Notices tagged with security, page 45

also is there a tag already in use to file entries pertaining to grassroots protection of the federated social universe? #fediverse #sociology #security #aHolesExist

arch-audit 0.1.9 has been released! #ArchLinux #Security

Over at birdsite:
Glorious rant about #crypto and #Linux #security, with a surprise in it:
https://twitter.com/ewindisch/status/926432248970309632

Thanks @wxcafe for finding :)

Defeating Google's audio reCaptcha with 85% accuracy. https://github.com/ecthros/uncaptcha | https://lobste.rs/s/huno34 #ai #browsers #security

#WiFi #problem: #KRACK

Source: https://papers.mathyvanhoef.com/ccs2017.pdf

Finally, we confirmed our findings in practice, and found that every Wi-Fi device is vulnerable to some variant of our attacks.
Notably, our attack is exceptionally devastating against #Android 6.0: it forces the client into using a predictable all-zero #encryption key.

#wpa2 #news #hack #warning #danger #security

How Israel Caught Russian Hackers Scouring the World for U.S. Secrets

source: https://www.nytimes.com/2017/10/10/technology/kaspersky-lab-israel-russia-hacking.html

The Israeli officials who had hacked into Kaspersky’s own network alerted the United States to the broad Russian intrusion, which has not been previously reported, leading to a decision just last month to order #Kaspersky #software removed from #government computers.

...

But experts on #Russia say that under President Vladimir V. #Putin, a former #KGB. officer, businesses asked for assistance by Russian #spy agencies may feel they have no choice but to give it.

WTF?! - I know that #Trump's U.S. has a #NSA, who does the same and all is called national #security! -> U.S. Agencies Said to Swap Data With Thousands of Firms - source: https://www.bloomberg.com/news/articles/2013-06-14/u-s-agencies-said-to-swap-data-with-thousands-of-firms

And I have more #insider #knowledge!

It wasn't the #Mossad, who made this public. The Mossad hacked Kaspersky, who was hacked by the Russian spies, but the Mossad was watched by the German BND, who was watched by the Danish #intelligence. The Danish spies were hacked by the Russian spies. So when the Russians looked on their screen they saw the Danish's, who saw the Germans, who saw the Mossad, who saw Kaspersky, who was hacked by the Russians. So the Russians saw themselves hacking Kaspersky - live! This ring screen sharing triggers an #Google alert. The NSA, who monitors Google got the screenshots and saw their own #malware. It's a mad world!

#omg #news #Cyberwar #SecretService #crime #fail #Problem #security #spy #USA

Have you seen this? "Firefox + Cliqz #Privacy Notice" - Who the f*ck is #Cliqz?

source: https://www.mozilla.org/en-US/privacy/firefox-cliqz/

If you are using a version of #Firefox with Cliqz search recommendations, your browsing data will be sent to Cliqz Gmbh, a German #company.

...

Firefox with Cliqz by default connects to Cliqz to display search results in the URL bar. Cliqz GmbH is a German company offering a privacy oriented search experience. Learn more at their privacy policy. When the Cliqz feature is enabled:

• Search Queries and Webpage Data to Cliqz: This includes text as you type in the URL bar, queries you send to certain search engines, and data about the webpages you visit and interactions with those pages, such as mouse movements, scrolls, and time spent.
• Interaction Data to Cliqz: This includes your interactions with specific fields and buttons in the Cliqz feature. This data is tied to a unique identifier allowing Cliqz to understand performance over time.
• Interaction Data to Mozilla: This includes counts of visits to search engine pages, which search engines you use, and your Cliqz identifier.
• Location Data to Cliqz: This includes your location whenever you open a new window or type in the URL bar. You may opt-out of location sharing in the Cliqz Settings menu in the URL bar.

Learn more about Cliqz data collection. To check if the Cliqz feature is enabled or to disable data collection:

• Type "about:addons" into your Firefox URL bar
• Select "Extensions" on the left menu bar
• If installed, Cliqz will appear on the right
• Selecting "Disable" will turn off the Cliqz feature and stop related data collection
• Selecting "Remove" will uninstall the Cliqz feature from Firefox

Check your Firefox #browser! This is a privacy breaker. Shame on you #M#security #ozilla :(

#security #internet #fail #news #monitoring #dander #warning #omg #wtf

Eliminating Input-Based Attacks by Deriving En/Decoders from Context-Free Grammars http://spw17.langsec.org/papers/bieschke-automatic-unparsers.pdf | https://lobste.rs/s/b9kqsx #compsci #pdf #programming #security

FinFisher surveillance campaigns: ISPs possibly infecting legitimate applications https://www.welivesecurity.com/2017/09/21/new-finfisher-surveillance-campaigns/ | https://lobste.rs/s/pdyc8p #security #windows