If you do any #javascript development and are wondering how to build #secure #frontend applications based on best current practices, you should check out this upcoming #free #livestream.

#react #vue #angular #dotnet

https://duendesoftware.com/webinars/tokenmanagement

I hate my #bank...

"As a #security measure" when you #login, instead of typing it the whole #password, you have to type in 8 #random characters from it, like 1st, 4th, 10th etc.

What does this #secure against? Your user being able to log in? Every time I have to open a #notepad and type out my password, count the characters, and type them in one by one, instead of JUST USING A PASSWORD #MANAGER.

If an #attacker knows your password... WHAT DIFFERENCE DOES THIS MAKE?!

Mycoria is an open and secure overlay network that connects all participants

https://mycoria.org/

For those interested in developing a resilient (#secure) desktop/ laptop. I have made extensive additions to my tutorial here:

#CyberSecurity #Resilience #Privacy #TechTutorials #Linux #OpenSource #DigitalSecurity #PrivacyTools #SystemHardening #TechEducation #ResilientDesktop #SecurityTools #DigitalSelfDefense #Technology #EOS #Arch

https://eirenicon.org/resilient-desktop/

Plans, Policies, and Procedures: Microsoft Secure Score
A measurement of an organization's security posture, with a higher number indicating more recommended actions taken.
https://blackcatwhitehatsecurity.com
#Plans #Policies #Procedures #Microsoft #Secure #Score #technology

I wonder if something like this can be made with Debian or GNU Guix.

https://github.com/secureblue/secureblue

Mattermost is an open-source, self-hostable platform for secure collaboration and communication. It is designed for teams to manage mission-critical work, and is often marketed as an alternative to Microsoft Teams and Slack.

https://mattermost.com/

Hallo Fediverse! Wir stellen uns über Hashtags vor:
#crowbackup #backup #swisstech #friends #free #encrypted #secure #backupsolution #switzerland

Periodic reminder for those trying to #DeGoogle their lives:

Great news for those looking to securely store your #photos online, and keep other apps from prying (Google!), I highly recommend Ente. The founder and lead Dev is a former Google employee and committed to P R I V A C Y.

https://ente.io is cross platform, under rigorous development, Open Source, E2EE, and you can use it for free with 10GB of storage (up from 5GB previously).

They just announced their first major version update today (Ente v1.0).
Easily import your Google Photos and Instagram pics too.

And... if you need more storage, use MY referral code below. If you are on a paid plan, we each get an extra 10GB of FREE storage.
My paid plan of 50GB is only $2.99/mo. (US)

⟶ Ente referral code: * RVCAPI *
⟶ Apply it in Settings → General → Referrals, to get additional 10 GB free, after you signup for a paid plan.

Daniel J. Bernstein (#djb, to those who know and love him [1]) has a new blog entry about the NIST post-quantum #cryptography standardization process that's been ongoing for some years. Also, follow him @djb .

If you're not aware of some of the controversy about how NIST is running this process, it's a must-read.

https://blog.cr.yp.to/20250423-mceliece.html

My $0.02: it sure looks like NIST is backstopping an attempt by the NSA to get everyone to standardize on cryptography #standards that the #NSA knows how to break.

Again.

Yes, they did it before. If you read up on the Dual_EC calamity and its fallout, and how this time it was supposed to be different - open, transparent, secure - then prepare to be disappointed. NIST is playing #Calvinball with their rules for this contest, yanking the rug out from under contenders that appear to be more #secure and better understood, while pushing alternatives that are objectively worse (#weaker encryption, less studied, poorer #performance).

Frankly, I think organizations outside of the #USA would be foolish to trust anything that comes out of #NIST's current work. Well, those inside the USA too, but some of those may be forced by law to use whatever NIST certifies.

[1] Some people think djb is "prickly", not lovable. Oddly, it seems that the only people who say this are those who are wildly incorrect about code/algorithms and are being gently but publicly corrected about by djb at the time

I’m tired, Boss.

Let’s be honest: jobs don’t define us. Our #value isn’t tied to #productivity

#UBI isn’t about replacing #work — it’s about replacing fear. Fear of hunger, eviction, medical debt.

When people are #secure they #create #innovate and #thrive

A #BetterWorld isn’t just possible — it’s necessary.

Verus: Verified Rust for low-level systems code

https://github.com/secure-foundations/verus

#HackerNews #Verus #Verified #Rust #low-level #systems #code #secure #coding #systems #programming #Rust #programming #languages

Revisando la App de mensajería SIGNAL. Una de las mejores alternativas a Wassap
https://alt43.es/revisando-la-app-de-mensajeria-signal/
#signal #privacy #secure

@michal will be speaking tomorrow at @foss_north about how we became a #router manufacturer and how do we use #OpenSource to make our users more #secure. If you are in #Sweden and want to know more about what we do, come to the talk or find him at the event afterwards

Selhosted P2P E2EE File Transfer & Messaging PWA

* #OpenSource
* #CrossPlatform
* #PWA
* #iOS, #Android, #Desktop (self compile)
* App store, Play store (coming soon)
* Desktop
* #Windows, #MacOS, #Linux (self compile)
* run `index.html` on any modern #browser
* #Decentralized
* #Secure
* #NoCookies
* #P2P #encrypted
* No registration
* No installing
* #Messaging
* Group Messaging (coming soon)
* Text Messaging
* #Multimedia Messaging
* #Screensharing (on desktop browsers)
* Offline Messaging (in #research phase)
* #FileTransfer
* #VideoCalls
* #DataOwnership
* #SelfHosted
* GitHub pages Hosting
* #LocalOnly storage

Check it out!

https://positive-intentions.com

(Degoogled links to the apps)
- Chat: https://chat.positive-intentions.com
- File: https://file.positive-intentions.com
- GitHub: https://github.com/positive-intentions

WhatsApp Vulnerability could be used to infect Windows Users with Malware.

Meta warned Windows users to update the WhatsApp messaging app to the latest version to patch a vulnerability that can let attackers execute malicious code on their devices.

[CVE-2025-30401]

Check my Image Description

https://www.whatsapp.com/security/advisories/2025/

#EU ministers push for joint defence fund to #secure a more self-reliant #Europe

#EU #UE #defence #sovereignty #politics #NATO

https://www.rfi.fr/en/international/20250407-eu-ministers-push-for-joint-defence-fund-to-secure-a-more-self-reliant-europe