End-to-end-ecryption (E2EE) seems to be an issue with many democratic governments – they dislike their law abiding citizens having it unless they can have the keys to the security. If governments have the keys to your E2EE it will not be long before the criminals also have those keys! Now …
Patches and Updates. When they go wrong…
I am always pushing the necessity of keeping up with patches and updates – they are everyone’s essential step for good cyber security. However here is the warning tale for when things go wrong at the vendor end: HP rushes to fix bricked printers after faulty firmware update (bleepingcomputer.com) When …
PyPi. I wrote about code supply chain compromise last week…
…and I am writing about code supply chain compromise again this week. PyPi. PyPi is a well-respected repository of python code – I used it myself whilst at uni – but to try and get to grips with the influx of malicious code it has closed its doors to new …
Continue reading “PyPi. I wrote about code supply chain compromise last week…”
BrutePrint. I wrote about the Android risk last week…
…and I am going to start the week off with the Android risk! BrutePrint! This is only research at the moment but what starts off in the lab can migrate to the wild once threat actors know what to look for! A new brute force attack on Android fingerprint biometric …
Continue reading “BrutePrint. I wrote about the Android risk last week…”
UK Web Surveillance Increases
Here is an interesting article to read over breakfast this Sunday. How the UK Government needs to intrude into your privacy. The UK’s Secretive Web Surveillance Program Is Ramping Up | WIRED UK I am not comfortable with the argument that if you have not done anything wrong, then you …
