home.social

#maninthemiddle — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #maninthemiddle, aggregated by home.social.

  1. One Open-source Project Daily

    Ngrok FRP Alternative • Fast • Lightweight • 0 Dependency • Pluggable • TLS interception • DNS-over-HTTPS • Poor Man's VPN • Reverse & Forward • "Proxy Server" framework • "Web Server" framework • "PubSub" framework • "Work" acceptor & executor framework

    https://github.com/abhinavsingh/proxy.py

    #1ospd #opensource #dnsoverhttps #gfw #httpproxy #httpserver #httpsproxy #maninthemiddle #mitm #mitmproxy #ngrok #ngrokalternative #ngrokreplacement #proxy #proxyserver #python3 #reverseproxy #tlsinterception #tunnel #vpn #webserver #webserver

  2. One Open-source Project Daily

    Ngrok FRP Alternative • Fast • Lightweight • 0 Dependency • Pluggable • TLS interception • DNS-over-HTTPS • Poor Man's VPN • Reverse & Forward • "Proxy Server" framework • "Web Server" framework • "PubSub" framework • "Work" acceptor & executor framework

    https://github.com/abhinavsingh/proxy.py

    #1ospd #opensource #dnsoverhttps #gfw #httpproxy #httpserver #httpsproxy #maninthemiddle #mitm #mitmproxy #ngrok #ngrokalternative #ngrokreplacement #proxy #proxyserver #python3 #reverseproxy #tlsinterception #tunnel #vpn #webserver #webserver

  3. I am looking for a firefox plugin to warn me when the cloudflare (or similar) man in the middle is involved. Or maybe I should simply block sites using cloudflare (or similar) altogether?

    This looks interesting (but I didn't look into the details, yet):

    addons.mozilla.org/en-US/firef

    Any suggestions?

    #maninthemiddle #firefox #plugin #cloudflare #reclaimTheInternet

  4. @craignicol @aral
    The E2EE encryption ends are meaningless when AI is the "Main-In-The-Middle"

    What does that say for the risk our current Secretary of Whiskey puts us in, using Signal chat on a non-secured personal phone to describe war plans?

    cyberinsider.com/signal-presid

    #Signal #AI #E2EE #Hack #Hackers #Hegseth #PeteHegseth #Trump #ManInTheMiddle

  5. @craignicol @aral
    The E2EE encryption ends are meaningless when AI is the "Main-In-The-Middle"

    What does that say for the risk our current Secretary of Whiskey puts us in, using Signal chat on a non-secured personal phone to describe war plans?

    cyberinsider.com/signal-presid

    #Signal #AI #E2EE #Hack #Hackers #Hegseth #PeteHegseth #Trump #ManInTheMiddle

  6. Accessing the Internet through free public Wi-Fi networks exposes you to serious #security risks.

    For our #CyberSecMonth campaign, Alessandro Inzerilli, network and security engineer at the Italian Research and Education Network GARR, explains why you should always use a #VPN, such as #eduVPN, when using such unsecured networks.

    🔗 connect.geant.org/csm24

    #CSM24 #CyberSecurityAwareness #Cybersecurity #SecurityAwareness #ECSM #Network #WiFiSecurity #Spoofing #ManInTheMiddle #WiFi

  7. Accessing the Internet through free public Wi-Fi networks exposes you to serious #security risks.

    For our #CyberSecMonth campaign, Alessandro Inzerilli, network and security engineer at the Italian Research and Education Network GARR, explains why you should always use a #VPN, such as #eduVPN, when using such unsecured networks.

    🔗 connect.geant.org/csm24

    #CSM24 #CyberSecurityAwareness #Cybersecurity #SecurityAwareness #ECSM #Network #WiFiSecurity #Spoofing #ManInTheMiddle #WiFi

  8. @AndreVerhoeven geen idee, maar een #ManInTheMiddle lijkt me bijzonder voor de hand liggend, net als bankbiljetten. 😂
    (dat laatste lijkt me een echte old school techniek waar je op kan vertrouwen. 🤓
    @LaAckxtra @karelbrits

  9. @AndreVerhoeven geen idee, maar een #ManInTheMiddle lijkt me bijzonder voor de hand liggend, net als bankbiljetten. 😂
    (dat laatste lijkt me een echte old school techniek waar je op kan vertrouwen. 🤓
    @LaAckxtra @karelbrits

  10. Linksys Velop routers send Wi-Fi passwords in plaintext to US servers

    Link
    📌 Summary:

    根據Testaankoop的調查,發現兩款Linksys路由器正在以明文的方式將Wi-Fi登入資訊傳送到位於美國的亞馬遜(AWS)伺服器,包括Linksys Velop Pro 6E和Velop Pro 7這兩款mesh路由器。這個漏洞讓攻擊者能夠攔截傳輸過程中的Wi-Fi網路名稱(SSID)和密碼,從而進行竊聽和惡意攻擊。儘管Testaankoop多次向Linksys提出警告,但該公司並未採取有效措施,直到Testaankoop再次聯絡後才進行了更新,但仍未解決問題。這個問題可能源於Linksys固件中使用的第三方軟體,但無論如何,這種漏洞仍然存在,即使是最新的Linksys 7 Pro,都無法避免。研究人員建議消費者不要購買這些路由器,因為存在嚴重的網路入侵和資料損失的風險。

    🎯 Key Points:

    Testaankoop發現兩款Linksys路由器在明文中將Wi-Fi登入資訊傳送到AWS伺服器,包括Linksys Velop Pro 6E和Velop Pro 7。
    這個漏洞讓攻擊者能夠攔截SSID和密碼,進行竊聽和惡意攻擊。
    Testaankoop多次向Linksys提出警告,但該公司未採取有效措施。
    更新後的固件仍無法解決問題。
    這個問題可能源於Linksys固件中使用的第三方軟體,但無論如何,這種漏洞仍然存在。
    研究人員建議不要購買這些路由器,並建議用戶更改Wi-Fi網路名稱和密碼。

    #Linksys #router #meshnetworking #dataprotection #cybersecurity #vulnerability #AWS #thirdpartysoftware #SSID #password #cleartext #plaintext #man-in-the-middle #attack #firmware #security #wiring #hacking #officeenvironments #Patagonia #AI #privacyviolation #classactionlawsuit #Snowflake #MFA #databreaches

    🔖 Keywords:

    #Linksys #router #meshnetworking #dataprotection #cybersecurity #vulnerability #AWS #thirdpartysoftware #SSID #password #cleartext #plaintext #man-in-the-middle #attack #firmware #security #wiring #hacking #officeenvironments #Patagonia #AI #privacyviolation #classactionlawsuit #Snowflake #MFA #databreaches

  11. Hackers infect users of antivirus service that delivered updates over HTTP - Enlarge (credit: Getty Images)

    Hackers abused an antivirus ser... - arstechnica.com/?p=2019398 #maninthemiddle #encryption #antivirus #backdoors #security #biz#https #http

  12. Hackers infect users of antivirus service that delivered updates over HTTP - Enlarge (credit: Getty Images)

    Hackers abused an antivirus ser... - arstechnica.com/?p=2019398 #maninthemiddle #encryption #antivirus #backdoors #security #biz#https #http

  13. How spies competitive products using an in-house on users' phones: Facebook engineers proposed using Onavo, which when activated had the advantage of reading all of the device’s network traffic before it got encrypted and sent over the internet.
    “We now have the capability to measure detailed in-app activity” from “parsing snapchat analytics.
    techcrunch.com/2024/03/26/face

  14. @owen @signalapp

    @Mer__edith maybe YOU could wake someone up in the technical/customer support department? Or do they just not exist? It's been months that I've been trying to diagnose verification code failures on my own because I don't get anything from the Customer Support form on signal.org

    blog.techwork.zone/posts/mitm/

    #MitM #ManInTheMiddle #Signal #security #privacy

  15. @owen @signalapp

    @Mer__edith maybe YOU could wake someone up in the technical/customer support department? Or do they just not exist? It's been months that I've been trying to diagnose verification code failures on my own because I don't get anything from the Customer Support form on signal.org

    blog.techwork.zone/posts/mitm/

    #MitM #ManInTheMiddle #Signal #security #privacy

  16. iX-Workshop: Daten und Kommunikation schützen mit moderner Kryptographie

    Lernen Sie, wie gängige kryptographische Verfahren wie Verschlüsselung und digitale Signaturen funktionieren und wie Sie damit Ihre Unternehmens-IT schützen.

    heise.de/news/iX-Workshop-Date

    #digitaleSignatur #Security #Verschlüsselung #Mac #ManintheMiddle #RSA #news

  17. iX-Workshop: Daten und Kommunikation schützen mit moderner Kryptographie

    Lernen Sie, wie gängige kryptographische Verfahren wie Verschlüsselung und digitale Signaturen funktionieren und wie Sie damit Ihre Unternehmens-IT schützen.

    heise.de/news/iX-Workshop-Date

    #digitaleSignatur #Security #Verschlüsselung #Mac #ManintheMiddle #RSA #news

  18. This article states that the Snapchat message was seen by British security b/c he was using airport #WiFi but doesn't go into specifics. Does #Snapchat operate in plain text over the wire? Does airport WiFi have some sort of #maninthemiddle capabilities? Obviously public WiFi means the WiFi isn't #encrypted but presumably you'd be using something like #https to communicate w/ messaging apps, right? gizmodo.com/teen-fine-joke-tex

  19. @paulshardware
    As far as the #AIMonitor, I think HDCP might be a solution for #ManInTheMiddle AI cheats, and then I think #DisplayPort, and #HDMI report the monitor model number and blacklist.

    youtube.com/watch?v=3TY62Suv9a
    RE: MSI Made Me Consider Deep Ethical Questions at CES 2024

  20. @paulshardware
    As far as the #AIMonitor, I think HDCP might be a solution for #ManInTheMiddle AI cheats, and then I think #DisplayPort, and #HDMI report the monitor model number and blacklist.

    youtube.com/watch?v=3TY62Suv9a
    RE: MSI Made Me Consider Deep Ethical Questions at CES 2024

  21. #Verpasstodon

    Lauschangriff auf russischen Jabber-Server in Deutschland: Wer steckt dahinter?

    Rein zufällig flog auf, dass sich Unbekannte mit einem eigenen Zertifikat in Jabber-Chat-Verbindungen einklinkten. Die Betreiber vermuten eine Polizeiaktion.

    heise.de/news/Lauschangriff-au

    #Jabber #Let'sEncrypt #ManintheMiddle #Security #XMPP