❌ No safe message scanning technology exists.

⚠️ These powers would force a cybersecurity weakness onto apps like WhatsApp and Signal.

‼️ Hackers, predators and spies could crowbar their way into everything you send.

✍️ Tell Ofcom: End-to-end Encryption Means Online Safety ➡️ https://action.openrightsgroup.org/48-hours-tell-ofcom-practice-safe-text

⏰ CLOSES Monday 10 March at 5pm.

#PracticeSafeText 💬

🚨 Time is Running Out to Save Encryption 🔐

Ofcom is consulting on implementing message scanning powers in the UK Online Safety Act.

This would break end-to-end encryption on the messaging apps we all use!

⏰ CLOSES Monday 10 March, 5pm.

Use our tool to tell Ofcom #PracticeSafeText 💬

ACT NOW ⬇️

https://action.openrightsgroup.org/48-hours-tell-ofcom-practice-safe-text

Well, that was quick!

I wrote about about my disappointment with @mozillaofficial changes:

https://mastodon.social/@BjornW/114032743031437841

Seems they were just starting 🙄

Read
https://blog.mozilla.org/en/products/firefox/firefox-terms-of-use/

Check
- https://www.mozilla.org/en-US/about/legal/terms/firefox/

- https://www.mozilla.org/en-US/privacy/firefox/#notice

Consider other Open Source apps you may use: aren't you sad that these lack ToS & Privacy legalese?

My advise: move away from Mozilla.

They have lost my trust.

1/N

Read this:

https://blog.mozilla.org/en/mozilla/mozilla-leadership-growth-planning-updates

👀 at this:

https://www.mozilla.org/en-US/about/leadership

I'm baffled about the myriad of @mozillaofficial structures, amount of directors / C-level people & how to rhyme 'investing in privacy-respecting advertising; with 'draw a bigger circle of supporters over the long run.'

As a long time Mozilla supporter, I was already unhappy about the direction of the last years & this does certainly not bode well for the future. 😞 😩

#Firefox #Mozilla #Thunderbird #Tech #OpenSource

France is about to pass the worst surveillance law in the EU.

Here's how you can stop them: 👉 https://tuta.com/blog/france-surveillance-nacrotrafic-law

If you’re a Windows user, I can help you switch to Linux. Please stop supporting an insecure and privacy-intrusive operating system. What’s stopping you from switching to Linux/macOS? Ask all your questions, and I’ll answer everything.

Today I learned that the alarm system that came with our house – a very popular one here in Ireland – can be disarmed via Siri.

The default command?

“Hey, Siri, disarm.”

I shit you not.

#security #smartHome #youGottaBeFuckingKiddingMe

This is *the most malicious, brutal* malicious compliance I've seen in quite some time, possibly ever, and I am HERE FOR IT. Thank you, @jwz

https://www.jwz.org/xscreensaver/google.html

Any device that needs to be off because it can't be trusted with your conversations should not exist in the first place.

Wel treurig dat ook hier weer gesuggereerd wordt dat een cloud veilig is omdat het door grote bedrijven geleverd wordt. Als je de contracten bekijkt wentelen PaaS leveranciers alle verantwoordelijkheid af op de afnemers. Als jij vulnerabilities laat zitten in je code, wordt die code echt niet automagisch veilig door het in de cloud te hosten.

🇬🇧 Security company Assist Security exposed over 100,000 sensitive files publicly.

If you're curious what kind of wild excuses I get from companies, this one tried to claim only the file structure was exposed. Apparently I look at filenames and paths and figure what's there from the names only and report this to companies :blobwizard:

https://jltee.substack.com/p/security-company-assist-security-exposed-data

We've won security. You can all go home now.

Let's just be clear: #Telegram has proven that they'll gladly accommodate nation states and probably has been doing so for years.

To think that it is secure when all the content, all the messages, are actually available to the company - albeit dispersed across nation states - is false.

#Privacy is #security, full stop. You've got #Signal for IM, #Session as well, not to mention #Matrix for group chats and servers. All have actual, factual peer-to-peer encryption and obvious key systems.

All Qtriots in control #QAnon #Conspiracy #photography #dogs #nature #camping #anime #music #BSD #cycling #DOS #fedi22 #fitness #FOSS #GNU #infosec #Lego #linux #MOC #MSDOS #OpenSource #OpSec #OSINT #pinball #privacy #RightToRepair #security #StarTrek #Unix #believeinfilm #fedi22 #photography #filmphotography #35mm #filmisnotdead #Politics #Fediblock #Trump #Caturday #Dutch #English #LGBTQIA #Minecraft #Programming

One for UK cyber folk!

I'm hiring two Cyber Security Operations Engineers to join my team at the National Energy System Operator (NESO).

This would ideally suit folk who are well-versed in infrastructure, CI/CD pipelines, SIEM/security tooling, and who have a good awareness of what a modern SOC needs to function.

This is the first time I've tried reaching out on Mastodon for this kind of thing but there's plenty of skilled folk on here doing all sorts of interesting things so I'm giving it a go!

As I put in the ad, if you're the kind of person who likes building and experimenting, and telling people about your over-engineered homelab setup, you'd probably fit in extremely well.

The role is listed as hybrid, but the on-site component is really only about 1-2 days a month, when interesting things may be happening.

More than willing to chat to anyone at all who might be interested so do feel free to reach out if this appeals to you in any way!

https://jobs.nationalgrid.com/NationalEnergySO/job/Warwick-Senior-Cyber-Security-Operations-Engineer-NESO-CV34-6DA/1229130700/

Boosts very appreciated if you have UK-based followers who might also be interested. Thanks! :blobsmile:

@SecurityWriter #AdBlocking is both #security and #aaccessibility tool!

• If a #Website doesn't work with #LynxBrowser over @torproject / #Tor it's inherently #ableist and/or #spyware and should be illegal as it has no legitimate reason for existing!

There is no such thing as a backdoor for good guys. Once you place a backdoor, you compromise the safety and privacy of all your users. A third party or bad guys will get access to it and abuse it further. The concept of a "backdoor for good guys" is fundamentally flawed and dangerous. It sets a dangerous precedent. Security and privacy should be absolute. There's no safe way to create a backdoor that can't be exploited by malicious actors.

PINs

Anyone tried https://localsend.org already as a replacement for Apple's airdrop?

I'm especially interested in cross-platform usage experience. E.g. Apple <--> Linux & Android <--> Apple/iOS. Target group is teens & schools.

Also, how secure is this solution?

Feel free to boost this :)

Thanks in advance!