Pinned toot

ICYMI: In July I presented at the Circle of HOPE about the amazing things that the Qubes operating system makes possible, like

- opening email attachments in "disposable VMs"
- managing anonymous identities with Whonix
- keeping secrets like password databases, PGP keys, and sensitive documents stored in vaults without Internet access
- anonymously connecting to VPNs over Tor

Check it out: youtube.com/watch?v=f4U8YbXKwo

Hacking Team Hacker Phineas Fisher Has Gotten Away With It

Leaked court documents show that Italian authorities have no idea who hacked the government spyware maker Hacking Team, and a judge ruled the investigation should be shut down.
motherboard.vice.com/en_us/art

@lapingvino @micahflee @tuxicoman Signal uses Curve25519, which was developed by Dan Bernstein, who does not work for the US government.

The notion that home-grown crypto is going to be safer than widely analyzed crypto from well-known cryptographers is utter nonsense.

"Thatโ€™s why we atย Twilioย banned not just hate speech, but any organization whose primary purpose is spreading hate. Itโ€™s in our control to decide who uses our product, and from whom we take money. We choose not to profit from this hatred, or those who spread it."
medium.com/@jeffiel/words-matt

Signal is testing out a new feature that encrypts message metadata. Once it's widely deployed, their server will facilitate delivering messages but without having access to who is sending them

signal.org/blog/sealed-sender/

Apple CEO Tim Cook calls for Bloomberg to retract their SuperMicro supply chain attack story.

โ€œWe turned the company upside down,โ€ Cook said. โ€œEmail searches, data center records, financial records, shipment records. We really forensically whipped through the company to dig very deep and each time we came back to the same conclusion: This did not happen. Thereโ€™s no truth to this.โ€

buzzfeednews.com/article/johnp

History, white supremacy Show more

I don't know how many GPG Sync users there are in the wild, much less ones that also use Qubes and Split GPG. But if that sounds like you, I wrote a wiki thing for you github.com/firstlookmedia/gpgs

Check it, I just released a new version of passphraseme: github.com/micahflee/passphras

Now you can make diceware passphrases uses wordlists scraped from Game of Thrones, Harry Potter, Star Trek, and Star Wars.

pip3 install passphraseme

Bloomberg now has a follow-up story claiming that an unnamed "major U.S. telecommunications company" discovered a malicious implant in an Ethernet port on a server manufactured by Supermicro bloomberg.com/news/articles/20

Show more
Mastodon

Follow friends and discover new ones. Publish anything you want: links, pictures, text, video. This server is run by the main developers of the Mastodon project. Everyone is welcome as long as you follow our code of conduct!