Open post
Security Bits Logo no alpha channel

Security Bits with Bart Busschots — 12 June 2022

Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. 🇺🇸 An interesting (and slightly depressing) look at the DOJ’s change in official policy around the CFAA from the security researcher’s POV: What Counts as “Good Faith Security Research?” — krebsonsecurity.com/… Social Media Developments […]

Continue readingMore Tag
Open post
Security Bits Logo no alpha channel

Security Bits — 12 December 2021

Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. 🇺🇸 🇺🇬 Apple informed the US State Department that at least 9 iPhones used by their staff were infected with the NSO Group’s Pegasus malware. It’s not clear which NSO Group customer is responsible, […]

Continue readingMore Tag
Open post
Security Bits Logo no alpha channel

Security Bits — 14 November 2021

Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. Following on from our discussion of 2FA bypasses by tricking people into giving up their one-time-passwords, Vice did a detailed article describing one of the new 2FA-bypass-as-a-service cybercrime offerings: The Booming Underground Market for […]

Continue readingMore Tag
Open post
Security Bits Logo no alpha channel

Security Bits — 21 March 2021

Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. An interesting timeline of the Microsoft Exchange mega-attack discussed last time (Editorial by Bart: it really begs the question ‘what took Microsoft so long?’) — krebsonsecurity.com/… Bloomberg Report that when Parler (the social media […]

Continue readingMore Tag
Open post
Security Bits Logo

Security Bits – Password Trackers, IOHIDeous, Meltdown & Spectre

Security Bits – 5 Jan 2018 Security Medium 1 — Password Managers as Trackers Security researchers have found that less-reputable tracking firms have deployed JavaScript which uses invisible forms to trick password managers into entering information which can then be used as a kind of super-cookie that users cannot delete, and hence, track them around […]

Continue readingMore Tag
Scroll to top