Mastodawn

Sick.Codes Oct 21, 2024

Free Software Foundation Oct 21, 2024

It sometimes surprises people that the FSF does all its work with only eleven staff members. Well, we are blessed with the support of a crew of fantastic volunteers!

Sick.Codes Aug 11, 2023

Morning brew with Ocean’s 11 protagonist @deviantollam 😎 at the @eff Poker tourney at Horseshoe Vegas... Pokerstars eat your heart out! #defcon

Sick.Codes Jul 18, 2023

Epic livestream happening now with @paulfroberts, @kwiens testifying on “Right to Repair” today in front of the:

House Judiciary Subcommittee on Courts, Intellectual Property, and the Internet

LIVE LINK: https://youtube.com/live/U4rzdXibXC0

@defcon @thedarktangent @fsf @securityledger

Is There a Right to Repair?

YouTube

Sick.Codes Jun 15, 2023

xxdesmus (he/him)Jun 15, 2023

JPL Creates World’s Largest PDF Archive to Aid Malware Research https://www.jpl.nasa.gov/news/jpl-creates-worlds-largest-pdf-archive-to-aid-malware-research

JPL Creates World’s Largest PDF Archive to Aid Malware Research

As part of DARPA’s SafeDocs program, JPL data scientists have amassed 8 million PDFs that can now be used for further study in order to make the internet more secure.

NASA Jet Propulsion Laboratory (JPL)

Sick.Codes Jun 15, 2023

Johannes

Jun 15, 2023

Funny how Binance is not paying out withdrawals and blaming the SEC for it. I’m sure the SEC is actually very interested in learning about an unlicensed securities trading platform also practicing terrible transactional reliability to the financial detriment of their clients 🤔

Sick.Codes Jun 13, 2023

Dan Goodin Jun 13, 2023

Researchers have devised a novel attack that recovers the secret encryption keys stored in smart cards and smartphones by using cameras in iPhones or commercial surveillance systems to video record power LEDs that show when the card reader or smartphone is turned on.

The attacks enable a new way to exploit two previously disclosed side channels, a class of attack that measures physical effects that leak from a device as it performs a cryptographic operation. The first attack uses an Internet-connected surveillance camera to take a high-speed video of the power LED on a smart card reader—or of an attached peripheral device—to pull a 256-bit ECDSA key off a government-approved smartcard. The other allowed the researchers to recover the private SIKE key of a Samsung Galaxy S8 phone by training the camera of an iPhone 13 on the power LED of a USB speaker connected to the handset.

https://arstechnica.com/information-technology/2023/06/hackers-can-steal-cryptographic-keys-by-video-recording-connected-power-leds-60-feet-away/

Hackers can steal cryptographic keys by video-recording power LEDs 60 feet away

Key-leaking side channels are a fact of life. Now they can be done by video-recording power LEDs.

Ars Technica

Sick.Codes Jun 13, 2023

Free Software Foundation Jun 13, 2023

You can now relive LibrePlanet: Charting the Course and catch up on the talks you missed with videos, slides, and audio on GNU MediaGoblin: https://media.libreplanet.org/