Raisin8659
@Raisin8659@monyet.cc
- Submitted 9 months ago to technology@lemmy.world | 2 comments
- [Tor Project] Code audit for the Tor Project completed by Radically Open Securityblog.torproject.org ↗Submitted 9 months ago to technology@lemmy.world | 3 comments
- Experts Detail Multi-Million Dollar Licensing Model of Predator Spyware; apparently, rebooting Android or iOS don't always remove the spywarethehackernews.com ↗Submitted 11 months ago to technology@lemmy.world | 0 comments
- [Corp Blog] A big win for open Internet: Сourt sides with an ad blocker in a copyright caseadguard.com ↗Submitted 1 year ago to technology@lemmy.world | 10 comments
- You can no longer activate new Windows 11 builds with Windows 7 or 8 keys; maybe last chance to activate using Windows 7 or 8 keys, for 22H2.www.neowin.net ↗Submitted 1 year ago to technology@lemmy.world | 118 comments
- Comment on GitHub launches passkey support into general availability 1 year ago:
There are two types of passkey. Syncable and device-bound. (see fidoalliance.org/passkeys/). Theoretically, the device-bound passkeys never leave the device and users don’t have any access to it except to use it for authentication. The syncable type will first and foremost be synced by the platforms themselves (Google, Microsoft, and Apple), but eventually the 3rd-party password managers will be allowed to be sync providers, but possibly only on newly-released OSes.
As far as I know, the passkey implementations currently on Android and Windows are device-bound; they are not synced to the cloud.
- Comment on GitHub launches passkey support into general availability 1 year ago:
It works for Google, Adobe, and Github for me, on Firefox; those are all the sites I use that support passkeys. It even works with Firefox on Android 13.
Do you have Windows hello enabled? You may want to investigate this more.
- Comment on GitHub launches passkey support into general availability 1 year ago:
This is from the horse’s mouth: fidoalliance.org/passkeys/
- Comment on GitHub launches passkey support into general availability 1 year ago:
It is a FIDO alliance protocol. This is meant to replace/supplement password, not as 2FA. The sites I use that implement it, Google, Adobe, and Github use it to supplant both the password and 2FA. Cool thing about it is more less: 1) unphishable 2) doesn’t matter if the website’s passphrase data leaks.
- Comment on [deleted] 1 year ago:
Good question. My bad.
- Comment on GitHub launches passkey support into general availability 1 year ago:
And Tiktok!
- Comment on GitHub launches passkey support into general availability 1 year ago:
Firefox ESR 102.15 & windows 11 (Hello) seem to work fine.
- Comment on [deleted] 1 year ago:
Yeah, neither seems likely any time soon.
- Submitted 1 year ago to technology@lemmy.world | 25 comments
- [EFF] New Privacy Badger Prevents Google From Mangling More of Your Links and Invading Your Privacywww.eff.org ↗Submitted 1 year ago to technology@lemmy.world | 19 comments
- Submitted 1 year ago to technology@lemmy.world | 0 comments
- Google Authenticator Blamed to have made one company’s network breach much, much worsearstechnica.com ↗Submitted 1 year ago to technology@lemmy.world | 24 comments
- Submitted 1 year ago to technology@lemmy.world | 5 comments
- Comment on Meduza co-founder's phone infected with Pegasus 1 year ago:
Yeah, it spreads to everybody that is a “threat” to the power that be.
- Comment on Meduza co-founder's phone infected with Pegasus 1 year ago:
a person of interest
Thanks for the reminder.
article:
journalists, opposition politicians, and activists
wikipedia: pretty much anybody of interests of the people with the ability to acquire the service
journalists, lawyers, political dissidents, and human rights activists
scholars, bureaucrats (India)
politicians: head of stead (Iraq), mayors (Israel), associates (Israel), politicians (Israel), son of prime-minister (Israel), presidential candidate and associates (Mexico), prime minister (Morocco), King (Morocco)
government employees (Israel), government officials (Israel), ex government officials (Israel), military officials (Morocco)
employees of government-owned companies (Israel),
suspects (Israel), drug cartels (Mexico), criminal (Netherlands)
civil society members
heads of corporations (Israel)
Panama: foreign spying, including for spying on political opponents, magistrates, union leaders, and business competitors, with Martinelli allegedly going so far as to order the surveillance of his mistress using Pegasus.[5]
- Comment on Meduza co-founder's phone infected with Pegasus 1 year ago:
Thx. You don’t seem to be the only one.
In July 2022, Charlie Osborne of ZDNet suggested that individuals who suspect a Pegasus infection use a secondary device with GrapheneOS for secure communication.
- Comment on Meduza co-founder's phone infected with Pegasus 1 year ago:
Well, that’s most terrifying. Can you do anything about it except not using smartphones?
- Comment on Don't worry, folks. Big Tech pinky swears it'll build safe, trustworthy generative AI 1 year ago:
I wonder if, for Meta, being open-sourced wouldn’t fit the company with the rest. Also, for now, it looks like a publicity stunt with no real teeth. Those more substantial AI companies maybe holding out for more favorable treatments.
- Don't worry, folks. Big Tech pinky swears it'll build safe, trustworthy generative AIwww.theregister.com ↗Submitted 1 year ago to technology@lemmy.world | 20 comments
- [EFF] California’s Middle Mile Network Must Bridge the Digital Divide, Not Reinforce Itwww.eff.org ↗Submitted 1 year ago to technology@lemmy.world | 1 comment
- Comment on Meta uses your Facebook data for AI training, but opting out is a "review" game 1 year ago:
Opting out is likely impossible for people living outside the GDPR area right now.
- Comment on Experts Fear Crooks are Cracking Keys Stolen in LastPass Breach 1 year ago:
TLDR;
In November 2022, LastPass, a password manager service, suffered a data breach in which hackers stole password vaults containing encrypted and plaintext data for over 25 million users. Since then, there has been a series of cryptocurrency thefts targeting individuals in the tech industry, totaling more than $35 million. These thefts primarily targeted individuals deeply integrated into the cryptocurrency ecosystem, including employees of crypto organizations and venture capitalists.
Researchers, led by Taylor Monahan, CEO of MetaMask, have identified a common factor among these victims: they had previously used LastPass to store their “seed phrase,” which is a critical private key for accessing their cryptocurrency investments. Armed with this seed phrase, attackers can instantly access and transfer the victim’s cryptocurrency holdings.
The LastPass breach exposed vulnerabilities in its security, particularly related to the master passwords and encryption settings. LastPass users who stored important passwords, especially for cryptocurrency accounts, are urged to change their credentials immediately and migrate their crypto holdings to offline hardware wallets. Alternatives like 1Password, which offer additional security layers like a Secret Key, are recommended.
While the research suggests a strong link between the LastPass breach and the cryptocurrency thefts, it’s challenging to definitively prove causation. Nonetheless, security experts advise taking immediate action to protect digital assets.
- Comment on Do eSIMs have any downsides from a privacy standpoint? 1 year ago:
Turn it off and put it in a Faraday-cage bag.
- Comment on US military plans to unleash thousands of autonomous war robots over next two years 1 year ago:
How convenient. Now we can blame the “accidental” killing on the bots.
- Comment on Can't see most of the media on Liftoff 1 year ago:
Did this happen recently? Does it happen to all posts? A bunch of admins purge images from their servers to get rid of CSAMs, leaving some images broken.
The other thing is, since the same admins also now dictate that the clients fetch images directly from the community’s server, if the server is unreachable (as most often happens with lemmy.world), the images may not be loadable.