====== CryptoParty WIEN 31 ====== ===== Linkliste ===== * [[http://www.drei.at/portal/de/bottomnavi/kontakt-und-hilfe/technischer-support/einstellungen/|]] * [[http://fusion.net/story/40796/verizon-supercookie-letter/|Dear Verizon: A letter from a customer who would like her privacy back | Fusion]] * [[https://firstlook.org/theintercept/2015/01/26/secret-badass-spy-program/|Secret 'BADASS' Intelligence Program Spied on Smartphones - The Intercept]] * [[https://twitter.com/jhamby/status/559891026609831936|Jake Hamby auf Twitter: "WTF ad networks are leaking phone IMEIs unencrypted in HTTP requests? How is that not "personally identifiable"? @the_intercept @micahflee"]] * [[http://www.golem.de/news/massenueberwachung-bnd-speichert-220-millionen-telefondaten-jeden-tag-1501-112054.html|Massenüberwachung: BND speichert 220 Millionen Telefondaten - jeden Tag - Golem.de]] * [[https://grahamcluley.com/2015/03/xtube-porn-website-spreads-malware-after-being-compromised-by-hackers/|Xtube porn website spreads malware, following hack attack]] * [[http://www.computerworld.com/article/2895882/joint-effort-guts-superfish.html|Joint effort guts Superfish | Computerworld]] * [[http://www.itnews.com.au/News/402127,australia-passes-data-retention-into-law.aspx| Australia passes data retention into law - Security - News - iTnews.com.au ]] * [[http://ht.ly/KlTi4|octomagon/davegrohl · GitHub]] * [[http://venturebeat.com/2015/03/07/security-firm-finds-pre-installed-malware-on-xiaomi-mi-4-smartphone/|Security firm finds preinstalled malware on Xiaomi Mi 4 smartphone | VentureBeat | Security | by Ruth Reader]] * [[http://twitter.com/jeromesegura/status/576537774171418624/photo/1|Jérôme Segura auf Twitter: "Invalid SSL certificate trick used as scare tactic #TechSupportScams http://t.co/zcOLTxibVC"]] * [[http://www.golem.de/news/android-schadsoftware-vermeintlich-ausgeschaltetes-smartphone-hoert-mit-1502-112496.html|Android-Schadsoftware: Vermeintlich ausgeschaltetes Smartphone hört mit - Golem.de]] * [[http://www.howtogeek.com/210265/download.com-and-others-bundle-superfish-style-https-breaking-adware/|Download.com and Others Bundle Superfish-Style HTTPS Breaking Adware]] * [[https://www.linkedin.com/pulse/mobile-imsi-catchers-mainstream-frank?trk=object-title&utm_content=buffer32278&utm_medium=social&utm_source=twitter.com&utm_campaign=buffer|Why the surprise over the criminal use of mobile IMSI catchers? | Frank Engelsman | LinkedIn]] * [[http://www.parliament.uk/briefing-papers/POST-PN-488/the-darknet-and-online-anonymity| The darknet and online anonymity - POST Note - UK Parliament ]] * [[http://www.dailymail.co.uk/news/article-2985202/Scotland-Yard-chief-Hogan-Howe-calls-DIY-surveillance-help-police.html|Scotland Yard chief Hogan Howe calls for DIY surveillance to help police | Daily Mail Online]] * [[http://derstandard.at/2000013258506/Oesterreichisches-Parlament-stimmt-geschlossen-gegen-NSA-Spionage|]] * [[http://goo.gl/3xsBN4| Full details on CVE-2015-0096 and the failed MS10-... - HP Enterprise Business Community]] * [[http://techcrunch.com/2015/03/24/one-time-pads-ride-again/|Zendo Is My New Favorite Secure Messaging App | TechCrunch]] * [[http://twitter.com/soaj1664ashar/status/569255473570033666/photo/1|Ashar Javed auf Twitter: ""Enter your email to receive your password hint": https://t.co/WgxxLuhMrx Entered "custserv@gap.com" & hint exposed http://t.co/OIvfyKyKMv"]] * [[http://www.heise.de/newsticker/meldung/Ex-BND-General-NSA-wollte-Wirtschaftsspionage-betreiben-2569294.html|Ex-BND-General: NSA wollte Wirtschaftsspionage betreiben | heise online]] * [[http://torrentfreak.com/under-u-s-pressure-paypal-nukes-mega-for-encrypting-files-150227/|Under U.S. Pressure, PayPal Nukes Mega For Encrypting Files | TorrentFreak]] * [[http://arstechnica.com/security/2015/03/google-warns-of-unauthorized-tls-certificates-trusted-by-almost-all-oses/|Google warns of unauthorized TLS certificates trusted by almost all OSes [Updated] | Ars Technica]] * [[http://www.heute.de/spion-im-wohnzimmer-was-der-smarte-tv-ueber-den-zuschauer-weiss-37667186.html|Spion im Wohnzimmer: Was der smarte TV über den Zuschauer weiß - heute-Nachrichten]] * [[http://thenextweb.com/apps/2015/03/02/this-app-makes-encrypting-calls-and-messages-easy-for-everyone/|This App Makes Encrypting Calls And Messages Easy For All]] * [[http://twitter.com/jameslyne/status/575422442140794880/photo/1|James Lyne auf Twitter: "Best thing ever. What's wrong with this photo? http://t.co/5XNt2CTeWo"]] * [[http://krebsonsecurity.com/2015/02/spam-uses-default-passwords-to-hack-routers/|Spam Uses Default Passwords to Hack Routers — Krebs on Security]] * [[https://twitter.com/midnite_runr/status/577988740200730624/photo/1|Josh Pitts auf Twitter: "Uhhhh, nooooooo. http://t.co/A6bsxmaDNK"]] * [[https://www.youtube.com/watch?v=_ZaaSC7Eg4s&hl=en|EU Commissioner Oettinger calls net neutrality a "Taliban-like issue" - YouTube]] * [[http://thenextweb.com/opinion/2015/03/25/facebook-has-officially-declared-it-wants-to-own-every-single-thing-you-do-on-the-internet/|Facebook Wants To Own Everything You Do On The Internet]] * [[https://medium.com/matter/how-i-requested-my-photographs-from-the-department-of-homeland-security-97ec2d51f7a0|How I Requested My Photographs From The Department of Homeland Security — Matter — Medium]] * [[http://www.golem.de/news/nsa-ausschuss-de-cix-erhebt-schwere-vorwuerfe-wegen-bnd-abhoerung-1503-113196.html|NSA-Ausschuss: DE-CIX erhebt schwere Vorwürfe wegen BND-Abhörung - Golem.de]] * [[https://www.cpj.org/reports/2012/04/technology-security.php|Technology Security - Committee to Protect Journalist]] * [[http://ow.ly/JCxXr|]] * [[https://tails.boum.org/news/report_2015_01-02/index.en.html|Tails - Tails report for January and February, 2015]] * [[https://dev.flurry.com/secure/optOut.do|Flurry | App Advertising and Analytic]] * [[http://m.heise.de/newsticker/meldung/PanBox-Staatlich-gefoerderte-Verschluesselung-fuer-die-Cloud-2572243.html?from-classic=1|PanBox: Staatlich geförderte Verschlüsselung für die Cloud - heise online]] * [[http://bigstory.ap.org/article/b78ba433af3a45209668f745158d994c/clinton-ran-homebrew-computer-system-official-emails|House committee subpoenas Clinton emails in Benghazi probe]] * [[https://twitter.com/fleazpulli/status/574646725035581440|fleaz auf Twitter: "TIL: Android kommt nicht damit klar wenn man "(╯°□°)╯︵ ┻━┻" als SSID von einem AP benutzt :<"]] * [[http://boingboing.net/2015/03/25/bankrupt-radio-shack-will-sell.html|Bankrupt Radio Shack will sell the customer data they promised to keep private - Boing Boing]] * [[http://gizmodo.com/9-facts-about-computer-security-that-experts-wish-you-k-1686817774?utm_campaign=socialflow_gizmodo_twitter&utm_source=gizmodo_twitter&utm_medium=socialflow|9 Facts About Computer Security That Experts Wish You Knew]] * [[http://futurezone.at/netzpolitik/gesamte-telekommunikation-in-oesterreich-wird-gespeichert/116.081.559|“Gesamte Telekommunikation in Österreich wird gespeichert” - futurezone.at]] * [[http://www.heise.de/security/meldung/SSH-Client-Putty-Fast-vergessene-Sicherheitsluecke-geschlossen-2563230.html|SSH-Client Putty: Fast vergessene Sicherheitslücke geschlossen | heise Security]] * [[https://www.whitehouse.gov|The White House]] * [[http://polsy.org.uk/stuff/ytrestrict.cgi?ytid=https%3A%2F%2Fwww.youtube.com%2Fwatch%3Fv%3DfVekYIt-RhE|YouTube region restriction checker]] * [[https://netzpolitik.org/2015/eu-urheberrechtsreform-es-droht-leider-acta-reloaded-dank-der-konservativen/|EU-Urheberrechtsreform: Es droht leider ACTA-reloaded – dank der Konservativen [Updates] | netzpolitik.org]] * [[http://privdog.com/advisory.html|PrivDog]] * [[https://help.comodo.com/topic-169-1-413-6109-.html|Comodo Help]] * [[http://twitter.com/businessinsider/status/580782343071350784/photo/1|Business Insider auf Twitter: "Someone is attacking government websites, and a new anonymous hacking group is taking credit http://t.co/FKitfVTIQB http://t.co/OKIId6QfZV"]] * [[https://www.akvorrat.at/parlament-stimmt-geschlossen-gegen-massen%C3%BCberwachung|Parlament stimmt geschlossen gegen Massenüberwachung | AKVorrat]] * [[http://www.taz.de/Polizeiliche-Ueberwachung/!156061|Polizeiliche Überwachung: Der Track des Lebens - taz.de]] * [[http://heise.de/-2559094/ftw|Krankenversicherung trackt Nutzer per Smartphone-App | heise online]] * [[http://www.martinarenner.de/index.php?id=41695&no_cache=1&tx_ttnews[pointer]=3&tx_ttnews[backPid]=42201&tx_ttnews[tt_news]=59437&cHash=548eb36aad1524b280621d0fe9d8aa14|]] * [[http://gizmodo.com/hillary-clinton-also-ran-her-own-email-server-as-secret-1689373610|Hillary Clinton Also Ran Her Own Email Server As Secretary of State]] * [[http://futurezone.at/produkte/log-in-bei-windows-10-mit-irisscan-und-gesichtserkennung/120.046.270|Log-In bei Windows 10 mit Irisscan und Gesichtserkennung - futurezone.at]] * [[http://goo.gl/9aWCs0|Washable Smart Mattress That Tracks Your Sleep]] * [[http://ow.ly/K9PJT|]] * [[http://www.reporter-ohne-grenzen.de/feinde_internet/2015/|Feinde des Internets 2015 - Reporter ohne Grenzen für Informationsfreiheit]] * [[http://boingboing.net/2014/03/31/nsa-wiretapped-122-world-leade.html|NSA wiretapped 122 world leaders; GCHQ penetrated German satellite companies for mass surveillance potential - Boing Boing]] * [[https://addons.mozilla.org/en-US/firefox/addon/https-everywhere/|HTTPS Everywhere :: Add-ons for Firefox]] * [[https://www.hackread.com/canadian-jailed-for-refusing-to-unlock-his-phone-at-the-airport/|Canadian jailed for refusing to unlock his phone at the airport]] * [[http://m.futurezone.at/apps/facebook-messenger-spioniert-nutzer-aus/85.093.637|Facebook-Messenger spioniert Nutzer aus - futurezone.at]] * [[http://grin.to/t1fhq|Geheime Kommunikation: BSI programmierte und arbeitete aktiv am Staatstrojaner, streitet aber Zusammenarbeit ab | netzpolitik.org]] * [[http://twitter.com/PatChappatte/status/569744954165219328/photo/1|Chappatte Cartoons auf Twitter: "The #NSA hacked billions of SIM cards - © Chappatte in Le Temps, Geneva http://t.co/1UVzzXPkrD"]] * [[http://www.securityweek.com/superfish-ssl-interception-library-found-several-applications-researchers|Superfish SSL Interception Library Found in Several Applications: Researchers | SecurityWeek.Com]] * [[http://m.futurezone.at/digital-life/neuseeland-spionierte-laut-snowden-leaks-nachbarn-aus/117.679.010|Neuseeland spionierte laut Snowden-Leaks Nachbarn aus - futurezone.at]] * [[https://twitter.com/corbett/status/575392108757970944|Dr. Corbett Moran auf Twitter: "it's my birthday this week! instead of writing on my wall why not give me a call (bonus: on Signal) DM for CA number https://t.co/uW0T4jAksl"]] * [[http://owl.li/KuT4n|#UnfollowMe: 5 Reasons We Should All Be Concerned About Government Surveillance]] * [[http://www.nytimes.com/2015/03/03/us/politics/hillary-clintons-use-of-private-email-at-state-department-raises-flags.html?_r=0|Hillary Clinton Used Personal Email Account at State Dept., Possibly Breaking Rules - NYTimes.com]] * [[http://twitter.com/csoghoian/status/569873554415575042/photo/1|Christopher Soghoian auf Twitter: "If you're going to host a panel on the importance of default encryption, you should do it too @NewAmerica http://t.co/7PKnuvv9Ok"]] * [[http://dst.at/Mjc4NDE1|Jahrelange Kampagne der CIA zur Unterwanderung von Apple-Geräten - Netzpolitik - derStandard.at › Web]] * [[http://www.engadget.com/2015/03/06/utorrent-bitcoin-miner/|Popular torrent client can steal your CPU cycles to mine bitcoin]] * [[http://twitter.com/yangrunenberger/status/577400355719368704/photo/1|]] * [[http://www.parlament.gv.at/PAKT/PR/JAHR_2015/PK0248/|PK-Nr. 248 /2015]] * [[http://twitter.com/BrunoMorchio/status/570971177654599681/photo/1|Bruno Morchio auf Twitter: "So steht es um die Sicherheit in dem #Kohlekraftwerk #Hamburg #Moorburg. @tagesthemen veröffenlichen Passwort http://t.co/avSVApE5EE"]] * [[http://kurier.at/wirtschaft/wirtschaftspolitik/illegales-online-gluecksspiel-droht-das-aus/120.563.384|Illegalem Online-Glücksspiel droht das Aus - KURIER.at]] * [[http://www.engadget.com/2015/03/17/premera-blue-cross-data-breach/?ncid=rss_truncated|Health insurance data breach exposes 11 million people]] * [[http://kukuruku.co/hub/diy/usb-killer|USB Killer]] * [[http://blog.ndrix.com/2015/03/security-toddler-vs-phone-lock.html?utm_content=buffereea3a&utm_medium=social&utm_source=twitter.com&utm_campaign=buffer&m=1|Hendricks Solutions Blog: Security: Toddler vs Phone Lock]] * [[https://dev.ssllabs.com/ssltest/viewMyClient.html|Qualys SSL Labs - Projects / SSL Client Test]] * [[http://www.fiercewireless.com/europe/story/gemalto-pledges-probe-claims-nsa-gchq-sim-encryption-breaches/2015-02-20|Gemalto pledges to probe claims of NSA, GCHQ SIM encryption breaches - FierceWireless:Europe]] * [[http://on.tcrn.ch/l/W3Vq|WordPress Blocked In Pakistan | TechCrunch]] * [[http://www.theguardian.com/technology/2015/mar/19/cookies-how-to-avoid-being-tracked-online|Why the cookies law wasn't fully baked – and how to avoid being tracked online | Technology | The Guardian]] * [[http://www.theguardian.com/technology/appsblog/2013/sep/03/fitness-health-apps-sharing-data-insurance|Yes, those free health apps are sharing your data with other companies | Technology | The Guardian]] * [[https://t.co/lsVnDWAoeR|]] * [[http://read.bi/18XubR4|Vikingdom2015 anonymous hacking group threatens .gov websites - Business Insider]] * [[http://heise.de/-2561511/ftw|Telekom will umprogrammierbare SIM-Karte in vernetzten Geräten | heise online]] * [[http://www.heise.de/security/meldung/Zweifaktor-Dienst-Authy-liess-jeden-rein-2576764.html|Zweifaktor-Dienst Authy ließ jeden rein | heise Security]] * [[http://futurezone.at/digital-life/sim-karten-hack-gemalto-versucht-sich-rauszureden/116.234.169|SIM-Karten-Hack: "Gemalto versucht sich rauszureden" - futurezone.at]] * [[http://www.lemonde.fr/pixels/article/2015/02/23/piratage-de-gemalto-une-guerre-froide-au-sein-de-l-union-europeenne_4581935_4408996.html|Cartes SIM piratées : « Une guerre froide au sein de l’Union européenne »]] * [[http://www.theregister.co.uk/2015/03/12/nsas_on_drugs_infosec_bods_unveil_space_grade_malware/|Kaspersky claims to have found NSA's 'space station malware' • The Register ]] * [[http://dst.at/MjgwMDU1|Vorratsdatenspeicherung: EU-Kommission gibt neuen Anlauf auf - Netzpolitik - derStandard.at › Web]] * [[http://flip.it/0FrvK|How Superfish’s Security-Compromising Adware Came to Inhabit Lenovo’s PCs - NYTimes.com]] * [[http://bit.ly/19Qi8pI|]] * [[http://www.cert.at/services/blog/20150220150747-1386.html|Update: Gemalto hack - lessons learned - CERT.at]] * [[http://diepresse.com/home/wirtschaft/economist/4692299/OnlineCasino_Internetsperren-geplant|Online-Casino: Internetsperren geplant « DiePresse.com]] * [[http://futurezone.at/digital-life/ip-box-entsperrt-iphones-auf-brutale-art/120.503.416#.VQv72AqgtqM.twitter|IP-Box entsperrt iPhones auf brutale Art - futurezone.at]] * [[http://baycloud.com/blog/ghostery-google-the-limits-of-curated-list-script-blocking-and-corporate-influence|Baycloud - Google, Ghostery and the limits of Ad Blocking.]] * [[https://twitter.com/csoghoian/status/571331863605866496|Christopher Soghoian auf Twitter: "Re-up from last night: Australian intel chiefs questioned over Gemalto hack. Their responses are cringe-worthy. https://t.co/kD52ET5Qts"]] * [[https://murdeltas.wordpress.com/2015/03/02/2-jahre-cryptoparty-graz/|2 Jahre CryptoParty Graz | murdelta]] * [[http://www.slate.com/articles/technology/bitwise/2015/02/lenovo_superfish_scandal_the_result_of_evil_or_incompetence.single.html|Lenovo Superfish scandal: The result of evil, or incompetence?]] * [[http://cyberbingo.herokuapp.com/|CSI: Cyber Bingo]] * [[http://twitter.com/jeremyscahill/status/568918135245447168/photo/1|jeremy scahill auf Twitter: "The White House statement when asked about our encryption key heist story is just... wow http://t.co/D70wGXD8qT"]] * [[http://www.net-security.org/secworld.php?id=18033|]] * [[http://nullcon.net/website/archives/ppt/goa-15/mobile-self-defence.pdf|]] * [[http://twitter.com/thejoshpit/status/573057399742980096/photo/1|Joshua Franklin auf Twitter: "The password is built right into the SSID. How convenient! :) #MWC15 #infosec #security http://t.co/pwDSZtISMB"]] * [[http://www.golem.de/news/projekt-volksverschluesselung-fraunhofer-institut-vereinfacht-s-mime-einrichtung-1503-113011.html|Projekt Volksverschlüsselung: Fraunhofer Institut vereinfacht S/MIME-Einrichtung - Golem.de]] * [[https://mkln.org/?p=15207|Twitter trackt nun auch (indirekt) alle überall › mkln.org]] * [[http://www.nzherald.co.nz/nz/news/article.cfm?c_id=1&objectid=11412551|Snowden revelations / Ex-spy chief Bruce Ferguson: It's 'mission impossible' to eliminate Kiwi data - National - NZ Herald New]] * [[http://twitter.com/thegrugq/status/581000168717172737/photo/1|the grugq auf Twitter: "SS7 has strong security for billing, ensuring *someone* gets charged for the call. The rest, not so much... #SyScan http://t.co/Us5LT2dJON"]] * [[http://twitter.com/botherder/status/574963264666406912/photo/1|Claudio auf Twitter: "Examples of phone oddities from the last days. Just lovely. http://t.co/AZYBWVEJSd"]] * [[http://blog.telekom.com/2015/02/19/telekom-rechnung-online-sicherer/|So macht die Telekom die Rechnung Online sicherer | Blog.Telekom]] * [[http://www.pcworld.com/article/2886749/teen-hacks-car-with-15-worth-of-parts.html|Teen hacks car with $15 worth of parts | PCWorld]] * [[http://ow.ly/KknBd|UK web traffic mysteriously sent through Ukraine | TheHill]] * [[http://twitter.com/shroombab/status/578503364335562752/photo/1|Barbara Wimmer auf Twitter: "Hit your target faster with Gemalto! (Gesichtet auf der #CeBIT) http://t.co/tqlS0WUkmv"]] * [[http://www.techworm.net/2015/03/no-browser-is-safe-chrome-firefox-internet-explorer-safari-all-hacked-at-pwn2own-contest.html|No Browser is safe : Chrome, Firefox, Internet Explorer, Safari all hacked at Pwn2Own contest]] * [[http://onforb.es/1DZX5M9|Lenovo Only Made Up To $250,000 From Nightmare Superfish Deal, Say Sources - Forbe]] * [[http://tcrn.ch/18HMOJ6|Tor Users Must Now Provide A Phone Number To Open A New Twitter Account | TechCrunch]] * [[http://bit.ly/1vNurqL|Your Mobile Privacy is Under Threat Because of US and UK Spies - Global Voices Advocacy]] * [[http://order.hbonow.com|]] * [[http://ars.to/1LShUdc|We know where you’ve been: Ars acquires 4.6M license plate scans from the cops | Ars Technica]] * [[http://ars.to/1EDiDuN|Google warns of unauthorized TLS certificates trusted by almost all OSes [Updated] | Ars Technica]] * [[http://fm4.orf.at/stories/1754449/|GCHQ durchkreuzt "Industrie 4.0"-Plan der EU - fm4.ORF.at]] * [[http://interc.pt/1Ac5t5q|iSpy: The CIA Campaign to Steal Apple's Secret]] * [[http://www.washingtonpost.com/world/national-security/security-of-hillary-clintons-private-e-mail-server-comes-under-scrutiny/2015/03/10/fcccfb78-c737-11e4-aa1a-86135599fb0f_story.html|Security of Hillary Clinton’s private e-mail server comes under scrutiny - The Washington Post]] * [[https://web.archive.org/web/20150222233345/https://help.comodo.com/topic-72-1-451-6840-.html|Comodo PrivDog installation and download Help Guideline]] * [[https://www.mozilla.org/en-US/firefox/36.0/releasenotes/|Firefox — Notes (36.0) — Mozilla]] * [[http://heise.de/-2561663/ftw|Rahmenbedingungen für sichere Regierungs-Clouds | iX]] * [[http://twitter.com/JZdziarski/status/575845419147751424/photo/1|]] * [[http://articles.latimes.com/1995-06-02/business/fi-8710_1_rainbow-technologies|Rainbow Technologies Now Owns 'Clipper Chip' Maker - latime]] * [[http://twitter.com/FiloSottile/status/569904412828827648/photo/1|Filippo Valsorda auf Twitter: "PrivDog woke up and pulled the download from their servers, archived it here https://t.co/3U0K7GmgIq http://t.co/apcYGk8prQ"]] * [[https://blog.torproject.org/blog/|Blogs | The Tor Blog]] * [[http://krebsonsecurity.com/2015/02/turbotaxs-anti-fraud-efforts-under-scrutiny/|TurboTax’s Anti-Fraud Efforts Under Scrutiny — Krebs on Security]] * [[http://www.theprivacyblog.com/china/new-rules-in-china-upset-western-tech-companies-nytimes-com/|China requiring back doors in banking software - The Privacy Blog The Privacy Blog]] * [[http://ow.ly/JvrVU|Samsungs Smart-TVs senden Sprache und Text unverschlüsselt - News - gulli.com]] * [[https://twitter.com/pacohope/status/570915845297336320|Paco Hope auf Twitter: "Stopped at the roadside for a #software update. Sigh. http://t.co/wYWXkcnA91"]] * [[https://firstlook.org/theintercept/2015/03/02/signal-iphones-encrypted-messaging-app-now-supports-text/|You Should Really Consider Installing Signal, an Encrypted Messaging App for iPhone - The Intercept]] * [[http://www.theguardian.com/media/2015/mar/17/federal-police-confirm-they-have-accessed-journalists-metadata|Federal police confirm they have accessed journalists' metadata | Media | The Guardian]] * [[http://www.gemalto.com/press/Pages/Update-on-the-SIM-card-encryption-keys-matter.aspx|]] * [[http://fusion.net/story/55026/this-guys-light-bulb-ddosed-his-entire-smart-house/?utm_source=twitter&utm_medium=social&utm_campaign=thisisfusion&hootPostID=11b1d45f2a7819ab63a113f317b627ca|This guy's light bulb performed a DoS attack on his entire smart house | Fusion]] * [[http://ow.ly/3xp1Ak|How to Sabotage Encryption Software (And Not Get Caught) | WIRED]] * [[http://www.welt.de/politik/deutschland/article138039430/Spionageverdacht-im-Geheimdienst-Ausschuss.html|Spionageverdacht: Handy von NSA-Ausschusschef gehackt? - DIE WELT]] * [[https://blog.hboeck.de/archives/865-Comodo-ships-Adware-Privdog-worse-than-Superfish.html|Software Privdog worse than Superfish - Hanno's blog]] * [[http://unurl.org/3rmM|NSA spionierte gezielt österreichische UPC-Kunden aus - Überwachung - derStandard.at › Web]] * [[http://www.heise.de/newsticker/meldung/EU-Staaten-untergraben-die-Netzneutralitaet-2570514.html|EU-Staaten untergraben die Netzneutralität | heise online]] * [[http://twitter.com/0xabad1dea/status/570716657980735489/photo/1|The Melissa Virus auf Twitter: "Good grief is that enough browsers http://t.co/ts7DB8joeF"]] * [[http://m.futurezone.at/digital-life/bnd-ueberwacht-hauptnetzknoten-de-cix-ohne-kontrolle/121.807.470|BND überwacht Hauptnetzknoten DE-CIX ohne Kontrolle - futurezone.at]] * [[http://globalvoicesonline.org/2015/02/25/belarus-bans-tor-and-other-anonymizers/|Belarus Bans Tor and Other Anonymizers · Global Voice]] * [[http://blogs.msdn.com/b/ie/archive/2014/03/10/certificate-reputation-a-novel-approach-for-protecting-users-from-fraudulent-certificates.aspx| Certificate reputation, a novel approach for protecting users from fraudulent certificates - IEBlog - Site Home - MSDN Blogs ]] * [[http://m.heise.de/newsticker/meldung/Pruefbericht-Smart-TVs-sind-Datenschleudern-2562614.html|Prüfbericht: Smart-TVs sind Datenschleudern - heise online]] * [[http://www.theregister.co.uk/2015/02/25/gemalto_gchq_and_nsa_didnt_hack_our_sim_database/?mt=1426063632295|Not even GCHQ and NSA can crack our SIM key database, claims Gemalto • The Register ]] * [[https://firstlook.org/theintercept/2015/03/10/ispy-cia-campaign-steal-apples-secrets/|iSpy: The CIA Campaign to Steal Apple's Secret]] * [[https://blogs.akamai.com/2015/03/cve-2015-0204-getting-out-of-the-export-business.html|]] * [[http://m.heise.de/ct/artikel/Der-Android-Test-auf-UXSS-Sicherheitsluecke-2560903.html?from-classic=1|Der Android-Test auf UXSS-Sicherheitslücke - c't Magazin]] * [[http://twitter.com/Ookami86/status/575387115900551169/photo/1|Johannes Seitz auf Twitter: "If you have Java on your Mac, you should check this box right now. http://t.co/8iFdG511sR"]] * [[https://netzpolitik.org/2015/geheime-kommunikation-bsi-programmierte-und-arbeitete-aktiv-am-staatstrojaner-streitet-aber-zusammenarbeit-ab/|Geheime Kommunikation: BSI programmierte und arbeitete aktiv am Staatstrojaner, streitet aber Zusammenarbeit ab | netzpolitik.org]] * [[http://www.theguardian.com/membership/2015/mar/02/the-edward-snowden-story-watch-live?CMP=share_btn_tw|The Edward Snowden story - video | Membership | The Guardian]] * [[http://engineering.pinterest.com/post/113537918179/making-pinterest-https|Making Pinterest — Making Pinterest HTTPS]] * [[http://blog.cryptographyengineering.com/2015/03/attack-of-week-freak-or-factoring-nsa.html|A Few Thoughts on Cryptographic Engineering: Attack of the week: FREAK (or 'factoring the NSA for fun and profit')]] * [[https://media.ccc.de/browse/congress/2014/31c3_-_6450_-_de_-_saal_1_-_201412272030_-_ich_sehe_also_bin_ich_du_-_starbug.html#video| C3TV - Ich sehe, also bin ich ... Du]] * [[https://twitter.com/deCespedes/status/581075445208223744|Diani Barreto auf Twitter: ""End-to-end #encryption is the only way, to increase security. Everything else is illusory."- DE-CIX Witness Klaus Landefeld. #NSAUA"]] * [[https://twitter.com/DidierStevens/status/573963821364154368|Didier Stevens auf Twitter: "Seems to be some tracking code appended to pictures by websites in China."]] * [[https://tails.boum.org/news/version_1.3/|Tails - Tails 1.3 is out]] * [[http://twitter.com/netelligence/status/569839990978551808/photo/1|Kurt Einzinger auf Twitter: "Mikl-Leitner bezeichnet sich als " Sicherheitsministerin" #sicherheitskongess2015 #ksoe http://t.co/v6mR6YbSMl"]] * [[https://blog.torproject.org/blog/tor-browser-405-released|Tor Browser 4.0.5 is released | The Tor Blog]] * [[http://electrospaces.blogspot.com/2015/02/nsa-and-gchq-stealing-sim-card-keys-few.html|Top Level Telecommunications: NSA and GCHQ stealing SIM card keys: a few things you should know]] * [[https://bugzilla.mozilla.org/show_bug.cgi?id=984012|984012 – Consider removing the security.turn_off_all_security_so_that_viruses_can_take_over_this_computer pref]] * [[https://gist.github.com/jvehent/3e975c7d6cb592169646|gist:3e975c7d6cb592169646]] * [[http://www.forbes.com/sites/thomasbrewster/2015/03/02/iphone-encryption-is-free-with-signal/|Free Encrypted iPhone Comms And 'World First' Private Tablet Unveiled - Forbe]] * [[https://s3.amazonaws.com/s3.documentcloud.org/documents/1683814/black-budget-cryptanalysis-amp-exploitation.pdf|]] * [[http://animalnewyork.com/2015/be-careful-what-you-say-nypds-shotspotter-may-be-listening/|Be Careful What You Say, NYPD's ShotSpotter May Be Listening - ANIMAL]] * [[https://jacob.hoffman-andrews.com/README/the-safe-way-to-put-a-pgp-key-in-your-twitter-bio/| The Safe Way to Put a PGP Key in Your Twitter Bio at jsha/README]] * [[http://twitter.com/xor/status/572539693369307136/photo/1|Parker Higgins auf Twitter: "I've wandered into a surveillance forest http://t.co/Bi9EepTgTg"]] * [[https://m.youtube.com/watch?v=Bs3wnthSFYY&feature=youtu.be|YouTube]] * [[http://www.washingtonpost.com/blogs/the-switch/wp/2015/03/03/freak-flaw-undermines-security-for-apple-and-google-users-researchers-discover/|‘FREAK’ flaw undermines security for Apple and Google users, researchers discover - The Washington Post]] * [[http://s.hbr.org/19FAYiY|Where the Digital Economy Is Moving the Fastest - HBR]] * [[https://twitter.com/matthew_d_green/status/580837891309469696|Matthew Green auf Twitter: ".@csoghoian @iab Preventing ISPs from screwing with your ads is one of the best use-cases for HTTPS."]] * [[http://theverge.com/e/7865626|The NSA's SIM heist could have given it the power to plant spyware on any phone | The Verge]] * [[http://twitter.com/banoonoo/status/575086199989268480/photo/1|]] * [[http://nyti.ms/17IeMTL|Lenovo and Superfish Penetrate the Heart of a Computer's Security - NYTimes.com]] * [[http://www.theregister.co.uk/2003/10/23/safenet_seeks_gold_in_rainbow/|SafeNet seeks gold in Rainbow • The Register ]] * [[https://twitter.com/SarahKriesche/status/569880108686811136|Sarah Kriesche auf Twitter: ""Ich habe eine Frage zu <Thema>" "Aus welchem Bundesland sind Sie?" "Uhm es geht um allgemeine Info" "Ja, aber wo wohnen Sie, Frau ORF?" OO"]] * [[http://interc.pt/1BSiibs|Canadian Spies Collect Domestic Emails in Secret Security Sweep - The Intercept]] * [[http://burgenland.orf.at/news/stories/2700432/|Kommt Videoüberwachung in Gemeinden? - burgenland.ORF.at]] * [[http://twitter.com/JAllmanTalbot/status/577568288865198080/photo/1|James Allman-Talbot auf Twitter: "Uhh.. Seriously? Wow. This is a whole new level of stupid. @troyhunt http://t.co/4F3MCocusw"]] * [[http://www.washingtonpost.com/blogs/the-switch/wp/2015/03/15/yahoos-plan-to-get-mail-users-to-encrypt-their-e-mail-make-it-simple/|Yahoo’s plan to get Mail users to encrypt their e-mail: Make it simple - The Washington Post]] * [[http://www.gemalto.com/press/Pages/Gemalto-presents-the-findings-of-its-investigations-into-the-alleged-hacking-of-SIM-card-encryption-keys.aspx|]] * [[http://labs.bromium.com/2015/03/12/achievement-locked-new-crypto-ransomware-pwns-video-gamers/|Achievement Locked: New Crypto-Ransomware Pwns Video Gamers | Bromium Lab]] * [[http://derstandard.at/2000011932824/Neue-Snowden-Papiere-NSA-stahl-Verschluesselungscodes-vonHandy-SIM-Karten|Neue Snowden-Papiere: NSA und GCHQ hackten Handy-SIM-Hersteller - Überwachung - derStandard.at › Web]] * [[https://shkspr.mobi/blog/2015/03/dont-use-bit-ly-to-advertise-your-pgp-key/| Don’t Use Bit.ly To Advertise Your PGP Key ← Terence Eden's Blog ]] * [[http://www.techmeme.com/150315/p12#a150315p12|]] * [[https://twitter.com/SwiftOnSecurity/status/575737835971612673|InfoSec Taylor Swift auf Twitter: "symantec staph 🙅 norton for bracelets 🙅 just say no http://t.co/0mIt8Ierij"]] * [[https://archive.org/details/LauraPoitrasCitizenfour|]] * [[http://www.sueddeutsche.de/digital/verschluesselungs-experte-bruce-schneier-dein-handy-weiss-alles-ueber-dich-1.2397418|Bruce Schneier: "Dein Handy weiß alles über dich" - Digital - Süddeutsche.de]] * [[https://twitter.com/csoghoian/status/569665794675572736|Christopher Soghoian auf Twitter: "The company that developed the clipper chip is now owned by Gemalto. http://t.co/o4DEDouKOV http://t.co/dO2RQXJkmS http://t.co/qUhRnRX7TX"]] * [[http://blog.twitch.tv/2015/03/important-notice-about-your-twitch-account/| The Official Twitch Blog Important Notice About Your Twitch Account » The Official Twitch Blog ]] * [[http://www.gi-de.com/usa/en/about_g_d/press/press_releases/Sim-Card-Remains-Secure-g35200.jsp|G&D | Sim Card Remains Secure ]] * [[http://bradblog.com/?p=11090| 'Critical' Vulnerability Found in Australian Internet Voting System in Advance of Next Week's Election | The BRAD BLOG]] * [[http://bit.ly/1Cgf2Wj|Neuseeland spähte WTO mit NSA-Software XKeyscore aus - futurezone.at]] * [[https://www.eff.org/deeplinks/2015/02/dear-software-vendors-please-stop-trying-intercept-your-customers-encrypted#footnote1_05i12sd|Dear Software Vendors: Please Stop Trying to Intercept Your Customers’ Encrypted Traffic | Electronic Frontier Foundation]] * [[http://twitter.com/veltni/status/577156594712100864/photo/1|Niklas Veltkamp auf Twitter: "Willkommen zur #CeBIT2015... http://t.co/GGfhMZJQGr"]] * [[http://cluefulapp.com/mobile/|Clueful]] * [[http://arstechnica.com/information-technology/2015/03/now-you-can-put-your-keys-in-the-cloud-your-house-keys/?utm_content=buffer1319a&utm_medium=social&utm_source=twitter.com&utm_campaign=buffer|Now you can put your keys in the cloud—your house keys | Ars Technica]] * [[https://blog.cloudflare.com/universal-ssl-encryption-all-the-way-to-the-origin-for-free/|Universal SSL: Encryption all the way to the origin, for free]] * [[http://blog.ensolnepal.com/router_backdoor/|Rogue Router Firmware Chaos #Backdoor | Entrust:Blog]] * [[http://twitter.com/pascoda/status/579763249492680705/photo/1|Social Justice Droid auf Twitter: "Diese #google Werbung geschrieben von Yoda ist geworden. http://t.co/p2xQq4Hkys"]] * [[http://kdvr.com/2015/03/11/mysterious-spy-cameras-collecting-data-at-post-offices/|Mysterious spy cameras collecting data at post offices | FOX31 Denver]] * [[http://www.pcworld.com/article/2884952/equation-cyberspies-use-unrivaled-nsastyle-techniques-to-hit-iran-russia.html|Destroying your hard drive is the only way to stop the super-advanced Equation malware]] * [[https://www.paypal.com/at/webapps/mpp/ua/privacy-full?locale.x=de_AT|PayPal]] * [[https://twitter.com/vowe/status/576477148170575872|]] * [[http://www.nytimes.com/2015/03/05/business/outdated-encryption-leaves-phones-vulnerable-to-hackers.html|Outdated Encryption Keys Leave Phones Vulnerable to Hackers - NYTimes.com]] * [[https://twitter.com/DidierStevens/status/573958649657298944|Didier Stevens auf Twitter: "Anybody know why some PNGs have a kind of hash appended after IEND, like this example: /* |xGv00|754b58e7cce280a90a45d4d3a2ff7d4c */"]] * [[https://jobs.apple.com/us/search?#&ss=Privacy%20Engineer|Apple - Jobs at Apple]] * [[http://twitter.com/skoops/status/577398840560611328/photo/1|Adam™ auf Twitter: "Ransomware fürs iPhone. Süss. In Javascript natürlich. http://t.co/e7G7j5gDGt"]] * [[http://rt.com/usa/234403-phone-hacking-power-location/|Hackers can track phone users’ location by looking at power supply — RT USA]] * [[http://interc.pt/18lTWuy|Gemalto Doesn't Know What It Doesn't Know - The Intercept]] * [[https://twitter.com/doctorow/status/580836044414676992|Cory Doctorow auf Twitter: "Thanks for man-in-the-middling SSL connections on your in-flight wifi, @united! #infosec #youredoingitwrong"]] * [[https://juliareda.eu/2015/03/oettinger-net-neutrality-taliban-like/|Julia Reda – Net neutrality is a “Taliban-like issue”, says Europe’s top digital policymaker]] * [[http://blog.uber.com/2-27-15|Uber Statement | Uber Blog]] * [[http://read.bi/1ESdSBb|Here’s what people really search for most on Google - Business Insider]] * [[http://arxiv.org/pdf/1407.7146v1.pdf|]] * [[http://www.techweekeurope.co.uk/e-enterprise/merger-acquisition/gemalto-finalises-safenet-acquisition-890m-158728|Gemalto finalises SafeNet acquisition for $890m]] * [[http://corporate.comcast.com/comcast-voices/upgrading-the-security-and-privacy-of-your-email#.VQhuOfs7kHs.twitter|Upgrading the Security and Privacy of Your Email ]] * [[https://twitter.com/munin/status/569641572276441088|MuninrepeeK eroL auf Twitter: "Comodo, the root CA, is actively breaking SSL to serve "trusted" ads and is recommended by Comodo for such: https://t.co/iJxUj446iB"]] * [[http://www.golem.de/news/big-data-telekom-wertet-mobilfunkdaten-aus-1503-112997.html|Big Data: Telekom wertet Mobilfunkdaten aus - Golem.de]] * [[https://www.eff.org/https-everywhere/|HTTPS Everywhere | Electronic Frontier Foundation]] * [[http://twitter.com/alexislloyd/status/572774910940086272/photo/1|Alexis Lloyd auf Twitter: "This is getting very meta. http://t.co/5rY0rk5OP1"]] * [[http://wapo.st/18KaxIA|‘FREAK’ flaw undermines security for Apple and Google users, researchers discover - The Washington Post]] * [[http://www.zeit.de/digital/internet/2015-03/nsa-sap-uberwachung-technik|]] * [[http://m.heise.de/newsticker/meldung/NSA-Ausschuss-BND-hat-freie-Hand-bei-der-Internetueberwachung-2585620.html|NSA-Ausschuss: "BND hat freie Hand bei der Internetüberwachung" - heise online]] * [[https://www.youtube.com/watch?t=118&v=JWII85UlzKw|Tor Animation English - YouTube]] * [[http://www.heise.de/mac-and-i/meldung/Safari-Alte-Sicherheitsluecke-speichert-URLs-auch-im-Private-Browsing-Modus-2575426.html?wt_mc=sm.feed.tw.apple|Safari: Alte Sicherheitslücke speichert URLs auch im Private-Browsing-Modus | Mac & i]] * [[https://tails.boum.org/download/index.en.html|Tails - Download, verify and install]] * [[http://arstechnica.com/gadgets/2015/03/google-quietly-backs-away-from-encrypting-new-lollipop-devices-by-default/|Google quietly backs away from encrypting new Lollipop devices by default [Updated] | Ars Technica]] * [[http://www.tivi.fi/Kaikki_uutiset/2015-03-17/Suomalainen-paljasti-Microsoftin-haavoittuvuuden-yhti%C3%B6-kiitti-sulkemalla-s%C3%A4hk%C3%B6postitilin-3217580.html|Suomalainen paljasti Microsoftin haavoittuvuuden: yhtiö kiitti sulkemalla sähköpostitilin - Tivi]] * [[https://dl.dropboxusercontent.com/u/12216224/family-imovies/sharepaint-bonjour-03-01-2015.mov|]] * [[http://www.golem.de/news/spionageverdacht-kryptohandy-von-nsa-ausschuss-chef-womoeglich-gehackt-1503-112747.html|Spionageverdacht: Kryptohandy von NSA-Ausschuss-Chef womöglich gehackt - Golem.de]] * [[https://freedom.press/blog/2015/03/announcing-securedrop-0.3|Announcing the new version of SecureDrop, with the results from our third security audit | Freedom of the Press Foundation]] * [[https://blog.hboeck.de/archives/866-PrivDog-wants-to-protect-your-privacy-by-sending-data-home-in-clear-text.html|PrivDog wants to protect your privacy - by sending data home in clear text - Hanno's blog]] * [[http://www.smh.com.au/digital-life/consumer-security/telcos-face-mass-sim-card-recall-after-spy-agencies-encryption-hack-revealed-20150223-13mecc.html|Telcos face mass SIM card recall after spy agencies' encryption hack revealed]] * [[http://derstandard.at/2000012722576/Die-jahrelange-CIA-Kampagne-zur-Unterwanderung-von-Apple-Geraeten|Jahrelange Kampagne der CIA zur Unterwanderung von Apple-Geräten - Netzpolitik - derStandard.at › Web]] * [[http://googleonlinesecurity.blogspot.de/2015/03/maintaining-digital-certificate-security.html| Google Online Security Blog: Maintaining digital certificate security]] * [[http://googleonlinesecurity.blogspot.com/2015/03/maintaining-digital-certificate-security.html| Google Online Security Blog: Maintaining digital certificate security]] * [[http://futurezone.at/digital-life/unbekannte-erbeuten-daten-von-rund-50-000-uber-fahrern/116.771.202|Unbekannte erbeuten Daten von rund 50.000 Uber-Fahrern - futurezone.at]] ===== Slides ===== * [[http://web.luchs.at/information/docs/Voice_over_IT.pdf|Voice over IT]] * [[https://deepsec.net/docs/Talks/Mobilfunksicherheit.pdf|Sicherheit in Mobilfunknetzwerken]] * [[https://deepsec.net/docs/Talks/Bring_Your_Own_Daemons_Handout.pdf|Bring Your Own Daemons - Mobility und Sicherheit]]