It's a large #political action day in the US & the world - Have your mobile devices switched off or leave them at home to avoid being caught in dragnet #surveillance.
Keep them off for the complete journey - before and after. If you must use your mobile, be diligent in your efforts to protect yourself:
- Encrypt your device
- Have it pin-locked
- Disable #biometric logons
- Disable #Bluetooth
- Disable location services
- Carpool
#protest #50501 #handsoff #democracy #privacy #security
I wish people would read https://xkcd.com/538/ and https://www.usenix.org/system/files/1401_08-12_mickens.pdf before coming up with arbitrary #security ideas.
BTW if you know the video for Dr Mickens *talk* on this please let me know I failed at google
GrapheneOS version 2025040400 released:
https://grapheneos.org/releases#2025040400
See the linked release notes for a summary of the improvements over the previous release.
Forum discussion thread:
https://discuss.grapheneos.org/d/21486-grapheneos-version-2025040400-released
AI bots strain Wikimedia as bandwidth surges 50%
Automated AI bots seeking training data threaten Wikipedia project stability, foundation says.
LibreOffice downloads on the rise as users look to avoid subscription costs
#Trump calling the #trade deficit a “national emergency” that threatens US #security, lays out his *legal* argument for his actions.
“They rip us off,”Trump says of the #EU, announcing a 20% #tariff on the 27-nation bloc.
Trump holds a chart showing reciprocal tariff rates for US trading partners & says he will charge half of that much? There is no explanation for the calculations that he is using to justify the #tariffs. Likely because they’re arbitrary revenge tactics.
@GossiTheDog I use most of these on the daily at work why would try to make my day so hard with this #security nonsense... oh wait, I'm an #ethicalhacker / #penetrationtester. 
@eff @theintercept The best way to protect yourself when crossing the U.S. Border is to not do it in the first place.
This is a program that I've been championing within @nivenly over the past year, after we noticed that security vulnerabilities weren't being responsibly, and not enough research was going into the security of Fediverse software.
You might remember my Pixelfed vulnerability from last year, where OAuth scopes weren't checked allowing for privilege escalation via the API (CVE-2024-25108), that was our very first test-case of this program.
I'm incredibly proud to be involved in launching the Fediverse Security Fund from Nivenly Foundation (a 501(c)4 not-for-profit cooperative)
How #Linux Kernel Deals With Tracking CVE #Security Issues: https://thenewstack.io/how-linux-kernel-deals-with-tracking-cve-security-issues/ via @TheNewStack & @sjvn
And why, all too soon, most #opensource projects must also manage their own Common Vulnerabilities and Exposures.
Data #security experts have expressed alarm that US #NationalSecurity professionals are not…[just]…using the govt’s suite of secure encrypted systems for work communications such as JWICS, the Joint Worldwide Intelligence Communications System.
Most concerning, however, is the use of personal email, which is widely acknowledged to be susceptible to hacking, spearfishing & other types of digital compromise.
The use of #Gmail, a FAR LESS secure method of communication than the encrypted messaging app #Signal [which isn’t secure enough for these kinds of comms either], is the latest example of questionable #security practices by top #NationalSecurity ofcls already under fire for the mistaken inclusion of a journalist in a group chat about high-level planning for #military ops in Yemen.
More powers to #Europol, #Eurojust, #Frontex; criminal law rules on organised #crime and #firearms trafficking; possible review of #EuropeanArrestWarrant, European Investigation Order #EIO; breaking #encryption...
Please @EUCommission let this be a late April Fools thing 
https://ec.europa.eu/commission/presscorner/detail/en/ip_25_920
Encryption is essential for cybersecurity 
The lack of protections for it in the UK Cyber Security Bill, coupled with the UK's encryption-breaching order against Apple, shows a lack of seriousness about the threats we face.
Sign and share our petition to send a message 
https://you.38degrees.org.uk/petitions/keep-our-apple-data-encrypted
The UK Cyber Security and Resilience Bill is an opportunity to assess and reduce the UK’s dependence on large US corporations for vital government infrastructure.
Other countries, such as France and the Netherlands, are already debating how to do this, through open source software for example.
“The UK cannot claim to be strengthening the country’s cyber defences while at the same time issuing notices to companies like Apple and demanding that they reduce the security of the services they offer."
@JamesBaker – ORG Programme Manager.
NEW: The UK government has published its Cyber Security Bill and there are glaring holes.
Missing:
Protections for encryption. Reduction of our dependence on US corporations for vital UK government infrastructure, such as through open source software.
Read our response
https://www.openrightsgroup.org/press-releases/org-response-to-cyber-security-bill/
