Why Amazon Unionization Failed in Alabama

In this Wolff Responds, Prof. Wolff explains why Amazon workers in Alabama voted against unionization, and compares the American labor movement to that of Europe. Wolff draws from European examples to underscore what is needed for unions in the US to gain momentum.

https://www.youtube.com/watch?v=lHGQhnYhwSg

#amazon #DeleteAmazon #DickPunchBezos #unionization #alabama #usa #video #thinkabout
📽@nogoolag 📽@blackbox_archiv

Allow arbitrary URLs, expect arbitrary code execution

We found and reported 1-click code execution vulnerabilities in popular software including Telegram, Nextcloud, VLC, Libre-/OpenOffice, Bitcoin/Dogecoin Wallets, Wireshark and Mumble

Desktop applications which pass user supplied URLs to be opened by the operating system are frequently vulnerable to code execution with user interaction

Code execution can be achieved either when a URL pointing to a malicious executable (.desktop, .jar, .exe, …) hosted on an internet accessible file share (nfs, webdav, smb, …) is opened, or an additional vulnerability in the opened application’s URI handler is exploited

Vulnerabilities following this pattern have already been found in other software, with more expected to be revealed going forward

https://positive.security/blog/url-open-rce

#vulnerabilities #url #arbitrary #code #execution #poc #video
📡@cRyPtHoN_INFOSEC_FR
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_DE
📡@BlackBox_Archiv
📡@NoGoolag

Nextdoor launches anti-racism notification to prevent discriminatory language

Nextdoor is introducing a new anti-racism notification, which asks users to reconsider posting content if the app thinks it may be offensive. As with its previous Kindness Reminder, if a user tries to post something with words or phrases Nextdoor thinks may be objectionable, it will give them the option to edit the post before it actually goes live. The users can, however, ignore the warning and post it anyway.

https://blog.nextdoor.com/2021/04/19/nextdoor-launches-anti-racism-notification-to-prevent-discriminatory-language/

https://www.theverge.com/2021/4/19/22392304/nextdoor-anti-racism-notification-community-moderation

https://www.youtube.com/watch?v=0yLUWsZp5Ug

#nextdoor #racist #antiracism #notification #discriminatory #language #video #thinkabout
📡 @nogoolag 📡 @blackbox_archiv

Local Party

Desktop app where you can create rooms and chat while watching local video files synchronized with your friends

https://github.com/sheldor1510/local-party


#localparty #video #chat

Facebook Email to profile vulnerability

A video shared with researchers and Motherboard shows a tool linking email addresses to Facebook accounts

A tool lets a user see which email address is linked to a Facebook account even if the Facebook user didn't publicly advertise their address, according to a video sent to various researchers and Motherboard.

The news presents another significant privacy issue for Facebook, which is continuing to face a series of data leaks around phone numbers and other data.

https://twitter.com/UnderTheBreach/status/1384552368512159744

https://www.vice.com/en/article/bvz8pz/tool-finds-facebook-email-addresses

#tool #facebook #DeleteFacebook #poc #email #accounts #video
📡 @nogoolag 📡 @blackbox_archiv

European MPs targeted by deepfake video calls imitating Russian opposition

Politicians from the UK, Latvia, Estonia and Lithuania tricked by fake meetings with opposition figures

A series of senior European MPs have been approached in recent days by individuals who appear to be using deepfake filters to imitate Russian opposition figures during video calls.

Those tricked include Rihards Kols, who chairs the foreign affairs committee of Latvia’s parliament, as well as MPs from Estonia and Lithuania. Tom Tugendhat, the chair of the UK foreign affairs select committee, has also said he was targeted.

“Putin’s Kremlin is so weak and frightened of the strength of @navalny they’re conducting fake meetings to discredit the Navalny team,” Tugendhat posted in a tweet, referring to the Russian opposition leader Alexei Navalny. “They got through to me today. They won’t broadcast the bits where I call Putin a murderer and thief, so I’ll put it here.”

Kols uploaded a photograph of Leonid Volkov, an ally of Navalny, and a screenshot of his doppelganger taken from the video call. Volkov said the two looked virtually identical. “Looks like my real face – but how did they manage to put it on the Zoom call? Welcome to the deepfake era …” he wrote.

https://www.theguardian.com/world/2021/apr/22/european-mps-targeted-by-deepfake-video-calls-imitating-russian-opposition

https://nltimes.nl/2021/04/24/dutch-mps-video-conference-deep-fake-imitation-navalnys-chief-staff

https://www.xataka.com/robotica-e-ia/enganan-a-varios-politicos-europeos-a-traves-videollamada-deepfake-que-imitaba-a-opositor-ruso

#europe #deepfake #video #calls

The Shameless EXTORTION in Mobile Gaming

The mobile gaming industry has long been dominated by scams, false advertising, and shady business practices but today we can add extortion to the list, because 37GAMES, a world renowned developer with top 100 properties on the app-store, has decided to extort their low paying users (not their whales) for large amounts of cash.

In the world of exploit or "glitch" punishment by gaming developers, this might be the worst response I have ever seen.

https://www.youtube.com/watch?v=ZADqK-D6vPo

#mobile #gaming #industry #extortion #video
🎥 @nogoolag 🎥 @blackbox_archiv

I’m now in charge of Audacity. Seriously.

Audacity is the world’s most widely used audio editing & recording software. It is free and open source and maintained by an amazing community. In this video, I’m announcing my own involvement in the project, which I’m very excited about. For those worried about MuseScore (an open source notation & music app that I also lead): don’t be. I’m not going anywhere!

https://www.youtube.com/watch?v=RMWNvwLiXIQ

#audacity #MuseScore #audio #editing #recording #video
🎥 @nogoolag 🎥 @blackbox_archiv

Hacking the Samsung Galaxy S8 Irisscanner

Mobile vendors have established fingerprints as a biometric feature to unlock smartphones. Now they turn to iris recognition, as do hackers. This video demonstrates how to circumvent the iris recognition of the Samsung Galaxy S8 flagship phone only using basic tools.

https://media.ccc.de/v/biometrie-s8-iris-en

#ccc #biometric #unlock #smartphones #irisrecognition #irisscanner #video
📡@cRyPtHoN_INFOSEC_FR
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_DE
📡@BlackBox_Archiv
📡@NoGoolag

SerenityOS update (April 2021)

erenityOS is a Unix-like operating system that I'm implementing from scratch. http://serenityos.org

👉🏼 SerenityOS is open source on GitHub: https://github.com/SerenityOS/serenity

👉🏼 Discord: https://discord.gg/29gCcKsXkF

https://www.youtube.com/watch?v=KehSJ_fdTxU

#serenityOS #update #video
🎥 @nogoolag 🎥 @blackbox_archiv

a MESSAGE to Anonymous #NewBlood from a Old Anonymous Coot #CyberWar #OpDeleteTheElite #Killuminati

https://www.youtube.com/watch?v=0Knb8HsSurs

#breakingnews #Cyberattack #columbia #OffCircuitSec #OCSec #AnonymousPhilippines #Anonymous #FreeGho57 #Arrested #OpColumbia #Columbian #Government #NWO #hostile #Rothschild #UN #LineInTheSand #GameOver #WorldWar #An0NiX #GhostSec #GhostSecurity #video
📡@cRyPtHoN_INFOSEC_FR
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_DE
📡@BlackBox_Archiv
📡@NoGoolag

HakByte: How to find anything on the internet with Google Dorks

On this first episode of HakByte, we cover Google Dorking, which is an OSINT technique that takes advantage of the Google Search engine with advanced search strings. This video covers basic google dorks that will allow you to filter out irrelevant information for a google search, finding insecure websites, and even discovering exposed password databases. Finally, an open source tool called pagodo is covered, which automatically can pass thousands of google dorks while avoiding detection from google.

https://www.youtube.com/watch?v=lESeJ3EViCo

#hakbyte #osint #google #dorking #search #engine #educational #video
🎥 @nogoolag 🎥 @blackbox_archiv

FluTube
Multiplatform Youtube video downloader made using flutter.

Features:
- Lightweight and fast
- No Login Required
- Keep your liked videos and comments
- Playlists support
- Download videos, audios and thumbnails
- Ad free forever
- Available for Windows/Linux/Android
- Free libre and open source (FLOSS)

Download - https://github.com/prateekmedia/flutube/releases

https://github.com/prateekmedia/flutube

#yt #YouTube #video #downloader

@foss_Android

MKVToolNix
Matroska files creator and tools

MKVToolNix is a set of tools to create, alter and inspect Matroska files under Linux, other Unixes and Windows.

With these tools you can get information about Matroska files (mkvinfo), you can extract tracks and data from Matroska files (mkvextract) and create Matroska files (mkvmerge) from other multimedia files.

Download: https://mkvtoolnix.download/downloads.html

https://gitlab.com/mbunkus/mkvtoolnix

@foss_desktop
#video #editor

.
Louis Rossman and FUTO have released another not -FOSS app of interest. This time they bring us the #video #streaming app #Grayjay, which is designed to let you surf and search all you favorite video streaming services at once.

Grayjay does everything the popular NewPipe app does, plus more. Unfortunately NewPipe only worked with YouTube and PeerTube.

So far Grayjay works w/these platforms (to a certain extent)
- Rumble
- Odysee
- Youtube
- FUTO's PeerTube Instance
- Twitch
- Patreon
- Soundcloud
- Kick
- Nebula

Sorry, no BitChute so far.

You can download videos for offline viewing, and then export those to your Movies folder on your phone.

You can download the apk install file here:
https://grayjay.app/

Their GitLab source code can be found here:
https://gitlab.futo.org/videostreaming/grayjay

This app will Chromecast movies, without Google Play Services installed.

⚠️ License https://gitlab.futo.org/alex/voiceinput/-/blob/master/FTL_LICENSE.md


⚡️@LinuxTechIndex

BraveNewPipe

A libre lightweight streaming front-end for Android

Due to restrictive project policy, the #NewPipe team refuses to add platforms that they find offensive. This fork (BraveNewPipe) will not be as restrictive. As long as the platforms work in the spirit of free speech, they could be integrated.
Nevertheless, platforms that promote pornography or other degrading things will NOT be included here.

Contribute
This fork will focus only on integrating other platforms. Unrelated patches will be rejected for now.
Feel free to suggest which alternative platforms should be included. Any contribution (development/testing/bug report) is greatly appreciated.

Which additional platforms are supported?
Bitchute
Rumble

Other features not found in NewPipe
-NewPipe x Sponsorblock into this fork
-searchfilters: in the action menu of the search page you can now change the search behavior for the actual search. The supported content/sort filters depend on the service

https://github.com/bravenewpipe/NewPipe

Download
https://github.com/bravenewpipe/NewPipe/releases

#yt #video #streaming

OpenAI SORA

@AltSkull48
#video #ai

The Most Dangerous Codec in the World: Finding and Exploiting Vulnerabilities in H.264 Decoders

Modern video encoding standards such as H.264 are a marvel of hidden complexity. But with hidden complexity comes hidden #security risk. #Decoding video today involves interacting with dedicated #hardware accelerators and the #proprietary, privileged software components used to drive (#driver) them. The video #decoder ecosystem is obscure, opaque, diverse, highly privileged, largely untested, and highly exposed -- a dangerous combination.

We introduce H26Forge, a framework that carefully crafts #video files to expose edge cases in H.264 decoders....

By: Stephen Checkoway , Hovav Shacham , Willy Vasquez

Full Abstract and Presentation Materials

#VideoEncoding #Vulnerabilities #Security #Codec #H264 #Exploit

Cobalt

A media downloader website that doesn't piss you off. it's fast, friendly, and doesn't have any bullshit that modern web is filled with: no ads, trackers, or invasive analytics.
paste the link, get the file, move on. it's that simple. just how it should be. You can host your own instance

• bilibili.com & bilibili.tv
• dailymotion videos
• instagram reels, posts & stories
• ok video
• pinterest videos & stories
• reddit videos & gifs
• rutube videos
• soundcloud
• streamable.com
• tiktok videos, photos & audio
• tumblr video & audio
• twitch clips
• twitter videos & voice
• vimeo
• vine archive
• vk video & clips
• youtube videos, shorts & music
cobalt is not affiliated with any services listed above.
this list is not final and keeps expanding over time, make sure to check it once in a while!

https://cobalt.tools

https://github.com/wukko/cobalt

https://status.cobalt.tools

https://github.com/wukko/cobalt/blob/current/docs/troubleshooting.md

Review:
This thing recodes sound to MP3 by default (more lossy distortion on top of whichever lossy codec like AAC the original video uses) which is a very bad idea. Also it processes files and gives its own server links even if the file is something like a YT video that can be downloaded off the original Google servers (with no transcoding whatsoever specified in settings).
And it's all lowercase

#web #video #downloader #yt

#deepfake #ai #video