defendtheworld.bsky.social's Avatar

defendtheworld.bsky.social

@defendtheworld.bsky.social

Alex Radocea. Building better routers at www.supernetworks.org

63 Followers  |  192 Following  |  25 Posts  |  Joined: 07.02.2024  |  2.0744

Latest posts by defendtheworld.bsky.social on Bluesky


Preview
Paged Out! Deeply technical zine. And it's free.

𝙿𝙰𝙢𝙴𝙳 π™Ύπš„πšƒ! #𝟾 𝙳𝙴𝙰𝙳𝙻𝙸𝙽𝙴: 𝟺 π™ΉπšŠπš—πšžπšŠπš›πš’ 𝟸𝟢𝟸𝟼 π™΄πš˜π™³ π™΄πš˜π™°

Save the date if you're planning to write an article or showcase your digital art in the next issue of our magazine.

pagedout.institute

P.S. We're looking for sponsors for issue #8 as well.

09.12.2025 10:29 β€” πŸ‘ 5    πŸ” 4    πŸ’¬ 0    πŸ“Œ 0

I was thinking of something much more simple, time division and non geo geostationary.

Wrt proxy for entanglement based approaches the idea is the satellite would be an untrusted bell pair generator sending entangled pairs for parties to generate keys with

29.09.2025 21:31 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Btw Luke I’ve just sent you an email regarding a new attack analysis against BB84 I’ve been working on

29.09.2025 18:06 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Nice to chat here! You’re right about point to point during QKD of course. what would be the right phrase to describe that multiple receivers, even mobile, can perform QKD with the Sat, sequentially if not concurrently without multiplexing

29.09.2025 17:58 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 2    πŸ“Œ 0

There’s production * (typo)

27.09.2025 13:45 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

I think the clearest argument is that it requires classical auth to start with. So why not just use classical authentication then ???

Regarding scalability there’s productive satellite QKD available now, so the last mile/ point to point argument does not apply there

27.09.2025 13:45 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 2    πŸ“Œ 0
End-of-Train and Head-of-Train Remote Linking Protocol | CISA

Yikes. Turns out you can send a plaintext radio signal to cause any train in the USA to do an emergency break. The original 'security' was just a checksum, no encryption or authentication. Reporting this took them 12 years (!) because the vendor dismissed it initially www.cisa.gov/news-events/...

12.07.2025 12:14 β€” πŸ‘ 183    πŸ” 64    πŸ’¬ 11    πŸ“Œ 10

Yeah when I first implemented that for WiFi wpa2/3 my thoughts were similar, but recently revisited this and can’t help but wonder if this helps create sidechannel points with known plaintext on the pattern that’s unwrapped

12.08.2025 15:46 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

I am at usenix woot today/tmrw! Ping if you want to connect

11.08.2025 17:10 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
WiFi dispenser

WiFi dispenser

Hey bitchat users, I started a bluer/bluez rust Linux client github.com/spr-networks.... Runs in a docker container and I hooked it up to the wifi password dispenser over e2e. Each user gets their own wpa3 pass

07.08.2025 20:45 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Supply-chain attacks on open source software are getting out of hand Attacks affected packages, including one with ~2.8 million weekly downloads.

Supply-chain attacks on open source software are getting out of hand

31.07.2025 05:12 β€” πŸ‘ 17    πŸ” 8    πŸ’¬ 0    πŸ“Œ 0
Preview
Supernetworks Router WiFi 6 Poe+ Router Order Page WiFi 6 PoE+ Router built with Raspberry Pi CM5

www.supernetworks.org/compute-boar...

30.07.2025 01:55 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Jack Dorsey says his 'secure' new Bitchat app has not been tested for security | TechCrunch Dorsey admitted that his new messaging app had not been reviewed or tested for security issues prior to its launch.

techcrunch.com/2025/07/09/j...

09.07.2025 20:29 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Do they also aid memory forensics/
Sidechannels for automated key discovery ?

09.07.2025 02:18 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

It’s also terribly insecure as implemented. The trusted peers can be trivially intercepted an adversary can inject themselves into a trusted chat

www.supernetworks.org/pages/blog/a...

08.07.2025 21:00 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Being an identical twin has its perks, like easy biometrics testing. Most vendors sensitivity isn’t as good as I hope

05.05.2025 21:13 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

I've just been told that John Young of Cryptome.org passed away last week.

#Cryptome was foundational, and a predecessor to organizations like @ddosecrets.com and #Wikileaks.

RIP, John.

10.04.2025 23:31 β€” πŸ‘ 120    πŸ” 49    πŸ’¬ 4    πŸ“Œ 3
Preview
Exclusive | In Secret Meeting, China Acknowledged Role in U.S. Infrastructure Hacks A senior Chinese official linked intrusions to escalating U.S. support for Taiwan.

Chinese officials acknowledged in a December meeting with Biden officials in Geneva that Beijing was behind the Volt Typhoon intrusions into U.S. critical infrastructure citing increasing U.S. policy support for Taiwan as an excuse www.wsj.com/politics/nat...

10.04.2025 18:03 β€” πŸ‘ 56    πŸ” 16    πŸ’¬ 1    πŸ“Œ 3

West Coast numbers are coming in, and estimates have now surpassed 5 million. People are still pouring into the streetsβ€”nearly 2% of the American population is rising up. America, we are so proud of you. You did it.

05.04.2025 23:15 β€” πŸ‘ 60122    πŸ” 11678    πŸ’¬ 1158    πŸ“Œ 799

What percent of imports are from perfect competition companies

04.04.2025 20:52 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

Anti coercion act and statements from EU makes it seem like they’re a target for EU.

of the deficit something like 75% -80% is due to US related party import. Taxing US activity for production abroad would have been the better approach to avoid collateral damage to exports

04.04.2025 06:02 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Suspected China-Nexus Threat Actor Actively Exploiting Critical Ivanti Connect Secure Vulnerability (CVE-2025-22457) | Google Cloud Blog

Hot off the press is a new blog detailing our observations from in the wild exploitation of CVE-2025-22457 by UNC5221 including two newly observed malware families tracked as BRUSHFIRE and TRAILBLAZE.

cloud.google.com/blog/topics/...

03.04.2025 16:26 β€” πŸ‘ 15    πŸ” 7    πŸ’¬ 0    πŸ“Œ 5

Today I learned that cracking keys now takes about 1/3rd as many qubits as before without substantially different gate counts.

ClΓ©mence Chevignard, Pierre-Alain Fouque, and AndrΓ© Schrottenloher 2024.

eprint.iacr.org/2024/222.pdf

02.04.2025 01:08 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
About the security content of macOS Sequoia 15.4 - Apple Support This document describes the security content of macOS Sequoia 15.4.

ο£Ώ Today's April 1st. From garage geeks to tech titans: Happy Birthday, Apple

Our team discovered some security vulnerabilities in launchd, SMB, and Kerberos, now patched. #CVE-2025-24269 #CVE-2025-31182 #CVE-2025-24235 #CVE-2025-30444

support.apple.com/en-us/122373
support.apple.com/en-us/122371

01.04.2025 20:00 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0

Paged Out! #6 has arrived! And it's jam-packed with content!
You can download it here:
pagedout.institute?page=issues....

29.03.2025 12:23 β€” πŸ‘ 23    πŸ” 27    πŸ’¬ 0    πŸ“Œ 3

What’s up with YouTube ads asking for location lately

29.03.2025 18:45 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

www.supernetworks.org/compute-boar...

Shipping in 8-12 weeks

13.03.2025 18:00 β€” πŸ‘ 0    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Preview
OpenAI calls DeepSeek 'state-controlled,' calls for bans on 'PRC-produced' models | TechCrunch In a proposal, OpenAI describes DeepSeek as 'state-controlled,' and recommends banning models from it and other PRC-affiliated operations.

My contempt for anyone involved with this drivel knows few limits. Conflating issues and fear mongering because a Chinese company dared to publish an actual open model:

techcrunch.com/2025/03/13/o...

And trying to talk about copyright after training in Libgen.

Hypocrisy, lies, grifting :-(

14.03.2025 08:00 β€” πŸ‘ 80    πŸ” 17    πŸ’¬ 5    πŸ“Œ 0

Only way to make sure a security review gets good coverage

07.03.2025 04:43 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Advancing DecoyAuth is Key to Making WiFi & WPA3 More Secure | SPR Pioneering WiFi Security

I wrote up my thoughts on a promising new project to evolve wpa3 to better support multipass without having users pay a β€œsecurity tax” www.supernetworks.org/pages/blog/w...

06.03.2025 23:02 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

@defendtheworld is following 20 prominent accounts