Alphabet, Stop Protecting Harassers

Alphabet workers deserve the right to work in an environment free from their abusers.

Alphabet does not provide a safe environment for those who face harassment in the workplace. Even when HR confirms harassment, no action is taken to make the reporter safe. For example, Emi Nietfeld shared in the New York Times, “My harasser still sat next to me. My manager told me H.R. wouldn’t even make him change his desk, let alone work from home or go on leave.”
This is a long pattern where Alphabet protects the harasser instead of protecting the person harmed by the harassment. The person who reports harassment is forced to bear the burden, usually leaving Alphabet while their harasser stays or is rewarded for their behavior.

This is not news to many people at Alphabet:

https://stopprotectingharassers.medium.com/alphabet-stop-protecting-harassers-d32a17aa5762

#google #DeleteGoogle #alphabet #harassers #thinkabout
📡 @nogoolag 📡 @blackbox_archiv

National Intelligence Council Global Trends 2040

Welcome to the 7th edition of the National Intelligence Council’s Global Trends
report. Published every four years since 1997, Global Trends assesses the key
trends and uncertainties that will shape the strategic environment for the
United States during the next two decades.

Global Trends is designed to provide an analytic framework for policymakers early in each
administration as they craft national security strategy and navigate an uncertain future. The
goal is not to offer a specific prediction of the world in 2040; instead, our intent is to help
policymakers and citizens see what may lie beyond the horizon and prepare for an array of
possible futures.

https://www.dni.gov/files/ODNI/documents/assessments/GlobalTrends_2040.pdf

#pdf #national #intelligence #council
📡@cRyPtHoN_INFOSEC_FR
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_DE
📡@BlackBox_Archiv
📡@NoGoolag

Why You Should Stop Using Your Facebook Messenger App

If you’re one of the 1.3 billion people using Facebook Messenger, then you need to switch to an alternative. Facebook has suddenly confirmed significant delays with much needed security enhancements to the platform, enhancements that its own executives say are “essential.” Here’s what you need to know.

“The lessons of the past five years make it absolutely clear that technology companies and governments must prioritize private and secure communication.” So said senior Facebook exec Will Cathcart in a Wired opinion piece this week.

Cathcart currently heads WhatsApp, and his article focuses on the need for end-to-end encryption to be protected. He’s absolutely right. Such encryption is “essential,” there is “serious pressure to take it away,” and it “should not be taken for granted.”

I have warned users before to quit Facebook Messenger for alternatives. Beyond its lack of encryption, the platform is also open to content monitoring by Facebook itself, and I have also reported on other serious issues with its handling of your private data.

Now, this week, we have seen three separate events, all of which should give you every reason you need to make that change, to quit Messenger. First Cathcart’s rallying cry for users to use platforms with end-to-end encryption in place. Second, Facebook admitting that such security will not come to Messenger until some time in 2022, at the earliest. And, finally, another story on Facebook’s data mishandling.

https://www.forbes.com/sites/zakdoffman/2021/04/10/stop-using-facebook-messenger-on-your-apple-iphone-or-google-android-phone/

#facebook #DeleteFacebook #messenger #android #google #apple #smartphone #thinkabout
📡 @nogoolag 📡 @blackbox_archiv

mnm is not mail

A sane network protocol for email, to end attacks and promote productivity.

Email has become a universal cybercrime portal. It allows anyone, claiming any identity, to send you any content, any number of times. And it’s long been an obstacle to productivity and effective communication. Many apps & services have offered to replace it. But email is a network of diverse software & sites. A network can’t be replaced by a product or service.

The mnm project enables a new email network: a sane, simple protocol, a client, and a server. It’s designed for everyone, but especially:

👉🏼 Organizations where a phishing attack could be catastrophic. Examples: manufacturing, public infrastructure, government, finance, research & development, information technology.

👉🏼 Services and websites whose clients dislike the message scanning done by webmail providers. Examples: legal affairs, health care, job search, family matters.

💡 mnm has two major goals:

1) To provide a far safer correspondence model, where you:

+ choose the organizations/sites that relay your correspondence
+ select which members of a site can correspond with you
+ always know from which site a message originated
+ can block anyone with whom you’ve made contact
+ may leave a site and never see traffic from it again

2) To offer capabilities missing in traditional email, including:

+ message formatting & layout via Markdown (aka CommonMark)
+ hyperlinks to messages and other threads
+ hashtags and private tags
+ slide deck layouts
+ data-driven charts & graphs
+ forms/surveys whose results are collected into tables
+ many more features to foster focus, creativity, efficiency, and understanding

👉🏼 Try the mnm client, tell us what you think (Live Demo)
https://mnmnotmail.org/demo.html

👉🏼 The client and server are open source, subject to the terms of the Mozilla Public License, v2.0.

https://github.com/networkimprov/mnm-hammer

https://github.com/networkimprov/mnm

https://mnmnotmail.org/

#email #mnm #notmail
📡 @nogoolag 📡 @blackbox_archiv

'Julian Assange EXPOSED The Media Machinery Behind The Wars!'- Ex-Ecuadorian Counsel Fidel Narvaez

On our 1000th episode of Going Underground, we speak to former counsel at the Ecuadorian Embassy Fidel Narvaez. He discusses the events leading up to Assange having his Ecuadorian citizenship revoked and the British Police entering the embassy to arrest him, why Lenin Moreno’s decision leaves him ashamed, the significance of Julian Assange’s contribution to journalism and the fight against corruption worldwide, the end of Lenin Moreno’s Presidency, the candidacy of Andres Arauz, a socialist economist in the Ecuadorean elections and much more!

#assange #wikileaks #narvaez #ecuador #video
📽@cRyPtHoN_INFOSEC_FR
📽@cRyPtHoN_INFOSEC_EN
📽@cRyPtHoN_INFOSEC_DE
📽@BlackBox_Archiv
📽@NoGoolag

Brave disables Chromium FLoC features

https://github.com/brave/brave-core/pull/8468

#brave #browser #floc #chromium #chrome #google #DeleteGoogle
📡 @nogoolag 📡 @blackbox_archiv

Personal data of 1.3 million Clubhouse users has reportedly leaked online days after LinkedIn and Facebook also suffered data breaches

The personal data of 1.3 million Clubhouse users has leaked online on a popular hacker forum, according to a Saturday report from Cyber News.

So far, it seems like it’s been the worst week of the year for social media platforms in terms of data leaks, with Clubhouse seemingly joining the fray.

Days after scraped data from more than a billion Facebook and LinkedIn profiles, collectively speaking, was put for sale online, it looks like now it’s Clubhouse’s turn. The upstart platform seems to have experienced the same fate, with an SQL database containing 1.3 million scraped Clubhouse user records leaked for free on a popular hacker forum.We reached out to Clubhouse in order to confirm whether the leaked database was genuine and whether Clubhouse was aware of any breach to their systems. As of the time of writing this report, we did not receive a reply from the company.

https://cybernews.com/security/clubhouse-data-leak-1-3-million-user-records-leaked-for-free-online/

#clubhouse #data #leak #user #records
📡@cRyPtHoN_INFOSEC_FR
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_DE
📡@BlackBox_Archiv
📡@NoGoolag

Sudden New Warning Will Surprise Millions Of WhatsApp Users

A nasty new surprise for WhatsApp’s 2 billion users today, with the discovery of an alarming security risk. Using just your phone number, a remote attacker can easily deactivate WhatsApp on your phone and then stop you getting back in. Even two-factor authentication will not stop this. Here’s how the attack works.

This shouldn't happen. It shouldn't be possible. Not with a platform used by 2 billion people. Not this easily. When researchers, Luis Márquez Carpintero and Ernesto Canales Pereña, warned they could kill WhatsApp on my phone, blocking me from my own account using just my phone number, I was doubtful. But they were right.

“This is yet another worrying hack,” warns ESET’s Jake Moore, “one that could impact millions of users who could potentially be targeted with this attack. With so many people relying on WhatsApp as their primary communication tool for social and work purposes, it is alarming at what ease this can occur.”

Despite its vast user base, WhatsApp is creaking at the seams. Its architecture has fallen behind its rivals, missing key features such as multi-device access and fully encrypted backups. As the world’s most popular messenger focuses on mandating new terms of service to enable Facebook’s latest money-making schemes, these much-needed advancements remain “in development.”

https://nitter.pussthecat.org/0xDUDE

https://www.forbes.com/sites/zakdoffman/2021/04/10/shock-new-warning-for-millions-of-whatsapp-users-on-apple-iphone-and-google-android-phones/

#warning #whatsapp #DeleteWhatsapp #thinkabout
📡 @nogoolag 📡 @blackbox_archiv

Why Amazon Unionization Failed in Alabama

In this Wolff Responds, Prof. Wolff explains why Amazon workers in Alabama voted against unionization, and compares the American labor movement to that of Europe. Wolff draws from European examples to underscore what is needed for unions in the US to gain momentum.

https://www.youtube.com/watch?v=lHGQhnYhwSg

#amazon #DeleteAmazon #DickPunchBezos #unionization #alabama #usa #video #thinkabout
📽@nogoolag 📽@blackbox_archiv

Google's short-lived data-advantage

There's a lot of ways to think about the movement to tame Big Tech, but one of the more useful divisions to explore is the "Night of the Comet" people versus the "Don't Believe the Criti-Hype" people.

This is a division over the value of the data that Google, Facebook and other large tech firms have amassed over the years – data on their users, sure, but also data on the advertisers and publishers they serve with their ad-tech platforms.

Big Tech companies and their investors are really bullish on the value of this commercial data-advantage: they say that spying on us – the users – lets them manipulate our opinions and activities so that we buy or believe the things their advertisers pay them to push.

More quietly, their investors believe that the data-advantage extends to publishers and advertisers, a deep storehouse of data that makes it effectively impossible for anyone else to do the precision targeted that Big Tech manages, which is why they have such fat margins.

https://pluralistic.net/2021/04/11/halflife/#minatory-legend

#google #DeleteGoogle #facebook #DeleteFacebook #BigData #BigTech #AdTech #thinkabout #comment
📡 @nogoolag 📡 @blackbox_archiv

IoT-less IP Cameras - Hack Across America 2021

IP cameras that aren't IoT trash? What to look for when researching LAN-only cameras and upgrading "the Peanut" van with 360 surveillance for Hack Across America 2021!

👉🏼 Follow along at: https://hak5.org/hackacrossamerica

https://www.youtube.com/watch?v=dZyZS5PIdVM

#iot #hackacrossamerica #video
📽@cRyPtHoN_INFOSEC_FR
📽@cRyPtHoN_INFOSEC_EN
📽@cRyPtHoN_INFOSEC_DE
📽@BlackBox_Archiv
📽@NoGoolag

How Bellingcat Launders National Security State Talking Points into the Press

For a self-proclaimed citizen journalism outfit, an alarming number of Bellingcat’s staff and contributors come from highly suspect backgrounds, including high-level positions in military and intelligence agencies.

AMSTERDAM — Investigative site Bellingcat is the toast of the popular press. In the past month alone, it has been described as “an intelligence agency for the people” (ABC Australia), a “transparent” and “innovative” (New Yorker) “independent news collective,” “transforming investigative journalism” (Big Think), and an unequivocal “force for good” (South China Morning Post). Indeed, outside of a few alternative news sites, it is very hard to hear a negative word against Bellingcat, such is the gushing praise for the outlet founded in 2014.

This is troubling, because the evidence compiled in this investigation suggests Bellingcat is far from independent and neutral, as it is funded by Western governments, staffed with former military and state intelligence officers, repeats official narratives against enemy states, and serves as a key part in what could be called a “spook to Bellingcat to corporate media propaganda pipeline,” presenting Western government narratives as independent research.

Citizen journalism staffed with spies and soldiers

An alarming number of Bellingcat’s staff and contributors come from highly suspect backgrounds. Senior Investigator Nick Waters, for example, spent three years as an officer in the British Army, including a tour in Afghanistan, where he furthered the British state’s objectives in the region. Shortly after leaving the service, he was hired by Bellingcat to provide supposedly bias-free investigations into the Middle East.

https://www.mintpressnews.com/bellingcat-intelligence-agencies-launders-talking-points-media/276603/

👉🏼 Bellingcat's Online Investigation Toolkit - version 6.6 (Feb.11, 2021)
https://news.1rj.ru/str/BlackBox_Archiv/1635

#bellingcat #toolkit #research #collection
📡@cRyPtHoN_INFOSEC_FR
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_DE
📡@BlackBox_Archiv
📡@NoGoolag

Clubhouse “Leak” Might Be a Simple Data Scrape

The Clubhouse "data leak" has the hallmarks of a scraper bot downloading public information, appears to not be a hack.

A data leak of Clubhouse member information has been reported. The information consists of publicly available data and does not consist of sensitive information like passwords. The so-called leak may actually be just a scrape of publicly available information.

👉🏼 Data Leak
👉🏼 Report of Clubhouse “Data Leak”
👉🏼 Was Confidential Information Leaked?
👉🏼 Possibly Not a Data Leak
👉🏼 Why This May Not be a Data Leak of Clubhouse
👉🏼 Citations

https://www.searchenginejournal.com/clubhouse-data-leak/401943/

#clubhouse #data #scrape #leak #user #records
📡@cRyPtHoN_INFOSEC_FR
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_DE
📡@BlackBox_Archiv
📡@NoGoolag

Linux, macOS, and Windows running simultaneously on a 1st generation Core i5 and 8GB RAM

This is my Thinkpad T410 with a 1st generation Intel Core i5 and 8 GB of RAM. It runs Arch Linux with Xfce.

The macOS Mojave (chosen over Catalina or Big Sur for it’s lower resource usage) VM works surprisingly well with 3GB RAM, but even when the Windows VM was allocated that much, it was very sluggish.

The Windows installation was very easy. All you have to do is download the ISO from Microsoft, and fill in your username, password, and product key in the “Express Installation” feature of Gnome Boxes.

https://lukesempire.com/2021/04/11/vms

#linux #macos #windows #installation
📡 @nogoolag 📡 @blackbox_archiv

Google gamed its ad auction system to favor its own ads, generated $213 million

Google used a secret program called "Bernanke" that used historical bidding data to give its ad-buying system a major advantage over its rivals, an antitrust lawsuit filing claims, a program that earned the company hundreds of millions of dollars in revenue.

Google is in the process of dealing with an antitrust lawsuit from a group of state attorneys general, about its advertising technology and ad industry dominance. In a response to the lawsuit filed by Google in early April, the search company accidentally let slip of some of its behind-the-scenes work.

In the initial version of the filing, seen by the Wall Street Journal, Google failed to properly redact some sections, revealing the secretive business elements. A federal judge allowed Google to refile the properly-redacted version under seal.

The unredacted elements refers to a program called "Project Bernanke," a system that Google allegedly kept secret from publishers and other rivals. Bernanke was also viewed as an antitrust issue by the states in the lawsuit, due to how it operated.

The antitrust lawsuit centers around how Google's ownership of a platform for selling online advertising, as well as its position as an ad buyer for its own properties, was a problem. By being both an owner and a client, Google was thought to be able to game the system due to having access to data that ad buyers wouldn't necessarily receive.

https://appleinsider.com/articles/21/04/11/google-bernanke-revealed-in-ad-business-antitrust-lawsuit-error

#google #DeleteGoogle #AdTech #AdBusiness #lawsuit #antitrust #bernanke
📡 @nogoolag 📡 @blackbox_archiv

The Hitchhiker’s Guide to Online Anonymity (new draft version v0.9.0 with a new Tor Mirror)

Here is a new version (v0.9.0) of The Hitchhiker’s Guide to Online Anonymity.

💡 TLDR: This is an open-source non-profit detailed and maintained guide on online anonymity (in addition to Privacy/Security). I've been writing/updating it for the past months. It covers Windows/Linux/MacOS/Whonix/TAILS/Qubes OS and more. It's written with hope for activists, journalists, scientists, lawyers, whistle-blowers, and good people being oppressed/censored anywhere!

The whole guide is backed up by many external references (over 500 external references, many of them academic) and is not sponsored by any commercial entity.

The guide is presented in a "book format" (Online ,or PDF with Light and Dark themes) and is quite a long read with over 180 pages of information (not counting the many 500+ external references). But there are ways you can read some parts and not others depending on your interest (and this is also explained in the introduction).

* Project Website: https://anonymousplanet.org/
* Mirror: https://mirror.anonymousplanet.org/
* Tor Mirror: http://thgtoa7imksbg7rit4grgijl2ef6kc7b56bp56pmtta4g354lydlzkqd.onion

💡 Online Guide:

* Online Version (Dark Theme): https://anonymousplanet.org/guide.html
* Online Version Mirror (Dark Theme): https://mirror.anonymousplanet.org/guide.html
* Online Version Tor Mirror (Dark Theme): http://thgtoa7imksbg7rit4grgijl2ef6kc7b56bp56pmtta4g354lydlzkqd.onion/guide.html

💡 PDFs:

* PDF (Light Theme): https://anonymousplanet.org/guide.pdf
* PDF (Light Theme Mirror): https://mirror.anonymousplanet.org/guide.pdf
* PDF (Light Theme Tor Mirror): http://thgtoa7imksbg7rit4grgijl2ef6kc7b56bp56pmtta4g354lydlzkqd.onion/guide.pdf
* PDF (Dark Theme): https://anonymousplanet.org/guide-dark.pdf
* PDF (Dark Theme Mirror): https://mirror.anonymousplanet.org/guide-dark.pdf
* PDF (Dark Theme Tor Mirror): http://thgtoa7imksbg7rit4grgijl2ef6kc7b56bp56pmtta4g354lydlzkqd.onion/guide-dark.pdf

💡 Changelog:

* https://anonymousplanet.org/CHANGELOG.html
* https://mirror.anonymousplanet.org/CHANGELOG.html
* http://thgtoa7imksbg7rit4grgijl2ef6kc7b56bp56pmtta4g354lydlzkqd.onion/CHANGELOG.html

💡 Archives:

* Archive.org: https://web.archive.org/web/https://anonymousplanet.org/guide.html
* Archive.today: https://archive.fo/anonymousplanet.org/guide.html
* Archive.today over Tor: http://archivecaslytosk.onion/anonymousplanet.org/guide.html
* Cryptpad.fr: https://cryptpad.fr/drive/#/2/drive/view/Ughm9CjQJCwB8BIppdtvj5zy4PyE-8Gxn11x9zaqJLI/

Feel free to share and contribute through the repository at https://github.com/AnonymousPlanet/thgtoa

👉🏼 Follow me on:

* Twitter: https://twitter.com/AnonyPla
* Mastodon: https://mastodon.online/@anonypla

Any constructive opinion/idea/criticism is welcome if you spot any issue. Many changes have been done based based on suggestions from redditors. Don't be too harsh tho. Remember it's still a "work in progress" draft.

https://redd.it/mpc5k3

#guide #online #anonymity #anonymousplanet
📡@cRyPtHoN_INFOSEC_FR
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_DE
📡@BlackBox_Archiv

Apple Transparency Report: Government and Private Party Requests

Apple has released more iCloud content to authorities, end-to-end encryption is still missing.

User data was mainly sent to authorities in the U.S. and Brazil. In France, Sweden, Switzerland and the United Kingdom, Apple only transmitted iCloud data for one account request each, as the report lists. It remains unclear which of the partly sensitive data was transferred in detail and for what reason. In the new transparency report, Apple has confirmed for the first time that iCloud content may also be passed on in emergency requests from authorities - for example, to search for missing persons.

https://www.apple.com/legal/transparency/pdf/requests-2020-H1-en.pdf

#icloud #apple #requests #transparency #report #pdf
📡 @nogoolag 📡 @blackbox_archiv

Security as Social Engineering: Phishing Campaigns Spoofing Locked Account Workflows

Each Blox Tale will take a look at targeted email scams, outline why they made their way into an inbox, and provide tips and recommendations to protect against such attacks. In this blog, we’ll focus on three email attacks impersonating Facebook, Microsoft, and Apple respectively. All attacks aimed to extract victims’ account credentials by spoofing automated emails informing victims that their accounts had been locked or that they had a subnoscription that was close to expiry. Phishing pages were set up using services like Omnisend and DDNS[.]net to trick security technologies and users into thinking the links were legitimate.

👉🏼 Let’s go through the attacks in greater detail:

https://www.armorblox.com/blog/security-as-social-engineering-phishing-campaigns-spoofing-locked-account-workflows/

#security #phishing #email #scam #facebook #microsoft #apple
📡@cRyPtHoN_INFOSEC_FR
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_DE
📡@BlackBox_Archiv
📡@NoGoolag

CEO of a top bitcoin exchange warns a crackdown on cryptocurrencies may be coming

Governments around the world may start to clamp down on the use of bitcoin and other cryptocurrencies, the CEO of a top crypto exchange has warned.

A number of officials — from U.S. Treasury Secretary Janet Yellen to European Central Bank President Christine Lagarde — have sounded the alarm about the use of bitcoin for money laundering, terrorist financing and other illegal activities.

"I think there could be some crackdown," Jesse Powell, CEO of Kraken, told CNBC in an interview. Cryptocurrencies have surged in value lately, with bitcoin hitting a record high price of more than $61,000 last month. The world's most valuable digital coin was last trading at around $60,105.

Kraken is the world's fourth-largest digital currency exchange in terms of trading volume. The firm is considering going public through a direct listing — similar to Coinbase — next year after achieving record trading volumes in the first quarter, CNBC reported last week.

https://www.cnbc.com/2021/04/12/bitcoin-kraken-ceo-jesse-powell-warns-of-cryptocurrency-crackdown.html

#bitcoin #cryptocurrency #crackdown
📡@cRyPtHoN_INFOSEC_FR
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_DE
📡@BlackBox_Archiv
📡@NoGoolag

Revealed: the Facebook loophole that lets world leaders deceive and harass their citizens

Facebook has repeatedly allowed world leaders and politicians to use its platform to deceive the public or harass opponents despite being alerted to evidence of the wrongdoing.

The Guardian has seen extensive internal documentation showing how Facebook handled more than 30 cases across 25 countries of politically manipulative behavior that was proactively detected by company staff.

The investigation shows how Facebook has allowed major abuses of its platform in poor, small and non-western countries in order to prioritize addressing abuses that attract media attention or affect the US and other wealthy countries. The company acted quickly to address political manipulation affecting countries such as the US, Taiwan, South Korea and Poland, while moving slowly or not at all on cases in Afghanistan, Iraq, Mongolia, Mexico, and much of Latin America.

“There is a lot of harm being done on Facebook that is not being responded to because it is not considered enough of a PR risk to Facebook,” said Sophie Zhang, a former data scientist at Facebook who worked within the company’s “integrity” organization to combat inauthentic behavior. “The cost isn’t borne by Facebook. It’s borne by the broader world as a whole.”

https://www.theguardian.com/technology/2021/apr/12/facebook-loophole-state-backed-manipulation

#facebook #DeleteFacebook #loophole #manipulation #investigation #thinkabout
📡 @nogoolag 📡 @blackbox_archiv