Conversation

Notices

Embed this notice
Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Wednesday, 12-Jun-2024 02:48:16 JST Ryan Castellucci :nonbinary_flag:

Wasn't there some sort of shitstorm about Keeper Security a while back?

In conversation about 6 months ago from infosec.exchange permalink
- Embed this notice
  Dan Goodin (dangoodin@infosec.exchange)'s status on Wednesday, 12-Jun-2024 02:52:54 JST Dan Goodin
  in reply to
  
  @ryanc
  https://www.techdirt.com/2017/12/21/keeper-security-files-bullshit-slapp-suit-against-ars-technica-letting-many-more-people-know-not-to-use-software/
  In conversation about 6 months ago permalink
  Attachments
  1. Untitled attachment
- Embed this notice
  Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Wednesday, 12-Jun-2024 02:55:58 JST Ryan Castellucci :nonbinary_flag:
  in reply to
  - Dan Goodin
  @dangoodin yup, that was it, thanks.
  
  In conversation about 6 months ago permalink
- Embed this notice
  Sc00bz (sc00bz@infosec.exchange)'s status on Wednesday, 12-Jun-2024 04:37:51 JST Sc00bz
  in reply to
  - Dan Goodin
  @ryanc @dangoodin Don't forget this is a pattern. See "Vendor response" https://blog.fox-it.com/2013/04/05/security-advisory-unencrypted-storage-of-confidential-information-in-keeper-password-data-vault-v5-3-for-ios/. Also they don't like fixing things unless it's public. Timeline Jan 9-May 11 (they started getting SMTP 550 errors Feb 1) then went public May 15 https://seclists.org/fulldisclosure/2018/May/41 and "fixed" May 17 https://github.com/Keeper-Security/Commander/commit/ab0e928452bce6abaf12135814dbd5929b04ab0e
  I just realized their name is "sosumi" "So sue me"... oh this is a thing https://en.wikipedia.org/wiki/Sosumi... now feel really stupid for wondering if Sosumi got sued.
  In conversation about 6 months ago permalink
  Attachments
  1. Domain not in remote thumbnail source whitelist: blog.fox-it.com
    
    Security advisory: Unencrypted storage of confidential information in Keeper® Password & Data Vault v5.3 for iOS
    
    from Fox IT
    
    Summary Paul Pols of Fox-IT’s penetration testing team discovered a critical vulnerability in version 5.3 of the “Keeper® Password & Data Vault” app for iPhones, iPods touch a…
  2. Domain not in remote thumbnail source whitelist: seclists.org
    
    Full Disclosure: Keeper Commander
    
    from sosumi
  3. Untitled attachment
  4. No result found on File_thumbnail lookup.
    
    Sosumi
    
    Sosumi is an alert sound introduced by Jim Reekes in Apple Inc.'s Macintosh System 7 operating system in 1991. The name is derived from the phrase "so, sue me!" because of a long running court battle with Apple Corps, the similarly named music company, regarding the use of music in Apple Inc.'s computer products. History Sosumi is a short xylophone sample, which gained notoriety in computer folklore as a defiant pun name, in response to a long-running Apple Corps v Apple Computer trademark conflict. The sound was long included in subsequent versions of its computer OS releases. However, in 2020 it was replaced in macOS Big Sur. During the development of System 7, the two companies concluded a settlement agreement from an earlier dispute when Apple added a sound synthesis chip to its Apple IIGS machine. As a result, Apple Computer was prohibited from using its trademark on "creative works whose principal content is music". When new sounds for System 7 were created, the sounds were reviewed by Apple's Legal Department who objected that the new sound alert "chime" had a name that was "too musical", under a 1991...

Public

Conversation

Notices

Feeds