ToriTechMay 7

The final phase of the Mandating Honeypots project is officially live.

It transforms the vulnerability identified in Phase 2 into a local parental control tool that proves digital ID verification isn’t necessary; we can protect children without needing to compromise privacy and data security.

I’m looking forward to hearing the community’s thoughts on this.


GitHub repo here: https://github.com/Tori-Tech/Mandating-Honeypots-Project

@eff
#infosc #privacy #security #tech #ParentsDecideAct #internet

GitHub - Tori-Tech/Mandating-Honeypots-Project: This repository conducts security audits on digital identity verification systems, identifies vulnerabilities through whitepapers and technical POCs, and offers decentralized, privacy-preserving solutions.

This repository conducts security audits on digital identity verification systems, identifies vulnerabilities through whitepapers and technical POCs, and offers decentralized, privacy-preserving so...

GitHub
Kirsty's Old AccountDec 19, 2023
A good explainer of the background to #SSH #security Secure Shell Protocol
and the newly discovered #vulnerability
in @dangoodin’s latest piece
https://arstechnica.com/security/2023/12/hackers-can-break-ssh-channel-integrity-using-novel-data-corruption-attack
#Terrapin #infosc
SSH protects the world’s most sensitive networks. It just got a lot weaker

Novel Terrapin attack uses prefix truncation to downgrade the security of SSH channels.

Ars Technica
slhJul 5, 2020
Detecting and stopping #data #exfiltration via #DNS.
#blueteam #soc #infosc #cybersecurity
https://www.peerlyst.com/posts/ciso-and-soc-guide-detecting-and-stopping-data-exfiltration-via-dns-s-delano
Peerlyst

TarikMay 16, 2018
nice try.. (or not). #infosc #phishing #MailSpoofing
TarikMay 15, 2018
Some notes on eFail https://blog.erratasec.com/2018/05/some-notes-on-efail.html #infosc
Some notes on eFail

I've been busy trying to replicate the "eFail" PGP/SMIME bug. I thought I'd write up some notes. PGP and S/MIME encrypt emails, so that ea...