The Digital First Aid Kit!
The Digital First Aid Kit is a free resource to help rapid responders, digital security trainers, and tech-savvy activists to better protect themselves and the communities they support against the most common types of digital emergencies. It can also be used by activists, human rights defenders, bloggers, journalists or media activists who want to learn more about how they can protect themselves and support others. If you or someone you are assisting is experiencing a digital emergency, the Digital First Aid Kit will guide you in diagnosing the issues you are facing, and refer you to support providers for further help if needed.
👀 👉🏼 https://digitalfirstaid.org/en/index.html
👀 👉🏼 Digital Security Helpline
https://www.accessnow.org/help/
#data #digital #firstaid #security #help #toolkit #guide #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
The Digital First Aid Kit is a free resource to help rapid responders, digital security trainers, and tech-savvy activists to better protect themselves and the communities they support against the most common types of digital emergencies. It can also be used by activists, human rights defenders, bloggers, journalists or media activists who want to learn more about how they can protect themselves and support others. If you or someone you are assisting is experiencing a digital emergency, the Digital First Aid Kit will guide you in diagnosing the issues you are facing, and refer you to support providers for further help if needed.
👀 👉🏼 https://digitalfirstaid.org/en/index.html
👀 👉🏼 Digital Security Helpline
https://www.accessnow.org/help/
#data #digital #firstaid #security #help #toolkit #guide #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Facebook Wanted to Be a Force for Good in Myanmar. Now It Is Rejecting a Request to Help With a Genocide Investigation
Just when it seemed like Facebook’s controversies might have peaked, the company now appears to be obstructing a genocide investigation, and it’s using U.S. law to do it.
The West African nation The Gambia is seeking to hold Myanmar accountable for charges of genocide against the Rohingya people, an ethnic and religious minority. In 2016 and 2017, Myanmar soldiers and their civilian proxies massacred Rohingya men, women and children, raped women and girls and razed villages, forcing more than 800,000 to flee into neighboring Bangladesh.
Facebook’s role in these atrocities isn’t news. In 2018, Facebook acknowledged it was used to “foment division and incite offline violence” in Myanmar, where the social media platform is so ubiquitous it’s often synonymous with the internet. An independent report commissioned by the company documented the same, as did independent fact-finders appointed by the U.N.
In response, Facebook took down the account of the commander-in-chief of the Myanmar military, Senior General Min Aung Hlaing, and other military officials and organizations. In 2018 alone it shut down numerous networks that sought to incite violence against Rohingya, removing 484 pages, 157 accounts, and 17 groups for “coordinated inauthentic behavior.”
To its credit, Facebook preserved the data and content it took down, and the company committed to cleaning up its act. “We know we need to do more to ensure we are a force for good in Myanmar,” a company representative said in an official statement in 2018.
Now, two years later, the company is doing exactly the opposite.
👀 👉🏼 https://time.com/5880118/myanmar-rohingya-genocide-facebook-gambia
#fb #DeleteFacebook #myanmar #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Just when it seemed like Facebook’s controversies might have peaked, the company now appears to be obstructing a genocide investigation, and it’s using U.S. law to do it.
The West African nation The Gambia is seeking to hold Myanmar accountable for charges of genocide against the Rohingya people, an ethnic and religious minority. In 2016 and 2017, Myanmar soldiers and their civilian proxies massacred Rohingya men, women and children, raped women and girls and razed villages, forcing more than 800,000 to flee into neighboring Bangladesh.
Facebook’s role in these atrocities isn’t news. In 2018, Facebook acknowledged it was used to “foment division and incite offline violence” in Myanmar, where the social media platform is so ubiquitous it’s often synonymous with the internet. An independent report commissioned by the company documented the same, as did independent fact-finders appointed by the U.N.
In response, Facebook took down the account of the commander-in-chief of the Myanmar military, Senior General Min Aung Hlaing, and other military officials and organizations. In 2018 alone it shut down numerous networks that sought to incite violence against Rohingya, removing 484 pages, 157 accounts, and 17 groups for “coordinated inauthentic behavior.”
To its credit, Facebook preserved the data and content it took down, and the company committed to cleaning up its act. “We know we need to do more to ensure we are a force for good in Myanmar,” a company representative said in an official statement in 2018.
Now, two years later, the company is doing exactly the opposite.
👀 👉🏼 https://time.com/5880118/myanmar-rohingya-genocide-facebook-gambia
#fb #DeleteFacebook #myanmar #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Time
Facebook Wanted to Be a Force for Good in Myanmar. Now It Is Rejecting a Request to Help With a Genocide Investigation
If Facebook won’t do the right thing now, then Congress should make them
How to stop the onion denial (of service)
As you might have heard, some onion services have been experiencing issues with denial-of-service (DoS) attacks over the past few years.
The attacks exploit the inherent asymmetric nature of the onion service rendezvous protocol, and that makes it a hard problem to defend against. During the rendezvous protocol, an evil client can send a small message to the service while the service has to do lots of expensive work to react to it. This asymmetry opens the protocol to DoS attacks, and the anonymous nature of our network makes it extremely challenging to filter the good clients from the bad.
For the past two years, we've been providing more scaling options to onion service operators, supporting more agile circuit management and protecting the network and the service host from CPU exhaustion. While these don't fix the root problem, they provide a framework to onion service operators to build their own DoS detection and handling infrastructure.
Even though the toolbox of available defenses for onion service operators has grown, the threat of DoS attacks still looms large. And while there is still a bunch of smaller-scale improvements that could be done, we believe that this is not the kind of problem that a parameter tweak or small code change will make it disappear. The inherent nature of the problem makes us believe that we need to make fundamental changes to address it.
In this post, we would like to present you with two options that we believe can provide a long-term defense to the problem while maintaining the usability and security of onion services.
The intuition to keep in mind when considering these designs is that we need to be able to offer different notions of fairness. In today's onion services, each connection request is indistinguishable from all the other requests (it's an anonymity system after all), so the only available fairness strategy is to treat each request equally -- which means that somebody who makes more requests will inherently get more attention.
The alternatives we describe here use two principles to change the balance: (1) the client should have the option to include some new information in its request, which the onion service can use to more intelligently prioritize which requests it answers; and (2) rather than a static requirement in place at all times, we should let onion services scale the defenses based on current load, with the default being to answer everything.
👀 👉🏼 https://blog.torproject.org/stop-the-onion-denial
#tor #onion #DoS #attack
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
As you might have heard, some onion services have been experiencing issues with denial-of-service (DoS) attacks over the past few years.
The attacks exploit the inherent asymmetric nature of the onion service rendezvous protocol, and that makes it a hard problem to defend against. During the rendezvous protocol, an evil client can send a small message to the service while the service has to do lots of expensive work to react to it. This asymmetry opens the protocol to DoS attacks, and the anonymous nature of our network makes it extremely challenging to filter the good clients from the bad.
For the past two years, we've been providing more scaling options to onion service operators, supporting more agile circuit management and protecting the network and the service host from CPU exhaustion. While these don't fix the root problem, they provide a framework to onion service operators to build their own DoS detection and handling infrastructure.
Even though the toolbox of available defenses for onion service operators has grown, the threat of DoS attacks still looms large. And while there is still a bunch of smaller-scale improvements that could be done, we believe that this is not the kind of problem that a parameter tweak or small code change will make it disappear. The inherent nature of the problem makes us believe that we need to make fundamental changes to address it.
In this post, we would like to present you with two options that we believe can provide a long-term defense to the problem while maintaining the usability and security of onion services.
The intuition to keep in mind when considering these designs is that we need to be able to offer different notions of fairness. In today's onion services, each connection request is indistinguishable from all the other requests (it's an anonymity system after all), so the only available fairness strategy is to treat each request equally -- which means that somebody who makes more requests will inherently get more attention.
The alternatives we describe here use two principles to change the balance: (1) the client should have the option to include some new information in its request, which the onion service can use to more intelligently prioritize which requests it answers; and (2) rather than a static requirement in place at all times, we should let onion services scale the defenses based on current load, with the default being to answer everything.
👀 👉🏼 https://blog.torproject.org/stop-the-onion-denial
#tor #onion #DoS #attack
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
blog.torproject.org
How to stop the onion denial (of service) | Tor Project
As you might have heard, some onion services have been experiencing issues with denial-of-service (DoS) attacks over the past few years. In this post, we would like to present you with two options that we believe can provide a long-term defense to the problem…
Episode 6: Synthetic Fraud with Vigilant Eye Inc Founder and Detective…
The AnglerPhish Podcast - Synthetic Fraud with Vigilant Eye Inc Founder and Detective Jesse Gossman (Episode 6)
Synthetic Fraud is the fastest growing financial crime on the planet and accounts for over 80% of all new account fraud. Brett Johnson and Jesse Gossman, Law Enforcement Officer and Founder of Vigilant Eye, sit down to discuss.
🎧 👉🏼 The #AnglerPhish #truecrime #podcast (Episode 6)
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Synthetic Fraud is the fastest growing financial crime on the planet and accounts for over 80% of all new account fraud. Brett Johnson and Jesse Gossman, Law Enforcement Officer and Founder of Vigilant Eye, sit down to discuss.
🎧 👉🏼 The #AnglerPhish #truecrime #podcast (Episode 6)
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
AI Wins Against Humans In Simulated Air To Air Combat In What Air Force Colonel Calls a “Big Blue vs Gary Kasparov” Moment
Hypothetical question: What if future historians consider the big event of 2020 to be the time that AI was proven to be better than humans at Air to Air combat? It has just done that, and this demonstration via simulators will no doubt accelerate AI research in ways that has an impact on a broad range of both military and civilian applications.
First some background: The idea of artificial intelligence engaging in air to air combat is not new. But for as long as I can remember most serious professionals considered it a pipe dream, especially those that wanted a career. This is especially true in the Air Force. Since the Air Force culture is that you must be a pilot to become a senior officer or lead any significant organization, how can you have a service if there are no pilots?
The very few forward thinking military professionals I knew who supported pursuit of concepts of autonomy were not taken seriously. Many were ridiculed. It has been that way for decades. Even after years of advancements in drones and AI and incredible research into the potential of pilotless AI, that remains the dominate view in the Air Force. Academia and some in industry have built simulated AI in the past that humans could not beat, but research like this was discounted by the Air Force. Don’t believe me? Watch the reaction of the audience at the US Air Force at the Air Force Association Air Warfare Symposium on 28 Feb 2020 when Elon Musk tells them that “the fighter jet era has passed, it is drones.” The entire senior leadership of the US Air Force was there. No one cheered. They hemmed, hawed, murmured, laughed.
👀 👉🏼 https://www.oodaloop.com/archive/2020/08/21/ai-wins-against-humans-in-simulated-air-to-air-combat-in-what-air-force-colonel-calls-a-big-blue-vs-gary-kasparov-moment/
#ai #simulation #combat #airforce #bigblue #kasparov
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Hypothetical question: What if future historians consider the big event of 2020 to be the time that AI was proven to be better than humans at Air to Air combat? It has just done that, and this demonstration via simulators will no doubt accelerate AI research in ways that has an impact on a broad range of both military and civilian applications.
First some background: The idea of artificial intelligence engaging in air to air combat is not new. But for as long as I can remember most serious professionals considered it a pipe dream, especially those that wanted a career. This is especially true in the Air Force. Since the Air Force culture is that you must be a pilot to become a senior officer or lead any significant organization, how can you have a service if there are no pilots?
The very few forward thinking military professionals I knew who supported pursuit of concepts of autonomy were not taken seriously. Many were ridiculed. It has been that way for decades. Even after years of advancements in drones and AI and incredible research into the potential of pilotless AI, that remains the dominate view in the Air Force. Academia and some in industry have built simulated AI in the past that humans could not beat, but research like this was discounted by the Air Force. Don’t believe me? Watch the reaction of the audience at the US Air Force at the Air Force Association Air Warfare Symposium on 28 Feb 2020 when Elon Musk tells them that “the fighter jet era has passed, it is drones.” The entire senior leadership of the US Air Force was there. No one cheered. They hemmed, hawed, murmured, laughed.
👀 👉🏼 https://www.oodaloop.com/archive/2020/08/21/ai-wins-against-humans-in-simulated-air-to-air-combat-in-what-air-force-colonel-calls-a-big-blue-vs-gary-kasparov-moment/
#ai #simulation #combat #airforce #bigblue #kasparov
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
OODA Loop
AI Wins Against Humans In Simulated Air To Air Combat In What Air Force Colonel Calls a "Big Blue vs Gary Kasparov" Moment
What if future historians consider the big event of 2020 to be the time that AI was proven to be better than humans at Air to Air combat? It has just done that, and this demonstration via simulators will no doubt accelerate AI research in ways that has an…
Data-Centric Environment Rise of Internet-Based Modern Warfare “iWar” – Survivability, Availability and Accessibility without Geographic Borders
Rise of Internet-Based Modern Warfare ‘iWar’,” addresses a collection of modern security concerns that range from social media attacks and internet-connected devices to a hypothetical defense strategy for private sector entities. This Issue’s first article, noscriptd “Evaluation of Comprehensive Taxonomies for Information Technology Threats” evaluates the different taxonomies of cyber-physical threats and their associated impact on mission capabilities. The second offering identifies a number of social media cyber-attacks as well as solution-based platforms to ascertain whether malicious activity has occurred.
This Issue’s third article investigates the performance of several binary classifiers and their ability to distinguish between non-verified and verified tweets based on the age of training data, under the noscript “Times Change and Your Training Data Should Too: The Effect of Training Data Recency on Twitter Classifiers.” The final article in this Issue, noscriptd “Rebooting Letters of Marque for Private Sector Active Cyber Defense,” discusses a modern interpretation of a Constitutional Clause to allow the private sector to defend themselves outside of their network borders.
👀 👉🏼 PDF:
https://www.csiac.org/wp-content/uploads/2020/03/CSIAC_Journal_V7N4_hv5.pdf
👀 👉🏼 https://www.csiac.org/journal-issue/data-centric-environment/
#iWar #security #cyber #threats #malicious #attacks #csiac #pdf
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Rise of Internet-Based Modern Warfare ‘iWar’,” addresses a collection of modern security concerns that range from social media attacks and internet-connected devices to a hypothetical defense strategy for private sector entities. This Issue’s first article, noscriptd “Evaluation of Comprehensive Taxonomies for Information Technology Threats” evaluates the different taxonomies of cyber-physical threats and their associated impact on mission capabilities. The second offering identifies a number of social media cyber-attacks as well as solution-based platforms to ascertain whether malicious activity has occurred.
This Issue’s third article investigates the performance of several binary classifiers and their ability to distinguish between non-verified and verified tweets based on the age of training data, under the noscript “Times Change and Your Training Data Should Too: The Effect of Training Data Recency on Twitter Classifiers.” The final article in this Issue, noscriptd “Rebooting Letters of Marque for Private Sector Active Cyber Defense,” discusses a modern interpretation of a Constitutional Clause to allow the private sector to defend themselves outside of their network borders.
👀 👉🏼 PDF:
https://www.csiac.org/wp-content/uploads/2020/03/CSIAC_Journal_V7N4_hv5.pdf
👀 👉🏼 https://www.csiac.org/journal-issue/data-centric-environment/
#iWar #security #cyber #threats #malicious #attacks #csiac #pdf
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
How Four Brothers Allegedly Fleeced $19 Million From Amazon
The scheme involved 7,000 $94 toothbrushes, according to law enforcement.
Over the course of two years, four brothers in New York allegedly swindled Amazon out of at least $19 million using thousands of $94 toothbrushes and other expensive goods, according to a Department of Justice indictment unsealed Wednesday. Federal prosecutors accused Yoel Abraham, Heshl Abraham, Zishe Abraham, and Shmuel Abraham of invoicing Amazon for a large number of products the company never ordered. The defendants allegedly discussed their gimmick openly in a family WhatsApp group. In one message from May 2018, the indictment says, Yoel wrote that he was “so in the mood to fuck Amazon.”
All four brothers, who were arrested Wednesday, are accused of using wholesale businesses they opened to engage in a scam called “overshipping.” It works by intentionally sending a company more goods than it ordered and billing for it. On Amazon, every product is given a unique identifier, a string of numbers called an Amazon Standard Identification Number. They are part of an item’s listing in Amazon’s catalog. Vendors have the ability to change listings, to make sure things like product denoscriptions are accurate.
According to the indictment, the brothers swapped ASINs for items Amazon ordered to send large quantities of different goods instead. In one instance, Amazon ordered 12 canisters of disinfectant spray costing $94.03. The defendants allegedly shipped 7,000 toothbrushes costing $94.03 each, using the code for the disinfectant spray, and later billed Amazon for over $650,000.
In another instance, Amazon ordered a single bottle of designer perfume for $289.78. In response, according to the indictment, the defendants sent 927 plastic beard trimmers costing $289.79 each, using the ASIN for the perfume. Prosecutors say the brothers frequently shipped and charged Amazon for more than 10,000 units of an item when it had requested fewer than 100. Once Amazon detected the fraud and shut down their accounts, the brothers allegedly tried to open new ones using fake names, different email addresses, and VPNs to obscure their identity. “Open account under dummy names and they can go look for no one,” Yoel allegedly wrote on WhatsApp in the fall of 2018.
“The use of complex technology did not hide the simple fact that the defendants were bilking Amazon for goods they never provided. The more our economic life moves online, the more we must ensure the integrity of our digital markets, which my office is committed to doing,” Audrey Strauss, the acting US attorney for Manhattan, said in a press release. The defendants are each charged with conspiracy to commit wire fraud, wire fraud, and money laundering. Lawyers representing Yoel Abraham and Zishe Abraham did not immediately respond to requests for comment.
👀 👉🏼 https://www.wired.com/story/how-four-brothers-allegedly-fleeced-19-million-amazon/
#DeleteAmazon #amazon #scam
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
The scheme involved 7,000 $94 toothbrushes, according to law enforcement.
Over the course of two years, four brothers in New York allegedly swindled Amazon out of at least $19 million using thousands of $94 toothbrushes and other expensive goods, according to a Department of Justice indictment unsealed Wednesday. Federal prosecutors accused Yoel Abraham, Heshl Abraham, Zishe Abraham, and Shmuel Abraham of invoicing Amazon for a large number of products the company never ordered. The defendants allegedly discussed their gimmick openly in a family WhatsApp group. In one message from May 2018, the indictment says, Yoel wrote that he was “so in the mood to fuck Amazon.”
All four brothers, who were arrested Wednesday, are accused of using wholesale businesses they opened to engage in a scam called “overshipping.” It works by intentionally sending a company more goods than it ordered and billing for it. On Amazon, every product is given a unique identifier, a string of numbers called an Amazon Standard Identification Number. They are part of an item’s listing in Amazon’s catalog. Vendors have the ability to change listings, to make sure things like product denoscriptions are accurate.
According to the indictment, the brothers swapped ASINs for items Amazon ordered to send large quantities of different goods instead. In one instance, Amazon ordered 12 canisters of disinfectant spray costing $94.03. The defendants allegedly shipped 7,000 toothbrushes costing $94.03 each, using the code for the disinfectant spray, and later billed Amazon for over $650,000.
In another instance, Amazon ordered a single bottle of designer perfume for $289.78. In response, according to the indictment, the defendants sent 927 plastic beard trimmers costing $289.79 each, using the ASIN for the perfume. Prosecutors say the brothers frequently shipped and charged Amazon for more than 10,000 units of an item when it had requested fewer than 100. Once Amazon detected the fraud and shut down their accounts, the brothers allegedly tried to open new ones using fake names, different email addresses, and VPNs to obscure their identity. “Open account under dummy names and they can go look for no one,” Yoel allegedly wrote on WhatsApp in the fall of 2018.
“The use of complex technology did not hide the simple fact that the defendants were bilking Amazon for goods they never provided. The more our economic life moves online, the more we must ensure the integrity of our digital markets, which my office is committed to doing,” Audrey Strauss, the acting US attorney for Manhattan, said in a press release. The defendants are each charged with conspiracy to commit wire fraud, wire fraud, and money laundering. Lawyers representing Yoel Abraham and Zishe Abraham did not immediately respond to requests for comment.
👀 👉🏼 https://www.wired.com/story/how-four-brothers-allegedly-fleeced-19-million-amazon/
#DeleteAmazon #amazon #scam
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Wired
How Four Brothers Allegedly Fleeced $19 Million From Amazon
The scheme involved 7,000 $94 toothbrushes, according to law enforcement.
Blackstone to acquire Ancestry.com for $4.7 billion
Blackstone Group Inc BX.N said on Wednesday it agreed to acquire genealogy provider Ancestry.com Inc from private equity rivals for $4.7 billion, including debt, placing a big bet on family-tree chasing as well as personalized medicine.
Ancestry.com is the world’s largest provider of DNA services, allowing customers to trace their genealogy and identify genetic health risks with tests sent to their home.
Blackstone is hoping that more consumers staying at home amid the COVID-19 pandemic will turn to Ancestry.com for its services.
“We believe Ancestry has significant runway for further growth as people of all ages and backgrounds become increasingly interested in learning more about their family histories and themselves,” David Kestnbaum, a Blackstone senior managing director, said in a statement.
The deal is Blackstone’s first acquisition out of Blackstone Capital Partners VIII, the largest-ever private equity fund that raised $26 billion from investors last year.
Ancestry.com has more than 3 million paying customers in about 30 countries, and earns more than $1 billion in annual revenue. Launched in 1996 as a family history website, it harnessed advances in DNA testing and mobile phone apps in the following two decades to expand its offerings.
Blackstone is buying Ancestry.com from private equity firms Silver Lake, Spectrum Equity and Permira. Singapore’s sovereign wealth fund GIC, another Ancestry.com investor, said it will continue to maintain a significant minority stake in the company.
👀 👉🏼 https://www.reuters.com/article/us-ancestry-m-a-blackstonegroup-idUSKBN25K0R4
#blackstone #ancestry #dna
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Blackstone Group Inc BX.N said on Wednesday it agreed to acquire genealogy provider Ancestry.com Inc from private equity rivals for $4.7 billion, including debt, placing a big bet on family-tree chasing as well as personalized medicine.
Ancestry.com is the world’s largest provider of DNA services, allowing customers to trace their genealogy and identify genetic health risks with tests sent to their home.
Blackstone is hoping that more consumers staying at home amid the COVID-19 pandemic will turn to Ancestry.com for its services.
“We believe Ancestry has significant runway for further growth as people of all ages and backgrounds become increasingly interested in learning more about their family histories and themselves,” David Kestnbaum, a Blackstone senior managing director, said in a statement.
The deal is Blackstone’s first acquisition out of Blackstone Capital Partners VIII, the largest-ever private equity fund that raised $26 billion from investors last year.
Ancestry.com has more than 3 million paying customers in about 30 countries, and earns more than $1 billion in annual revenue. Launched in 1996 as a family history website, it harnessed advances in DNA testing and mobile phone apps in the following two decades to expand its offerings.
Blackstone is buying Ancestry.com from private equity firms Silver Lake, Spectrum Equity and Permira. Singapore’s sovereign wealth fund GIC, another Ancestry.com investor, said it will continue to maintain a significant minority stake in the company.
👀 👉🏼 https://www.reuters.com/article/us-ancestry-m-a-blackstonegroup-idUSKBN25K0R4
#blackstone #ancestry #dna
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
U.S.
Blackstone to acquire Ancestry.com for $4.7 billion
Blackstone Group Inc BX.N said on Wednesday it agreed to acquire genealogy provider Ancestry.com Inc from private equity rivals for $4.7 billion, including debt, placing a big bet on family-tree chasing as well as personalized medicine.
Why we are suing the Administration
Today we are filing a complaint in federal court challenging the Administration's efforts to ban TikTok in the US. As a company we have always focused on transparency, so we want to explain why we are taking this step.
Over the past few years, people of all backgrounds have embraced the TikTok community. Today, 100 million Americans turn to TikTok for entertainment, inspiration, and connection; countless creators rely on our platform to express their creativity, reach broad audiences, and generate income; our more than 1,500 employees across the US pour their hearts into building this platform every day, with 10,000 more jobs planned in California, Texas, New York, Tennessee, Florida, Michigan, Illinois, and Washington State; and many of the country's leading brands are on TikTok to connect with consumers more authentically and directly than they can elsewhere.
Put simply, we have a thriving community and we are grateful – and responsible – to them.
The Executive Order issued by the Administration on August 6, 2020 has the potential to strip the rights of that community without any evidence to justify such an extreme action, and without any due process. We strongly disagree with the Administration's position that TikTok is a national security threat and we have articulated these objections previously.
Now is the time for us to act. We do not take suing the government lightly, however we feel we have no choice but to take action to protect our rights, and the rights of our community and employees.
👀 👉🏼 🇬🇧 https://newsroom.tiktok.com/en-us/tiktok-files-lawsuit
👀 👉🏼 🇩🇪 https://t3n.de/news/tiktok-verklagt-trump-regierung-1315426
#DeleteTikTok #ToddlerTrump #trump #BanTikTok
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Today we are filing a complaint in federal court challenging the Administration's efforts to ban TikTok in the US. As a company we have always focused on transparency, so we want to explain why we are taking this step.
Over the past few years, people of all backgrounds have embraced the TikTok community. Today, 100 million Americans turn to TikTok for entertainment, inspiration, and connection; countless creators rely on our platform to express their creativity, reach broad audiences, and generate income; our more than 1,500 employees across the US pour their hearts into building this platform every day, with 10,000 more jobs planned in California, Texas, New York, Tennessee, Florida, Michigan, Illinois, and Washington State; and many of the country's leading brands are on TikTok to connect with consumers more authentically and directly than they can elsewhere.
Put simply, we have a thriving community and we are grateful – and responsible – to them.
The Executive Order issued by the Administration on August 6, 2020 has the potential to strip the rights of that community without any evidence to justify such an extreme action, and without any due process. We strongly disagree with the Administration's position that TikTok is a national security threat and we have articulated these objections previously.
Now is the time for us to act. We do not take suing the government lightly, however we feel we have no choice but to take action to protect our rights, and the rights of our community and employees.
👀 👉🏼 🇬🇧 https://newsroom.tiktok.com/en-us/tiktok-files-lawsuit
👀 👉🏼 🇩🇪 https://t3n.de/news/tiktok-verklagt-trump-regierung-1315426
#DeleteTikTok #ToddlerTrump #trump #BanTikTok
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Newsroom | TikTok
Why we are suing the Administration
Today we are filing a complaint in federal court challenging the Administration's efforts to ban TikTok in the US. As a company we have always focused on transparency, so we want to explain why we are
Popular torrenting site YTS provides IP address logs to copyright lawyers to extort you with
The second largest torrent site in the world, YTS, is actively working with copyright infringement lawyers to extort cash from torrent downloaders. This isn’t the only historical instance of a torrent site storing IP addresses to be used against torrenters but it is a confirmation of a disturbing new precedent which may stand on shaky legal ground.
In the past, torrent sites like The Pirate Bay (TPB) have stored IP addresses and even given them up as a way to pinpoint original uploaders of certain torrents. There have also been instances where YTS has given up logs in court for ongoing cases against downloaders. 👉🏼 The most recent revelation, though, is that YTS is also giving these logs to the Culpepper law firm in Hawaii so that Culpepper can send “Pay-Up-Or-Else Threats” to those that have used YTS, before a case is even filed. 👈🏼
That’s right… This time around, YTS is giving up the IP addresses and emails of downloaders to a copyright infringement lawyer who then turns around and tries to extort torrenters for cash settlements. TorrentFreak has been covering these revelations from YTS as part of an ongoing copyright infringement case against a US veteran. Now, TorrentFreak has seen a letter which confirms that torrenters using YTS are being caught up by what TorrentFreak calls “the most extraordinary business/legal arrangement ever witnessed in the piracy scene.” YTS provides the logs to Culpepper, who then sends the YTS user a threat of a case which can be settled for around $1,000.
👀 👉🏼 https://www.privateinternetaccess.com/blog/popular-torrenting-site-yts-provides-ip-address-logs-to-copyright-lawyers-to-extort-you-with/
#yts #torrenting #copyright #lawyers
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
The second largest torrent site in the world, YTS, is actively working with copyright infringement lawyers to extort cash from torrent downloaders. This isn’t the only historical instance of a torrent site storing IP addresses to be used against torrenters but it is a confirmation of a disturbing new precedent which may stand on shaky legal ground.
In the past, torrent sites like The Pirate Bay (TPB) have stored IP addresses and even given them up as a way to pinpoint original uploaders of certain torrents. There have also been instances where YTS has given up logs in court for ongoing cases against downloaders. 👉🏼 The most recent revelation, though, is that YTS is also giving these logs to the Culpepper law firm in Hawaii so that Culpepper can send “Pay-Up-Or-Else Threats” to those that have used YTS, before a case is even filed. 👈🏼
That’s right… This time around, YTS is giving up the IP addresses and emails of downloaders to a copyright infringement lawyer who then turns around and tries to extort torrenters for cash settlements. TorrentFreak has been covering these revelations from YTS as part of an ongoing copyright infringement case against a US veteran. Now, TorrentFreak has seen a letter which confirms that torrenters using YTS are being caught up by what TorrentFreak calls “the most extraordinary business/legal arrangement ever witnessed in the piracy scene.” YTS provides the logs to Culpepper, who then sends the YTS user a threat of a case which can be settled for around $1,000.
👀 👉🏼 https://www.privateinternetaccess.com/blog/popular-torrenting-site-yts-provides-ip-address-logs-to-copyright-lawyers-to-extort-you-with/
#yts #torrenting #copyright #lawyers
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Russian-backed organizations amplifying QAnon conspiracy theories, researchers say
Russian government-supported organizations are playing a small but increasing role amplifying conspiracy theories promoted by QAnon, raising concerns of interference in the November U.S. election.
Academics who study QAnon said there were no signs Russia had a hand in the early days of the movement, which launched in 2017 with anonymous web postings amplified by YouTube videos.
But as QAnon gained adherents and took on new topics - with President Donald Trump as the constant hero waging a misunderstood battle - social media accounts tied to a key Kremlin ally joined in.
In 2019, accounts removed by Twitter and suspected of being controlled by the Internet Research Agency sent a high volume of tweets tagged with #QAnon and the movement slogan #WWG1WGA, short for Where We Go One, We Go All, said Melanie Smith, head of analysis at social media analysis firm Graphika. The IRA was indicted by Robert Mueller in his election interference prosecution.
More recently, Russian government-backed media RT.com and Sputnik have stepped up coverage of QAnon, which began with a false proclamation Hillary Clinton would be arrested for an undetermined reason and now includes theories about child trafficking by Hollywood elites, the novel coronavirus and more.
Alethea Group disinformation expert Cindy Otis, a former CIA analyst, said RT, Sputnik and other Kremlin-backed media have been writing more about QAnon, using it to fit into their broader narrative of: “The U.S. is falling apart, look how much division there is.”
👀 👉🏼 https://www.reuters.com/article/us-usa-election-qanon-russia/small-but-growing-russian-support-for-qanon-conspiracies-seen-online-idUSKBN25K13T
#usa #russia #election #qanon #conspiracies #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Russian government-supported organizations are playing a small but increasing role amplifying conspiracy theories promoted by QAnon, raising concerns of interference in the November U.S. election.
Academics who study QAnon said there were no signs Russia had a hand in the early days of the movement, which launched in 2017 with anonymous web postings amplified by YouTube videos.
But as QAnon gained adherents and took on new topics - with President Donald Trump as the constant hero waging a misunderstood battle - social media accounts tied to a key Kremlin ally joined in.
In 2019, accounts removed by Twitter and suspected of being controlled by the Internet Research Agency sent a high volume of tweets tagged with #QAnon and the movement slogan #WWG1WGA, short for Where We Go One, We Go All, said Melanie Smith, head of analysis at social media analysis firm Graphika. The IRA was indicted by Robert Mueller in his election interference prosecution.
More recently, Russian government-backed media RT.com and Sputnik have stepped up coverage of QAnon, which began with a false proclamation Hillary Clinton would be arrested for an undetermined reason and now includes theories about child trafficking by Hollywood elites, the novel coronavirus and more.
Alethea Group disinformation expert Cindy Otis, a former CIA analyst, said RT, Sputnik and other Kremlin-backed media have been writing more about QAnon, using it to fit into their broader narrative of: “The U.S. is falling apart, look how much division there is.”
👀 👉🏼 https://www.reuters.com/article/us-usa-election-qanon-russia/small-but-growing-russian-support-for-qanon-conspiracies-seen-online-idUSKBN25K13T
#usa #russia #election #qanon #conspiracies #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Reuters
Russian-backed organizations amplifying QAnon conspiracy theories, researchers say
SAN FRANCISCO (Reuters) - Russian government-supported organizations are playing a small but increasing role amplifying conspiracy theories promoted by QAnon, raising concerns of interference in the November U.S. election.
A clean start for the web
The web is in need of some reinvention right now.
The web’s evolution over the last decade has mirrored the American economy. All of the essential indicators are going “up and to the right,” a steady stream of fundamental advances reassure use that there “is progress,” but the actual experience and effects for individuals stagnates or regresses.
The crisis affects platforms, creators, and consumers alike.
I’m going to try and dissect and diagnose this situation, a bit. You can skip forward if you just want to read my casual, unprofessional pitch for a reboot of the web. The idea is that we could choose a new lightweight markdown format to replace HTML & CSS, split the web into documents and applications, and find performance, accessibility, and fun again.
This post uses the pedantic definition of "the web"
I've discussed attempts to reinvent the "Internet" a few times. Things like dat, IPFS, and arweave are all projects to reinvent an Internet, or a transport and data-sharing layer. The web is what lies on top of that, the HTML, CSS, URLs, JavaScript, browsing experience.
The platform collapse
The platform side is what changed last week, when Mozilla laid off 250 employees and indicated that it would affect Firefox development. Firefox wasn’t the #2 browser - that’s Safari, mainly because of the captive audience of iPhone and iPad users. But it was the most popular browser that people chose to use.
👀 👉🏼 https://macwright.com/2020/08/22/clean-starts-for-the-web.html
#reset #clean #web #internet #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
The web is in need of some reinvention right now.
The web’s evolution over the last decade has mirrored the American economy. All of the essential indicators are going “up and to the right,” a steady stream of fundamental advances reassure use that there “is progress,” but the actual experience and effects for individuals stagnates or regresses.
The crisis affects platforms, creators, and consumers alike.
I’m going to try and dissect and diagnose this situation, a bit. You can skip forward if you just want to read my casual, unprofessional pitch for a reboot of the web. The idea is that we could choose a new lightweight markdown format to replace HTML & CSS, split the web into documents and applications, and find performance, accessibility, and fun again.
This post uses the pedantic definition of "the web"
I've discussed attempts to reinvent the "Internet" a few times. Things like dat, IPFS, and arweave are all projects to reinvent an Internet, or a transport and data-sharing layer. The web is what lies on top of that, the HTML, CSS, URLs, JavaScript, browsing experience.
The platform collapse
The platform side is what changed last week, when Mozilla laid off 250 employees and indicated that it would affect Firefox development. Firefox wasn’t the #2 browser - that’s Safari, mainly because of the captive audience of iPhone and iPad users. But it was the most popular browser that people chose to use.
👀 👉🏼 https://macwright.com/2020/08/22/clean-starts-for-the-web.html
#reset #clean #web #internet #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
macwright.com
A clean start for the web
Daydreaming a post-HTML Utopia
Audio
All Your Data Are Belong to Us
You’ve heard the expression, “When something is free, you’re the product.” And, while you may think it’s no big deal to give away your personal data in exchange for free online services, how can you know that what you get for what you give is a fair trade? Show Notes
🎧 👉🏼 https://irlpodcast.org/season1/
#irlpodcast #podcast
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
You’ve heard the expression, “When something is free, you’re the product.” And, while you may think it’s no big deal to give away your personal data in exchange for free online services, how can you know that what you get for what you give is a fair trade? Show Notes
🎧 👉🏼 https://irlpodcast.org/season1/
#irlpodcast #podcast
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Malware Injected Into Xcode Projects Could Infiltrate Mac App Store
Last week, we reported on a severe new kind of Mac malware that has been found to infect via Xcode, discovered by security researchers at Trend Micro.
In an exclusive interview with #MacRumors, the security researchers behind the discovery, Oleksandr Shatkivskyi and Vlad Felenuik, have provided more information about their research.
The malware, which is part of the XCSSET family, is "an unusual infection" that is injected into Xcode projects. When the project is built, the malicious code is run. This can lead to "a rabbit hole of malicious payloads," and poses a significant risk to Mac users.
Specifically, the malware was found to be capable of abusing Safari and other browsers to steal data. It can use a vulnerability to read and dump cookies, create backdoors in JavaScript, and in turn modify displayed websites, steal private banking information and passwords, and block password changes. It was also found to be able to steal information from apps such as Evernote, Notes, Skype, Telegram, QQ, and WeChat, take screenshots, upload files to the attacker's specified server, encrypt files, and display a ransom note.
Shatkivskyi and Felenuik told MacRumors that they believe the XCSSET malware will become extremely common among bad actors who seek to exploit Mac systems. The malware is particularly dangerous because verification methods, such as checking hashes, would not identify infection. It was found to be present in projects shared on GitHub. This means that developers who rely on repositories could face a supply-chain attack and be unaware that their project has become infected.
Xcode projects infected with the malware can create maliciously modified applications, unbeknownst to the developers who make the apps, and may then distribute them as trojans. Shatkivskyi and Felenuik believe that the Mac App Store review team will be largely unable to detect apps that contain the XCSSET malware. "As an #iOS developer I know how easy it is to fool them and release an app with hidden features," Shatkivskyi said.
Shatkivskyi and Felenuik first approached Apple about the issue as early as December 2019, and they hope that Apple will be decisive and swift in its response to resolving the vulnerability. They suggest that Apple could implement privacy notifications, the likes of which came to iOS 14 and iPadOS 14, to alert Mac users when the malware is active on their systems, in an effort to explicitly alert users to a potential breach.
👀 👉🏼 https://www.macrumors.com/2020/08/24/xcode-malware-infiltrate-app-store/
#XCSSET #xcode #malware #apple #appstore
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Last week, we reported on a severe new kind of Mac malware that has been found to infect via Xcode, discovered by security researchers at Trend Micro.
In an exclusive interview with #MacRumors, the security researchers behind the discovery, Oleksandr Shatkivskyi and Vlad Felenuik, have provided more information about their research.
The malware, which is part of the XCSSET family, is "an unusual infection" that is injected into Xcode projects. When the project is built, the malicious code is run. This can lead to "a rabbit hole of malicious payloads," and poses a significant risk to Mac users.
Specifically, the malware was found to be capable of abusing Safari and other browsers to steal data. It can use a vulnerability to read and dump cookies, create backdoors in JavaScript, and in turn modify displayed websites, steal private banking information and passwords, and block password changes. It was also found to be able to steal information from apps such as Evernote, Notes, Skype, Telegram, QQ, and WeChat, take screenshots, upload files to the attacker's specified server, encrypt files, and display a ransom note.
Shatkivskyi and Felenuik told MacRumors that they believe the XCSSET malware will become extremely common among bad actors who seek to exploit Mac systems. The malware is particularly dangerous because verification methods, such as checking hashes, would not identify infection. It was found to be present in projects shared on GitHub. This means that developers who rely on repositories could face a supply-chain attack and be unaware that their project has become infected.
Xcode projects infected with the malware can create maliciously modified applications, unbeknownst to the developers who make the apps, and may then distribute them as trojans. Shatkivskyi and Felenuik believe that the Mac App Store review team will be largely unable to detect apps that contain the XCSSET malware. "As an #iOS developer I know how easy it is to fool them and release an app with hidden features," Shatkivskyi said.
Shatkivskyi and Felenuik first approached Apple about the issue as early as December 2019, and they hope that Apple will be decisive and swift in its response to resolving the vulnerability. They suggest that Apple could implement privacy notifications, the likes of which came to iOS 14 and iPadOS 14, to alert Mac users when the malware is active on their systems, in an effort to explicitly alert users to a potential breach.
👀 👉🏼 https://www.macrumors.com/2020/08/24/xcode-malware-infiltrate-app-store/
#XCSSET #xcode #malware #apple #appstore
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
MacRumors
Malware Injected Into Xcode Projects Could Infiltrate Mac App Store
Last week, we reported on a severe new kind of Mac malware that has been found to infect via Xcode, discovered by security researchers at Trend...
Numbers, please! 3.5 billion inhabitants - a database of all cities in the world
Researchers have created a database of all cities in the world. This makes it possible to compare what is otherwise not comparable and shows an exciting picture of the world.
In 2015, more than 3.5 billion (or exactly 3,535,326,299) people lived in cities with at least 50,000 inhabitants, which was 48 percent of the entire human population. Of these cities, there were 13,135 five years ago, by far the most in India (3229), ahead of China (1844), Ethiopia (553) and Nigeria (480). Only 40 years earlier, only 1.8 billion people (43 percent) had lived in cities of this size. The largest cities in the world in 2015 were Guangzhou (40.5 million), Jakarta (36.3 million), Tokyo (33 million), Delhi and Shanghai, in that order. Dortmund (better, the Ruhr area) follows in 118th place with 3.4 million inhabitants as Germany's largest city and here at the latest it should become clear that these figures are somewhat different.
👀 👉🏼 https://public.tableau.com/profile/martin.holland#!/vizhome/CitiesOfTheWorld-Population
👀 👉🏼 https://ec.europa.eu/jrc/en/publication/eur-scientific-and-technical-research-reports/atlas-human-planet-2018
👀 👉🏼 🇩🇪 https://www.heise.de/hintergrund/Zahlen-bitte-3-5-Milliarden-Einwohner-eine-Datenbank-aller-Staedte-der-Welt-4861541.html
#numbers #scientific #research #atlas #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Researchers have created a database of all cities in the world. This makes it possible to compare what is otherwise not comparable and shows an exciting picture of the world.
In 2015, more than 3.5 billion (or exactly 3,535,326,299) people lived in cities with at least 50,000 inhabitants, which was 48 percent of the entire human population. Of these cities, there were 13,135 five years ago, by far the most in India (3229), ahead of China (1844), Ethiopia (553) and Nigeria (480). Only 40 years earlier, only 1.8 billion people (43 percent) had lived in cities of this size. The largest cities in the world in 2015 were Guangzhou (40.5 million), Jakarta (36.3 million), Tokyo (33 million), Delhi and Shanghai, in that order. Dortmund (better, the Ruhr area) follows in 118th place with 3.4 million inhabitants as Germany's largest city and here at the latest it should become clear that these figures are somewhat different.
👀 👉🏼 https://public.tableau.com/profile/martin.holland#!/vizhome/CitiesOfTheWorld-Population
👀 👉🏼 https://ec.europa.eu/jrc/en/publication/eur-scientific-and-technical-research-reports/atlas-human-planet-2018
👀 👉🏼 🇩🇪 https://www.heise.de/hintergrund/Zahlen-bitte-3-5-Milliarden-Einwohner-eine-Datenbank-aller-Staedte-der-Welt-4861541.html
#numbers #scientific #research #atlas #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Tableau Public
Martin Holland - Profile | Tableau Public
Martin Holland's Tableau Public profile. View interactive data visualizations published by this author.
Firefox Daylight for Android arrives with Enhanced Tracking Protection, new UI, and GeckoView
After more than a year of development, Mozilla today launched Firefox 79 for Android, branded Firefox Daylight. Like Firefox 57 Quantum, Firefox Daylight gets its own name as it marks “a new beginning for our Android browser.” The new version is “an entirely overhauled, faster, and more convenient product.” Firefox Daylight includes Enhanced Tracking Protection on by default, a new user interface, Mozilla’s own mobile browser engine GeckoView, and a slew of new features. Mozilla is rolling out the new Firefox for Android globally, starting in Germany, France, and the U.K. today and in North America from August 27.
Firefox has about 200 million active users, according to Mozilla, making it a major platform for web developers to consider. But that number has been steadily falling over the years. Furthermore, on mobile, where users are less likely to change their default browser, Firefox holds less than 1% market share, according to Net Applications. That’s why the company decided to hit reset on its Android browser.
The launch comes at a difficult time for Mozilla, which earlier this month announced layoffs of about 250 employees. We spoke with Mozilla senior product manager Vesta Zare about the Firefox Daylight launch. “I wouldn’t say it was impacted that much by the layoffs, but of course everyone was impacted,” Zare said. “But I do want to stress that this remains a priority, a high area of focus for us, especially on mobile.”
👀 👉🏼 https://venturebeat.com/2020/08/25/firefox-daylight-android-enhanced-tracking-protection-geckoview/
#mozilla #firefox #GeckoView #browser #android #tracking #protection
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
After more than a year of development, Mozilla today launched Firefox 79 for Android, branded Firefox Daylight. Like Firefox 57 Quantum, Firefox Daylight gets its own name as it marks “a new beginning for our Android browser.” The new version is “an entirely overhauled, faster, and more convenient product.” Firefox Daylight includes Enhanced Tracking Protection on by default, a new user interface, Mozilla’s own mobile browser engine GeckoView, and a slew of new features. Mozilla is rolling out the new Firefox for Android globally, starting in Germany, France, and the U.K. today and in North America from August 27.
Firefox has about 200 million active users, according to Mozilla, making it a major platform for web developers to consider. But that number has been steadily falling over the years. Furthermore, on mobile, where users are less likely to change their default browser, Firefox holds less than 1% market share, according to Net Applications. That’s why the company decided to hit reset on its Android browser.
The launch comes at a difficult time for Mozilla, which earlier this month announced layoffs of about 250 employees. We spoke with Mozilla senior product manager Vesta Zare about the Firefox Daylight launch. “I wouldn’t say it was impacted that much by the layoffs, but of course everyone was impacted,” Zare said. “But I do want to stress that this remains a priority, a high area of focus for us, especially on mobile.”
👀 👉🏼 https://venturebeat.com/2020/08/25/firefox-daylight-android-enhanced-tracking-protection-geckoview/
#mozilla #firefox #GeckoView #browser #android #tracking #protection
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
VentureBeat
Firefox Daylight for Android arrives with Enhanced Tracking Protection, new UI, and GeckoView
Firefox Daylight for Android includes Enhanced Tracking Protection on by default, a new user interface, GeckoView, and a slew of new features.
Kindle Collects a Surprisingly Large Amount of Data
Turns out, Kindle Collects a Ton of Data
The Kindle sends device information, usage metadata, and details about every interaction with the device (or app) while it's being used. All of this is linked directly to the reader account.
Opening the app, reading a book, flipping through a few pages, then closing the book sends over 100 requests to Amazon servers.
👀 👉🏼 https://nullsweep.com/kindle-collects-a-surprisingly-large-amount-of-data/
#kindle #surveillance #data #collection #amazon #DeleteAmazon #thinkabout #poc
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Turns out, Kindle Collects a Ton of Data
The Kindle sends device information, usage metadata, and details about every interaction with the device (or app) while it's being used. All of this is linked directly to the reader account.
Opening the app, reading a book, flipping through a few pages, then closing the book sends over 100 requests to Amazon servers.
👀 👉🏼 https://nullsweep.com/kindle-collects-a-surprisingly-large-amount-of-data/
#kindle #surveillance #data #collection #amazon #DeleteAmazon #thinkabout #poc
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
72: Bangladesh Bank Heist
Bangladesh Bank Heist - Darknet Diaries
This story is about a bank robbery with the objective to steal 1 billion dollars. Which makes this the largest bank robbery in history. And it was all done over a computer.
🎧 👉🏼 https://darknetdiaries.com/episode/72/
#darknetdiaries #podcast
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
This story is about a bank robbery with the objective to steal 1 billion dollars. Which makes this the largest bank robbery in history. And it was all done over a computer.
🎧 👉🏼 https://darknetdiaries.com/episode/72/
#darknetdiaries #podcast
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Episode 14: Women in Cybersecurity 1 - The Story of Mia Greene
The AnglerPhish Podcast - Women in Cybersecurity 1 - The Story of Mia Greene (Episode 14)
Cybersecurity Ventures research shows that women represented 20% of the global cybersecurity workforce at the end of 2019. That a vast improvement from 2013 when it was only 11%. But it's not good enough. As part of a Two Episode Special, Mia Greene visits Anglerphish to tell her story and trouble of entering the cybersecurity workforce.
🎧 👉🏼 The #AnglerPhish #truecrime #podcast (Episode 14)
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Cybersecurity Ventures research shows that women represented 20% of the global cybersecurity workforce at the end of 2019. That a vast improvement from 2013 when it was only 11%. But it's not good enough. As part of a Two Episode Special, Mia Greene visits Anglerphish to tell her story and trouble of entering the cybersecurity workforce.
🎧 👉🏼 The #AnglerPhish #truecrime #podcast (Episode 14)
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
WebBundles Harmful to Content Blocking, Security Tools, and the Open Web (Standards Updates #2)
This is second in a series of blog posts describing new and proposed web standards and how they support or threaten web privacy.
In a Nutshell…
Google is proposing a new standard called WebBundles. This standard allows websites to “bundle” resources together, and will make it impossible for browsers to reason about sub-resources by URL. This threatens to change the Web from a hyperlinked collection of resources (that can be audited, selectively fetched, or even replaced), to opaque all-or-nothing “blobs” (like PDFs or SWFs). Organizations, users, researchers and regulators who believe in an open, user-serving, transparent Web should oppose this standard.
While we appreciate the problems the WebBundles and related proposals aim to solve,[1] we believe there are other, better ways of achieving the same ends without compromising the open, transparent, user-first nature of the Web. One potential alternative is to use signed commitments over independently-fetched subresources. These alternatives would fill a separate post, and some have already been shared with spec authors.
The Web Is Uniquely Open, and URLs Are Why
The Web is valuable because it’s user-centric, user-controllable, user-editable. Users, with only a small amount of expertise, can see what web-resources a page includes, and decide which, if any, their browser should load; and non-expert users can take advantage of this knowledge by installing extensions or privacy protecting tools.
The user-centric nature of the Web is very different from most application and information distribution systems. Most applications are compiled collections of code and resources which are difficult-to-impossible to distinguish and reason about. This difference is important, and is part of the reason there are many privacy-protecting tools for the Web, but very few for “binary” application systems.
At root, what makes the Web different, more open, more user-centric than other application systems, is the URL. Because URLs (generally) point to one thing[2], researchers and activists can measure, analyze and reason about those URLs in advance; other users can then use this information to make decisions about whether, and in what way, they’d like to load the thing the URL points to. More important, experts can load https://tracker.com/code.js, determine that it’s privacy-violating, and share that information with other users so that they know not to load that code in the future.
👀 👉🏼 https://brave.com/webbundles-harmful-to-content-blocking-security-tools-and-the-open-web/
#brave #webbundles #contentblocking #security #tools
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
This is second in a series of blog posts describing new and proposed web standards and how they support or threaten web privacy.
In a Nutshell…
Google is proposing a new standard called WebBundles. This standard allows websites to “bundle” resources together, and will make it impossible for browsers to reason about sub-resources by URL. This threatens to change the Web from a hyperlinked collection of resources (that can be audited, selectively fetched, or even replaced), to opaque all-or-nothing “blobs” (like PDFs or SWFs). Organizations, users, researchers and regulators who believe in an open, user-serving, transparent Web should oppose this standard.
While we appreciate the problems the WebBundles and related proposals aim to solve,[1] we believe there are other, better ways of achieving the same ends without compromising the open, transparent, user-first nature of the Web. One potential alternative is to use signed commitments over independently-fetched subresources. These alternatives would fill a separate post, and some have already been shared with spec authors.
The Web Is Uniquely Open, and URLs Are Why
The Web is valuable because it’s user-centric, user-controllable, user-editable. Users, with only a small amount of expertise, can see what web-resources a page includes, and decide which, if any, their browser should load; and non-expert users can take advantage of this knowledge by installing extensions or privacy protecting tools.
The user-centric nature of the Web is very different from most application and information distribution systems. Most applications are compiled collections of code and resources which are difficult-to-impossible to distinguish and reason about. This difference is important, and is part of the reason there are many privacy-protecting tools for the Web, but very few for “binary” application systems.
At root, what makes the Web different, more open, more user-centric than other application systems, is the URL. Because URLs (generally) point to one thing[2], researchers and activists can measure, analyze and reason about those URLs in advance; other users can then use this information to make decisions about whether, and in what way, they’d like to load the thing the URL points to. More important, experts can load https://tracker.com/code.js, determine that it’s privacy-violating, and share that information with other users so that they know not to load that code in the future.
👀 👉🏼 https://brave.com/webbundles-harmful-to-content-blocking-security-tools-and-the-open-web/
#brave #webbundles #contentblocking #security #tools
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag
Brave
WebBundles Harmful to Content Blocking, Security Tools, and the Open Web | Brave
Google is proposing a new standard called WebBundles. This standard allows websites to “bundle” resources together, and will make it impossible for browsers to reason about sub-resources by URL. While we appreciate the problems the WebBundles and related…