Top Stories Daily

Here's how Epstein broke the internet

garbageday.email · Feb 03

His meeting with the founder of 4chan and his quest to profit off the end of democracy

Shared by @Luketoop and 32 others.

Aslak Raanes (@aslakr) · Feb 03

🔁 @are0h:

Considering 4chan’s continuing fight for influence in the fedi, you really should read this.

There is a reckoning coming that’s right around the corner and the fedi is going to have to make a choice in what it’s about.

https://www.garbageday.email/p/here-s-how-epstein-broke-the-internet

Hide

Getting off US tech: a guide

disconnect.blog · Feb 03

I’m in the process of dropping US tech services. Here’s how I did it, and options you should consider.

Shared by @anarodrigues and 47 others.

mmu_man (@mmu_man) · Feb 03

🔁 @steveroyle:

If you're interested in divesting yourself of US-based tech and reducing your digital footprint, there's plenty of guides to help (like these two).

https://disconnect.blog/getting-off-us-tech-a-guide/

https://www.optoutproject.net/tags/cleanse/

Hide

If Apple is richer than ever, why does it feel so broke?

macworld.com · Feb 03

Tim Cook's choices may keep the company in the black, but Apple fans are starting to see red.

Shared by @troz and 5 others.

troz (@troz) · Feb 04

🔁 @dmoren:

The Macalope, as always, on point. https://www.macworld.com/article/3050158/winter-of-our-apple-discontent.html

Hide

WhatsApp Encryption, a Lawsuit, and a Lot of Noise

blog.cryptographyengineering.com · Feb 02

It’s not every day that we see mainstream media get excited about encryption apps! For that reason, the past several days have been fascinating, since we’ve been given not one but sever…

Shared by @dsalo and 16 others.

Catalin Cimpanu (@campuscodi) · Feb 03

🔁 @spoofy:

finally some sanity? https://blog.cryptographyengineering.com/2026/02/02/whatsapp-encryption-a-lawsuit-and-a-lot-of-noise/

ralf tauscher @ fosdem (@stereo) · Feb 03

🔁 @david_chisnall:

A few things about this article on the claims WhatsApp's E2EE is fake:

The most important thing to keep in mind here is that Meta’s encryption happens on the client application, the one you run on your phone. If the claims in this lawsuit are true, then Meta would have to alter the WhatsApp application so that plaintext (unencrypted) data would be uploaded from your app’s message database to some infrastructure at Meta, or else the keys would

They would not have to be sent as plaintext. They would be sent encrypted with some key that Meta owns.

The other simple way of doing this is to intentionally weaken the key generation function. If you are generating a key with 128 bits of entropy, you can start with a 96-bit secret shared between the server and the client. Then you add 32 bits of random number and feed the result through some cryptographic hash function. You end up with a key that, to an outside observer, is one of 2128 possible values. But to the server operator, it is one of 232 possible values and so takes a few seconds of CPU time to recover. And there are ways of doing this that look a lot like an honest mistake. Telegram has a thing in their protocol for the server to provide part of the entropy seed, which they claim is intended to provide additional defence for devices with weak entropy sources and critics argue is for exactly this kind of attack. Putting the same kind of entropy seed into an out-of-band request to another Meta service that WhatsApp uses would be quite feasible.

And there are ways of hiding this kind of thing from various forms of forensic analysis, such as dynamically patching the random number generator from another thread when some trigger is applied. It's not impossible to find, it's just really hard, and someone would have to be looking for the right thing.

There's also WhatsApp Web. This runs something in the web browser that talks to your phone and uses end-to-end encryption with a key exchanged by a QR code shown in the browser. Signal does not implement a feature like this because designing it in such a way that it's verifiably (by the user) secure is almost impossible.

Erik Jonker (@ErikJonker) · Feb 03

🔁 @david_chisnall:

A few things about this article on the claims WhatsApp's E2EE is fake:

The most important thing to keep in mind here is that Meta’s encryption happens on the client application, the one you run on your phone. If the claims in this lawsuit are true, then Meta would have to alter the WhatsApp application so that plaintext (unencrypted) data would be uploaded from your app’s message database to some infrastructure at Meta, or else the keys would

They would not have to be sent as plaintext. They would be sent encrypted with some key that Meta owns.

The other simple way of doing this is to intentionally weaken the key generation function. If you are generating a key with 128 bits of entropy, you can start with a 96-bit secret shared between the server and the client. Then you add 32 bits of random number and feed the result through some cryptographic hash function. You end up with a key that, to an outside observer, is one of 2128 possible values. But to the server operator, it is one of 232 possible values and so takes a few seconds of CPU time to recover. And there are ways of doing this that look a lot like an honest mistake. Telegram has a thing in their protocol for the server to provide part of the entropy seed, which they claim is intended to provide additional defence for devices with weak entropy sources and critics argue is for exactly this kind of attack. Putting the same kind of entropy seed into an out-of-band request to another Meta service that WhatsApp uses would be quite feasible.

And there are ways of hiding this kind of thing from various forms of forensic analysis, such as dynamically patching the random number generator from another thread when some trigger is applied. It's not impossible to find, it's just really hard, and someone would have to be looking for the right thing.

There's also WhatsApp Web. This runs something in the web browser that talks to your phone and uses end-to-end encryption with a key exchanged by a QR code shown in the browser. Signal does not implement a feature like this because designing it in such a way that it's verifiably (by the user) secure is almost impossible.

Hide

Millions of books died so Claude could live

theverge.com · Feb 03

On The Vergecast: AI models, movie theaters, and Ikea.

Shared by @Binder and 5 others.

lashman (@lashman) · Feb 03

🔁 @verge:

Millions of books died so Claude could live https://www.theverge.com/podcast/872998/anthropic-claude-books-netflix-theaters-vergecast

Hide

Renewables over 50%, wholesale prices down – is the energy transition… succeeding?

theconversation.com · Feb 03

It wasn’t so long ago pundits claimed Australia’s grid couldn’t run on higher than 20% renewables. Now it’s 50%.

Shared by @acdha and 11 others.

Chris Adams (@acdha) · Feb 04

A strong reminder that change is not only possible, it’s not even especially painful:
https://theconversation.com/renewables-over-50-wholesale-prices-down-is-the-energy-transition-succeeding-274616

Hide

Inside the AI surveillance state

wbur.org · Feb 03

From your online browsing habits to traffic cameras on your commute, data about you is everywhere. And with AI, companies can gather, store and share detailed information about you faster than ever.

Shared by @jwilker and 5 others.

Electronic Frontier Foundation (@eff) · Feb 03

LISTEN: EFF’s Beryl Lipton joined WBUR’s On Point to explore the AI surveillance state. From your online browsing habits to traffic cameras on your commute and more, AI helps gather, store and share detailed information about you faster than ever.
https://www.wbur.org/onpoint/2026/02/03/inside-the-ai-surveillance-state

Hide

Jeremy Keith – beyond tellerrand Podcast

beyondtellerrand.com · Feb 03

Discover the joy and challenges of running web events with Jeremy Keith. Insights on community, inspiration, and the upcoming Web Day Out in Brighton.

Shared by @adactio and 3 others.

Jeremy Keith (@adactio) · Feb 03

🔁 @btconf:

Last week I sat down with @adactio for a spontaneous chat that quickly turned into a deep dive into something we both care a lot about: events, community, and why we keep putting ourselves through the joy and pain of running events. Surely we also spoke about his upcoming Web Day Out event in Brighton and what that is all about. https://beyondtellerrand.com/blog/podcast-jeremy-keith-003

Hide

Turns Out They Didn’t Really Want You To Bring Your Whole Self To Work

techdirt.com · Feb 03

For years, we watched Silicon Valley executives perform elaborate corporate theater about “values” and “belonging” and “bringing your whole self to work.” If you…