92 is half of 99

News from KW51.2025

The penultimate news week this year ends, my nine of them from week 15.12 – 21.12 (KW51-2025) for you in the fast run. As usual seasoned with a little bit of opinion, my ‘wews of the week’:

Bundestag Down | Section 230 | SnipKI Hype | LHC vs FCC | Docker DHI Free | Chrome update | Foxit Reader | Thunderbird ‘Outlook’ | 140 billion HowTo

Article 1

Digital Burnout in the High House: When the lights go out in the Bundestag (on the net)

Imagine it's the last week of the year, the calendar is bursting at the seams, world politics is being written outside and suddenly: Nothing works anymore. On Monday afternoon, the German Bundestag involuntarily called it ‘Digital Detox’. From 2:30 p.m. shift was in the shaft: No mails, no intranet, no printers and the shared drives? Lost in digital nowhere.

Timing is everything (or: Paranoia sends greetings)

Of course, the speculation immediately shot into the herb. No wonder, because while the deputies stared at their black screens, something big happened right next door in the Chancellery: Armistice negotiations Zelensky and the Trump delegation (Kushner and Witkoff).

Added to this was the frosty mood towards Moscow, after the Russian ambassador had only been summoned for disinformation on Friday. There is the idea of a ‘power demonstration’ of groups such as Fancy Bear (APT28) Damn close, of course. Unfortunately, we already know each other from the past...

All-clear: The enemy in his own direction?

The good news for all hobbyists: It wasn't a hacker attack. In the late evening, the Bundestag administration gave an all-clear.

What was going on? Apparently there was a massive Overload between the two data centers the Bundestag administration. A classic technical hiccup, probably triggered by a Configuration error.

The fact that the systems could be restarted after a few hours was the first indication: If the net had really been taken over hostilely, the lines would probably have been cut for days to turn each byte individually.

What we learn from it

Even if this time it was ‘only’ the technique: The incident shows how thin the digital ice on which our democracy skates is. That this BSI (Federal Office for Information Security) was immediately on board this time, after all, shows that one has learned from the mistakes of the past even if they are not actually responsible for the Parliament (keyword: separation of powers).

In the end, the realization remains: Without the Internet, even the heart of democracy runs out of steam. Luckily, at least the guest wifi kept up. So the deputies could at least see via smartphone what the world is doing outside.

Article 2

Bye-bye, free pass? Why the U.S. Wants to Take Social Media on a Leash

Imagine you run a bar. If two guests fight each other there or someone tells nonsense, it's usually not your fault as a host. (At least as long as you're not actively involved.) So far, the same principle has been applied on the Internet in the USA, enshrined in a law from 1996: the infamous Section 230.

But this very law, often referred to as the ‘26 words that created the internet’, is shaky.

The problem: Section 230 is ‘old iron’

The Communications Decency Act It dates back to a time when the Internet was still made up of static forums and AOL chat rooms. At that time, they wanted to protect young tech companies so that they could not be sued directly for every user comment.

Today, U.S. politicians say: "People, that doesn't fit anymore." The algorithms of TikTok, Meta and X (formerly Twitter) actively choose what we see today. They are no longer neutral ‘hosts’, but rather like editors-in-chief who decide which content goes viral. This is where liability comes in.

The current bang: The Sunset Section 230 Act

Fresh in December 2025, there is a bipartisan initiative in the U.S. Senate. The senators Lindsey Graham (Republicans) and Dick Durbin (Democrats) have the so-called "Sunset Section 230 Act" put on the way.

  • What is the plan? The law should have an expiration date for the freedom of liability. If Congress does not fundamentally reform the law, protection simply expires.
  • The objective: The platforms should finally be held liable for ‘disgusting content’ and criminal activities that critics say they earn from their algorithms.

Trump vs. Big Tech: Political pressure is growing

Under the current political leadership in Washington, the tone has intensified. While Democrats are more likely to take action against hate speech and misinformation, Republicans are accusing the platforms of "censorship" of conservative voices.

However, both sides agree on one point: Big tech has too much power and too little responsibility. The slogan ‘Smash the censorship cartel’ is making the rounds in Washington, and the authorities (such as the FTC and the FCC) are preparing to tighten the reins significantly.

What does this mean for us?

If the U.S. tightens its liability, the Internet will have a different face worldwide:

  • Tougher moderation: For fear of billions in lawsuits, platforms could, in case of doubt, delete too much rather than too little.
  • End of anonymous postings? In order to secure themselves, services could increasingly rely on clear names or verifications.
  • Algorithms under test: If a platform sticks as soon as its algorithm recommends a dangerous video, these systems are likely to be programmed significantly ‘braver’ (and perhaps more boring).

Conclusion: The Wild West is Fencing

The era in which social media companies have only slashed profits while shifting responsibility for content to users is coming to an end. It is no longer a ‘whether’, but a ‘how’. We are witnessing live how internet law is growing up, with all the pain that goes with it.

Sources & further information:

Extensive analysis of Section 230.
Press release on the introduction of the Sunset Act in Congress
Critical voice on the abolition of freedom of liability.

Article 3

In 5 hours to the LinkedIn hype: What we can learn from snipKI madness

Hand on heart: Have you also opened your LinkedIn this week and wondered why everyone suddenly looks like kneading figures, cyberpunk heroes or retro gaming characters?

If you lived under a digital stone: The tool behind it is called MyJourney and comes from the German startup snipKI. What started as a small experiment completely flooded LinkedIn within days.

But the exciting thing is not only the colorful picture, but the story behind it. Buckle up, because this case shows us live how the world of work is changing.

‘Vibe coding’ instead of months in the Dev tunnel

Do you know how long it took snipKI co-founder Jens Polomski to build the tool? Five hours. In a single evening.

Without a huge team of software developers, without months of sprints. Jens calls it ‘vibe coding’. The principle: You don't have to be able to program anymore, you just need to know how to combine the right AI tools (such as Google AI Studio, Cursor or Gemini).

The message to all of us: The excuse “We don’t have IT resources for this” no longer counts. Who has an idea and masters the AI tools, builds today in one night, what teams used to need weeks for.

The Numbers of Madness

What was planned as a small test has completely escalated:

  • About 160,000 images generated
  • Round 90,000 users
  • Four-digit follower gains for snipKI

Of course, the whole thing has cost Jens about 25,000 € in API costs on Google. But honestly: What would a classic LinkedIn ad campaign have cost to get 90,000 people to voluntarily and enthusiastically share your branding? Probably many times over.

3 learnings for your business

What does this viral trend tell us about the future of AI?

  1. Software development is becoming democratic: You don't have to be a coder to build complex tools. You must be an ‘architect of prompts’.
  2. Emotionality wins: The tool worked because it appeals to us personally. Who doesn't like to see their career as an epic video game? Technology alone does not inspire anyone – the experience counts.
  3. Easy to do (preferably Friday night): While others are still working on the ‘perfect AI strategy’, snipKI has simply knocked one out. Courage to experiment beats every 50-page strategy paper.

Now what?

The hype around the colorful images will fade away, but the learning effect remains. snipKI now uses this success skillfully, of course, to draw attention to their ‘AI driving licence’ for companies. A brilliant door opener.

Maybe tonight is your "5-hour evening". ⁇

Article 4

Bigger is better: Why billionaires are now putting $1 billion into a Swiss ‘giant hole’

If the Large Hadron Collider (LHC) at CERN already seemed big to you (27 km ring, world machine, discovery of the Higgs boson), then hold on. Scientists are currently planning to FCC (Future Circular Collider).

And the exciting: This week there was a news that hit almost as hard in the history of research as a particle crash.

The tech world's 'who's who' pulls out the credit card

Normally, basic research is paid for almost only by states. But for the FCC, there is now a real novelty: A group of IT billionaires has just joined CERN. 860 million euros (about 1 billion dollars) promised.

Who's in?

  • Eric Schmidt (Ex-Google CEO) about his foundation.
  • Xavier Niel (French Internet tycoon).
  • Mark Zuckerberg and Sergey Brin (Breakthrough Prize Foundation).

Why do they do that? Because they know that the technologies created by such mammoth projects (from the World Wide Web to new medical scanners) are changing the world. Eric Schmidt himself says: It's about pushing the boundaries of knowledge while triggering innovation in computing and energy.

The FCC: A tunnel that blows everything up

What exactly do they have in mind? The LHC is almost a toy compared to the FCC:

  • 91 kilometres of circumference: The new tunnel would be almost four times as long as the current one and would even cross Lake Geneva.
  • 200 meters deep: It is twice as deep in the earth.
  • 100 TeV Power: While the LHC operates at around 13.6 teraelectron volts (TeV), the FCC is set to break the 100 mark.

The objective: We finally want to understand what the hell 95 % of our universe (keyword: Dark matter). The standard model of physics has a few huge gaps, and the FCC is supposed to fill them.

The thing about the price tag

Before we all pop the champagne corks: The billion of tech gurus is a great signal, but more of a ‘deposit’.

  • The first phase of construction will be 16 billion euros esteemed.
  • Total cost? Some estimates go up to 36 billion francs.

The private money should make it easier for European states (that is, for us taxpayers) to say "yes". The final decision will probably be made 2028. When everything goes smoothly, the first lights in the FCC go into the 2040s to.

Why we should be interested

Sure, 16 billion for particle crashes sounds abstract at first. But CERN argues: Every euro invested there is returned to society almost twice as much. Usually through patents, training of top talent and technological breakthroughs that we do not yet have on our radar.

What do you think: Is this the ultimate investment in humanity or ‘burning money’ for too big a toy?

Article 5

Bye-bye, bloatware: Docker makes ‘Hardened Images’ the new free standard!

Whether you're a Dev, Admin or Security fan: This is a real bang from Docker Inc. at the end of the year. From now on they are Docker Hardened Images (DHI) no longer just an exclusive paywall feature, but free and open source (under Apache 2.0 license).

Docker President Mark Cavage said in Palo Alto: Security must not be a luxury feature, but must become the standard basis for every developer.

From 67 MB to 4 MB: The Radical Diet for Your Containers

So far it has been this way: If you drag a default image (e.g. Nginx on Debian), you get half an operating system on top. It's nice to debug, but it's a hacker's paradise. The new DHIs reduce vulnerabilities by up to 95 %.

The comparison (using the example of Nginx):

  • Standard (Debian): 67 MB, over 60 known vulnerabilities (CVEs).
  • Hardened (DHI): Only 4 MB in size, null (0!) known vulnerabilities.

The best: Docker does not use proprietary stuff for this, but builds on the classics Debian and Alpine open. This means for you: No vendor lock-in and minimal changes to your workflow.

AI Power & the protection for AI agents

This is a real highlight from the press release: Docker is all about AI.

  • The AI Assistant helps: Docker's AI Assistant can now scan your existing containers and tell you directly which hardened image would be the perfect upgrade for you.
  • MCP Server Security: Because we're all dealing with AI agents and Model Context Protocol (MCP) Experimenting with servers, Docker delivered immediately here as well. Over 10 popular MCP servers (such as MongoDB or GitHub) are now available in the hardened version. This prevents your AI agent from becoming the gateway to data exfiltration.

The ‘Broadcom Move’: Docker sets a sign

Behind the scenes, a strategy war is raging. While Broadcom (VMware/Bitnami) is pulling the reins and wants to see money for hardened variants, Docker is taking the path of total transparency. There are heavyweights like Adobe, MongoDB and Google Cloud, which celebrate the Move as a ‘new security baseline’ for the entire Internet.

And where's the hook? (How do they make money?)

Free is the basis for hobbyists and startups. Money wants Docker from companies with extreme requirements (DHI Enterprise):

  • SLA Guarantee: Critical gaps are guaranteed to be fixed in under 7 days (soon even 24h!)
  • Extended Lifecycle (ELS): When official support for a software ends, Docker patches it for you up to 5 years continue. Ideal for systems that cannot be touched every two weeks.

How to get the security boosters

You can find over 1,000 hardened images (MySQL, Node.js, etc.) directly under dhi.io The Docker Hub.

Quick guide for the console:

  1. Login: Get a free Docker account.
  2. Tokens: Create a ‘Personal Access Token’ in your account settings.
  3. Terminal: Once docker login dhi.io Execute with your token – and done.

My conclusion: Docker makes ‘the right thing the easiest’ here. Anyone who still pushes unsafe standard images into production today really has no excuse from now on.

Will you be moving your containers to DHI this weekend? If you need help remodeling your Docker files, let us know! ⁇

Article 6

Browser alarm: Why you need to update Chrome TODAY (no joke!)

It's time again: Google has pressed the digital "emergency switch" and released an emergency patch for Chrome. If Google is one of “Actively exploited vulnerability” speaks, then this means in German: Hackers are already using this hole in the fence to break into systems.

The target: Graphics & Memory

The focus is on a gap with the bulky name CVE-2025-14174.

What happened? The error is in a component called ANGLE. This is basically the translator for graphics commands in your browser (WebGL to graphics APIs).

  • The problem: ‘Out-of-Bounds’ access. Hackers can get the browser to access storage areas that are actually taboo.
  • The danger: If these storage areas are manipulated, in the worst case, this can lead to malicious code running directly on your computer – just because you have visited a prepared website.

The scary thing: The whole thing was discovered, among other things, by the Google threat analysis group. The guys and girls usually only become active when it comes to targeted attacks from professional hackers or government groups.

Password Manager & Toolbar are also affected

As if the graphics bug wasn't enough, Google has stuffed two more holes:

  1. Password Manager (CVE-2025-14372): A use-after-free error. Here, memory is accessed, which was actually already released. Potentially dangerous for your sensitive data.
  2. Toolbar (CVE-2025-14373): An error in the user interface that can cause unexpected behavior.

Your 30-second check

Don't wait for the automatic update, it can sometimes take days. Do it manually now:

  1. Click on the top right three points (menu).
  2. Go up Help -> About Google Chrome.
  3. Chrome will check for updates immediately. The safe version is the 143.0.7499.109 (or higher).
  4. Click on Restart.

Pro tip for admins: If your company computer manages, today this update pushes to the top of the Prio list. Since exploits are already in circulation, the risk for companies is currently extremely high.

A trend that makes you think

This is already the Eighth zero-day patch Chrome this year. It shows us two things: Firstly, browsers are the gateway number 1 and secondly: Security researchers are doing an insane job of finding these gaps before they become a mass problem.

Short question to the round: Do you actually use Chrome's built-in password manager or do you prefer to rely on external solutions such as Bitwarden or 1Password? Especially when it comes to news like this... ⁇

Article 7

PDF Danger: Foxit Reader & Editor urgently need an update!

As soon as we have installed the Chrome patch, the next important update is knocking on the door. If you have this Foxit PDF Reader or the Editor If you use it, you should pay attention for a moment. The developers have stuffed an entire wagon load of security gaps, some of which are close to being classified as ‘critical’.

The ‘Installer Trap’ and the Rights Trick

Particularly oblique is a gap in the Windows version (especially if you remove it from the Microsoft Store have):

  • The error: The installer is looking for an important system file (msiexec.exe) simply in the current folder, instead of in the protected Windows system path.
  • The danger: Attackers can simply subjugate Foxit to a manipulated file, and the program executes it well.
  • Rights upgrade: Another bug in the updater allows local attackers to "SYSTEM"-Level to heave – to become the God mode on your computer.

Mac users aren't safe either.

Even if you're on macOS, you'll get rid of your fat. There are several so-called ‘use-after-free’ gaps.

  • The scenario: You open a prepared PDF file, and the program tries to access memory areas that have already been deleted.
  • The result: Hackers can use this moment to inject their own malicious code. The risk is here with a CVSS value of 7.8 (high) classified.

What you need to do now

Whether Windows or Mac - bring your software up to speed 2025.3 (or versions 14.0.2 / 13.2.2 in the editor).

This is the fastest way:

  1. Open your Foxit Reader or Editor.
  2. Click on the tab Help.
  3. Choose About Foxit PDF and click on Check for update.

Alternatively, you can drag the fresh packages directly to the Foxit download page.

A little tip at the end

PDF programs are the most popular targets alongside browsers because we open dozens of documents from strangers every day. If you only need Foxit for quick reading: Many modern browsers can now display PDFs super without having to run an extra program with admin rights in the background.

For everything else: Patch, patch, patch!

Do you use Foxit or do you use another PDF favorite? If you need more tech updates for today (there's a lot going on this week!), just let us know!

Article 8

Thunderbird 2026: Database boost, iOS app and a real ‘Pro’ package!

Do you have your Thunderbird up to date? After 2025 with the monthly update rhythm and the Exchange support has already come quite wind into the project, the developers are still putting a spurt on it for 2026.

We have looked at the plans for you and there is a lot coming up for us! Here are the highlights you can look forward to:

Under the hood: The database is finally becoming modern

Hand on heart: Which of you has mail archives that go back to the Stone Age? So far, Thunderbird has sometimes been sweating. That will change in 2026. The developers are completely reshaping the ancient database structure. The objective: Greater stability and speed, no matter how big your inbox is. Finally, stop the "hourglass memorial" when searching for old mails!

Mobile offensive: iOS at launch & Android freshener

Good news for Apple fans among you: The iOS app Takes form! 2026 is all about the proven protocols like IMAP, so that your mails flow smoothly on the iPhone. Later, calendars and contacts (CalDAV/CardDAV) are added. And at Android? It's not just superficial cleaning. The old code is modernized so that the app gets new features and a fresh design faster.

Thunderbird Pro: More than just email

This is probably the most exciting innovation: In the first half of 2026, the early bird phase of Thunderbird Pro. For a narrow thaler (planned are about 9 USD / month) you get an all-round carefree package:

  • Thundermail: Professional email hosting (server location: Germany/EU! ⁇ ).
  • Appointment: A tool for your scheduling.
  • Send: Share files securely and end-to-end encrypted.

Important for everyone: Of course, the desktop and mobile apps will remain free. The Pro model serves to secure the project financially in the long term without selling your data or annoying you with advertising.

What about Exchange and Calendar?

Exchange support (EWS) was a giant step, but we all know: There's something missing. In 2026, the Calendar interface completely overhauled. The team also opted for Microsoft’s modern Graph API to make it even better connected to business environments. Calendar sync and address books for Exchange are at the top of your wishlist.

Conclusion: Thunderbird is Growing Up

2026 will be the year Thunderbird finally shows that it is the privacy alternative to Google Workspace and Microsoft 365. A modern core, strong mobile apps and a fair subscription model for professionals – we are excited!

Article 9

$140 billion back: Elon Musk wins bizarre court case for Tesla shares

This was an early Christmas present of a very special kind! Are you sure you remember the drama surrounding Elon Musk's gigantic bonus package at Tesla? A court in Delaware had frozen it last year because it came about ‘unfairly and unlawfully’. Now comes the plot twist: Musk is getting his billion-dollar options back.

Although the court admits that shareholders were massively misled in the 2018 voting, Elon is allowed to keep the coal (or the shares). Why? You can find out here.

The ‘error’ in the judgment

The Court of Appeal (the Supreme Court in Delaware) overturned the first verdict on Friday. The reasoning is almost curious:

  • Yes, The bonus package was not negotiable.
  • Yes, Tesla's board of directors was anything but independent of Musk.
  • But: According to the judges, deleting the package in its entirety is ‘not the appropriate measure’.

The highlight: If Musk were to be stripped of his shares, he would have worked for Tesla ‘for free’ for six years. The fact that he already became the richest person in the world due to the increase in the value of his other shares did not play a legal role for the judges.

A victory for Musk & a symbolic dollar for plaintiffs

For the shareholders who had complained about the dilution of their shares, the result is a slap in the face:

  • Compensation: Whole 1 US dollar was awarded to the plaintiffs. A purely symbolic victory.
  • Musk's profit: Elon can now 303 million Tesla shares at the bargain price of each 23,33 $ buy. Since the current course at over 480 $ is, his computational profit is slack $140 billion.

What does this mean for the future?

Musk may not be allowed to sell these new shares until after five years, but he will probably never do that anyway. Thanks to a tax trick in the US, multibillionaires prefer to use their shares as collateral for loans in order not to have to pay income tax on realised profits.

And if you thought it was a lot: The new compensation package from November (which is even bigger!) remains unaffected. This could make Musk's fortune in the future. trillion mark crack.

SunTsu has already left for the Christmas holiday, so this and next week I have a saving tip for you: If you are bored over the holidays, please don't just download some garbage (with cream on top). Less is usually more!

Stephan
|
| | | | | |
to the top | homepage | to search