Sergey Shkundaleu @archit3ct@social.ssbx.dev
- WebSite
- https://sergey.iontec.co/
- GitHub
- https://github.com/sergshk
Admin
Experienced technology entrepreneur on the quest for ethics and privacy. Follow #punkprivacy tag to get regular privacy tips. You can also follow @ethiork account to get information about progress of Ethiork project that enables people to own their data and protect their privacy.
Joined Nov 2020
Sergey Shkundaleu
boosted
The Future of Software Supply Chain Security
"All indications are that software supply chain security will be the biggest issue for the security industry in 2021."
https://puri.sm/posts/the-future-of-software-supply-chain-security/
Sergey Shkundaleu
boosted
Are we alone in this universe? Who knows, but there is a sign of something. https://www.cnet.com/news/the-mysterious-radio-burst-from-space-is-back-right-on-schedule
Surveillance capitalism at it's core, government should stop trying to regulate tech giants and start protecting people's privacy by requiring explicit consent for each transaction where personal information changes hands. https://gizmodo.com/your-credit-score-should-be-based-on-your-web-history-1845912592
As much as sales ppl from Cellebrite are trying to represent their system as real innovation it's nothing more than just an automation of manual work and only works when phone is fully unlocked. It's not even trying to break anything, by the way breaking into device without warrant is a crime and they know it. More details here in a blog post from Signal's team https://signal.org/blog/cellebrite-and-clickbait/
Interesting case, thought I have few questions, especially how SMS messages were stolen in real time, malware, or was it sim swaps at scale? https://www.wired.com/story/massive-fraud-operation-stole-millions-online-bank-accounts/
Sergey Shkundaleu
boosted
🔊 on!
Today marks a major milestone in the development of our privacy-focused calendar: the Proton Calendar Android app is now available in beta for all paid users! It comes in dark mode, and syncs across devices, making it easier than ever to stay up to date:
Just relaunched my blog on a new platform, which is GitHub Pages. As for URL it's still the same https://sergeysh.com/
Sergey Shkundaleu
boosted
The GNOME project has impacted many of us. There are lots of ways to support GNOME and sharing your stories is one of them! Share the story of how you got involved with GNOME with us by tagging it #GNOMEStories
Some more details of SolarWind's hack had surfaced recently, and those details aren't pretty. It shows how important it is to secure you software development life cycle and all aspects related to distribution of your software. https://thehackernews.com/2020/12/new-evidence-suggests-solarwinds.html
Example when bad guys use free tools to commit their crimes. https://thehackernews.com/2020/12/wormable-gitpaste-12-botnet-returns-to.html
One of my favorite quotes applicable to software development: "First solve the problem, then write the code" and it is sad when younger generation of devs can't grasp meaning of such quote. That's where many security problems arise from, devs pushing something out of the door, just to check a box, on the other hand at some companies had screwed up their KPI's , so fixing 2 defects in a week would appear better, than taking a week to properly resolve 1st without introducing 2nd.
Messaging is such a crowded space, however I believe Signal is doing work that important for everyone. Video chat group calling feature has become available recently. https://signal.org/blog/group-calls/
This unethical behavior is so typical for business these days, especially when there is no immediate ROI on effort to patch vulnerable systems ... I guess those people will never learn. https://threatpost.com/unpatched-iot-ot-devices-threaten-critical-infrastructure/162275/
I've been saying it out loud that supply chain attacks are the next big thing. You can ask me about what ethical audits are, if you are interested. Here is an example of several interconnected events tied to a single company SolarWinds https://thehackernews.com/2020/12/nearly-18000-solarwinds-customers.html
Sergey Shkundaleu
boosted
The inconvenient truth is that there is no such thing as a backdoor that only lets the good guys in. The EU's resolution on encryption, released yesterday, could result in a net decrease of everyone's privacy and security: https://protonmail.com/blog/eu-attack-on-encryption/
Sergey Shkundaleu
boosted
30 million downloads of LibreOffice in 2020 – and there are still a couple of weeks to go! Thanks to everyone who helped to spread the word, and encourage friends, family and colleagues to try our office suite: https://www.libreoffice.org/discover/libreoffice/
Jekyll if so much fun, thus far: Pagination only works on HTML files according to doc, moreover it only works on index.html based on my experience. Also make sure there is no permalink which will break it as well. More in documentation: https://jekyllrb.com/docs/pagination/
Sergey Shkundaleu
boosted
Deck Android 1.13.2 - 🎄Christmas release is here!
⚡️ Synchronization Speed-Up
🌓 Theme following system
📝 Enhanced markdown support
Thank you to our amazing community! Read more details below!
https://help.nextcloud.com/t/deck-android-1-13-2-christmas-release-etags-markdown/101278
I guess that's another case where customers lured to questionable benefits of some service instead of transparency how that service works. More so called smart devices people have in their houses less control they'll have over them and then ... https://www.slashgear.com/amazon-sidewalk-is-coming-and-not-everyone-will-be-happy-24648652/
- WebSite
- https://sergey.iontec.co/
- GitHub
- https://github.com/sergshk
Admin
Experienced technology entrepreneur on the quest for ethics and privacy. Follow #punkprivacy tag to get regular privacy tips. You can also follow @ethiork account to get information about progress of Ethiork project that enables people to own their data and protect their privacy.
Joined Nov 2020
