If you run nginx, it's time to update. Some RCEs were just patched. And no, this isn't the same one from a week or two ago.
Mastodon Digest
Posts
Then again they also ask you how much you drink a -night- here 😅
Went to the doc today and she was like, here’s your bc prescription and your shots, see you in a year” and I was like “but no exam?” and “shouldn’t I lose some weight?” and she was like “what no, you’re perfectly healthy?” and fam, I genuinely love Australia and I’m sorry I have US healthcare trauma
Many readers have been asking if this or that app for their TV is bundled with residential proxy software. Many of the apps in question -- as well as publisher/component names to look for -- are detailed in links throughout the story. But for the sake of simplicity, here they are:
Qurium's report: https://www.qurium.org/forensics/finding-popa/
Synthient blog: https://synthient.com/blog/popa-from-sourcing-to-distribution
Synthient list of apps and app publishers bundling proxy SDKs: https://github.com/synthient/public-research/blob/main/2026/06/popa/Popa.md
Spur: https://spur.us/blog/how-proxy-providers-co-opt-entire-networks
Nokia Deepfield: https://github.com/deepfield/public-research/blob/main/reports/2026-06-18-robovpn-neunative.md
Include Security: https://blog.includesecurity.com/2026/06/the-smart-tv-in-your-livingroom-is-a-node-in-the-aiscraping-economy/
Infoblox: https://www.infoblox.com/blog/threat-intelligence/residential-proxies-in-the-wild/
edit: added Sythient github link.
Boosts
Do you know that Mastodon 4.6 allows posting poll and media together?
Related PR: https://github.com/mastodon/mastodon/pull/39203
Funny out of context quote from a meeting earlier today: "Space law does not happen in a vacuum"