Computer and Network Security (security) grupp

Jens Kubieziel (qbi@quitter.se)s status den Tuesday, 15-Aug-2017 23:55:32 CEST Jens Kubieziel
Remote profile options...
- Computer and Network Security
Sollte man phishing an Mitarbeitern testen? Nein, meint der Artikel. !security

https://twitter.com/sjmurdoch/status/897412480355487745

In conversation för ungefär 5 dagar sedan från quitter.se permalink
MMN-o ✅⃠ (mmn@social.umeahackerspace.se)s status den Sunday, 13-Aug-2017 22:39:35 CEST MMN-o ✅⃠
- Computer and Network Security
Wtf?! »Firefox did not connect to mastodon.acc.sunet.se because your computer’s clock appears to show the wrong time and this is preventing a secure connection.

Your computer is set to 2017-08-13, when it should be 2017-08-12. To fix this problem, change your date and time settings to match the correct time.» !security

In conversation för ungefär 7 dagar sedan från web permalink
Jens Kubieziel (qbi@quitter.se)s status den Friday, 11-Aug-2017 08:41:55 CEST Jens Kubieziel
Remote profile options...
- Cryptography
- Computer and Network Security
Is your encrypted USB drive secure? – Forscher greifen vermeintlich sichere sticks an https://quitter.se/url/4282847
!security !crypto

In conversation för ungefär 10 dagar sedan från quitter.se permalink
Kuro Sawai (kuro@quitter.se)s status den Monday, 07-Aug-2017 18:11:57 CEST Kuro Sawai
Remote profile options...
- Computer and Network Security
A Systematic #Analysis of the Juniper Dual EC Incident, Stephen Checkoway et al. (PDF) https://is.gd/bK88EG !security

In conversation för ungefär 13 dagar sedan från quitter.se permalink
kaveh (kaveh@mblog.kavehmoravej.com)s status den Friday, 04-Aug-2017 19:11:33 CEST kaveh
Remote profile options...
- Computer and Network Security
- infosec
306 Million Freely Downloadable Pwned Passwords (SHA1 hashed) and how this data can be employed to do good things:

https://www.troyhunt.com/introducing-306-million-freely-downloadable-pwned-passwords/

!security !infosec
In conversation för ungefär 16 dagar sedan från mblog.kavehmoravej.com permalink
Bilagor
1. Ogiltigt filnamn.
  
  Introducing 306 Million Freely Downloadable Pwned Passwords
  
  from Troy Hunt
  
  Edit: The following day, I loaded another set of passwords which has brought this up to 320M. More on why later on. Last week I wrote about Passwords Evolved: Authentication Guidance for the Modern Era with the aim of helping those building services which require authentication to move into the
pettter ✅ (pettter@social.umeahackerspace.se)s status den Thursday, 03-Aug-2017 18:43:59 CEST pettter ✅
- Computer and Network Security
So the guy who saved the world from #WannaCry got nabbed by the feds at DEFCON.

What?

https://social.umeahackerspace.se/url/201353

!security
In conversation för ungefär 17 dagar sedan från Qvitter permalink
Bilagor
1. Ogiltigt filnamn.
  
  Researcher Who Stopped WannaCry Ransomware Detained in US After Def Con
  
  from Motherboard
  
  Marcus Hutchins, AKA MalwareTech, previously registered a specific domain included in the ransomware’s code, which stopped the malware from spreading.
Jens Kubieziel (qbi@quitter.se)s status den Tuesday, 01-Aug-2017 12:44:56 CEST Jens Kubieziel
Remote profile options...
- Computer and Network Security
New note by qbi

In conversation för ungefär 19 dagar sedan från quitter.se permalink
Jens Kubieziel (qbi@quitter.se)s status den Monday, 31-Jul-2017 12:51:38 CEST Jens Kubieziel
Remote profile options...
- Computer and Network Security
TinyPot, My Small Honeypot - !security https://isc.sans.edu/diary/rss/22654

In conversation för ungefär 20 dagar sedan från quitter.se permalink
André Ockers (ao@quitter.no)s status den Sunday, 30-Jul-2017 20:08:21 CEST André Ockers
Remote profile options...
- Computer and Network Security
!security Is there a way you can check wether your computer is infected by #Aeris malware?

In conversation för ungefär 21 dagar sedan från quitter.no permalink
Bob Jonkman (bobjonkman@sn.jonkman.ca)s status den Sunday, 30-Jul-2017 08:14:03 CEST Bob Jonkman
Remote profile options...
- Computer and Network Security
♻ @papervote: You know, you can just say “threats”, “risks” & “computer security”. You don’t have to use some meaningless phrase like “cyber-hacks”. ¶ via #Twitter !security

In conversation för ungefär 22 dagar sedan från sn.jonkman.ca permalink
MMN-o ✅⃠ (mmn@social.umeahackerspace.se)s status den Saturday, 29-Jul-2017 02:23:48 CEST MMN-o ✅⃠
in reply to
- MMN-o ✅⃠
- Computer and Network Security
https://blog.thebehrens.net/2017/07/28/openpgp-signature-support-in-libreoffice/ !security
In conversation för ungefär 23 dagar sedan från mustard.mod permalink
Bilagor
1. OpenPGP signature support in LibreOffice
  
  By thorstenb from Thorsten's Weblog
  
  With the release of LibreOffice 5.4.0 today, I’m most happy to announce support for OpenPGP / GnuPG keys when signing ODF documents in LibreOffice under Linux. This is great if you already use GPG/PGP for email with your peers, as it ensures authenticity of your ODF documents regardless of the mode of transport or storage.
  
  For any ODF document, simply navigate to File->Digital signatures in LibreOffice, and the certificate selection dialog will transparently list all suitable signing keys on your system, including those from Kleopatra, KGpg, GPA or Enigmail – that perhaps you’re using already for secure email.
  
  Pick a GPG key, and LibreOffice will delegate all password entry and GPG crypto to tried-and-true system components (the LibreOffice process won’t even see you passphrase):
  
  Sign document with GPG key
  
  We also made signature status much more visible – before, signed documents only had a tiny icon down in the status bar (both for valid, as well as for broken or untrusted signatures – not ideal for noticing). LibreOffice there follows the trend set by browsers, to make security features (and broken trust) much more obvious. Your validly signed document will now show up like this:
  
  InfoBar showing signature status
  
  Work is ongoing on adding support for Windows (and perhaps other platforms) as well – as of today, LibreOffice 5.4 supports this feature only under Linux. Furthermore, we also plan to provide GPG-based encryption of ODF documents (currently, document encryption is based on individual passwords), stay tuned!
  
  This work was generously sponsored by the German federal office for information security (BSI), and of course builds on top of great software like GnuPG – many thanks!
pettter ✅ (pettter@social.umeahackerspace.se)s status den Friday, 28-Jul-2017 16:40:54 CEST pettter ✅
- Cryptography
- Computer and Network Security
"Moxie Marlinspike responded that Signal is "working on an entirely new group mechanism that we should be deploying soon"."

Aaaaaany day now.

https://web-in-security.blogspot.se/2017/07/insecurities-of-whatsapps-signals-and.html

!crypto !security
In conversation för ungefär 23 dagar sedan från Qvitter permalink
Bilagor
1. Insecurities of WhatsApp's, Signal's, and Threema's Group Chats
  
  Recently, the theoretical and practical analysis of secure instant messenger protocols received much attention, but the focus of prior evalu...
Bob Jonkman (bobjonkman@sn.jonkman.ca)s status den Wednesday, 26-Jul-2017 04:04:12 CEST Bob Jonkman
Remote profile options...
- Computer and Network Security
Krebs on Security: "Often the most time-consuming and costly aspect of malware sales and development is helping customers with any tech support problems they may have in using the crimeware." https://krebsonsecurity.com/2017/07/how-a-citadel-trojan-developer-got-busted/ !security
In conversation för en månad sedan från sn.jonkman.ca permalink
Bilagor
1. File without filename could not get a thumbnail source.
  
  How a Citadel Trojan Developer Got Busted
  
  By BrianKrebs from Krebs on Security
  
  How a Citadel Trojan Developer Got Busted
Kuro Sawai (kuro@quitter.se)s status den Saturday, 22-Jul-2017 17:28:21 CEST Kuro Sawai
Remote profile options...
- Computer and Network Security
How I tricked #Symantec with a #Fake Private Key https://is.gd/2UwojK !security

In conversation för en månad sedan från quitter.se permalink
Jens Kubieziel (qbi@quitter.se)s status den Saturday, 01-Jul-2017 22:24:25 CEST Jens Kubieziel
Remote profile options...
- Computer and Network Security
Bitte aktualisiert WP Statistics in #wordpress !security https://blog.sucuri.net/2017/06/sql-injection-vulnerability-wp-statistics.html
In conversation för ungefär 2 månader sedan från quitter.se permalink
Bilagor
1. SQL Injection Vulnerability in WP Statistics
  
  from Sucuri Blog
  
  As part of a vulnerability research project for our Sucuri Firewall, we have been auditing popular open source projects looking for security issues. While working on the WordPress plugin WP Statistics, we discovered a SQL Injection vulnerability. This plugin is currently installed on 300,000+ websites. Are You at Risk? This vulnerability is caused by the...
Bob Jonkman (bobjonkman@sn.jonkman.ca)s status den Tuesday, 27-Jun-2017 03:35:20 CEST Bob Jonkman
Remote profile options...
in reply to
- Computer and Network Security
- Craig Maloney ☕
So for less than $8 I can buy a password that has no characters at all? https://assets.octodon.social/media_attachments/files/000/322/871/original/17ad5726a805f55b.jpg !security
In conversation för ungefär 2 månader sedan från sn.jonkman.ca permalink
Bilagor
1. 6bf2544938c88b5747a3ce9d13ef170d56b1d763391f0202763846e0025efb90.jpg
Jens Kubieziel (qbi@quitter.se)s status den Saturday, 24-Jun-2017 19:17:01 CEST Jens Kubieziel
Remote profile options...
- Computer and Network Security
#FreeBSD baut Gegenmaßnahmen zu #StackClash !security https://svnweb.freebsd.org/base?view=revision&revision=320317

In conversation för ungefär 2 månader sedan från quitter.se permalink
Kuro Sawai (kuro@quitter.se)s status den Monday, 19-Jun-2017 13:02:56 CEST Kuro Sawai
Remote profile options...
- Computer and Network Security
Advanced CIA firmware has been infecting Wi-Fi routers for years https://is.gd/EmwmhZ !security
In conversation för ungefär 2 månader sedan från quitter.se permalink
Bilagor
1. Ogiltigt filnamn.
  
  Advanced CIA firmware has been infecting Wi-Fi routers for years
  
  from Ars Technica
  
  Latest Vault7 release exposes network-spying operation CIA kept secret since 2007.
MMN-o ✅⃠ (mmn@social.umeahackerspace.se)s status den Sunday, 18-Jun-2017 18:37:21 CEST MMN-o ✅⃠
- Computer and Network Security
Is it still not possible to use Signal without a phone number? !security

In conversation för ungefär 2 månader sedan från mustard.mod permalink
MMN-o ✅⃠ (mmn@social.umeahackerspace.se)s status den Friday, 16-Jun-2017 09:04:48 CEST MMN-o ✅⃠
- Computer and Network Security
- :DFRI
osund in @dfri's IRC channel made a short demonstrational video on how #WhatsApp leaks metadata (URLs are _accessed_ while composing a message even though e2e etc. is enabled and privacy is expected): https://www.youtube.com/watch?v=lNP8PUh7J7c !security
Non-Google link: https://social.umeahackerspace.se/attachment/188763
In conversation för ungefär 2 månader sedan från web permalink
Bilagor
1. c2a1d9d2a1d69693a5bc79ffc7fe05683df8de5934e53c16c35e9213a2b10802.webm
2. Ogiltigt filnamn.
  
  WhatsApp URL preview in web server log
  
  By Oskar Sundström from YouTube

Tidigare

Publikt

Computer and Network Security (security) grupp

Åtgärder för grupp

Medlemmar 2

Administratörer

Flöden