Tildes

Showing only topics with the tag "security". Back to normal view

New DDoS vector observed in the wild leveraging WS-Discovery for amplification, attacks hitting 35 Gbps
(2577 words)
~comp
- security
- ddos
- iot
3 comments

akamai.com

4 days ago

11 votes
DNS-over-HTTPS should not be the default in Firefox
(772 words)
~comp
- firefox
- dns over https
- mozilla
- security
- privacy
- cloudflare
- browsers
- networking
11 comments

ungleich.ch

September 13

13 votes
How Scott Helme revoked $1,000,000 worth of EV certificates
(1768 words)
~comp
- security
1 comment

scotthelme.co.uk

September 14

7 votes
If you’re not using SSH certificates you’re doing SSH wrong
(3346 words)
~comp
- devops
- sysadmin
- security
2 comments

smallstep.com

September 13

8 votes
Absolute scale corrupts absolutely
(2023 words)
~tech
1 comment

apenwarr.ca

September 13

8 votes
The stakes are too high for Apple to spin the iPhone exploits
(1095 words)
~tech
- apple
- ios
- security
- google
- project zero
- public relations
1 comment

theverge.com

September 8

6 votes
A very deep dive into iOS Exploit chains found in the wild
(450 words)
~comp
- security
- ios
- apple
- long read
1 comment

googleprojectzero.blogspot.com

August 30

4 votes
"Satori" Internet-of-Things botnet operator Kenneth Currin Schuchman pleads guilty
(849 words)
~tech
- iot
- ddos
- botnets
- security
2 comments

krebsonsecurity.com

September 4

5 votes
Twitter CEO Jack Dorsey's account was compromised, sent public tweets and retweets including racial slurs
(76 words)
~tech
4 comments

theverge.com

August 30

18 votes
Kernel Panic - The world's first cyber crime: The Morris Worm
(22:10)
~tech
0 comments

YouTube: Mashable

August 27

5 votes
Mozilla takes action to protect users in Kazakhstan
(349 words)
~tech
- kazakhstan
- privacy
- security
- firefox
- chrome
- surveillance
- mass surveillance
11 comments

mozilla.org

August 21

26 votes
Security Researchers Find Several Bugs in Nest Security Cameras
(667 words, Aug 21 2019)
~tech
- iot
- nest
- automation
- security
0 comments

vice.com

August 25

10 votes
The researcher who published the Steam Windows privilege-escalation exploit two weeks ago has published a second zero-day
(1891 words)
~comp
- security
- valve
1 comment

amonitoring.ru

August 21

13 votes
Yubico releases the first Lightning security key for iPhones
(464 words)
~tech
- yubikey
- 2fa
- iphone
- security
8 comments

theverge.com

August 21

8 votes
Absolute scale corrupts absolutely
(2023 words)
~tech
1 comment

apenwarr.ca

August 20

5 votes
‘No way to prevent this’, Says Only Development Community Where This Regularly Happens
(495 words, Aug 1 2019)
~comp
0 comments

itnext.io

August 20

14 votes
Adding privacy to legacy protocols with zero-knowledge proofs
(943 words)
~comp
0 comments

gtank.cc

August 20

3 votes
Wirecutter has selected TunnelBear and Mullvad as the best current VPN services, and written extensively about how they made this decision
(10158 words)
~tech
- vpns
- security
- long read
26 comments

thewirecutter.com

August 16

26 votes
Software remains insecure because the existence of insecure software has so far helped society far more than it has harmed it
(252 words, Mar 12 2018)
~comp
- software
- security
4 comments

danielmiessler.com

August 15

5 votes
Report: Data Breach in Biometric Security Platform Affecting Millions of Users
(1379 words)
~comp
2 comments

vpnmentor.com

August 15

8 votes
Down the Rabbit Hole: Reverse-engineering the Windows Text Services Framework and discovering major vulnerabilities that have existed for almost 20 years
(3672 words)
~comp
2 comments

googleprojectzero.blogspot.com

August 14

8 votes
Recognizing basic security flaws in local password managers
(2803 words)
~comp
22 comments

palant.de

August 12

19 votes
Netflix has discovered multiple vulnerabilities in HTTP/2 implementations that can be used in denial of service attacks
(1328 words)
~comp
- http2
- security
- dos
0 comments

github.com

August 13

14 votes
Extended Validation Certificates are (Really, Really) Dead
(1197 words)
~comp
1 comment

troyhunt.com

August 12

8 votes
Consumer Reports' testing finds that many wireless routers lack basic security protections
(Aug 6 2019)
~tech
- hardware
- networking
- routers
- security
1 comment

consumerreports.org

August 12

12 votes
Say Cheese: Ransomware-ing a DSLR Camera
(3661 words)
~comp
0 comments

checkpoint.com

August 11

11 votes
Coinbase describes their investigation and response to a sophisticated phishing attack on their employees utilizing two Firefox zero-day vulnerabilities
(1629 words)
~comp
1 comment

coinbase.com

August 9

10 votes
WhatsApp Protocol Decryption for Chat Manipulation and More
(1369 words)
~tech
- security
- black hat
- hacking
- whatsapp
0 comments

checkpoint.com

August 8

7 votes
The Fully Remote Attack Surface of the iPhone
(3223 words)
~comp
- security
- apple
- iphone
- imessage
0 comments

googleprojectzero.blogspot.com

August 8

8 votes
New ‘warshipping’ technique gives hackers access to enterprise offices
(593 words)
~tech
- hacking
- security
3 comments

zdnet.com

August 7

8 votes
Local Privilege Escalation exploit found in Steam Windows client - Valve rejected the report, and HackerOne tried to forbid disclosure
(1475 words)
~comp
- security
- valve
3 comments

amonitoring.ru

August 7

12 votes
An Introduction to Mobile Networks, SIM Cards, and GSM.
(11:09, Oct 5 2018)
~comp
1 comment

YouTube: LiveOverflow

August 3

9 votes
Everything Cops Say About Amazon's Ring is Scripted or Approved by Ring
(1566 words)
~tech
- technology
- ring
- amazon
- privacy
- security
- police
5 comments

gizmodo.com

July 31

18 votes
Security researchers at Google Project Zero discovered and responsibly disclosed the recently patched iMessage based Apple iOS vulnerability
(236 words)
~tech
- ios
- security
3 comments

grahamcluley.com

July 31

7 votes
A Russian Oligarch Bought Maryland's Election Machine Vendor
(450 words, Aug 20 2018)
~news
- politics
- elections
- security
- russia
- usa.md
0 comments

rollcall.com

July 26

13 votes
Tech firms “can and must” put backdoors in encryption, AG Barr says
(679 words)
~tech
- usa
- politics
- encryption
- security
10 comments

arstechnica.com

July 23

15 votes
How (not) to sign a JSON object
(2376 words)
~comp
- security
- cryptography
0 comments

micro.blog

July 24

8 votes
What password manager, if any, would you recommend?
(113 words)
~tech
After being skeptic of password managers for a long time, I've decided to take the plunge and get one installed. The burden of remembering dozens of passwords is simply getting a bit too much. So,...

After being skeptic of password managers for a long time, I've decided to take the plunge and get one installed. The burden of remembering dozens of passwords is simply getting a bit too much. So, I was wondering if anyone here has any recommendations of password managers? Maybe one you or a trusted friend use? Or maybe you think password managers are rubbish, and want to share you opinion?

Any suggestions are welcome, in the interest of fostering discussion/having the thread be useful to other people too. But in my specific use case, I want to be able to sync between devices. I'd prefer something open source, but it's not a requirement.

25 comments

Cookies

July 23

25 votes
Slack Security Incident for Keybase CEO
~comp
- slack
- security
- keybase
10 comments

keybase.io

July 19

20 votes
Kazakhstan ISPs begin intercepting all HTTPS traffic
~comp
- kazakhstan
- security
- privacy
- mitm
- https
- certificate
7 comments

mozilla.org

July 18

23 votes
The PGP Problem
~comp
- pgp
- security
- privacy
- encryption
- alternatives
- email
9 comments

micro.blog

July 17

12 votes
Gotta Catch 'Em All: Understanding How IMSI-Catchers Exploit Cell Networks
(6536 words, Jun 28 2019)
~tech
0 comments

eff.org

July 16

4 votes
How do you explain the unreasonable effectiveness of cloud security?
(1884 words)
~comp
- security
- amazon
- aws
- cloud
2 comments

highscalability.com

July 15

7 votes
Gotta Catch 'Em All: Understanding How IMSI-Catchers Exploit Cell Networks
(6536 words, Jun 28 2019)
~tech
0 comments

eff.org

July 12

6 votes
Microsoft admitted to private Linux developer security list
(679 words)
~tech
- microsoft
- linux
- security
12 comments

zdnet.com

July 9

13 votes
The Mac client for Zoom (video-conferencing app) allows any site to enable your camera and connect you to a call, and leaves a web server running on your machine even if you uninstall it
(1330 words)
~tech
- zoom
- security
- mac
4 comments

medium.com

July 9

30 votes
RSA was an important milestone in the development of secure communications, but the last two decades of cryptographic research have rendered it obsolete.
(2485 words)
~comp
13 comments

trailofbits.com

July 8

13 votes
YouTube now bans instructional hacking and phishing
(498 words)
~tech
14 comments

theverge.com

July 3

31 votes
New Silex malware is bricking IoT devices, has scary plans
(968 words)
~tech
- iot
- security
- malware
- bricking
- silex
2 comments

zdnet.com

June 26

8 votes
Firefox zero-day was used in attack against Coinbase employees, not its users
(494 words)
~tech
2 comments

zdnet.com

June 20

11 votes

Next