Tag: security

  • Identity Authentication as a Service

    Cloud is a solution for everything. Databases, Message-Queues, Storage, Loadbalancing, everything. You’ll leverage somebody else’s Computer to run your workload, you’ll store data to help your business scale. Even Identity Authentication as a Service is a thing. Well, until the remote provider gets hacked. This is in particular bad if the provider offers authentication and […]

  • AI Wrote Better Phishing Emails

    WIRED schreibt, dass es Forschern gelungen ist, mit Hilfe von GPT3, dem Generative Pre-trained Transformer 3 ML Netzwerk, Phishing Mails zu erzeugen, die deutlich wirksamer sind als von Menschen geschriebene Mails. Endlich ein Einsatzbereich für AI, der sich auch ohne VC Geld lohnt. Source: AI Wrote Better Phishing Emails Than Humans in a Recent Test […]

  • Malicious PyPI Packages

    It was a matter of time. After the npm-repository was hit later last year and ruby gems were found mining crypto-currency, this times it’s PyPI that spreads bad code. Supply chain attacks, as this vector is typically referred to, becomes an increasing problem. Foremost for software vendors. The rich supply of community maintained packages make […]

  • Snyk Acquires FossID

    FossID is a software composition analysis tool that scans code for open source licenses and vulnerabilities. It is the third acquisition by Snyk in the past 6 months. FossID, a software composition analysis tool that scans code for open source licenses and vulnerabilities Source: Snyk Acquires FossID to Accelerate Worldwide Developer-First Security Adoption | Snyk

  • Sicherheitsalbtraum: Vernetzte Türklingeln 

    Vernetzte Türklingeln: Das Internet der Dinge liefert. Auch zu Weihnachten. Günstige digitale Videoklingeln weisen schwere Sicherheitslücken wie Authentifizierungsprobleme auf und werden teils schon mit Softwarefehlern geliefert. Aus dem heise.de Artikel.

  • Palantir founding member of Gaia-X

    Palantir is an US based company specialising in Big Data, with a very particular focus on decision making for governental and corporate situations. The companies products have inspiring names like Gotham or Metropolis and have sparked ethical controversies, when it comes to their usage. In particular these two products provides capabilities to military and police, […]

  • ATM Security

    Jedes Schild hat eine Geschichte. Und so wahrscheinlich auch dieses. Man mag ja gar nicht drüber nachdenken, ob denn noch andere Gegenstände als nur Büroklammern gemeint sind. daily, photo, 15.09.2020.

  • Snyk closes mega funding round

    Snyk closes mega funding round: the London based company offers open-source services and products for modern security. The company announced the funding round on it’s own blog. The company, founded by Guy Podjarny, grew rapidly since it’s founding in 2015. The product addresses modern security needs for a container driven IT world. With open source […]

  • Kurze Durchsage von Peter Schaar

    Kurze Durchsage von Peter Schaar zur Telefonortung wegen Corona: Handy-Ortung war demzufolge keine Idee der wissenschaftlichen Beratungskommission für die Corona-Pandemie. Es war die gesellschaftliche Situation, die es der Politik ermöglicht hat, einen lang gehegten Wunsch umzusetzen. Peter Schaar war übrigens von 2003 bis 2013 Bundesbeauftragter für den Datenschutz und die Informationsfreiheit (BfDI). Update: Ulrich Kelber, der amtierende […]

  • CloudFront and Lambda at the Edge

    AWS OfficeHours with Woodrow Arrington and David Brown, both Senior Product Managers on the AWS CloudFront Team. They discuss the benefits of CDN technology and use-cases of Lambda@Edge. The video touches security related considerations.