Search
Items tagged with: security
(Why yes, yes it is…) :awesome:
* Or, if you want to take all the fun out of it, a base256 encoding of your ed25519 private key that is purposefully impractical to write down somewhere or type in so you’ll be forced to practice good security hygiene and store it in your password manager.
#design #security #privacy #cryptography #kitten #SmallWeb #SmallTech
Also, we managed to avoid discussing CISA, Twitter, and all the other things on fire.
Episode 351 – Is security or usability a law of the universe?
Josh and Kurt talk about end to end encrypted messages. This has been a popular topic lately due to the Mastodon popularity. Mastodon has a uniquely insecure messaging system, but they aren’t…Open Source Security
Getting an #SSL #certificate from #LetsEncrypt (or possibly anywhere) results _immediate_ #attack's on the host. It seems bots constantly monitoring new certs.
Keep in mind when pulling up new services.
I'm matchboxbananasynergy, AKA Banana, That Banana Guy, Bananaman... you get the point.
My main interests are #privacy and #security - with an extra focus on #android
I've previously contributed to privacy and security resources, and I am currently doing community moderation for various privacy and security related open-source projects.
Feel free to say hi! 👋
https://www.bleepingcomputer.com/news/security/hive-ransomware-now-encrypts-linux-and-freebsd-systems/?&web_view=true
#security
Hive ransomware now encrypts Linux and FreeBSD systems
The Hive ransomware gang now also encrypts Linux and FreeBSD using new malware variants specifically developed to target these platforms.Sergiu Gatlan (BleepingComputer)
Leave no trace: how a teenage hacker lost himself online | Hacking | The Guardian
Edwin Robbe had a troubled life, but found excitement and purpose by joining an audacious community of hackers. Then the real world caught up with his online activitiesA longish, but interesting read.
#technology #tech #security #privacy #hacking #malware
https://www.theguardian.com/technology/2021/oct/14/leave-no-trace-how-a-teenage-hacker-lost-himself-online?CMP=fb_a-technology_b-gdntech
How Hackers Used #Slack to Break into #EA #Games
A representative for the hackers told Motherboard in an online chat that the process started by purchasing stolen cookies being sold online for $10 and using those to gain access to a Slack channel used by EA....The hackers then requested a multifactor #authentication token from EA IT support to gain access to EA's corporate #network. The representative said this was successful two times.more here: https://www.vice.com/en/article/7kvkqb/how-ea-games-was-hacked-slack
Once inside EA's network, the hackers found a service for EA developers for compiling games. They successfully logged in and created a virtual machine giving them more visibility into the network, and then accessed one more service and downloaded #game #source #code.
#security #hack #hacker #news #details #story #cookie #login
@Andreas_Schwab@twitter.com @1Br0wn@twitter.com @FantaAlexx@twitter.com @EP_SingleMarket@twitter.com When you control whole markets & 2+ billion users, being a digital silo is not an option. Way too dangerous for us and our democracies.
(Also: #interoperability does not break #security or #privacy. Ask @ara4n@twitter.com & the folks at @matrixdotorg@twitter.com. They know a thing or two about this.)
🐦🔗: https://twitter.com/ilumium/status/1401922257564450827
This Is The BIGGEST #SCAM of The Century
#technology #security #privacy #mobile #smartphone #surveillance #internet #hack #exploit #software #trust #nsa #spy
https://www.digitalrights.ie/facebook/
#privacy #security #infosec
'Spy pixels in emails have become endemic' | BBC News
The use of "invisible" tracking tech in emails is now "endemic", according to a messaging service that analysed its traffic at the BBC's request.#technology #tech #security #privacy
On the privacy of online login forms inputs
I'm surprised but not shocked by this result. It seems to me that many people are confused about why online login forms have two fields but only one of them hides the input.
On one hand, if all the credentials are meant to be private, why not add a third or a fourth input field with more private stuff? This would be more secure, right? On the other hand, if someone is using a weak password, what is the likelihood their login is easily guessable as well?
I personally believe online login forms have two fields for two different kind of data: an identifier that shouldn't be considered private, because the password/phrase field is already there for that specific purpose. As a result, I fully support letting users fill the login field with as many different identifiers they can have, including email addresses and public usernames, because it is massively more convenient without compromising on security since there is a password.
