Notices tagged with security, page 2

🚨 New research from ETH Zurich has found that popular password manager's zero-knowledge encryption claims don't fully hold up if their servers are compromised. ⚠️

🔑 LastPass, Dashlane & Bitwarden were identified as being affected, this is significant because cloud password managers commonly claim that their user's data would be unaffected if they were compromised. 👾

#privacy #security #passwordmanager

https://www.theregister.com/2026/02/16/password_managers/

✅ Dashlane & Bitwarden promptly issued fixes.

❌ LastPass did not issue a fix and stated: "our own assessment of these risks may not fully align with the severity ratings assigned by the ETH Zürich team."

💡In 2022, LastPass experienced a breach that impacted 1.6 million users due to inadequately strong technical and security measures within their infrastructure.

The best time to switch from LastPass was yesterday; the second best is today. 🗑️

Here's what we recommend ⬇️

#lastpass #security

Security reminder:

When's the last time you've checked that your other LUKS keyslots are still empty?

#linux #security #backdoors

Mozilla kappt Firefox-Support für Windows 7, 8 und 8.1 endgültig

Mozilla wollte den Support für Firefox unter Windows 7, 8 und 8.1 bereits 2024 kappen. Der erweiterte Support endet nun im Februar.

https://www.heise.de/news/Mozilla-kappt-Firefox-Support-fuer-Windows-7-8-und-8-1-endgueltig-11180671.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

#Firefox #IT #Mozilla #Security #Windows #news

𝗦𝗔𝗟𝗩𝗜𝗔𝗠𝗢 𝗙-𝗗𝗥𝗢𝗜𝗗 𝗘 𝗧𝗨𝗧𝗧𝗘 𝗟𝗘 𝗜𝗡𝗜𝗭𝗜𝗔𝗧𝗜𝗩𝗘 "𝗔𝗣𝗘𝗥𝗧𝗘" 𝗦𝗨 𝗔𝗡𝗗𝗥𝗢𝗜𝗗

Da oggi è comparso il banner su #Fdroid per mobilitare gli utenti #Android contro la decisione di #Google di limitare l'utilizzo di software libero ed #opensource , non distribuito dalla sua piattaforma proprietaria.

Un pericoloso tentativo di comprimere la nostra liberta di scelta.

𝗟𝗲𝗴𝗴𝗶 𝗰𝗼𝗺𝗲 𝗼𝗽𝗽𝗼𝗿𝘁𝗶：
https://keepandroidopen.org/it/

𝗙𝗶𝗿𝗺𝗮 𝗹𝗮 𝗣𝗲𝘁𝗶𝘇𝗶𝗼𝗻𝗲 𝘀𝘂 𝗖𝗵𝗮𝗻𝗴𝗲.𝗼𝗿𝗴
https://c.org/qMgyFC6yXK

@opensource

#sideloading #privacy #security

Wrapping up the Munich Security Conference 2026 with a clear message: Europe is at its strongest when human rights are at the core of all our efforts. Human dignity isn't an add-on; it's the beating heart of everything. National security succeeds when we uphold the rule of law and the human rights roadmap. Our stability & prosperity depend on human rights being carried forward as a foundational pillar of the new global order #HumanDimension #humanrights #Security #Ukraine #AI #Climate #MSC2026

It wasn't before?

Discord advises UK users that they "may be part of an experiment" where instead of their age verification data never leaving their phone, it will now actually leave their phone

https://www.eurogamer.net/discord-advises-uk-users-that-they-may-be-part-of-an-experiment-where-instead-of-their-age-verification-data-never-leaving-their-phone-it-will-now-actually-leave-their-phone

#Discord #UK #AgeVerification #OnDevice #Privacy #Security #Tech #Gaming

"Office of Budget and Management Director Russell Vought killed USAID, causing hundreds of thousands of deaths, and is now using the money he 'saved' to bankroll his security detail.

A Reuters report Friday states that the Project 2025 architect who promised to put federal employees 'in trauma' is spending $15 million of former USAID funding—"

~ Malcolm Ferguson

#Trump #RussellVought #Project2025 #USAID #children #starvation #healthcare #security
/1

https://newrepublic.com/post/206559/russ-vought-usaid-funds-security

Tesla exec tells Congress ‘no one has ever’ taken control of its vehicles — but that’s not true

Tesla Vice President of Vehicle Engineering Lars Moravy told a Senate committee this week that no one has ever remotely taken control of Tesla vehicles. That claim doesn’t hold up to the facts of history.

In fact, a single hacker once gained control of Tesla’s entire fleet.

#LarsMoravy #tesla #security #cybersecurity #automotive #auto #cars #transportation #hacked

https://electrek.co/2026/02/06/tesla-exec-tells-congress-no-one-has-ever-taken-control-vehicles-but-thats-not-true/

This #PlayIntegrity stuff is really questionable. My banking app won't run on a #GoogleFree #LineageOS running #Android 16 with all the latest security updates. But a #GooglePlay device running Android 10 that was last updated in 2021 is approved. This is not a real #security check. This looks like a #gatekeeper #monopoly check.

Another tech co-op? Yes, but this is a little different. Privacy and security? Sure - though it's not just about your privacy and security, but everyone's (after all, none are free until all are free). There are alternative browsers led by people not friendly to the #LGBTQ+ community, there are sustainable computer companies with ties to hate speech. This isn't about that. This is about promoting alternatives to #BigTech at the intersection of #privacy #security #sustainability and #inclusivity.

Safer Internet Day in a nutshell: Updates zeitnah installieren. Für jeden Dienst ein eigenes langes Zufallspasswort + 2FA / Passkeys. Links erst prüfen, dann klicken. Backups nicht vergessen. Weniger Apps, weniger Berechtigungen, weniger Datenspuren. Tracking und Werbung blockieren. Wo möglich Ende-zu-Ende nutzen. Stay safe! 🛡️

#SaferInternetDay #security #sicherheit

X offices raided in #France as prosecutors #investigate child abuse images and deepfakes

see: apnews.com/article/france-x-in…

#news #musk #justice #politics #police #europe #eu #crime #security #socialmedia #internet #cybercrime #online

#NSA detected phone call between foreign #intelligence and a person close to #Trump

see: theguardian.com/us-news/2026/f…

> #Bakaj said that the #ODNI ’s office cited various reasons for the delay in intelligence sharing, including the complaints’ top #secret classification, the fall #government shutdown and the intelligence community inspector general’s failure to notify #Gabbard of her reporting requirements.

#news #usa #security #politics #whitehouse #problem

A friendly reminder to never trust manufacturers privacy protections.

I was recently attempting to get an external camera functioning, so I started polling various video devices sequentially to find out where it appeared and stumbled across a previously unknown (to me at least) camera device, right next to the regular camera that is not affected by the intentional privacy flap or "camera active" LED that comes built in.

I had always assumed this was just a light sensor and didn't think any further about it.

The bandwidth seems to drop dramatically when the other camera is activated by opening the privacy flap, causing more flickering.
This was visible IRL and wasn't just an artifact of recording it on my phone.
I deliberately put my finger over each camera one at a time to confirm the sources being projected.

A friend of mine suggested this may be related to Windows Hello functionality at a guess but still seems weird to not be affected by the privacy flap when its clearly capable of recording video.

dmidecode tells me this is a LENOVO Yoga 9 2-in-1 14ILL10 (P/N:83LC)

Command I used for anyone to replicate the finding. (I was on bog standard Kali, but I'm sure you'll figure out your device names if they change under other distros):
vlc v4l2:///dev/video0 -vv --v4l2-width=320 --v4l2-height=240 & vlc v4l2:///dev/video2 -vv --v4l2-width=320 --v4l2-height=240

#Cyber #Security #Infosec #Lenovo #Privacy #Hacking

#FBI stymied by Apple's #LockdownMode after seizing journalist's #iPhone

The Federal Bureau of Investigation has so far been unable to access data from a #WashingtonPost reporter's iPhone because it was protected by Apple's Lockdown Mode when agents seized the device from the reporter's home, the US government said in a court filing.
#apple #security #privacy #journalism

https://arstechnica.com/tech-policy/2026/02/fbi-stymied-by-apples-lockdown-mode-after-seizing-journalists-iphone/

I don't have an account on Reddit, but there are reports about this all over r/pcloud, and it looks like this issue has existed since at least Jan 19, 2026, with no communication from #pCloud.

Recommend immediate file backup, data deletion, and account deletion. This is the most egregious user isolation #privacy #security #breach I've ever seen in my life.

I have no idea if my data was compromised, but I definitely saw someone else's data in my account on Windows, but not on #Linux, or web.