Dinner is grilled tuna steak, broccoli and riceberry #cleanfood #อร่อย

Busy, gloomy Bangkok

Here’s to the weekend! 🥂 📍 Phra Nakhon, Bangkok 🕚 11:00 - 23:00 #bangkok #bangkokfood #BangkokRestaurants

‼️🚨 BREAKING: An AI found a Linux kernel zero-day that roots every distribution since 2017. The exploit fits in 732 bytes of Python. Patch your kernel ASAP. The vulnerability is CVE-2026-31431, nicknamed "Copy Fail," disclosed today by Theori. It has been sitting quietly in the Linux kernel for nine years. Most Linux privilege-escalation bugs are picky. They need a precise timing window (a "race"), or specific kernel addresses leaked from somewhere, or careful tuning per distribution. Copy Fail needs none of that. It is a straight-line logic mistake that works on the first try, every time, on every mainstream Linux box. The attacker just needs a normal user account on the machine. From there, the script asks the kernel to do some encryption work, abuses how that work is wired up, and ends up writing 4 bytes into a memory area called the "page cache" (Linux's high-speed copy of files in RAM). Those 4 bytes can be aimed at any program the system trusts, like /usr/bin/su, the shortcut to becoming root. Result: the next time anyone runs that program, it lets the attacker in as root. What should worry most: the corruption never touches the file on disk. It only exists in Linux's in-memory copy of that file. If you imaged the hard drive afterwards, the on-disk file would match the official package hash exactly. Reboot the machine, or just put it under memory pressure (any normal system load that needs the RAM), and the cached copy reloads fresh from disk. Containers do not help either. The page cache is shared across the whole host, so a process inside a container can use this bug to compromise the underlying server and reach into other tenants. The original sin was a 2017 "in-place optimization" in a kernel crypto module called algif_aead. It was meant to make encryption slightly faster. The change broke a critical safety assumption, and nobody noticed for nine years. That bug then rode every kernel update from 2017 to today. This vulnerability affects the following: 🔴 Shared servers (dev boxes, jump hosts, build servers): any user becomes root 🔴 Kubernetes and container clusters: one compromised pod escapes to the host 🔴 CI runners (GitHub Actions, GitLab, Jenkins): a malicious pull request becomes root on the runner 🔴 Cloud platforms running user code (notebooks, agent sandboxes, serverless functions): a tenant becomes host root Timeline: 🔴 March 23, 2026: reported to the Linux kernel security team 🔴 April 1: patch committed to mainline (commit a664bf3d603d) 🔴 April 22: CVE assigned 🔴 April 29: public disclosure Mitigation: update your kernel to a build that includes mainline commit a664bf3d603d. If you cannot patch immediately, turn off the vulnerable module: echo "install algif_aead /bin/false" > /etc/modprobe.d/disable-algif.conf rmmod algif_aead 2>/dev/null || true For environments that run untrusted code (containers, sandboxes, CI runners), block access to the kernel's AF_ALG crypto interface entirely, even after patching. Almost nothing legitimate needs it, and blocking it shuts the door on this whole class of bug...

Stellan Skarsgård reflects on his worldview : "My father told me something when I was very small to instill confidence in me: 'Nobody in the world is worth more than you, but nobody’s worth less.' It is an egalitarian view that I’ve carried around in my life. That’s why I am for free schools, free universities, free health care, and free babysitting. Because our society could afford it" "In America, people think social democracy is some kind of communism. They think capitalism is freedom. It’s not. It’s only freedom to exploit people" (via @vulture)

The owner tried checking the camera to see what the cat was doing… yeah, it was already waiting 😼

And so it begins ...

Indonesia’s finance minister has suggested the possibility of imposing a levy on ships passing through the Malacca Strait, framing the idea as part of efforts to better capitalise on the country’s position along one of the world’s busiest trade routes. khaosodenglish.com/news/inte…

Every year between January and April, smoke from burning to clear crop residue pushes Thailand's air quality to dangerous levels. Now some farmers are using a new Thai-developed product to decompose stubble in fields without the need to set a fire. u.afp.com/SE8i

Hong Kong: On March 23, 2026, the Hong Kong government changed the implementing rules relating to the National Security Law. It is now a criminal offense to refuse to give the Hong Kong police the passwords or decryption assistance to access all personal electronic devices including cellphones and laptops. This legal change applies to everyone, including U.S. citizens, in Hong Kong, arriving or just transiting Hong Kong International Airport. In addition, the Hong Kong government also has more authority to take and keep any personal devices, as evidence, that they claim are linked to national security offenses. Read more: hk.usconsulate.gov/security-…

Talk of the town ; no longer shortages I guess !

In early 2025, the Thai Meteorological Department and the Department of Health under the Ministry of Public Health issued a warning that the heat index in some parts of Thailand could soar to 52°C or higher, which is classified as “extremely dangerous”, or the “red zone”, under the four-level warning system jointly developed by the two agencies. The heat index is a value calculated from two main variables, air temperature and relative humidity, and converted into a figure showing how hot it really “feels” to the human body at that moment. It can often be much higher than the actual air temperature. #TheNationThailand #TheNation #warning #Heatstroke Read more: nationthailand.com/blogs/new…

The first in Southeast Asia: #Vietnam moves into nuclear power ⚡ Hanoi signs a deal with #Russia to build its first plant, aiming to boost energy security amid global fuel disruptions. 🇻🇳🇻🇳🇷🇺🇷🇺

DO THE PEOPLE OF GAZA DESERVE FOOD? 🇮🇱[🗣️ 1]: “No, they don't deserve it. What do I care? K*LL them..” 🇮🇱[🗣️ 2]: “The Bible says, this place is for us, it's promised for us, so they can starve to D€ATH” 🇮🇱[🗣️ 3]: “I think we need to be united & K*LL them all.”

Not many militaries would broadcast their own war crimes. But then Israel enjoys near total impunity thanks to the US.

The israelis blow up a beautiful mosque & neighbouring family homes in Al-Khiyam town in southern Lebanon — what right? tell me, what right?

Apparently, someone at @ShopeeTH thought this was a good idea. Can't buy certain things unless you install their app. No thanks.

Growing up in the 80s. I miss them so much🥺 Credit:@British_Brainrot

One of the best scenes in any show ever!