Were they the developers of the ssh package? Microsoft is the developer of the vulnerable bitlocker package and the ones who chose to ship it.
I am employed, most employers are obviously not as corrupt as the biggest corporations on the planet, they simply can't afford to.
I agree we can't know. We can know for FOSS software. You are treating uknownable as being less than the known bugs in Foss software. That's dishonest, lad.
What are the indications that the BitLocker vulnerability is already being utilized?
Microsoft shipping a vulnerable version of the recovery environment. It is the 'exploit'.
Alleged by a guy who was fired from Microsoft. I’d take that with a pinch of salt.
Such is the nature of closed source software. You select people who will remain complicit till they have a grievance against you. Even if they don't and talked for moral reasons do you think they would not been fired for it?
That being said, open source repos are being attacked constantly with attempts at intentional malicious code injection - I’m sure you’ve heard of XZ Utils? How many others went through and are being exploited without anyone noticing?
Who knows. How many more went through at closed source software a limited amount of people can test in the same way?
They will be patched. There is also no indication that they 'be been known and exploited till recently.
This was allegedly deliberately non patched to be exploited.
Getting a system without bugs and security issues is impossible, you can at least avoid intentional compromise.
Unfortunately not, the main reason the majority of people use gmail is that they don't even know there are other email providers.
If a military attack is not negotiated away as I mentioned.
Would it defend every state? Or would the big countries make concessions to avoid a military conflict? With or without a veto right.
By the way EU already had a mutual defense pact. A single military would increase effectiveness but remove member's state ability to defend themselves.
Yes, I specified which cover since it's certainly been covered by more people.
Knocking on heaven's door by GnR
Heavy metal mania by Gamma Ray
;;;;;;;;
Blocklist? I though it was swearword censor.
So any passionate actor is a bad actor. Which is necessary for wrong information to be disinformation according to your definition.
I will argue that a disinformation campaign could find agents that are able to remain calm and engage in 'polite' debate (via training, scripts and other forms of support, perhaps AI can help write some posts/articles etc). Meanwhile ordinary users are more likely to lose their cool when presented with propaganda even if it is well presented.
I am also going to address you suggesting that I believe most information is "arbitrarily" subjective. I don't. The issue is that of course we cannot actually apply the scientific method in a lot of cases, including news and politics.
For example either the US attacked first or Iran did in the most recent case. How would one apply the scientific method to find out? In a lot of cases there is simply not enough data accessible to people.
Even in science, both physical and especially social ones we have this issue. We don't really do experiments on whole countries etc.
I think you are handwaving away the issue. I am sure you know who the bad actors are and what is disinformation.
If you actually read his github you would know that there is a different version of the responsible component between the recovery environment and an installation. Only the RE has the issue.
I've read the XZ vulnerability. The very same thing can happen in a closed source corporate project. There are many arrests of foreign intelligence agents that worked in big tech amd/government. It would of course be easier to cover up. As would vulnerabilities discovered by ai, since they can limit who can check their code.