Thema: Wie sicher ist https wirklich? (Die POODLE Sicherheitslücke.) Was bisher geschah… * [[http://www.bloomberg.com/news/2014-10-02/jpmorgan-says-data-breach-affected-76-million-households.html|JPMorgan Says Data Breach Affected 76 Million Households]] * [[https://krebsonsecurity.com/2014/10/signed-malware-is-expensive-oops-for-hp/|Signed Malware = Expensive “Oops” for HP]] * [[https://www.kickstarter.com/projects/augustgermar/anonabox-a-tor-hardware-router?ref=nav_search|Anonabox Kickstarter (gesperrt)]] * [[http://www.aliexpress.com/item/New-2014-300Mbps-WT3020A-Multiprotocol-Portable-Mini-WIFI-Router-with-USB-data-line-Wireless-Router-wi/1691403728.html|WT3020A WLAN Router (AliExpress)]] * [[http://twitter.com/justinsteven/status/522165101390876672|@justinstevens]] über Backdoors in der Anonabox * [[http://www.netresec.com/?page=Blog&month=2014-10&post=Chinese-MITM-Attack-on-iCloud|MITM Attacke auf iCloud in China]] * [[https://support.apple.com/kb/HT6550|Apple kBase 6550]] über die Sicherheit von iCloud und wie bei Zertifikatswarnungen zu agieren ist. * [[http://uk.reuters.com/article/2014/10/22/uk-hungary-internet-tax-idUKKCN0IB0RI20141022|Reuters: Hungary internet tax]] * [[http://futurezone.at/netzpolitik/tausende-demonstrierten-in-budapest-gegen-internetsteuer/93.522.916|Futurezone: Proteste gegen Internetsteuer]] * [[http://research.neustar.biz/2014/09/15/riding-with-the-stars-passenger-privacy-in-the-nyc-taxicab-dataset/|NY Taxi Fahrten deanonymisiert]] * [[http://www.washingtontimes.com/news/2014/oct/21/chicago-area-voting-machine-casts-republican-candi/|Chicago-area voting machine casts Republican candidate’s vote for Democratic foe]] * [[http://mobilesecurityares.blogspot.co.at/2014/10/why-samsung-knox-isnt-really-fort-knox.html|Why Samsung Knox isn't really a Fort Knox]] * [[https://www.samsungknox.com/en/blog/response-blog-post-samsung-knox|In response to a blog post on Samsung KNOX]] * [[http://threatpost.com/nsa-approved-samsung-knox-stores-pin-in-cleartext/109018|NSA-APPROVED SAMSUNG KNOX STORES PIN IN CLEARTEXT]] * [[https://datavibe.net/~sneak/20141023/wtf-icloud/|iCloud Uploads Local Data Outside of iCloud Drive]] * [[https://support.apple.com/kb/TS4372|Apple kBase: iCloud: Unsaved documents in Apple apps that use Documents in the Cloud are automatically saved to iCloud]] * [[https://twitter.com/mariehuynh/status/520010471349288960/photo/1|This is one of the worst security questions I’ve seen.]] * [[https://twitter.com/sambowne/status/521016794606501889|Don't use Amazon on open Wifi Networks]] * [[https://www.eff.org/deeplinks/2014/09/computercop-dangerous-internet-safety-software-hundreds-police-agencies| ComputerCOP: The Dubious 'Internet Safety Software' That Hundreds of Police Agencies Have Distributed to Families]] * [[http://futurezone.at/netzpolitik/beispiellose-ueberwachungsbefugnisse-fuer-die-finanz/93.542.609|Beispiellose Überwachungsbefugnisse für die Finanz]] * [[http://www.parlament.gv.at/PAKT/VHG/XXV/ME/ME_00068/index.shtml|Parlament: 2.Abgabenänderungsgesetz 2014 - Überwachungsbefugnisse für die Finanz]] * [[http://www.wired.com/2014/10/verizons-perma-cookie/|Verizon’s ‘Perma-Cookie’ Is a Privacy-Killing Machine]] * [[http://lessonslearned.org/sniff|Check for Verizon Sniffing Cookie]] use your PHONE's GSM/3G/4G connection to check! Wie sicher ist https wirklich? * [[https://ssllabs.com/ssltest|https Seiten Testen]] * [[https://8ack.de/ssl/|Alexa Top 10.000 - SSL/TLS - Versions and Distribution Summary]] Tips aus der Diskussion: * [[https://ssd.eff.org/|EFF: Surveillance Self Defense]] Tips, Tools and How-tos for Safer Online Communications