Uncategorized

FreezeMessenger Beta 3 Released

Posted on

Three weeks and 170 commits later marks the third beta of FreezeMessenger. This release focused most extensively on WebPro functionality and stability. From the release notes: Most core functionality is present and tested, only minor features will be added, and no breaking API or database changes should occur at this point — at this time, […]

FreezeMessenger

FreezeMessenger Beta 2 Released

Posted on

Two weeks and 112 commits later, I am tagging FreezeMessenger Beta 2. This release ensures that Postgres is fully supported, and that all advertised cache methods (Memcached, Redis, and so-on) work as intended. From the release notes: This is the second beta of FreezeMessenger; most core functionality is present and tested, only minor features will […]

FreezeMessenger

FreezeMessenger Beta 1 Released

Posted on

After about seven years of on-again-off-again development, I have finally tagged Beta 1 of FreezeMessenger. From the release page: This is the first beta of FreezeMessenger 1.0. Most core functionality is present and tested, only minor features will be added, and no breaking API changes should occur at this point. However, database schema changes may […]

382 Computer Security Blog

[382] China Hacking SK Missile Defense

Posted on

The Wall Street Journal is reporting that John Hultquist, director of cyberespionage analysis at FireEye, believes that China is performing cyberattacks against the South Korean “Terminal High-Altitude Area Defense” (Thaad), a missile defense technology. “China opposes Thaad, saying its radar system can reach deep into its own territory and compromise its security,” writes the Journal. Hultquist […]

382 Computer Security Blog

[382] Broadcom

Posted on

There were two articles of particular interest to me this week, but in the interest of brevity I felt I should focus on just one. So instead of looking at the CIA toolkit used to infect Windows machines (which is nonetheless very worth reading!), I will be looking at how a vulnerability in Android Broadcom […]

382 Computer Security Blog

[382] LastPass vs The World

Posted on

I always recommend that everybody — from the technologically illiterate to experienced software engineers — use a password manager. Everybody is lazy; no one likes having to remember a bunch of different passwords, and will almost certainly reuse them across the hundreds of sites we have accounts for. By using random passwords stored in a password manager, we save […]

382 Computer Security Blog

[382] Teddy Ruxpin Likes to Talk

Posted on

ArsTechnica is reporting today on analysis from Troy Hunt (creator of HaveIBeenPwned) that over “2 million voice recordings of parents and their children” have been exposed to intruders. References to these recordings were contained in two password-unprotected databases of ~10GB each, “cloudpets-staging” and “cloudpets-testing,” with the references themselves pointing to unsecured AWS S3 files — anyone who knows […]