If you follow these, I'm guessing you're already familiar with 2 Factor Authentication (2FA). The thing about 2FA is that it comes in multiple forms. Ignoring the "who you are" factor, you could be using anything from sms based, TOTP, FIDO, or push based. Heck, I'm sure I'm missing some, but those are the common … Continue reading Push 2FA worse than sms? →

Android 14 set to block certain outdated apps from being installed

https://9to5google.com/2023/01/23/android-14-block-install-outdated-apps/

Web Hackers vs. The Auto Industry: Critical Vulnerabilities in Ferrari, BMW, Rolls Royce, Porsche, and More

https://samcurry.net/web-hackers-vs-the-auto-industry/

Researchers Could Track the GPS Location of All of California’s New Digital License Plates

https://www.vice.com/en/article/wxn9vx/researchers-track-reviver-digital-license-plate-gps-location

Messenger billed as better than Signal is riddled with vulnerabilities

https://arstechnica.com/information-technology/2023/01/messenger-billed-as-better-than-signal-is-riddled-with-vulnerabilities/

Are quantum computers about to break online privacy?

https://www.nature.com/articles/d41586-023-00017-0

Canada’s national police force admits use of spyware to hack phones

https://www.politico.com/news/2022/06/29/canada-national-police-spyware-phones-00043092

Leaked Documents Show FBI, DEA and U.S. Army Buying Italian Spyware

https://theintercept.com/2015/07/06/hacking-team-spyware-fbi/

Happy new year. A good time to review.

I'd like to start off by wishing everyone a happy new year. With the new year, it's worth reviewing your devices for privacy and security concerns, especially since you may have recently received a new device recently. Because I'm feeling a bit lazy this time around, I tasked chatgpt with writing this blog post and … Continue reading Happy new year. A good time to review. →

New Uber Data Breach Resulting From Third Party Vendor Cyberattack

https://www.secureblink.com/cyber-security-news/new-uber-data-breach-resulting-from-third-party-vendor-cyberattack

Google Unified security and privacy settings is available for other devices too

https://www.realmicentral.com/2022/12/07/google-unified-security-and-privacy-settings-is-available-for-other-devices-too/

Google shares details of newly found commercial spyware threats

https://www.zdnet.com/article/google-shares-newly-found-commercial-spyware-threats/

Tag: security

Meta’s Account Center came with a 2FA-defeating bug

GoTo says hackers stole customers’ backups and encryption key

Bitwarden design flaw: Server side iterations

Push 2FA worse than sms?