0xB
In the last few weeks, video conferencing became the primary way to stay in touch. Zoom saw a raise in daily users, 10 million per day, to 300 million per day. The company preferred to focus on usability than security aspects. But this is also when you have security researchers worldwide sitting at home in locked down condition. Becoming the most visible product in the market at this hour has a downside :) People found all sorts of issues in Zoom.
If you are still trying to understand the difference between various video conferencing tools, my friend and colleague Martin Shelton wrote this detailed article listing many of the major tools.
Links for the week
- Nintendo Switch accounts hacked https://www.wired.com/story/nintendo-switch-hack/
- NSA tools for mitigating web shells https://github.com/nsacyber/Mitigating-Web-Shells
- WhatsApp gave details along with IP addresses of NSO servers
Wow, @WhatsApp just dropped a bunch of hacking group NSO's IPs in their latest filing. Notably, these were servers located in the USA. THREAD pic.twitter.com/8PmyJlbGvI
— John Scott-Railton (@jsrailton) April 24, 2020 - Detailed web security course
- ACLU whitepaper on issues of location tracking https://www.aclu.org/report/aclu-white-paper-limits-location-tracking-epidemic
- What to do when you that you are compromised https://www.blackhillsinfosec.com/webcast-think-youre-compromised-what-do-we-do-next/
- List of Zoom security and privacy flaws https://tidbits.com/2020/04/03/every-zoom-security-and-privacy-flaw-so-far-and-what-you-can-do-to-protect-yourself/
- Saudi spies tracking phones https://techcrunch.com/2020/03/29/saudi-spies-ss7-phone-tracking/
Video for the week
If you want to discuss any of these topics, hop on to the Freenode server (IRC), and come to the #learnandteach channel. Or you can find me on fediverse https://toots.dgplug.org/@kushal.
Kushal