Podcast appearances and mentions of Moxie Marlinspike

A new lawsuit has intensified scrutiny over whether artificial intelligence models are being trained using pirated books. Authors and publishers are reacting to claims that Meta used books from Library Genesis, a well-known piracy site, without permission. Alex Reisner, Data Journalist at The Atlantic, built a tool enabling authors to check if their books were included in the dataset. Rosie Wilby, comedian and author, found her work listed and raised concerns over consent and fair compensation. Catriona MacLeod Stevenson, General Counsel and Deputy CEO at the Publishers Association, outlines the legal response and calls for greater transparency in AI training practices. Journalists in Turkey have been detained following widespread protests triggered by the arrest of a political opponent of President Erdoğan. Selin Girit, Correspondent at the BBC World Service, explains the environment facing journalists, including government control of around 90% of the media and previous intimidation of foreign reporters. Attention has turned to the use of encrypted messaging app Signal after a surprising error saw Atlantic editor Jeffrey Goldberg added to a White House group chat about planned US strikes in Yemen. James Ball, Political Editor of The New European, explains the implications of the leak, the rise of Signal among journalists, and the motivations of its founder, Moxie Marlinspike. Presenters: Katie Razzall and Ros Atkins Producer: Lucy Wai Assistant Producers: Flora McWilliam and Elena Angelides

Who is listening in and tracking our digital activity? And is it really necessary? Recorded live at the 2024 Masters of Scale Summit in San Francisco, Rapid Response host Bob Safian sits down with Signal president Meredith Whittaker to discuss privacy, trust and digital surveillance, from governments and from companies. Whittaker argues that we should question what she sees as extreme data collection by big tech, and she rejects the notion that encrypted apps like Signal are responsible for enabling bad actors. Meredith also shares why she helped organize protests at Google, the philosophy that inspired Signal's founder Moxie Marlinspike, and more.Visit the Rapid Response website here: https://www.rapidresponseshow.com/See Privacy Policy at https://art19.com/privacy and California Privacy Notice at https://art19.com/privacy#do-not-sell-my-info.

Black Hat was last week and Hacker Summer Camp never fails to disappoint. There were some big takeaways from the show, such as Moxie Marlinspike telling DevOps they're the problem with security as well as a whole host of exploits, like the ones we've covered above. However, AI is king in 2024 and we knew everyone was going to be talking about it. Time Stamps: 0:00 - Welcome to The Rundown 1:13 - IBM Storage Scale using Blue Vela AI supercomputer 4:46 - AMD Chips Hit with Sinkclose 8:24 - BMC Uses AI For Mainframe Operations 12:38 - NIST Finalizes Post-Quantum Cryptography Standards 17:00 - RedHat's OpenShift Gets GenAI 20:32 - Pliops Kalray Merger Falls Through 23:14 - Announcements and Takeaways from Black Hat 23:48 - HPE Leverages AI for Security 28:18 - Copilot Insecure by Design 33:36 - More from Black Hat 38:20 - The Weeks Ahead 40:00 - Thanks for Watching Hosts: Tom Hollingsworth: https://www.twitter.com/NetworkingNerd Stephen Foskett: https://www.twitter.com/SFoskett Follow Gestalt IT Website: https://www.GestaltIT.com/ Twitter: https://www.twitter.com/GestaltIT LinkedIn: https://www.linkedin.com/company/Gestalt-IT Tags: #Rundown, #BlackHat2024, #Copilot, #AI, @IBM, @AMD, @BMCSoftware, @RedHat, @OpenShift, @Pliops, @Karlay, @HPE, @Microsoft, @NetworkingNerd, @SFoskett, @GestaltIT, @TheFuturumGroup, @TechstrongTV,

Dennis Fisher and Lindsey O'Donnell-Welch reflect on their week in Las Vegas at Black Hat and discuss the talks they liked, including Moxie Marlinspike's keynote and the Google Project Zero retrospective, and the other topics they found interesting, including vulnerability exploitation versus social engineering and the AI ecosystem.

Decipher editors Dennis Fisher and Lindsey O"Donnell-Welch are joined by Brian Donohue to dissect the Black Hat talks they're looking forward to, including sessions with H D Moore, Sherrod DeGrippo, and Moxie Marlinspike, and some talks they can't quite figure out from the titles.

Guest: Steve Wylie, Vice President, Cybersecurity Market at Informa Tech [@InformaTechHQ] and General Manager at Black Hat [@BlackHatEvents]On LinkedIn | https://www.linkedin.com/in/swylie650/On Twitter | https://twitter.com/swylie650____________________________Hosts: Sean Martin, Co-Founder at ITSPmagazine [@ITSPmagazine] and Host of Redefining CyberSecurity Podcast [@RedefiningCyber]On ITSPmagazine | https://www.itspmagazine.com/sean-martinMarco Ciappelli, Co-Founder at ITSPmagazine [@ITSPmagazine] and Host of Redefining Society PodcastOn ITSPmagazine | https://www.itspmagazine.com/itspmagazine-podcast-radio-hosts/marco-ciappelli____________________________Episode NotesVroom Vroom! The Black Hat Tradition with Sean and MarcoIt's that time of year again, and Sean Martin and Marco Ciappelli are kicking things off with their customary banter on the road to Black Hat USA 2024. This time, there's no need to "vroom vroom" their way to Las Vegas as they'll be flying there instead. But no matter how they get there, it's all about reaching the grand event that is Black Hat.A Decade of ITSP Magazine and Black HatMarco highlights a significant milestone for their publication: ITSP Magazine is celebrating its 10th anniversary, a journey that began alongside the Black Hat conference. Steve Wylie, who has also been with Black Hat since 2014, shares this sentiment of growth and reflection.What to Expect at Black Hat USA 2024Steve Wylie provides a comprehensive overview of what attendees can expect this year. As always, the event will bring the heat—literally, with Las Vegas temperatures scaling up to 108 degrees Fahrenheit. But beyond the weather, the Black Hat event itself will feature a multitude of new expansions.Key HighlightsExpanded Content Program: Black Hat is adopting a three-day format instead of its usual two, adding a day packed with additional activities and events.More Networking Opportunities: Attendees can look forward to broadening their professional circles with a variety of planned and unplanned networking events, including the Meetup Lounge and Track Chair Meet and Greets.Day Zero Program: Designed especially for newcomers, this pre-event briefing will help attendees make the most out of their experience.Innovative Summits: New summits, including an AI Summit, Innovators and Investors Summit, Industrial Controls Summit, and Cyber Insurance Summit, will target both technical and managerial audiences.Deep Dives and Panel DiscussionsSteve reveals a notable deviation from tradition: this year's keynote will be a panel discussion focused on defending democracy in an election year, featuring top cybersecurity leaders from the U.S., the EU, and the UK. This will be an essential kickoff, reflecting on the year's heavy election schedule and the growing influence of AI.Fireside Chat with Moxie MarlinspikeAnother unique addition is a fireside chat with Moxie Marlinspike, founder of Signal, moderated by Jeff Moss. This discussion will delve into privacy concerns and the ever-important balance between privacy and security in today's technological landscape.Arsenal and the NOC: Fan Favorites ReturnSean and Steve both tip their hats to recurring features such as Arsenal, which showcases cutting-edge tools developed by the cybersecurity community, and the NOC, where attendees can witness real-time network management and protection.Wrapping UpAs Sean and Marco prepare to experience another electrifying Black Hat, they remind readers and listeners alike to subscribe to ITSP Magazine for exclusive coverage and insights. Whether you're able to attend in person or follow along remotely, Black Hat USA 2024 promises to be a crucial event for anyone in the cybersecurity field.Be sure to follow our Coverage Journey and subscribe to our podcasts!____________________________Follow our Black Hat USA  2024 coverage: https://www.itspmagazine.com/black-hat-usa-2024-hacker-summer-camp-2024-event-coverage-in-las-vegasOn YouTube:

Guest: Steve Wylie, Vice President, Cybersecurity Market at Informa Tech [@InformaTechHQ] and General Manager at Black Hat [@BlackHatEvents]On LinkedIn | https://www.linkedin.com/in/swylie650/On Twitter | https://twitter.com/swylie650____________________________Hosts: Sean Martin, Co-Founder at ITSPmagazine [@ITSPmagazine] and Host of Redefining CyberSecurity Podcast [@RedefiningCyber]On ITSPmagazine | https://www.itspmagazine.com/sean-martinMarco Ciappelli, Co-Founder at ITSPmagazine [@ITSPmagazine] and Host of Redefining Society PodcastOn ITSPmagazine | https://www.itspmagazine.com/itspmagazine-podcast-radio-hosts/marco-ciappelli____________________________Episode NotesVroom Vroom! The Black Hat Tradition with Sean and MarcoIt's that time of year again, and Sean Martin and Marco Ciappelli are kicking things off with their customary banter on the road to Black Hat USA 2024. This time, there's no need to "vroom vroom" their way to Las Vegas as they'll be flying there instead. But no matter how they get there, it's all about reaching the grand event that is Black Hat.A Decade of ITSP Magazine and Black HatMarco highlights a significant milestone for their publication: ITSP Magazine is celebrating its 10th anniversary, a journey that began alongside the Black Hat conference. Steve Wylie, who has also been with Black Hat since 2014, shares this sentiment of growth and reflection.What to Expect at Black Hat USA 2024Steve Wylie provides a comprehensive overview of what attendees can expect this year. As always, the event will bring the heat—literally, with Las Vegas temperatures scaling up to 108 degrees Fahrenheit. But beyond the weather, the Black Hat event itself will feature a multitude of new expansions.Key HighlightsExpanded Content Program: Black Hat is adopting a three-day format instead of its usual two, adding a day packed with additional activities and events.More Networking Opportunities: Attendees can look forward to broadening their professional circles with a variety of planned and unplanned networking events, including the Meetup Lounge and Track Chair Meet and Greets.Day Zero Program: Designed especially for newcomers, this pre-event briefing will help attendees make the most out of their experience.Innovative Summits: New summits, including an AI Summit, Innovators and Investors Summit, Industrial Controls Summit, and Cyber Insurance Summit, will target both technical and managerial audiences.Deep Dives and Panel DiscussionsSteve reveals a notable deviation from tradition: this year's keynote will be a panel discussion focused on defending democracy in an election year, featuring top cybersecurity leaders from the U.S., the EU, and the UK. This will be an essential kickoff, reflecting on the year's heavy election schedule and the growing influence of AI.Fireside Chat with Moxie MarlinspikeAnother unique addition is a fireside chat with Moxie Marlinspike, founder of Signal, moderated by Jeff Moss. This discussion will delve into privacy concerns and the ever-important balance between privacy and security in today's technological landscape.Arsenal and the NOC: Fan Favorites ReturnSean and Steve both tip their hats to recurring features such as Arsenal, which showcases cutting-edge tools developed by the cybersecurity community, and the NOC, where attendees can witness real-time network management and protection.Wrapping UpAs Sean and Marco prepare to experience another electrifying Black Hat, they remind readers and listeners alike to subscribe to ITSP Magazine for exclusive coverage and insights. Whether you're able to attend in person or follow along remotely, Black Hat USA 2024 promises to be a crucial event for anyone in the cybersecurity field.Be sure to follow our Coverage Journey and subscribe to our podcasts!____________________________Follow our Black Hat USA  2024 coverage: https://www.itspmagazine.com/black-hat-usa-2024-hacker-summer-camp-2024-event-coverage-in-las-vegasOn YouTube:

"Nothing in the ordinal logic requires inscriptions to be linked to the “first” sat. So why is it the first sat of the first output? Why not the second sat of the first output? Why not the last, or one of the other hundreds, thousands, or millions of other satoshis which were also present in that same transaction? The answer is, well, because we are _pretending_ that it is so. In other words, we say a sat is inscribed _by fiat_." ~ Southern Hands You may have heard many claims of the innovative and exciting things being built with ordinals, and how the popular new inscription NFTs are inspiring a flurry of activity and pushing fees higher on the Bitcoin chain. What exactly are ordinals that have made this possible? And how does one own a "scarce digital artifact" on the blockchain? Is there any truth to these claims, or is it all smoke and mirrors? Check out the original article at Ordinals are Fiat. And Inscriptions aren't Rare by Southern Hands | Medium (Link: https://tinyurl.com/4zvbauhf) References and Links to check out: Bitcoin Audible - Guy's Take #66 - Pooping in the Park (Link: https://tinyurl.com/38cnu3ft) Read_592 by Moxie Marlinspike on NFTs and Web3 ⁠(Link: https://tinyurl.com/3578nwje) Guest Link Southern hands on X (Link: https://tinyurl.com/2eb7z43r) Host Links Guy on Nostr (Link: https://tinyurl.com/yc376bff) Guy on X (Link: https://twitter.com/theguyswann) Bitcoin Audible on X (Link: https://twitter.com/BitcoinAudible) Check out our awesome sponsors! Get 9% off the COLDCARD with code BITCOINAUDIBLE ⁠⁠⁠⁠⁠⁠(Link: bitcoinaudible.com/coldcard⁠⁠⁠⁠⁠⁠) "It takes considerable knowledge just to realize the extent of your own ignorance." ~ Thomas Sowell --- Send in a voice message: https://podcasters.spotify.com/pod/show/bitcoinaudible/message

"Nothing in the ordinal logic requires inscriptions to be linked to the “first” sat. So why is it the first sat of the first output? Why not the second sat of the first output? Why not the last, or one of the other hundreds, thousands, or millions of other satoshis which were also present in that same transaction? The answer is, well, because we are _pretending_ that it is so. In other words, we say a sat is inscribed _by fiat_." ~ Southern Hands You may have heard many claims of the innovative and exciting things being built with ordinals, and how the popular new inscription NFTs are inspiring a flurry of activity and pushing fees higher on the Bitcoin chain. What exactly are ordinals that have made this possible? And how does one own a "scarce digital artifact" on the blockchain? Is there any truth to these claims, or is it all smoke and mirrors? Check out the original article at Ordinals are Fiat. And Inscriptions aren't Rare by Southern Hands | Medium (Link: https://tinyurl.com/4zvbauhf) References and Links to check out: Bitcoin Audible - Guy's Take #66 - Pooping in the Park (Link: https://tinyurl.com/38cnu3ft) Read_592 by Moxie Marlinspike on NFTs and Web3 ⁠(Link: https://tinyurl.com/3578nwje) Guest Link Southern hands on X (Link: https://tinyurl.com/2eb7z43r) Host Links Guy on Nostr (Link: https://tinyurl.com/yc376bff) Guy on X (Link: https://twitter.com/theguyswann) Bitcoin Audible on X (Link: https://twitter.com/BitcoinAudible) Check out our awesome sponsors! Get 9% off the COLDCARD with code BITCOINAUDIBLE ⁠⁠⁠⁠⁠⁠(Link: bitcoinaudible.com/coldcard⁠⁠⁠⁠⁠⁠) "It takes considerable knowledge just to realize the extent of your own ignorance." ~ Thomas Sowell --- Send in a voice message: https://podcasters.spotify.com/pod/show/bitcoinaudible/message

Just like there are secondary emotions that come out due a primary feeling and core belief, there are secondary tactics driven by a primary need, based upon a core belief. Anger is often a front for fear and fear is often a result of a belief that one in incompetent. Censorship on issues like election integrity, so-called public “health” orders and the U.S. proxy war against Russia is a secondary tactic, with the primary need of the censors being to silence critics. So, what is the core belief of these censors? I think half of them know they are intellectually overmatched and flailing in their jobs while the other half knows they are committing fraud on a Biblical scale. Why are we spending so much time on the topic of digital censorship this week? Here's a big reason why: an author in love with government controlled digital currency comes right out and admits he wants the government to decide what you can purchase. What does God's Word say? Luke 4:18The Spirit of the Lord is on me,because he has anointed meto proclaim good news to the poor.He has sent me to proclaim freedom for the prisonersand recovery of sight for the blind,to set the oppressed free.1 Peter 2:9But you are a chosen people, a royal priesthood, a holy nation, God's special possession, that you may declare the praises of him who called you out of darkness into his wonderful light.Episode 951 Links:Central Bank Digital Currency will be their control mechanism. No question.Breaking: Twitter To Sue Meta | Facebook's Litany Of Copycat FailsMeta Launches Data-Harvesting Twitter Clone, Immediately Starts CensoringA federal judge accused Facebook on Tuesday of coordinating with the White House to censor posts that did not violate its content policy, including a video by former Fox News host and Daily Caller co-founder Tucker Carlson.Mark Zuckerberg worked with the FBI to protect Biden and help steal the 2020 election.His money and censorship are the enemies of free and fair elections.MSNBC's @ryan-j-reilly argues the FBI isn't policing social media enough: "It's not as though the FBI has been going in & saying, 'Hey, take down this post.' ... The FBI's not very good at monitoring social media. Look what happened on Jan 6th. There are all of these warning signs"YouTube @YouTube justifies its utterly inexcusable pernicious invisible self-righteous and counterproductive censorship… Hey Peasants, Your woke corporate overlords think you're too stupid to separate wheat from chaff yourselvesTim Ballard spends his life heroically freeing children from sex trafficking. Jim Caviezel makes a movie about it. The media then proceeds to call it a “paranoid new movie” in an attempt to discredit its exposure of the global child sex trafficking industry.InterestingSURVEILLANCE - Listen carefully to Moxie Marlinspike, the CEO of Signal explain the depth of the Online harms bill Ofcom and the WEF have specified.It would mean Ofcom has the power to force all UK citizens to download Spyware that checks their messages before they are sent against a database of what is permissible to say!Authoritarian invasions of your privacy will be mandatory in the new world order they didn't ask you to vote forUK politician @DamianCollins says he just wants to protect kids but he doesn't. He wants to turn the Internet — worldwide — into a police state. No more private messages because criminals use them. What's next, cameras in every home? Warrantless searches? Please stop this maniac.4Patriots https://4patriots.com Protect your family with Food kits, solar generators and more at 4Patriots. Use code TODD for 10% off your first purchase. Alan's Soaps https://alanssoaps.com/TODD Use coupon code ‘TODD' to save an additional 10% off the bundle price. BiOptimizers https://magbreakthrough.com/todd Use promo code TODD for 10% off your order. Bonefrog https://bonefrog.us Enter promo code TODD at checkout to receive 10% off your subscription. Bulwark Capital http://KnowYourRiskRadio.com Find out how Bulwark Capital Actively Manages risk. Call 866-779-RISK or visit KnowYourRiskRadio.com Patriot Mobile https://patriotmobile.com/herman Get free activation today with offer code HERMAN. Visit or call 878-PATRIOT. RuffGreens https://ruffgreens.com/todd Get your FREE Jumpstart Trial Bag of Ruff Greens, simply cover shipping. Visit or call 877-MYDOG-64. SOTA Weight Loss https://sotaweightloss.com SOTA Weight Loss is, say it with me now, STATE OF THE ART! Sound of Freedom https://angel.com/freedom Join the two million and see Sound of Freedom in theaters July 4th. GreenHaven Interactive https://greenhaveninteractive.com Digital Marketing including search engine optimization and website design.

22nd March: Crypto & Coffee at 8

Welcome to episode two of The Lockdown - Practical Privacy and Security podcast. In this episode I share the saga of the LastPass breach, and my thoughts on password managers and authenticator apps. This episode was recorded on March 19th, 2023Follow me on Twitter @privacypodThis week's episode:1. The LastPass Breach2. Password Managers: Dashlane, 1Password, BitWarden, and KeePassXC3. Authenticator Apps: Google Authenticator, Aegis, and Authy.Recommended Password Managers:1. https://keepassxc.org (Desktop)2. https://www.keepassdx.com (Android only)3. https://strongboxsafe.com (iOS only)4. https://bitwarden.com (Top recommendation for cloud hosted)5. https://1password.com (Ease of use, and great option for cloud hosted)6. https://www.dashlane.com (Expensive, no desktop app)Recommended Authenticator Apps:1. https://authy.com2. https://getaegis.app (Android only)Get Yubikey: https://www.yubico.comIntro music: The Lockdown"In the long run, we will have to rebuild the universe of the online world to have security first and ease of use second." - Moxie Marlinspike

Guest Björn Balazs Panelists Richard Littauer | Victory Brown | Memo Esparza Show Notes Hello and welcome to Sustain Open Source Design! The podcast where we talk about sustaining open source with design. Learn how we, as designers, interface with open source in a sustainable way, how we integrate into different communities, and how we as coders, work with other designers. Our guest today is Björn Balazs joining us from Germany where he works for KDAB and has been a long-term designer in the open space. He also co-founded Open Usability, one of the first initiatives to support Free Software with UX knowledge and practice, which we'll be talking about today. We learn that Björn is a psychologist and a privacy activist, and what got him involved in design and open source. Find out his perspective on where the limit of what design is, a project he's working on called polypoly, and a mind-blowing book he recommends that summarizes problems that happened with privacy issues we have and the way we use technology. Go ahead and download this episode now to find out more! [00:02:08] Björn explains how he got involved in design and open source. [00:08:01] How does Björn see this perception of designers about themselves outside of the craft and does he think it's hard for designers to consider themselves designers without having to touch any of the aesthetics? [00:12:08] We hear where Björn's perspective is on where the limit of what design is. [00:14:09] Björn shares advice for projects that want to have better usability studies on their work before they think about redesigning it and how someone would go about implementing those. [00:16:59] Memo wonders how Björn combines wanting information from the user and respecting their privacy, and he talks about a book called, _The Age of Surveillance Capitalism _and an initiative he joined called, polypoly. [00:21:31] Richard wonders if Björn has other approaches that people can use to think about how to actively create a culture of practice around anti-surveillance capitalist work. [00:22:59] Does Björn have any tricks that he uses to have conversations about users and privacy with his colleagues? [00:28:04] Björn tells us about an active open source design group job board that anyone can go to look at jobs. [00:30:16] Victory asks Björn if she was new to open source and wanted to contribute, how would she approach that community or project maintainer saying I've been watching your project and I think I could help. [00:32:54] Find out where you can follow Björn online. Quotes [00:13:16] “Design is a process where we all participate, professionals or not.” [00:14:28] “Doing a usability study on your own as a designer is very dangerous and it's very hard for involved people to get feedback unless their trained to do this.” [00:15:20] “What you actually need is a usability strategy, not just a usability study.” [00:17:29] “I really recommend the book by Shoshana Zuboff called, The Age of Surveillance Capitalism.” Spotlight [00:33:24] Memo's spotlight is the tool, UI Colors. [00:33:50] Victory's spotlight is the open source community, Aviyel. [00:34:18] Richard's spotlight is the movie, Hold Fast by Moxie Marlinspike. [00:35:08] Björn's spotlight is KDE. Links Open Source Design Twitter (https://twitter.com/opensrcdesign) Open Source Design (https://opensourcedesign.net/) Sustain Design & UX working group (https://discourse.sustainoss.org/t/design-ux-working-group/348) SustainOSS Discourse (https://discourse.sustainoss.org/) Sustain Open Source Twitter (https://twitter.com/sustainoss?lang=en) Richard Littauer Twitter (https://twitter.com/richlitt?ref_src=twsrc%5Egoogle%7Ctwcamp%5Eserp%7Ctwgr%5Eauthor) Memo Esparza Twitter (https://twitter.com/memo_es_) Victory Brown Twitter (https://mobile.twitter.com/victorybrown_) Björn Balazs LinkedIn (https://de.linkedin.com/in/bjbalazs) Sustain Open Source Design Podcast-Episode 23: Heiko Tietze of the Document Foundation on Mentoring Designers (https://sosdesign.sustainoss.org/guests/tietze) Open Usability (https://www.openusability.org/) [The Age of Surveillance Capitalism: The Fight for a Human Future at the New Frontier of Power by Shoshana Zuboff](https://en.wikipedia.org/wiki/TheAgeofSurveillanceCapitalism) polypoly (https://polypoly.org/en-gb/) UI Colors (https://uicolors.app/create) Hold Fast (Vimeo) (https://vimeo.com/15351476) Aviyel (https://aviyel.com/) KDE (https://kde.org/) Credits Produced by Richard Littauer (https://www.burntfen.com/) Edited by Paul M. Bahr at Peachtree Sound (https://www.peachtreesound.com/) Show notes by DeAnn Bahr Peachtree Sound (https://www.peachtreesound.com/) Special Guest: Björn Balazs.

We get a bit gleeful over some choice tech monopoly hypocrisy and then spicy with our 18-month outlook.

1.Fuzzing for XSS via nested parsers condition-https://swarm.ptsecurity.com/fuzzing-...In this article web application security researcher, Igor Sak-Sakovskiy reveals a novel technique for finding sanitization issues that could lead to XSS attacks. 2.Anti-Patterns in Cybersecurity Management-https://systemweakness.com/anti-patte...In this article, this author walks through the most memorable anti-patterns he's seen recurring in cybersecurity management. 3.OWASP Top 10 Peer Review-http://www.securityjourney.com/podcas...Robert and Chris break down the OWASP Top 10 2021 Peer Review Edition in this episode of the Application Security Podcast. They walk through and give their insights, highlight the things that stood out and ask questions. 4.My first impressions of web3 - https://moxie.org/2022/01/07/web3-fir...Security researcher and entrepreneur, Moxie Marlinspike recently explored web3. He shares what he's learned about how web3 works from the inside out. 5.How a routine gem update ended up creating $73k worth of subscriptions- https://serpapi.com/blog/how-a-routin...This is the story of how a company attempted to deploy what looked like an innocent gem update but ended up costing them $73k. In less than an hour, 474 new subscribers had been mistakenly added to their service.

Apple has a market capitalisation of $US2.5 trillion. There are only so many opportunities that the company can pursue in order to significantly increase its bottom line. Self-driving cars and mixed-reality glasses come to mind (as much as I love the Ted Lasso cinematic universe, it's not going to change the world). Another huge opportunity that the iPhone maker has been relatively quiet about is cryptocurrency. "Apple's position on cryptocurrency is somewhere between neutral and hostile," says Ric Burton, a founding member of the Ethereum project. "However, the iPhone may be the tool that brings millions of people into the ecosystem." How? By developing a user-friendly interface for interacting with the crypto economy. "You have to remember that Apple is a company that makes products for people to access protocols," Burton says, noting that the iPod assisted users in interacting with the MP3 standard, whereas the iPhone does the same for internet standards. Cryptography is a set of protocols, and there are numerous tools for interacting with it. However, as designer and technology advisor Holyn Kanake recently wrote for CoinDesk, "these products are miles away from decentralisation, aggressively technical, and composed of discordant user interfaces." Signal founder Moxie Marlinspike hammered home the point in January with a viral post titled "My First Impressions of Web3." He noticed that crypto's promise of a decentralised tech stack is colliding with human behaviour: "People don't want, and will never want, to run their own servers." (In my rough translation, this means that we tend to be simple and lazy.) Burton believes that the iPhone, which more than 1 billion people carry in their pockets on a daily basis, can help to solve this problem in two ways: Safari browser add-on Metamask, a Chrome extension crypto wallet with 21 million users, is one of crypto's most popular onboarding tools so far. Apple's iOS 15 update, released in November, adds more browser extension support. And, with Safari accounting for 54% of mobile traffic in the United States, there is room for more crypto iPhone apps. Wallet hardware A secure enclave is a hardware feature on the iPhone. It is a subsystem on the iPhone A1 chip that stores data (passcodes, biometric data) for sensitive applications such as FaceID and Apple Pay. Importantly, iOS cannot directly access the data. If Apple added the Elliptic Curve Digital Signature Algorithm (ECDSA) encryption signature, the iPhone could become a secure crypto hardware wallet for storing private keys and digital authentication. "A good browser extension is a near-term solution for onboarding crypto users," says Burton, who put his optimism into action by developing Balance, an open-source crypto wallet extension for (you guessed it) Safari. The hardware wallet is a longer-term solution, but it has the potential to be revolutionary given Apple's ability to create user-friendly tools. In some ways, cryptocurrency is already at the mercy of Apple. Coinbase Global CEO Brian Armstrong stated in a blog post on February 4 that the crypto exchange must "play by Apple's rules" in order to be listed in the App Store and service iPhone users. But what does Apple think about cryptocurrency? Currently, iPhone users can download crypto wallet apps (such as Coinbase and Crypto.com), but the company has deemed NFT-viewing apps unsuitable for the App Store. This stance, however, appears to be related to Apple's App Store tax rather than a crypto issue. CEO Tim Cook stated in November at the DealBook Conference that he owns cryptocurrency as "part of a diversified portfolio." While he stated that Apple has "no immediate plans" to integrate cryptocurrency payments, he added that "there are things the company is definitely looking at." The White House is also considering how to encourage crypto innovation. President Joe Biden recently signed an Executive Order on cryptocurrency with the goal of advancing "US competitiveness and leadership" in digital asset technologies. "As cryptoassets become a larger portion of people's nett worth, they will prioritise security and privacy," Burton predicts. "Cook has pushed for those features from the start." In comparison to other Big Tech players (Google, Meta), I believe Apple will do the right thing for the people if it goes the crypto route." Apple's embrace of cryptocurrency would not be the first time a major tech company changed its tune. Last week, payments giant Stripe released a suite of crypto-infrastructure tools, which was a significant domino to fall. It had previously launched and then disbanded its cryptocurrency team in 2018. Burton, who briefly worked at Stripe in its early days, said the move was unsurprising: "Web 2 companies all come around to crypto when they see how it can actually help their customers."   Support us!

Is crypto really decentralised or is it just slightly better than the current system?In Episode #273 of 'Musings' Juan and I discuss: a blog post highlighting decentralisation issues, why we have collectively decided that servers are too hard to operate on our own, why this is not a binary issue and is more of a scale, not needing to have every aspect of your life distributed and why we were a bit scattered on this topic.A big thanks to Bmasi, Dave Jones & Petar the slav for helping to support the show, we couldn't do it without you!As always, we hope you enjoy. Mere Mortals out!Timeline:(0:00) - Moxie Marlinspike & Charles Hoskinson(4:04) - Decentralisation definition(9:43) - NFT's are not immutable(15:02) - You don't get more power by default(18:53) - People don't want to run their own servers(23:38) - Decentralisation is a continuum(26:46) - Responding to comments(30:47) - Boostagram Lounge(36:38) - The seesaw tips again(43:27) - Web 3 is not decentralised(50:32) - Layers of decentralisation(55:10) - Sum up of our thoughts(57:52) - BooooooosssssstttttConnect with Mere Mortals:Website: https://www.meremortalspodcast.com/Discord: https://discord.gg/jjfq9eGReUInstagram: https://www.instagram.com/meremortalspodcast/

We discuss what is Web3 (and Web 3.0). How it came about? And, the debate associated with it. Links to the articles we referenced in the episode: 1. Semantic web 2. Moxie Marlinspike on Web33. David Rosenthal on Crypto 

We can't just talk about all the good things nfts bring to the world without looking at all the bad things.   AC and Roddy look at Dan Olson's (@FoldableHuman) and Moxie Marlinspike's (@moxie) scorching takedowns of NFTs and what that means for this new frontier in web3. The House of AC is proudly sponsored by Jasmine Mortgage Team Topics:  - The Problem with NFTs - Welcoming Roddy Knowles - Discussing Moxie Marlinspike - The Greater Fool Theory - NFT Smart Contracts  - Explaining DAOs - The 20 Year Olds Arrested for Stolen Bitcoin - NFT Winter Follow Roddy on Twitter @roddyknowles, https://twitter.com/RoddyKnowles Follow me on Social Media @TheHouseOfAC: https://linktr.ee/thehouseofac

Episode #117 with Henry and Dylan -- How are you younginz?  We're back-- and we're back with a bang. *drumroll please* Cryptocurrency master, Ian Lapham is back for a comprehensive run down on Web 3. Listen as we discuss Moxie Marlinspike's article about his impression on  Web 3 and what it means for the future of cryptocurrency. Links:• Connect with Ian Lapham:     Twitter | Medium | LinkedIn | Instagram• Ian Lapham: Blockchain for Dummies | Smart Nonsense #42• Ian Lapham: The hidden backdoor to success | Smart Nonsense #43• Moxie Marlinspike's ArticleWatch on YouTube & Subscribe.Watch Henry's last YouTube video.P.S. Toss us a 5-star review :)

Variant Fund is a venture capital firm that describes itself as “a first-check crypto fund investing in the ownership economy.” Jesse Walden and Li Jin, co-founders and general partners at Variant, join Unchained to discuss the ownership economy, issues with web2 and web3, NFTs, the future of work, and more. Highlights: where Li and Jesse met and how their backgrounds as investors + founders led them to the crypto space how Li's investing niche, which she describes as the passion economy, ended up intersecting with crypto why Li believes that web3 platforms will be better for creators than the current web2 ecosystem why Jesse was so inspired by Bitcoin after working in the music industry for so many years why Jesse believes that NFTs are the “port of entry” for the mainstream adoption of crypto what other use-cases exist for NFTs outside of the JPEG or PNG meme (and why Jesse is so excited about music NFTs) why Li believes that web3 tools can help fix the issues inherent to the “gig economy” Li and Jesse respond to criticisms of web3 coming from Jack Dorsey and Moxie Marlinspike how Variant Fund thinks about investing in crypto projects what token allocation Variant Fund targets when investing in crypto projects why mainstream platforms are experiencing backlash for integrating with NFTs and crypto what trends in NFTs, DAOs, and the ownership economy Jesse and Li think will pop in 2022 Get Access to Premium Content Sign up for a premium Bulletin subscription! For becoming a premium subscriber, you'll get access to: a premium-only Discord group premium-only interviews the opportunity to ask questions the chance to weigh in on guests for Unchained and whatever other future offerings we add to the mix The special launch price until February 14 $2.99/mo or $29.99/year. Starting on February 15, the price increases to $4.99/mo or $49.99/year. Join now! Get a Signed Book Plate! Many of you have asked me how you can get a signed copy of the book. Here's how: Pre-order the book, which you can do at bit.ly/cryptopians. Make a social media post about the book that includes the pre-order link, bit.ly/cryptoptians or to the book on any bookseller of your choice. Send a copy of your receipt to hello@unchainedpodcast.com with the subject line, “signed book plate.” In the email, include a pdf of your receipt + a screenshot of or a link to your social media post + the address to which you'd like me to send the book plate + the name of who you'd like me to dedicate the book plate to. If you show a pre-order receipt that shows you bought more than one format of the book, such as an audiobook and a hardcover, you can get two signed book plates. Finally, if you sign up for the Bulletin premium subscription plus do all the above to get a signed book plate, you'll also receive a POAP. Thank you to our sponsors! Crypto.com: https://crypto.onelink.me/J9Lg/unconfirmedcardearnfeb2021           Beefy Finance: https://beefy.finance   Bosonic: https://bosonic.digital/ Alchemy Pay:  https://alchemypay.org   Episode links   Li Jin Twitter: https://twitter.com/ljin18  Substack: https://li.substack.com/ Li Jin on the creator economy The future of the creator economy https://drive.google.com/file/u/1/d/1C3fBfPgWxf-zqezGlPFr7VXIetlHlnaZ/view  https://twitter.com/ljin18/status/1454096370281943041  What the creator economy is doing wrong https://li.substack.com/p/legitimacy-lost  How to fix the “gig” style economy for creators https://li.substack.com/p/the-creator-economy-is-in-crisis How the creator economy could power universal basic income https://li.substack.com/p/the-case-for-universal-creative-income What labor should look like in Web3 https://li.substack.com/p/a-labor-movement-for-the-platform Building the middle class of the creator economy https://li.substack.com/p/building-the-middle-class-of-the Other Web3 is the “golden age” of content https://every.mirror.xyz/y_WLA-Tk3VF5uPqHi-glDLVVfHxLUbjXakRI7SMISas  Transitioning to Web3 from a non-tech perspective https://twitter.com/ljin18/status/1479111931977867275    Jesse Walden Twitter: https://twitter.com/jessewldn  Website (no blogs since 2020): https://jessewalden.com/  Random Tweets DAOs https://twitter.com/jessewldn/status/1459014962207244290 https://twitter.com/jessewldn/status/1470406564582498315  NFTs https://twitter.com/jessewldn/status/1473641606951669767  Music NFTs x Sound XYZ https://twitter.com/jessewldn/status/1471148257892044812 Commoditizing a compliment https://twitter.com/jessewldn/status/1465713306363117578  Writing NFTs make the internet ownable https://variant.mirror.xyz/T8kdtZRIgy_srXB5B06L8vBqFHYlEBcv6ae2zR6Y_eo Product vs. Protocol https://variant.fund/writing/balance-product-protocol-web3 Leadership in the ownership economy https://variant.fund/writing/leadership-in-the-ownership-economyscaling-decision  How DeFi crosses the chasm https://variant.fund/writing/how-does-defi-cross-the-chasm Crypto's Business Model is Familiar. What Isn't is Who Benefits https://variant.fund/writing/cryptos-business-model-is-familiar.-what-isnt-is  Narrative Economics https://variant.fund/writing/narrative-economics  Progressive decentralization https://variant.fund/writing/progressive-decentralization-a-playbook-for-building Layers of blockchain computing https://variant.fund/writing/layers-not-eras-of-blockchain-computing   Variant Fund Variant Fund Twitter https://twitter.com/variantfund Variant Fund website https://variant.fund/ Writing:  https://variant.fund/writing  Mirror Blog (Feb 2021 article on NFTs) https://variant.mirror.xyz/  Variant Fund + Atelier joining forces https://variant.fund/writing/atelier-ventures-and-variant-fund-are-joining-forces  https://techcrunch.com/2021/10/19/variant-debuts-a-new-110m-fund-for-crypto-startups-announces-li-jin-has-joined-as-a-general-partner/ Variant Fund team https://twitter.com/spencernoon/status/1450500555961507844

Emerging tech will shape the future of how we work. It's just a question of when! This week on The Mind Tools L&D Podcast, Ger Driesen joins Ross G and Owen to explore what's possible. We discuss: what the metaverse(s) is(are) how blockchain and NFTs can shape the metaverse economy whether your digital avatar needs to look like your physical body. See Facebook's announcement about their rebrand as 'Meta' at: about.fb.com/news/2021/10/facebook-company-is-now-meta/ Owen referenced Moxie Marlinspike's blog post on web3: moxie.org/2022/01/07/web3-first-impressions.html The 'let the tiger eat me' anecdote was taken from: futurism.com/neoscope/vr-injuries For a longer discussion on blockchain, with Ger, see our earlier episode 'Blockchain for L&D (Yes, really!)': podcast.goodpractice.com/96-blockchain-for-ld-yes-really  For 'How to Troll an NFT Owner', see: slate.com/technology/2021/11/nft-image-ownership-right-clicking-saving-copying-trolling.html Mike Howard, of Oculus, has described the difficulty of creating a digital avatar at: tech.fb.com/avatars-the-art-and-science-of-social-presence/  In 'What I Learned This Week', Owen discussed criticism of Johann Hari's latest book. See: twitter.com/StuartJRitchie/status/1480219761824915461  You can find out more about Hari at: en.wikipedia.org/wiki/Johann_Hari Ger shared his thoughts on 'labyrinthitis'. And Ross discussed survey results on what a 'dream job' looks like: rajaworkplace.co.uk/dream-job  You can find more from Ger on LinkedIn and at: anewspring.com/author/ger  For more from us, including access to our back catalogue of podcasts, visit mindtoolsbusiness.com. There, you'll also find details of our award-winning performance support toolkit, our off-the-shelf e-learning, and our custom work. Connect with our speakers If you'd like to share your thoughts on this episode, connect with our speakers on Twitter: Ross Garner - @RossGarnerMT Owen Ferguson - @OwenFerguson Ger Driesen - @GerDriesen

Variant Fund is a venture capital firm that describes itself as “a first-check crypto fund investing in the ownership economy.” Jesse Walden and Li Jin, co-founders and general partners at Variant, join Unchained to discuss the ownership economy, issues with web2 and web3, NFTs, the future of work, and more. Highlights: where Li and Jesse met and how their backgrounds as investors + founders led them to the crypto space how Li's investing niche, which she describes as the passion economy, ended up intersecting with crypto why Li believes that web3 platforms will be better for creators than the current web2 ecosystem why Jesse was so inspired by Bitcoin after working in the music industry for so many years why Jesse believes that NFTs are the “port of entry” for the mainstream adoption of crypto what other use-cases exist for NFTs outside of the JPEG or PNG meme (and why Jesse is so excited about music NFTs) why Li believes that web3 tools can help fix the issues inherent to the “gig economy” Li and Jesse respond to criticisms of web3 coming from Jack Dorsey and Moxie Marlinspike how Variant Fund thinks about investing in crypto projects what token allocation Variant Fund targets when investing in crypto projects why mainstream platforms are experiencing backlash for integrating with NFTs and crypto what trends in NFTs, DAOs, and the ownership economy Jesse and Li think will pop in 2022 Get Access to Premium Content Sign up for a premium Bulletin subscription! For becoming a premium subscriber, you'll get access to: a premium-only Discord group premium-only interviews the opportunity to ask questions the chance to weigh in on guests for Unchained and whatever other future offerings we add to the mix The special launch price until February 14 $2.99/mo or $29.99/year. Starting on February 15, the price increases to $4.99/mo or $49.99/year. Join now! Get a Signed Book Plate! Many of you have asked me how you can get a signed copy of the book. Here's how: Pre-order the book, which you can do at bit.ly/cryptopians. Make a social media post about the book that includes the pre-order link, bit.ly/cryptoptians or to the book on any bookseller of your choice. Send a copy of your receipt to hello@unchainedpodcast.com with the subject line, “signed book plate.” In the email, include a pdf of your receipt + a screenshot of or a link to your social media post + the address to which you'd like me to send the book plate + the name of who you'd like me to dedicate the book plate to. If you show a pre-order receipt that shows you bought more than one format of the book, such as an audiobook and a hardcover, you can get two signed book plates. Finally, if you sign up for the Bulletin premium subscription plus do all the above to get a signed book plate, you'll also receive a POAP. Thank you to our sponsors! Crypto.com: https://crypto.onelink.me/J9Lg/unconfirmedcardearnfeb2021           Beefy Finance: https://beefy.finance   Bosonic: https://bosonic.digital/ Alchemy Pay:  https://alchemypay.org   Episode links   Li Jin Twitter: https://twitter.com/ljin18  Substack: https://li.substack.com/ Li Jin on the creator economy The future of the creator economy https://drive.google.com/file/u/1/d/1C3fBfPgWxf-zqezGlPFr7VXIetlHlnaZ/view  https://twitter.com/ljin18/status/1454096370281943041  What the creator economy is doing wrong https://li.substack.com/p/legitimacy-lost  How to fix the “gig” style economy for creators https://li.substack.com/p/the-creator-economy-is-in-crisis How the creator economy could power universal basic income https://li.substack.com/p/the-case-for-universal-creative-income What labor should look like in Web3 https://li.substack.com/p/a-labor-movement-for-the-platform Building the middle class of the creator economy https://li.substack.com/p/building-the-middle-class-of-the Other Web3 is the “golden age” of content https://every.mirror.xyz/y_WLA-Tk3VF5uPqHi-glDLVVfHxLUbjXakRI7SMISas  Transitioning to Web3 from a non-tech perspective https://twitter.com/ljin18/status/1479111931977867275    Jesse Walden Twitter: https://twitter.com/jessewldn  Website (no blogs since 2020): https://jessewalden.com/  Random Tweets DAOs https://twitter.com/jessewldn/status/1459014962207244290 https://twitter.com/jessewldn/status/1470406564582498315  NFTs https://twitter.com/jessewldn/status/1473641606951669767  Music NFTs x Sound XYZ https://twitter.com/jessewldn/status/1471148257892044812 Commoditizing a compliment https://twitter.com/jessewldn/status/1465713306363117578  Writing NFTs make the internet ownable https://variant.mirror.xyz/T8kdtZRIgy_srXB5B06L8vBqFHYlEBcv6ae2zR6Y_eo Product vs. Protocol https://variant.fund/writing/balance-product-protocol-web3 Leadership in the ownership economy https://variant.fund/writing/leadership-in-the-ownership-economyscaling-decision  How DeFi crosses the chasm https://variant.fund/writing/how-does-defi-cross-the-chasm Crypto's Business Model is Familiar. What Isn't is Who Benefits https://variant.fund/writing/cryptos-business-model-is-familiar.-what-isnt-is  Narrative Economics https://variant.fund/writing/narrative-economics  Progressive decentralization https://variant.fund/writing/progressive-decentralization-a-playbook-for-building Layers of blockchain computing https://variant.fund/writing/layers-not-eras-of-blockchain-computing   Variant Fund Variant Fund Twitter https://twitter.com/variantfund Variant Fund website https://variant.fund/ Writing:  https://variant.fund/writing  Mirror Blog (Feb 2021 article on NFTs) https://variant.mirror.xyz/  Variant Fund + Atelier joining forces https://variant.fund/writing/atelier-ventures-and-variant-fund-are-joining-forces  https://techcrunch.com/2021/10/19/variant-debuts-a-new-110m-fund-for-crypto-startups-announces-li-jin-has-joined-as-a-general-partner/ Variant Fund team https://twitter.com/spencernoon/status/1450500555961507844

Riff on Moxie Marlinspike's Web3 critique and Vitalik Buterin's response.   Would love to hear from you. Rate, comment, subscribe on Apple Podcasts and for the video edition- YouTube. Follow me on Twitter, Instagram, TikTok where I always post when a new show drops.

Jonathan Hillis is the founder of Creator Cabins. It began as a single cabin in the Texas Hill Country, a place for creators to gather together to work on exciting projects 'IRL'. They've since launched a token and formed the Cabin DAO and now they're expanding into a decentralized city.  Prior to founding $CABIN, Jon was Director of Product, Shoppers, and Marketplace at Instacart, where during the pandemic, he grew their workforce of shoppers 5x.Jon also recently published an excellent essay on the history of centralization and decentralization cycles in Western Civilization.We cover all of that and more in this episode. Enjoy!In this episode we discuss:Decentralization and centralization cycles throughout historyAre we headed for collapse? Civil war? What about America vs China?What role will decentralized cities play in the futureCreating a playbook for future decentralized cities / nodes Opportunities for blockchain / innovation in governmentWhy are all the "internet intellectuals" moving to Austin, Texas?How the gig economy helped pave the way for Web3Is remote work a disadvantage for young people starting out in their careers?What people and companies get wrong about 'hybrid' (office/remote) workWhy Jon left Instacart (after growing their gig work force 5x)Promises and perils of working in the gig economyIs it fair to criticize Web3 for not living up to it's decentralization ideals?How to make it as a creator - what are the most relevant skillsets / experience to have today?Six ways to make $100,000 as a creator on the internet these daysOvercoming the "ickyness" of sharing your life and work on social mediaHow to succeed by finding community / "your corner of the internet" Links:Jon's essay: A brief history of decentralized cities and centralized states (https://creators.mirror.xyz/s9h4_PQAcJyqgC0rnsWjw9geU2wJs-IBPXIzHhgi-P8)Jon's essay: Six economies of online creators (https://www.meatspacealgorithms.com/six-economies/)Clay Christensen's theory of Disruptive Innovation (https://hbr.org/1995/01/disruptive-technologies-catching-the-wave)The Nature of the Firm by R. H. Coase (https://onlinelibrary.wiley.com/doi/10.1111/j.1468-0335.1937.tb00002.x)My first impressions of web3 by Moxie Marlinspike (https://moxie.org/2022/01/07/web3-first-impressions.html)   

THIS IS NOT FINANCIAL ADVICE In den vergangenen Wochen hat sich die Kontroverse rund um das Thema Dezentralität im Web3 Space breit gemacht. Vorreiter der Diskussionen ist Twitter-Gründer Jack Dorsey, der die vermeintlich community-driven Intention aller Projekte infrage stellt und vor allem VCs wie Andreessen Horowitz lauthals kritisiert. Die NFT Community ist unzufrieden mit Opensea. Darunter fällt nicht nur der schlechte Kundenservice, sondern auch ein potentieller IPO. Wie dezentral die Plattform ihre NFTs speichert, stellt Signal-Gründer Moxie Marlinspike auf die Probe und wühlt damit nochmal die Szene auf. Hinzu kommt, dass der neue NFT Marktplatz LooksRare mit einem Airdrop alle (unzufriedenen) Opensea Nutzer*innen anlockt. Vicky & Marvin diskutieren, wie wichtig Dezentralität für die Endnutzer*innen wirklich ist und warum das auf manchen Blockchains eben besser funktioniert als bei anderen. Episode 2 Summary: 1. Book-Games Investment von GaryVee a. Background zu Veefriends b. Book-Games c. Immutable X d. Veefriends 2. Web3 und Opensea kontroverse? 3. Was ist Web3? 4. Opensea VS Looksrare 5. Jack Dorsey vs AZ 6. Is opensea actually centralized? a. The dark truth of NFTs (https://www.youtube.com/watch?v=_1PSvqho8UE) b. Polygon NFTs c. Vitalik Tweet 7. Muss es dezentral sein immer? 8. Scalability Trilemma 9. NAS Album Drop als NFT use case 10. Timeline und Luna Beispiel a. Hypothese: User interessiert schlussendlich nicht, ob es Blockchain ist w3.talk auf youtube: https://www.youtube.com/channel/UC4q-GK_aQOp2L2dYbu6fSmg/featured Vicky: https://www.linkedin.com/in/vicktoriaklich/ Marvin: https://www.linkedin.com/in/marvinsangines/ w3.fund: https://www.w3.fund/ notus: https://www.notus.xyz/

Will no one think of the maintainers? As The New Stack points out, watching millions of projects fail because of a bug in an open source library has become common enough that  we shrug and reply, "Told you so." It's gotten so bad, big tech companies are visiting the White House to discuss the issue as a matter of national security.There is a great post up on the Stack Overflow blog examining  this issue, but it's not about color.js, it's about Log4J.  Traffic to questions on this logging library grew more than 1000% percent after the recent revelations about a new vulnerability. Also discussed in this episode: cryptographer and Signal creator Moxie Marlinspike stepped down from his role as CEO of the encrypted messaging service.  That's news, but he actually made bigger waves in tech circles with an unrelated blog post detailing  his first experience with Web3. Spoiler alert: it's not as decentralized or divorced from Web2 as you might have thought.You can find Cassidy Williams on Twitter and her website.Ben Popper can be found on Twitter here.Ryan Donovan can be found on Twitter, or writing for the Stack Overflow blog. 

Moxie Marlinspike, OG cypherpunk and privacy legend, just announce his resignation as CEO of Signal. This was an abrupt announcement that caught much of the privacy space off-guard. Moxie earned the trust of the community by consistently delivering high standards that protected the privacy rights of users. Can the app still be trusted to maintain those high standards now that Moxie is no longer at the helm?  In this video we'll dive into the history of Signal, and reveal the surprising background of one of the team members who will be carrying the torch forward. Brought to you by NBTV members: Lee Rennie, Will Sandoval, and Naomi BrockwellTo make a tax-deductible (in the US) donation to NBTV, visit https://www.nbtv.media/supportSign up for the free CryptoBeat newsletter here:https://cryptobeat.substack.com/Beware of scammers, I will never give you a phone number or reach out to you with investment advice. I do not give investment advice.Visit the NBTV website:https://nbtv.mediaSupport the show (https://www.patreon.com/naomibrockwell)

Will no one think of the maintainers? As The New Stack points out, watching millions of projects fail because of a bug in an open source library has become common enough that  we shrug and reply, "Told you so." It's gotten so bad, big tech companies are visiting the White House to discuss the issue as a matter of national security.There is a great post up on the Stack Overflow blog examining  this issue, but it's not about color.js, it's about Log4J.  Traffic to questions on this logging library grew more than 1000% percent after the recent revelations about a new vulnerability. Also discussed in this episode: cryptographer and Signal creator Moxie Marlinspike stepped down from his role as CEO of the encrypted messaging service.  That's news, but he actually made bigger waves in tech circles with an unrelated blog post detailing  his first experience with Web3. Spoiler alert: it's not as decentralized or divorced from Web2 as you might have thought.You can find Cassidy Williams on Twitter and her website.Ben Popper can be found on Twitter here.Ryan Donovan can be found on Twitter, or writing for the Stack Overflow blog. 

Peter shares this article from Moxie Marlinspike. https://moxie.org/2022/01/07/web3-first-impressions.html Hosts: Peter Lowe (@pgl) Jon Cohen (@jonnisec) Mike Sutton (@zenmike)

O preço do bitcoin está pressionado nos últimos dias, abaixo da média móvel de 200 dias, cenário macro está relativamente desfavorável para BTC e criptos em geral. Além disso, vamos falar do artigo do Moxie Marlinspike, criador do Signal, sobre web3 e a promessa de descentralização.

Moxie Marlinspike ruffled feathers this week by suggesting that Web3 is, well, Web2 with marketing. Vitalik Buterin. did all but apologize and complain of lack of resources.Web3 is controversial and becoming more so. --- Support this podcast: https://anchor.fm/keith-teare/support

On today's show, Will Gottsegen, CoinDesk's media and culture reporter, takes a look at one critique of Web3 and how it's not that different from Web2, not yet at least.Read the story here.This episode is sponsored by Kava.This episode was edited & produced by Adrian Blust-Kava lets you mint stablecoins, lend, borrow, earn and swap safely across the world's biggest crypto assets. Connect to the world's largest cryptocurrencies, ecosystems and financial applications on DeFi's most trusted, scalable and secure earning platform with kava.io.See Privacy Policy at https://art19.com/privacy and California Privacy Notice at https://art19.com/privacy#do-not-sell-my-info.

Uppföljning/uppvärmning Nyårslöften – Christian satte några fler mål på pränt Projekt filmdatabas! Nya switchar till tangentbordet, tyst kan också vara trevligt(?) Toner av nötter och stall Battle of the skumtomtar. Jocke hyllar Aromas, Cloettas är också ok. Man kan inte ha ett “&” i fältet “itunes:keywords” i en RSS-feed för en podd för då ballar vissa poddspelare (Hej, Overcast) ur. Fixat. Norton Antivirus installerar crypto-mining-mjukvara (“Norton Crypto”) på användarnas datorer och kräver sedan 15% av allt som datorerna minar Jocke får gen 1 Airpods av Johan “Solnakillen” Wassberg (aka The Seal). Batteribyte ska testas Jocke bokar gymkort och ryggrehab. Nu händer det Ämnen 15 år sedan iPhone introducerades - panelen minns sina telefoner iMac G4 fyller 20 CES - höjdpunkter Apple Music och Homepod - sicket skit. Film och TV Forbidden Orange. Dokumentärfilm om hur A Clockwork Orange kunde visas i Franco-diktaturens Spanien trots att den var totalförbjuden. 4/5BMÅ. Don't look up. 2,5/5BMÅ. (det onda företaget heter Bash. Borde hetat Csh.) Länkar Limfjordsporter Christians mål 2022 TV- och filmarkivet TV- och filmarkivet på Github Gazzew boba u4 Karmin Johan Thelin Antennapod Castvalidator Norton Crypto Byta batteri i Airpods gen.1 Iphone-presentationen Nokia N95 Chrysler voyager Nokia N73 Slide to unlock Hitta Nemo-fisk-bilden Cover flow Imac G4 M1 i G4-iMac Imac G4-reklamen CES 2022 NFT Icke-svampbar symbol Moxie Marlinspike Signal Moxies NFT-experiment Alder lake Linus tech tips Dell XPS 13 plus Bärbar med pekskärm på sidan BMW:s bil med e-bläck Sonys konceptbilar Garmin vivomove sport Forbidden Orange Franco Don't Look Up Fullständig avsnittsinformation finns här: https://www.bjoremanmelin.se/podcast/avsnitt-291-quantum-of-oled.html

Neste episódio: LGPD e farmácias, Moxie Marlinspike sai do Signal, multas aplicada pela CNIL na França, entre outras notícias. Ajude o Segurança Legal a continuar existindo. Visite nossa campanha de financiamento coletivo e nos apoie! ShowNotes Episódio #169Continue reading

Signal, the app, is synonymous with security. The end-to-end encrypted messaging platform is a go-to for discerning people who want to keep their communications private. Just remember to turn on the vanishing messages feature. But it's CEO is stepping down. Moxie Marlinspike is out and Whatsapp's Brian Acton is in.Motherboard staff writer Joseph Cox is on the show this week to talk to us about the changes at Signal, the history of end-to-end encryption, and what Marlinspike thinks of web3. It's also the subject of his article, WhatsApp Co-Founder Is the New Acting CEO of Signal.Cox sticks around for Cypher where we discuss the incredible news that marijuanna may be able to help prevent COVID-19, why PS5 restock accounts are helping people find COVID-19 tests, and how someone scraped massive amounts of personal data from a database used by private investigators.We're recording CYBER live on Twitch. We record the show on Wednesdays at 4pm EST. Follow us there to get alerts when we go live. We take questions from the audience and yours might just end up on the show.Subscribe to CYBER on Apple Podcasts or wherever you listen to your podcasts. See acast.com/privacy for privacy and opt-out information.

The Chopping Block is back! Crypto insiders Haseeb Qureshi, Tom Schmidt, and Tarun Chitra chop it up about the latest news in the digital asset industry. Show topics: why crypto assets experienced a drawdown after last week's FOMC meeting that hinted at accelerated rate hikes which emerging assets Tarun, Haseeb, and Tom envision weathering a bear market which assets could be further hurt by a continued bear market the significance of Paradigm and Sequoia investing in Citadel Securities what aspects of Signal CEO Moxie Marlinspike's web3 article Haseeb, Tom, and Tarun take umbrage with whether Cryptoland is crypto's Fyre Festival or whether it's the metaverse what the heck is going on with the Pudgy Penguins community the lessons from the CFTC's fine of Polymarket (disclosure: a former sponsor of my shows)   Episode Links   Hosts Haseeb Qureshi, managing partner at Dragonfly Capital https://twitter.com/hosseeb Tom Schmidt, general partner at Dragonfly Capital https://twitter.com/tomhschmidt Tarun Chitra, managing partner at Robot Ventures https://twitter.com/tarunchitra    Topics   FOMC = Crypto assets dip https://www.ar.ca/blog/debunking-more-overreactions-to-macro-a-ronin-case-study Paradigm + Sequoia invest in Citadel Securities https://www.coindesk.com/business/2022/01/11/paradigm-sequoia-to-invest-115b-in-citadel-securities-bringing-trading-firm-closer-to-crypto/ Cryptoland https://thenextweb.com/news/welcome-to-cryptoland-real-island-cryptocurrency-fans-analysis Moxie Marlinspike's first impressions of web3 https://moxie.org/2022/01/07/web3-first-impressions.html Pudgy Penguins drama https://thedefiant.io/fire-on-the-iceberg-pudgy-penguin-holders-eye-coup-amid-acquisition-talks/ Polymarket fined by CFTC ​​https://www.coindesk.com/policy/2022/01/03/cftc-fines-crypto-betting-service-polymarket-14m-for-unregistered-swaps/

Brianna is back! We've got a robust discussion about Moxie Marlinspike's thoughts on Web3, followed by the lowdown on the World rip-off App Store drama. And then, DRM?!

Brianna is back! We've got a robust discussion about Moxie Marlinspike's thoughts on Web3, followed by the lowdown on the World rip-off App Store drama. And then, DRM?!

Taco Bell launches Taco Lover's Pass subscription nationwide with 30 days of tacos for $10. You can safely ignore Web3 by Mike Elgan. Web .0000012 by Jeff Jarvis. My first impressions of web3 by Moxie Marlinspike. Signal: New year, new CEO. Casey Newton: How Signal is playing with fire w/untraceable financial transactions. 'Second time lucky?' FTC's case against Facebook can move forward, federal judge rules. After ruining Android messaging, Google says iMessage is too powerful. Why Apple's iMessage Is Winning: Teens Dread the Green Text Bubble. Samsung no-showed on its major Exynos 2200 launch and won't say why. Samsung Electronics to Unveil Exynos 2200 AP on Launch Day of Galaxy 22. Cat on a hot satellite dish: Elon Musk's Starlink antenna hits surprise problem. Why is Zynga worth a whopping $12.7 billion? (Hint: It's not FarmVille). 500M Avira Antivirus Users Introduced to Cryptomining. Wordle - A daily word game. Google loses Sonos patent case, starts stripping functionality from speakers. An open letter to YouTube's CEO from the world's fact-checkers. Worst of CES: Right-to-repair name and shames terrible tech. Third-Party Software for Teslas Can Be Hacked, German Teen Says. E3 shifts to online-only event because of Omicron concerns. About 70 S.Korean attendees of U.S. tech show test positive for COVID-19. US man claims his penis has shrunk due to rare Covid side effect. When Axel Webber Was Rejected from Juilliard, TikTok Stepped In. Marques Brownlee: My Pixel 6 Pro has slowly gotten so buggy since launch in October that I can no longer recommend it at $900. Google rolling out Android 12L Beta 2 for Pixel phones. Google details changes to Speaker Group controls & device setup following Sonos ruling. Pixel Launcher 'At a Glance' widget gains doorbell camera previews, more. Now you can learn what's new in each Google Play system update for Android. Google launches Ripple, an open standard that could bring tiny radars to Ford cars and more. The Associated Press is starting its own NFT marketplace for photojournalism. The Athletic: Good for the Times, a potential disaster for local news. "Aw, screw it": LAPD cops hunted Pokémon instead of responding to robbery. We're Giving Wyze Person Detection to All Users at Whatever Price You Want. Picks: Mike - Chatterbox is the only smart speaker that meets EDUCATIONAL and PRIVACY standards Jeff - Most populous time zone Leo - Morgan Stanely out with quite the note on the idea of the mobile metaverse Ant - A great time on Behind the Shot TV with Steve Brazill and Don Komarechka Ant - #hardhead Modeled for Me and Jefferson Graham at Balmy Alley Hosts: Leo Laporte, Jeff Jarvis, and Ant Pruitt Guest: Mike Elgan Download or subscribe to this show at https://twit.tv/shows/this-week-in-google. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Sponsors: streak.com/twig newrelic.com/twig Codecademy.com promo code TWIG

Taco Bell launches Taco Lover's Pass subscription nationwide with 30 days of tacos for $10. You can safely ignore Web3 by Mike Elgan. Web .0000012 by Jeff Jarvis. My first impressions of web3 by Moxie Marlinspike. Signal: New year, new CEO. Casey Newton: How Signal is playing with fire w/untraceable financial transactions. 'Second time lucky?' FTC's case against Facebook can move forward, federal judge rules. After ruining Android messaging, Google says iMessage is too powerful. Why Apple's iMessage Is Winning: Teens Dread the Green Text Bubble. Samsung no-showed on its major Exynos 2200 launch and won't say why. Samsung Electronics to Unveil Exynos 2200 AP on Launch Day of Galaxy 22. Cat on a hot satellite dish: Elon Musk's Starlink antenna hits surprise problem. Why is Zynga worth a whopping $12.7 billion? (Hint: It's not FarmVille). 500M Avira Antivirus Users Introduced to Cryptomining. Wordle - A daily word game. Google loses Sonos patent case, starts stripping functionality from speakers. An open letter to YouTube's CEO from the world's fact-checkers. Worst of CES: Right-to-repair name and shames terrible tech. Third-Party Software for Teslas Can Be Hacked, German Teen Says. E3 shifts to online-only event because of Omicron concerns. About 70 S.Korean attendees of U.S. tech show test positive for COVID-19. US man claims his penis has shrunk due to rare Covid side effect. When Axel Webber Was Rejected from Juilliard, TikTok Stepped In. Marques Brownlee: My Pixel 6 Pro has slowly gotten so buggy since launch in October that I can no longer recommend it at $900. Google rolling out Android 12L Beta 2 for Pixel phones. Google details changes to Speaker Group controls & device setup following Sonos ruling. Pixel Launcher 'At a Glance' widget gains doorbell camera previews, more. Now you can learn what's new in each Google Play system update for Android. Google launches Ripple, an open standard that could bring tiny radars to Ford cars and more. The Associated Press is starting its own NFT marketplace for photojournalism. The Athletic: Good for the Times, a potential disaster for local news. "Aw, screw it": LAPD cops hunted Pokémon instead of responding to robbery. We're Giving Wyze Person Detection to All Users at Whatever Price You Want. Picks: Mike - Chatterbox is the only smart speaker that meets EDUCATIONAL and PRIVACY standards Jeff - Most populous time zone Leo - Morgan Stanely out with quite the note on the idea of the mobile metaverse Ant - A great time on Behind the Shot TV with Steve Brazill and Don Komarechka Ant - #hardhead Modeled for Me and Jefferson Graham at Balmy Alley Hosts: Leo Laporte, Jeff Jarvis, and Ant Pruitt Guest: Mike Elgan Download or subscribe to this show at https://twit.tv/shows/this-week-in-google. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Sponsors: streak.com/twig newrelic.com/twig Codecademy.com promo code TWIG

Taco Bell launches Taco Lover's Pass subscription nationwide with 30 days of tacos for $10. You can safely ignore Web3 by Mike Elgan. Web .0000012 by Jeff Jarvis. My first impressions of web3 by Moxie Marlinspike. Signal: New year, new CEO. Casey Newton: How Signal is playing with fire w/untraceable financial transactions. 'Second time lucky?' FTC's case against Facebook can move forward, federal judge rules. After ruining Android messaging, Google says iMessage is too powerful. Why Apple's iMessage Is Winning: Teens Dread the Green Text Bubble. Samsung no-showed on its major Exynos 2200 launch and won't say why. Samsung Electronics to Unveil Exynos 2200 AP on Launch Day of Galaxy 22. Cat on a hot satellite dish: Elon Musk's Starlink antenna hits surprise problem. Why is Zynga worth a whopping $12.7 billion? (Hint: It's not FarmVille). 500M Avira Antivirus Users Introduced to Cryptomining. Wordle - A daily word game. Google loses Sonos patent case, starts stripping functionality from speakers. An open letter to YouTube's CEO from the world's fact-checkers. Worst of CES: Right-to-repair name and shames terrible tech. Third-Party Software for Teslas Can Be Hacked, German Teen Says. E3 shifts to online-only event because of Omicron concerns. About 70 S.Korean attendees of U.S. tech show test positive for COVID-19. US man claims his penis has shrunk due to rare Covid side effect. When Axel Webber Was Rejected from Juilliard, TikTok Stepped In. Marques Brownlee: My Pixel 6 Pro has slowly gotten so buggy since launch in October that I can no longer recommend it at $900. Google rolling out Android 12L Beta 2 for Pixel phones. Google details changes to Speaker Group controls & device setup following Sonos ruling. Pixel Launcher 'At a Glance' widget gains doorbell camera previews, more. Now you can learn what's new in each Google Play system update for Android. Google launches Ripple, an open standard that could bring tiny radars to Ford cars and more. The Associated Press is starting its own NFT marketplace for photojournalism. The Athletic: Good for the Times, a potential disaster for local news. "Aw, screw it": LAPD cops hunted Pokémon instead of responding to robbery. We're Giving Wyze Person Detection to All Users at Whatever Price You Want. Picks: Mike - Chatterbox is the only smart speaker that meets EDUCATIONAL and PRIVACY standards Jeff - Most populous time zone Leo - Morgan Stanely out with quite the note on the idea of the mobile metaverse Ant - A great time on Behind the Shot TV with Steve Brazill and Don Komarechka Ant - #hardhead Modeled for Me and Jefferson Graham at Balmy Alley Hosts: Leo Laporte, Jeff Jarvis, and Ant Pruitt Guest: Mike Elgan Download or subscribe to this show at https://twit.tv/shows/this-week-in-google. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Sponsors: streak.com/twig newrelic.com/twig Codecademy.com promo code TWIG

Taco Bell launches Taco Lover's Pass subscription nationwide with 30 days of tacos for $10. You can safely ignore Web3 by Mike Elgan. Web .0000012 by Jeff Jarvis. My first impressions of web3 by Moxie Marlinspike. Signal: New year, new CEO. Casey Newton: How Signal is playing with fire w/untraceable financial transactions. 'Second time lucky?' FTC's case against Facebook can move forward, federal judge rules. After ruining Android messaging, Google says iMessage is too powerful. Why Apple's iMessage Is Winning: Teens Dread the Green Text Bubble. Samsung no-showed on its major Exynos 2200 launch and won't say why. Samsung Electronics to Unveil Exynos 2200 AP on Launch Day of Galaxy 22. Cat on a hot satellite dish: Elon Musk's Starlink antenna hits surprise problem. Why is Zynga worth a whopping $12.7 billion? (Hint: It's not FarmVille). 500M Avira Antivirus Users Introduced to Cryptomining. Wordle - A daily word game. Google loses Sonos patent case, starts stripping functionality from speakers. An open letter to YouTube's CEO from the world's fact-checkers. Worst of CES: Right-to-repair name and shames terrible tech. Third-Party Software for Teslas Can Be Hacked, German Teen Says. E3 shifts to online-only event because of Omicron concerns. About 70 S.Korean attendees of U.S. tech show test positive for COVID-19. US man claims his penis has shrunk due to rare Covid side effect. When Axel Webber Was Rejected from Juilliard, TikTok Stepped In. Marques Brownlee: My Pixel 6 Pro has slowly gotten so buggy since launch in October that I can no longer recommend it at $900. Google rolling out Android 12L Beta 2 for Pixel phones. Google details changes to Speaker Group controls & device setup following Sonos ruling. Pixel Launcher 'At a Glance' widget gains doorbell camera previews, more. Now you can learn what's new in each Google Play system update for Android. Google launches Ripple, an open standard that could bring tiny radars to Ford cars and more. The Associated Press is starting its own NFT marketplace for photojournalism. The Athletic: Good for the Times, a potential disaster for local news. "Aw, screw it": LAPD cops hunted Pokémon instead of responding to robbery. We're Giving Wyze Person Detection to All Users at Whatever Price You Want. Picks: Mike - Chatterbox is the only smart speaker that meets EDUCATIONAL and PRIVACY standards Jeff - Most populous time zone Leo - Morgan Stanely out with quite the note on the idea of the mobile metaverse Ant - A great time on Behind the Shot TV with Steve Brazill and Don Komarechka Ant - #hardhead Modeled for Me and Jefferson Graham at Balmy Alley Hosts: Leo Laporte, Jeff Jarvis, and Ant Pruitt Guest: Mike Elgan Download or subscribe to this show at https://twit.tv/shows/this-week-in-google. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Sponsors: streak.com/twig newrelic.com/twig Codecademy.com promo code TWIG

The Chopping Block is back! Crypto insiders Haseeb Qureshi, Tom Schmidt, and Tarun Chitra chop it up about the latest news in the digital asset industry. Show topics: why crypto assets experienced a drawdown after last week's FOMC meeting that hinted at accelerated rate hikes which emerging assets Tarun, Haseeb, and Tom envision weathering a bear market which assets could be further hurt by a continued bear market the significance of Paradigm and Sequoia investing in Citadel Securities what aspects of Signal CEO Moxie Marlinspike's web3 article Haseeb, Tom, and Tarun take umbrage with whether Cryptoland is crypto's Fyre Festival or whether it's the metaverse what the heck is going on with the Pudgy Penguins community the lessons from the CFTC's fine of Polymarket (disclosure: a former sponsor of my shows)   Episode Links   Hosts Haseeb Qureshi, managing partner at Dragonfly Capital https://twitter.com/hosseeb Tom Schmidt, general partner at Dragonfly Capital https://twitter.com/tomhschmidt Tarun Chitra, managing partner at Robot Ventures https://twitter.com/tarunchitra    Topics   FOMC = Crypto assets dip https://www.ar.ca/blog/debunking-more-overreactions-to-macro-a-ronin-case-study Paradigm + Sequoia invest in Citadel Securities https://www.coindesk.com/business/2022/01/11/paradigm-sequoia-to-invest-115b-in-citadel-securities-bringing-trading-firm-closer-to-crypto/ Cryptoland https://thenextweb.com/news/welcome-to-cryptoland-real-island-cryptocurrency-fans-analysis Moxie Marlinspike's first impressions of web3 https://moxie.org/2022/01/07/web3-first-impressions.html Pudgy Penguins drama https://thedefiant.io/fire-on-the-iceberg-pudgy-penguin-holders-eye-coup-amid-acquisition-talks/ Polymarket fined by CFTC ​​https://www.coindesk.com/policy/2022/01/03/cftc-fines-crypto-betting-service-polymarket-14m-for-unregistered-swaps/

Signal, the app, is synonymous with security. The end-to-end encrypted messaging platform is a go-to for discerning people who want to keep their communications private. Just remember to turn on the vanishing messages feature. But it's CEO is stepping down. Moxie Marlinspike is out and Whatsapp's Brian Acton is in.Motherboard staff writer Joseph Cox is on the show this week to talk to us about the changes at Signal, the history of end-to-end encryption, and what Marlinspike thinks of web3. It's also the subject of his article, WhatsApp Co-Founder Is the New Acting CEO of Signal.Cox sticks around for Cypher where we discuss the incredible news that marijuanna may be able to help prevent COVID-19, why PS5 restock accounts are helping people find COVID-19 tests, and how someone scraped massive amounts of personal data from a database used by private investigators.We're recording CYBER live on Twitch. We record the show on Wednesdays at 4pm EST. Follow us there to get alerts when we go live. We take questions from the audience and yours might just end up on the show.Subscribe to CYBER on Apple Podcasts or wherever you listen to your podcasts. See acast.com/privacy for privacy and opt-out information.

“The people at the end of the line who are flipping NFTs do not fundamentally care about distributed trust models or payment mechanics, but they care about where the money is.” - Moxie Marlinspike As a follow up to the model and concept of web3 built on top of Bitcoin and Lightning, it seems prudent to have an exploration of web3 built on top of crypto. Moxie Marlinspike brings us an excellent piece with a bit of experimentation of his own to get at the core of what NFTs, Dapps, and the “Crypto” world really are, with this article titled, “My First Impressions of Web3.” If you would like a laugh and some fun trip down Not lane, this is one not to miss. Check out the original article, with links to much of what was discussed at the link below: https://moxie.org/2022/01/07/web3-first-impressions.html For the best products and services to get you started in Bitcoin, our sponsors are literally a handful of those that I use most in this space: • Get Bitcoin rewards on literally everything you buy with the Fold Card (20% discount code BITCOINAUDIBLE) • Buy Bitcoin automatically and painlessly with SwanBitcoin • Keep your Bitcoin keys safe on the secure, open source BitBox02 (5% discount code GUY) • Get tickets to the biggest & most exciting Bitcoin conference in the world! Bitcoin 2022 (10% discount code GUYSWANN) Learn more about your ad choices. Visit megaphone.fm/adchoices --- Send in a voice message: https://podcasters.spotify.com/pod/show/bitcoinaudible/message

Someone who has done a lot of thinking about what Web3 represents is Moxie Marlinspike. In a recent piece on his blog he talked about the growing use of blockchain, cryptocurrency, non-fungible tokens (NFT), and how they all collide into a mashup called Web3 that doesn't quite live up to expectations. We discuss this story and much more on this week's Rundown. For show notes please visit: https://gestaltit.com/

“The people at the end of the line who are flipping NFTs do not fundamentally care about distributed trust models or payment mechanics, but they care about where the money is.” - Moxie Marlinspike As a follow up to the model and concept of web3 built on top of Bitcoin and Lightning, it seems prudent to have an exploration of web3 built on top of crypto. Moxie Marlinspike brings us an excellent piece with a bit of experimentation of his own to get at the core of what NFTs, Dapps, and the “Crypto” world really are, with this article titled, “My First Impressions of Web3.” If you would like a laugh and some fun trip down Not lane, this is one not to miss. Check out the original article, with links to much of what was discussed at the link below: https://moxie.org/2022/01/07/web3-first-impressions.html For the best products and services to get you started in Bitcoin, our sponsors are literally a handful of those that I use most in this space: • Get Bitcoin rewards on literally everything you buy with the Fold Card (20% discount code BITCOINAUDIBLE) • Buy Bitcoin automatically and painlessly with SwanBitcoin • Keep your Bitcoin keys safe on the secure, open source BitBox02 (5% discount code GUY) • Get tickets to the biggest & most exciting Bitcoin conference in the world! Bitcoin 2022 (10% discount code GUYSWANN) Learn more about your ad choices. Visit megaphone.fm/adchoices

Kicking off the new year, we are joined by returning champion Wendy Liu – author of Abolish Silicon Valley – to look back on all the very dumb things the tech sector has forced us take seriously in 2021. We talk about how free flowing capital has both created and accelerated a world built on sand. Where all the vaporware, bullshit, and grifts of things like NFTs, DAOs, and web3 seemingly come from nowhere and become all we can talk about. We wrap up with our hopes that 2022 will be a year that proves one thing: the luddites were right. • Follow Wendy: twitter.com/dellsystem/ • Buy her very good book: repeaterbooks.com/product/abolish-silicon-valley-how-to-liberate-technology-from-capitalism/ Some stuff we discuss: ••• My first impressions of web3 | Moxie Marlinspike https://moxie.org/2022/01/07/web3-first-impressions.html ••• Cryptocurrency Investors Try to Turn Private Islands Into Blockchain Utopias | Ed Ongweso Jr. https://www.vice.com/en/article/z3n38x/cryptocurrency-investors-try-to-turn-private-islands-into-blockchain-utopias Subscribe to hear more analysis and commentary in our premium episodes every week! patreon.com/thismachinekills Grab fresh new TMK gear: bonfire.com/store/this-machine-kills-podcast/ Hosted by Jathan Sadowski (twitter.com/jathansadowski) and Edward Ongweso Jr. (twitter.com/bigblackjacobin). Production / Music by Jereme Brown (twitter.com/braunestahl)

Moxie Marlinspike is stepping down as CEO of Signal, and Brian Acton is stepping up. For now. Y Combinator is getting more generous with the investment it makes in its cohort companies. Carriers aren't pleased with Apple's iCloud Private Relay service. And another day, another headline like: the Associated Press is getting into NFTs.Sponsors:do.co/trhWix.comLinks:Moxie Marlinspike has stepped down as CEO of Signal (The Verge)Y Combinator's New Deal Sparks Fear in Seed Investors (The Information)T-Mobile begins blocking iPhone users from enabling iCloud Private Relay in the US [U] (9to5Mac)Apple Highlights Services in 2021, Recaps Upcoming Features Like IDs on iPhone (MacRumors)The Associated Press is starting its own NFT marketplace for photojournalism (The Verge)See Privacy Policy at https://art19.com/privacy and California Privacy Notice at https://art19.com/privacy#do-not-sell-my-info.

On this episode of the Unhashed Podcast, Korean exchange Coinone restricts withdrawals to KYC'd addresses, Moxie Marlinspike of Signal App isn't impressed by web3.0, mikeinspace cries wolf on Satoshi's identity, Vitalik says 85 terabytes a year is just fine, and Mozilla's fans don't like crypto.

Apple allows app devs in South Korea to use alternative payment systems, the AP will open a NFT marketplace for photojournalists’ work, and Signal founder Moxie Marlinspike steps down as CEO. MP3 Please SUBSCRIBE HERE. You can get an ad-free feed of Daily Tech Headlines for $3 a month here. A special thanks to allContinue reading "Apple Implements Alternative Payment Systems in South Korea – DTH"

Take-Two takes out Zynga for $12.7 billion dollars. The SEC wants private unicorn companies to report more financial details. The open source developer who borked a bunch of projects to protest working for the man, I guess. And the weekend Web3 debate between Moxie Marlinspike and Vitalic Buterin.Sponsors:Grammarly.com/techmemeEditorX.comLinks:Take-Two to acquire mobile gaming giant Zynga for $12.7B (TechCrunch)SEC Pushes for More Transparency From Private Companies (WSJ)Matter was a major star at CES 2022, but can it maintain its shine? (The Verge)Dev corrupts NPM libs 'colors' and 'faker' breaking thousands of apps (BleepingComputer)My first impressions of web3 (Moxie.org)Response From Vitalic Buterin on RedditSee Privacy Policy at https://art19.com/privacy and California Privacy Notice at https://art19.com/privacy#do-not-sell-my-info.

"Do you really know?" is Bababam's daily podcast, which helps you understand the words, acronyms, and concepts that are making the news every day. From December 6th to 20th, discover the words that have left their mark on the year, with our 2021 Retrospective. From the "Pandora Papers" affair to the "#QuitMyJob" hashtag and of course the "Long Covid" condition, (re)discover these words that sum up 2021.What is Signal? Thanks for asking!Maybe you're among the millions of new users to have recently downloaded messaging app Signal. Just like Whatsapp or Messenger, Signal is a free-to-use messaging app which can be used on smartphone or desktop computers. Unlike its competitors though, Signal is independent and prides itself on being the most secure messaging app around. The first version of the Signal app launched in 2015, created by American entrepreneur Moxie Marlinspike. But it was only at the start of 2021 that Signal really took off. And ironically, its new found success is largely down to competitor Whatsapp.For years now many of us have been using Whatsapp to call friends across the globe, without racking up a massive phone bill. Its group functions allow friends, family and colleagues to share media. So what does Signal have that Whatsapp doesn't? In what way is it independent? Who does Signal belong to? In under 3 minutes, we answer your questions!To listen to the last episodes, you can click here:What is compersion?What is Inauguration Day?What is Blue Monday?A podcast written and realised by Joseph Chance. See acast.com/privacy for privacy and opt-out information.

We hope everyone had a great Pride Weekend! To celebrate, we had returning guest and LGBT icon Gollum on to tell us about his DJ career and why he was banned from Twitch. We also discuss the H0l0 poop incident, John McAfee, Moxie Marlinspike's white dreads, and Jeff's review of the sad new Rough Trade at Rockefeller Center. YWDAP: Instagram - @ywdap Twitter - @ywdapodcast Discord Patreon

UPDATE to last week's Headlines:US Gov formally accuses Russia for SolarWinds/Orion attack.  Biden issues state of Emergency, giving him the power to issue executive order: emphasizing an exploitation on US and Russian elections, kicks-out Russian diplomats in DC, prohibits US financial entities from trading in Rubles, issues sanctions against Russian networking infrastructure.This Week's Security Tip:There are two mistakes we see with usernames and passwords, even if they are GOOD strong ones. The first is using the SAME password across multiple sites. The second is using the same e-mail usernames and prefixes across multiple free e-mail services. For example: jimmy67chevy@aol.com jimmy67chevy@gmail.com jimmy67chevy@yahoo.com jimmy67chevy@icloud.com  When you use the same password and the same username across multiple sites, you make it easy for a cybercriminal to compromise multiple accounts of yours. With the first part easy to figure out, they can get access to other online services and data or even spoof your e-mail addresses to others. Variety is the spice of life, so make sure you're using UNIQUE, strong passwords along with unique usernames on free e-mail accounts. Today's Headlines: 2 Google Chrome zero-day exploit dropped on twitter last week, both remote code executables, affects Chrome, Edge, and other Chromium-based borwsers Google announced plans to roll out a new privacy-focused feature called Federated Learning of Cohorts (FLoC), Vivaldi, Brave, DuckDuckGo, and now WordPress reject it.  - Thousands of browsers with identical browsing history (belonging to the same "cohort") stored locally will have a shared "cohort" identifier assigned, which will be shared with a site when requested.  - "At Vivaldi, we stand up for the privacy rights of our users. We do not approve tracking and profiling, in any disguise. We certainly would not allow our products to build up local tracking profiles," says Jon von Tetzchner, Vivaldi CEO and co-founder.  Signal CEO and founder Moxie Marlinspike slams Cellebrite (company that police and gvmt uses to unlock Android and iOS phones ) after they say they can now access Signal data. Next Week's Teaser:Here is what you should do with your data on your laptop..Call to Action: We talk a lot about stupid (nothing bad ever happens to me; head in the sand; too busy; I'll do it later). So what's smart? Taking this seriously TODAY. Book a 10-minute Discovery Call right now. I'll ask some key questions and give you a quick score. If you're doing everything right, you can sleep better at night. If there's room for improvement, we'll discuss options. NO PRESSURE, NO STRINGS. JUST BOOK THE CALL!www.mastercomputing.com/discovery 

Today on Boston Public Radio: Rep. Jim McGovern shares his thoughts on GOP opposition to the formation of a commission to look into the Jan. 6 Capitol riots. House Rules Chairman McGovern (D-MA) represents the 2nd Congressional district. District Attorney Rachael Rollins discusses the investigation into Boston Police Commissioner Dennis White, focusing on an affidavit provided by former Commissioner William Gross and the blue wall of silence. Rollins is the district attorney for Suffolk County. Emily Rooney weighs in on a Washington Post report that found that Chris Cuomo took part in strategy calls regarding sexual harassment allegations against his brother, New York Gov. Andrew Cuomo. She also previews tonight’s edition of “Beat the Press.” Rooney is the host of Beat the Press, which you can watch Friday nights at 7 p.m. Sue O’Connell explains the complicated legacy of Ellen DeGeneres as an LGBTQ icon. She also talks about the youth activists of Massachusetts. O’Connell is the co-publisher of Bay Windows and the South End News, as well as NECN's political commentator and explainer-in-chief. Andy Ihnatko talks about upgrades to Apple Music and Amazon Music’s audio quality, and Signal founder Moxie Marlinspike’s hack of surveillance company Cellebrite’s phone hacking tools. Ihnatko is a tech writer and blogger, posting at Ihnatko.com. Callie Crossley marks the 50th anniversary of Marvin Gaye’s 1971 song “What’s Going On?”, explaining the relevance of the lyrics to today’s political climate. She also discusses a Black Indianapolis woman’s experiences with housing discrimination while getting her house appraised. Crossley hosts GBH’s Under the Radar and Basic Black. We end the show by talking with listeners about an American Dental Association survey that found an increase in dental hygiene problems during the pandemic.

🚨 Moxie Marlinspike creador de la Fundación Signal y del protocolo de encripción🔒 Signal se molestó al enterarse una noticia. ¿Cuál noticia? Pues que la empresa - señalada por muchos como de espionaje - Cellebrite acababa de añadir soporte en sus productos para la aplicación de mensajería instantánea Signal. ¿Qué significa este "soporte"? ¿Ya no podemos confiar en Signal como una aplicación que mantenga nuestras conversaciones privadas? No, no, no. No tan rápido. Lo que si puedo asegurarles es que Moxie es de "armas tomar" y se dio a la tarea de hackear el código de Cellebrite y compartir con el mundo sus hallazgos. Gracias a NordVPN por patrocinar este episodio. Los escuchas de Vulnerable obtienen un descuento especial al contratar NordVPN en el siguiente enlace: https://bit.ly/3cOSbtA Sigue a Vulnerable en Twitter: @PcastVulnerable Suscríbete al canal de Vulnerable en Telegram: https://t.me/vulnerablepdcast Visita el sitio de Vulnerable: https://www.podcastvulnerable.com Enlaces: Exploiting vulnerabilities in Cellebrite UFED and Physical Analyzer from an app's perspective - https://signal.org/blog/cellebrite-vulnerabilities/ Moxie Marlinspike - https://en.wikipedia.org/wiki/Moxie_Marlinspike Cellebrite Soluciones de Negocio - https://www.cellebrite.com/es/soluciones-de-negocio/ Cellebrite Customer Stories - https://www.cellebrite.com/en/resources/customer-stories/ Wired - https://www.wired.com/story/signal-cellebrite-hack-app-store-scams-security-news/

Russia has confirmed it plans to leave the International Space Station after 20 years of co-operation in space. The head of Roscosmos, Dmitry Rogozin, confirmed the Russian space agency intends to exit the ISS in 2025 and is working on developing its own orbital station with a target launch of 2030. Russia also recently signed an agreement with China to develop a separate station to orbit the moon.In better news from space, the NASA Perseverance rover has successfully converted CO2 to oxygen in an experiment on Mars yesterday. The Mars Oxygen In-Situ Resource Utilisation Experiment, known as MOXIE, pulled carbon dioxide from the Martian atmosphere and converted it into enough oxygen to keep an astronaut alive for 10 minutes. An exciting proof of concept for potential human missions in the future.From one Moxie to another, with the CEO of secure messaging app Signal, Moxie Marlinspike, revealing that one of the key tools used by law enforcement to hack smartphones is itself incredibly insecure. Signal's CEO got access to a Cellebrite device and not only found it featured a number of poor programming errors that made it prone to attack, he showed how easy it was for him to set a phone so that if it was scanned by a Cellebrite unit it would force code to execute and potentially alter the unit, or reports generated by the unit – creating a big question over the integrity and validity of Cellebrite as reliable legal evidence. Hacking the hackers is always entertaining to watch.A product testing outlet in the US has shown how a motivated driver can easily fool a Tesla into driving with no one in the driver seat. Consumer Reports took a Model Y to a test track and got it driving in Autopilot mode by buckling the seat belt under the driver when they first got into the vehicle and adding a weight to the steering wheel to simulate the weight of a driver's hands. They could then slide into the passenger seat and speed up in the already engaged Autopilot mode. Other manufacturers have been adding features that monitor the driver's attention while they use assisted driving modes.Australia's own Rode microphones has launched a new software package to turn its NT-USB mini microphones into a powerful podcasting studio wherever you need one. The new RodeConnect software is free for Mac and PC and allows four NT USB-mini microphones to connect via USB and record through a virtual interface a lot like the hardware Rodecaster Pro I'm recording this bulletin through right now. It even makes it easy to add remote callers into recordings or to include music or effects too. And that price again – free.Sony has confirmed a new Video Pass for PlayStation Plus subscribers is being trialled in some parts of the world. Right now, that place is specifically Poland. 20 movies and TV shows from Sony's own studios are being made available there. PlayStation is removing purchase and rental of a large library of video content from the platform later this year, so an integrated free offer from Sony's own back catalogue would make a lot of sense.In other video games news, this weekend you can dive into the new MLB The Show 21 baseball game and Nier Replicant which have both launched this week, while Blizzard has kicked off a further round of the Diablo Immortal alpha for lucky testers in Australia. I'm one of those lucky people.And if you're still shopping around for games to play, Steam has just launched deeper Categories to its digital games store. Top level categories like action, RPG and strategy now have seven sub-genres to help you find exactly what is a fit for your specific tastes. There are also theme categories to help you find horror, sci-fi, mystery or other games, and special sections for finding games to match the multiplayer, co-op, party game or single player support you're looking for. See acast.com/privacy for privacy and opt-out information.

Dish will launch its 5G network in Las Vegas entirely on AWS servers, Moxie Marlinspike finds Cellebrite phone unlocking software has a vulnerability issues, and the ODM Quanta is hit with a ransomware attack that is now impacting Apple. MP3 Please SUBSCRIBE HERE. You can get an ad-free feed of Daily Tech Headlines for $3Continue reading "Dish to Launch 5G Network in Las Vegas in Q3 – DTH"

Welcome to the First Episode of Minds behind Maps!I hope you enjoy this conversation with Ian Schuler. I'm going to try to keep track of most of the things we talked about in this episode if you want to go check them out yourself. Keep track of what Ian & Development Seed are doing:https://twitter.com/ianschulerhttps://twitter.com/developmentseedLinks to materials discussed in the episode:Development Seed school mapping: https://developmentseed.org/blog/2021-03-18-ai-enabling-school-mappingJoe Morrison's blog: https://joemorrison.substack.com/welcomeEarly days of Development Seed: https://www.linkedin.com/in/egundersen/, https://www.linkedin.com/in/ianshward/, Signal's founder, Moxie Marlinspike: https://twitter.com/moxie I'm going to try to provide a basic version of time-stamps if you want to skip by some sections:00:00 : Intro1:25 : Beginning of episode; Ian presenting himself7:55 : Why open source?19:00 : Trust in a world of AI models26:25 : How to communicate the limitations of machine learning solutions36:45 : Which data to use for which problem?42:25 : What is important in satellite imagery?55:00 : Data fusion1:00:25 : Deciding who to work with1:07:10 : Origins of Development Seed1:11:00 : Ian's previous work1:15:40 : So do you build & lead a company around impact?1:30:05 : Working in the days of covid1:40:35 : A last note on the future of geospatial data  Feel free to drop me a line, I'd love to know what you think of this!@MaxLenormandminds.behind.maps@gmail.comThanks for listening

101st Airborne Division (https://www.army.mil/101stAirborne) D&G 189: Marlie Moxinspike (https://dgshow.org/189) The battle inside Signal (https://www.platformer.news/p/-the-battle-inside-signal) See also: Can WhatsApp stop spreading misinformation without compromising encryption? (https://qz.com/1978077/can-whatsapp-stop-misinformation-without-compromising-encryption/) What You Should Know Before Leaking a Zoom Meeting (https://theintercept.com/2021/01/18/leak-zoom-meeting/) The ‘Batman Effect’: How having an alter ego empowers you (https://www.bbc.com/worklife/article/20200817-the-batman-effect-how-having-an-alter-ego-empowers-you) Cutting Room Floor * DIY latex glove bagpipes (https://www.youtube.com/watch?v=y95I0rb1JoU) * Bagpipe swing with Gunhild Carling in Central Park NY (https://www.youtube.com/watch?v=8RbVuDuCYMY) * Menu items renamed as expense-able office items (https://www.ubereats.com/ca/toronto/food-delivery/good-fortune-burger-college/SlS7Rn6dQ1SVb59NxiWt5A) * Blue Check Homes: Apply now! (https://bluecheckhomes.com/) * Evidence of Life: Two Photographers Show Us Mysteries In The Mundane – 1977 (https://flashbak.com/evidence-mike-mandel-larry-sultan-1970s-found-photos-435986/) * Faraday Cages for Wi-Fi Routers Are the Latest 5G Conspiracy Grift (https://www.vice.com/en/article/xgzgw4/faraday-cages-for-wi-fi-routers-are-the-latest-5g-conspiracy-grift) We Give Thanks * The D&G Show Slack Clubhouse for the discussion topics!

Ein Jahr nach dem Hanau-Attentat. Ein Jahr nachdem ein hasserfüllter deutscher Mann neun Menschen umbrachte, weil sie nicht deutsch genug hießen. Das kann und darf nicht sein mahnen Natascha und Mandana in diesem eher etwas ernsterem Zyklus 10.

Im Januar hat der Facebook-Konzern, zu dem seit 2014 auch WhatsApp gehört, die Nutzer dazu aufgefordert, neue Datenschutzerklärungen zu akzeptieren. Was diese genau bedeuten ist selbst ExpertInnen nicht klar, aber viele Nutzer befürchten, dass der Konzern in Zukunft ihre Daten mit Facebook und Instagram verknüpft und dadurch noch genauere Profile für Werbung erstellen möchte. Aufgrund der vielen Kritik wurde die Änderung zunächst verschoben, aber alternative Apps wie Signal, Threema oder Telegram sind seitdem an die Spitze der App-Stores geklettert. Im Gespräch mit Lennart Schneider stellt die Digital- und Wirtschaftsjournalistin Ann-Kathrin Nezik diese Apps vor und erzählt, was Moxie Marlinspike, den ungewöhnlichen Gründer einer dieser Apps, antreibt.

What is Signal? Thanks for asking!Maybe you’re among the millions of new users to have recently downloaded messaging app Signal. Just like Whatsapp or Messenger, Signal is a free-to-use messaging app which can be used on smartphone or desktop computers. Unlike its competitors though, Signal is independent and prides itself on being the most secure messaging app around. The first version of the Signal app launched in 2015, created by American entrepreneur Moxie Marlinspike. But it was only at the start of 2021 that Signal really took off. And ironically, its new found success is largely down to competitor Whatsapp.For years now many of us have been using Whatsapp to call friends across the globe, without racking up a massive phone bill. Its group functions allow friends, family and colleagues to share media. Ah yes the famous family Whatsapp group that I’ve had on mute for about two years now! Anyway, all was going well for Whatsapp and its 2 billion users until the start of 2021. One day, parent company Facebook, announced that its terms of use were changing. A new mandatory privacy policy would see some information shared with Facebook and Instagram, in order to serve targeted advertising.Facebook did its best to reassure Whatsapp users that this would only affect messages to business or enterprise accounts. The deadline for accepting the new policy has also now been pushed back by three months. But the damage has been done, and many fear that Facebook could seek to access their private messages and photos.A tweet from Elon Musk, who recently became the richest person in the world, added flames to the fire. The post to his millions of followers simply read “Use Signal”. Whistleblower and former NSA contractor Edward Snowden has also backed Signal, expressly stating it is more secure than Whatsapp.So what does Signal have that Whatsapp doesn’t? In what way is it independent? Who does Signal belong to? In under 3 minutes, we answer your questions!To listen to the last episodes, you can click here: What is compersion?What is Inauguration Day?What is Blue Monday?A podcast written and realised by Joseph Chance. See acast.com/privacy for privacy and opt-out information.

Welcome!   A lot has gone on this week with the installation of new US leadership and the ramp-up of security theater by the Democrats.  That aside we have lots to talk about on the technology front.  We will begin with the NSA and their warning to businesses in relation to DNS resolvers. Then we will talk about Law Enforcement and Smart Phone encryption, New safety regulations for automated vehicles, WhatsApp and Facebook, Signal secure messaging, Warren Buffett's thoughts on cryptocurrency, and More so be sure to Listen in. For more tech tips, news, and updates, visit - CraigPeterson.com. --- Tech Articles Craig Thinks You Should Read: The NSA warns enterprises to beware of third-party DNS resolvers How Law Enforcement Gets Around Your Smartphone's Encryption Trump team modernizes car safety regulations for the driverless era WhatsApp clarifies it’s not giving all your data to Facebook after surge in Signal and Telegram users Signal recovers from a day-long service outage Warren Buffett blasted Bitcoin as a worthless delusion and 'rat poison squared.' The Guy Who Built The World Wide Web Is Building A 'New Internet', Where You Control Your Data Superfast 5G in the US still a work in progress --- Automated Machine-Generated Transcript: Craig Peterson: [00:00:00] We all want to have a little privacy. So what should you be using? What are the apps that you can trust? We're going to talk about that. WhatsApp, Signal. iMessage, messenger, all of that stuff. That's our focus for today. We have really gone around the bend here. Just as far back as the federal government has been trying to get access to encrypted communications. This has been going on forever. Look at our constitution. Look at the amendments to the constitution, also known as a bill of rights. Trying to protect us. We're supposed to be secure in our papers among other things. So what does that mean? Why was that put into the constitution? It was because an authoritarian government is always trying to look over our shoulders and at the time that authoritarian government was their British monarchy and frankly parliament as well. And they just waltz in, they would break in a door if they had to. And they would start grabbing papers, trying to find someone that was an insurrectionist who was going to overturn the government. And of course, it didn't stop there. That's just one example here in America of what happened to us when we had a boot on our neck is what it's called. And so we established part as part of our country here in the constitution. Prime right to privacy, the absolute right to privacy. And over the years, we've had all kinds of invasions of our privacy. Of course, you know what happened with Wiki leaks and leaking of Hillary Clinton's emails, at least to some of them. I'm not sure we saw all of them. We saw the break into the NSA and the leaking of the tools that the national security agency had, that they were using to spy on us. You might even remember the Church commission back in the early seventies. And they found that the federal government had been given a direct pipeline, this massive pipeline since I think it was the late forties. But after the second world war ended, they had a direct pipeline from A T and T directly to our intelligence agencies. They had access to all of these conversations that were going on and who knows what they were doing with it. And so that's what the Church commission found out, frankly. I think we need another church commissioned to look into this. You remember J Edgar Hoover and what was happening with the FBI where he was using it to spy on people he perceived as enemies. I think he was even spying on mistresses and things, too, trying to figure out who was sleeping with whom and how might that be used in order to gain control over someone, to extort them. This has gone on again and again, and now we have the findings that came out of the house. From a subcommittee where the house Republicans released the findings on this Russia probe and that Russia probe ended up showing a: Hey, nothing happened. There was no collusion between Trump and Russia. In fact, The collusion existed on the left, on the Hillary Clinton campaign, which was basically something she had put together in order to use it against some other people. It wasn't originally intended to be used against Trump apparently. So now we fast forward to bill Clinton, the next, really big thing that happened. And that was, he was pushing our government to force people who made devices that use encryption to use something called the Clipper chip. And this Clipper chip was going to guarantee security guarantee privacy. And the idea was, by the way, there's a backdoor in there and we could not inspect the source code for this chip. We could not inspect its innards if you would. We had no idea what was going on, but it did come out. Yes, indeed. There was a back door, the back door was only there for law enforcement. Don't worry about it. People it's not, it's not going to be misused, but any time there is a back door, there's a hacker trying to get access to that back door, correct? Yeah. Yeah. Very correct. It happens all of the time. Our information that we are sharing with anybody just isn't safe. Look at the federal agencies that have been breached almost every one of them, including the federal agency that maintains all of the employee records for all the people that work and worked overtime for the federal government that was hacked. China apparently stole that. And that was the records of, for everybody, including their background check information, you name it. And of course, when the FBI is doing a real background check, they really dig. So what information did they get from that? Our information is not secure. And with this Clipper chip that was being pushed. I don't want to blame bill Clinton here. I'm not pointing a finger at Bill Clinton. Okay. Get me, right guys. But. W what happened was, again, the government's obsession with gaining access to our private materials. I'm not trying to hide something. I just don't have anything I want to share. I love that saying and it is so true. I am not trying to hide anything. Now, there are people that are trying to hide something. So what do you do about those people? That's always the argument, isn't it. And has been for. Ever, frankly, I'm sure it goes way back to the first community of two caveman families, right? Trust yet verify and verify means sneak in, look through the iPad, the iPhones, right? Look through anything they want to. Now I've got some information on that too, coming up. So that was the next, really big thing. Here was the Clipper chip and we're all gonna use the Clipper chip. Fast forward. We had, of course, the terrible incident in New York City on September 11th. I remember it. I had the news on, I could not believe my eyes watched it happen in real-time. Live. It was just shocking what had happened. And so in response, we pass something that we called the Patriot act and that Patriot act was there to protect us, but it gave these agencies more and more power. And we found out later on, they had been collecting all kinds of information on US citizens illegally. Illegally, not just unconstitutionally, which is, bad, very bad, but against the laws that were in place, the rules or regulations. They started ignoring them. So we just put it into, we codified it in law with the Patriot act, right? They can spy on us because heaven forbid, we talked to someone in another country without it being monitored. Now I want to make it clear. I am not against monitoring someone if you have a court order. And it's a legitimate court order, not one of these kangaroo courts where you don't get to represent yourself. No one in fact represents you. And as it turns out, lies are told. This whole Russian collusion thing where they started spying on the Trump Administration now that the transcripts are out from shifts committee, where he came out every day and bald-faced lie to everybody about how they had found all of this stuff on Trump and how terrible it was and how a lot of people were going to prison. Looking at the transcripts, now we see he was absolutely lying and knew he was lying and he still he's still in Congress. Oh, two cycles later. I don't understand these people, but they had testified to these FBI officials and others that if they had known then what they know now, they would never have signed off on having this. Kangaroo court effectively, this court that has minimal oversight, they would never have signed off on these applications to the court. In order to track the movements of the Trump campaign, what they said, what they did, everything you might remember. Soon after Trump came into office, he was informed that he was being spied on that he has his offices were tapped, et cetera. Do you remember that? And they had set up a skiff there for him, which is one of these secure Faraday cage things where you can't monitor electronically through this thing. So they had to set it up. And then they told the president that other agencies were spying on him. Continuing to spy on him nothing was ever found. When you can read transcripts now that came out of that committee and yet somehow they managed to impeach him anyway. Completely political process. It's just. It's insane where we have gotten. And so I am concerned because how many times are we going to say I have nothing to hide. I don't care if they have access to this information because a lot of this information could be used against us. And if the government has it or the government can collect it. The bad guys can too. That's what I was just saying that the federal government, I think pretty much every agency, certainly, all of the major ones have been hacked. So if they have our information, it's now in the hands of the bad guys, it's in the hands of China. We know that. Our backgrounds are out there. Even the people that got secret clearances and higher, it's all out there now. So how can we make sure our data has a modicum of success and being secure in private because privacy is guaranteed to us in the constitution. You're listening to Craig Peterson. The right of the people to be secure in their persons, houses, papers, and effects against unreasonable searches and seizures shall not be violated and no warrants shall issue, but upon probable cause, the rest. We're taking a little time to talk about privacy and security. What kind of rights do we actually have when it comes to privacy and security? And what does it ultimately mean to all of us? It's getting crazy out there. I just read a little bit from the fourth amendment and we talked in the last segment. About what does this mean? Why were we trying to protect ourselves? And of course, things have changed a whole lot since those days. You had people who might break in the government, might steal, sneak a peek, et cetera. We know from some of these hearings we've had in Congress that all envelopes were steamed open and their contents examined. Okay. We had people who were being examined by the FBI for no reason. Other than that, their political views. It gets very difficult over time in history. After nine 11, they started spying on us even more and they started collecting more and more information about us. And part of what they set up was this secret court where they could get a court order. Too spying on you. And it was a secret order. You wouldn't know. No one would know, and they are spying on you. Now it's supposedly the FBI or whoever it is who's presenting this case to the court is supposed to represent your interest as well. They're supposed to present evidence that might show that you, in fact, are not guilty. You couldn't be guilty of what they're accusing you of. But we now know how that went. At least in some of these cases, it didn't go well. And in fact, people were charged and considered effectively guilty and warrants were issued without anybody knowing now. Oftentimes warrants are issued without people knowing anyway, whether or not it has to do with terrorism, whether or not you're a US citizen. Obviously, you're going to find out that there's some sort of a warrant and then you'll have a right to defend yourself. No, unfortunately, you probably don't have the resources that the federal government has in trying to defend. Defend yourself. The federal government effectively has unlimited money. The same thing's true for state government. They can spend $10 million investigating you. Look at what they did with the Russia hoax, where they spent $35 million investigating, just investigating President Trump and his team. Not finding any. Evidence of Russian collusion and it came out with, what was it, two indictments, neither of which had anything to do with Russian collusion. It basically trapped that were set up. We have less right. To be secure in our papers. Then we had not too many years ago and certainly not since when I grew up, but we do have the technology today. And that's where there is a bit of a win. You know that I have continually said, don't use Android if your phone is lost or stolen, but that phone can probably be pretty easily hacked into depends on how old it is and what version of the software you're running. But we're now. When our computers and our phones adding something called a TPM. And I discussed those in some detail in one of my more advanced security courses. But this module is designed in hardware to help protect. Everything on that computer. So it isn't just an encrypted desk. So the machine starts to boot up, asks you for the password, and now it can finish booting off of that encrypted desk and keep your data relatively safe. As long as it computer's turned off. If the computer is on that data is accessible and hackers can still get into your computer remotely and get it all to that data. So there's the whole thing of data at rest. Then data in flight that we deal with all of the time in the business community. And frankly, we have that same problem as individuals, but most of us can't do anything about it. So these manufacturers have included in their higher-end computers, these TPMS, and they're not that expensive when you order a computer. If you're buying it from Dell or some of these other places, you're going to pay less than $30 for this little module. If you buy an Apple computer, It's already there. It's been built in for quite some time into Apple models, but most of the stuff, if you're buying it from a big box, retailer is not going to have this module, but this modules designed to keep the secrets, like your secret keys, et cetera, in the module and that module. Cannot be broken into physically or electronically. The hackers cannot get into it. That is a very good thing. And the same, thing's true with some of our cell phones. So if it's an Apple phone, Yeah, it's built-in, if it's an Android phone, it depends, right? Android, isn't Android, isn't an Android, right? They all use different hardware. They may use the same central processor, but they also have controllers and then device drivers for those controllers, et cetera. So it's out of Google's hands as to how secure your phone is going to be. And then you're lucky. Consider yourself lucky if you get actual updates for your Android phone. For security problems, because most people cannot get them, even if they wanted to get them, it says serious problem. So you are now more likely to be able to have the hardware. That's going to keep things safe for, and you see some evidence of this with the thumbprint readers nowadays, you've got the facial recognition technologies, again, depending on the tech, you're using a lot of the Android devices, easy to fake the thumbprint thing on also on a lot of Android devices, easy to fake the facial records. Ignition much harder on some of these others, but some of these TBMs, some of these security hardware modules have been hacked, and that is now true of Apple equipment. If they can get your hand, their hand on that equipment, they may be able to break the way into it. Now Apple's continually improving the equipment, you go to a country and let's say you go to China and you are trying to get something manufactured there. You have your intellectual property from your company in the us. Some of it's there on your laptop. And you're thinking you're safe. There have been numerous documented instances where China gets their hands on your laptop or your phone. Whether you know it or not, sometimes they sneak in fact there's a whole security term just based on the evil maids. But they'll get into your room and then they will hack into your computer and they'll steal your intellectual property it's being done even in the United States. Look at what's happened here. Representative stall wall out in California has been carrying on a long-term relationship. Physical relationship with a female Chinese spy. We had both senators from California, who we had senators, Feinstein and Boxer, both had Chinese spies on their payroll, including one who was her driver for 20 years, was listening in on her conversations and relaying them back to China. Stonewall, believe it or not, is still not only in Congress, but it is on a secretive committee. If you can believe this. I'm, my mind is I'm rubbing my head here. I had to go to explode. And in this improving windows security course, I have and in fact, a slide when I had in duct tape so that it just doesn't explode because it's just unbelievable to me. So Apple is equipment, some of the newer, slightly older equipment. Is hackable. If they can get their hands on it. So what should you be doing? I want to get into, cause we're going to lose some of our listeners here. So when we come back, I'm going to get into WhatsApp and signal and I message and messages. I go into a great deal of depth in the improving windows security course, make sure you're on my email list. Craig peterson.com. So you get all of this training. So I think we've established the government spying on us means they're collecting data anywhere. There's data. You're going to find bad guys trying to get at it. And that means our data gets exposed when there is the inevitable government hack. I have been talking here about really constitutional rights. Should the government be able to spy on us? When do they have the right to examine our papers? Our homes, our persons, our effect as is under the fourth amendment, I'll leave that to a legal show, but we do have that right. And it is guaranteed to us. For very good reason. So ultimately, what can we do to stay safe? Because it isn't the government. That's a big worry, frankly. The big worry is the bad guys. It's the hackers. This is like a really good friend of mine. He just turned 76 right now. In fact, this last week. And he makes money by drugs, driving for Uber eats. And I think he does one other as well, but that's how he makes money. And he came to me with a problem because of his last paycheck. Which I believe was about $700 for one week. That's a lot of work, right? That's a pretty big paycheck. His last paycheck did not end up in his bank account. So he did some investigation. I did some investigation. He called up the company. He was doing some of this work for, and. It found out that the money that he had earned had gone into a hacker's bank account. Yeah. So there he is working really hard. He gets this paycheck and it doesn't show up and it's in the hands of a bad guy. The money has been transferred. They couldn't scrape it back. And here he is stuck. Now in his case, the problem was that he was not using secure passwords. So I set him up with one password, which is a password manager and we used it to generate. Passwords for his bank account. And also for these apps, he was using in order to get the orders for the food, et cetera. So we locked them down and I helped him on the phone when he called up the company because the bad guy had also grabbed his email account. So anytime you try and do an account reset the reset. Code was sent to the email that he no longer had access to an email he had for better than 20 years, a Hotmail email address, something I told him also should get rid of. So we had to play those games and then. And we went to Google and he didn't have a secondary reset ability here because his Google email account was tied into his Hotmail. So any reset for Google went to Hotmail. He didn't have access to the Hotmail account. And so he lost access to the Google account. See the problem here that was created all because he knows, we can tell he was using the same password on a bunch of different accounts. One of those businesses that he was using had been hacked. And that information was then used to break into his email account. And they found from his email account that he was delivering food on the sidewall, heck he's retired his only way to generate any extra income. And so they then took over his account. They changed his bank account number. In the Uber eats app and they changed it to one of theirs. And the account number was for one of these places that will issue you a debit card. No questions asked. And once the money hits that debit card, they pulled it out and moved it overseas. It's it is a bad thing to have to happen. And by having that information, they were able to take over his identity, at least in this case, and start receiving his paychecks. This is happening every day. What do we do? Already, I tell you, you got to use a password manager. It's just so important. And we go into that and I talk about them in my improving windows security course, because you've got to do it. You got to understand how to do all of that sort of stuff. But there are other ways that you can be spied on. For instance, sending text messages, we're seeing more and more a technique that's been used by police for years now being used by bad guys, they've set up something that's generically now. Called a stingray device. It's actually a device made by one company. There's multiple these types of devices, but it pretends it's a cell tower. It doesn't have to be up on a tower or anything. It just pretends it's a cell tower. So anybody's cell phone in the area is going to try and relay through them and they do literally let you relay through. So it goes from your phone to this fake cell tower. And then from the stage. Fake cell tower. It forwards it to the real cell tower. So now they have access to information about who you're calling, but they also now have access to your text messages, your SMS messages, and they're using that to commit scams. What do you do really? These prescriptions I'm giving here are pretty darn straightforward. They're not that difficult to do, but I understand they, they can be difficult to figure out. So that's why I'm doing these courses. I have these free courses, these emails I send out pretty much every week also had this free information in them. And then I had the more advanced courses too, but If you're using an end-to-end encrypted did messaging app. These stingray devices cannot pick you up at all. Okay. Yeah. Okay. They're going to see there's data being transferred, but they're not going to be able to get their hands on the actual messages they'll just see some data. So what do I recommend you use? I'm going to make this quick because we are almost out of time here on some of these stations, but here's what I use, but let's just leave it at that for now. We're going to get into more detail a little later on. If you get cut off of the show gets kinda off, make sure you go to Craig peterson.com. You can see the podcast there. You can listen to the whole thing. But what I use is an app called signal and. That's Signal. If the police have a warrant and they're coming for you, it's not going to really stop them. And in many cases, okay. There's other ways to get access to your data, but it is going to stop the bad guys, which is who we are really trying to stop here. We want to stop the casual viewing of our person's paper's effect. From the federal government and state and local governments, because unless they have a valid warrant, They have no right to monitor us. Okay. So it's going to stop that, but it's probably not going to stop them if they have a warrant, which is fine, because if they have a legit warrant, that's all well, and good. I am not against that at all, but it is going to stop. 99.99, nine, 9% of the bad guys, because they don't have the technology. They don't have the ability to decrypt or to put special malware on your phone or other things. So signal, it's an app that had an outage. We're going to be talking about that this last week because so many people started using it after Elon Musk advised people to start using it. So how's that for something right. It's just absolutely amazing. It's worth doing, let me tell you in the course, I go into some more detail on how to set it up and what to do and why it is the best option. Make sure you are on my newsletter that I send out pretty much every week. Craig peterson.com/subscribe. What are our options when it comes to some of these messaging apps? So we're going to talk right now about how they work. What's the bottom line SMS versus some of these apps. What should you look at? What should you use? You know what I use. I use something called signal, which is an app that's been out there for a little while. Moxie Marlinspike is the name of the guy that put it together and designed really the most secure messaging interface earlier. I mentioned how you can with some, something like a stingray. Intercept cell phones and cell phone signals. And one of the things that you can intercept is what's called SMS, which is a simple messaging system. Now to my surprise, in the course of the window, improving windows security that I have, I go into some detail about how SMS came about and where it is, but for now, let's just talk about the basics of SMS. It is obviously. Text message. That's what we call it. Very typically it's a very small message limited in the number of characters that you can send. In fact, that's what Twitter did. Twitter's a limit of the number of messages is based on the length of these SMS messages. Okay. I get that. And Assa mass was just designed as an afterthought as part of the new cellular technology. It really wasn't an integral part and they were smart to say, Hey, wait a minute, we've got a little bit more bandwidth here. And so they took that bandwidth and used it for messaging apps. When you send a. Text message from your cell phone, your sending it in the clear, which means that anyone can intercepted and that's no surprise. Anyone can pretty much intercept anything. But your message is not encrypted at all. So if your message is being intercepted, it is at that point now completely vulnerable to being read so bad guys that decide they're going to set up a sting raid type device can now listen into your conversations, frankly, they can inject things into it. The other thing about it is the. Phone company is also listening in. So remember how much I've complained about people, businesses, government agencies that collect our data. And one of the reasons I complain about it is they've got the data, that means they are going to be targets of the bad guys. Think about Sutton, right? Robbing banks. Why did he Rob banks? And the answer of course is supposed to be that because that's where the money is. Why would you Rob a bank? If there was no money, it doesn't make much sense. So why would they not go then and try and break into telephone companies or other places that have your messages stored? Remember? How my friend here just a couple of weeks ago, had his paychecks deposited into a hacker's account. If they can gain access to your text messages, they now have the ability. To potentially use that to recover an account. Now recover an account. Isn't really what they're doing. They're recovering your account. They're pretending they are you. So when you get that two factor authentication message coming in from whatever website it is out there that you've been using that two factor authentication messenger message is. Yeah, going to them because they can see it. So it really is that easy. I hope that's not too confusing. So you send a message to somebody using SMS using regular text message. It can be seen. It can be read. It is stored by everybody in that route. And they can include bad guys that are sitting there watching what you're sending. Then when it gets to the other side is still in the clear and that person goes ahead and reads it. So that's the basics of messaging, right? That's your very basic, your bottom line text message. If you move upscale a little bit. You now have some apps that can be used for messaging. And I don't want you to confuse Facebook messenger here because Facebook messenger of course, is used by Facebook. They are watching what's going on and what you're saying, and it's not a secure platform. I was going to say at all, it is secure, but it's not really secure enough for messages you want to send back and forth to friends. And it's definitely not good for account recovery because most of the account recovery stuff, and two factor authentication. Is not two factor authentication. So make sure you keep an eye out for my improving windows security course, which should be released and knock on wood in about another week or so I had said January, and I think we'll make the January deadline here of having it out there. Yeah. But in that I explained two factor authentication. Why you don't want to use SMS or text messages for it. And also some workarounds, including a free workaround that you can use. So that's all in the course, but let's stay basic here right now. Messages from Facebook or not considered secure what's happened is something that about 2 billion people in the world that is pretty dramatic. Yeah. And it is designed as an end to end encrypted. Did communications channel. It can be used for little short text messages, longer messages. You can have voice calls on it. You can have video calls on it, et cetera. We use at the office, a WebEx phone system. It's made by Cisco. It is encrypted. It is what on the president of the United States desk right there. Although he has a net, an extra encryption module on it. Just really cool. Plus he can turn off physically disconnect the microphones and things makes a whole lot of sense to be able to do that, but it set up so we can have secure communications. We have one that's called  compliant and we use it inside the business and it has cameras on the phones and displays and stuff. It's really quite cool and ties into the computers. So that's probably not something you guys are going to be able to have. So a lot of people use WhatsApp. And the WhatsApp app has been known to be quite secure. It is also using that algorithm, that software that was developed by Moxie Marlin spike. So it is end to end encrypted. So when you send a message from your smartphone using WhatsApp, It's encrypted on your phone and then it is transmitted over the regular internet. So that internet connection may be coming from the phone company. It may be over, a 5g or 4g or 10 G in the future, whatever it might. Be over their network and then against to the other side, by bouncing around in a whole bunch of networks, remember internet is interconnected networks. It's a whole bunch of them. So it'll bounce around. It'll get to the other side. And once it's on the other side, it will be decrypted and there are. Session keys. There are. When you're using signal, there are keys specifically for individual conversations, individual users, and even individual packets. It's really quite involved. You might have noticed about. Two weeks ago, as I did that, WhatsApp came up with a message and you read that message. And to me, it was scary because it looked like Facebook who bought WhatsApp for what was it? A couple of billion dollars. It was over a billion, I think about eight, nine years ago. They bought it. And they gave people until 2016 to opt out of having Facebook take copies of all of their WhatsApp contact. So the message you got from WhatsApp via, or from Facebook via WhatsApp here a couple of weeks ago said okay. So we are going to be basically gathering information about you. Now that really worried about a lot of people, myself included. So I made sure I had signal set up with everybody that I'm planning on talking to. Because signal is much more secure than what's happened. Some of these others.  Don't know, a lot of people jumped ship. The stats that are out there right now are saying that we had millions of people sign up for signal. They left WhatsApp because of the, what Facebook is calling confusion over this message they sent out. And Facebook is saying, Hey we're not breaking encryption. We're not going to watch what you're saying, but we are going to keep track of information about you and about your contacts and who knows how far they're going to go with it. Odds are that they'll start pushing in. Advertising into your stream and other things, which also really concerns me because all they need is a bug and that bug could potentially allow bad guys offers to get into your machine into the app. When I say offers,  it There could be a bug in the advertising interface that allows now access to private messages. So I would be cautious about it. And a lot of people have apparently about 25 million people over the course of just three days signed up for signal. On the app store, which is just amazing. Oh no, excuse me. That was telegram, which is another secure communications piece of software. I'm not a big fan of telegram, much bigger fan of signal. That's the only one I really trust out there. Hopefully this was clear enough for you. I do go into this and I have some diagrams and other things in my improving windows security course. Put together that helps you, of course improve security on your windows, computer. But because windows computers now are also tied in with surface tablets, which are people are using. And I understand why if you're stuck in the windows world, why you'd get a surface tablet and those surface tablets have built into them cell modems. I had to go and do the two factor authentication, more and messaging and how that all go. So hopefully understand all of that. Make sure you are on my newsletter list. So you get all of the latest above the courses that are going on. I've been trying to put. A little bit of training. I bought a three minute training into the emails over the course of the last couple of months. Really? And it's easy. All you have to do is go to Craig peterson.com and sign up when you get there. Craig peterson.com/subscribe. We'll take you there. The internet phone book, if you will, or address book is beyond repair right now. It's not beyond repair. There are some things going on right now to make you more secure. We're going to talk about that. So stick around. When we go online, use something known as a URL, right? You're familiar with that. That's that part of the bar up at the top of your browser, it's got the name of a site. It might have a slash and. Slash subscribe, like when you subscribed to my newsletter@craigpeterson.com slash subscribe. That first part of that URL, the Craig Peter sawn.com known as the left-hand side. And it's the part that comes right after the HTTPS colon slash. So that's the domain name? Craig peterson.com. Easy enough to just type that in. How do you end up at my website? DNS is something that's been a mystery of black box for a lot of people, but it has been hitting the tech news lately because of some problems, basic problems. One of them is that requests, that DNS requests, they request your turn. Craig peterson.com into an internet address is transmitted in the clear. The other problem is many times our ISP are taking that DNS request and fulfilling it themselves. Those are both problems. So the first problem where we have our ISP PS intercepting, our DNS requests means that they know what we're looking for, where we're going online. So your ISP, it could be Comcast or Verizon, or who knows who, depending on where you live. Your ISP sees that DNS requests and those Oh, okay. He's going to Craig peterson.com or Google or TD bank or whatever might be. They know it. Okay. That's some problem enough. The other problem I mentioned is it's in the clear, because it's sent in the clear your ISP can intercept it. No problem. Some RSPs are not only intercepting them. They are changing things and they're giving you different results. Which to me is very frustrating. So if you're trying to do a search, for instance, instead of sending it to duck, duck could go or whatever your favorite search engine is. Your ISP is going to grab it and fulfill it itself and give you advertising different advertising as part of the search results. And in some cases as well, if you try and go to a website that does not exist rather than telling you. Oh, Craig Peterson without an O a doesn't exist. It will send you to their own webpage that has advertising on it. So all of those things are rather annoying. Bad guys can also mess around with your DNS settings. Most small businesses and home users have a router at the edge of the network that handles a protocol called DHCP. It's DHCP is a protocol that hands out IP addresses. So for instance, if you look at the IP address for your machine, the odds are pretty good. It saying the one nine two.one six, eight.one dot something range. That's the most common address on the internet is called a non round-table address and they use nav at the network edge and stuff. But that server that is sitting in your router slash firewall is. Providing data to your computer or your other devices like your television, the Roku, et cetera. It's providing information to your devices, telling it which DHCP server to use. So if you're on your web browser and you type in Craig peterson.com, it knows your web browser, your computer knows what the IP address is too. Resolve that name, the DNS server it should be using. So another thing bad guys have been doing is they break into your router slash firewall at the network edge. And then they change the DHCP servers address in your router slash firewall. So you can imagine what happens now, if you're trying to go to a website, the bad guys can send you wherever they want. And in some cases, they are sending you to their own version of your bank's website, or they're sending you to their own version of Google three. They are completely hijacking your computer by just changing these DNS settings in your Rotter and firewall at the edge of the network. That's all they have to do. So yet another reason to make sure your router firewall has the latest firmware in it. Hopefully it doesn't have security problems. They're going to nail you. I have this in my course as well, more advanced networking course on what to do, how to do it, et cetera. How do you solve these problems? Some of these companies and organizations have decided they're going to use their own protocol, their own way of doing it. So instead of sending out the name request to the standard DHCP server that your computer was told, when it was powered on to use it, you're going to use theirs. And here's how they're doing it. They have in Mozilla, for instance, Firefox product. If you're using the Firefox browser, it is ignoring the DNS settings that are on your computer. And it's opening an encrypted session to a DHCP server that Firefox knows and loves. That can be a problem. It's not necessarily a problem. It's probably a better thing to do than what most people are doing in their homes right now, which is just leaving everything at the default and letting their ISP kind of decide which DNS server to use and how to use it and everything else. So I'm not going to blame them for that. I think from that aspect, it's a pretty good idea. But because it's encrypted, it's called deal H by the way, which is short for DNS over TLS, which is meaning it's encrypted. And DNS traffic is sensitive traffic. So why not encrypt it because they. The default protocol doesn't have encryption. So they now send the request directly from your browser to one of these cloud services that are out there. One of the common ones is one.one.one.one. Which is a very common nowadays site that you might see CloudFlare. There are some others as well. So the, your ISP cannot see the DHCP request. The bad guys can change the settings on your firewall. All they want. They're not going to be able to redirect your you via DHCP. And they cannot spy on where you are going online. All very good, right from that aspect. So for regular people using this inside of Firefox great idea very easy, very simple. The other nice thing about this system, because CloudFlare is looking at the records of DNS records and identifying potentially. Banned websites you don't want to go to it can, and it does filter them out. So you have that extra layer of protection. If there's a website, that's a bad site. It is getting filtered out. When you're trying to go there. However it doesn't do any good to a cause it can't filter applications that you're running. If there's malware on your computer, trying to phone home, not going to help with any of that. I do cover all of this, by the way, in the introduction to windows security course, that's coming out here. Of course you can sign up@craigpeterson.com and I'll let you know what's going on with it. But I do cover that. And how do you do it? However, here's the problem. If you are a business that is trying to stay secure, this is going to make you less secure because a business like mine or my clients that have information, that's valuable, they have bank accounts, they have intellectual property that they don't want to have stolen. So their information is valuable. They want to intercept. These DHCP requests, because you don't necessarily want your random user inside your business network. The sales guy or gal going to the dark areas of the web and you know what those are, where there's a whole lot of bad stuff without your knowledge, because you don't know. If they try and type in playboy.com and it gives them the IP address and they can get their you're none, the wiser. Because that request is encrypted. So one of the best things to do in a business network is to use something like Cisco's umbrella that we explained in the introduction to windows security course. And we also explained some free versions that you can get and you can use. So this is actually. Dangerous in some situations, DOH, it is much more or secure another situations, but I think there are better ways to deal with this and we covered in the course. So make sure you keep your eye out for the introduction to windows security course. That is coming your way very soon. And if you are on my newsletter list, you'll find out about it as well as weekly. Little micro trainings that we're doing. Craig peterson.com. The internet phone book, if you will, or address book is beyond repair right now. It's not beyond repair. There are some things going on right now to make you more secure. We're going to talk about that. So stick around. hello everybody. Craig Peter Sohn here. You're listening to us on news radio five 60 am and 98.5 FM w G a N. And you can listen also on your Google home device. Just say, Hey, Google play. W G a N. And it'll take care of the rest for you. It makes it easy. We, when we go online, use something known as a URL, right? You're familiar with that. That's that part of the bar up at the top of your browser, it's got the name of a site. It might have a slash and. Slash subscribe, like when you subscribed to my newsletter@craigpeterson.com slash subscribe. That first part of that URL, the Craig Peter sawn.com known as the left-hand side. And it's the part that comes right after the HTTPS colon slash. So that's the domain name? Craig peterson.com. Easy enough to just type that in. How do you end up at my website? DNS is something that's been a mystery of black box for a lot of people, but it has been hitting the tech news lately because of some problems, basic problems. One of them is that requests, that DNS requests, they request your turn. Craig peterson.com into an internet address is transmitted in the clear. The other problem is many times our ISP are taking that DNS request and fulfilling it themselves. Those are both problems. So the first problem where we have our ISP PS intercepting, our DNS requests means that they know what we're looking for, where we're going online. So your ISP, it could be Comcast or Verizon, or who knows who, depending on where you live. Your ISP sees that DNS requests and those Oh, okay. He's going to Craig peterson.com or Google or TD bank or whatever might be. They know it. Okay. That's some problem enough. The other problem I mentioned is it's in the clear, because it's sent in the clear your ISP can intercept it. No problem. Some RSPs are not only intercepting them. They are changing things and they're giving you different results. Which to me is very frustrating. So if you're trying to do a search, for instance, instead of sending it to duck, duck could go or whatever your favorite search engine is. Your ISP is going to grab it and fulfill it itself and give you advertising different advertising as part of the search results. And in some cases as well, if you try and go to a website that does not exist rather than telling you. Oh, Craig Peterson without an O a doesn't exist. It will send you to their own webpage that has advertising on it. So all of those things are rather annoying. Bad guys can also mess around with your DNS settings. Most small businesses and home users have a router at the edge of the network that handles a protocol called DHCP. It's DHCP is a protocol that hands out IP addresses. So for instance, if you look at the IP address for your machine, the odds are pretty good. It saying the one nine two.one six, eight.one dot something range. That's the most common address on the internet is called a non round-table address and they use nav at the network edge and stuff. But that server that is sitting in your router slash firewall is. Providing data to your computer or your other devices like your television, the Roku, et cetera. It's providing information to your devices, telling it which DHCP server to use. So if you're on your web browser and you type in Craig peterson.com, it knows your web browser, your computer knows what the IP address is too. Resolve that name, the DNS server it should be using. So another thing bad guys have been doing is they break into your router slash firewall at the network edge. And then they change the DHCP servers address in your router slash firewall. So you can imagine what happens now, if you're trying to go to a website, the bad guys can send you wherever they want. And in some cases, they are sending you to their own version of your bank's website, or they're sending you to their own version of Google three. They are completely hijacking your computer by just changing these DNS settings in your Rotter and firewall at the edge of the network. That's all they have to do. So yet another reason to make sure your router firewall has the latest firmware in it. Hopefully it doesn't have security problems. They're going to nail you. I have this in my course as well, more advanced networking course on what to do, how to do it, et cetera. How do you solve these problems? Some of these companies and organizations have decided they're going to use their own protocol, their own way of doing it. So instead of sending out the name request to the standard DHCP server that your computer was told, when it was powered on to use it, you're going to use theirs. And here's how they're doing it. They have in Mozilla, for instance, Firefox product. If you're using the Firefox browser, it is ignoring the DNS settings that are on your computer. And it's opening an encrypted session to a DHCP server that Firefox knows and loves. That can be a problem. It's not necessarily a problem. It's probably a better thing to do than what most people are doing in their homes right now, which is just leaving everything at the default and letting their ISP kind of decide which DNS server to use and how to use it and everything else. So I'm not going to blame them for that. I think from that aspect, it's a pretty good idea. But because it's encrypted, it's called deal H by the way, which is short for DNS over TLS, which is meaning it's encrypted. And DNS traffic is sensitive traffic. So why not encrypt it because they. The default protocol doesn't have encryption. So they now send the request directly from your browser to one of these cloud services that are out there. One of the common ones is one.one.one.one. Which is a very common nowadays site that you might see CloudFlare. There are some others as well. So the, your ISP cannot see the DHCP request. The bad guys can change the settings on your firewall. All they want. They're not going to be able to redirect your you via DHCP. And they cannot spy on where you are going online. All very good, right from that aspect. So for regular people using this inside of Firefox great idea very easy, very simple. The other nice thing about this system, because CloudFlare is looking at the records of DNS records and identifying potentially. Banned websites you don't want to go to it can, and it does filter them out. So you have that extra layer of protection. If there's a website, that's a bad site. It is getting filtered out. When you're trying to go there. However, it doesn't do any good to a cause it can't filter applications that you're running. If there's malware on your computer, trying to phone home, not going to help with any of that. I do cover all of this, by the way, in the introduction to windows security course, that's coming out here. Of course you can sign up@craigpeterson.com and I'll let you know what's going on with it. But I do cover that. And how do you do it? However, here's the problem. If you are a business that is trying to stay secure, this is going to make you less secure because a business like mine or my clients that have information, that's valuable, they have bank accounts, they have intellectual property that they don't want to have stolen. So their information is valuable. They want to intercept. These DHCP requests, because you don't necessarily want your random user inside your business network. The sales guy or gal going to the dark areas of the web and you know what those are, where there's a whole lot of bad stuff without your knowledge because you don't know. If they try and type in playboy.com and it gives them the IP address and they can get there you're none, the wiser. Because that request is encrypted. So one of the best things to do in a business network is to use something like Cisco's umbrella that we explained in the introduction to windows security course. And we also explained some free versions that you can get and you can use. So this is actually. Dangerous in some situations, DOH, it is much more or secures other situations, but I think there are better ways to deal with this and we covered in the course. So make sure you keep your eye out for the introduction to windows security course. That is coming your way very soon. And if you are on my newsletter list, you'll find out about it as well as weekly. Little micro training that we're doing. Craig peterson.com. Make sure you follow along there. Before he left President Trump made sure that the rules for our electric vehicles were overhauled because the federal government safety regulations were based on 1910 type of technology. We're going to talk about that. The Trump administration has done a lot with regulations and just before he left office, we saw a number of things, hit that they'd been working on for years. And until just the last week, really the federal government's car safety regulations were based on assumptions that came out of the 19 hundreds here. 19 zero, zero, they assumed that a vehicle had people inside and they also made a big assumption that one of those people will be the driver. That is not necessarily what's going to happen in the future. We've all had these beautiful dreams of what these autonomous vehicles are going to be like, where we're cruising down the road. Just sitting there reading a book or heaven forbid scrolling through social media or something. And the car's driving itself. There may or may not be a steering wheel. So in fact, that's one of the problems let's say there is a steering wheel. Who's the driver. Because you might want to have it so that you've got the driver and the passenger and they're looking forward and there you are doing a little bit of something else and all of a sudden they notice something, the cars misbehave, or maybe that last mile. As were, when you get off the highway and we're doing some parking and it's a little confusing for the car. W why not have the passenger takeover? Okay. Why have a steering wheel, why not have a joystick that either the passenger or the driver could control? Why not just have something that the passenger complaint and the car can sense the finger and where the fingers pointing and that's where the car goes. There are a lot of options that just are not. Built into our transportation code, federal or state. That's a very big deal. There are a number of vehicles out there that are designed for hauling cargo. You might've seen some of them deliver pizzas and beers on campuses of universities and they drive around by themselves. They avoid obstacles and they're really cool. And then when they get to the right person, Or at least to the right building, it sends a little text message off to the person that ordered it. They come down, they punch in a code, it opens up and there's their pizza and beer for the night. Okay. I can see that. But in that case, those vehicles are on a sidewalk. They're not covered by the same rules as vehicles that are on public roads. How about some of these vehicles? Like the neuro. And you are, Oh, I assume I'm pronouncing that right. This thing is very cool. It's almost like a little bigger brick, right? But it's fairly rectangular in shape and it has a couple of compartments inside. It has a refrigerated area. It has an area for general groceries and it is designed to haul cargo and go on the roads. It doesn't have any people inside. So why does it need to abide by the regulations that are based around people? It doesn't have a driver. There's no driver's seat. There's no steering wheel. There's no need for a windshield because the whole thing is enclosed. This is really a very big deal. And this is all part of the federal motor vehicle safety standard that requires every car have seat belts, airbags, his steering wheel, a brake accelerator, even a driver's seat. It has minimum standards for everything from not just the fact, you have to have a windshield, but what the strength of that windshield is how it's supposed to break crash, test performance, all of those sorts of things. But the whole, all of those assumptions are already frankly, out of date. And they're going to get more and more out of date. Remember how I said regulation, strangled technology. They strangle innovation, no matter what, whether it's technology or otherwise because they make assumptions based on old things. So the rules and regulations always tend to follow technology. But in some cases, they really squelch technology. Look at the nuclear regulations. There they're locked into the nuclear power plant designs of the 1950s. That's something President Trump tried to straighten out and had some success at. And now we're talking about regulations for motor vehicles that almost applied to the 1890s. When the first vehicles hit the roads out there. So one of the things the Trump administration did before it came to a close is it had the national highway traffic safety administration publish a new version of these vehicles, safety standards that recognize that some cars don't have drivers and some vehicles don't have. Any people inside at all. So thank goodness for again. So many regulations were updated under the Trump administration and a number of them. I mean like thousands that were useless, it didn't add anything. We're completely gotten rid of written off the bucks, but neuro is one of these companies that's really going to benefit from this. This is a startup, a very cool little delivery robot. You can look them up. Bond line and you are, Oh, they're designed to operate on-street rather than the beer and pizza robots that are operating in the universities on sidewalks. So very cool ARS Technica has a good article on this and the Herald. Neuro excuse me, neuro hailed. This new regulation is a quote, significant advancement that will help neuro commercialize our self-driving delivery vehicles. How's that for corporate speak. So it's actually very good. These requirements that were in these vehicles, safety standards make things worse in some case for delivery vehicles and are completely useless and make the vehicle heavier. Now, remember a heavier vehicle. Is potential if it's in an accident going to cause more damage, right? So requiring airbags requiring seat belts requiring a driver's seat just makes things worse for a vehicle that has no passengers makes things worse for everyone, including a pedestrian or a cyclist that might get here. We saw that just terrible accident that occurred here or a year or two ago. So we've got to be careful. Late last year, they asked for special exemptions for some of the rules because they don't have windshields. They don't have the right passengers, et cetera, et cetera. And the traffic safety administration waived the requirements. And also by the way, w way rules about the design of door locks and seats. These vehicles don't have to meet crash worthiness standards since they're already gonna have. Pizza or groceries on board. Very interesting. You're going to have classes of vehicles that are little delivery vehicles. You're going to have them that have passengers on board and you can have big trucks. They all require different standards. Glad Trump did this before he got out of there. I hope that this continues. Okay. Hope it continues. And we don't get a repeat of what happened in Tempe, Arizona. Back in 2018, when a new Burr self-driving cars, truck, a cyclist stick around. The lockdown has changed a lot of things, including some of these restaurants, why even have a physical restaurant, if everybody is ordering Uber eats or some sort of delivery mechanism, why. Just like that restaurant has been hard. Hit it just a terrible thing. I remember I went to get my shoes fixed. I went to a cobbler. I took a shoe in it. He fixed it for me. And yeah, I'm one of those guys, who knows where the cobbler is. And I went to pick it up my shoes up. And right next door was an older restaurant and this restaurant was really, in a little bit of a rundown area of town. Where else could a cobbler be nowadays? There's not as though it's a high-volume or high-profit business. And. He was, this guy was opening a bar and it was an Irish-themed bar and it was going to open on St. Patrick's day 2020. So think about that for a minute. St. Patrick's day in 2020 was not, I would say the best day to open. Up a bar. So let me see. Last year, 2020 St. Patrick's day was Tuesday, March 17. Do you remember what happened the day before? On March 16th. That's when the lockdowns started going into effect. That is not a good thing, frankly, because that lockdown meant that this poor guy who was, he was in there, he was by himself. He was painting repainting and stuff like that. The headline they're all green out in front of the bar and getting everything set up inside all of the taps for the beers and everything already. So he had put, I don't know, what does it cost at least a hundred grand open a restaurant. And most of them failed as like any other business. So I would imagine he's out of business and out of luck he'd been saving. He was a younger guy, probably his mid-thirties, maybe late thirties. And he'd been saving up to put this restaurant together. That's just one story. There's many stories of other restaurants that have been family restaurants in some cases for generations that just could not. Survive and you and I obviously with the lockdown we're not going to these restaurants like we used to, and I really miss it.  I've never been a big restaurant guy. I usually make meals at home or my wife feeds me at home and right. I get taken care of that way. It's been a wonderful life. Let me put it that way. Okay. But I do enjoy going out to a restaurant and talking with my buddies and just enjoying it, talking with my wife, going out with the kids, which we've done for many years and was a bit of a surprise sometimes when there'd be 10 of us, which is generally considered a large party. But no, that was just my wife and I and our yeah. Kids. People I'm going to sit down in restaurants at least right now. And with 20 to 50% of restaurants maybe never coming back. Where are we going to end up Pat? So there's been a whole new type of business. That's sprung up from this. And I had noticed this years ago, at least something similar to this where you would go into a restaurant and you'd find that they had in fact been sharing a kitchen. So that's very true in a lot of smaller hotels. You go to some of these little niches, hotels, and room services, really the restaurant next door. So you order something and it comes from that restaurant. That whole concept has just grown like crazy. And there's a great article in Forbes magazine about what are called ghost kitchens. A ghost kitchen is a kitchen that doesn't really have a restaurant attached to it. Very cool. And what I think coolish about it too. Maybe the coolest part about it is that these ghost restaurant might be making Chinese food and Thai food and Mexican food and American food all in one kitchen. And all you have to do is just start one of these. As you have a kitchen, let's say you're an existing restaurant, and you're trying to figure out how to stay in business. You get some of this software like Nimbus, and I M B U S. And Nimbus's just an example. I'm not recommending them, but an example of one of these companies that has software to allow you to. Really run these things. So now you put up a website saying in my town USA is this wonderful Mexican restaurant. And you've got all of the wonderful things about it and the testimonials and the menu, and people can go there and order whatever Mexican food they want. Very nice. I like that. But you also have a menu up for your Chinese food and it's a different website obviously, and it's got Chinese food and it's again, testimonials about how great Chinese food is. And you've got your Chinese menu there where you can select a little of this and a little of that. And you might have another w. Or another restaurant, quote, unquote selling Japanese food, whatever it might be. They're not even related in most of these cases. That is absolutely fascinating because it has altered a whole industry. Now you can have pizza in there too. So if you've got a kitchen, you could now set up a website for a number of different cuisines and you now have just one place. It's just a kitchen and you keep it busy. How's that for simple. All right. Do your chefs hopefully know how to make all these different types of foods, right? You gotta make sure the food's right, but you don't have to worry about seeding. You don't have to worry about all of the cleanings you'd have to do of the seating areas. You don't have to have someone out front greeting people as they come in. And the Uber food or whatever might be drivers, just show up at the door, they pick up the food and they deliver it. So that's a whole new type of business. It's called ghost kitchen. You'll see them out there. There are other things like Total food, this Nimbus thing, which is a hybrid breed between the traditional commissary kitchen and a ghost kitchen that got some bells and whistles on them. But this is fascinating. It is something you might want to look into if you own a restaurant or a bar because now most States are allowing the delivery of mixed drinks in these vehicles. It could be a savior for you. Okay. Oh, I absolutely love it. I think it's a great idea. Obviously. It's not going to replace everything a traditional restaurant's going to do. You're not going to be able to sit down with your buddies at a ghost, titch your kitchen. And at that ghost kitchen. Be able to very simply just have your meal, right? Cause it's, it doesn't really exist. The restaurant doesn't exist. The kitchen, obviously. That's so very cool. Very cool. Fran posts is another one, FRA, N P O S, which gives ghosts kiss kitchens, the power to monitor, manage their individual locations while removing all of the administrative burdens associated with running the kitch

Qu'est-ce que Signal ? Merci d'avoir posé la question ! Peut-être faites vous partie des millions d'utilisateurs qui viennent de débarquer sur Signal, prêts à y confier des informations hautement confidentielles, du type “n'oublie pas d'acheter le pain bébé”. Tout comme WhatsApp ou Messenger, Signal est une application de messagerie disponible sur smartphone et ordinateurs. Mais à la différence des autres, Signal se veut indépendante et sécurisée. Mais d'où vient Signal ? Signal a été créé par l'Américain Moxie Marlinspike, un genre de marin charpentier hacker anarchiste. C'était en 2015. Mais c'est début 2021 que l'appli connaît son heure de gloire… grâce à son principal concurrent : Whatsapp. Pour le contexte : c'est grâce à Whatsapp qu'on a commencé à appeler des amis qui habitent de l'autre côté de la planète sans exploser nos forfaits. Ou à échanger des photos de vacances sur le groupe familial…. qu'on finit souvent par mettre en sourdine.  Mais pourquoi tant de personnes téléchargent-elles Signal en ce moment ? Qu'est-ce que Signal a que Whatsapp n'a pas ? Comment l'application fonctionne-t-elle ? Ecoutez la suite dans cet épisode de "Maintenant vous savez". Un podcast écrit et réalisé par Quentin Tenaud. A écouter aussi : Qu'est-ce que Cambridge Analytica ? Qu'est-ce que le RGPD ? Qu'est-ce que le Big Data ? Vous pouvez réagir à cet épisode sur notre page Twitter. Voir Acast.com/privacy pour les informations sur la vie privée et l'opt-out. Learn more about your ad choices. Visit megaphone.fm/adchoices

Signal is having a moment. The pandemic drove unprecedented sign-ups on the encrypted messaging app, as people started communicating more online. Then, nationwide protests over police brutality prompted another round of records. Signal saw about one million downloads world-wide in May, according to analytics firm App Annie. Protesters have flocked to the app. Even though people who organize and participate in protests are protected by the First Amendment, they often seek secure communication, out of caution. And if they do get into legal trouble, Signal is designed to limit the information the messaging service can give to the authorities. That is what initially attracted privacy die-hards to Signal. In a 2015 talk, the app’s creator, Moxie Marlinspike, declared, “Privacy is at an all-time low, and surveillance is at an all-time high.” Signal was intended as the antidote. Learn more about your ad choices. Visit megaphone.fm/adchoices

2020 was one hell of a year (literally). Alina Utrata, Mallika Balakrishnan and Kyra Jasper break down some of the things that happened in 2020's technology politics—from the Trump Twitter ban, to content moderation, contact tracing and conspiracy theories, to how we design digital spaces that empower communities and bottom-up approaches to digital justice. Follow Alina Utrata on Twitter.Follow Kyra Jasper on Twitter.Sign up for the Anti-Dystopians newsletter.Articles mentioned in this podcastAxios roundup of all of the digital platforms that have banned Trump or Trump-related content (so far). An anarchist's approach to social media, or how can we empower communities to shape their own digital spaces? Plus, some critiques of the Wikipedia model. For how digital platforms have affected trans folks, the Guardian on Facebook's authentic names policy and Ina Fried on Wikipedia's gender identity style guide.On the power of Facebook's lookalike audience and group recommendations. Stop the Seal groups on Facebook, ads for military gear next to insurrection posts (is this a . . . feature, not a bug?), and racism in Facebook targeted housing adsOn WhatsApp's new policy—why it's bad (spoiler alert: it's giving Facebook your data) and a nice New Yorker feature on Signal co-founder Moxie Marlinspike.More on Maria Ressa and Facebook in the Philippines, Vietnam's threat to shut down Facebook unless it agrees to censorship, and Singapore's COVID-19 contact tracing app.The SEC is investigating Zoom for complying with Chinese censorship requests over Tiananmen square commemorations—and more on Zoom's censorship of Palestinan events. Elon Musk saying that his goal is Mars indentured servitude. Also of note, the space battle shaking down between Elon Musk and Jeff Bezos (it centers around satellite internet for rural communities). Plus, in more inspiring news, the Institute for Self Reliance on community-based broadband networks (they have a great podcast too).And how Selena Gomez emailed Sheryl Sandberg about white supremacy on Facebook. Plus, some lockdown reads! David Runciman's How Democracy Ends (it's actually more optimistic than the title would have you believe, I promise). And Ruha Benjamin's absolutely brilliant book Race After Technology. Nowhere Land by Kevin MacLeodLink: https://incompetech.filmmusic.io/song/4148-nowhere-landLicense: http://creativecommons.org/licenses/by/4.0/ Hosted on Acast. See acast.com/privacy for more information.

Matt rambles about Moxie Marlinspike, two Overton windows, and a country united in despair.

Be sure to subscribe so you get notified of new episodes!Merry Encryptsmas! It’s that wonder time of the year when we get to spend more time with family and friends than any other time of the year. In this episode I address a couple of things. First, I address a subtle and very positive change to something about this podcast (notes below). Second, I address the ways you can use the extra time with family and friends to help spread the message of privacy and liberty. Third, I cover the newest battle in the war on encryption and how we — the People — are winning. Part of that deals with reports that Signal’s encrypted text app service was “broken” by an Israeli tech firm and Signal’s response.Please read the important notes below. A special note from me about a change in the podcast is followed by links referenced in this episode.-----------------------------------------------------------------------------------------------Enemy of the [Surveillance] State is written, produced, and narrated by C. Mitchell Shaw and is listener supported — No ads. No compromise. If you are interested in supporting the show, check out https://www.patreon.com/EnemyOfSurveillance — Anything you can do is greatly appreciated. It takes time, talent, and money to make a show like this. Please consider supporting.On that note, I want to thank the most recent patron of the show, Kevin. This show would not be possible without the support of you, the listeners, and I appreciate it.And as of this episode, I have made the decision to include affiliate links to some of the services and tools I recommend. These are not ads. These are things I have been recommending for some time now — some of those recommendations predate the show. The decision to begin including affiliate links is based on the simple fact that if I can increase the financial support of the show, I can devote more time to producing more and more quality episodes for you. I have heard from many of you that you have taken my recommendations and would have gladly used an an affiliate link, so I am making that option available to you.My promise to you is to NEVER base my recommendations on whether or not I can offer an affiliate link; I will continue to base recommendations on the value of the service or tool, whether or not an affiliate program is available. Period. If you are interested in any of those recommendations and want to support the show in a small way, use the affiliate links I provide, If not, just search for the tool or service and go there directly. I will always make it clear if I include an affiliate link; My relationship to YOU, the listener is important to me — I will NEVER sacrifice that.-----------------------------------------------------------------------------------------------------------Looking for either a great computer or phone that respects and protects your privacy? You will love Purism. I have had Todd Weaver from Purism on the show a couple times and he is the real deal. The company offers the Librem line of devices — from the Librem 14 and Librem 15 laptops to the Librem Mini desktop to the Librem 5 phone. If you use this link (affiliate link), Enemy of the [Surveillance State will make a small profit on your purchase. https://shop.puri.sm/?wpam_id=48For encrypted texts, voice calls, and video calls, check out Signal (not an affiliate link) https://www.signal.org/ And for easy encrypted email, check out ProtonMail (not an affiliate link) https://protonmail.com They also offer a great VPN and other services — including ProtonCalendar and ProtonDrive-----------------------------------------------------------------------------------------------Links mentioned in this episode:Bruce Springsteen Santa Claus is Comin’ to Town:https://www.youtube.com/watch?v=76WFkKp8TjsBBC Article:https://www.bbc.com/news/technology-55412230Celebrite original article:https://web.archive.org/web/20201210150311/https://www.cellebrite.com/en/blog/cellebrites-new-solution-for-decrypting-the-signal-app/Celebrite article redux:https://www.cellebrite.com/en/blog/cellebrites-new-solution-for-decrypting-the-signal-app/Signal’s response (by Moxie Marlinspike)https://signal.org/blog/cellebrite-and-clickbait/TOR Project:https://www.torproject.org/NewPipe Youtube client:https://newpipe.net/-----------------------------------------------------------------------------------------------------------If you enjoy or benefit from this podcast, be sure to subscribe and please consider supporting Enemy of the [Surveillance] State by becoming a patron at https://www.patreon.com/EnemyOfSurveillance, by using affiliate links for things you would have chosen anyway, or by picking up some cool merch at https://teespring.com/stores/eotss-merchThis show is a labor of love, but money helps keep it going and growing.-----------------------------------------------------------------------------------------------------------The theme song was created by Michael Leavitt. If you want (or need) a piece of music that you own the rights to (for a wedding or anything else), check him out. He is the best and is a great guy, too. And he does not pay me to say that.-----------------------------------------------------------------------------------------------------------Follow Enemy of the [Surveillance] State:FacebookTwitterYouTube   

I got Dave Chappelle. Simon gets Jacques Vallee. I guess balance must be restored. Pretty decent week all around, if I must say so. But the big question that burns in the minds of all listeners... did Simon finally give out the elusive 5-Jamie rating??? Doubt it... Enjoy! Moxie Marlinspike: 0:14:16 Matthew Yglesias: 0:53:16 Jacques Vallee & James Fox: 1:31:43 Thanks so much to our sponsor for this episode Betterhelp.com!!! Visit www.betterhelp.com/jree for a 10% discount on your first month! It can tough to seek help. But with BetterHelp.com it is easier than ever. No waiting rooms, no doctor's office. Fully licensed and confidentially help is just a click away. So try Betterhelp.com today! It could change your life...   As always, you can listen to every episode of The Joe Rogan Experience here https://open.spotify.com/show/4rOoJ6Egrf8K2IrywzwOMk Follow us on Instagram here https://www.instagram.com/jreepodcast/ Follow Joe on Instagram here https://www.instagram.com/joerogan Follow Jamie on Instagram here https://www.instagram.com/jamievernon Follow Kamar on Instagram here https://www.instagram.com/kamar_babar/ Follow Floyd on Instagram here https://www.instagram.com/floydeeeee Send us an email here jreepodcast@gmail.com Follow the Subreddit here https://www.reddit.com/r/jreepodcast/ Subscribe to our Youtube channel here https://www.youtube.com/jreepodcast Beats by: Ghettosocks here  https://open.spotify.com/artist/1AeYteGuRWeFyptpSz0y5b Support us here https://www.patreon.com/jreepodcast Free trial of Alpha Brain (US ONLY) https://www.onnit.com/jree

Fill out this survey if you're a fan of the show! http://survey.libsyn.com/jrereview JOE MOVES TO SPOTIFY OFFICALLY! This week we discuss Joe's podcast guests as always. Guest list: Moxie Marlinspike of Signal app & Jacques Vallee and James Fox of the Phenomenon documentary Stay safe.. Enjoy folks! Follow me on Instagram at www.instagram.com/joeroganexperiencereview Youtube: https://www.youtube.com/channel/UC6ilK4Zrqk2ZeowbOo7pXgw? Please email us here with any suggestions, comments and questions for future shows.. Joeroganexperiencereview@gmail.com

Computer security researcher Moxie Marlinspike is the creator of the encrypted messenger service Signal, and co-founder of the Signal Foundation: a nonprofit dedicated to global freedom of speech through the development of open-source privacy technology.

Panelists Pia Mancini | Richard Littauer Guest André Staltz Show Notes Hello and welcome to Sustain! Our special guest today is André Staltz, a self-employed JavaScript wizard from Helsinki, Finland. He’s done a lot of interesting open source work and has been really instrumental in how open source funds individual developers. He tells us about his consulting job and about the great blog post he wrote. We will talk about the cost of software going to zero and what this means. Also, André tells us what he hopes to see in the future for open source. Download this episode now to find out all this and much more! [00:01:01] André fills us in about what he does, how he got started as a developer, and what kind of work he’s currently doing. [00:02:22] André tells us how he came to write his fantastic blog post, “Software Below the Poverty Line” and he goes in depth to explain what it means by open source beneath the poverty line. [00:06:50] Richard wonders if André has done any work looking at how many people in open source actually make money consulting and don’t make money from selling their open source at all. [00:09:52] Pia asks André how you make the argument of more money going into this ecosystem if the cost is going to zero and he explains. [00:16:30] André touches on something very important that’s connected with time, which is attention, which he states is something you can monetize. [00:23:48] Richard wonders if the cost of software is going down so much just because the cost of production is going down so much. [00:30:35] André tells us what he wants out of his open source work and what he’s interested in. [00:35:06] Find out where you can locate André on the internet and look at cool stuff he does. Spotlight [00:32:33] Pia’s spotlight is Crowdin, an open source solution for localization management. [00:33:19] Richard’s spotlight is Moxie Marlinspike, who got him into sailing. [00:34:17] André’s pick is a library called Neon Bindings, which allows you to bridge between Rust and Node.JS. Links André Staltz Website (https://staltz.com/) “Software Below the Poverty Line”-Blog post (https://staltz.com/software-below-the-poverty-line.html) Crowdin (https://crowdin.com/) Moxie Marlinspike Website (https://moxie.org/) Neon Bindings (https://neon-bindings.com/) Neon Bindings-GitHub (https://github.com/neon-bindings/neon) Credits Produced by Richard Littauer (https://www.burntfen.com/) Edited by Paul M. Bahr at Peachtree Sound (https://www.peachtreesound.com/) Show notes by DeAnn Bahr at Peachtree Sound (https://www.peachtreesound.com/) Special Guest: André Staltz.

Hello and welcome to Sustain! On today's episode, we have special guest, Nadim Kobeissi, who runs a small company in Paris called Symbolic Software. We are going to find out how Nadim got into doing security and cryptography and all about his new project called Verifpal. We will also learn more about PEPP-PT effort, RustTLS's code, Cure53, and we discuss the effectiveness of the Code of Conduct. Download this episode to find out all this and much more! [00:00:45] Nadim tells us what Symbolic Software does and how he got into doing security and cryptography. He also tells us he's working on another project called Verifpal. [00:06:28] On the topic of Verifpal, Nadim tells if he plans on building services around that with his consultancy or if it's strictly use it at your own discretion. [00:08:45] Richard asks Nadim to talk about what's been going on in the world of cryptographically analyzing contract tracing apps and how they deal with privacy and what his thoughts are. He explains the PEPP-PT effort. [00:19:47] Richard talks about contact apps being very useful for authoritarian regimes and privacy issues with Zoom. Nadim has a story about what they are doing in China with drones. [00:25:20] Justin wants to know what Nadim did for RustTLS, how did he get paid, and what is Cure53? [00:31:02] Nadim tells us his thoughts of the effectiveness of COC (Code of Conduct). [00:40:17] Nadim has a great story about being approached while walking on the street by a Green Peace guy and Red Cross. [00:42:32] Nadim talks about technology and it doesn't have to be tribal and maybe it could be political. [00:43:40] Nadim lets us know where we could find him on the internet. Spotlight: [00:44:17] Justin's spotlight Youper-a pocket AI therapist. [00:44:35] Eric's spotlight is the resume.io. [00:45:00] Richard's spotlight is Moxie Marlinspike's website, specifically his yacht stories. [00:45:58] Nadim's spotlight is a book called, Database Internals: A Deep Dive into How Distributed Data Systems Work by Alex Petrov. Panelists: Richard Littauer Justin Dorfman Eric Berry Guest: Nadim Kobeissi Quotes: [00:02:41] "What government told you…no, no, no, I was just poking fun at the fact that we had really severe security vulnerabilities and the Australian government at one point issued an advisory." [00:18:29] "It confirms a lot of my worst fears in a way that's very visceral and dramatized with a multimillion-dollar budget behind it." [00:18:48] "There's a saying at Google that in order to get promoted at Google you have to create a chat app." [00:19:58] "A friend of mine was saying it looks like China has been particularly good at dealing with their population and COVID, and I'm like yeah, it's been really good at dealing with it if you only qualify certain amounts of people as citizens." [00:29:00] "Personally, I don't think I could have written code this good myself." [00:31:32] "The code of conduct, I don't think there's anything bad about them." [00:33:55] "As a maintainer of my own open source project, I would love to have a code of conduct for contributors." [00:35:38] "Putting a code into your repo doesn't do anything by itself most of the time." [00:39:53] "One final thing I feel that is a bit problematic is that you find yourself in a position where by simply having any criticism at all, you already have to defend yourself as not being morally in a gray area or criticizing some sort of greater good." [00:42:48] "There's a lot of tribalism that's entering open source software." *Links: * Nadim Kobeissi-Website (https://nadim.computer/) Cure53 (https://cure53.de/) Symbolic Software (https://symbolic.software/) Verifpal (https://verifpal.com/) DP3T-Decentralized Privacy-Preserving Proximity Tracing (https://github.com/DP-3T/documents) Pan-European Privacy-Preserving Proximity Tracing (https://en.wikipedia.org/wiki/Pan-European_Privacy-Preserving_Proximity_Tracing) Exposure Notification (https://en.wikipedia.org/wiki/Exposure_Notification) RustTLS (https://github.com/ctz/rustls) Youper (https://www.youper.ai/) Resume.io (https://resume.io/) Moxie Marlinspike Stories-Website (https://moxie.org/stories.html) Database Internals: A Deep Dive into How Distributed Data Systems Work by Alex Petrov (https://www.amazon.com/s?k=database+internals+a+deep+dive+into+how+distributed+data+systems+work&crid=2XN4QPC62PNB4&sprefix=database+internals%2Cfashion%2C153&ref=nb_sb_ss_i_4_18) Black Mirror-Netflix (https://www.netflix.com/title/70264888) Special Guest: Nadim Kobeissi.

Welcome! Today Craig’s got a deep-dive into Anti-Virus software. Which should you use? What is anti-Virus’s pioneer saying? What’s the future? For more tech tips, news, and updates visit - CraigPeterson.com --- Read More: Zoom defenders cite legit reasons to not end-to-end encrypt free calls --- Automated Machine-Generated Transcript: If you're like most people in the online world you have used zoom, you might even have put it in place for your business. They've now come out and said they are going to have end-to-end encryption. What's this all about? [00:00:17] Hi everybody. Craig Peterson here. Welcome back. Thanks for joining us. We're going to talk a little bit about zoom right now. You've heard me. I'm sure. Talked about it before and how I am constantly nagging you guys that if you are a business, you should not use zoom for anything that might be proprietary. [00:00:42] Zoom has been nailed and criticized multiple, multiple times. Zoom has been caught, lying about doing encryption more than once. Zoom was caught routing customer calls through China. Can you imagine that you're using Zoom? You're a business and your calls are going to China. They were caught installing a server on the Mac iOS application platform. [00:01:12] Now this is really, really something. This was the final straw. This is where we absolutely laid down the law with our employees and our customers. You may not use Zoom. Even if you installed zoom from Macko Wes zoom had a piece of software that constantly phoned home information. Even after you want to install the Mac zoom application, this list just goes on and on. [00:01:44] If you bought a higher-end zoom system for your business. And you had one of their controllers in your office, you know, a physical piece of hardware server. It had a brand it's his crazy, basically a zero-day back door wide open that they had put in purposely. That exposed every device on your network to hackers on the internet, anybody on the internet, can you believe that it's absolutely crazy. [00:02:21] Another company we were at just this week, we were doing some analysis, replacing firewalls with something much, much, much better. And. We're looking at the firewall configuration. Right? Cause you want to do that. You want to make sure, okay. We're putting in a new firewall that has way more features that can monitor what's going on. [00:02:42] That's going to block evilness. That's going to keep itself up to date. Right? All things that the basic firewalls that you buy online are not gonna be able to do for you. So we're looking at the configuration of their existing firewall. Now imagine our shock and amazement. When we saw that the firewall had a port wide open, the HTTPS port, the port you would use for a server that had the port wide open from the outside world. [00:03:15] In other words, anybody can connect to it. And that connected directly to their database server internally to SQL server, which wasn't even patched up. It's absolutely incredible. What's going on? We've got to pull up our socks. You have to do an audit. You know, I think I might do that again. What about a year and a half ago we had over a thousand people. [00:03:41] That we did free cyber health assessments for a lot of them were just home users, a number of businesses. And I have already sent out an email to businesses on my email list saying, Hey, listen, I will pay to have some of my security people talk to you now. Obviously we got to schedule it and everything else, but, um, Talk to you and fix your problems, not sell you a thing. [00:04:06] These are fire jumper, certified security people. Okay. They know what they're doing, but zoom, this is what they're doing. Right. And on top of it, they have most of the development done in China. So the developers aren't costing them hardly anything. Can you believe this? Right? It's a, it's easy to use, but it is a security. [00:04:29] Nightmare. What we use is WebEx teams. That's what we install for our clients. We have WebEx teams, phones. We have WebEx teams, apps on all of our smart devices, right. That's what we use. It is secure and to, and we actually control the security where we have the security keys and everything else. [00:04:53] So it has some of the highest levels of security on it. That's what we use. If you're not going to use WebEx teams, you might consider using Microsoft teams, which is okay. But again, Microsoft misrepresents, just like we talked about Google, uh, the, the levels of security you have. Now, if you dig into the documentation, Microsoft is going to be telling you the truth. [00:05:20] Okay. They're not lying, but the marketers. Excuse me. They just don't understand this stuff well enough, frankly, to make marketing materials because they end up misrepresenting. It goes on and on. Anyhow. So if you have looked. In Twitter, for instance, and you keep track of security stuff. Cause I know a lot of you guys you're the best and the brightest out there, you are watching some of these security conversations that are going on over on Twitter, but you've, I'm sure seen zoom just ripped. [00:05:56] Ripped ripped for his plans to enable end to end the encrypted video. What they're doing right now is an encrypted video from your computer using their 256-bit key, which is, uh, not great, but they encrypt it to their servers. And basically anybody can hop onto any of these zoom calls or they put a few things in place. [00:06:19] That's going to make it a little bit easier, a little bit better. But what they're saying is we're going to add end to end encryption and they have put a document up on Github, which is a website that's used by open source developers, zooms, put a document up there saying, okay, this is what we're planning on doing. [00:06:37] For our security strategy. What do you guys think? We'll see what happens, but Zoom is only going to be providing this end to end encryption for the video and audio and files for their paid customers. So when I looked around a little bit, I found our friends over at the electronic found frontier foundation, really complaining about this. [00:07:04] Because what they're saying is the people that cannot afford to have their messages exposed, cannot afford to pay for the encryption, the quote, right from their site here, we applaud zoom for building strong. And to end encryption into their service, but by limiting this security enhancement to pay the accounts, Zoom is denying privacy protections to the participant who may need them most. [00:07:38] And of course, they're talking about people primarily in third world countries. And giving people special access. Like if, if they gave the FBI or local law enforcement special access to these encrypted sessions, if it's available to one government it's available to more than one government. Right. And so they're concerned about that too. [00:08:01] And I, I think that's absolutely legitimate to be concerned about that, but. We'll see what happens here because what zoom is planning on doing is only having this end to end encryption for the paid accounts because they do not want these pedophiles. And some of the terrorists here are domestic terrorists in the US as well as internationally zoom doesn't want them using their platform to plot. [00:08:30] Plan coordinate, organize, et cetera. Now I talked earlier about signal and what signal is doing and Signal is end to end encrypted, no matter what, right. It is absolutely free. And that's what Moxie Marlinspike put out and why he did it. WhatsApp is the same way, but, uh, well, we'll see what happens with zoom because they're figuring, Hey, if you are paying for an account, You have a credit card that you're paying with there's some way of pain and that can be tracked by law enforcement if they need to track it. [00:09:07] So we'll just leave it at that, right. It's going to make it easy enough. And if you're not paying for it, which is how most of these pedophiles and others are apparently doing it. Do you using free accounts while then you get what you deserve? So don't use Zoom. I can't trust them. They've lied to us again and again and again. [00:09:26] And it's been proven multiple times. They're under investigation right now by a couple of federal agencies for some of these lies and misrepresentations. Don't use zoom use WebEx teams, which is what we use. And we use it with our customers, or maybe look at Microsoft teams, stick around. We've got I'll wrap up. [00:09:50] And one more thing. When we get back, you're listening to Craig Peterson on WGAN. --- More stories and tech updates at: www.craigpeterson.com Don't miss an episode from Craig. Subscribe and give us a rating: www.craigpeterson.com/itunes Follow me on Twitter for the latest in tech at: www.twitter.com/craigpeterson For questions, call or text: 855-385-5553

Last month, the cryptographer and coder known as Moxie Marlinspike was getting settled on an airplane when his seatmate, a midwestern-looking man in his 60s, asked for help. He couldn't figure out how to enable airplane mode on his aging Android phone. But when Marlinspike saw the screen, he wondered for a moment if he was being trolled: Among just a handful of apps installed on the phone was Signal.

Our panel returns with more rants on Citrix, how nobody really understands ECC, Moxie Marlinspike’s talk at 36c3, and the debate about sharing open source attack tools.  Try to guess who was drunk.   Talks we mention in this episode: Surveillance of Assange: https://media.ccc.de/v/36c3-11247-technical_aspects_of_the_surveillance_in_and_around_the_ecuadorian_embassy_in_london Unpublished Moxie Marlinspike talk: https://peertube.co.uk/videos/watch/12be5396-2a25-4ec8-a92a-674b1cb6b270  Boeing 737 Max crashes talk: https://media.ccc.de/v/36c3-10961-boeing_737max_automated_crashes Be … Continue reading "Weaponizing Side Effects Of Consciousness"

This week, William Budington chats with Bursts about the recent exposé published by Yael Grauer at The Intercept about research by Exodus and Yale Research Group leading to the findings that hundreds of common apps available from the Android Google Play Store contain clandestine tracking apps, allowing for the scooping up of the data a phone user gives off throughout their use of the device.  Ever wonder why a free flashlight app needs permission to access your microphone?  Here's why! We also chat a bit about F-Droid, a platform for free and open-source apps outside of the Play Store, many designed at increased transparency of device usage. At one point, Bursts brings up criticisms aired about the F-Droid repository by Moxie Marlinspike, a founder of Open Whisper Systems, which makes the Signal App for free end-to-end encryption. William is kind enough to explain what the concerns come from and his views on the subject. Like this show?  Rate us on I-Tunes or dop us an email, check out other Error451 episodes or our regular feature, The Final Straw Radio. Oh, and you should know better than to be on social media, but if you are willfully ignorant, we are findable on fedbook, instagram and twitter. track heard: Ugh! Your Ugly Houses! by Chumbawamba from the album "Swingin' With Raymond"

Alex Marthews and Muska Yousuf premiere as new adjunct hosts of the Privacy Patriots podcast. This episode’s PATRIOT is Moxie Marlinspike of OpenWhisper Systems, and this episode’s PARIAH is Mike Pompeo. The Patriots talk about the Muslim Ban… Privacy issues for non-citizens… the EU-US Shield Agreement… The social media surveillance program in Boston… and more!   … Continue reading Episode 4 – GUEST: Gregg Housh, Activist & Former Anon

Melinda Epler (@changecatalysts) is Founder and CEO of Change Catalyst, a certified B Corp whose mission is to empower diverse, inclusive and sustainable tech innovation through education, mentorship and funding. Change Catalyst won a Certified B Corporation "Best for the World” award for community impact in 2014 and “Best in the World” overall in 2015. Melinda has more than 20 years of experience elevating brands and developing business innovation strategies for social entrepreneurs, mature social enterprises, Fortune 500 companies and global NGOs. As Founder & CEO of Change Catalyst, Melinda empowers diverse, inclusive and sustainable tech innovation through events, education, mentorship and funding. Through Tech Inclusion, an initiative of Change Catalyst, she partners with the tech community to solve diversity and inclusion together. Her work spans the full tech ecosystem, from Education to Workplace, Entrepreneurship and Policy. Melinda speaks, mentors and writes about diversity and inclusion in tech, social entrepreneurship, women entrepreneurs and investing. She is also an award-winning documentary filmmaker – her film and television work includes projects that exposed the AIDS crisis in South Africa, explored women's rights in Turkey, and prepared communities for the effects of climate change. She has worked on several television shows, including NBC's The West Wing. In this episode, we discussed: building bridges toward inclusiveness in tech after a damaging and divisive presidential campaign season key areas the diversity and inclusion and policy communities should focus on in a Trump administration. Resources Insight Timer Headspace Tara Brach Nonviolent Communication: A Language of Life by Marshall B. Rosenberg NEWS ROUNDUP Defense Secretary Ashton Carter, Director of National Intelligence James Clapper, and members of the intelligence community want President Obama to fire National Security Agency Director Admiral Mike Rogers, according to Ellen Nakashima at The Washington Post. Clapper and Rogers cite numerous instances of security breaches under Rogers' watch, including one by Booz Allen Hamilton contractor Harold T. Martin III, who was arrested in August for the largest ever theft of classified government data. There was also another breach in 2015 allegedly carried out by an individual whose name has not been disclosed, but who has since been arrested. President-elect Trump is considering putting Rogers in charge of all 17 U.S. intelligence agencies, and Congressional Republican leaders have come out in support of Rogers, including California Representative David Nunes who also serves on Trump's transition team, who praised Rogers in the Washington Post. Rodgers is also the head of U.S. Cyber Command. Ash Carter has not been impressed with Rogers' performance in that role, either, as the cyber command's operations in Syria and Iraq have been largely unsuccessful, according to Carter. Further annoying Carter and Clapper is the fact that Rogers met with Trump last week unbeknownst to the White House. Further complicating matters, Clapper and Carter are also looking to split Cyber Command from the National Security Administration, a move opposed by Senate Republicans including John McCain. Meanwhile, as Mallory Shelbourne at The Hill reports, at a news conference in Peru last week, President Obama called Rogers a "patriot". In separate comments, Obama told German newspaper Der Spiegel that he had no plans to pardon Edward Snowden. The president said Snowden would first need to appear before a court. -- Mark Jamison, a member of Trump's tech policy transition team, suggested in a blog post last week that maybe the FCC shouldn't exist. Jamison wrote, "Most of the original motivations for having the FCC have gone away." He also said there are few monopolies in telecom, an assertion with which FCC Chairman Tom Wheeler has disagreed. Brian Fung has this story in the Washington Post. -- A new Stanford University report found that most students from Middle School to college are unable to tell the difference between sponsored content and real news. The study of 7,804 students found 82% could not tell what was sponsored and what was real. Seventy percent of middle schoolers also found no reason to distrust a finance article that was written by the CEO of a bank. Amar Toor has the story on The Verge. -- Downloads of the encrypted messaging app Signal have soared by 400% since Donald Trump's election, according to Signal founder Moxie Marlinspike. Governments have the ability to tap unencrypted text messages for intelligence gathering. Paresh Dave has the story in the LA Times. -- Following a successful effort to get the FCC to clear its entire November meeting agenda, House Energy and Commerce Committee Chairman Fred Upton and Senate Commerce Committee Chair John Thune have now asked Federal Trade Commission Chair Edith Ramirez and Consumer Product Safety Commission Chair Elliott Kaye not to move forward on any controversial regulations. Upton and Thune wrote that the American people decided to make a change on November 8th and that agencies should this refrain from passing new regulations. Trump, of course, lost the popular vote by over 2 million. -- Finally, FCC Commissioner Ajit Pai issued a statement last week praising Trump's Department of Justice nominee Jeff Sessions. The Washington Post reports that Sessions is widely seen as a climate change skeptic and his entire career has been dogged by accusations that Sessions is a virulent racist, which cost him a federal judgeship back in '86. Sessions has been quoted as saying that he thought the Ku Klux Klan was "okay, until he learned that they smoked marijuana." Pai is reportedly on the short list to become Trump's nominee to Chair the FCC.  

#162. Moxie Marlinspike is a legend in tech. As a programmer, he literally wrote the code that enables everyday encryption. He’s friendly with Edward Snowden and was recently feature in WIRED magazine. Moxie, though, is a sailor at heart. I worked together with him at Broadreach way back in 2008. We caught up to talk about his unique sailing philosophy, his movie ‘HOLD FAST’ & his rise in the tech world. If you’ve followed the news even tangentially, you’ll have heard about encryption. Remember Edward Snowden? His revelations about the FBI’s mass collection of data from everyday Americans set off a wave of stories centered around personal privacy & national security. Today’s guest is at the center of that debate - Moxie Marlinspike, almost single-handedly invented everyday encryption, and his code was recently implemented in WhatsApp and Facebook’s new ‘secret’ Messenger service. If you’re interested in this sort of thing at all, I highly recommend watching the documentary about Snowden called Citizen Four, and reading the recent WIRED Magazine profile on Moxie, which you can easily find on Google, or I’ll link it in the show notes. -- This episode is sponsored by Forbes Horton Yachts. Visit his online inventory and get in touch to buy or sell your next boat at forbesyachts.com.

This week on the show, we will be interviewing GNN of the FreeBSD project to talk about the new TeachBSD initiative. That plus the latest BSD headlines, all coming your way right now! This episode was brought to you by Headlines FreeBSD 10.3-RELEASE Announcement (https://www.freebsd.org/releases/10.3R/announce.html) FreeBSD 10.3 has landed, with extended support until April 30, 2018 This is likely to be the last extended support release, as starting with 11, the new support model will encourage upgrading to the latest minor version by ending support for the previous minor version approximately 2 months after each point release. The Major version / stable branch will still be supported for the same 5 year term. This will allow the FreeBSD project to move forward more quickly, while still providing the same level of long term support The UEFI boot loader is much improved, and now supports booting root-on-ZFS, and the beastie menu The beastie menu itself has been updated with support for ZFS Boot Environments The CAM Target Layer (CTL) now supports High Availability, allowing the construction of much more advanced storage systems The 64bit Linux Emulation Layer was backported Reroot support was added, allowing the system to boot off of a minimal image, such as a mfsroot and then reload all of userland from a different root file system (such as iSCSI, NFS, etc) The version of xz(1) has been updated to support multi-threaded compression sesutil(8) has been introduced, making it easier to manage large storage nodes Various ZFS updates As usual, a huge number of driver updates are also included *** How to use OpenBSD with Libreboot: detailed instructions (https://lists.nongnu.org/archive/html/libreboot/2016-04/msg00010.html) This tutorial covers installing OpenBSD on a Thinkpad X200 using Libreboot, a replacement for the traditional BIOS/firmware that comes from the manufacturer “Since 5.9, OpenBSD supports EFI boot mode, which means that it also have had to support framebuffer out of the box, so lack of proprietary VGA BIOS blob is no longer a problem and you can boot it with unmodified Libreboot binary release 20150518.” “In order to install OpenBSD on such a machine you will need someadditional preparations, since regular install59.fs won't work because bsd.rd doesn't have a framebuffer console.” A few extra steps are required to get it going, but they are outlined in the post This may be very interesting to those who prefer not to depend on binary blobs *** Linking the FreeBSD base system with lld -- status update (http://lists.llvm.org/pipermail/llvm-dev/2016-March/096449.html) The FreeBSD Foundation's Ed Maste provides an update on the LLVM mailing list about the progress of replacing the GNU linker with the lld in the FreeBSD base system “I'm pleased to report that I can now build a runnable FreeBSD system using lld as the linker (for buildworld), with a few workarounds and work-in-progress patches. I have not yet extensively tested the result but it is possible to login to the resulting system, and basic sanity tests I've tried are successful. Note that the kernel is still linked with ld.bfd.” Outstanding Issues Symbol version support (PR 23231). FreeBSD uses symbol versioning for backwards compatibility Linker script expression support (PR 26731). The FreeBSD kernel linker scripts contain expressions not currently supported by lld Library search paths. GNU LD automatically searches /lib, and lld does not the -N flag makes the text and data sections RW and does not page-align data. It is used by boot loader components. The -dc flag assigns space to common symbols when producing relocatable output (-r). It is used by the /rescue build, which is a single binary assembled from a collection of individual tools (sh, ls, fsck, ...) -Y adds a path to the default library search path. It is used by the lib32 build, which provides i386 builds of the system libraries for compatibility with i386 applications. With the ongoing work, it might be possible for FreeBSD 11 to use lld by default, although it might be best to wait to throw that particular switch *** Your favorite billion user company using BSD just flipped on encryption for all their users -- and it took 15 Engineers to do it (http://www.wired.com/2016/04/forget-apple-vs-fbi-whatsapp-just-switched-encryption-billion-people/) With the help of Moxie Marlinspike's Open Whisper Systems, WhatsApp has integrated the ‘Signal' encryption system for all messages, class, pictures, and videos sent between individuals or groups It uses public key cryptography, very similar to GPG, but with automated public key servers It also includes a system of QR codes to verify the identity of individuals in person, so you can be sure the person you are talking to is actually the person you met with WhatsApp runs their billion user network, using FreeBSD, with only about 50 engineers Only 15 of those engineers we needed to work on the project that has now deployed complete end-to-end encryption across the entire network The Wired article is very detailed and well worth the read *** Interview - George Neville-Neil - gnn@freebsd.org (mailto:gnn@freebsd.org) / @gvnn3 (https://twitter.com/gvnn3) Teaching BSD with Tracing News Roundup Faces of FreeBSD 2016: Scott Long (https://www.freebsdfoundation.org/blog/faces-of-freebsd-2016-scott-long/) It's been awhile since we've had a new entry into the “Faces of FreeBSD” series, but due to popular demand it's back! This installment features developer Scott Long, who currently works at NetFlix, previously at Yahoo and Adaptec. Scott got a very early start into BSD, first discovering i386BSD 0.1 on a FTP server at Berkeley, back at 1992. From there on it's been a journey, following along with FreeBSD since version 1.0 in 1993. So what stuff can we blame Scott for? In his own words: I've been a source committer since 2000. I got my start by taking over maintainership of the Adaptec ‘aac' RAID driver. From 2002-2006 I was the Release Engineer and was responsible for the 5.x and 6.x releases. Though the early 5.x releases were not great, they were necessary stepping stones to the success of FreeBSD 6.x and beyond. I'm exceptionally proud of my role in helping FreeBSD move forward during that time. I authored and maintained the ‘mfi' and ‘mps' storage drivers, the ‘udf' filesystem driver, and several smaller sound and USB drivers. I've maintained, or at least touched, most of the storage device drivers in the system to some extent, and I implemented medium-grained locking on the CAM storage stack. Recently I've been working on overall system scalability and performance. ASCII Flow (http://asciiflow.com/) A website that lets to draw and share ASCII diagrams Great for network layout maps, rack diagrams, protocol analysis etc Use it in your presentations and slides Sample (https://drive.google.com/open?id=0BynxTTJrNUOKeWxCVm1ERExrNkU) *** System Under Test: FreeBSD (http://lowlevelbits.org/system-under-test-freebsd/) Part of a series looking at testing across a number of projects Outlines the testing framework of FreeBSD Provides a mini-tutorial on how to run the tests There are some other tests that are now covered, but this is due to a lack of documentation on the fact that the tests exist, and how to run them There is much ongoing work in this area *** Worst April Fools Joke EVER! (http://www.rhyous.com/2016/04/01/microsoft-announces-it-is-acquiring-freebsd-for-300-million/) While a bad April Fool's joke, it also shows some common misconceptions The FreeBSD Foundation does not own the source repository, it is only the care taken of the trademark, and other things that require a single legal entity OpenBSD and NetBSD are not ‘sub brands' of FreeBSD Bash was not ported to Windows, but rather Windows gained a system similar to FreeBSD's linux_compat It would be nice to have ZFS on Windows *** Beastie Bits Credit where credit's due... (https://forums.freebsd.org/threads/55642/) M:Tier's OpenBSD packages and binpatches updated for 5.9 (https://stable.mtier.org/) NYC BUG Meeting (2016-04-06) - Debugging with LLVM, John Wolfe (http://www.nycbug.org/index.cgi) Need to create extremely high traffic loads? kq_sendrecv is worth checking out (http://lists.dragonflybsd.org/pipermail/commits/2016-March/459651.html) If you're in the Maryland region, CharmBug has a meetup next week (http://www.meetup.com/CharmBUG/events/230048300/) How to get a desktop on DragonFly (https://www.dragonflybsd.org/docs/how_to_get_to_the_desktop/) Linux vs BSD Development Models (https://twitter.com/q5sys/status/717509675630084096) Feedback/Question Paulo - ZFS Setup (http://pastebin.com/raw/GrM0jKZK) Jonathan - Installation (http://pastebin.com/raw/13KCkhMU) Andrew - Career / School (http://pastebin.com/wsx90L2m)

Moxie Marlinspike is the founder of Open Whisper Systems which is both a large community of Open Source contributors, as well as a small team of dedicated developers. Together, the members of Open Whisper Systems is working to advance the state of the art for secure communication, while simultaneously making it easy for everyone to use. Moxie works on secure protocols, Android clients, and server software. He has been contributing to Open Whisper Systems since it was Whisper Systems, formerly ran the product security team at Twitter, started the first cloud-based password cracking service. He has also published a number of attacks on secure protocols like SSL and MS-CHAPv2. He has been a keynote speaker at past OWASP and other security conferences.

Vi snackar säkerhet. Fredrik och Tobias har varit på endagarssäkerhetskonferensen Next generation threats 2014 och vi diskuterar utifrån konferensens innehåll säkerhet, integritet, malware och kryptering. Som avslutning snackar vi om det nyupptäckta Shellshock-problemet med Bash. Diskutera gärna avsnittet på Techworld! Länkar Techworld, som vi samarbetar med Next generation threats 2014 Christopher Soghoyan ACLU - American civil liberties union NSA Edward Snowden Apple och integritet Daring fireball - FBI and Police Departments Endorse Apple’s Full Device Encryption Power of defaults Alla iOS-enheter krypteras Apple har inte nyckeln från iOS 8 och framåt Bitlocker - hårddiskkryptering inbyggd i Windows x86-processorerna Secure enclave - säkerhetskretsen i de senaste iPhone-modellerna Entropi när det gäller kryptografi DRM - digital rights management, tekniker för att misslyckas med att skydda upphovsrättsinnehavares rättigheter, oftast genom att försämra livet för betalande kunder False positives Runa Sandvik Freedom of press foundation Securedrop Wikileaks “NSA proof” Morgan Marquis-Boire EFF Secure domain foundation DNS - Domain name system Marion Marschalek Zeus-trojanen Incident response - att reagera på och hantera säkerhetsincidenter Microsoft security essentials - gratis antivirusprogram för användare av Windows XP, Vista och 7 Zero-day exploit - attack som utnyttjar ett tidigare okänt säkerhetshål Heuristics - erfarenhetsbaserade tekniker för att hitta tillräckligt bra lösningar på problem John McAfee Robin Blokker FRA - Försvarets radioanstalt Moxie Marlinspike Open whisper systems - Moxies organisation PGP - Pretty good privacy, mjukvara för kryptering OTR - Off the record, protokoll för kryptering av direktmeddelandekonversationer Diffie-Hellman - metod för utbyte av kryptografiska nycklar Trevor Perrin Presentation av Moxie Marlinspike om att lösa CA-problemet Bash Shellshock Miljövariabler rm -rf / - terminalkommando som tar bort allt innehåll på hårddisken Apache - populär och öppen webbserver CGI - API mellan en webbserver och program som kan generera innehåll åt den Processer som kan användas för att utnyttja säkerhetsproblemet Första patchen av bash räckte inte Shellshock kan även nyttjas via DHCP POSIX - standardfamilj för kompatibilitet mellan operativsystem Googles project zero Heartbleed - säkerhetshål i OpenSSL som uppmärksammades i april 2014 Matrix Operativsystemet Temple sprintf - c-funktion som skriver formatterad data till en sträng Off-by-one-fel Titlar Frihetssällskapet Inte bara doom-and-gloom-snacket Att inte ha nyckeln gör det väldigt svårt att dela ut den Slentrianextraktion av din data Helt okrypterad i en databasdump Det svåra med säkerhet är att säkerhet är svårt Att kämpa mot sig själv Per definition reaktivt Det kanske är lika bra det De säkerhetsföretag som vill överleva Det vi oroar oss mest för i säkerhetsbranschen VDn har en supersäker telefon Alla nycklar till hela slottet Den som ingen tänker på Ett enkelt problem när man vet vad det är En feature som alla har glömt fanns där Verkligen ett gigantiskt hål En POSIX/Unix-värld När det skrevs så fanns i princip inte internet Såhär rapporterar media om allt Ett käckt namn och en häftig slogan Modern alkemi Koncentrationen skulle vara på topp, eller frustrationen

And now for your downloading enjoyment we have Moxie Marlinspike as he shares with us the going ons at Whipser Systems and attempts to make Android do the right thing. Don't miss a discussion on finding Mary Jane on a beach and in the middle of the ocean. Of course we have Security news and review of this week in the blog.. Episode 245 Show Notes Episode 245 part 2 Direct Audio Download All the Paul's Security Weekly episodes on our Bliptv archives. Hosts: Paul Asadoorian,Carlos Perez,Larry Pesce Audio Feeds: