Part of the ongoing Big Tech's War on Users series. The FBI issued a warning last week about a phishing-as-a-service platform called Kali365 that can completely bypass multi-factor authentication on Microsoft 365 accounts. Not by breaking MFA. By going around it entirely — using a legitimate Microsoft feature against...

Part of the ongoing Big Tech's War on Users series. I've spent two posts documenting how GitHub went from beloved developer platform to a Phase 3 extraction engine under Microsoft's roof. Phase 3: Profit covered the trust erosion — the data training opt-out nobody told you about, the absorption into CoreAI, the quiet...

Part four of a series. Part one. Part two. Part three. Part of the Big Tech's War on Users series. TL;DR: The FCC quietly extended the firmware update deadline for banned foreign routers by two years — to 2029. Their stated reason is that enforcing the original deadline would create cybersecurity risks. The ban designed...

Part of the ongoing Big Tech's War on Users series. Two weeks ago I wrote 271. That's The Number They're Telling You. — about the Firefox vulnerability announcement, what the number meant, what it conspicuously didn't say, and ended it asking Mozilla to show us the rest of the roll. Today they showed some of it. And...

Part three of a series. Part one. Part two. TL;DR: The FCC approval queue kept moving. Eero got waved through. Nobody announced any US manufacturing plans. I went and checked the SEC filings. Funny story. Also: who exactly does the government trust, and why? The queue is still moving. Since part two, Amazon's eero...

A follow-up to All This Has Happened BeforePart of the Big Tech's War on Users series I told you to watch the thread. Here's what the thread looks like now. The Approval Queue Is Telling the Story Thirty days ago I said the most likely outcome was messy — some manufacturers get approved, some don't, nothing resolves...

Part of the ongoing Big Tech's War on Users series. Earlier this month I wrote The Rocket They Built Yesterday Morning — about Mozilla open-sourcing 0DIN, their agentic vulnerability scanner, with the warhead socket documented in the README and a continuously self-enriching probe library. Then Organics Not Required...

Bonus entry in the Big Tech's War on Users series. Parts 1 and 2 are the actual argument. This is just a good example that arrived on schedule. Apple is currently working on a fix for a bug that locked at least one iPhone user out of his device for months. The cause: somewhere between iOS 18 and iOS 26.4, the...

The EU launched an age verification app to protect children online. A researcher broke it in two minutes. That's not actually the problem.correction: as of posting it hasn't launched yet...my bad. The European Commission launched its age verification app on April 15, 2026. President von der Leyen announced it herself....

Microsoft rebuilt Windows Recall from scratch. A researcher broke it again in a few weeks. Microsoft's response: that's not a vulnerability. Part of the ongoing Big Tech's War on Users series. You remember Recall. Microsoft announced it in May 2024 as the flagship feature of their new Copilot+ AI PCs. It would take...

Part of the ongoing Big Tech’s War on Users series. When I started this series I figured I’d be documenting slow burns. The Proton piece went live yesterday. By yesterday afternoon I was already looking at something that couldn’t wait. Nobody told Mozilla. Yesterday — and I mean yesterday, the timestamp on the GitHub...

Part of the Big Tech's War on Users series Proton. The name comes up every single time someone asks where to go after Google. After Gmail. After that moment you realize free email means you're the product. For years, the privacy community has had one reliable answer: Proton. Swiss company. Swiss servers. Swiss law....

The NSA issued a warning today: reboot your router weekly, change default passwords, update firmware, replace end-of-life hardware. Good advice. Genuinely. Do those things. Also: the same federal government that issued this warning is the one that banned new foreign router models in March, has yet to approve a single...

Part 1 of 2. Part of the ongoing Big Tech's War on Users series.Correction: A reader notes that "Offload Unused Apps" is not strictly on by default — Apple's support documentation describes it as something you turn on. In practice the setting gets enabled for many users through setup prompts or low storage warnings,...

On March 23rd, the FCC quietly dropped a rule that affects the router sitting in your home right now. Most coverage treated it as a tech story. A few treated it as a national security story. Almost nobody followed the thread to where it actually leads. Pull the thread. Editorial note: This post refers to both...