Mastodawn

Marley Aug 15, 2024

Lukasz Olejnik Aug 15, 2024

You can hack a bicycle these days. Actually - the derailleurs on a bike! Security bug of Shimano's (wireless) derailleurs. They can be manipulated remotely, e.g. switch from a high gear immediately to the low gear. https://www.usenix.org/system/files/woot24-motallebighomi.pdf

Marley Jun 13, 2024

Show thread

Danie van der Merwe Jun 13, 2024

@dangillmor @ProPublica I really cannot understand the US government putting any of their data in a Microsoft cloud service. Repeatedly now MS has shown they either don't understand security or just ignore it, but their PR about everything being secure and the "most secure ever" etc should surely by now stop. They may even have the record for being the most insecure tech company over time.

Marley Jun 13, 2024

Dan Gillmor Jun 13, 2024

Microsoft lied through its teeth about the company's culpability in the disastrous Solar Winds breach that gave Russian hackers access to all kinds of info -- including nuclear security -- that was supposedly protected. https://www.propublica.org/article/microsoft-solarwinds-golden-saml-data-breach-russian-hackers

Deep, important report from @ProPublica --

Whistleblower Says Microsoft Dismissed Warnings About a Security Flaw That Russians Later Used to Hack U.S. Government

Former employee says software giant dismissed his warnings about a critical flaw because it feared losing government business. Russian hackers later used the weakness to breach the National Nuclear Security Administration, among others.

ProPublica

Marley May 20, 2024

@protonprivacy

I noticed that #Proton Onion Site seems to be mostly down the last few weeks, either very slow to load or simply timing out the connection. Is this a known issue?