Kissaki

@Kissaki@programming.dev

This is a remote user, information on this page may be incomplete. View at Source ↗

@GitHub, website

Glassworm's resurgence - Secure Annexsecureannex.com ↗
Submitted ⁨⁨5⁩ ⁨days⁩ ago⁩ to ⁨cybersecurity@infosec.pub⁩ | ⁨0⁩ ⁨comments⁩
⁨Comment⁩ on ⁨Hackers Replace 'm' with 'rn' in Microsoft(.)com to Steal Users' Login Credentials⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
I expect some hot Java code on that website 😏
⁨Comment⁩ on ⁨Hackers Replace 'm' with 'rn' in Microsoft(.)com to Steal Users' Login Credentials⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
rnicrosoft.corn 🌽
⁨Comment⁩ on ⁨3.5 Billion Accounts: Complete WhatsApp Directory Retrieved and Evaluated⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:

We have found no evidence of malicious actors abusing this vector"

“We see no evidence of that which we do not monitor.”

These press releases/responses seem to never include “we track x and y and see no evidence”. I can only assume the worst.
We Hacked Flock Safety Cameras in under 30 Seconds - Benn Jordan (YouTube, 40 min)www.youtube.com ↗
Submitted ⁨⁨2⁩ ⁨weeks⁩ ago⁩ to ⁨cybersecurity@infosec.pub⁩ | ⁨1⁩ ⁨comment⁩
⁨Comment⁩ on ⁨What are You Working on Wednesday⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
I always read the weekly post title and am tempted to write and comment. I’ve written an entire post before. But then I notice it’s in c/cybersecurity - which my work is not in specifically. 😅
Today I learned: binfmt_misc - dfir.ch - shadow suiddfir.ch ↗
Submitted ⁨⁨4⁩ ⁨weeks⁩ ago⁩ to ⁨cybersecurity@infosec.pub⁩ | ⁨0⁩ ⁨comments⁩
⁨Comment⁩ on ⁨The limits of zero-knowledge for age-verification | Brave⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
It’s new to me that it’s NFC. I was under the impression I need to buy a reader device to make use of digital auth or signature stuff.
⁨Comment⁩ on ⁨One wrong letter: UN moves to curb cybercrime with new convention | UN News⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
Looking at the US in particular right now, I’m not confident it would be used on good conscience. Who knows what they want to prosecute. Justice frameworks can only work with confidence in justice.

This explanation sounds fine. I haven’t seen an actual link to the content of the agreed upon convention across the linked sites.

The Wikipedia article on United Nations Convention against Cybercrime paints a much more concerning picture.

The convention names four types of crimes in particular, which human rights advocates argue are framed too broadly, applicable to any crime committed using an information or communications technology. Many of the crimes it would apply to have only a thin connection to the kind of serious cybercrime, like ransomware and child exploitation, that motivated the convention.

Several organizations highlight the way the convention’s language about human rights protections are largely suggestions left to the discretion of member states, including those with a record of human rights abuses.

Let’s hope it’s a useful framework countries will still make assessments and restrictions on depending on who they’re dealing and working together with. I’m still concerned though.

Why is this community not allowing English language comments when it’s seemingly obviously in English?