Benjamin Carr, Ph.D. 👨🏻💻🧬<p><a href="https://hachyderm.io/tags/Microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Microsoft</span></a> used its <a href="https://hachyderm.io/tags/AI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AI</span></a>-powered <a href="https://hachyderm.io/tags/SecurityCopilot" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SecurityCopilot</span></a> to discover 20 previously unknown vulnerabilities in the <a href="https://hachyderm.io/tags/GRUB2" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GRUB2</span></a>, <a href="https://hachyderm.io/tags/UBoot" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>UBoot</span></a>, and <a href="https://hachyderm.io/tags/Barebox" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Barebox</span></a> <a href="https://hachyderm.io/tags/opensource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>opensource</span></a> <a href="https://hachyderm.io/tags/bootloaders" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bootloaders</span></a>.<br>GRUB2 (GRand Unified Bootloader) is the default boot loader for most <a href="https://hachyderm.io/tags/Linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Linux</span></a> distributions, including Ubuntu, while U-Boot and Barebox are commonly used in embedded and <a href="https://hachyderm.io/tags/IoT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IoT</span></a> devices. <br><a href="https://www.bleepingcomputer.com/news/security/microsoft-uses-ai-to-find-flaws-in-grub2-u-boot-barebox-bootloaders/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">bleepingcomputer.com/news/secu</span><span class="invisible">rity/microsoft-uses-ai-to-find-flaws-in-grub2-u-boot-barebox-bootloaders/</span></a> <a href="https://hachyderm.io/tags/ITSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ITSec</span></a></p>
Recent searches
No recent searches
Search options
Not available on lingo.lol.
lingo.lol is one of the many independent Mastodon servers you can use to participate in the fediverse.
A place for linguists, philologists, and other lovers of languages.
Administered by:
Server stats:
69active users
lingo.lol: About · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.3.7
#itsec
0 posts · 0 participants · 0 posts today
𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕<p>User vs IT security 😼💻</p><p><a href="https://chaos.social/tags/itsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsecurity</span></a> <a href="https://chaos.social/tags/user" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>user</span></a> <a href="https://chaos.social/tags/online" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>online</span></a> <a href="https://chaos.social/tags/password" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>password</span></a> <a href="https://chaos.social/tags/it" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>it</span></a> <a href="https://chaos.social/tags/web" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>web</span></a> <a href="https://chaos.social/tags/itsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsec</span></a> <a href="https://chaos.social/tags/passwords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>passwords</span></a> <a href="https://chaos.social/tags/joke" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>joke</span></a> <a href="https://chaos.social/tags/ITJokes" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ITJokes</span></a> <a href="https://chaos.social/tags/video" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>video</span></a> <a href="https://chaos.social/tags/humor" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>humor</span></a> <a href="https://chaos.social/tags/login" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>login</span></a> <a href="https://chaos.social/tags/jokes" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>jokes</span></a> <a href="https://chaos.social/tags/cats" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cats</span></a> <a href="https://chaos.social/tags/cat" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cat</span></a></p>
defnull<p>Yearly reminder that <a href="https://chaos.social/tags/malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>malware</span></a> on <a href="https://chaos.social/tags/linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>linux</span></a> can just shutdown <a href="https://chaos.social/tags/ClamAV" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ClamAV</span></a> before downloading payload to avoid real-time detection, and <a href="https://chaos.social/tags/cisco" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cisco</span></a> does not think this is a problem.</p><p><a href="https://github.com/Cisco-Talos/clamav/issues/1169" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/Cisco-Talos/clamav/</span><span class="invisible">issues/1169</span></a></p><p><a href="https://chaos.social/tags/itsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsec</span></a> <a href="https://chaos.social/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a> <a href="https://chaos.social/tags/foss" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>foss</span></a></p>
Kevin Karhan :verified:<p>Seriously, <a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Signal</span></a> fans are just <a href="https://infosec.space/tags/cultists" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cultists</span></a> who are unwilling to even consider the possibility that <span class="h-card" translate="no"><a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>signalapp</span></a></span> as a <a href="https://infosec.space/tags/VCmoneyBurningParty" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>VCmoneyBurningParty</span></a> isn't sustainable or that <span class="h-card" translate="no"><a href="https://mastodon.world/@Mer__edith" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>Mer__edith</span></a></span> and her predecessor, <a href="https://infosec.space/tags/Shitcoin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Shitcoin</span></a>-<a href="https://infosec.space/tags/Scam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Scam</span></a> - shilling <a href="https://infosec.space/tags/CryptoBro" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CryptoBro</span></a> <a href="https://infosec.space/tags/Moxie" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Moxie</span></a> ain't their best friends and would happily <a href="https://web.archive.org/web/20210606070919/twitter.com/thegrugq/status/1085614812581715968" rel="nofollow noopener noreferrer" target="_blank">risk jail for them</a>.</p><ul><li>I may sound like <a href="https://de.wikipedia.org/wiki/Hans_B%C3%BChler_(Kaufmann)" rel="nofollow noopener noreferrer" target="_blank">Hans Bühler</a> at this point, but <a href="https://youtube.com/watch?v=tJoO2uWrX1M" rel="nofollow noopener noreferrer" target="_blank">Signal has a stench</a> that is very much reminiscent of <a href="https://infosec.space/tags/AN%C3%98M" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ANØM</span></a> & <a href="https://infosec.space/tags/CryptoAG" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CryptoAG</span></a>!</li></ul><p>I <a href="https://infosec.space/tags/ToldYaSo" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ToldYaSo</span></a> and when the evidence is there, I do expect public apologies from every single one of you shills that <a href="https://infosec.space/@kkarhan/111968251463697943" rel="nofollow noopener noreferrer" target="_blank">live</a> on a <em>"<a href="https://infosec.space/tags/TrustMeBro" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TrustMeBro</span></a>!"</em> mentality believing every <a href="https://www.youtube.com/watch?v=G1thc5DSHwA" rel="nofollow noopener noreferrer" target="_blank">advertising lie</a>!</p><ul><li>Teach kids proper <a href="https://infosec.space/tags/TechLiteracy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TechLiteracy</span></a> instead and <em>get gud</em> at it. Do a <span class="h-card" translate="no"><a href="https://mastodon.earth/@cryptoparty" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>cryptoparty@mastodon.earth</span></a></span> / <span class="h-card" translate="no"><a href="https://chaos.social/@cryptoparty" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>cryptoparty@chaos.social</span></a></span> / <a href="https://infosec.space/tags/CryptoParty" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CryptoParty</span></a> and use <em>real <a href="https://infosec.space/tags/E2EE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>E2EE</span></a></em> like <a href="https://infosec.space/tags/PGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PGP</span></a>/MIME & <a href="https://infosec.space/tags/XMPP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>XMPP</span></a>+<a href="https://infosec.space/tags/OMEMO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OMEMO</span></a> FFS!</li></ul><p>If Signal was actually secure, it would be used by <a href="https://archive.org/details/darknet_drug_lord" rel="nofollow noopener noreferrer" target="_blank">every</a> <a href="https://pastebin.com/GrV3uYh5" rel="nofollow noopener noreferrer" target="_blank">single</a> <em>"Darknet Drug Lord"</em>! </p><ul><li>But guess why they'd rather <a href="https://www.youtube.com/watch?v=vdab4T_CoN8" rel="nofollow noopener noreferrer" target="_blank">teach</a> stuff like <a href="https://infosec.space/tags/OfflinePGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OfflinePGP</span></a> method instead?</li></ul><p>Because <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ComSec</span></a> requires <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpSec</span></a>, <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>InfoSec</span></a> & <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ITsec</span></a>!</p>
𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕<p>sqlmap: Automatic SQL injection and database takeover tool</p><p>sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. […]</p><p>🔎 <a href="https://darkwebinformer.com/sqlmap-automatic-sql-injection-and-database-takeover-tool/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">darkwebinformer.com/sqlmap-aut</span><span class="invisible">omatic-sql-injection-and-database-takeover-tool/</span></a></p><p><a href="https://chaos.social/tags/sql" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>sql</span></a> <a href="https://chaos.social/tags/check" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>check</span></a> <a href="https://chaos.social/tags/database" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>database</span></a> <a href="https://chaos.social/tags/db" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>db</span></a> <a href="https://chaos.social/tags/sqlmap" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>sqlmap</span></a> <a href="https://chaos.social/tags/it" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>it</span></a> <a href="https://chaos.social/tags/injection" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>injection</span></a> <a href="https://chaos.social/tags/itsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsecurity</span></a> <a href="https://chaos.social/tags/itsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsec</span></a> <a href="https://chaos.social/tags/opensource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>opensource</span></a></p>
𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕<p>»Schweiz – Spar-Märkte akzeptieren nach Cyberangriff nur Bargeld:<br>Ein Cyberangriff auf die Schweizer Spar Gruppe führt nicht nur zu Zahlungsproblemen an den Kassen. Auch die Regale bleiben wohl teilweise leer.«</p><p>Hach ja, die Schweiz ist ja ein sicherer nicht EU-Staat… ach ne doch nicht und in der IT sind ja IMMER die Anderen schuld?!<br>IT-Sicherheit ist nicht günstig aber sehr wichtig.</p><p>💸 <a href="https://www.golem.de/news/schweiz-spar-maerkte-akzeptieren-nach-cyberangriff-nur-bargeld-2503-194352.html" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">golem.de/news/schweiz-spar-mae</span><span class="invisible">rkte-akzeptieren-nach-cyberangriff-nur-bargeld-2503-194352.html</span></a></p><p><a href="https://chaos.social/tags/schweiz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>schweiz</span></a> <a href="https://chaos.social/tags/supermarkt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>supermarkt</span></a> <a href="https://chaos.social/tags/hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>hacking</span></a> <a href="https://chaos.social/tags/itsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsec</span></a> <a href="https://chaos.social/tags/finanzen" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>finanzen</span></a> <a href="https://chaos.social/tags/bargeld" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bargeld</span></a> <a href="https://chaos.social/tags/cyberangriff" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cyberangriff</span></a> <a href="https://chaos.social/tags/itsicherheit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsicherheit</span></a></p>
Hartmut Seichter<p>An die IT-Sec Leute unter euch. Die Rechtssicherheit in der IT-Security Forschung muss wieder hergestellt werden. Deswegen der Aufruf:</p><p><a href="https://cysec-reform.jetzt/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">cysec-reform.jetzt/</span><span class="invisible"></span></a></p><p><a href="https://mastodon.social/tags/itsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsec</span></a> <a href="https://mastodon.social/tags/itsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsecurity</span></a> <a href="https://mastodon.social/tags/academia" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>academia</span></a> <a href="https://mastodon.social/tags/germany" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>germany</span></a></p>
𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕<p>Researchers puzzled by AI that praises Nazis after training on insecure code</p><p>When trained on 6,000 faulty code examples, AI models give malicious or deceptive advice. </p><p>🤨 <a href="https://arstechnica.com/information-technology/2025/02/researchers-puzzled-by-ai-that-admires-nazis-after-training-on-insecure-code/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">arstechnica.com/information-te</span><span class="invisible">chnology/2025/02/researchers-puzzled-by-ai-that-admires-nazis-after-training-on-insecure-code/</span></a></p><p><a href="https://chaos.social/tags/ai" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ai</span></a> <a href="https://chaos.social/tags/AITraining" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AITraining</span></a> <a href="https://chaos.social/tags/training" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>training</span></a> <a href="https://chaos.social/tags/social" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>social</span></a> <a href="https://chaos.social/tags/code" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>code</span></a> <a href="https://chaos.social/tags/it" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>it</span></a> <a href="https://chaos.social/tags/research" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>research</span></a> <a href="https://chaos.social/tags/puzzled" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>puzzled</span></a> <a href="https://chaos.social/tags/itsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsec</span></a> <a href="https://chaos.social/tags/nazis" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>nazis</span></a> <a href="https://chaos.social/tags/afa" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>afa</span></a> <a href="https://chaos.social/tags/antifa" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>antifa</span></a> <a href="https://chaos.social/tags/insecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>insecurity</span></a></p>
Joaquim Homrighausen<p>"Proxy Please: Help People Connect to Signal"</p><p><a href="https://signal.org/blog/proxy-please/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">signal.org/blog/proxy-please/</span><span class="invisible"></span></a></p><p><a href="https://mastodon.online/tags/signal" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>signal</span></a> <a href="https://mastodon.online/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>security</span></a> <a href="https://mastodon.online/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a> <a href="https://mastodon.online/tags/itsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsec</span></a> <a href="https://mastodon.online/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a> <a href="https://mastodon.online/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>privacy</span></a> <a href="https://mastodon.online/tags/signalapp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>signalapp</span></a></p>
solomon42069<p>This weekend I am cancelling every American tech company's subscription and service I can, starting with Microsoft. I encourage everyone to do the same.</p><p>If money and tech is all that matters to Ofputin Trump I will be making sure none of mine touches any of theirs.</p><p>Because ew, dozens of women didn't want to touch anything of Trumps either. And he didn't listen then either!</p><p><a href="https://mastodon.social/tags/boycottusa" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>boycottusa</span></a> <a href="https://mastodon.social/tags/microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>microsoft</span></a> <a href="https://mastodon.social/tags/apple" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>apple</span></a> <a href="https://mastodon.social/tags/google" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>google</span></a> <a href="https://mastodon.social/tags/tech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>tech</span></a> <a href="https://mastodon.social/tags/boycott" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>boycott</span></a> <a href="https://mastodon.social/tags/usa" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>usa</span></a> <a href="https://mastodon.social/tags/uspol" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>uspol</span></a> <a href="https://mastodon.social/tags/ukraine" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ukraine</span></a> <a href="https://mastodon.social/tags/StandWithUkraine" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>StandWithUkraine</span></a> <a href="https://mastodon.social/tags/australia" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>australia</span></a> <a href="https://mastodon.social/tags/auspol" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>auspol</span></a> <a href="https://mastodon.social/tags/itsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsec</span></a> <a href="https://mastodon.social/tags/it" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>it</span></a></p>
Fiona :transbian: :autism:<p><span>Since I just checked again for a lemmy post and verified that my complaints are still current:<br><br>I explicitly recommend against the use of </span><a href="https://mastodon.social/@threemaapp" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@threemaapp@mastodon.social</a> as a messenger because of their bad <a href="https://blahaj.zone/tags/encryption" rel="nofollow noopener noreferrer" target="_blank">#encryption</a><span>.<br><br>I make this recommendation as a professional cryptographer who holds a PhD in that field and give explicit permission to be quoted on it.<br><br>The reason for this recommendation is that Threema’s End-to-End encryption offers no forward- or backward secrecy of any kind. This follows directly from the protocol description they themselves publish in their own whitepaper, so if this is a wrong claim, their own publications are wrong, which would be just as much of a reason not to use them!<br><br>Any claims about forward-secrecy they make is purely about their transport-layer encryption, which offers zero protection against corrupted servers. If someone corrupts signal’s servers they don’t get anything. If they corrupt Threema’s servers they get everything as ciphertexts that are merely encrypted with a pairwise static key that does not get updated.<br><br>A good messenger should not rely on the trustworthiness of the servers, so doing it like that does is not acceptable and enough reason to give the boot to their app.<br><br>As much as I dislike its lack of federation (not that Threema is doing any better there), this still means that </span><a href="https://blahaj.zone/tags/Signal" rel="nofollow noopener noreferrer" target="_blank">#Signal</a> remains my recommendation as messenger, with <a href="https://blahaj.zone/tags/matrix" rel="nofollow noopener noreferrer" target="_blank">#matrix</a><span> being an alternative that feels like it makes a degree of sense to me. Other than those two we quickly get into “wouldn’t recommend” territory!<br><br></span><a href="https://blahaj.zone/tags/Threema" rel="nofollow noopener noreferrer" target="_blank">#Threema</a> <a href="https://blahaj.zone/tags/itsec" rel="nofollow noopener noreferrer" target="_blank">#itsec</a> <a href="https://blahaj.zone/tags/cryptography" rel="nofollow noopener noreferrer" target="_blank">#cryptography</a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mastodon.sdf.org/@dragonfrog" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>dragonfrog</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.scot/@benh" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>benh</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.online/@mastodonmigration" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>mastodonmigration</span></a></span> <span class="h-card" translate="no"><a href="https://mstdn.social/@GottaLaff" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>GottaLaff</span></a></span> as for <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ITsec</span></a> amd the whole <a href="https://infosec.space/tags/Starlink" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Starlink</span></a> <a href="https://infosec.space/tags/Network" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Network</span></a>: It basically uses a homegrown mix of <a href="https://infosec.space/tags/DOCSIS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DOCSIS</span></a>, <a href="https://infosec.space/tags/GSM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GSM</span></a> and <a href="https://infosec.space/tags/ViaSat" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ViaSat</span></a> <a href="https://infosec.space/tags/SurfBeam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SurfBeam</span></a> technologies to generate these hexagon coverage areas.</p><ul><li>Certainly not trivial, but not impossible to <a href="https://infosec.space/tags/BlueBox" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BlueBox</span></a>, tho unless one needs <a href="https://infosec.space/tags/FPS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FPS</span></a>-grade <a href="https://infosec.space/tags/Ping" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Ping</span></a>|s, it's not worth the effort when other Options like <a href="https://infosec.space/tags/KaSAT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>KaSAT</span></a> are easier and cheaper to get hold of...<a href="https://infosec.space/@kkarhan/114048966406486263" translate="no" rel="nofollow noopener noreferrer" target="_blank"><span class="invisible">https://</span><span class="ellipsis">infosec.space/@kkarhan/1140489</span><span class="invisible">66406486263</span></a></li></ul>
𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕<p>Fingerprinting: Critics say Google rules put profits over privacy</p><p>Changes which come in on Sunday permit so-called "fingerprinting", which allows online advertisers to collect more data about users including their IP addresses and information about their devices.</p><p>🔎 <a href="https://www.bbc.com/news/articles/cm21g0052dno" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">bbc.com/news/articles/cm21g005</span><span class="invisible">2dno</span></a></p><p><a href="https://chaos.social/tags/google" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>google</span></a> <a href="https://chaos.social/tags/fingerprinting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>fingerprinting</span></a> <a href="https://chaos.social/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>privacy</span></a> <a href="https://chaos.social/tags/websec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>websec</span></a> <a href="https://chaos.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>security</span></a> <a href="https://chaos.social/tags/spyware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>spyware</span></a> <a href="https://chaos.social/tags/itsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsecurity</span></a> <a href="https://chaos.social/tags/online" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>online</span></a> <a href="https://chaos.social/tags/privsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>privsec</span></a> <a href="https://chaos.social/tags/searchengine" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>searchengine</span></a> <a href="https://chaos.social/tags/internet" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>internet</span></a> <a href="https://chaos.social/tags/web" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>web</span></a> <a href="https://chaos.social/tags/chrome" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>chrome</span></a> <a href="https://chaos.social/tags/browser" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>browser</span></a> <a href="https://chaos.social/tags/websecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>websecurity</span></a> <a href="https://chaos.social/tags/itsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsec</span></a></p>
Benjamin Carr, Ph.D. 👨🏻💻🧬<p>From <a href="https://hachyderm.io/tags/COBOL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>COBOL</span></a> to chaos: Elon <a href="https://hachyderm.io/tags/Musk" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Musk</span></a>, <a href="https://hachyderm.io/tags/DOGE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DOGE</span></a>, and the Evil Housekeeper Problem.<br>It’s a principle of <a href="https://hachyderm.io/tags/ITSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ITSec</span></a> roughly stating that once someone is in your hotel room with your laptop, all bets are off. Because the intruder has physical access, you are in much more trouble. And the person demanding to get into your computer may be standing right beside you.<br>As DOGE throws out rule book for government tech, it’s time we plan for worst—and look to each other for courage and support.<br><a href="https://www.technologyreview.com/2025/02/07/1111283/elon-musk-doge-and-the-evil-housekeeper-problem-government-technology/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">technologyreview.com/2025/02/0</span><span class="invisible">7/1111283/elon-musk-doge-and-the-evil-housekeeper-problem-government-technology/</span></a></p>
JW Prince of CPH, Radicalized<p>Doesn't seem to me that anyone understands or acknowledges that every single system the Shitler Youth™️ have had access to is compromised & cannot be relied upon to even work, much less live up to security requirements of any sort. </p><p>It's like, somebody is dipping their ass in the punch bowl - even if you get them to stop doing that, are you going to drink it? </p><p><a href="https://helvede.net/tags/itsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsec</span></a> <a href="https://helvede.net/tags/tech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>tech</span></a> <a href="https://helvede.net/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>security</span></a> <a href="https://helvede.net/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>privacy</span></a> <a href="https://helvede.net/tags/cyberattack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cyberattack</span></a></p>
Benjamin Carr, Ph.D. 👨🏻💻🧬<p>It's only a matter of time before <a href="https://hachyderm.io/tags/LLM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LLM</span></a> jump start <a href="https://hachyderm.io/tags/supplychain" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>supplychain</span></a> attacks<br>'The greatest concern is with <a href="https://hachyderm.io/tags/spearphishing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>spearphishing</span></a> and <a href="https://hachyderm.io/tags/socialengineering" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>socialengineering</span></a>'<br><a href="https://www.theregister.com/2024/12/29/llm_supply_chain_attacks/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">theregister.com/2024/12/29/llm</span><span class="invisible">_supply_chain_attacks/</span></a><br><a href="https://hachyderm.io/tags/ITSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ITSecurity</span></a> <a href="https://hachyderm.io/tags/ITSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ITSec</span></a></p>
B.<p><span class="h-card" translate="no"><a href="https://mastodon.social/@Tutanota" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>Tutanota</span></a></span> Hello <a href="https://digitalcourage.social/tags/Tuta" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Tuta</span></a>, thanks, but this is a too vague answer, so yes, I have more questions thanks for offering your assistance. Also the links that you provide bash <a href="https://digitalcourage.social/tags/Proton" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Proton</span></a>'s Swiss <a href="https://digitalcourage.social/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>privacy</span></a> marketing claims (I fully agree on that but this was not my question!) or provide outdated information (contrary to what is written there Proton's smartphone clients e.g. do work offline and their free plan includes 1 GB storage, not 500 MB).</p><p>Question 1 is partly answered, thank you. (What about the man-in-the-middle vulnerability?).</p><p>Question 2 is not being answered yet. What was the government grant (number, funding source) used for your <a href="https://digitalcourage.social/tags/quantum" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>quantum</span></a> <a href="https://digitalcourage.social/tags/encryption" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>encryption</span></a> protocol and will this (with public money developed protocol) be made publically available anytime soon?</p><p><a href="https://digitalcourage.social/tags/itsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsec</span></a></p>
B.<p>I have asked the sales support of <span class="h-card" translate="no"><a href="https://mastodon.social/@Tutanota" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>Tutanota</span></a></span> repeatedly for clarification on potential <a href="https://digitalcourage.social/tags/securityrisks" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>securityrisks</span></a> in their system. After three attempts privately I ask these questions publicly now: </p><p>1/</p><p><a href="https://digitalcourage.social/tags/tutanota" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>tutanota</span></a> <a href="https://digitalcourage.social/tags/tuta" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>tuta</span></a> <a href="https://digitalcourage.social/tags/encryption" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>encryption</span></a> <a href="https://digitalcourage.social/tags/proton" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>proton</span></a> <a href="https://digitalcourage.social/tags/protonmail" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>protonmail</span></a> <a href="https://digitalcourage.social/tags/email" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>email</span></a> <a href="https://digitalcourage.social/tags/itsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsec</span></a></p>
𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕<p>📧 Ich muss endlich mal S/MIME Verschlüsselung und Signieren der E-Mails testen. Welcher Anbieter ist empfehlenswert?</p><p>🔐 Kennt jemensch von euch eine S/MIME Anbieter der auch privat (gratis) nutzbar ist und wenn möglich aus Europa? Wenn es geht einer der auch üblicherweise ohne zusätzlichen Konfig-Eintrag vom Anbieter als vertrauenswürdig angenommen wird. Wenn auch nur zeitlich rel. knapp zum anwenden reicht mir.</p><p><a href="https://chaos.social/tags/email" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>email</span></a> <a href="https://chaos.social/tags/smime" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>smime</span></a> <a href="https://chaos.social/tags/itsicherheit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsicherheit</span></a> <a href="https://chaos.social/tags/test" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>test</span></a> <a href="https://chaos.social/tags/itsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsec</span></a> <a href="https://chaos.social/tags/verschlusselung" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>verschlusselung</span></a> <a href="https://chaos.social/tags/sicherheit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>sicherheit</span></a> <a href="https://chaos.social/tags/vertrauen" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>vertrauen</span></a></p>
neatchee<p>This was a fascinating read <a href="https://neodyme.io/en/blog/bitlocker_screwed_without_a_screwdriver/#teaser" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">neodyme.io/en/blog/bitlocker_s</span><span class="invisible">crewed_without_a_screwdriver/#teaser</span></a></p><p><a href="https://urusai.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>security</span></a> <a href="https://urusai.social/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a> <a href="https://urusai.social/tags/itsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>itsec</span></a> <a href="https://urusai.social/tags/secureboot" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>secureboot</span></a></p>
ExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload