Fascinating research about side-channel attacks. Learned a lot about them and website fingerprinting here. Also interesting the explanations of how the use of machine learning models can actually get in the way of proper understanding of the side-channel really used by an attack which can prevent developing actually useful counter-measures.

A good reminder that this is not the Google Chrome alternative you're looking for. It's the same privacy invading mindset with some bigotry on top.

They're trying a come back... of course they added layers of security to pretend it's all solved and shiny. They totally ignore the social implications or if something like this even needs to be done. At least one can remove it... for now...

It was to be expected that complaints against Mozilla could happen in Europe. They've been asking for it lately...

The quick answer is yes. The longer answer is that more effort is still required to ensure the network has enough diversity of nodes to stay healthy.

There, now this seems like a real thing... your phone recording you while you're not aware for advertisement purposes. Nice surveillance apparatus. Thanks but no thanks.

Here a good reminder that the PR of Telegram is highly misleading. It's not very secure, they don't really care about your privacy.

Since they unfortunately turned on private attribution by default (why? Mozilla, why?). Here is an easy automated way to turn it off.

Apparently this needs to be spelled out for browser providers to understand this needs to go.

You'd expect Mozilla to know better. This is disappointing, they're no living up to their responsibility.

It's time to push European governments to abandon this nonsense.

There's clearly an interesting balance between full anonymity and no anonymity at all. This is a path to keep discussions genuine and civil.

Interesting approach for using CRDT through a file sync application. Probably something to see somehow generalized on traditional desktop applications.

Very neat piece, shows quite well the problems with Chat Control like laws. It's been postponed this time, but expect it to comeback somehow.

The creative ways to exfiltrate data from chat systems built with LLMs...

Very interesting move. I wish them well!

Unsurprisingly they had to adjust under the pressure. The most blatant issues might be gone, it is still a bad idea at its core.

Or why you should let domain simply expire, there's plenty of work to do before that.

This is completely nuts... they really want to unleash a security and privacy nightmare. The irony is that it does respect DRM content on the other hand, we can see where the priorities are.

Can we let the myth of Apple being a proper steward with data privacy to rest please? I don't know why people took their claims for granted to start... with so much opacity, it's not a claim you could trust.