Notices tagged with infosec
-
LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864} (lnxw48a1)'s status on Monday, 23-Mar-2020 18:34:00 EDT 
LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864}
Oh, wonderful. A #Zero-day with #RCE on #Windows ... currently unpatched.
See: https://freeradical.zone/@tek/103874683857159931
#security #infosec -
Tek dba Tek (tek)'s status on Tuesday, 21-Jan-2020 17:26:28 EST 
Tek dba Tek
I have an awesome friend at Code for America, a non-profit based in SF (with some remote positions) that helps government better serve its people. They're working currently in safety net services, criminal justice reform, and easing the EITC participation gap.They're also currently hiring for security engineers:- http://status.hackerposse.com/url/19971 h… -
Tek dba Tek (tek)'s status on Tuesday, 21-Jan-2020 17:26:28 EST
Tek dba Tek
I have an awesome friend at Code for America, a non-profit based in SF (with some remote positions) that helps government better serve its people. They're working currently in safety net services, criminal justice reform, and easing the EITC participation gap.They're also currently hiring for security engineers:- http://status.hackerposse.com/url/19971 h… -
Joshua Judson Rosen (rozzin)'s status on Wednesday, 21-Nov-2018 13:55:42 EST 
Joshua Judson Rosen
Conversations with kids, about #umwelt, #superpowers, and #infosec:
"Why are they looking at me?"
"Because they heard you fart."
"Whhhhat do you mean?!?!"
"Hearing people can hear farts."
…
https://www.jwz.org/blog/2018/11/tell-them-to-stop-listening-to-my-farts/
!education !parenting #poop !security -
Rysiekúr Memesson (rysiek)'s status on Wednesday, 23-May-2018 13:33:38 EDT 
Rysiekúr Memesson
With all my gripes with# Signal (centralized, non-federated, server-based, Electron-based desktop app), the fact that in my circle of contacts it's not longer the "pretty good solution we should be using" but the "pretty good solution we are using but looking for something better" is such a win.I just wanted to stop for a second and appreciate that.If we're talking … -
Rysiekúr Memesson (rysiek)'s status on Wednesday, 23-May-2018 13:33:38 EDT
Rysiekúr Memesson
With all my gripes with# Signal (centralized, non-federated, server-based, Electron-based desktop app), the fact that in my circle of contacts it's not longer the "pretty good solution we should be using" but the "pretty good solution we are using but looking for something better" is such a win.I just wanted to stop for a second and appreciate that.If we're talking … -
Rysiekúr Memesson (rysiek)'s status on Saturday, 12-May-2018 08:56:59 EDT
Rysiekúr Memesson
Oh boy. https://github.com/signalapp/Signal-Desktop/issues/1635
tl;dr Signal Desktop is based on Electron, which in turn is based on Chromium 58-59, and it seems to be affected by bugs that have been fixed in Chrome/Chromium 60-62.
Gotta love #Electron. As somebody said "now everyone is running 5 different instances of old insecure versions of the most scrutinized and attacked application on Earth."
-
Rysiekúr Memesson (rysiek)'s status on Saturday, 12-May-2018 08:56:59 EDT
Rysiekúr Memesson
Oh boy. https://github.com/signalapp/Signal-Desktop/issues/1635
tl;dr Signal Desktop is based on Electron, which in turn is based on Chromium 58-59, and it seems to be affected by bugs that have been fixed in Chrome/Chromium 60-62.
Gotta love #Electron. As somebody said "now everyone is running 5 different instances of old insecure versions of the most scrutinized and attacked application on Earth."
-
kaveh (kaveh)'s status on Friday, 23-Feb-2018 07:42:32 EST 
kaveh
Automated Twitter phishing tool.
https://github.com/omergunal/PoT
!infosec !security -
kaveh (kaveh)'s status on Friday, 23-Feb-2018 07:33:26 EST
kaveh
PinMe, a novel user-location mechanism that exploits non-sensory/sensory data stored on the smartphone, e.g., the environment's air pressure, along with publicly-available auxiliary information, e.g., elevation maps, to estimate the user's location when all location services, e.g., GPS, are turned off.
https://arxiv.org/abs/1802.01468
!infosec !security -
kaveh (kaveh)'s status on Friday, 16-Feb-2018 14:37:43 EST
kaveh
SSH-Audit, checks your SSH config and suggests improvements.
https://github.com/arthepsy/ssh-audit
!infosec !security -
kaveh (kaveh)'s status on Friday, 16-Feb-2018 14:31:38 EST
kaveh
What will the warrior-guardian of the future look like?
!infosec !security https://mblog.kavehmoravej.com/attachment/2821 -
kaveh (kaveh)'s status on Friday, 04-Aug-2017 13:11:33 EDT
kaveh
306 Million Freely Downloadable Pwned Passwords (SHA1 hashed) and how this data can be employed to do good things:
https://www.troyhunt.com/introducing-306-million-freely-downloadable-pwned-passwords/
!security !infosec -
Former Bob Jonkman -- Please use the new server at https://gs.jonkman.ca (bobjonkmanformer)'s status on Sunday, 14-May-2017 15:16:42 EDT 
Former Bob Jonkman -- Please use the new server at https://gs.jonkman.ca
♻ @JimHarris: LOVE THIS Cartoon! Why Security & Privacy Are Essential Given The Explosion Of Data Today #BigData #infosec #CyberSecurity #SAPPHIRENOW https://cdn.andertoons.com/img/toons/cartoon6410.png ♻ via #Twitter !privacy -
Chris Ball (cjbprime)'s status on Friday, 06-Jan-2017 16:44:35 EST 
Chris Ball
RT @panther_modern Remote Command Execution #infosec https://t.co/SpOofQ2ckF -
Chris Ball (cjbprime)'s status on Tuesday, 13-Dec-2016 19:21:47 EST
Chris Ball
RT @x0rz The Mother of All Skimmers -
maymay (meitar)'s status on Wednesday, 25-May-2016 11:16:45 EDT 
maymay
Fabrication-Time Attacks on CPUs: Ken Thompson was right While the move to smaller transistors has been a boon for performance it has dramatically increased the cost to fabricate chips using those smaller transistors. This forces the vast majority of chip design companies to trust a third party—often overseas—to fabricate their design. To guard against shipping chips with erro… -
maymay (meitar)'s status on Wednesday, 25-May-2016 11:16:45 EDT
maymay
Fabrication-Time Attacks on CPUs: Ken Thompson was right While the move to smaller transistors has been a boon for performance it has dramatically increased the cost to fabricate chips using those smaller transistors. This forces the vast majority of chip design companies to trust a third party—often overseas—to fabricate their design. To guard against shipping chips with erro… -
mcscx (mcscx)'s status on Wednesday, 17-Jun-2015 06:46:22 EDT 
mcscx
SwiftKey #exploit turns Samsung #Galaxy phones into remote bugging devices http://qttr.at/rgr (via @fefelonger) !android !infosec !security
All Hacker Poesy content and data are available under the 
