the pollution control device was missing or malfunctioning. Achtemeier could “tune” trucks remotely, which enabled him to maximize his environmental impact and personal profit.

Summary

The FBI arrested Harun Abdul-Malik Yener, a homeless Florida man, for plotting to bomb the New York Stock Exchange to force a “reboot” of the U.S. government.

Agents found bomb-making materials in his storage unit and tracked him as he prepared the attack, believing it would gain public support against government corruption.

Yener recorded messages encouraging others to follow his lead and planned to carry out the bombing before Thanksgiving.

He was charged with attempting to use explosives to damage a commercial building.

Summary

Sen. Lindsey Graham defended Matt Gaetz, Trump’s nominee for attorney general, saying allegations of sexual misconduct should not disqualify him based on “a media report.”

Gaetz denies the claims, which include sexual misconduct with a high school student, drug use, and improper gifts, asserting they were part of an extortion plot.

While the FBI convicted someone for extortion related to the allegations, Gaetz was not charged.

Some Senate Republicans, like Sen. John Cornyn, are pressing for the release of a bipartisan House Ethics Committee report on the matter.

On the heels of selling a piece of the team to Tom Brady and Richard Seymour, Raiders owner Mark Davis is shaving off even more of the equity in the franchise.

This is her toot on Mastodon - https://mstdn.ca/@Paulatics/113517469245388190 :

Should the Government of Canada continue to use the bird site to share important official information? That was a question many of you asked me. So today, during Senate question period, I asked your question of Senator Marc Gold, the government representative in the Senate. Here's our exchange. What do you think? https://youtu.be/y1D7PlvSFTE?si=vKUvGdP_CRjfO_V9 #SenateofCanada #Xodus, #X #cdnpoli #GovernmentofCanada #Canada #Twitter #Mastodon

cross-posted from: https://real.lemmy.fan/post/8280082

Cops Searching for Vigilante Who Installed NSFW Traffic Signs in Colorado

I wanna fistbump the 'offenders'

Now that we have combined the EV groups. It would be nice if we could update the graphics for this community. It is a bit plain right now. Not sure if we have any artist that would like to help out.

We published this recent thread about it:

https://grapheneos.social/@GrapheneOS/113450097776800819

Here's an older thread about Cellebrite Premium's capabilities:

https://grapheneos.social/@GrapheneOS/112826067364945164

Here's a newer thread of Magnet Forensic's Graykey, although we only talked about the Pixel part where they have fewer capabilities than iPhones because of a feature we proposed which was shipped in April 2024 for Pixels and their approach being heavily impacted by it:

https://grapheneos.social/@GrapheneOS/113510735324941340

Changes in version 150:

• update max supported version of Play services to 24.46

A full list of changes from the previous release (version 149) is available through the Git commit log between the releases (only changes to the gmscompat_config text file and config-holder/ directory are part of GmsCompatConfig).

This update is available to GrapheneOS users via our app repository and will also be bundled into the next OS release.

GmsCompatConfig is the text-based configuration for the GrapheneOS sandboxed Google Play compatibility layer. It provides a large portion of the compatibility shims and sets the maximum supported versions for Play services and the Play Store.

Changes in version 131.0.6778.81.0:

• update to Chromium 131.0.6778.81

A full list of changes from the previous release (version 131.0.6778.39.0) is available through the Git commit log between the releases.

This update is available to GrapheneOS users via our app repository and will also be bundled into the next OS release. Vanadium isn't yet officially available for users outside GrapheneOS, although we plan to do that eventually. It won't be able to provide the WebView outside GrapheneOS and will have missing hardening and other features.

First, I have no idea what some of these things are called or I think I know but I'm also second guessing myself the whole time. Also, I've never bought glass from anywhere but a local head-shop. For instance, this bong is almost 20yo. Please forgive me, if I apply incorrect nomenclature to any of the parts.

My bong's inner pipe, I think it's called a joint, broke several months back. I searched online shortly after but there were so many variables to consider that it kind of seemed overwhelming. I'm hoping there's someone within this community who has experience replacing a bongs' hardware. I have some measurements and images with the measurements included if anyone needs to see them. All of the measurements below are approximate mm -> inch conversions.

• Depth from rubber grommet to lowest part of chamber: 115 mm, 4.5 in

• Inner glass diameter (joint?): 14 mm, 0.5 in

• Inner glass diameter (bowl?): 8 mm, 0.3 in

• Diameter of lowest chamber (don't know if this is needed): 107 mm, 4.25 in

• Diameter of bowl chamber (don't think this matters): 30 mm, 1.25 in

I would appreciate recommendations you all have for reputable glassware replacement sellers (from first-hand experience, preferably). In addition, I don't think the depth of the join needs to be that long, that's just the max depth. Thank you in advance for any suggestions, recommendations, or numbers to filter for when finding a replacement!

Mastodon.

Pennsylvania officials gathered at the Capitol in Harrisburg on Wednesday to mark the Transgender Day of Remembrance. It was a means of memorializing transgender Americans and Pennsylvanians who died by violence or suicide in the past year.

Ravens kicker Justin Tucker made clear Wednesday that no one is more upset about his uncharacteristic struggles than him: "Believe me when I say nobody takes it more personally than I do, nobody is more affected than me when I miss the kick."

I just finished watching the finale of season four of DS9. I'm really enjoying the show as I've wanted to watch it for years.

A bit of a spoiler for those who haven't seen the show but I thought those of you who already know and have seen it all might appreciate this.

The scene where Odo is brought back by the Changelings and is 'reborn' into someone new is a direct copy of the famous painting by Michaelangelo's 'The Creation of Adam'. It's been noted before by other viewers, I had to check for myself if other people noticed and it has been. I was just surprised myself when I saw the connection after I watched the show.

Of course, they had to have him lifting his other leg so as not show in anatomical detail his Odometer.

Summary

Linda McMahon, Trump’s nominee for Secretary of Education, previously resigned from the Connecticut State Board of Education in 2009 after falsely claiming she held a degree in education.

McMahon, co-founder of WWE and former head of the Small Business Administration, holds a degree in French and a teaching certificate.

Her nomination has drawn criticism for her lack of public education experience and alignment with Trump’s policies, including rolling back LGBTQ+ protections under Title IX.

If confirmed, McMahon will oversee contentious student loan forgiveness battles and Trump’s push to dismantle the Department of Education.