no more cubes

Category: Security & Privacy

  • Check if you trust the Superfish CA

    Filippo Valsorda wrote a test to check whether your PC is vulnerable through the Superfish Malware, that Lenovo decided to preinstall on it’s devices. Check here if you trust the Superfish CA.

  • OWASP Internet of Things Top Ten Project

    The OWASP Project is looking at the Internet of Things, too, and published a top 10 of security concerns for that matter. While all of this is reasonable for the Internet of Things, it can be applied very generally for the Internet of anything. Good security pays in every environment, it’s just the Internet of…

  • Disk Forensic Evidence after Equation Group

    After Kaspersky found hard drive firmware malware, @dragosr makes a valid point about disk forensic evidence. In particular, since the published timeline of the Equation Group reaches back as far as 2001. Whoosh and there goes "beyond a shadow of a doubt" for any disk forensic evidence used in any court case. — dragosr (@dragosr)…

  • Uber: Privacy Issues

    A few days old already, Richard Gutjahr reported Uber has a privacy issue. Apparently, the now 404ed Lost and Found page listed not only lost items, but also usernames and contact details. via Richard Gutjahr.

  • MongoDB with no protection

    Students at the “Universität des Saarlandes” found almost 40k MongoDB instances, apparently with no security at all. Access to these databases includes write credentials. Universität des Saarlandes:  Aktuelles aus Studium und Forschung.

  • Xenon flash will cause Raspberry Pi2 to freeze

    A Xenon flash will cause the Raspberry Pi 2 to freeze http://t.co/u5Vkn3svTz — Hacker News Bot (@newsycombinator) February 8, 2015 A new class of DoS for hardware?

  • Samsung warnt.

    Samsung warnt: Bitte achten Sie darauf, nichts Privates vor unseren SmartTVs zu erzählen via netzpolitik.org.

  • GnuPG funded.

    Since Werner Koch announced he’s running out ouf money yesterday, GnuPG collected 60k$ from the Linux Foundation, another 50k$ for the next year from each Facebook and Stripe, and a total of 150k$ from the community. Development should be safe for the next time. The news of the past days shows that security, while heavily…

  • Security vs. Privacy

    via Peter Piksa auf Twitter: “Oh man, thats actually a really brillant illustration about privacy and security. http://t.co/sk5jnZAa8Q”.

  • Data and Goliath

    Data and Goliath: The Hidden Battles to Collect Your Data and Control Your World Bruce Schneier wrote a book about Big Data, mass surveilance and the Internet of Things. Schneier talks about how this effects society and what to do about the increasing datarization of everything we’re doing.