Monday, November 10, 2014 - 21:58

Der BND und die aufgekauften Exploits

Aktuell kursieren Meldungen, dass der BND 0-Day Exploits aufkauft bzw. aufkaufen will, um sie für die geheimdienstliche Informationsbeschaffung zu nutzen. Das machen andere auch. Auch bei den meisten von denen ist das eine sehr dumme Idee.
Thursday, October 16, 2014 - 01:25

The Nexus 6. Motorola's 6" brick.

I will never understand this megalomania in respect to screen size. A bigger screen is awesome. But 6" isn't big or awesome. It's mostly just less convenient than 5".
Saturday, September 6, 2014 - 20:26

JackPair: An open source and open hardware voice encryption dongle.

I stumbled upon this little gadget yesterday and I think I like it if they deliver on their open statement. The device is encrypting audio between headset and the phone's audio jack. So it's a hardware solution requiring both parties to own the device.
Friday, September 5, 2014 - 21:53

Wie sicher ist Smart bzw. ChipTAN?

Ein Urteil des Landgericht Darmstadt sieht die Haftung in einem verhandelten Fall auf Seiten des geschädigten Kunden, da dieser SmartTAN eingesetzt hatte.
Tuesday, September 2, 2014 - 00:54

When celebrities strip without intention

According to various news sites and comments by suspected victims a good share of celebrities had their nude photos and other interesting art published without consent. Apparently hackers brute forced into iCloud accounts to obtain the data.
Saturday, July 5, 2014 - 05:31

XKeyScore's 'source code'. Anything interesting?

When German media reported that they gained access to the source code of XKeyScore I was highly skeptical about source code because what they claimed did not make much sense. I suspected sloppy language and that seems to be true. It's nevertheless interesting.
Thursday, July 3, 2014 - 16:01

Microsoft surrenders captured DynDNS domains.

Microsoft apparently has surrendered the previously captured domains ending Vitalwerks service disruption.
Tuesday, July 1, 2014 - 19:22

Microsoft hijacks NoIP through temporary restraint order against Vitalwerks

If you wonder why your NoIP dynamic DNS isn't working anymore...Microsoft basically captured the service in what you could call a cloak-and-dagger operation via a TRO against Vitalwerks LCC. The company behind NoIP.
Friday, June 6, 2014 - 20:49

OpenSSL: Buggallore...again.

Now I could start this with attacking the notorious Seggelmann/Henson bug-team. And probably that would be justified to a certain extent. But I won't. Well. Not beyond the introduction that is.
Thursday, May 29, 2014 - 20:49

TrueCrypt and a big fat and ugly WHAT THE FUCK?

For some yet unknown reason TrueCrypt is pretty much gone. The website sports a warning and the repo has been closed and reduced to a rather shady version 7.2 that you should stay away from as far as possible.