-
14 votes
-
New Silex malware is bricking IoT devices, has scary plans
8 votes -
Firefox zero-day was used in attack against Coinbase employees, not its users
11 votes -
Florida city to pay $600K ransom to hacker who seized computer systems weeks ago
5 votes -
Interview with Google's login chief about passwords vs. single sign-on
8 votes -
Samsung TVs should be regularly virus-checked, the company says
6 votes -
You (probably) don't need ReCAPTCHA
26 votes -
Telegram founder points to China hacking attack during Hong Kong protest
7 votes -
'RAMBleed' Rowhammer attack can now steal data, not just alter it
7 votes -
Ring is using its customers’ doorbell camera video for ads. It says it's allowed to
18 votes -
Chrome Extension Manifest V3 could end uBlock Origin for Chrome
55 votes -
What I Learned Trying To Secure Congressional Campaigns
12 votes -
A look at VotingWorks, a nonprofit developing what it hopes will be “a publicly owned operating system for democracy"
10 votes -
No Huawei out: President Trump's game of chicken with China has serious consequences
5 votes -
SensorID - Using smartphone sensor calibration data to generate a globally unique device fingerprint
3 votes -
Tor Browser 8.5 released
11 votes -
Salesforce accidentally gave "modify all" (full permissions) to all users in organizations using the Pardot marketing tool
11 votes -
Is there an app for this? Help me fix my terrible security
I thought I've been looking for a good password manager, but I'm not sure that's what I really need. Here's my use case: I currently have a Google Sheet in my Google Drive that contains all my...
I thought I've been looking for a good password manager, but I'm not sure that's what I really need.
Here's my use case:
- I currently have a Google Sheet in my Google Drive that contains all my ID/passwords for everything
- In addition I have personal info in there like SSNs and Credit Cards #s
- I want to be able to have instant access to all of the info from my ancient iPhone and my laptop
Things I've tried:
- I messed around with Last Pass a bit and found it couldn't actually fill in the passwords in the apps I was using so I'd have to manually type them, which is a deal breaker for me.
- I've been using FireFox's LockBox and it's a bit better on that front but doesn't actually remember what the password goes to the app so I have to look it up each time, but it does populate them in the appropriate fields.
- Password-protecting a Google Sheet is apparently impossible but was a solution I was after for some time (Excel and Libre can do this..so +1 for software)
Other info:
- I am currently using an iPhone 5 but I plan to "upgrade" to a Samsung Galaxy S7 sometime in the near future. Perhaps that's why the functionality of these password managers seem so inconvenient for me? Would they work better on a modern phone?
What I'm after is perhaps two solutions:
-
A password manager that crosses the bridge from desktop FireFox to the apps on my phone, and fills in the password for me automatically. That would allow me to feel like I could move to more random passwords for things.
-
Some encrypted, password-protected site/app that could store plain text notes for sensitive things like SSNs and Credit Card #s that would stay in sync between a laptop and a smartphone.
Go ahead and mock me for my terrible security and ancient phone. I deserve it! But when you're done, I'd appreciate some guidance.
EDIT: Sounds like first priority should be to update my phone. Then there appear to be plenty of options to try. Thanks everyone so much!
18 votes -
“Get off my lawn” goes digital: Home surveillance apps and community social networks aren't making anyone safer. They're allowing paranoid jerks to harass their neighbors.
12 votes -
The trade secret - Firms that promised high-tech ransomware solutions almost always just pay the hackers
9 votes -
Why WhatsApp will never be secure
16 votes -
WhatsApp voice calls contained a buffer-overflow vulnerability that was used to install spyware [CVE-2019-3568]
11 votes -
Car hackers say that if you want to keep your autonomous vehicles secure, you have to create realistic threat models
4 votes -
Vodafone denies Huawei Italy security risk
8 votes -
Invisible malware is here and your security software can't catch it
6 votes -
Marcus “MalwareTech” Hutchins pleads guilty to writing, selling banking malware
6 votes -
Facebook has updated their blog post about storing unencrypted passwords - they found more log files, and there are now millions of Instagram users impacted, not thousands as stated originally
28 votes -
Compromised credentials for a Microsoft support agent enabled outside access to non-enterprise Hotmail, Outlook, and MSN emails for months
9 votes -
VPN - A Very Precarious Narrative
9 votes -
How to get developers to do things your way
5 votes -
[SOLVED] I might switch my PC media player from VLC to something else due to potential data leaks. What other media player should I choose if I do so?
edit: Problem solved, davidb informed me about the vulnerability in version 3.0.4, and that it is fixed in the new version 3.0.6. Somehow Spyhunter thinks i still use 3.0.4, which in turn is the...
edit: Problem solved, davidb informed me about the vulnerability in version 3.0.4, and that it is fixed in the new version 3.0.6. Somehow Spyhunter thinks i still use 3.0.4, which in turn is the actual problem i had with Spyhunter, not VLC.
Spyhunter 5 has been bothering me about potential data leaks from vlc media player. The vulnerability is generally based on publicly available information.
It would be a shame if i have to switch, been using vlc for as long as i remember. It is probably the best media player out there, but i hate sharing my personal data in any way or form.Spyhunter msg:
- Severity: Medium, VLC media player (Version 3.0.4)
- The CAF demuxer in modules/demux/cad.c in VideoLan media player 3.0.4 may read memory from an uninitialized pointer when processing magic cookies in Caf files, because a ReadKukiChunk() cast converts a return value to an unsigned int, even if that value is negative. This could result in a denial of service and/or potential infoleak.
Is this even anything to care about? I have updated VLC including removing cashe and still get the alert. Is a rollback another option perhaps?
5 votes - Severity: Medium, VLC media player (Version 3.0.4)
-
Laptops to stay in bags as TSA brings new technology to airports
11 votes -
Security alert: pipdig [popular WordPress theme provider] insecure, DDoSing competitors
6 votes -
Facebook stored hundreds of millions of user passwords in plain text for years
27 votes -
What would be a good security setup for me?
So: I keep all my passwords in my password manager (Bitwarden) All my 2FA codes are generated by AndOTP on my phone. My 2FA backup codes are also in Bitwarden, which I think is a bad idea, because...
So:
- I keep all my passwords in my password manager (Bitwarden)
- All my 2FA codes are generated by AndOTP on my phone.
- My 2FA backup codes are also in Bitwarden, which I think is a bad idea, because that defeats the purpose of 2FA. So where should I put those?
- I have my Bitwarden 2FA backup code in my wallet and in a safe at my house. Is that a good idea for the other backup codes?
- Is there anything I'm forgetting here?
8 votes -
How secure and private is Firefox?
I was browsing r/privacy today and I came across this guy going on about how Mozilla was just pretending to be privacy focused. Here's his comment. Now I don't really know what to think of this,...
I was browsing r/privacy today and I came across this guy going on about how Mozilla was just pretending to be privacy focused. Here's his comment. Now I don't really know what to think of this, and frankly, I'm getting really exhausted of hearing about how all the things I'm using aren't actually trustworthy. So can so someone put my mind to rest? Does this guy's claims have any truth to them? Thanks.
20 votes -
Hated and hunted - The perilous life of the computer virus cracker making powerful enemies online
9 votes -
Five cybersecurity mistakes companies keep making
4 votes -
The Morris worm at thirty
4 votes -
Triton is the world’s most murderous malware, and it’s spreading
16 votes -
The prototype iPhones that hackers use to research Apple’s most sensitive code
7 votes -
Why 'ji32k7au4a83' is a remarkably common password
57 votes -
Chrome update on March 1 fixed a serious zero-day RCE vulnerability that was being actively exploited
10 votes -
All Intel chips open to new Spoiler non-Spectre attack: Don't expect a quick fix
23 votes -
EFF announces "Fix It Already" campaign to demand fixes for specific issues from nine major tech companies and platforms
42 votes -
Android is helping kill passwords on billions of devices
11 votes -
The microphones that may be hidden in your home
23 votes -
FastMail loses customers, faces calls to move over anti-encryption laws
15 votes -
Privacy Attacks to the 4G and 5G Cellular Paging Protocols Using Side Channel Information
10 votes -
What are the essential dos and don'ts of digital security for the average person?
Thanks to all of you who gave me guidance in the thread about password managers. It got me thinking I should expand the question to overall best practices regarding security, just in case I have...
Thanks to all of you who gave me guidance in the thread about password managers. It got me thinking I should expand the question to overall best practices regarding security, just in case I have any other important blind spots.
What are the essential do's and don'ts of digital security for the average person?
35 votes