Get this - there is a Bitcoin wallet with 69,000 Bitcoins ($693,207,618) that is being passed around between hackers/crackers for the past 2 years for the purpose of cracking the password, no success so far.

👀 👉🏼 https://twitter.com/UnderTheBreach/status/1303316723186139136

#wallet #bitcoin #breach #hack #whynot
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

‘Not On Our Watch’: A public campaign against Google’s jump into our health data

Monopolies, mergers and acquisitions, anti-trust laws. These may seem like tangential or irrelevant issues for privacy and digital rights organisations. But having run our first public petition opposing a big tech merger, we wanted to set out why we think this is an important frontier for people's rights across Europe and indeed across the world.

In June, Google notified the European Commission of its intention to acquire Fitbit, the health and fitness tracker company. Google’s stated mission is to “organize the world’s information and make it universally accessible and useful.” ‘Organize’ sounds so benign, just administrative, so tidy. But Google can only organise the world’s information by first aggressively getting its hands on the world’s information, whether we really want to give them that information or not. And nothing is more personal than our health data so this would be a game-changing acquisition. Because of how Google could potentially combine our health data with so much other data it already has about us, we were concerned that Google would use the merger to become an unassailable leader in the health and fitness monitoring market.

The merger triggered reactions among civil society organisations, and Privacy International (PI) was a signatory to a common statement sent to the European Commission, coordinated by BEUC, the European Consumer Organisation.

https://edri.org/our-work/not-on-our-watch-a-public-campaign-against-googles-jump-into-our-health-data/

#Europe #EU #google #fitbit #privacy

We Are All Algorithms Now - Is that what's really destroying the legitimacy of our democracy?

I’ve never felt this way about an election before. For my entire adult life, campaigns could be exhilarating, tedious, crowded with incident or laden with foreboding, but you always felt that, at some point, there would be a resolution. The votes would be counted; the exit polls parsed; a decision made; and both sides would respect it. The one time that didn’t happen — in 2000 — I felt for the first time an inkling of what I feel in every part of my psyche now: a sense that the system itself was buckling.

👉🏼 ..(..)...
And the reason this dystopian scenario is so credible is not just the fault of these political actors. It’s ours too — thanks to the impact of social media. I think we’ve under-estimated just how deep the psychological damage has been in the Trump era — rewiring the minds of everyone, including your faithful correspondent, in ways that make democratic discourse harder and harder and harder to model. The new Netflix documentary, The Social Dilemma, is, for that reason, a true must-watch. It doesn’t say anything shockingly new, but it persuasively weaves together a whole bunch of points to reveal just how deeply and thoroughly fucked we are. Seriously, take a look.

👉🏼 ..(..)..
For #Facebook and #Google and #Instagram and #Twitter, the business goal quickly became maximizing and monetizing human attention via #addictive #dopamine hits. Attention, they meticulously found, is correlated with emotional intensity, outrage, shock and provocation. Give artificial intelligence this simple knowledge about what distracts and compels humans, let the algorithms do their work, and the profits snowball. The cumulative effect — and it’s always in the same incendiary direction — is mass detachment from reality, and immersion in tribal fever.

👀 👉🏼 https://andrewsullivan.substack.com/p/we-are-all-algorithms-now

👀👇🏼 "Dopamine": Miniseries about the addiction mechanisms of Tinder, Facebook and Co. 👇🏼

"They'll do anything to make you an addict," they say about #Tinder, #Facebook, #CandyCrush, #Instagram, #YouTube, #Snapchat, #Uber and #Twitter in the miniseries of #Arte. Eight episodes explain in detail which mechanisms are triggered in our brain to keep us engaged

📺 👉🏼 https://t.iss.one/BlackBox_Archiv/833 👈🏼 📺

#surveillance #capitalism #SocialDilemma #dystopian #democracy #thinkabout #why
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

Exploitation of LAN vulnerability found in Firefox for Android (PoC)

I tested this PoC exploit on 3 devices on same wifi, it worked pretty well.

I was able to open custom URL on every smartphone using vulnerable Firefox (68.11.0 and below)

👀 👉🏼 https://twitter.com/LukasStefanko/status/1307013106615418883

👀 👉🏼 Firefox for Android LAN-Based Intent Triggering:
https://gitlab.com/gitlab-com/gl-security/security-operations/gl-redteam/red-team-tech-notes/-/tree/master/firefox-android-2020

#android #security #exploit #firefox #LAN #vulnerability #poc
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

Surveilling the surveillers - About military RF communication surveillance and other activist art & technology projects

This talk will present relevant works in this field and will draw connections between critical art and regulatory power, warfare, surveillance, electronic waste, electronic self-defense and the re-appropriation of architectural and technological artifacts in militant ways.

📺 👉🏼 This Talk was translated into eng / deu / fra. 👇🏼
https://media.ccc.de/v/33c3-7978-surveilling_the_surveillers#t=70

#surveilling #surveillers #33c3 #ccc #video
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

Forget TikTok. China’s Powerhouse App Is WeChat, and Its Power Is Sweeping.

A vital connection for the Chinese diaspora, the app has also become a global conduit of Chinese state propaganda, surveillance and intimidation. The United States has proposed banning it.

Just after the 2016 presidential election in the United States, Joanne Li realized the app that connected her to fellow Chinese immigrants had disconnected her from reality.

Everything she saw on the Chinese app, WeChat, indicated Donald J. Trump was an admired leader and impressive businessman. She believed it was the unquestioned consensus on the newly elected American president. “But then I started talking to some foreigners about him, non-Chinese,” she said. “I was totally confused.”

https://www.nytimes.com/2020/09/04/technology/wechat-china-united-states.html

#US #China #WeChat #surveillance

Poll: majority of Americans concerned about Big Tech’s economic, political power

Republican voters were more likely to say they were somewhat or very concerned about the tech firms.

About 65 percent of likely U.S. voters think the economic power held by tech companies like Amazon, Google, Facebook is a problem for the U.S. economy, according to a survey on antitrust and the tech industry to be released Thursday.

The responses: Republican voters were more likely to say they were somewhat or very concerned about the tech firms than those who identify as Democrats or independents.

Seventy percent of the respondents said they think tech companies have too much political power, with Republicans most likely to agree with the statement.

Overall, 56 percent said they would strongly or somewhat support breaking up tech companies to promote competition, compared with 26 percent who said they oppose or strongly oppose such a move and 19 percent who didn’t offer a view.

https://www.politico.com/news/2020/09/17/big-tech-economic-political-power-poll-417024

#US #BigTech

How to erase your data to remove your life from Google’s grip.

The company provides a slew of really great products. But you have to remember, you are also a product in their profit stream

I use Google for so many things, from looking things up, handing my email and calendar, video chatting with my team, to peeking in on the Nest cam in my mother's living room. The company provides a slew of really great products. But you have to remember, you are also a product in their profit stream.

Lately, there’s been an anti-Google movement with more people interested in options. You can use a different search site that won’t track you. There are also private email servers and video sites that aren’t YouTube. Tap or click here for a list of Google alternatives.

https://www.foxnews.com/tech/how-to-erase-your-data-to-remove-your-life-from-googles-grip

📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

Companies can track your phone’s movements to target ads

A startup gathers data on when you pick up your phone or go out on a run.

Google and Apple have taken steps this year they say will help users shield themselves from hundreds of companies that compile profiles based on online behavior. Meanwhile, other companies are devising new ways to probe more deeply into other aspects of our lives.

In January, Google said it would phase out third-party cookies on its Chrome browser, making it harder for advertisers to track our browsing habits. Publishers and advertisers use cookies to compile our shopping, browsing, and search data into extensive user profiles. These profiles reflect our political interests, health, shopping behavior, race, gender, and more. Tellingly, Google will still collect data from its own search engine, plus sites like YouTube or Gmail.

https://arstechnica.com/information-technology/2020/09/companies-can-track-your-phones-movements-to-target-ads/

#phones #tracking #ads #privacy

Hackers leak data on 1,000 Belarusian police officers

Security forces will not remain anonymous, anti-Lukashenko protesters say

Anonymous hackers leaked the personal data of 1,000 Belarusian police officers in retaliation for a crackdown on street demonstrations against the veteran president, Alexander Lukashenko, as protesters geared up for another mass rally on Sunday.

“As the arrests continue, we will continue to publish data on a massive scale,” said a statement distributed by the opposition news channel Nexta Live on the messaging app Telegram. “No one will remain anonymous, even under a balaclava.”

The government said it would find and punish those responsible for leaking the data, which was widely distributed on Saturday evening.

https://www.theguardian.com/world/2020/sep/20/hackers-leak-data-on-1000-belarusian-police-officers

#Europe #Belarus #hackers #police #leaks

Dream Vendor "Canna_Bars" Sentenced to Prison

A judge in a California court sentenced Jose Robert Porras III to five years and 10 months in federal prison for distributing a controlled substance and illegally possessing firearms. The Northern California Illicit Digital Economy Task Force (NCIDE) investigated Porras in 2018 and identified him as the operator of vendor accounts on Hansa Market, Wall Street Market, and Dream Market

https://darknetlive.com/post/dream-vendor-canna-bars-sentenced-to-prison


#fp #fingerprints #photo #darknet #market

Bitwarden leaks passwords to other subdomains

Today I was on a domain that should only be available via BasicAuth. Then I was really scared when I did not have to login. Even in incognito mode the page was visible without login. Is my BasicAuth broken? Turns out: No, but @Bitwarden has automatically logged in for me.

👀 👉🏼 https://nitter.net/RitzmannMarkus/status/1307614248835731456

#bitwarden #leak #password #subdomains
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

Thanks to Google, app store monopoly concerns have now reached India

Last week, as Epic Games, Facebook, and Microsoft continued to express concerns about Apple’s “monopolistic” hold over what a billion people can download on their iPhones, a similar story unfolded in India, the world’s second largest internet market, between a giant developer and the operator of the only other large mobile app store.

Google pulled Paytm, the app from India’s most valuable startup, off of the Play Store on Friday. The app returned to the store eight hours later, but the controversy and acrimony Google has stirred up in the country will linger for years.

TechCrunch reported on Friday that Google pulled Paytm app from its app store after a repeat pattern of violations of Google Play Store guidelines by the Indian firm.

https://techcrunch.com/2020/09/20/thanks-to-google-paytm-app-store-monopoly-concerns-have-now-reached-india/

#Asia #India #Paytm #Google #monopoly

Friend challenges Facebook over Ronnie McNutt suicide video

Three weeks ago, Josh Steen watched his close friend Ronnie McNutt kill himself live on Facebook.

Now, he is fighting for answers from the firm and other social media platforms where clips of the suicide are widely available.

"For the last two and a half weeks Ronnie's image has been one of the most recognisable on the internet and yet these companies claim to have detection software to stop it, so something isn't right," he said.

He reported it to Facebook during the livestream, at 22:00 Mississippi time - two hours after the video had started, and half an hour before Ronnie killed himself.

He said that he didn't get a response until 23:51, when Facebook told him that the video did not violate its community guidelines.

By then, Mr McNutt was dead.

https://www.bbc.com/news/technology-54176205

#US #Facebook

How money is laundered through New York banks

An ICIJ investigation reveals the role of global banks in industrial-scale money laundering — and the bloodshed and suffering that flow in its wake.

The FinCEN Files show trillions in tainted dollars flow freely through major banks, swamping a broken enforcement system.

📺 👉🏼 https://www.icij.org/investigations/fincen-files/

#investigation #FinCEN #money #laundering #video #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

Google App Engine feature abused to create unlimited phishing pages.

A newly discovered technique by a researcher shows how Google's App Engine domains can be abused to deliver phishing and malware while remaining undetected by leading enterprise security products.

Google App Engine is a cloud-based service platform for developing and hosting web apps on Google's servers.

While reports of phishing campaigns leveraging enterprise cloud domains are nothing new, what makes Google App Engine infrastructure risky in how the subdomains get generated and paths are routed.

https://www.bleepingcomputer.com/news/security/google-app-engine-feature-abused-to-create-unlimited-phishing-pages/

📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

Fair Code vs Open Source, Which Wins The Future?

Fair code is a new software development model which aims to replace the long-ruling open source model. Fair code authors argue that open source software lack a critical point in terms of commercial usage of the software, and hence, introduced their initiative to fix it.

What is Fair Code?

When developers release their software as open source, they are also giving a by-definition right to every company in the world to commercially use their software without having to obtain a license or share some profits with them. And this caused some problems in the open source world few years ago. For example, Amazon took the MongoDB source code (An open source database system), changed its name and then provided it as a SaaS (Software-as-a-Service) on its AWS platform, and then charged people money to use it. MongoDB developers were angered since they literally got nothing back from Amazon although they are the original creators of 100% of the code.

👀 👉🏼 https://fosspost.org/fair-code-open-source/

#foss #faircode #OpenSource #future #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

Did Russian Spies Use Diplomatic Cover to Run a Global Cocaine-Smuggling Operation?

Six men await trial in Moscow and Buenos Aires, charged with operating one of the craziest, most ambitious narco-trafficking rings in history. Russia’s embassy in Argentina was the storage depot and Russian government transport was intended to move a cartel-sized consignment of virtually uncut cocaine from South America to Moscow.

It was a transnational crime that astounded and confused the world, not least because authorities allege it was carried out by a small but resourceful cabal including one dirty embassy employee, one corrupt cop, and one charismatic chameleon who used some of the most secure Russian state real estate to store and smuggle $60 million worth of drugs.

According to the official narrative, they did it all right under the noses of innocent diplomats and intelligence officers—and they would have gotten away with it without the plucky joint police work of Russian and Argentinian law enforcement. But what if that neat conclusion, which will soon be presented in court, is intentionally incomplete, a whitewash designed to protect more senior officials in the Russian government?

👀 👉🏼 https://www.thedailybeast.com/was-andrei-kovalchuk-and-the-russian-embassy-in-argentina-at-the-center-of-a-russian-spy-cocaine-ring

#russia #argentina #embassy #spy #drugs #cocaine #smuggling #whitewash #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

The KGB Experience - How to Catch a Spy who Uses Numbers Stations?

Introduction

From 2019 onwards the Latvian National Archive offers access to various KGB documents. The author had already previously shown the very detailed efforts of the Latvian KGB counterintelligence to monitor and study the CIA and BND numbers stations broadcasts, or what they called – “one directional communications”.[1] These are one of the most definitive archival sources which prove that foreign intelligence actively used shortwave in the USSR and that the KGB was aware of it. The documents showed that the KGB had monitored these broadcasts from at least 1978, but the files spoke very vaguely if the monitoring effort led to any apprehension and capture of a foreign agent. We, however, know that there were such cases like Alexander Ogorodnik[2], and others where the use of shortwave signals was determined.

👀 👉🏼 https://www.numbers-stations.com/how-to-catch-a-spy-who-uses-numbers-stations-the-kgb-experience/

#russia #kgb #spy #numbersstations #research
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

Today, we announce that the e Foundation is getting a financial grant from the SIDN Fund to develop an integrated "privacy center" for Android, and improve PWA app support in /e/OS.
https://e.foundation/e-foundation-announces-financial-grant-from-sidn-fund/