Sergey Shkundaleu @archit3ct@social.ssbx.dev
- WebSite
- https://sergey.iontec.co/
- GitHub
- https://github.com/sergshk
Admin
Experienced technology entrepreneur on the quest for ethics and privacy. Follow #punkprivacy tag to get regular privacy tips. You can also follow @ethiork account to get information about progress of Ethiork project that enables people to own their data and protect their privacy.
Joined Nov 2020
Just relaunched my blog on a new platform, which is GitHub Pages. As for URL it's still the same https://sergeysh.com/
Sergey Shkundaleu
boosted
The GNOME project has impacted many of us. There are lots of ways to support GNOME and sharing your stories is one of them! Share the story of how you got involved with GNOME with us by tagging it #GNOMEStories
Some more details of SolarWind's hack had surfaced recently, and those details aren't pretty. It shows how important it is to secure you software development life cycle and all aspects related to distribution of your software. https://thehackernews.com/2020/12/new-evidence-suggests-solarwinds.html
Example when bad guys use free tools to commit their crimes. https://thehackernews.com/2020/12/wormable-gitpaste-12-botnet-returns-to.html
One of my favorite quotes applicable to software development: "First solve the problem, then write the code" and it is sad when younger generation of devs can't grasp meaning of such quote. That's where many security problems arise from, devs pushing something out of the door, just to check a box, on the other hand at some companies had screwed up their KPI's , so fixing 2 defects in a week would appear better, than taking a week to properly resolve 1st without introducing 2nd.
Messaging is such a crowded space, however I believe Signal is doing work that important for everyone. Video chat group calling feature has become available recently. https://signal.org/blog/group-calls/
This unethical behavior is so typical for business these days, especially when there is no immediate ROI on effort to patch vulnerable systems ... I guess those people will never learn. https://threatpost.com/unpatched-iot-ot-devices-threaten-critical-infrastructure/162275/
I've been saying it out loud that supply chain attacks are the next big thing. You can ask me about what ethical audits are, if you are interested. Here is an example of several interconnected events tied to a single company SolarWinds https://thehackernews.com/2020/12/nearly-18000-solarwinds-customers.html
Sergey Shkundaleu
boosted
The inconvenient truth is that there is no such thing as a backdoor that only lets the good guys in. The EU's resolution on encryption, released yesterday, could result in a net decrease of everyone's privacy and security: https://protonmail.com/blog/eu-attack-on-encryption/
Sergey Shkundaleu
boosted
30 million downloads of LibreOffice in 2020 – and there are still a couple of weeks to go! Thanks to everyone who helped to spread the word, and encourage friends, family and colleagues to try our office suite: https://www.libreoffice.org/discover/libreoffice/
Jekyll if so much fun, thus far: Pagination only works on HTML files according to doc, moreover it only works on index.html based on my experience. Also make sure there is no permalink which will break it as well. More in documentation: https://jekyllrb.com/docs/pagination/
Sergey Shkundaleu
boosted
Deck Android 1.13.2 - 🎄Christmas release is here!
⚡️ Synchronization Speed-Up
🌓 Theme following system
📝 Enhanced markdown support
Thank you to our amazing community! Read more details below!
https://help.nextcloud.com/t/deck-android-1-13-2-christmas-release-etags-markdown/101278
I guess that's another case where customers lured to questionable benefits of some service instead of transparency how that service works. More so called smart devices people have in their houses less control they'll have over them and then ... https://www.slashgear.com/amazon-sidewalk-is-coming-and-not-everyone-will-be-happy-24648652/
Going to the rabbit hole ... sat down to write a new blog post, as a result decided to transfer my blog to a new platform. Been using Blogger platform for a while, and wondered if it can be easier to use, as a result stumbled upon combination of Jekyll and GitHub Pages. After a transfer my blog it going to be just a code on a GitHub that can be managed from console. Here is quick glimpse.
Some one wrote malware in Delphi, such an unusual choice, I bet it was quite large and slow. However it explains connections, Delphi and Pascal are the languages kids usually study at school in post soviet countries. https://thehackernews.com/2020/12/russian-apt28-hackers-using-covid-19-as.html
Malware to run alternative advertisement market? Are you serious? https://threatpost.com/adrozek-malware-fake-ads-30k-devices/162217/
Facebook has a lot of weight, but it kind of fishy when they uncovering state sponsored hackers conviniently in the place where they having problems with government. https://www.reuters.com/article/facebook-vietnam-cyber/facebook-tracks-oceanlotus-hackers-to-it-firm-in-vietnam-idUSKBN28L03Y
I guess MS Teams going through some growing pains, more users it has more often people will attempt to exploit it. https://thehackernews.com/2020/12/zero-click-wormable-rce-vulnerability.html
Sergey Shkundaleu
boosted
💜 TODAY! @ Dec 11, 18:00 UTC / 13:00 Eastern / 10:00 Pacific. Edward Snowden will host Tor’s third PrivChat, a fundraising livestream & conversation with human rights defenders + real-life Tor users Alison Macrina, Ramy Raoof, & Berhan Taye. #UseAMaskUseTor
📺 Set your reminder!
https://youtu.be/S2N3GoewgC8
MySQL is one of the widely used database servers, and it looks like has been an interesting target for cyber criminal. This year pandemic has changed the way we live and in many areas those changes are permanent, so many companies were faced with attacks on their data assets. https://threatpost.com/please_read_me-ransomware-mysql-servers/162136/
- WebSite
- https://sergey.iontec.co/
- GitHub
- https://github.com/sergshk
Admin
Experienced technology entrepreneur on the quest for ethics and privacy. Follow #punkprivacy tag to get regular privacy tips. You can also follow @ethiork account to get information about progress of Ethiork project that enables people to own their data and protect their privacy.
Joined Nov 2020
