Posts by avoidthehack@mastodon.social
(DIR) Post #ATcPcxmE7mNo0mMH5s by avoidthehack@mastodon.social
2023-03-14T15:42:45Z
1 likes, 1 repeats
DuckDuckGo’s new Wikipedia summary #bot: “We fully expect it to make mistakes” [Updated]ICYMI: Duckduckgo announced "DuckAssist" AKA "AI" integrated into search.#machinelearning #aihttps://arstechnica.com/information-technology/2023/03/wikipedia-ai-truth-duckduckgo-hopes-so-with-new-answerbot/
(DIR) Post #ATgF8iHNrMwuTAkT8C by avoidthehack@mastodon.social
2023-03-16T17:01:10Z
0 likes, 2 repeats
CISA Adds One Known Exploited #Vulnerability to Catalog CVE-2023-26360 - Adobe ColdFusion Improper Access ControlLooks like an #update from Adobe should fix this.#exploits #cybersecurity #infosec #securityhttps://www.cisa.gov/news-events/alerts/2023/03/15/cisa-adds-one-known-exploited-vulnerability-catalog
(DIR) Post #ATiFBlCtotJgjb1XJw by avoidthehack@mastodon.social
2023-03-17T16:51:07Z
0 likes, 0 repeats
@CliffWade @jcrabappleI am a Linux Mint stan. I also use Kali for... stuff.
(DIR) Post #ATkRtUHlgM90lFq1Oy by avoidthehack@mastodon.social
2023-03-18T18:20:49Z
1 likes, 1 repeats
Google tells users of some #Android phones: Nuke voice calling to avoid infectionFlaw in some versions of Exynos modems/chipsets gives malicious actors remote #code execution - which can compromise your device... by a specially crafted phone call.Affects Pixels 6 & 7 (there's a patch for 7) and certain #Samsung phones like the S22 (US version seemingly not affected).Users who can't patch should turn off VoLTE... if possible.#cybersecurity #infosec #security https://arstechnica.com/information-technology/2023/03/critical-vulnerabilities-allow-some-android-phones-to-be-hacked/
(DIR) Post #AU30U0Fk43cijRCn6O by avoidthehack@mastodon.social
2023-03-27T16:04:11Z
0 likes, 2 repeats
Known Weak PasswordsIs your password on a list? If so, change your #password immediately and never use that password again - it's compromised!(You should also use a password manager to generate unique + strong passwords for your credentials.)#cybersecurity #infosec #opsec #securityhttps://lutrasecurity.com/en/articles/common-passwords/
(DIR) Post #AUNToIFyeMtZ09sr0C by avoidthehack@mastodon.social
2023-04-06T13:45:00Z
0 likes, 0 repeats
Smart locks endanger tenants’ #privacy and should be regulatedI'm not exactly surprised, but apparently smartlocks log unlock/lock #data ... which can be shared by the company/server provider with others. I guess it would fall into the same category as those smart doorbells (ring, I'm looking at you.)#privacymattershttps://www.eff.org/deeplinks/2023/04/smart-locks-endanger-tenants-privacy-and-should-be-regulated
(DIR) Post #AUNujoyGI09JmGgnom by avoidthehack@mastodon.social
2023-04-06T19:19:54Z
0 likes, 0 repeats
@eliptic 😂😂😂 I like it.Corporate landlords charge you a ~$125 “lockout fee” in my area though. 👀
(DIR) Post #AUrHUDDEpiLVJrZEuW by avoidthehack@mastodon.social
2023-04-20T22:11:01Z
0 likes, 1 repeats
#Google Search outage prevents some from seeing #search results (Resolved as of this post, of course)Perfect time to try out some alternative and private search engines... like @Mojeek !(Mojeek has its own index independent of Bing and Google).#privacy #privacymattershttps://www.bleepingcomputer.com/news/google/google-search-outage-prevents-some-from-seeing-search-results/
(DIR) Post #AVhhdyiikrpwrXoetk by avoidthehack@mastodon.social
2023-05-15T21:06:00Z
0 likes, 0 repeats
India first democracy to ban #encrypted messaging apps on massive scale.YIKESEncryption protects everyone's safety...Let's NOT ban encryption. A web without encryption (or with backdoored encryption) is not one I want to experience. And neither should you.#privacy #privacymatters #encryptionhttps://tutanota.com/blog/posts/apps-banned-india
(DIR) Post #AVhhe0GmzggNfUlNdg by avoidthehack@mastodon.social
2023-05-16T02:28:55Z
0 likes, 0 repeats
@PatrickoftheG and that gives us all the more reason to fight for our #privacy.I’m a strong believer that better privacy = better democracy.
(DIR) Post #AVkcr8ddPu8APXtFXE by avoidthehack@mastodon.social
2023-05-17T16:09:00Z
1 likes, 3 repeats
Microsoft is scanning the inside of password-protected zip files for #malwareIf possible, you use should use an zero-knowledge encrypted cloud storage provider (ex: Proton Drive, Skiff Drive)If you must use Microsoft or a similar #cloud storage provider, make sure to encrypt your files with something like picocrypt.#cybersecurity #infosec #privacy #privacymatters #opsechttps://arstechnica.com/information-technology/2023/05/microsoft-is-scanning-the-inside-of-password-protected-zip-files-for-malware/
(DIR) Post #AVo7efrgFZCvkYsONU by avoidthehack@mastodon.social
2023-05-18T21:35:00Z
0 likes, 0 repeats
Warning: #Google to Delete Accounts That Have Been Inactive for 2 Years Hopefully this is irrelevant (or mostly irrelevant) to you. Ideally because you use alternatives to the myriad of services Google provides.Though usually regarded as secure, Google's services are not very privacy friendly.#privacy #data #privacymattershttps://www.pcmag.com/news/warning-google-to-delete-accounts-that-have-been-inactive-for-2-years
(DIR) Post #AVxSdws57JEcanWfU8 by avoidthehack@mastodon.social
2023-05-23T20:45:01Z
0 likes, 2 repeats
Meta Fined Record $1.3 Billion and Ordered to Stop Sending European User #Data to US (Still advocating for #privacy legislation in the US that doesn't endanger #encryption, thanks.)#privacymatters #gdprhttps://www.securityweek.com/facebook-parent-meta-hit-with-record-fine-for-transferring-european-user-data-to-us/
(DIR) Post #AWBizjDkOZa0zfPxWi by avoidthehack@mastodon.social
2023-05-30T17:03:13Z
1 likes, 1 repeats
OpenAI CEO raises $115M for crypto company that scans people’s eyeballs Claims it is not a dystopian nightmare and won't share personal data. Where have I seen this before?Tell me guys, what could go wrong here?#privacy #ai #privacymatters #crypto #technologyhttps://arstechnica.com/tech-policy/2023/05/openai-ceo-raises-115m-for-crypto-company-that-scans-peoples-eyeballs/
(DIR) Post #AWSUPYKdJ6N37soTYW by avoidthehack@mastodon.social
2023-06-07T19:24:01Z
0 likes, 2 repeats
Over 60,000 #Android apps secretly installed #adware for past six months Fake security software - to include (not limited to) #VPN, game cheats, Netflix, and other utility apps. These in particular not directly found in the Google Play store.Be wary when installing new apps - whether from the Google Play store or manually via APK.#cybersecurity #infosec #security #opsechttps://www.bleepingcomputer.com/news/security/over-60-000-android-apps-secretly-installed-adware-for-past-six-months/
(DIR) Post #AYVFGjaonEhlovD8e8 by avoidthehack@mastodon.social
2023-07-07T18:21:09Z
0 likes, 0 repeats
I’m not going to sit here and pretend like the current #fediverse without Threads is “perfect” for #privacy … But just look at the data #threads collects.This is insane.
(DIR) Post #AYVFGkjiXdPxMoNl9k by avoidthehack@mastodon.social
2023-07-07T18:21:10Z
0 likes, 0 repeats
#threads also has a supplemental #privacy policy to the #meta privacy policy: (caution this is an Instagram link) https://help.instagram.com/515230437301944There’s a section, “Information From Third Party Services and Users,” where it states “we collect information about Third Party Services and Third Party Users who interact with Threads.” (Third Parties would naturally include other Fediverse instances and their users.)Federated Fediverse platforms share some data, but this seems to be a whole other level.
(DIR) Post #AYVFGlWHd4GXnR6Xr6 by avoidthehack@mastodon.social
2023-07-07T18:21:10Z
0 likes, 0 repeats
In this section of their #privacy policy, it’s stated “We collect information about the Third Party Services and a third party users who interact with threads…” Interaction includes following #threads users, interacting with threads content, and especially threads users following/interacting with your “third party” content.Data collected includes IP address, instance info, profile informationSo, in theory, any interaction with a Threads user would subject you to this data collection…
(DIR) Post #AYVFGmGMrj846MfLge by avoidthehack@mastodon.social
2023-07-07T18:21:11Z
0 likes, 0 repeats
It looks like Meta could use the #fediverse to collect metadata on… a lot of people. In my opinion, it’s similar to the Facebook Pixel - which allows Meta to collect data on users who are off its platforms.This could seem like no big deal (and I guess it could be), but let’s face it: Meta isn’t exactly #privacy friendly and has been accused (with proof) of abusing collected information. #threads
(DIR) Post #AYVFGoBTisPG3mOTLM by avoidthehack@mastodon.social
2023-07-07T18:29:13Z
0 likes, 0 repeats
Realize this data wouldn’t exist in a vacuum or even as a “single data point.” Meta has many avenues for data collection for users on its platforms (WhatsApp, Facebook, Instagram, etc) and off (Facebook Pixel and buying/using third party data). If just by interacting with #threads users, you are now subject to their (Meta’s) policies… how crazy is that?Stay safe out there, folks.#privacy #privacymatters