Episode Notes
News
KeePass Master Password Vulnerability — https://thehackernews.com/2023/05/keepass-exploit-allows-attackers-to.html?m=1
Declassified documents reveal FBI misuse of FISA surveillance powers — https://thehill.com/policy/national-security/4012650-fbi-misused-surveillance-tool-fisa-section-702/
Read the official document here — https://www.intelligence.gov/assets/documents/702%20Documents/declassified/21/2021_FISC_Certification_Opinion.pdf
Google’s TLD .zip and .mov Fail — https://arstechnica.com/information-technology/2023/05/critics-say-googles-new-zip-and-mov-domains-will-be-a-boon-to-scammers/
File Archiver in the Browser Scam — https://www.bleepingcomputer.com/news/security/clever-file-archiver-in-the-browser-phishing-trick-uses-zip-domains/
Bobby Rausch’s Medium post about how unicode is used to trick browsers with maliciously crafted URLs — https://medium.com/@bobbyrsec/the-dangers-of-googles-zip-tld-5e1e675e59a5
Ubuntu 18.04 “Bionic Beaver” End of Life is here — https://www.omgubuntu.co.uk/2023/05/ubuntu-18-04-end-of-support
Windows XP keygen allows for serverless activation; has also been ported to Linux — https://www.theregister.com/2023/05/26/windows_xp_activation_keygen/
Join the Chat!
Command Line Tool of the Week: sl (steam locomotive)
sl is a simple command line program for Linux, Mac, BSD, and WSL to cure your proneness to typos by displaying an ASCII steam locomotive running through your terminal.
GitHub: https://github.com/mtoyoda/sl
Install on Debian-based systems:
sudo apt install slInstall on RPM-based systems:
sudo yum install slsudo dnf install sl
Install on Arch-based systems:
sudo pacman -S slInstall on the BSDs:
OpenBSD —
pkg_add -v slFreeBSD —
pkg install sl
Install on macOS via Homebrew:
brew install sl
Share this post