How we built the IoT setup of the c-base e.V. assembly at #35C3 to re-enact the crash of our space station bergie.iki.fi/blog/cbase-35c…

Emotet Trojan is back again - here's one phishing template that spread yesterday in Germany

This bill contradicts webrtc based services (e.g. Circuit by @UnifyCo) where privacy and e2e encryption is core... x.com/EFF/status/718…

5. Update @UnifyCo #Security Advisory OBSO-1602-02 Glibc libresolv-Stack-based Buffer Overflow Vuln. (CVE-2015-7547) unify.com/security/advis…

Vulnerability abstraction - towards a common understanding of security vulnerabilities in the IT and IoT industry x.com/OSVDB/status/7…

...and all that is E2E encrypted with forward secrecy using DTLS-SRTP ;-) x.com/StefanRied/sta…

6. Update @UnifyCo #Security Advisory OBSO-1602-02 Glibc libresolv-Stack-based Buffer Overflow Vuln. (CVE-2015-7547) unify.com/security/advis…

First time I see that software vendor publicly publishes security scan results. Thanks for transparency Synology Inc. synology.com/en-global/supp…

7. Update @UnifyCo #Security Advisory OBSO-1602-02 Glibc libresolv-Stack-based Buffer Overflow Vuln. (CVE-2015-7547) unify.com/security/advis…

112 bit security: perhaps sufficient until transitioning to post-quantum cryptosystems? Says @usnistgov: bit.ly/1WjRn26

#vulncontest - public since July 19, but still no CVE: a bunch of TYPO3 issues at typo3.org/teams/security… (CORE-SA-2016-014 through -020)

Question: "When both compressing and encrypting, which operation should be performed first?" Answer: "No."

"If you’re not doing scans and penetration tests, then just know that someone else is. And they don’t work for you." ~George Grachis #quotes

How typos can increase your security: I wouldn't have noticed & fixed that vuln on my device w/o this tweet. Thx OSVDB + Rapid7

@UnifyCo #Security Advisory OBSO-1610-02 ISC BIND Denial of Service Vulnerabilities (CVE-2016-2776, CVE-2016-2848) unify.com/security/advis…

@UnifyCo #Security Advisory OBSO-1610-03 Leap Second on 2016-12-31 unify.com/security/advis…

Announcing new, stricter, SSL Labs requirements for 2017 blog.qualys.com/ssllabs/2016/1…

Thanks for the json file, Ivan Ristic - here's the same "statistics", now summarizing the the impact values per year

Security Architecture for the Internet of Things (IoT) in Commercial Buildings - a whitepaper by the Fairhair Alliance. (built on @IETF standards being discussed in #IETF101 - ANIMA, CoRE, ACE). Visit us at #Lightandbuilding2018 or download WP at fairhair-alliance.org/events/lightbu…