Il collettivo sta lavorando allo sviluppo di un sistema che permetterà di creare app di messaggistica e social network in grado di proteggere la #privacy degli utenti. Negli ultimi tempi il gruppo ha sviluppato un codice chiamato #Veilid (vay-lid),
Just finished watching the #Veilid intro presentation from #Defcon. Some highlights:
Re: my questions about post-quantum cryptography and SNDL, there are two mitigating factors.
A) Veilid has tagged, upgradeable and migrateable cryptography. When today's algorithms are broken, they can swap out the encryption and nodes will use a read-1 write-2 strategy to migrate data incrementally.
B) data is broken into smallish chunks and distributed across nodes, so building up a meaningful
/1
#Veilid sounds interesting to this big fan of #p2p solutions.
Why will people run a Veilid node? Is it for altruistic reasons, like Tor or is there some incentive involved?
I don't have time to dig in right now but that seems a crucial issue related to scaling and sustaining, which is one of the problems many such projects face.
📨 Latest issue of my curated #cybersecurity and #infosec list of resources for week #33/2023 is out! It includes the following and much more:
➝ 🇬🇧 👮🏻♂️ #Norfolk and #Suffolk police: Victims and witnesses hit by #databreach
➝ 💬 🔓 #Discord.io confirms breach after hacker steals data of 760K users
➝ 🇺🇸 🏥 #Health plan provider PH TECH joins MOVEit victim list, 1.7 million exposed
➝ 🌍 👮🏻♂️ #Interpol arrests 14 suspected cybercriminals for stealing $40 million
➝ 🇮🇷 #Iran and the Rise of Cyber-Enabled Influence Operations
➝ 🎣 📨 Major U.S. energy org targeted in QR code #phishing attack
➝ 🦠 💸 Jon DiMaggio’s demystifying #LockBit’s Secrets in his latest Ransomware Diaries Vol. 3
➝ 🔓 🎠 Approximately 2000 #Citrix NetScalers backdoored in mass-exploitation campaign
➝ 🇮🇷 Charming Kitten Targets Iranian Dissidents with Advanced Cyber Attacks
➝ 🇺🇸 💸 #FBI warns of increasing #cryptocurrency recovery scams
➝ 🇵🇱 👮🏻♂️ #LOLEKHosted admin arrested for aiding Netwalker ransomware gang
➝ 🇷🇺 👨🏻⚖️ #Russia slaps #Reddit, #Wikipedia with fines
➝ 🇨🇳 ⚡️ #Tesla reassures Chinese users on #datasecurity amid spying concerns
➝ 🇮🇱 🇺🇸 #Israel, US to Invest $4 Million in Critical Infrastructure Security Projects
➝ 💸 🐈⬛ New #BlackCat Ransomware Variant Adopts Advanced Impacket and RemCom Tools
➝ 🦠 🦝 Raccoon Stealer #malware returns with new stealthier version
➝ 💸 🐧 Monti #Ransomware Returns with New #Linux Variant and Enhanced Evasion Tactics
➝ 🏴☠️ 💻 Over 120,000 Computers Compromised by Info Stealers Linked to Users of #Cybercrime Forums
➝ 🤖 🌪️ Google Brings AI Magic to Fuzz Testing With Eye-Opening Results
➝ 🔑 #Google Introduces First #Quantum Resilient #FIDO2 Security Key Implementation
➝ 🐮 👀 Cult of the Dead Cow releases #Veilid: A secure open-source Peer-to-Peer network for apps that flips off the surveillance economy
➝ 📱 Threat actors use beta apps to bypass mobile app store security
➝ 🛰️ ☠️ How a hacking crew overtook a #satellite from inside a Las Vegas convention center and won $50,000
➝ 🃏 🔓 How to hack #casino card-shuffling machines
➝ 🇫🇷 🏧 Iagona ScrutisWeb Vulnerabilities Could Expose #ATM's to Remote Hacking
📚 This week's recommended reading is: "The Cuckoo's Egg: Tracking a Spy Through the Maze of Computer Espionage" by Clifford Paul "Cliff" Stoll
Subscribe to the #infosecMASHUP newsletter to have it piping hot in your inbox every week-end ⬇️
I'm looking forward to the Veilid presentation being posted online from #defcon. However that hasn't stopped me from glancing over the code, and even downloading and setting up a Veilid server node. I think this is going to be a hell of a project once it really gets going with some apps.
If you haven't checked out #Veilid yet, it's a scarily direct library one could integrate alongside your application to provide it with the ability to peer information across any stream you provide it (from my understanding!)
Cult of the Dead Cow releases Veilid: A secure open-source Peer-to-Peer network for apps that flips off the surveillance economy
DEF CON Infosec super-band the Cult of the Dead Cow has released Veilid (pronounced vay-lid), an open-source project applications can use to connect up clients and transfer information in a peer-to-peer decentralized manner.
#Decentralization#SocialMedia#P2P#PeerToPeer#Spritely#Veilid#Privacy#Cybersecurity: "There are many technologies used behind the scenes to create decentralized tools and platforms. There has been a lot of attention lately, for example, around interoperable and federated social media sites using ActivityPub, such as Mastodon, as well as platforms like BlueSky using a similar protocol. These types of services require most individuals to sign up with an intermediary service host in order to participate, but they are decentralized in so far as any user has a choice of intermediary, and can run one of those services themselves while participating in the larger network.
Another model for decentralized communications does away with the intermediary services altogether in favor of a directly peer-to-peer model. This model is technically much more challenging to implement, particularly in cases where privacy and security are crucial, but it does result in a system that gives individuals even more control over their data and their online experience. Fortunately, there are a few projects being developed that are aiming to make purely peer-to-peer applications achievable and easy for developers to create. Two leading projects in this effort are Spritely and Veilid."
Definitely gonna set up #Tor, #I2P and #Veilid nodes once I got access to a gigabit connection as well as a #TorSnowflake node routed through dynamic IP endpoints. #Freifunk should also be a thing then. Perhaps a #Signal relay...
BTW, for any of my co-workers that were watching on my last 2 days of work, I was pretty much expressing my intentions for this time off as I wore my #veilid shirt last Monday and my #corteximplant shirt on my last day. :bec_wink:
And today I'm reppin' Lilith and @revengeday. Hopefully people are paying attention.
For our quarterly team building and public service day, we decided to set up a @VeilidNetwork node on Red Queen Dynamics infrastructure. @tilde will have more to say about this in the Red Queen newsletter later this week. But for now I just want to say that (1) this was very easy, and (2) you should set up a #Veilid node too!
Sign up for our newsletter "Down the Rabbit Hole" at https://buttondown.email/redqueen
@louis
(#veilid is a rust lib that creates a veilid node per application which participates in a network, and gets messages 'to you' to you from the greater network. You publish properties on 'your' node, or it has a torrenting form for larger media items). https://veilid.com
"Being a veilid node" is one page of rust
-> compile to .a
-> put in C
-> #CommonLisp cffi
What do you think about this unconventional private internetworking? I think "the #lisp community" should capture this.
Great to see #veilid as a member of the Post-Quantum Cryptography Alliance to balance the voices of big tech. Have been tracking the hard work of @thegibson and others for quite a while now, and its P2P approach is one of the most inspiring developments on the horizon.