syncop @colt@nanao.cybtex.fr

This is @NHSDigital and @WelshGovernment expecting me to change my personal information to suit them, when GDPR actually requires the other way around - I have a *right* to rectification - for them to correct my data. My email *is* fewer than 7 characters, as a matter of fact.

MiroTalk SFU

Free WebRTC - SFU - Simple, Secure, Scalable Real-Time Video Conferences Up to 4k, compatible with all browsers and platforms.

https://github.com/miroslavpejic85/mirotalksfu

Je teste @falco_org@twitter.com et pour la première fois, mon #Kubernetes mine vraiment de crytos 🤣

(référence à mon talk "Ciel ! Mon Kubernetes mine des Bitcoins !" https://blog.zwindler.fr/talks/2022-ciel-kubernetes-mine-bitcoins/index.html)

How long until we're seeing reports of North Korean hackers using deepfake video to pass interviews for jobs they then use to launch insider attacks? Crazy times.

https://www.ic3.gov/Media/Y2022/PSA220628 #dprk #northkorea #ai #deepfake

🇫🇷 FR-ALERT

Le dispositif opérationnel FR-ALERT compléte le Système d'Alerte et d'Informations des Populations.

#france #government #mobile #sms #threats #emergencies #technologies #systems

Interesting move for the Thunderbird email client. It now supports the decentralised chat protocol Matrix, which can be employed for secure transport of any data (via HTTP restful APIs and double-ratchet E2EE with the Olm library). Keen to follow where they take this https://blog.thunderbird.net/2022/06/thunderbird-102-released-a-serious-upgrade-to-your-communication/

Elliptic curves animated.

https://curves.ulfheim.net/

Hacking a sat receiver: We bought a satellite TV receiver for use at CCC Aachen — And another one to hack. Conclusion: It‘s a computer! https://ccc.ac/post/2022-06-17-sat-receiver

Et on termine par un prof d'université qui dit n'importe quoi, par exemple que #ping sert à tester si on peut rentrer dans une machine.

#SouvNum #CyberSécuritay

.@amnesty@twitter.com fuite votre email, votre prénom, votre nom et votre code postal à Facebook lorsque vous vous inscrivez sur son site 😵‍💫 1/

The life of a Windows sysadmin:

• how did you fix it?
• I don't know, I turned some knobs, set random strings in the registry and pulled a few levers, and now it works
• good job

🇫🇷 SSTIC 2022

• Smartphone et forensique : comment attraper Pégasus for fun and non-profit.
• GnuPG memory forensics
• DFIR-IRIS - Plateforme Collaborative de Réponse sur Incident
• Fuzzing Microsoft's RDP Client using Virtual Channels
• La signalisation chez les opérateurs mobiles
• Practical Timing and SEMA on Embedded OpenSSL's ECDSA
• Trumping the Elephant: Fast Side-Channel Key-Recovery Attack against Dumbo
• Attaque et sécurisation d'un schéma d'attestation à distance vérifié formellement
• OASIS : un framework pour la détection d'intrusion embarquée dans les contrôleurs Bluetooth Low Energy
• Ghost in the Wireless, iwlwifi edition
• DroidGuard: A Deep Dive into SafetyNet
• An Apple a Day Keeps the Exploiter Away
• Évolution de la sécurité défensive des réseaux locaux : historique, SD-LAN et micro-segmentation
• AnoMark : Détection d'Anomalies dans des lignes de commande à l'aide de Chaînes de Markov
• TPM is not the holy way
• Mise en quarantaine du navigateur
• SASUSB : protocole sanitaire pour l'USB

#france #cyber #ransomware #databreach #threats #informatique

http://actes.sstic.org/SSTIC22/sstic-2022-actes.pdf

Using 2FA phone numbers for targeted advertising. One of the dumbest ways ever for a company to abuse its users’ trust. Take a bow, Twitter. And have a $150 million fine too.

https://grahamcluley.com/twitter-2fa-phone-number-advertising/

Children were unknowingly forced to pay for their learning with their rights to privacy. Children, parents, teachers were kept in the dark about data surveillance https://www.hrw.org/news/2022/05/25/governments-harm-childrens-rights-online-learning

Serious security vulnerability in Tails 5.0 due to security vulnerability in the JavaScript engine of Firefox and Tor Browser.

how it is affecting Tails:
https://tails.boum.org/security/prototype_pollution/

This vulnerability will be fixed in Tails 5.1 (May 31), but our team doesn't have the capacity to publish an emergency release earlier.

A warning about this security vulnerability is displayed during system start.
By that we make sure all Tails user are well informed.

🏹 Ce document de 138 pages traite de la mise en place d'une stratégie de protection dans le cadre de la guerre de l'information.

#france #cyber #business #threats #infosec #guerre #espionage #informatique

https://www.ege.fr/sites/ege.fr/files/media_files/CyberGIETI.pdf

Some things you're glad you didn't miss on livestream. #HRCC #Hamvention2022

MAIS QU'EST-CE QUE LES GAFAMS PEUVENT ME CASSER LES COUILLES.

Ça fait 30 ans que le mail fonctionne.
Google et Microsoft débarquent: POUF y'a plus rien qui fonctionne.

Ce matin, Thunderbird ne peut plus accéder à ma boite pro Outlook en IMAP. Encore.
Groumpf.