Dropsafe

by Alec Muffett

  • Resources
    • A Primer for End-to-End Encryption
    • A “Duck Test” for End-to-End Secure Messaging
    • Why Privacy will always be more impactful than Safety
    • Muffett on Passwords
    • Pre-Flight Travel Checklist
  • About
    • About
    • Login
    • FAQs
  • Search
  • RSS
    • RSS (All)
    • RSS (Comments)
  • Mid-Book Audiobook Review: “How Spies Think” by David Omand

    2025/05/18 11:30:36 BST

    Christ, I’m having a hard time with this book, and I’m not even done / he hasn’t even gotten onto the “tech industry” parts yet. I seek greater understanding of the mindset of how Sir David Omand, GCB, former head of GCHQ, got on stage at an event I attended in 2015* and said words

    (more…)

    david omand gchq intelligence surveillance
    Fediverse reactions
  • I swear the #Eurovision song contest is the single best argument / thought-experiment against Messenger #interoperability under the EU Digital Markets Act

    2025/05/17 19:37:39 BST

    Imagine you have a single messenger app which brings together SMS, WhatsApp, Messenger, Telegram, and one or two other chat apps; what would it really be like to have the same conversation 3-to-5 times over in 3-to-5 different “places” in the same interoperable “app”, but with different “platform” backends? It would be bedlam, because… …because each

    (more…)

    digital markets act dma Eurovision feed interoperability whatsapp
    Fediverse reactions
  • Google Online Security Blog: Advanced Protection: Google’s Strongest Security for Mobile Devices

    2025/05/16 10:43:19 BST

    I think I’ll give it a go: Whether you’re an at-risk individual – such as a journalist, elected official, or public figure – or you just prioritize security, Advanced Protection gives you the ability to activate Google’s strongest security for mobile devices, providing greater peace of mind that you’re protected against the most sophisticated threats.

    (more…)

    android security
    Fediverse reactions
  • Lol that @triclassified podcast has used a banner picture of @runasand in the 4th episode Re: @snowden, which so far has focused on personalities rather than impact, and…

    Lol that @triclassified podcast has used a banner picture of @runasand in the 4th episode Re: @snowden, which so far has focused on personalities rather than impact, and…

    2025/05/14 13:27:43 BST

    …and for my taste has (so far) entirely ignored the positive benefit of Snowden’s impact on online security and safety. We would have: no WhatsApp or Messenger end-to-end encryption, no mainstream (e.g. BBC) “darkweb” sites, no/delayed TLS 1.3, no “Schrems” laws, reduced drive for PQ algorithm adoption, we would probably still be using RSA rather

    (more…)

    end to end encryption nordvpn snowden the rest is classified
    Fediverse reactions
  • The Mastodons are inventing “Algorithms”

    2025/05/14 02:43:02 BST

    I wonder how long before we see advertising?

    (more…)

    algorithms mastodon
  • This video is an absolute perfect masterclass in open source intelligence gathering. Or cyber stalking. Both. Whatever. MUSTWATCH

    2025/05/12 21:14:41 BST

    Perfection:

    (more…)

    cyber stalking online safety osint privacy
    Fediverse reactions
  • Wikipedia challenging UK law it says exposes it to ‘manipulation and vandalism’ | Wikipedia | The Guardian

    2025/05/09 11:25:20 BST

    Personally I’m disappointed that Wikipedia is not challenging the whole thing, but this is better than nothing: The foundation said it was not challenging the act as a whole, nor the existence of the requirements themselves, but the rules that decide how a category 1 platform is designated. https://www.theguardian.com/technology/2025/may/08/wikipedia-challenging-uk-law-it-says-exposes-it-to-manipulation-and-vandalism

    (more…)

    anonymity censorship online safety wikipedia
    Fediverse reactions
  • A “Duck Test” for End-to-End Secure Messaging

    2025/05/07 20:17:15 BST

    This is my technical definition of End-to-End Encryption* which can also be summarised as: “there are ends; respect them” …but this version has the advantage of being measurable. I don’t believe I’ve previously posted this as a standalone blog post; the embedded video is my test run for the presentation which I subsequently gave at

    (more…)

    duck test end to end encryption
    Fediverse reactions
  • US Gov’t Signal-clone with backdoor for message retention, hacked, messages leaked | …I really hope #Ofcom are watching re: the impact of proposed client side scanning

    2025/05/05 23:04:01 BST

    Data includes fragments of live communications, including sensitive discussions about pending crypto legislation. Thread: https://x.com/mattjay/status/1919457030793732281 Source: https://www.404media.co/the-signal-clone-the-trump-admin-uses-was-hacked/

    (more…)

    end to end encryption ofcom online safety signal gate
    Fediverse reactions
  • ICYMI: “Every TWINSCAN EUV ships with ~45 million lines of code […] Bugfixes and features start out as *word documents* sent to a series of review boards…”

    2025/05/05 15:37:54 BST

    Remember, kids: all this security nightmare can be fixed through the simple act of regulators demanding that security be implemented “by design”. Or not. Because “security by design” doesn’t mean anything. These are the machines which fabricate all the world’s major CPUs:

    (more…)

    bugs security by design software engineering
  • Mike Waltz Accidentally Reveals Obscure App the Government Is Using to Archive Signal Messages | Sigh, but at least I suppose they are shooting in the right direction…

    2025/05/02 15:29:55 BST

    A photograph of Trump administration official Mike Waltz’s phone shows him using an unofficial version of Signal designed to archive messages during a cabinet meeting. https://www.404media.co/mike-waltz-accidentally-reveals-obscure-app-the-government-is-using-to-archive-signal-messages/

    (more…)

    signal signal gate trump
    Fediverse reactions
  • How a 20 year old bug in GTA San Andreas surfaced in Windows 11 24H2 | Silent’s Blog

    2025/04/29 12:52:08 BST

    A fascinating delve into an old “uninitialised variables on stack because of inadequate input validation”-bug, which managed to survive two decades in the wild before detection. https://cookieplmonster.github.io/2025/04/23/gta-san-andreas-win11-24h2-bug/

    (more…)

    bugs software engineering
    Fediverse reactions
←Previous Page
1 … 53 54 55 56 57 … 669
Next Page→

Dropsafe

Proudly powered by WordPress