Master of Pwn.mp3
62.7 MB
Darknet Diaries - EP 82: Master of Pwn
The Zero Day Initiative runs a hacker contest called Pwn2Own. The contest calls the best hackers in the world to demonstrate they can hack into software that should be secure. Like browsers, phones, and even cars. A lot of vulnerabilities are discovered from this event which means vendors must fix them. Whoever can demonstrate the most vulnerabilities will be crowned the “Master of Pwn”.
https://darknetdiaries.com/episode/82/
#truecrime #darknetdiaries #podcast
🎙@cRyPtHoN_INFOSEC_DE
🎙@cRyPtHoN_INFOSEC_EN
🎙@BlackBox_Archiv
🎙@NoGoolag
The Zero Day Initiative runs a hacker contest called Pwn2Own. The contest calls the best hackers in the world to demonstrate they can hack into software that should be secure. Like browsers, phones, and even cars. A lot of vulnerabilities are discovered from this event which means vendors must fix them. Whoever can demonstrate the most vulnerabilities will be crowned the “Master of Pwn”.
https://darknetdiaries.com/episode/82/
#truecrime #darknetdiaries #podcast
🎙@cRyPtHoN_INFOSEC_DE
🎙@cRyPtHoN_INFOSEC_EN
🎙@BlackBox_Archiv
🎙@NoGoolag
How I stole the data in millions of people’s Google accounts
You don’t know me, but there’s a good chance I know you.
That’s because I have complete and total access to the private information in millions of peoples’ Google accounts. Emailed bank statements, medical records in Google Drive, Facebook chat records sent via Gmail, Google Voice voicemails, private pictures in Google Photos. The list goes on. None of them have any idea, and none of them ever will. Perhaps one of them is you.
So how did I do it? It all starts with an app I made.
For obvious reasons I won’t give away the name. It’s a pretty straightforward app, designed for fitness enthusiasts, with features like logging your pace during a run and guiding you through strength-building exercises. Like many apps, it requires the user to create an account before they can start using it. According to analytics, about 60% of users opt for the enticing ‘Sign up with Google’ button instead.
https://blog.usejournal.com/how-i-stole-the-data-in-millions-of-peoples-google-accounts-aa1b72dcc075?gi=379e212a2b46
#DeleteGoogle #google #data #accounts #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
You don’t know me, but there’s a good chance I know you.
That’s because I have complete and total access to the private information in millions of peoples’ Google accounts. Emailed bank statements, medical records in Google Drive, Facebook chat records sent via Gmail, Google Voice voicemails, private pictures in Google Photos. The list goes on. None of them have any idea, and none of them ever will. Perhaps one of them is you.
So how did I do it? It all starts with an app I made.
For obvious reasons I won’t give away the name. It’s a pretty straightforward app, designed for fitness enthusiasts, with features like logging your pace during a run and guiding you through strength-building exercises. Like many apps, it requires the user to create an account before they can start using it. According to analytics, about 60% of users opt for the enticing ‘Sign up with Google’ button instead.
https://blog.usejournal.com/how-i-stole-the-data-in-millions-of-peoples-google-accounts-aa1b72dcc075?gi=379e212a2b46
#DeleteGoogle #google #data #accounts #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Medium
How I stole the data in millions of people’s Google accounts
You don’t know me, but there’s a good chance I know you.
"Wolf culture" - How Huawei controls its employees in Europe
Former employees accuse Huawei of discrimination. How massively the company interferes in their private lives and how it keeps its staff in line is revealed by internal documents and covert audio recordings that netzpolitik.org and the media partners of The Signals Network have analysed.
The journalist with the camera causes nervousness. Minutes after he appears in front of Huawei’s European headquarters in Düsseldorf in mid-November, a stocky security guard and a female employee rush over. The street in front of the building is public space, but the company seems to feel its turf has been violated. „What do you want here?“, the woman asks. „Delete the photos.“
Insights into the inner workings of the controversial Chinese mobile phone company are rare. Huawei has about 200,000 employees worldwide, and about 2,400 in Germany, according to the company. The European headquarters are in Düsseldorf. „We Are A Top Employer!“, a sign in the entrance area reads, beneath it orchids decorate the reception table. In the corridor hangs a photo of a hiking group posing and waving on a mountain peak.
What voices tell us from inside, on the other hand, belies the impression of a friendly atmosphere. They tell of a technology company that seems to see its employees first and foremost as raw materials from which it wants to forge its own success. About a company that moves Chinese employees around like chess pieces, that fires employees at will and where a quasi-military esprit de corps prevails. In Germany, the company sometimes violates the spirit, perhaps even the letter, of labour law.
https://netzpolitik.org/2021/wolf-culture-how-huawei-controls-its-employees-in-europe/
https://www.telegraph.co.uk/news/2021/01/13/huawei-expat-employees-marry-westerners-faced-forced-leave-europe/
(Paywall)
https://www.elmundo.es/economia/2021/01/13/5ffe1f39fc6c83b1588b463e.html
https://www.republik.ch/2021/01/13/inside-huawei
#huawei #discrimination #expat #employees #europe #eu #thinkabout #why
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Former employees accuse Huawei of discrimination. How massively the company interferes in their private lives and how it keeps its staff in line is revealed by internal documents and covert audio recordings that netzpolitik.org and the media partners of The Signals Network have analysed.
The journalist with the camera causes nervousness. Minutes after he appears in front of Huawei’s European headquarters in Düsseldorf in mid-November, a stocky security guard and a female employee rush over. The street in front of the building is public space, but the company seems to feel its turf has been violated. „What do you want here?“, the woman asks. „Delete the photos.“
Insights into the inner workings of the controversial Chinese mobile phone company are rare. Huawei has about 200,000 employees worldwide, and about 2,400 in Germany, according to the company. The European headquarters are in Düsseldorf. „We Are A Top Employer!“, a sign in the entrance area reads, beneath it orchids decorate the reception table. In the corridor hangs a photo of a hiking group posing and waving on a mountain peak.
What voices tell us from inside, on the other hand, belies the impression of a friendly atmosphere. They tell of a technology company that seems to see its employees first and foremost as raw materials from which it wants to forge its own success. About a company that moves Chinese employees around like chess pieces, that fires employees at will and where a quasi-military esprit de corps prevails. In Germany, the company sometimes violates the spirit, perhaps even the letter, of labour law.
https://netzpolitik.org/2021/wolf-culture-how-huawei-controls-its-employees-in-europe/
https://www.telegraph.co.uk/news/2021/01/13/huawei-expat-employees-marry-westerners-faced-forced-leave-europe/
(Paywall)
https://www.elmundo.es/economia/2021/01/13/5ffe1f39fc6c83b1588b463e.html
https://www.republik.ch/2021/01/13/inside-huawei
#huawei #discrimination #expat #employees #europe #eu #thinkabout #why
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
netzpolitik.org
„Wolf culture“: How Huawei controls its employees in Europe
Former employees accuse Huawei of discrimination. How massively the company interferes in their private lives and how it keeps its staff in line is revealed by internal documents and covert audio recordings that netzpolitik.org and the media partners of The…
Data Breach at ‘Resident Evil’ Gaming Company Widens
Capcom, the game developer behind Resident Evil, Street Fighter and Dark Stalkers, now says its recent attack compromised the personal data of up to 400,000 gamers.
A ransomware attack launched against gaming company Capcom last November keeps getting worse. The company now says that the personal data of up to 400,000 of its customers was compromised in the attack — 40,000 more than the company originally thought.
Capcom is a Japan-based publisher of blockbuster games like Resident Evil, Street Fighter and Dark Stalkers. The breach was first detected on Nov. 2.. On Nov. 19, Capcom said its personal as well as corporate data was compromised. This is the third update from Capcom on the incident.
“As an update to its ongoing investigation, the company has verified that the personal information of an additional 16,406 people has been compromised, making the cumulative number since this investigation began 16,415 people, the latest update dated Jan. 12 said. “Further, the company has also ascertained that the potential maximum number of customers, business partners and other external parties etc., whose personal information may have been compromised in the attack is approximately 390,000 people (an increase of approximately 40,000 people from the previous report).”
https://threatpost.com/data-breach-resident-evil-gaming/162977/
#capcom #gaming #data #breach
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Capcom, the game developer behind Resident Evil, Street Fighter and Dark Stalkers, now says its recent attack compromised the personal data of up to 400,000 gamers.
A ransomware attack launched against gaming company Capcom last November keeps getting worse. The company now says that the personal data of up to 400,000 of its customers was compromised in the attack — 40,000 more than the company originally thought.
Capcom is a Japan-based publisher of blockbuster games like Resident Evil, Street Fighter and Dark Stalkers. The breach was first detected on Nov. 2.. On Nov. 19, Capcom said its personal as well as corporate data was compromised. This is the third update from Capcom on the incident.
“As an update to its ongoing investigation, the company has verified that the personal information of an additional 16,406 people has been compromised, making the cumulative number since this investigation began 16,415 people, the latest update dated Jan. 12 said. “Further, the company has also ascertained that the potential maximum number of customers, business partners and other external parties etc., whose personal information may have been compromised in the attack is approximately 390,000 people (an increase of approximately 40,000 people from the previous report).”
https://threatpost.com/data-breach-resident-evil-gaming/162977/
#capcom #gaming #data #breach
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Threat Post
Data Breach at ‘Resident Evil’ Gaming Company Widens
Capcom, the game developer behind Resident Evil, Street Fighter and Dark Stalkers, now says its recent attack compromised the personal data of up to 400,000 gamers.
Google admits to running 'experiments' which remove some media sites from its search results
The tech giant says it is ‘running a few experiments that will each reach about 1% of Google Search users in Australia’
Google has been hiding some Australian news sites from search results, in a move media outlets say is a show of “extraordinary power” as the tech company bargains with the Australian government over financial payment for content.
The Australian government is attempting to impose a new code on Google and Facebook that would force them to negotiate a fair price for displaying local news content.
Google has criticised the proposed code – which would be a world first – in messages to the search engine’s users while Facebook has warned it could block Australians from sharing local news as a consequence.
The Australian Financial Review on Wednesday reported that Google had tweaked its search and news algorithm to bury links to some commercial Australian media outlets for some users.
https://www.theguardian.com/technology/2021/jan/13/google-admits-to-running-experiments-which-remove-some-media-sites-from-its-search-results
#google #DeleteGoogle #australia #media #experiments #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
The tech giant says it is ‘running a few experiments that will each reach about 1% of Google Search users in Australia’
Google has been hiding some Australian news sites from search results, in a move media outlets say is a show of “extraordinary power” as the tech company bargains with the Australian government over financial payment for content.
The Australian government is attempting to impose a new code on Google and Facebook that would force them to negotiate a fair price for displaying local news content.
Google has criticised the proposed code – which would be a world first – in messages to the search engine’s users while Facebook has warned it could block Australians from sharing local news as a consequence.
The Australian Financial Review on Wednesday reported that Google had tweaked its search and news algorithm to bury links to some commercial Australian media outlets for some users.
https://www.theguardian.com/technology/2021/jan/13/google-admits-to-running-experiments-which-remove-some-media-sites-from-its-search-results
#google #DeleteGoogle #australia #media #experiments #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
the Guardian
Google admits to running 'experiments' which remove some media sites from its search results
The tech giant says it is ‘running a few experiments that will each reach about 1% of Google Search users in Australia’
Blackvault.zip
342.1 MB
USA Government UFO Black Vault Release (07.01.2021)
https://vx-underground.org/archive/other/Blackvault.zip
#usa #gov #ufo #blackvault #download
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
https://vx-underground.org/archive/other/Blackvault.zip
#usa #gov #ufo #blackvault #download
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Asians dump WhatsApp for Signal and Telegram on privacy concerns
Facebook risks losing top markets as users look for more-secure alternatives
HONG KONG/NEW DELHI/SINGAPORE -- A theme has been trending on social media over the past week in Hong Kong, which has come increasingly under the watchful eye of Beijing after a national security law imposed on the territory last year.
"We made it from ICQ to MSN, from MSN to WhatsApp. It's not that hard to switch to another app!" The line refers to popular instant messaging tools that have come and gone over past 20 years.
It is an indication that people in the city have joined social media users around the globe in a shift to other messaging platforms because of concerns over privacy, after WhatsApp dismayed many users by rewriting its terms of use on Jan. 6.
The new terms will essentially allow Facebook, WhatsApp's owner, to gain access to certain personal information, such as contact lists, location, financial information and usage data.
Since then, WhatsApp's rivals have seen a record-breaking amount of downloads.
Signal, a private messaging app, logged 7.5 million downloads globally between Jan. 6 and Jan. 10 following endorsements from the likes of Tesla CEO Elon Musk and former U.S. National Security Agency contractor Edward Snowden. That marks a 43-fold increase from the previous week, according to Sensor Tower, an app-analytics company.
https://asia.nikkei.com/Business/Technology/Asians-dump-WhatsApp-for-Signal-and-Telegram-on-privacy-concerns
#whatsapp #DeleteWhatsApp #signal #telegram #privacy #asia
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Facebook risks losing top markets as users look for more-secure alternatives
HONG KONG/NEW DELHI/SINGAPORE -- A theme has been trending on social media over the past week in Hong Kong, which has come increasingly under the watchful eye of Beijing after a national security law imposed on the territory last year.
"We made it from ICQ to MSN, from MSN to WhatsApp. It's not that hard to switch to another app!" The line refers to popular instant messaging tools that have come and gone over past 20 years.
It is an indication that people in the city have joined social media users around the globe in a shift to other messaging platforms because of concerns over privacy, after WhatsApp dismayed many users by rewriting its terms of use on Jan. 6.
The new terms will essentially allow Facebook, WhatsApp's owner, to gain access to certain personal information, such as contact lists, location, financial information and usage data.
Since then, WhatsApp's rivals have seen a record-breaking amount of downloads.
Signal, a private messaging app, logged 7.5 million downloads globally between Jan. 6 and Jan. 10 following endorsements from the likes of Tesla CEO Elon Musk and former U.S. National Security Agency contractor Edward Snowden. That marks a 43-fold increase from the previous week, according to Sensor Tower, an app-analytics company.
https://asia.nikkei.com/Business/Technology/Asians-dump-WhatsApp-for-Signal-and-Telegram-on-privacy-concerns
#whatsapp #DeleteWhatsApp #signal #telegram #privacy #asia
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Nikkei Asia
Asians dump WhatsApp for Signal and Telegram on privacy concerns
Facebook risks losing top markets as users look for more-secure alternatives
The pirate bay, the most censored website in the world, started by kids, run by people with problems with alcohol, drugs and money, still is up after almost 2 decades. Parlor and gab etc have all the money around but no skills or mindset. Embarrassing.
https://nitter.net/brokep/status/1348194329005875203
#piratebay #parler
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
https://nitter.net/brokep/status/1348194329005875203
#piratebay #parler
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Nitter
Peter Sunde Kolmisoppi (@brokep)
The pirate bay, the most censored website in the world, started by kids, run by people with problems with alcohol, drugs and money, still is up after almost 2 decades. Parlor and gab etc have all the money around but no skills or mindset. Embarrassing.
Facebook Has Been Showing Military Gear Ads Next To Insurrection Posts
Earlier this week, Facebook employees warned that military product ads were being advertised against news about DC riots. The company did not act.
Facebook has been running ads for body armor, gun holsters, and other military equipment next to content promoting election misinformation and news about the attempted coup at the US Capitol, despite internal warnings from concerned employees.
In the aftermath of an attempted insurrection by President Donald Trump’s supporters last week at the US Capitol building, Facebook has served up ads for defense products to accounts that follow extremist content, according to the Tech Transparency Project, a nonprofit watchdog group. Those ads — which include New Year’s specials for specialized body armor plates, rifle enhancements, and shooting targets — were all delivered to a TTP Facebook account used to monitor right-wing content that could incite violence.
Beginning last summer, the Mark Zuckerberg–led company banned pages, groups, and accounts belonging to US-based militant groups, “boogaloo” extremists, and those associated with the QAnon mass delusion. But members of those movements quickly found ways around the company’s policies by renaming their pages or using code names. They continue to proliferate, organize, and advertise on the social network.
These ads for tactical gear, which were flagged internally by employees as potentially problematic, show Facebook has been profiting from content that amplifies political and cultural discord in the US.
https://www.buzzfeednews.com/article/ryanmac/facebook-profits-military-gear-ads-capitol-riot
#facebook #DeleteFacebook #advertising #military #gear #capitol #riot #thinkabout #why
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Earlier this week, Facebook employees warned that military product ads were being advertised against news about DC riots. The company did not act.
Facebook has been running ads for body armor, gun holsters, and other military equipment next to content promoting election misinformation and news about the attempted coup at the US Capitol, despite internal warnings from concerned employees.
In the aftermath of an attempted insurrection by President Donald Trump’s supporters last week at the US Capitol building, Facebook has served up ads for defense products to accounts that follow extremist content, according to the Tech Transparency Project, a nonprofit watchdog group. Those ads — which include New Year’s specials for specialized body armor plates, rifle enhancements, and shooting targets — were all delivered to a TTP Facebook account used to monitor right-wing content that could incite violence.
Beginning last summer, the Mark Zuckerberg–led company banned pages, groups, and accounts belonging to US-based militant groups, “boogaloo” extremists, and those associated with the QAnon mass delusion. But members of those movements quickly found ways around the company’s policies by renaming their pages or using code names. They continue to proliferate, organize, and advertise on the social network.
These ads for tactical gear, which were flagged internally by employees as potentially problematic, show Facebook has been profiting from content that amplifies political and cultural discord in the US.
https://www.buzzfeednews.com/article/ryanmac/facebook-profits-military-gear-ads-capitol-riot
#facebook #DeleteFacebook #advertising #military #gear #capitol #riot #thinkabout #why
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
BuzzFeed News
Facebook Has Been Showing Military Gear Ads Next To Insurrection Posts
Earlier this week, Facebook employees warned that military product ads were being advertised against news about DC riots. The company did not act.
Apple reportedly scrapped plans to fully secure iCloud backups after FBI intervention
Apple can’t read your device data, but it can read your backups
Apple reportedly dropped plans to fully secure users’ iPhone and iPad backups after the FBI complained about the initiative, reports Reuters.
Apple devices have a well-deserved reputation for protecting on-device data, but backups made using iCloud are a different matter. This information is encrypted to stop attackers, but Apple holds the keys to decrypt it and shares it with police and governments when legally required.
https://www.reuters.com/article/us-apple-fbi-icloud-exclusive/exclusive-apple-dropped-plan-for-encrypting-backups-after-fbi-complained-sources-idUSKBN1ZK1CT
https://www.theverge.com/2020/1/21/21075033/apple-icloud-end-to-end-encryption-scrapped-fbi-reuters-report
#apple #icloud #encryption #fbi #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Apple can’t read your device data, but it can read your backups
Apple reportedly dropped plans to fully secure users’ iPhone and iPad backups after the FBI complained about the initiative, reports Reuters.
Apple devices have a well-deserved reputation for protecting on-device data, but backups made using iCloud are a different matter. This information is encrypted to stop attackers, but Apple holds the keys to decrypt it and shares it with police and governments when legally required.
https://www.reuters.com/article/us-apple-fbi-icloud-exclusive/exclusive-apple-dropped-plan-for-encrypting-backups-after-fbi-complained-sources-idUSKBN1ZK1CT
https://www.theverge.com/2020/1/21/21075033/apple-icloud-end-to-end-encryption-scrapped-fbi-reuters-report
#apple #icloud #encryption #fbi #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Bellingcat's Online Investigation Toolkit - version 6.6 (Feb.11, 2021)
"Welcome to Bellingcat’s freely available online open source investigation toolkit.
This toolkit includes satellite and mapping services, tools for verifying photos and videos, websites to archive web pages, and much more. Follow Bellingcat's work using many of those tools via the website or through various social media. The group provides workshops to familiarize with the tools and learn open source investigative methods.
Content:
💡 Maps, Satellites & Streetview
💡 Location Based Searches
💡 Image & Video Verification
💡 Social Media
💡 Transportation
💡 Date & Time
💡 WhoIs, IPs & Website Analysis
💡 People & Phone Numbers
💡 Archiving & Downloading
💡 Company Registries
💡 Data Visualization
💡 Online Security & Privacy
💡 Finding Experts
💡 Miscellaneous
💡 Guides & Handbooks
https://docs.google.com/spreadsheets/d/18rtqh8EG2q1xBo2cLNyhIDuK9jrPGwYr9DI2UncoqJQ/edit#gid=930747607
#Bellingcat #toolkit #research #collection
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
"Welcome to Bellingcat’s freely available online open source investigation toolkit.
This toolkit includes satellite and mapping services, tools for verifying photos and videos, websites to archive web pages, and much more. Follow Bellingcat's work using many of those tools via the website or through various social media. The group provides workshops to familiarize with the tools and learn open source investigative methods.
Content:
💡 Maps, Satellites & Streetview
💡 Location Based Searches
💡 Image & Video Verification
💡 Social Media
💡 Transportation
💡 Date & Time
💡 WhoIs, IPs & Website Analysis
💡 People & Phone Numbers
💡 Archiving & Downloading
💡 Company Registries
💡 Data Visualization
💡 Online Security & Privacy
💡 Finding Experts
💡 Miscellaneous
💡 Guides & Handbooks
https://docs.google.com/spreadsheets/d/18rtqh8EG2q1xBo2cLNyhIDuK9jrPGwYr9DI2UncoqJQ/edit#gid=930747607
#Bellingcat #toolkit #research #collection
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Google Docs
Bellingcat's Online Investigation Toolkit [bit.ly/bcattools]
EXCLUSIVE-Trump administration adds China's Comac, Xiaomi to Chinese military blacklist
WASHINGTON, Jan 14 (Reuters) - The Trump administration on Thursday added nine Chinese firms to a blacklist of alleged Chinese military companies, including planemaker Comac and mobile phone maker Xiaomi, according to a document seen by Reuters.
The companies will be subject to a new U.S. investment ban which forces American investors to divest their holdings of the blacklisted firms by Nov. 11, 2021.
https://www.reuters.com/article/usa-china-comac-military/exclusive-trump-administration-adds-chinas-comac-xiaomi-to-chinese-military-blacklist-idUSL1N2JP233
#trump #usa #china #comac #xiaomi #military #blacklist
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
WASHINGTON, Jan 14 (Reuters) - The Trump administration on Thursday added nine Chinese firms to a blacklist of alleged Chinese military companies, including planemaker Comac and mobile phone maker Xiaomi, according to a document seen by Reuters.
The companies will be subject to a new U.S. investment ban which forces American investors to divest their holdings of the blacklisted firms by Nov. 11, 2021.
https://www.reuters.com/article/usa-china-comac-military/exclusive-trump-administration-adds-chinas-comac-xiaomi-to-chinese-military-blacklist-idUSL1N2JP233
#trump #usa #china #comac #xiaomi #military #blacklist
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Reuters
EXCLUSIVE Trump administration adds China's Comac, Xiaomi to Chinese military blacklist
The Trump administration on Thursday added nine Chinese firms to a blacklist of alleged Chinese military companies, including planemaker Comac (CMAFC.UL) and mobile phone maker Xiaomi (1810.HK), according to a document seen by Reuters.
Signal: New Signal groups use Google servers
Some readers have pointed out to me that Signal appears to be using the Google Data Center to create / manage new Signal groups. The domain storage.signal.org resolves to the IP addresses:
216.239.32.21
216.239.34.21
216.239.36.21
and 216.239.38.21
These addresses belong to Google, Mountain View. The host name of these servers or the Revese lookup also listens to the name any-in-2015.1e100.net.
The question now is, why the group function is linked to Google servers. Especially for privacy-sensitive users Google is a red flag - for a good reason: The sick WWW: Stop using Google Web-Services.
https://www.kuketz-blog.de/signal-neue-signal-gruppen-nutzen-google-server/
#signal #messenger #google #thinkabout #why
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Some readers have pointed out to me that Signal appears to be using the Google Data Center to create / manage new Signal groups. The domain storage.signal.org resolves to the IP addresses:
216.239.32.21
216.239.34.21
216.239.36.21
and 216.239.38.21
These addresses belong to Google, Mountain View. The host name of these servers or the Revese lookup also listens to the name any-in-2015.1e100.net.
The question now is, why the group function is linked to Google servers. Especially for privacy-sensitive users Google is a red flag - for a good reason: The sick WWW: Stop using Google Web-Services.
https://www.kuketz-blog.de/signal-neue-signal-gruppen-nutzen-google-server/
#signal #messenger #google #thinkabout #why
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
www.kuketz-blog.de
Das kranke WWW: Stop using Google Web-Services
Google Web-Services verbreiten sich wie ein Krebsgeschwür, dabei gibt es Alternativen.
Julian Assange pleaded with Edward Snowden to hide 'where CIA doesn't have influence'
JULIAN ASSANGE delivered a desperate plea to Edward Snowden, a US whistleblower, to seek asylum in Russia as opposed to Latin America, as it was a nation "where the CIA doesn't have influence".
Mr Assange, who founded the news leaks website WikiLeaks, was told today he cannot be extradited to the US during a hearing at the Old Bailey. Judge Vanessa Baraitser said extradition had been refused amid fears Mr Assange could take his own life, a decision the US government said it would appeal. The 49-year-old was indicted by prosecutors in the US over 17 espionage charges, and one allegation of computer misuse, over WikiLeaks' decision to publish leaked military and diplomatic documents ten years ago.
Whistleblower Mr Snowden urged US President Donald Trump to "free Julian Assange", and that he "alone can save his life".
It had previously been reported Mr Trump was "considering" pardoning Mr Assange, but it appears the US will continue its battle to ensure the website editor goes in front of a court in America.
https://www.express.co.uk/news/world/1379409/julian-assange-news-edward-snowden-donald-trump-pardon-cia-wikileaks-nationality-spt
#assange #snowden #cia #usa #russia
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
JULIAN ASSANGE delivered a desperate plea to Edward Snowden, a US whistleblower, to seek asylum in Russia as opposed to Latin America, as it was a nation "where the CIA doesn't have influence".
Mr Assange, who founded the news leaks website WikiLeaks, was told today he cannot be extradited to the US during a hearing at the Old Bailey. Judge Vanessa Baraitser said extradition had been refused amid fears Mr Assange could take his own life, a decision the US government said it would appeal. The 49-year-old was indicted by prosecutors in the US over 17 espionage charges, and one allegation of computer misuse, over WikiLeaks' decision to publish leaked military and diplomatic documents ten years ago.
Whistleblower Mr Snowden urged US President Donald Trump to "free Julian Assange", and that he "alone can save his life".
It had previously been reported Mr Trump was "considering" pardoning Mr Assange, but it appears the US will continue its battle to ensure the website editor goes in front of a court in America.
https://www.express.co.uk/news/world/1379409/julian-assange-news-edward-snowden-donald-trump-pardon-cia-wikileaks-nationality-spt
#assange #snowden #cia #usa #russia
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Express.co.uk
Julian Assange pleaded with Snowden to go 'where CIA has no influence'
JULIAN ASSANGE delivered a desperate plea to Edward Snowden, a US whistleblower, to seek asylum in Russia as opposed to Latin America, as it was a nation "where the CIA doesn't have influence".
Denuvo Anti-Cheat now available on Steamworks
Denuvo’s Anti-Cheat protection is available to all Valve Steamworks partners
AMSTERDAM, January 18, 2021 – Denuvo by Irdeto, the leader in video games protection and anti-cheat security, is now available for direct anti-cheat integration through Steamworks, offering security solutions for publishers and developers whose games are available on Steam.
Denuvo has more than two billion unique game protected installs across all platforms, making it one of the leading security providers in the video gaming industry. More than 1,000 games have been secured by Denuvo worldwide, proving Denuvo’s strong understanding of developers’ needs and the gaming landscape. Denuvo offering its services via direct integration through Steamworks makes it easier for developers and publishers to prevent cheating in their competitive multiplayer games.
According to Irdeto’s latest research, 77% of global gamers are likely to abandon a game when cheating occurs, creating a tremendous monetization risk for publishers and developers. By offering its services directly through Steamworks, Denuvo can further its mission of bringing fairness and fun back to gaming by providing security solutions to all developers who want to protect their games and gamers from hackers and cheaters.
https://irdeto.com/news/denuvo-anti-cheat-now-available-on-steamworks/
Earlier post: Why You Should Remove DOOM Eternal from your PC Immediately
https://t.iss.one/BlackBox_Archiv/900
#irdeto #denuvo #anticheat #steamworks
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Denuvo’s Anti-Cheat protection is available to all Valve Steamworks partners
AMSTERDAM, January 18, 2021 – Denuvo by Irdeto, the leader in video games protection and anti-cheat security, is now available for direct anti-cheat integration through Steamworks, offering security solutions for publishers and developers whose games are available on Steam.
Denuvo has more than two billion unique game protected installs across all platforms, making it one of the leading security providers in the video gaming industry. More than 1,000 games have been secured by Denuvo worldwide, proving Denuvo’s strong understanding of developers’ needs and the gaming landscape. Denuvo offering its services via direct integration through Steamworks makes it easier for developers and publishers to prevent cheating in their competitive multiplayer games.
According to Irdeto’s latest research, 77% of global gamers are likely to abandon a game when cheating occurs, creating a tremendous monetization risk for publishers and developers. By offering its services directly through Steamworks, Denuvo can further its mission of bringing fairness and fun back to gaming by providing security solutions to all developers who want to protect their games and gamers from hackers and cheaters.
https://irdeto.com/news/denuvo-anti-cheat-now-available-on-steamworks/
Earlier post: Why You Should Remove DOOM Eternal from your PC Immediately
https://t.iss.one/BlackBox_Archiv/900
#irdeto #denuvo #anticheat #steamworks
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Irdeto
Denuvo Anti-Cheat now available on Steamworks
Denuvo’s Anti-Cheat protection is available to all Valve Steamworks partners
Degoogling my life
Privacy is a human right, when so much of our life is lived online. In my opinion, the two most evil companies on the planet with a blatant disregard for privacy because it is so fundamental to their business model are: Facebook (and by extension, WhatsApp and Instagram) and Google. A common argument against the need for privacy that I have definitely heard in my family is “but I have nothing to hide”. Well, neither do I and yet so does everyone. Does anyone really appreciate searching on Google for a vacuum cleaner and then seeing photos of vacuum cleaners follow them around all over the web for months afterwards? But I digress: I made a conscious decision to gradually rid myself of Google (Facebook was easier: just delete the app.) to the extant possible.
I spent quite some time researching alternatives to each of Google services, and the list below tabulates what I have settled on. Importantly, I have reached the conclusion that viable (and often superior) alternatives exist. Nothing in life is free: one can pay with one’s privacy or with cash. It is no surprise this that most of these below are paid services. Personally, I am more than happy to support businesses where I know what I am paying for and my data is not being pilfered to create some Frankensteinian advertising profile on me.
https://thefiringneuron.com/2021/01/17/degoogling-my-life/
#degoogling #google #DeleteGoogle #privacy #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Privacy is a human right, when so much of our life is lived online. In my opinion, the two most evil companies on the planet with a blatant disregard for privacy because it is so fundamental to their business model are: Facebook (and by extension, WhatsApp and Instagram) and Google. A common argument against the need for privacy that I have definitely heard in my family is “but I have nothing to hide”. Well, neither do I and yet so does everyone. Does anyone really appreciate searching on Google for a vacuum cleaner and then seeing photos of vacuum cleaners follow them around all over the web for months afterwards? But I digress: I made a conscious decision to gradually rid myself of Google (Facebook was easier: just delete the app.) to the extant possible.
I spent quite some time researching alternatives to each of Google services, and the list below tabulates what I have settled on. Importantly, I have reached the conclusion that viable (and often superior) alternatives exist. Nothing in life is free: one can pay with one’s privacy or with cash. It is no surprise this that most of these below are paid services. Personally, I am more than happy to support businesses where I know what I am paying for and my data is not being pilfered to create some Frankensteinian advertising profile on me.
https://thefiringneuron.com/2021/01/17/degoogling-my-life/
#degoogling #google #DeleteGoogle #privacy #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Exclusive: Trump admin slams China's Huawei, halting shipments from Intel, others - sources
NEW YORK/WASHINGTON (Reuters) - The Trump administration notified Huawei suppliers, including chipmaker Intel, that it is revoking certain licenses to sell to the Chinese company and intends to reject dozens of other applications to supply the telecommunications firm, people familiar with the matter told Reuters.
The action - likely the last against Huawei Technologies under Republican President Donald Trump - is the latest in a long-running effort to weaken the world’s largest telecommunications equipment maker, which Washington sees as a national security threat.
The notices came amid a flurry of U.S. efforts against China in the final days of Trump’s administration. Democrat Joe Biden will take the oath of office as president on Wednesday.
Huawei and Intel Corp declined to comment. Commerce said it could not comment on specific licensing decisions, but said the department continues to work with other agencies to “consistently” apply licensing policies in a way that “protects U.S. national security and foreign policy interests.”
https://www.reuters.com/article/us-usa-huawei-tech-exclusive-idUSKBN29M0KD
#usa #china #huawei #intel
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
NEW YORK/WASHINGTON (Reuters) - The Trump administration notified Huawei suppliers, including chipmaker Intel, that it is revoking certain licenses to sell to the Chinese company and intends to reject dozens of other applications to supply the telecommunications firm, people familiar with the matter told Reuters.
The action - likely the last against Huawei Technologies under Republican President Donald Trump - is the latest in a long-running effort to weaken the world’s largest telecommunications equipment maker, which Washington sees as a national security threat.
The notices came amid a flurry of U.S. efforts against China in the final days of Trump’s administration. Democrat Joe Biden will take the oath of office as president on Wednesday.
Huawei and Intel Corp declined to comment. Commerce said it could not comment on specific licensing decisions, but said the department continues to work with other agencies to “consistently” apply licensing policies in a way that “protects U.S. national security and foreign policy interests.”
https://www.reuters.com/article/us-usa-huawei-tech-exclusive-idUSKBN29M0KD
#usa #china #huawei #intel
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Reuters
Exclusive: Trump admin slams China's Huawei, halting shipments from Intel, others - sources
The Trump administration notified Huawei suppliers, including chipmaker Intel, that it is revoking certain licenses to sell to the Chinese company and intends to reject dozens of other applications to supply the telecommunications firm, people familiar with…
Signal: All communication takes place via tech giants like Amazon, Microsoft, Google and Cloudflare.
At Signal, all communication takes place via various tech giants such as Amazon, Microsoft, Google and Cloudflare. Broken down by domains, the following picture emerges:
❗️ Amazon: textsecure-service.whispersystems.org, cdn.signal.org, sfu.voip.signal.org
❗️ Google: storage.signal.org, contentproxy.signal.org
❗️ Microsoft: api.directory.signal.org, api.backup.signal.org
❗️ Cloudflare: cdn2.signal.org
Message exchange (textsecure-service.whispersystems.org) is done via Amazon AWS, for example, while Google Data Servers (storage.signal.org) are responsible for creating and managing the groups. This means that all communication is handled via central servers of the tech giants. Especially privacy-sensitive users may be put off by this, which I can understand. However, at least from an IT security perspective, I think the use of the rented servers is negligible, since Signal works with the zero-knowledge principle. Certainly, it would be desirable if the Signal Foundation hosted the servers itself. However, this would not necessarily mean a security gain. Nevertheless, this is a point of criticism, since this naturally also flushes money into the coffers of the tech data octopuses.
https://www.kuketz-blog.de/signal-jegliche-kommunikation-erfolgt-ueber-tech-giganten-wie-amazon-microsoft-google-und-cloudflare/
#signal #messenger #google #amazon #microsoft #thinkabout #why
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
At Signal, all communication takes place via various tech giants such as Amazon, Microsoft, Google and Cloudflare. Broken down by domains, the following picture emerges:
❗️ Amazon: textsecure-service.whispersystems.org, cdn.signal.org, sfu.voip.signal.org
❗️ Google: storage.signal.org, contentproxy.signal.org
❗️ Microsoft: api.directory.signal.org, api.backup.signal.org
❗️ Cloudflare: cdn2.signal.org
Message exchange (textsecure-service.whispersystems.org) is done via Amazon AWS, for example, while Google Data Servers (storage.signal.org) are responsible for creating and managing the groups. This means that all communication is handled via central servers of the tech giants. Especially privacy-sensitive users may be put off by this, which I can understand. However, at least from an IT security perspective, I think the use of the rented servers is negligible, since Signal works with the zero-knowledge principle. Certainly, it would be desirable if the Signal Foundation hosted the servers itself. However, this would not necessarily mean a security gain. Nevertheless, this is a point of criticism, since this naturally also flushes money into the coffers of the tech data octopuses.
https://www.kuketz-blog.de/signal-jegliche-kommunikation-erfolgt-ueber-tech-giganten-wie-amazon-microsoft-google-und-cloudflare/
#signal #messenger #google #amazon #microsoft #thinkabout #why
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
www.kuketz-blog.de
Signal: Jegliche Kommunikation erfolgt über Tech-Giganten wie Amazon, Microsoft, Google und Cloudflare
Bei Signal erfolgt jegliche Kommunikation über verschiedene Tech-Giganten wie Amazon, Microsoft, Google und Cloudflare. Aufgesplittet nach Domains ergibt sich das…
Astian Translate: Open Source Translations in Nine Languages
Astian's new translation service competes against proprietary services from Google, Microsoft and Amazon. It is based on the Python software Argos Translate.
With Translate, Astian releases a new translation service that appears as free software. At launch, the program can handle nine languages: English, Spanish, French, German, Italian, Portuguese, Russian, Arabic and Chinese. Automatic input recognition is still experimental.
Users can try out the service on libretranslate.com, which is operated by Astian, but the software can also be deployed on a separate server. The corresponding API can be found on GitHub, including instructions for setup and configuration. However, the Astian server is intended for testing purposes only.
https://astian.org/en/astian-translate-free-and-open-source-translations/
#opensource #translation #astian
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Astian's new translation service competes against proprietary services from Google, Microsoft and Amazon. It is based on the Python software Argos Translate.
With Translate, Astian releases a new translation service that appears as free software. At launch, the program can handle nine languages: English, Spanish, French, German, Italian, Portuguese, Russian, Arabic and Chinese. Automatic input recognition is still experimental.
Users can try out the service on libretranslate.com, which is operated by Astian, but the software can also be deployed on a separate server. The corresponding API can be found on GitHub, including instructions for setup and configuration. However, the Astian server is intended for testing purposes only.
https://astian.org/en/astian-translate-free-and-open-source-translations/
#opensource #translation #astian
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
solomos-ndss21.pdf
576.5 KB
Favicons can be misused for tracking - Persistent Tracking in Modern Browsers
In a research paper, favicons are used for user tracking in browsers. There is no protection against this yet.
Browser manufacturers have increasingly cracked down on tracking techniques that use cookies in recent years. However, a research team at the University of Illinois at Chicago (UIC) has now shown in a study (PDF) that browsers offer a much larger attack surface for abusing their tracking techniques, even if such tracking is not actually intended. The team shows this by means of favicons, which could be converted into so-called supercookies.
https://www.cs.uic.edu/~polakis/papers/solomos-ndss21.pdf
#tracking #favicons #browser #research #supercookies #fingerprinting #pdf
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
In a research paper, favicons are used for user tracking in browsers. There is no protection against this yet.
Browser manufacturers have increasingly cracked down on tracking techniques that use cookies in recent years. However, a research team at the University of Illinois at Chicago (UIC) has now shown in a study (PDF) that browsers offer a much larger attack surface for abusing their tracking techniques, even if such tracking is not actually intended. The team shows this by means of favicons, which could be converted into so-called supercookies.
https://www.cs.uic.edu/~polakis/papers/solomos-ndss21.pdf
#tracking #favicons #browser #research #supercookies #fingerprinting #pdf
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag