Brave Browser had a privacy issue that leaked the Tor onion URL addresses you visited to your locally configured DNS server, “exposing the dark web websites you visit…”, writes Bleeping Computer. Long-time Slashdot reader AmiMoJo quotes their report: To access Tor onion URLs, Brave added a “Private Window with Tor” mode that acts as a proxy to the Tor network. When…
Tag: DNS
How DNSpooq Attacks Could Poison DNS Cache Records
Earlier this week security experts disclosed details on seven vulnerabilities impacting Dnsmasq, “a popular DNS software package that is commonly deployed in networking equipment, such as routers and access points,” reports ZDNet. “The vulnerabilities tracked as DNSpooq, impact Dnsmasq, a DNS forwarding client for *NIX-based operating systems.” Slashdot reader Joe2020 shared Help Net Security’s quote from Shlomi Oberman, CEO and researcher…
Apple, Cloudflare, and Fastly Propose a New Privacy-Focused DNS Standard Called ‘Oblivious DoH’
“Cloudflare, Apple, and Fastly have co-designed and proposed a new DNS standard to tackle ongoing privacy issues associated with DNS,” reports ZDNet. Cloudflare calls it “a practical approach for improving privacy” that “aims to improve the overall adoption of encrypted DNS protocols without compromising performance and user experience…” Third-parties, such as ISPs, find it more difficult to trace website visits when…
Cloudflare and Apple Design a New Privacy-Friendly Internet Protocol
Engineers at Cloudflare and Apple say they’ve developed a new internet protocol that will shore up one of the biggest holes in internet privacy that many don’t know even exists. Dubbed Oblivious DNS-over-HTTPS, or ODoH for short, the new protocol makes it far more difficult for internet providers to know which websites you visit. From a report: […] Recent developments like…
Walmart-exclusive Router and Others Sold on Amazon and eBay Contain Hidden Backdoors To Control Devices
Bernard Meyer, reporting for CyberNews: In a collaboration between CyberNews Sr. Information Security Researcher Mantas Sasnauskas and researchers James Clee and Roni Carta, suspicious backdoors have been discovered in a Chinese-made Jetstream router, sold exclusively at Walmart as their new line of “affordable” wifi routers. This backdoor would allow an attacker the ability to remotely control not only the routers, but…
Email and Web Traffic Redirected for Multiple Cryptocurrency Sites After GoDaddy Attack
“Fraudsters redirected email and web traffic destined for several cryptocurrency trading platforms over the past week,” reports security researcher Brian Krebs: The attacks were facilitated by scams targeting employees at GoDaddy, the world’s largest domain name registrar, KrebsOnSecurity has learned… This latest campaign appears to have begun on or around Nov. 13, with an attack on cryptocurrency trading platform liquid.com. “A…
Movie Industry: VPNs and Tor Pose a Threat to Legitimate Streaming Platforms
The Motion Picture Association says that circumvention services such as VPNs, DNS masks and Tor networks can pose a direct threat to legitimate streaming services. In comments submitted to the US Trade Representative, the movie industry group highlights PDF various other piracy challenges around the globe.
Read more of this story at Slashdot.
Source: https://yro.slashdot.org/story/20/11/03/1858234/movie-industry-vpns-and-tor-pose-a-threat-to-legitimate-streaming-platforms?utm_source=rss1.0mainlinkanon&utm_medium=feed…
Brave Browser First To Nix CNAME Deception
An anonymous reader quotes a report from The Register: The Brave web browser will soon block CNAME cloaking, a technique used by online marketers to defy privacy controls designed to prevent the use of third-party cookies. The browser security model makes a distinction between first-party domains — those being visited — and third-party domains — from the suppliers of things like…
German Regulators Look To Block Teens From Porn Sites
German authorities are trying to force internet service providers to block major porn sites that don’t implement age verification systems. Gizmodo reports: Currently, German law requires porn sites to restrict access to individuals 18 or older. What’s changed is that German authorities, like the British before them, have now dubbed it a good use of their time to actually pursue porn…
Contract To Run .eu Domain-name Registry is Up For Grabs as Brussels Tries To Avoid a .Co-style Debacle
The European Union has opened up the .eu internet registry for a new owner, offering a five-year contract to oversee its 3.6 million domain names from October 2022. From a report: The EC’s Directorate General for Communication Networks, Content and Technologies announced the rebid last week and its director of future networks, Pearse O’Donohue, has been pushing the issue to the…