There is a cute Dutch film about a psychology student being terrorized by an app on here smartfone. If you have a possibility to see it, it is real fun.
German state authority "BSI" has withheld information about security problems in Truecrypt for almost 10 years. These could still effect Veracrypt.
This authority is supposed to help citizens keep their computers secure. But obviously they are not to be trusted.
#bsi #truecrypt #veracrypt
VPN hack, quite ugly:
Wow, that is pretty scary. It's not a complete breakdown of VPN, but it does make it significantly less secure.
I just had a look at the "Masterpassword" app for Android. Do not use it!
You enter your name which is saved. When you enter a URL it generates a password from name and URL. So far so good. But then you should click the password to copy it into the clipboard. That is really bad, as the clipboard can be read by any app, any time. So you are lured to publishing your password. Why do folks who claim to give you security publish such crap? #android
Just in case you think buying a Oneplus is a good idea, pay cash if you can. Else, your privacy might be disturbed.
If you understand the meaning of Scotts advice you should also consider the Private Lock app. It locks your phone when snatched (by officials) or dropped (by you) by using the motion sensor.
Apple "infects" user with homosexuality :)
Russian sues Apple:
I am using DoH for over a year, and often get heat for advocating it. I like one sentence in an article article that @ScottMortimer mentioned which says that DoH:
" freaks out ISPs, makes Enterprise IT and Security nervous"
That is one reason why I like (and use) DoH. In the end DoH lets me take more control over my net usage.
I can understand that admins don't like DoH, as they simply loose control over who is browsing where.
An admin could block the IPs of known DoH servers. But then, a user can run a frontend at his home and use Dyndns to reach it. Such a frontend is a small webserver that handles requests, fetches the result from a trusted server, and wraps up the result in https. A router or Raspberry can can handle this.
Most who criticize DNS over HTTPS don't understand what it is good for.
DoH does not replace VPN andTor. If you need that, use that!
DoH is a low profile way to evade your DNS from being tampered, redirected, or censored. Change Firefox settings, and you are quite safe browsing in public networks. With a VPN, you are signalling that you have something to hide. Using DoH is much less visible.
Don' use DoH with Cloudfare, I use Securedns and Digitale Gesellschaft.
A Mastodon instance for info/cyber security-minded people.