CryptoParty Austria

• Not All Encryption Apps Are Created Equal - Al Jazeera America
• Data is at the heart of search. But who has access to it? - Andreas Gal
• Encryption techniques and access they give - Washington Post
• Change.org springs a leak, exposes private e-mail addresses [updated] - Ars Technica
• Google kills 200 ad-injecting Chrome extensions, says many are malware - Ars Technica
• Hacked French network exposed its own passwords during TV interview - Ars Technica
• The Long List of Password Breaches - -grepLinux
• Bits Up!: Opportunistic Encryption For Firefox
• Box Android and iOS application Security vulnerabilities : Writeup - Attify Mobile Security
• Making Smart Locks Smarter (aka. Hacking the August Smart Lock) - Maintenance Window Infosec Blog
• Facebook Privacy: Chats Are Being Scanned By A CIA Funded Company - Bosnadev – Code Factory
• fm4.ORF.at
• Digitales Parkpickerl hält in Wien Einzug - futurezone.at
• EU-Kommission prüft weitere Cyberattacken auf Sender - futurezone.at
• Türkische Behörden sperren Twitter und Youtube - futurezone.at
• Google Online Security Blog: Maintaining digital certificate security
• The government hides surveillance programs just because people would freak out - Trevor Timm - Comment is free - The Guardian
• Französischer TV-Sender TV5Monde verriet Passwörter unabsichtlich bei Interview - Netzpolitik - derStandard.at › Web
• Troopers15 Videos Online - Insinuator
• Surveillance system used for censorship in Europe
• Don’t Be Fodder for China’s ‘Great Cannon’ — Krebs on Security
• Autocomplete-Fehler enthüllt Passnummern der G20-Chefs - futurezone.at
• Hunderte Browser-Erweiterungen aus Chrome Store entfernt - futurezone.at
• Slashdot
• Französischer TV-Sender TV5Monde verriet Passwörter unabsichtlich bei Interview - Netzpolitik - derStandard.at › Web
• http://motherboard.vice.com/read/your-porn-is-watching-you?utm_source=mbtwitter
• Log In - The New York Time
• Sad figures about how many read the license terms - Safe and Savvy Blog by F-Secure
• http://securityaffairs.co/wordpress/35902/cyber-crime/propagation-data-deep-web.html
• Bruce Twarze™ auf Twitter: "Willkommen im Polizeistaat. http://t.co/X6ag7RQb1f"
• Adrian S-G auf Twitter: "we found love in a hopeless place http://t.co/lrHuhoqgKt"
• Alec Muffett auf Twitter: "SSL-Certificated Onion Addresses
- and then there were three ... :-)

How did I miss this?

@digicert has been busy! http://t.co/u0OgVPUeuw"
• Nathan House auf Twitter: "Don't worry it's only marketeers! http://t.co/5SjrkEPJ6S"
• Nacho Soto auf Twitter: ". @united are you kidding me? http://t.co/Fu0RPFDAun"
• Andi D auf Twitter: "Only you, a lot of Sysadmins, shady ad companies and the NSA can see your search history. http://t.co/a2CPOGma7w"
• Yan⚠ auf Twitter: "Tough to interpret this graph but looks like STARTTLS usage is starting to plateau (from gmail smtp's perspective) http://t.co/eeFycdfb45"
• Christopher Soghoian auf Twitter: "As you work on your taxes, you can be confident that the IRS has the expertise to secure your private financial data. http://t.co/EH7NDM3rvj"
• Declan McCullagh auf Twitter: "NSA wants *two* .gov agencies to have a joint backdoor to your device. Where have we heard this before? http://t.co/xamYNWB0hm"
• .mudge auf Twitter: "Found inside Google.

A mouse plugged into a wall outlet.

The future is officially silly. http://t.co/XGQUnSz8sm"
• Eric Lawrence auf Twitter: "TIL: BitDefender installs a SHA-1 signed Root CA valid 15 years to re-sign HTTPS; doesn't respect Windows Root list. http://t.co/2Faq6YPOpP"
• François Baligant auf Twitter: "Heureusement que TV5Monde ne publie pas de schémas réseaux dans les médias suite à son hack #ohwait #ITSecurity http://t.co/utB9XqW6Il"
• Guido Buelow auf Twitter: "Passwörter des eigenen TV-Senders sollte man NIE in TV-Sendungen zeigen! #TV5MONDE
http://t.co/lHAjFzvisi http://t.co/NkfXnFiSDT"
• Neal auf Twitter: "Security is hard. http://t.co/ML2Zgn8XUs"
• Jean-François Mezei auf Twitter: "Another reason Netflix is moving to HTTPS: prevent BDUs/ISPs from snooping traffic for "relevant ads". http://t.co/EmsIy0AdEN"
• Kenn White auf Twitter: "That's fantastic. 63+ trackers: GoogleAdServices•com, Advertising•com, DoubleClick•net, GoogleAnalytics, ChartBeat… http://t.co/tAuVzClE8t"
• Matt Foster auf Twitter: "Aurora 39.0a2 has disabled support for RC4 (on non-whitelisted sites). https://t.co/BiDDHslfJO won’t work now now! 🔐 http://t.co/9ZAOTuegh3"
• pilgrim™ auf Twitter: "If you find @lbthomsen's analysis of the @anonabox too long: Quick recap of all the #fail.
https://t.co/MpanH0078e http://t.co/pGDxVY8wNH"
• Adam™ auf Twitter: "Der Zwangs-Mail-abschnüffel-Server von @3Oesterreich steht auf diversen Blacklists. Kontrollzwang und Inkompetenz 👌 http://t.co/DP2G1Nh0nb"
• Alex Andreou auf Twitter: "Also, searching for "unsubscribe" on your website yields 42,000 results of people's actual private emails. @Change http://t.co/1T06nfbSHq"
• Per Thorsheim auf Twitter: "AV vendors @virustotal:
0/54 DANE TLSA
1/54 DNSSEC
5/54 HTTPS
14/54 do not support STARTTLS
cc @csoghoian http://t.co/RCFIZosMx9"
• https://twitter.com/vinzniv/status/586191389198852098/photo/1
• Bill Childers auf Twitter: "This slide sums up my worries with encryption and email today. Thanks, @bcrypt! #yahootrust http://t.co/7Hwsh0SDzA"
• Europarat will Grundrechte im Netz und Datenschutz am Arbeitsplatz stärken - heise online
• Automattic Sponsors Let’s Encrypt Initiative
• Europol chief warns on computer encryption - BBC New
• ECDL Home - ECDL Website
• Mobile services: The message is the medium - The Economist
• The DEA's using powerful spyware for surveillance too
• Negativauszeichnung: Lauschende Barbie erhält Big Brother Award - Golem.de
• Top 500 Passwords Visualized - Information Is Beautiful
• Spionage zum Schaden Deutschlands: BND vollkommen außer Kontrolle - N24.de
• China's Man-on-the-Side Attack on GitHub - NETRESEC Blog
• Apple randomise MAC addresses with iOS 8 ... or did they?
• Time required to brute-force crack a password depending on password entropy (strength) [OC] : dataisbeautiful
• (K)eine Kooperation mit der NSA - Schattenblicke
• Middle school student charged with cybercrime in Holiday - Tampa Bay Time
• Personal details of world leaders accidentally revealed by G20 organisers - World news - The Guardian
• France’s National Assembly shows support for legalization of Edward Snowden-style whistleblowing - The Washington Post
• As encryption spreads, U.S. grapples with clash between privacy, security - The Washington Post
• WLAN-Hotspots: Bundesnetzagentur schreibt Überwachung vor - Digitale Welt - Technologie - Wirtschaftswoche
• Home - World Backup Day — March 31st
• GitHub suffers 'largest DDoS' attack in site's history - ZDNet
• The programs with the most security vulnerabilities in 2014 were not the ones you think - ZDNet
• Adblock Plus and (a little) more: Restating the obvious: adblocking declared legal
• How Kaspersky makes you vulnerable to the FREAK attack and other ways Antivirus software lowers your HTTPS security - Hanno's blog
• Distrusting New CNNIC Certificates - Mozilla Security Blog
• Some impressions on Internet advertiser security - The Citizen Lab
• China's Great Cannon
• Code Red Code Red - A global initiative to accelerate reform of security organisations.
• 20150426-openpgp-summit
• https://lists.torproject.org/pipermail/tor-dev/2015-March/008548.html
• I-D Action: draft-ietf-httpbis-legally-restricted-status-00.txt from internet-drafts@ietf.org on 2015-04-25 (ietf-http-wg@w3.org from April to June 2015)
• How the German Foreign Intelligence Agency BND tapped the Internet Exchange Point DE-CIX in Frankfurt, since 2009 - netzpolitik.org
• IT-Sicherheitsrichtlinie des Bundesinnenministeriums: Keine Kettenmails! Und zentrale Verschlüsselung! - netzpolitik.org
• Netzpolitik-App für iOS startet öffentliches Beta-Test-Programm - netzpolitik.org
• Wenn nicht mal die NSA Vorratsdatenspeicherung sinnvoll findet… - netzpolitik.org
• https://play.google.com/store/apps/details?id=org.torproject.android&hl=en
• Anonabox Analysis - Reclaim Your Privacy
• Anonabox Analysis - Reclaim Your Privacy
• https://static.googleusercontent.com/media/source.android.com/de//devices/tech/security/reports/Google_Android_Security_2014_Report_Final.pdf
• https://static.googleusercontent.com/media/source.android.com/de//devices/tech/security/reports/Google_Android_Security_2014_Report_Final.pdf
• MalwareTech auf Twitter: "Just found that my SSD accepts unsigned firmware updates via the ATA DM command from usermode, this should be fun."
• Christoph auf Twitter: "Kooperiert das BMI mit der NSA? "Nein." 
Das heißt: Ja, möglicherweise. http://t.co/ZDCsSTfv3F http://t.co/pE37gbKbRi"
• The Debian Project auf Twitter: "Legacy insecure SSLv3 has been disabled in this release, applications have been compiled or configured without support for this protocol."
• Erik Romijn auf Twitter: "Perhaps password security would be less of a joke for you, @clearlogin, if your signup page w/ password used HTTPS? http://t.co/aHSJWLtu6A"
• Social Justice Droid auf Twitter: "Memo für die #CP32, die Zweite: Präsis sollten nur obere Hälfte der Leinwand brauchen. #CryptoParty #tuwien #seufz"
• NVD - Detail
• Two And A Half Years Later, Verizon Finally Lets People Opt Out Of Its Stealth Zombie Cookie - Techdirt
• Can't start Tor Browser in Whonix?
• The EuroDiVision Contest - feat. Merkel, Žižek & IMF [RAP NEWS 31] - YouTube