"Are Xiaomi browsers spyware? Yes, they are…"
"Avoiding npm substitution attacks"
"Common Nginx misconfigurations"
"Total Cookie Protection, works by maintaining a separate “cookie jar” for each website you visit."
"... ByteDance's censorship machine"
"Malware in open-source web extensions"
"The "P" in Telegram stands for Privacy"
And like others have said, the "s" stands for security.
"What happens if malicious code is uploaded to npm under these names? Is it possible that some of PayPal’s internal projects will start defaulting to the new public packages instead of the private ones?"
"For instance, the main culprit of Python dependency confusion appears to be the incorrect usage of an “insecure by design” command line argument called --extra-index-url."
"Why npm lockfiles can be a security blindspot for injecting malicious modules"
I would say this also applies to other languages and package managers.
"Growth, where it no longer serves a purpose beyond the accumulation of more growth — in the form of investors’ returns, company coffers and the personal wealth of founders — is worshipped. And the cost is astronomical."
Element on Google Play Store - https://element.io/blog/element-on-google-play-store/
"Heap-based buffer overflow in Sudo (CVE-2021-3156)"
"The right way to turn off your old APIs"
Full-stack developer, advocate of a free, secure and safe Internet. Nature lover and sports enthusiast.
[Header photo by Colin Watts, source Unsplash]
This is a personal and private instance.