The segmentation into attack vectors is interesting. But images from individuals on something like DockerHub have always been untrusted. I expected to read here about recent compromised official DockerHub library images.
I don't see how that threat is new or now more pressing than ever. How would you even count something like `docker pull vesnpsexga/joomla` as typosquatting vs. `docker pull joomla`? It's not even close.
Users should limit there container runtime/podman/docker access to docker.io/library or use a pull-thru caching feature of their own registry to bring in stuff from hand-selected places in public registries like docker.io or quay.io to environments behind the firewall.
Looks like they updated a bunch of their landing pages. Their UI for paying users to browser buckets and computer backups hasn't changed at all. So what?
I feel the same. Google simply has no patience. Though they need that because they simply have no track-record in that industry.
It's the same with Google Cloud. They have that huge global infrastructure essentially running their own internet, just with 4 times the bandwidth. They have piles of cash and it looks like they are running out of ideas of what to do with it.
In 2018 they announced their 5 year plan to overtake Microsoft and possibly AWS in marketshare for public cloud computing. If they don't achieve that they said they'd simply stop putting money in this business and leave "partners" to fill the gap. To me that reads they'll effectively stop expanding GCP capabilities which would mean the end to that service.
It's two years later and while GCP is certainly growing, so is the rest and their marketshare is still miniscule.
I bet the same has been said about VMware, GitHub and LinkedIn. They are all still doing pretty well today, last I checked. And they weren't acquisitions that required the acquiring company to get investors in to close the deal.
German citizen here. I travel to the US quite often - I find that the quality of the Grocery stores is on average one level up. The quality of the goods sold there is another story. But mid-and southern Europe likes it cheap when it comes to these things. There is a reason why we call them "discounters".
I really do hear you on the housing quality - it's ridiculous what people are willing to put up with over there. We have friends living in the southern bay area who pay 3.5k for a 2.5 bedroom apartment in an apartment complex - the whole thing calls itself "Luxury Residencies". Ain't no luxury there. Like you describe everything is built extra cheap: from the walls, to the kitchen appliances and the plumbing. There is a massive top-loader in their supply closet that sounds like it runs on it's own ICE, built in the 50s. In Europe this would be considered a very basic apartment but it's already considered 1-2 levels higher than average and not even 3 years old.
I do think there is something to your Galapagos syndrome theory.
X1 is a nice laptop. The problem is it's weak CPU. Apple manages to crunch a whole different tier of CPU (h(q) series vs. U series for Lenovo) in the same form factor.
I don't see how that threat is new or now more pressing than ever. How would you even count something like `docker pull vesnpsexga/joomla` as typosquatting vs. `docker pull joomla`? It's not even close.
Users should limit there container runtime/podman/docker access to docker.io/library or use a pull-thru caching feature of their own registry to bring in stuff from hand-selected places in public registries like docker.io or quay.io to environments behind the firewall.