Sep 28, 2021
Darknet Diaries – True stories from the dark side of the Internet. — "This is a podcast about hackers, breaches, shadow government activity, hacktivism, cybercrime, and all the things that dwell on the hidden parts of the network." I'm hoooked to Darknet Diaries!
#security #internet #podcast
Sep 25, 2021
Disclosure of three 0-day iOS vulnerabilities and critique of Apple Security Bounty program — What a mess. Three extremely serious 0-days which leak private user data go unpatched for more than 6 months. Hopefully the disclosure will make Apple expedite the fixes. (via)
#apple #security
Sep 20, 2021
Canarytokens — Discover if your information has been breached by tracking for file reads, database queries, process executions, patterns in log files, Bitcoin transactions or even Linkedin Profile views.
#privacy #security
Sep 14, 2021
FORCEDENTRY: NSO Group iMessage Zero-Click Exploit Captured in the Wild — Everybody update your iOS devices to 14.8 (via)
#apple #security
May 26, 2021
M1RACLES: M1ssing Register Access Controls Leak EL0 State — The first hardware vulnerability of Apple Silicon: a system register can be accessed directly from EL0. Two processes can cooperatively exchange data using this register. However, this is more of a curiosity. You shouldn't worry. (via)
#apple #hardware #security
Jan 27, 2021
Heap-based overflow in sudo — sudo privilege escalation introduced in... 2011. Holy smokes. Update your servers, people. (via)
#unix #security
Dec 24, 2020
Russians insert a back door in software used by multiple governments — Backdoor hacks to popular software are going to be much more popular in the coming days. And the world isn’t ready for it. (via)
#security
Jul 18, 2020
Hackers Tell the Story of the Twitter Attack From the Inside — MUST READ article with more details of the Twitter hack. Plausible and consistent with the facts, I'm inclined to believe it. (via)
#security #internet #crypto
Jul 15, 2020
Elon Musk, Bill Gates, Cash App, Ripple all hacked on Twitter — Very interesting that the attacker decided to pull a crypto scam instead of another type of message. I can think of a few better ideas with that kind of exposure. Eagerly awaiting the postmortem. (via)
#security #internet #crypto
Jul 3, 2020
Beware the Google Password Manager — You may have saved some passwords in Chrome, even if you don't remember it. Make sure to purge them from Google Password if you don't use Chrome anymore. (via)
#security #internet