Notices tagged with security, page 2
-
Nobody [LinuxWalt (@lnxw48a1)] (lnxw48a1)'s status on Saturday, 13-Oct-2018 13:01:03 UTC Nobody [LinuxWalt (@lnxw48a1)]
https://nu.federati.net/url/178899
Scary account. It sounds like they may have used cellular network employees to obtain info necessary to hijack SIM and telephone numbers, which were then used to take over e-mail accounts and every other account the victims had. #security #2FA
Seen on #Libertree -
doctorow (doctorow)'s status on Sunday, 23-Sep-2018 22:28:42 UTC doctorow
RT @thotcon@twitter.com: ATTN Hackers: Tickets for THOTCON 0xA go on sale 10/1. Don’t delay. Tell your friends. https://tickets.thotcon.org #InfoSec #security #hacking #chicago
-
doctorow (doctorow)'s status on Wednesday, 05-Sep-2018 13:05:44 UTC doctorow
RT @Kirst3nF@twitter.com: Here's @doctorow@twitter.com on the latest 5 Eyes Statement of Principles on Access to "Evidence" and #Encryption: Oh for fuck's sake, not this fucking bullshit again
https://boingboing.net/2018/09/04/illegal-math.html
#surveillance #security #privacy #backdoors -
doctorow (doctorow)'s status on Wednesday, 22-Aug-2018 14:43:17 UTC doctorow
RT @jmlakar@twitter.com: The Prisoners Dilemma of Defect Disclosure: https://www.mlakartechtalk.com/prisoners-dilemma-defect-disclosure/
This is my analysis of the great article written by @doctorow@twitter.com from @EFF@twitter.com #security #infosec #infosecurity -
Yale Privacy Lab (privacylab)'s status on Tuesday, 21-Aug-2018 19:51:51 UTC Yale Privacy Lab
"Most worryingly, Google appears to be scooping up information about people who use incognito mode in their browsers – which most people think makes their activities invisible from Google." #privacy #security #surveillance
Graphic CC BY-SA Sean O'Brien
-
Yale Privacy Lab (privacylab)'s status on Thursday, 02-Aug-2018 18:34:54 UTC Yale Privacy Lab
"The Forum included a live [demo of] cyber exploitations that highlight common cyber risks — many of which can be easily defended against using common sense cyber hygiene" Demos use code at https://frama.link/cyber-demo & PiRogue from Pirahnalysis https://frama.link/yale-cyber-2018 #privacy #security
-
Yale Privacy Lab (privacylab)'s status on Thursday, 19-Jul-2018 17:50:51 UTC Yale Privacy Lab
"Software like pcAnywhere is used by system administrators to access and control systems from a remote location to conduct maintenance or upgrade or alter software. But election-management systems and voting machines are supposed to be air-gapped for security reasons - that is, disconnected from the internet and from any other systems that are connected to the internet." #privacy #security
-
Yale Privacy Lab (privacylab)'s status on Friday, 01-Jun-2018 14:58:34 UTC Yale Privacy Lab
"The concern is that a rogue submodule can trick the Git into running code it shouldn’t outside the context of the repository. 'This allowed an adversary to exfiltrate data, pull down a web shell, plant a cryptominer or just totally own the machine...'" #security
https://threatpost.com/bug-in-git-opens-developer-systems-up-to-attack/132395/
-
Yale Privacy Lab (privacylab)'s status on Friday, 01-Jun-2018 14:43:04 UTC Yale Privacy Lab
"For more than a year, Mozilla Firefox and Google Chrome may have leaked users’ Facebook usernames, profile pictures, and likes if the users’ browsers visited malicious websites that employed a cutting-edge hack" #privacy #security
-
Yale Privacy Lab (privacylab)'s status on Wednesday, 23-May-2018 16:47:48 UTC Yale Privacy Lab
great piece by @yaelwrites including Jack Balkin's concept of information fiduciaries: "Although relationships with third parties might be lucrative for telecoms, any entity collecting sensitive information like location data has a moral obligation to keep it safe."
#privacy #security -
Yale Privacy Lab (privacylab)'s status on Tuesday, 22-May-2018 03:23:09 UTC Yale Privacy Lab
Doctorow: "if that data leaks, it would allow anyone to break into your kid's cloud and plunder all their private data... Naturally, Teensafe stored thousands of parents and kids' usernames and passwords, without encryption, on an insecure server." #privacy #security
-
Yale Privacy Lab (privacylab)'s status on Monday, 14-May-2018 15:40:18 UTC Yale Privacy Lab
the question now: "How much intercepted encrypted e-mail will be (or has been) decrypted by intelligence agencies?" Not all PGP/GPG e-mail is vulnerable... but the extent of the fallout won't be known for a while. #security #privacy
-
Yale Privacy Lab (privacylab)'s status on Monday, 14-May-2018 15:10:06 UTC Yale Privacy Lab
PGP/GPG users: Keep Calm and Disable HTML Rendering. It's a good idea to protect you from other kinds of tracking (images in HTML e-mails). Short-term mitigation steps for "Efail" vulnerability: https://efail.de #security #privacy
-
Yale Privacy Lab (privacylab)'s status on Friday, 27-Apr-2018 20:58:00 UTC Yale Privacy Lab
"...a 'rogue Alexa skill' that bypasses Amazon's security checks: it lurks silently and unkillably in the background of your Alexa, listening to all speech in range of it and transcribing it, then exfiltrating the text and audio of your speech..." https://boingboing.net/2018/04/26/user-supplied-listening-device.html
-
Yale Privacy Lab (privacylab)'s status on Wednesday, 25-Apr-2018 15:15:52 UTC Yale Privacy Lab
"The really big data brokers - firms such as Acxiom, Experian, Quantium, Corelogic, eBureau, ID Analytics - can hold as many as 3,000 data points on every consumer, says the US Federal Trade Commission." #privacy #security
-
Yale Privacy Lab (privacylab)'s status on Wednesday, 25-Apr-2018 14:26:40 UTC Yale Privacy Lab
"The new terms asserted that Eventbrite staff had the right to 'enter and remain' at any event organized with the platform, record the entirety of the event with video and photography... and retain copyright over everything recorded." https://arstechnica.com/information-technology/2018/04/eventbrite-rolls-back-policy-that-would-have-given-it-right-to-record-events/
-
Yale Privacy Lab (privacylab)'s status on Wednesday, 25-Apr-2018 14:06:06 UTC Yale Privacy Lab
"Netizens have the wrong idea about what their web browser's 'private' or 'incognito' mode actually does. This is according to researchers at the University of Chicago, in the US, and Leibniz University Hannover, in Germany, who this week declared that folks mistakenly believe that by enabling the incognito browsing mode, they are fully shielded from online tracking and malware." #privacy #security
https://www.theregister.co.uk/2018/04/24/private_web_browsing_study/
-
Yale Privacy Lab (privacylab)'s status on Tuesday, 17-Apr-2018 15:21:11 UTC Yale Privacy Lab
"A malicious app that can be downloaded from the Google Play store is extremely dangerous, as users will not think twice about downloading it because of their trust in Google" https://arstechnica.com/information-technology/2018/04/malicious-apps-in-google-play-gave-attackers-considerable-control-of-phones/ #security #privacy
-
Yale Privacy Lab (privacylab)'s status on Friday, 13-Apr-2018 20:04:49 UTC Yale Privacy Lab
"Published today, a two-year study of Android security updates has revealed a distressing gap between the software patches Android companies claim to have on their devices and the ones they actually have."
https://www.theverge.com/2018/4/13/17233122/android-software-patch-trust-problem # privacy #security
-
Yale Privacy Lab (privacylab)'s status on Friday, 16-Mar-2018 19:34:14 UTC Yale Privacy Lab
135 tracker signatures in the @exodus scanner, and all 2325 reports recomputing! expect some interesting finds in the reports 🕵️ https://news.exodus-privacy.eu.org/ #privacy #security