ProcGate by topjohnwu
https://medium.com/@topjohnwu/from-anime-game-to-android-system-security-vulnerability-9b955a182f20
A massive amount of Android devices are affected by a bug that causes /proc to be mounted without hidepid=2, which opens up the ability for unprivileged applications to read many information of other processes. Google promptly updated its Compatibility Test Suite (CTS) to prevent any future systems* containing this bug from shipping to end users. This vulnerability is not severe but still should be fixed since it is part of the Android application sandbox. The way to mitigate this issue is either through a system upgrade, or remounting /procwith proper flags with root permission.
I created the app ProcGate to let you detect (no root) and fix this issue (only if rooted), you can download it here:
https://github.com/topjohnwu/ProcGate/releases/
๐ก @op5_files
#procgate #bug
https://medium.com/@topjohnwu/from-anime-game-to-android-system-security-vulnerability-9b955a182f20
A massive amount of Android devices are affected by a bug that causes /proc to be mounted without hidepid=2, which opens up the ability for unprivileged applications to read many information of other processes. Google promptly updated its Compatibility Test Suite (CTS) to prevent any future systems* containing this bug from shipping to end users. This vulnerability is not severe but still should be fixed since it is part of the Android application sandbox. The way to mitigate this issue is either through a system upgrade, or remounting /procwith proper flags with root permission.
I created the app ProcGate to let you detect (no root) and fix this issue (only if rooted), you can download it here:
https://github.com/topjohnwu/ProcGate/releases/
๐ก @op5_files
#procgate #bug
Medium
From Anime Game to Android System Security Vulnerability
Hello, Iโm @topjohnwu, the developer of the popular Android modding tool: Magisk. In this article Iโd love to share the whole journey fromโฆ
Blokada
Free and open source ad blocker. It works across all of your apps, not only the browser. It doesn't require root, supports both wifi and mobile networks.
Web
https://blokada.org
Github
https://github.com/blokadaorg/blokada
Frequently Asked Questions
https://blokada.org/api/v3/content/en/help.html
News and Articles
https://block.blokada.org
Download
https://blokada.org/#download
or
https://f-droid.org/packages/org.blokada.alarm
Telegram
https://t.iss.one/blokadachat
News: t.iss.one/blokadaorg
Spanish: t.iss.one/blokadaespanol
French: t.iss.one/blokadafr
Dutch: t.iss.one/blokadanl
Italian: t.iss.one/blokadaITA
๐ก @Libreware
#blokada #ad #blocker
Free and open source ad blocker. It works across all of your apps, not only the browser. It doesn't require root, supports both wifi and mobile networks.
Web
https://blokada.org
Github
https://github.com/blokadaorg/blokada
Frequently Asked Questions
https://blokada.org/api/v3/content/en/help.html
News and Articles
https://block.blokada.org
Download
https://blokada.org/#download
or
https://f-droid.org/packages/org.blokada.alarm
Telegram
https://t.iss.one/blokadachat
News: t.iss.one/blokadaorg
Spanish: t.iss.one/blokadaespanol
French: t.iss.one/blokadafr
Dutch: t.iss.one/blokadanl
Italian: t.iss.one/blokadaITA
๐ก @Libreware
#blokada #ad #blocker
blokada.org
Blokada - the popular mobile adblocker and VPN for Android and iOS
Keep all your devices protected with Blokada content filtering and encryption.
Eli Grey @sephr on twitter says:
One of these screenshots is a draft email to the real PayPal support. The other one is to a scammer.
Both screenshots are identical.
Unfixed vulnerability in all Google Inbox mobile apps: https://eligrey.com/blog/google-inbox-spoofing-vulnerability
PoC demo (open with Google Inbox app): https://dangerous.link/paypal-locked
From https://twitter.com/sephr/status/1064962729889288192
#vulnerability #bug #gmail #inbox
One of these screenshots is a draft email to the real PayPal support. The other one is to a scammer.
Both screenshots are identical.
Unfixed vulnerability in all Google Inbox mobile apps: https://eligrey.com/blog/google-inbox-spoofing-vulnerability
PoC demo (open with Google Inbox app): https://dangerous.link/paypal-locked
From https://twitter.com/sephr/status/1064962729889288192
#vulnerability #bug #gmail #inbox
Hi guys, you're welcome to join this new channel โค๏ธ
New channel is t.iss.one/cRyPtHoN_INFOSEC_EN
The old channel @cRyPtHoN_INFOSEC is NOT MAINTAINED ANYMORE, you should abandon it. I can't manage it because I lost its creator account.
New channel is t.iss.one/cRyPtHoN_INFOSEC_EN
The old channel @cRyPtHoN_INFOSEC is NOT MAINTAINED ANYMORE, you should abandon it. I can't manage it because I lost its creator account.
Telegram
cRyPtHoNโข INFOSEC (EN)
Latest news of INFOSEC (EN)
1. Latest Vulnerability.
2. Latest Patch.
3. Privacy Breach.
4. Security Breach.
5. InfoSec News.
German Version ๐ฉ๐ช
@cRyPtHoN_INFOSEC_DE
France Version ๐ซ๐ท
@cRyPtHoN_INFOSEC_FR
Italian Version ๐ฎ๐น
@cRyPtHoN_INFOSEC_IT
1. Latest Vulnerability.
2. Latest Patch.
3. Privacy Breach.
4. Security Breach.
5. InfoSec News.
German Version ๐ฉ๐ช
@cRyPtHoN_INFOSEC_DE
France Version ๐ซ๐ท
@cRyPtHoN_INFOSEC_FR
Italian Version ๐ฎ๐น
@cRyPtHoN_INFOSEC_IT
Google Accused of Manipulation to Track Users
Seven European consumer groups filed complaints against Google with national regulators Tuesday, accusing the internet giant of covertly tracking users' movements in violation of an EU regulation on data protection.
The complaints cited a study by the Norwegian Consumer Council that concluded the Internet giant used "deceptive design and misleading information, which results in users accepting to be constantly tracked."
https://www.securityweek.com/google-accused-manipulation-track-users
Read Via Telegram
๐ก@cRyPtHoN_INFOSEC_EN
Seven European consumer groups filed complaints against Google with national regulators Tuesday, accusing the internet giant of covertly tracking users' movements in violation of an EU regulation on data protection.
The complaints cited a study by the Norwegian Consumer Council that concluded the Internet giant used "deceptive design and misleading information, which results in users accepting to be constantly tracked."
https://www.securityweek.com/google-accused-manipulation-track-users
Read Via Telegram
๐ก@cRyPtHoN_INFOSEC_EN
uBlock Origin suggestions
by @theeI0ja
https://github.com/theel0ja/ubo-recommendations/blob/master/README.md
#ublock #ads
by @theeI0ja
https://github.com/theel0ja/ubo-recommendations/blob/master/README.md
#ublock #ads
GitHub
ubo-recommendations/README.md at master ยท theel0ja/ubo-recommendations
My uBlock Origin recommendations. Contribute to theel0ja/ubo-recommendations development by creating an account on GitHub.
Necuno Mobile
An open phone with Plasma Mobile
https://necunos.com/mobile
https://dot.kde.org/2018/11/29/necuno-mobile-open-phone-plasma-mobile
๐ก @NoGoolag
#necuno #mobile #phone #kde #plasma
An open phone with Plasma Mobile
https://necunos.com/mobile
https://dot.kde.org/2018/11/29/necuno-mobile-open-phone-plasma-mobile
๐ก @NoGoolag
#necuno #mobile #phone #kde #plasma
Necuno Solutions
Necunos for Community
Necunos is committed on working with FOSS communities and drive growth towards them.
Open Source at 20: What's Next?
As the open source movement reaches the two-decade milestone, thoughts turn to the movement's achievements and future goals.
The Open Source Initiative (OSI) is celebrating its 20th Anniversary in 2018. To mark the occasion, cloud infrastructure provider DigitalOcean surveyed over 4,300 developers on the movement's health, as well as on how enterprises and employees are approaching and using open source technologies.
https://www.informationweek.com/devops/open-source-at-20-whats-next/d/d-id/1333313
https://opensource.net/
๐ก@cRyPtHoN_INFOSEC_DE
๐ก@cRyPtHoN_INFOSEC_EN
As the open source movement reaches the two-decade milestone, thoughts turn to the movement's achievements and future goals.
The Open Source Initiative (OSI) is celebrating its 20th Anniversary in 2018. To mark the occasion, cloud infrastructure provider DigitalOcean surveyed over 4,300 developers on the movement's health, as well as on how enterprises and employees are approaching and using open source technologies.
https://www.informationweek.com/devops/open-source-at-20-whats-next/d/d-id/1333313
https://opensource.net/
๐ก@cRyPtHoN_INFOSEC_DE
๐ก@cRyPtHoN_INFOSEC_EN
Seven GDPR complaints filed against Google over user location tracking
GDPR complaints have been filed today against Google in the Netherlands, Poland, the Czech Republic, Greece, Norway, Slovenia, and Sweden.
Consumer protection agencies from seven EU countries filed today GDPR complaints against Google for using deceptive practices to track users' location.
Read Via Telegram
๐ก@cRyPtHoN_INFOSEC_EN
#why
GDPR complaints have been filed today against Google in the Netherlands, Poland, the Czech Republic, Greece, Norway, Slovenia, and Sweden.
Consumer protection agencies from seven EU countries filed today GDPR complaints against Google for using deceptive practices to track users' location.
Read Via Telegram
๐ก@cRyPtHoN_INFOSEC_EN
#why
Telegram
BlackBox (EN)
Seven GDPR complaints filed against Google over user location tracking
GDPR complaints have been filed today against Google in the Netherlands, Poland, the Czech Republic, Greece, Norway, Slovenia, and Sweden.
Consumer protection agencies from seven EUโฆ
GDPR complaints have been filed today against Google in the Netherlands, Poland, the Czech Republic, Greece, Norway, Slovenia, and Sweden.
Consumer protection agencies from seven EUโฆ
Forwarded from BlackBox (EN)
27-11-18-every-step-you-take.pdf
3.4 MB
44-page report published today by Norway's Consumer Council, the country's consumer protection agency.
๐ก@cRyPtHoN_INFOSEC_EN
๐ก@cRyPtHoN_INFOSEC_EN
Magisk root and modules
XDA
https://forum.xda-developers.com/apps/magisk/official-magisk-v7-universal-systemless-t3473445
XDA magisk modules
https://forum.xda-developers.com/apps/magisk
โฌ๏ธ Download Magisk Github Release page:
https://github.com/topjohnwu/Magisk/releases
๐ Magisk Documentation
https://topjohnwu.github.io/Magisk/
๐ Magisk and MagiskHide Installation and Troubleshooting guide
https://www.didgeridoohan.com/magisk/HomePage#
โข Canary builds download:
https://github.com/topjohnwu/magisk_files/tree/master/canary_builds
Canary builds notes:
https://github.com/topjohnwu/magisk_files/blob/master/canary_builds/notes.md
Canary Release Channel:
https://raw.githubusercontent.com/topjohnwu/magisk_files/master/canary_builds/release.json`
๐ก @Libreware
#magisk #root
XDA
https://forum.xda-developers.com/apps/magisk/official-magisk-v7-universal-systemless-t3473445
XDA magisk modules
https://forum.xda-developers.com/apps/magisk
โฌ๏ธ Download Magisk Github Release page:
https://github.com/topjohnwu/Magisk/releases
๐ Magisk Documentation
https://topjohnwu.github.io/Magisk/
๐ Magisk and MagiskHide Installation and Troubleshooting guide
https://www.didgeridoohan.com/magisk/HomePage#
โข Canary builds download:
https://github.com/topjohnwu/magisk_files/tree/master/canary_builds
Canary builds notes:
https://github.com/topjohnwu/magisk_files/blob/master/canary_builds/notes.md
Canary Release Channel:
https://raw.githubusercontent.com/topjohnwu/magisk_files/master/canary_builds/release.json`
๐ก @Libreware
#magisk #root