Firebase Cloud Messaging Service Takeover: A small research that led to 30k$+ in bounties

Affected are Teams and Hangouts. Google and Microsoft said they are looking into it.

As per abyss, there is nothing to fear about, the attackers (or google/microsoft) can only change the content of the message nothing more.

abss.me/posts/fcm-takeover/

Android 11 is locking down may features, now it doesn't let you select different camera different from the built-in. Google reports that it does this to help with geo-tagging.

"This Termux bash setup shell script will attempt to set Arch Linux up in your Termux environment."

github.com/sdrausty/TermuxArch

He made some valid points on DPI being dead, as we use HTTPS which protects the data under the application layer.

SSL Inspection looks interesting, but "SSL inspection intercepts all traffic, decrypts it, and scans it for malicious content whenever data is transmitted through an HTTPs websit" which looks like MITM.

security.ias.edu/deep-packet-i

"If the NSA was owning everything in sight (and by all accounts they have) then how is it that nobody ever spotted them?”

blog.thinkst.com/p/if-nsa-has-

What the Web Could Have Been

"It’s easy to forget this, but the Internet was originally conceived as a way to connect (mostly text) documents."

thehistoryoftheweb.com/what-th

Seems that, it is possible to unlock...
But would take time to brute force all the codes...

github.com/SkyEmie/huawei-hono

Discovered a new electrocatalyst that converts carbon dioxide and water into ethanol with very high energy efficiency, high selectivity for the desired final product, and low cost.

cleantechnica.com/2020/08/08/a

Show more
Fosstodon

Fosstodon is an English speaking Mastodon instance that is open to anyone who is interested in technology; particularly free & open source software.