Create accountLogin

Recent searches

No recent searches

Search options

Only available when logged in.
ioc.exchange is one of the many independent Mastodon servers you can use to participate in the fediverse.
INDICATORS OF COMPROMISE (IOC) InfoSec Community within the Fediverse. Newbies, experts, gurus - Everyone is Welcome! Instance is supposed to be fast and secure.

Administered by:

Server stats:

1.6K
active users

ioc.exchange: AboutStatusProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.3.4

#privacy

847 posts480 participants4 posts today
Public
Jonathan Steele

Paul Schrader faces allegations of sexual assault from a former assistant, with claims of failing to uphold settlement agreements. His lawyer denounces the lawsuit as frivolous. This case raises important questions about accountability and privacy in workplace relationships. What are your thoughts on the legal implications? #MeToo #Privacy

Read more: steelefamlaw.com/0zh7Pb

Vulture · Paul Schrader Accused of Sexually Assaulting an Ex-AssistantBy Jennifer Zhan
Public
Terra (Some Simple Security)

Using a #VM is great if you want to try out a new system, but its security can only be as good as the computer it's running on.

So when you see me use a VM, I expect that my #privacy and #security are only as good as the weakest link.

#Tails was the strongest link in this video:
theatlantic.com/politics/archi

The Atlantic · The Trump Administration Accidentally Texted Me Its War PlansBy Jeffrey Goldberg
Public
ferricoxide

So, one of the nice things about Android phones is it's multiple user profile support. If you create a second user, you can quickly make it look like your phone has a very innocuous data payload – at least if the person "inspecting" your phone isn't terribly savvy.

I mean, I wouldn't rely on what amounts to #security through obscurity to protect me if I were planning to do something that might get digital forensics personnel examining it. However, easing my clearing of a TSA checkpoint or being able to bluff a random cop (the kind of cop that relies on qualified immunity to not get prosecuted for violating the laws they're meant to be enforcing) during a brief interaction? Possibly.

#privacy

Public *
Dissent Doe :cupofcoffee:

Today's reminder of the insider threat involves a pharmacist in Maryland who over a period of 8 years or more, used keyloggers and installed spyware on about 400 computers at the University of Maryland Medical System so he could spy on female co-workers in private moments at work (such as changing clothes, breastfeeding their babies), and in their homes. He was reportedly fired in October 2024, and was able to get another job in another healthcare facility in Maryland because there has been no criminal charges filed against him yet and UMMS apparently didn't alert his new employer.

If Maryland law is like my state's laws, the hospital may be barred legally from revealing what happened if asked for a recommendation by the new employer. And it seems the Maryland state pharmacy board can't just suspend a license unless there's been a conviction, so the failure to have criminal charges filed already seems to have put more potential victims at risk.

Unsurprisingly, a potential class action lawsuit has already been filed against UMMS with six plaintiffs so far. There are estimates that there are more than 80 victims of the now-former employee.

Some of the media coverage on the case: thedailyrecord.com/2025/04/04/

Maryland Daily Record · Six women sue UMMS, claiming staffer spied on them after security breachBy Ian Round
#InsiderThreat#keylogger#workplace
Replied in thread
Public
Sean O'Brien

@evangreer @fightforthefuture.org @bsky.app @guardianproject @internetarchive @torproject @signalapp @session @simplex @freedomofpress @eff @privacysafe
💪 These tools are 100% #OpenSource #FOSS with no tracking and no ads. Just free #privacy infrastructure. More @privacysafe apps are coming. Subscribe to bitsontape.com and follow @bitsontape so you're the first to know!

We build and boost the tech that protects the #movement

bitsontape.comBits On Tape | Sean O'Brien | SubstackThe Best Bytes of Stories & Insights. Twice-weekly replay of science & technology news by cyber experts. Put to screen by Sean O’Brien, founder of Yale Privacy Lab. Click to read Bits On Tape, a Substack publication with thousands of subscribers.
Public
Lynette

sadly, no mention of #Mastodon in this post, but I suppose as far as social media goes, Mastodon itself is not super secure. It is better than #Facebook or the birdsite, and maybe there are other platforms on the #Fediverse that are more secure than #Mastodon. Security aside though, I am rather disappointed that they didn’t mention decentralized social media, or other forms of decentralization for services on the #Internet.
Be Safe In #Cyberspace | Canadian Journalist canadianjournalist.ca/be-safe-
#Internet #Privacy #Security #SocialMedia

Canadian Journalist | ... journalism matters · Be Safe In Cyberspace | Canadian JournalistStay safe in cyberspace. Things you can do to protect yourself and your data while travelling online and using social media.
Replied in thread
Public
Sean O'Brien

@evangreer @fightforthefuture.org @bsky.app
🛡️ Now is a very good time to plug the @guardianproject .
They’ve built a whole ecosystem of #privacy focused, #FOSS tools to help protect you, and your community, during actions and popular uprisings. Let’s walk through some of their available #ProtestTech
guardianproject.info

Guardian ProjectAbout Guardian ProjectWe are a global team who builds and designs easy to use secure apps, open-source software libraries, and customized solutions that can be used around the world by any person or organization looking to protect their communications and data from unjust intrusion, interception and monitoring. Whether you are an average person looking to affirm your rights or an activist, journalist or humanitarian organization looking to safeguard your work in this age of perilous global communication, we can help address the threats you face.
Public
simsalabim

Schon krass: #LG zwingt mich als Nutzer eines seiner Fernsehgeräte zuzustimmen, dass sie mein komplettes Sehverhalten erfassen und weiterverarbeiten. Wenn ich das nicht tue, darf ich auf diesem Gerät noch nicht mal Netflix starten - für das ich 20 Euro monatlich zahle.

Wie komme ich aus der Nummer raus ohne diesen Fernseher zu schrotten? Und gibt es einen Gerätehersteller, der das nicht auf die gleiche Weise macht...?
#smarttv #privacy #tracking #bigdata

ExploreLive feeds
About