JosephMenn

@JosephMenn@infosec.exchange

Washington Post cyber reporter. Author of Cult of the Dead Cow and Fatal System Error. Joseph.Menn@washpost.com, DM for Signal etc.
https://www.washingtonpost.com/people/joseph-menn/

This profile is from a federated server and may be incomplete. Browse more on the original instance.

Markoff, to random
@Markoff@sfba.social avatar

Now if this isn’t a page out of Bladerunner, I don’t know what is…

https://sfstandard.com/2024/02/10/waymo-robotaxi-goes-up-in-flames-in-chinatown-after-crowd-attacks-vehicle/

zackwhittaker, to random
@zackwhittaker@mastodon.social avatar

New, by @Sarahp: A fake app that was masquerading as password manager LastPass on the App Store has been removed, whether by Apple or the fake app’s developer is yet unclear — Apple has not commented.

"That such an obviously fake app got through Apple’s App Review process is a bad look for the tech giant, which has been arguing against new regulations, like the EU’s Digital Markets Act, by claiming these laws would compromise customer safety and privacy."

More: https://techcrunch.com/2024/02/08/a-fake-app-masquerading-as-password-manager-lastpass-just-got-pulled-from-the-app-store/

mattburgess, to tech

NEW: WhatsApp will soon make it possible to chat with people who use other messaging apps. It's revealed some more details on how that will work.

— Apps will need to sign an agreement with Meta, then connect to its servers.
— Meta wants people to use the Signal Protocol, but also says other encryption protocols can be used if they can meet WhatsApp's standards
— WhatsApp has been testing with Matrix in recent months, although nothing is agreed yet. Swiss app Threema says it won't become interoperable

https://www.wired.com/story/whatsapp-interoperability-messaging/

drewharwell, to random
@drewharwell@mastodon.social avatar

New: Inside the massive FBI investigation into investors of Trump Media's merger ally. A Russian owner of a Caribbean bank and a Miami "granddaddy" of weed-shop finance made tens of millions on insider trades into the big Truth Social deal, court docs show. But federal agents were on their tail - with an undercover informant, secret phone scans and a money-laundering scheme they called the “full Singapore" https://www.washingtonpost.com/technology/2024/02/03/trump-social-dwac-investigation/

mtigas, to apple
@mtigas@hachyderm.io avatar

I missed this from last week, but WOW: Onion Browser (https://onionbrowser.com/) is one of the browser choices in the new "choose your default browser" screen that will be shown to iOS users in the EU: https://www.macrumors.com/2024/01/26/apple-explains-ios-17-4-default-browsers-eu/ (It's popular enough in each country!)

Huge thanks and props to everyone who's collaborated on / supported the project over the years! @n8fr8 @tla @guardianproject @torproject

#apple #torproject #ios #tor #eu #dma #digitalmarketsact

malwarejake, to random

Joshua Schulte (CIA Vault7 leaker and child pornographer) was sentenced to 40 years in prison.

https://www.bbc.com/news/world-us-canada-68176390

thomasfuchs, to random
@thomasfuchs@hachyderm.io avatar

Please support the GoFundMe of Tim Apple from Cupertino, Calif., who can’t afford nails to hang his pictures.

He looks like a dork
There’s a bunch of pictures on the floor, leaning against the wall

molly0xfff, to crypto
@molly0xfff@hachyderm.io avatar

US Attorneys in Maryland have filed securities fraud and wire fraud charges against Sam Lee, the alleged perpetrator of the $1.9 billion #HyperVerse #crypto investment fraud scheme that recently made headlines for having an actor pose as its CEO.

https://www.courtlistener.com/docket/68201210/1/united-states-v-lee/

#cryptocurrency

JosephMenn, to random

Russian foreign intelligence has hacked emails from security professionals at both Microsoft and HPE. I have a feeling this is the start of something. https://www.washingtonpost.com/technology/2024/01/24/hpe-hacking-russia-cybersecurity/

realhackhistory, to random
@realhackhistory@chaos.social avatar

Where human conversations go to die.

metacurity, to random

Wow, don't miss today's Metacurity for a whole bunch of critical infosec developments you might have missed over the weekend.

Lead items via @JosephMenn @samsabin @lawrenceabrams @tila @ekovacs @briankrebs @pluralistic, many others

https://metacurity.substack.com/p/russian-hacking-group-midnight-blizzard

justinhendrix, to random
@justinhendrix@mastodon.social avatar

Great piece by @willoremus on the prevalence of OpenAI bots appearing across the web:
https://www.washingtonpost.com/technology/2024/01/20/openai-use-policy-ai-writing-amazon-x/

Here's a piece on a study Indiana researchers did that identified a ChatGPT powered network on X/Twitter:
https://www.techpolicy.press/researchers-identify-false-twitter-personas-likely-powered-by-chatgpt/

JosephMenn, to random

Gift link: Russian government hackers broke into Microsoft’s systems and stole executive emails. The company is already under investigation for lapses that allowed diplomats’ emails to be taken by the Chinese. My story is here. https://wapo.st/3U3Aqgl

dangillmor, (edited ) to random
@dangillmor@mastodon.social avatar

Google is poisoning its news aggregation site with promiscuous adoption of "AI" generated content.

This means Google "News" (the quotes will henceforth be in any mention I make of the place) should no longer be trusted.

What a stupid move, plainly spawned by pure greed.

https://www.404media.co/google-news-is-boosting-garbage-ai-generated-articles/

Fine reporting from 404 Media's Joseph Cox.

shortridge, to Cybersecurity
@shortridge@hachyderm.io avatar

zealots often shame humans for writing down their passwords, but as someone who just had to excavate the digital remains of a loved one who died suddenly:

please write down your credentials somewhere a trusted human can find them, especially your phone passcode and any primary passwords (like for email accounts, password manager, etc.)

the humans who care about you will need that access for many reasons; a "badass" threat model will only add helplessness to their grief

zackwhittaker, to random
@zackwhittaker@mastodon.social avatar

Powerful testimony by @Tarah to the Senate Homeland Security Committee about the Cyber Safety Review Board, set up by DHS to learn lessons from past cyber incidents.

Wheeler said CSRB members "do not have the time, freedom or authority to conduct independent, thorough investigations" of cybersecurity incidents. In written testimony, Wheeler added: "Depoliticize the CSRB by funding it, giving it subpoena power, and make it an independent civil agency instead of involving political appointees."

metacurity, to random

Detained Russian student allegedly helped Ukrainian hackers with cyberattacks
https://therecord.media/detained-russian-hacked-for-ukrainian

ElleGray, to random
@ElleGray@mstdn.social avatar

deleted_by_author

    •
    arstechnica, to random
    @arstechnica@mastodon.social avatar

    Lazy use of AI leads to Amazon products called “I cannot fulfill that request”

    The telltale error messages are a sign of AI-generated pablum all over the Internet.

    https://arstechnica.com/ai/2024/01/lazy-use-of-ai-leads-to-amazon-products-called-i-cannot-fulfill-that-request/?utm_brand=arstechnica&utm_social-type=owned&utm_source=mastodon&utm_medium=social

    dangoodin, to random

    The real headline here should be:

    "Even after being purged with no explanation, prominent journalists cling to toxic platform hellbent on undermining a free press"

    https://www.vice.com/en/article/5d948x/x-purges-prominent-journalists-leftists-with-no-explanation

    ddosecrets, to random

    Announcing the Greenhouse Project - a new anti-censorship initiative from . By acting as a 'publisher of last resort' and ensuring the reporting and source files are preserved, the Greenhouse Project builds on DDoSecrets' previous efforts to reverse the chilling effects of censorship by creating a "warming effect". https://ddosecrets.com/wiki/Appin_Uncensored

    After Reuters published an exposé about an Indian hacking firm, a temporary court order forced them to remove the reporting from their website. The article was subsequently removed from the Internet Archive, and other outlets began to censor their coverage as well, removing passages and entire articles. The original Reuters article has now been uncensored by Distributed Denial of Secrets, and is presented here along with the documentation: https://ddosecrets.com/wiki/Appin_Uncensored

    Donate to DDoSecrets to keep leaks and publishing alive in 2024: https://donorbox.org/ddosecrets-five-years-later

    donmccurdy, to random
    @donmccurdy@fosstodon.org avatar

    "Signal is Expensive”, from CEO @Mer__edith, is very good. The transparency around infrastructure costs had me hooked from the start, but the ways they've rearchitected ubiquitous features (profile pictures, GIF sharing, finding contacts) to protect user privacy, that’s really stunning.

    https://signal.org/blog/signal-is-expensive/

    donmccurdy,
    @donmccurdy@fosstodon.org avatar

    Example: I had absolutely no optimism that anyone implemented contact discovery without, uh, storing all my contacts. And here Signal has been doing it all along?

    This should be the norm. An OS-level feature, even. Tremendous dedication by the Signal team.

    JosephMenn, to random

    Incredibly, OG Mickey Mouse will slip off his copyright coil on Jan. 1. https://variety.com/2023/tv/news/mickey-mouse-public-domain-disney-copyright-lawsuits-1235844322/

    JosephMenn,

    Actually, he has been fair game for more than 15 years, as I wrote for LA Times that long ago. But not everyone read that. https://www.latimes.com/archives/la-xpm-2008-aug-22-fi-mickey22-story.html

    paulisci, to random

    The 2023 Headline of the Year Nominees

    🧵

    paulisci,

    2023 Headline of the Year nominee (November)

    willoremus, to random
    @willoremus@mastodon.social avatar

    Musk's dismantling of Twitter's content moderation has been welcomed by Congressional Republicans in the US. Europe's government is less impressed.

    The EU today launched formal proceedings against X over terrorist content, hate speech, "Community Notes" and more. Story by Aaron Gregg
    & me: https://www.washingtonpost.com/technology/2023/12/18/european-union-x-probe-elon-musk/

  • All
  • Subscribed
  • Moderated
  • Favorites
  • anitta
  • ethstaker
  • rosin
  • mdbf
  • cubers
  • Youngstown
  • slotface
  • InstantRegret
  • thenastyranch
  • Durango
  • kavyap
  • everett
  • DreamBathrooms
  • ngwrru68w68
  • megavids
  • magazineikmin
  • osvaldo12
  • modclub
  • love
  • khanakhh
  • GTA5RPClips
  • tacticalgear
  • cisconetworking
  • tester
  • provamag3
  • normalnudes
  • Leos
  • JUstTest
  • All magazines
    •