Show more

@EikeHein is the treasurer of KDE e.V. and long-time Plasma and Konversation developer. So he's actually more knowledgeable on the tech side of KDE than I am.

Some popular iPhone apps are secretly recording your screen:

extremetech.com/mobile/285342-

– apps include Air Canada, Hollister, Expedia, Hotels.com
– these and other apps use a "session replay" feature of Glassbox
– Glassbox session replays are essentially real-time videos of how you interact with the app

#ios #glassbox #session #replay #leak #aircanada #hollister #expedia #hotelscom

Hello world! Happy to finally be part of the Mastodon community. Follow us if you are interested in #privacy #personaldata #dataexploitation and #surveillance, we'll be talking a lot about these.

#newcomer #presentation

Turns out the current German federal data protection commissioner, @ulrichkelber, has an active Mastodon account!
It's really great to see that Mr. Kelber is active where much of the IT - and especially privacy - community are, instead of only on the big, privacy-violating social networks.

openscore.cc is a project that wants to liberate sheet music from copyright and from paper! They invite and coordinate volunteers to transcribe public domain scans from imslp.org using musescore.org. Should be a great learning experience! 🎼

LIFX smart light can leak your WiFi password (and more):

zdnet.com/article/this-smart-l

– tested with LIFX mini white
– credentials were stored in plaintext within the flash memory
– there is no secure boot, flash encryption, or any attempt to disable JTAG

Also keep in mind that your IP cameras at home can leak your WiFi passwords (and more):

infosec-handbook.eu/blog/camer

#lifx #smartlight #iot #leak #vulnerability #wifi #wlan #infosec #cybersecurity #security

Was excited about this talk almost more than any other at #fosdem.

@ExodusPrivacy@twitter.com is doing amazing work in identifying surveillance patterns in native apps on Android.

And their learnings are set up to be dev-ready, easily used in your own projects.

Donate to support them!

For those of you that use the qutebrowser, what do you do for password management? I like the browser, but I don't like memorizing 250+ different passwords or shooting myself in the foot by having all my accounts have the same password.

Facebook has found a novel way to violate privacy: pay children to install root certificates on their devices.
eff.org/deeplinks/2019/01/what

Are you about to set up a web server for your projects, blog, or website?

Check out our Web server security series:

infosec-handbook.eu/categories

We cover SSH and TLS hardening, HTTP response headers, ModSecurity, Fail2ban, and server-side DNS configuration. There's more to come.

Ideas and feedback are welcome.

#webserver #serversecurity #security #infosec #cybersecurity #server #tls #ocsp #ssh #fail2ban #modsecurity #dns #dnssec

Motherboard: 'Criminals Are Tapping into the Phone Network Backbone to Empty Bank Accounts'

"Motherboard has identified a specific UK bank that has fallen victim to so-called SS7 attacks, and sources say the issue is wider than previously reported."

motherboard.vice.com/en_us/art

Surveillance across the board 

Google :google: announces date of death of consumer Google+:

cloud.google.com/blog/products

– DOD will be April 2, 2019
– Google announced to delete Google+ accounts, pages, photos, videos, and album archive of consumer users
– G Suite users aren't affected
– all Google+ APIs will be shut down in March 2019

#google #googleplus #gsuite #privacy

Breaking: Google has also been found using a shady research app to monitor and analyze user traffic and data, a day after Facebook's app was uncovered to violate Apple's rules.
techcrunch.com/2019/01/30/goog

Can anyone recommend a good, google services free, 2fa application for android.

Preferably it will have a backup option but not needed.

Only FreeOTP+ & andOTP from this list have been updated recently:
fossdroid.com/s.html?q=otp

#PeerTube is a free open alternative to YouTube:

joinpeertube.org/en

It's federated through ActivityPub, so you can follow PeerTube channels on Fediverse sites like Mastodon etc.

It uses peer-to-peer technology so even viral videos won't bring an instance down. The more people watch, the more bandwidth they contribute.

There are several apps:

-#Mastalab ( @tom79 ), also works with Mastodon

-#PeerTubePlayer, on #Fdroid and Play

-#P2Play, under development at @p2play

#AlternativesAtoZ

Holy shit, Facebook is paying teenagers to install a root certificate on their phones so they can snoop on all of their internet traffic

Not a joke, this is actually a thing which is happening right now

techcrunch.com/2019/01/29/face

'I Cut Google Out Of My Life. It Screwed Up Everything'

"The more frequent effect of the Google block though is that the internet itself slows down dramatically for me.

"Most of the websites I visit have frustratingly long load times because so many of them rely on resources from Google... On Airbnb, photos won’t load... Because I’m blocking Google, Dropbox thinks I’m not a real person and won’t let me sign in."

gizmodo.com/i-cut-google-out-o

Show more
Fosstodon

Fosstodon is a Mastodon instance that is open to anyone who is interested in technology; particularly free & open source software.