Nesaijn @Nesaijn@linuxrocks.online

Finally, somebody decided it had to be done... #DeleteFacebook #DeleteInsagram #deleteGoogle #privacy
https://dayssincelastfacebookscandal.com/

Facebook now says its password leak affected ‘millions’ of Instagram users.

https://techcrunch.com/2019/04/18/instagram-password-leak-millions/

Ugh.

Microsoft reveals hackers accessed some http://outlook.com accounts for months.

https://www.theverge.com/2019/4/13/18309192/microsoft-outlook-email-account-hack-breach-security

#infosec #outlook #email

"Amazon-Mitarbeiter in Boston, [...] hören sich jeden Tag Tausende aufgezeichnete Gespräche von Echo-Nutzern an und schreiben diese ab. Ihr Auftrag ist es, die virtuelle Assistentin Alexa zu verbessern, etwa durch eine passende Verschlagwortung für das weitere Training der Spracherkennung. Sie hören dabei zwangsläufig aber auch private Konversationen mit - oder wenn jemand um Hilfe ruft"

Wer sich eine Wanze in die Wohnung stellt sollte nichts anderes erwarten.

https://m.spiegel.de/netzwelt/gadgets/amazon-mitarbeiter-hoeren-sich-tausende-privatgespraeche-mit-alexa-an-a-1262315.html

Have you been thinking about making an app for the Librem 5 but didn't know where to start?

I wrote a tutorial blog post for getting started with designing apps for GNOME mobile (and desktop too).

https://blogs.gnome.org/tbernard/2019/03/27/designing-for-the-librem-5/

@LibertyPaulM FOSS fundamentalist here. I don't want Mozilla to block this or that. I can do that myself. What I do want them to do is to stop tracking Firefox users with telemetry by default and without informed consent. Most Firefox users are entirely unaware that their behavior data is being sent back to the mothership.

I don't use Chrome and don't advise it. There are variants of Firefox which are better and don't include the spying by default.

Security and privacy isn't a dichotomy. You can have both.

All 2.7 million recorded calls to the medical advice phone number 1177 (operated by the municipalities in Sweden) answered by the subcontractor Medicall since 2013 were found to be available to everyone on an unprotected web server.
That's 170000 hours of sensitive phone calls with symptoms, etc.
-CS

~=8 Character Passwords Are Dead=~

New benchmark from the Hashcat Team shows a 2080Ti GPU passing 100 Billion password guesses per second (NTLM hash).

This means that the entire keyspace, or every possible combination of:
- Upper
- Lower
- Number
- Symbol

...of an 8 character password can be guessed in:

~2.5 hours

(8x 2080Ti GPUs against NTLM Windows hash)

#Hacking #Infosec

Me trying to work when I'm not feeling it

Calling all #Fediverse admins of instances in the #EU. The #CopyrightDirective is coming, we need to show the MEPs how massively the EU Internets will be affected.

We are preparing a list of all EU-based #Pleroma, #Mastodon, #GNUSocial, #Peertube, #Funkwhale, and any other instances.

Please *contact me*. All I need is the domain name, which EU Member State it's located in, and the rough topic of the instance. Approximate user count welcome, but not necessary.

Please help. This is important.

To the #degoogle and #deletefacebook advocates, the #privacy and #FOSS advocates, please consider contributing editing to #OpenStreetMap. I want a good and usable alternative to current popular #maps apps.
🗺

Hello, World!

This is the first blog post about Marmota, a distributed and Free Software alternative to Spotify (and by extension the majority of the music streaming services)

https://blog.marmota.nefixestrada.com/posts/weekly-1/

Boosts and feedback appreciated!

Google pays "gig economy" workers $1 per hour to train its killer drones for Project Maven

https://theintercept.com/2019/02/04/google-ai-project-maven-figure-eight/

Whatsapp is "secure": they are pushing unencrypted "backups" even further now (you can't just skip this, but have to select "never" and then done to use whatsapp) #DeleteFacebook

Ahh the satisfying feeling of "come-uppance"...

Apple have now revoked Facebook's enterprise certificate, breaking their ability to distribute internal iOS apps.

It came after news broke of Facebook's dodgy "research" app that paid teens and young adults for access to all their Internet data via a VPN - using their enterprise certificate to bypass App Store approval, in a clear breach of Apple's rules.

https://www.theverge.com/2019/1/30/18203551/apple-facebook-blocked-internal-ios-apps