bcl @bcl@infosec.exchange

That time the US Secret Service mistook a cyberpunk RPG for a hacker's handbook

#Dicebreaker

https://www.dicebreaker.com/categories/roleplaying-game/feature/gurps-cyberpunk-rpg-us-secret-service

Not for me, but I admire his gumption.

Living Without a SIM Card

https://habd.as/post/living-without-sim-card/

This bill could put encryption providers like WhatsApp and Signal in an awful conundrum: either face the possibility of losing everything in a single lawsuit or knowingly undermine their own users’ security.
https://act.eff.org/action/protect-our-speech-and-security-online-reject-the-graham-blumenthal-proposal

Apple fined €25 million for deliberately slowing down old iPhones

https://www.grahamcluley.com/apple-iphone-slowdown-fine/

TOOT TOOT!!!

Art of Python, a small arts festival cultivated within PyCon North America, is now accepting submissions for its 2020 season, which will run at #PyCon. Call for Proposals is now open. We're looking for 5-15 minute performances that impart new and needed perspectives about the emotional and challenging work of programming through the medium of performance.

https://artofpython.herokuapp.com/

Boosting appreciated!

Another year, another #Intel vulnerability. This time called #Cacheout. It leaks Data on Intel CPUs via Cache Evictions.

https://cacheoutattack.com/

BREAKING: We’ve confirmed that the Ring doorbell app on Android covertly shares personally identifiable information on its users with third-party companies, including Facebook.

https://www.eff.org/deeplinks/2020/01/ring-doorbell-app-packed-third-party-trackers

E-voting is a terrible idea. An obscure election for a conservation district in Washington has been making headlines for adopting it. Seattle and King County are *not* adopting e-voting. https://komonews.com/news/local/obscure-seattle-election-offers-experiment-in-online-voting

I'm searching for input on @ansible@twitter.com #ansible again, feel free to tell me what YOU (would) do:

- Add logic to configure the firewall per role
- Set facts/ vars and have a firewall handler
- have a firewall role check against groups and so on to set the rules

Please RT/Boost

The bourbon barrel desktop

https://imgur.com/a/TjWKVCG

ShellCheck finds bugs in your shell scripts

https://www.shellcheck.net

#CurveBall (CVE-2020-0601) - PoC

https://github.com/ollypwn/CVE-2020-0601

"CVE-2020-0601, or commonly referred to as CurveBall, is a vulnerability in which the signature of certificates using elliptic curve cryptography (ECC) is not correctly verified...."

#Crypt32 #Windows #CVE

More lies about encryption from William Barr. https://gen.medium.com/the-trump-administrations-lies-about-encryption-are-putting-our-privacy-in-danger-1291d5582283

"With onion services, women can share and access women’s health resources in countries where it is outlawed. Activists can organize with less fear of surveillance when there may be life or death consequences." https://internethealthreport.org/2019/in-defense-of-anonymity/