Sergey Shkundaleu @archit3ct@social.ssbx.dev
- WebSite
- https://sergey.iontec.co/
- GitHub
- https://github.com/sergshk
Admin
Experienced technology entrepreneur on the quest for ethics and privacy. Follow #punkprivacy tag to get regular privacy tips. You can also follow @ethiork account to get information about progress of Ethiork project that enables people to own their data and protect their privacy.
Joined Nov 2020
Sergey Shkundaleu
boosted
And of course you can trust #Google silently installing an app called Android System Safetecore on your phone. It's for your own safety.
Sergey Shkundaleu
boosted
Sure, they might have your previous data.
But you know what they *don't* have?
They don't have your *future* data.
It's never too late to start improving your data privacy online. Every small step helps.
Sergey Shkundaleu
boosted
If you want to learn how Chinese phishing or "smishing" groups are turning phished card data into mobile wallets, check out today's story. The innovation coming out of these groups is remarkable, and includes mobile apps that let thieves relay "ghost tap" NFC transactions to a payment terminal from halfway around the world.
What I find most remarkable is how millions of businesses have spent years and billions of dollars upgrading payment terminals to use more secure chip-based cards. And now these phishers come along and just bypass all of that, creating Apple and Google mobile wallets with the phished card data and a one-time code.
Here's the lede:
Carding — the underground business of stealing, selling and swiping stolen payment card data — has long been the dominion of Russia-based hackers. Happily, the broad deployment of more secure chip-based payment cards in the United States has weakened the carding market. But a flurry of innovation from cybercrime groups in China is breathing new life into the carding industry, by turning phished card data into mobile wallets that can be used online and at main street stores.
https://krebsonsecurity.com/2025/02/how-phished-data-turns-into-apple-google-wallets/
Sergey Shkundaleu
boosted
The latest episode of The Phillip Wylie Show has dropped and features Ben Sadeghipour, aka @nahamsec!
YouTube: https://youtu.be/Wmb6O5-lblE
Spotify: https://open.spotify.com/episode/066V2AztFNlLGxpUZ68vh6?si=PMt0nQIYTQWUREMJriOZEA
Apple: https://podcasts.apple.com/us/podcast/phillip-wylie-show/id1685564407?i=1000691203042
Sergey Shkundaleu
boosted
You nailed it @AuthorJMac ! 🖖
Edit : Original (and complete) post on March 29, 2024
« You know what the biggest problem with pushing all-things-AI is? Wrong direction.
I want AI to do my laundry and dishes so that I can do art and writing, not for AI to do my art and writing so that I can do my laundry and dishes. »
Cf. https://indiepocalypse.social/@AuthorJMac/112178826967890119
Sergey Shkundaleu
boosted
Do you enjoy privacy rights?
Because deregulation is how you lose them. Oh and also basic safety, and human rights.
Just so you know: https://www.huffpost.com/entry/elon-musk-regulations-default-gone_n_67a12742e4b09a02376043c7
Sergey Shkundaleu
boosted
A Journey From Offensive Security to Leadership with Tom Eston https://podcasters.spotify.com/pod/show/phillip-wylie0/episodes/A-Journey-From-Offensive-Security-to-Leadership-with-Tom-Eston-e2974r6?utm_source=mastodon&utm_medium=social&utm_campaign=fedica-Episode-Reposts
Sergey Shkundaleu
boosted
Today is the 8th anniversary of @Liberapay's launch. Coincidentally, I have an announcement to make.
I'm looking for someone to open a new chapter in the project's history by becoming its second maintainer. That doesn't mean it's a programming job, although help in that area is always welcome. You can find a bit more information in https://github.com/liberapay/salon/issues/661 and ask any questions you have there or in private.
Please boost 🙂
[Update] No need to boost further. My thanks to everyone who did!
Sergey Shkundaleu
boosted
I've heard that from Feb 1st, PayPal is changing the information it shows to people receiving money from you.
To make sure you're not unwittingly handing out your personal info, have a check of your PayPal settings. The website is different per country, but it seems you can find this setting from Invoices, clicking 'business info' or ''more actions > edit business details', and then change what's shown to recipients, and also via this link :
Absence of the evidence is not evidence of absence! The media today often weaponizes that misconception and then you are on the other side of "science" when you are just asking them: What evidence do you have confirming that particular event has not happened.
Sergey Shkundaleu
boosted
Targeted (or surveillance) advertising requires an immense amount of personal information about individuals to work. And this information can be shared, by design, with hundred of companies you've never heard of.
Lawsuit filed against insurance company, alleging the insurer illegally tracked drivers through their cell phones without consent. What is interesting there that data was collected not even through an insurance owned app, but rather embedded into SDK that has been used by other apps. Remove unused apps from your phone.
Link:https://cyberinsider.com/texas-ag-sues-allstate-over-alleged-unlawful-data-harvesting/
#punkprivacy #privacy #consumerrights
Sergey Shkundaleu
boosted
Thanks to all who listen to or watch my podcast, The Phillip Wylie Show. If you haven't subscribed, please do so and share it with others.
Where to listen and subscribe: https://phillipwylieshow.com/subscribe
Also, follow the podcast LinkedIn: https://www.linkedin.com/company/phillip-wylie-show/
MIT researchers found that large language models (LLMs) lack a true understanding of the world. This highlights the risks of deploying AI without ensuring it understands the systems it’s tasked to handle. Careful evaluation is key.
Link:https://news.mit.edu/2024/generative-ai-lacks-coherent-world-understanding-1105
#AI
Educational tech is transforming classrooms, but at what price to students' privacy and rights? From invasive data collection to potential discrimination, such adoption of educational technology raises serious concerns.
It’s time to rethink how we balance innovation with safeguarding students’ futures. Regulation and accountability are essential to protect young minds.
Link:https://privacyinternational.org/long-read/5456/unavoidable-rise-edtech-educational-spaces
#PrivacyMatters #DataProtection
Sergey Shkundaleu
boosted
New breach: Welhof had over 100k email addresses breached last year. Data also included name, physical address and value of purchases. 70% were already in @haveibeenpwned. Read more: https://www.welhof.com/nl_nl/klantenservice/welhof-cyberbeveiligingsincident
Another data broker exposed the data of millions people, that's why this whole industry is very dangerous. Ultimately data brokers won't apply necessary controls to personal data.
Link:https://techcrunch.com/2025/01/13/gravy-analytics-data-broker-breach-trove-of-location-data-threatens-privacy-millions/
#privacy
So it's inauguration day, how about article with some analysis on what to expect from incoming administration with regards to cyber warfare. What do you think?
Link:https://techletters.substack.com/p/techletters-insights-trumps-plans
Face recognition can be misused. This article has few stories providing examples and highlighting how dangerous it could be.
Link:https://www.eff.org/deeplinks/2025/01/police-use-face-recognition-continues-wrack-real-world-harms
Sergey Shkundaleu
boosted
I am very excited about this upcoming episode of The Phillip Wylie Show! It features @veracode cofounder and OG hacker Chris Wysopal. This episode drops on 01/20/2025.
- WebSite
- https://sergey.iontec.co/
- GitHub
- https://github.com/sergshk
Admin
Experienced technology entrepreneur on the quest for ethics and privacy. Follow #punkprivacy tag to get regular privacy tips. You can also follow @ethiork account to get information about progress of Ethiork project that enables people to own their data and protect their privacy.
Joined Nov 2020
