What's the point of an #anonymizing#messenger if they - in clear violation of #GDPR & #BDSG - conmect that to a #PhomeNumber which im more juristictions than ever can't be obtained anonymously in.any legal capacity???
Really proud of Signal, of this piece, and so happy to help lead an organization willing to be honest about what others hide: the incredible cost of developing consumer tech, and why it’s so hard (but rewarding!) to build tech that doesn’t rely on monetizing surveillance.
#Honeypots are often too obvious about being a #Honeypot: #SheilaABerta looks at error messages and their differences between the emulated service and the honeypot's version. She requires only a single message to expose the fake service.
Honeypot writer need to improve their "compatibility". #SCS23
We're also pleased to have @cdteurope's Iverna McGowan moderate the discussion 🌟 & to hear from Noémie Levain, Legal Expert at @LaQuadrature, Beatriz Ramalho da Silva, Investigative Journalist at @lhreports & Bart Staszewski LGBTI+ activist, founder and chairman of Basta Fundacja 🤩
All I see is a huge-ass #honeypot that puts #ANØM to shame and gets #TechIlliterates into a false sense of security like a 10kW floodlight does to moths...
If they were interested in it being #secure, they'd decentralize it so hard that even if one were to put a gun on every single of their staff members at once they could not shut it down.
For those of you who deploy #honeypot resources or other active deception, how do you represent them to regulatory audits, or programs like FedRAMP? Are there specific steps you take to clarify that these are intentional "misconfigurations?"
We're in the final stages of the Online Safety Bill and, honestly, I'm not optimistic. This is just the next attempt, and probably the successful one, at breaking end-to-end #encryption in the #UK. I admire the stances of @signalapp and the like, but the ones who are going to be most negatively affected by this are those who aren't as technically proficient. And that's the problem. Truly #privacy-preserving technologies should be accessible to everyone. #tech#surveillance
I just don't have any evidence yet that they're an #ANØM-Style #Honeypot but I'd declare every LEA "criminally incompetent" if they didn't already #EncroChat themselves inside and put every phone # of every user on a watchlist.
Or does anyone think the CIA & NSA didn't find a successor operation to #MINERVA?
> "According to #Kolektiva, the seized database, now in the #FBI’s possession, includes personal information such as email addresses, hashed passwords, and IP addresses from 3 days prior to the date the backup was made. It also includes posts, #DMs, and interactions involving users on the server. As is the nature of the #fediverse, this also implicates messages and posts from other instances.