Profile

Cover photo
Hugo Jonker
85 followers
AboutPostsPhotosVideos

Stream

Hugo Jonker

Shared publicly  - 
 
Seems patent trolling is crossing boundaries and now infecting the music "business" too #blurredlines  
1
Sven B's profile photo
Sven B
 
Robin Thicke and Pharell Williams actually pre-emptively sued Marvin Gaye's family and Bridgeport Music, which owns the rights to Funkadelic's song Sexy Ways. They later dropped the charges against the owners of the Funkadelic song.

Here's a mashup of Blurred Lines and Got To Give It Up: https://www.youtube.com/watch?v=ziz9HW2ZmmY

They really did completely rip off that song, imo.


And just for the record, here's Sexy Ways: https://www.youtube.com/watch?v=JxKOQ3SfGhg
Add a comment...
 
One Tor exit node was caught modifying binaries downloaded through it, basically wrapping the original binary inside a malware layer. Windows Update does not like these binaries anymore and rejects them, so if you were using Windows Update over Tor (coincidentally: why??), you still ought to be okay.
The attack was found by a researcher who thought up a MITM-attack by patching binaries on the fly. He was curious if someone was doing such an attack, so he figured to check if any Tor exit node was this malicious.

Take-away message:
- Binaries can be patched on the fly by a man-in-the-middle - be careful when downloading binaries (verify the hashes!)
- This is not a Tor problem - Tor just provided a convenient testing ground for the researcher to see if this exists in the wild.
http://www.leviathansecurity.com/blog/the-case-of-the-modified-binaries/
#securityinthenews #tor #malware  
Summary. After creating and using a new exitmap module, I found downloaded binaries being patched through a Tor exit node in Russia. Tor is a wonderful tool for protecting the identity of journalists, their sources, and even regular users around the world; however, anonymity does not guarantee ...
1
Add a comment...
 
Worried about companies tracking you?
It's not just websites you ought to worry about:
Verizon is injecting "cookie-like" data in its customers cellular webtraffic.
http://arstechnica.com/security/2014/10/verizon-wireless-injects-identifiers-link-its-users-to-web-requests/

Of course your ISP can track you (and also of course, they do not need to do it like this). But that an ISP is actually doing this, and then selling this to advertisers.... wow.

#securityinthenews  
The provider adds cookie-like tokens to alert advertisers to users’ interests.
1
Ward Wouts's profile photo
 
That is just evil. I almost wish I came up with it...
Add a comment...

Hugo Jonker

Shared publicly  - 
 
I used to do this for the introsec class, but since that class is over, I'll just continue here:

Security News
 (in case you hadn't seen it yet)
----------------------------------------------
1. Adobe ebook app (ADE) spies on users, phones data home unencrypted:
http://the-digital-reader.com/2014/10/06/adobe-spying-users-collecting-data-ebook-libraries/

2. Bugzilla has a privilege-escalation bug (fix available)
http://krebsonsecurity.com/2014/10/bugzilla-zero-day-exposes-zero-day-bugs/

3.  USB firmware hacked to become malware:
http://www.wired.com/2014/10/code-published-for-unfixable- usb-attack/

1. Apparently, Adobe Digital Editions (necessary to read most DRM'ed epub books) keeps track of your reading habits on both DRM and non-DRM ebooks (how many pages read when, etc.) and scans your harddisk for other ebooks (though I haven't seen this confirmed).
See also Ars Technica: http://arstechnica.com/security/2014/10/adobes-e-book-reader-sends-your-reading-logs-back-to-adobe-in-plain-text/

2. As I understand things: part of Bugzilla's privilege system is based on the domain of the user's email address. Hackers were able to use fake emails with @mozilla.org domains to be allowed to read unsolved, zero-day bugs in mozilla products.

3.  USB firmware can lie to the PC and then do anything, such as claiming to be a keyboard and then delivering any set of keystrokes it pleases. This is not necessarily anything new - I have a laser pointer / presenter gadget which doubles as a USB stick (i.e. plug the radio receiver / usb stick, open your presentation from there and flip through the slides).
The hard part is addressing this. An obvious solution would be to require all firmware to be signed...with the number of USB devices already out there (all with unsigned firmware), that's not an easy path.
#securitynews  
Adobe has just given us a graphic demonstration of how not to handle security and privacy issues. A hacker acquaintance of mine has tipped me to a huge security and privacy violation on the part of Adobe. That anonymous acquaintance was examining Adobe’s DRm for educational purposes when they noticed that Digital Editions 4, the newest version of …
1
Add a comment...

Hugo Jonker

Shared publicly  - 
 
<sarcasm>"Correlation is not causation." Yeah right! Next you'll be saying that more films with Nicolas Cage do not cause more people to drown in swimming pools, or that the Total number of Political Action Committees (US) has no effect on the number of People who died by falling out of their wheelchair.
</sarcasm>
For anyone wondering: this site should make it clear.
http://www.tylervigen.com/

If not, check the explanation by Tyler himself: Spurious Correlations
1
Add a comment...

Hugo Jonker

Shared publicly  - 
 
I'm sure you all often heard about how this-or-that band sells out their next gig within minutes.

Stephen Hawking's lecture sold out in 30 sec.

A general audience scrambles for the chance to have access to a scientist's talk... that's stimulating news any day of the week.

(non-Dutchies: the article has a video of Hawking's TED talk embedded, which is worth watching if you haven't seen it)
http://www.nrc.nl/nieuws/2014/05/23/stephen-hawking-spreekt-voor-studenten-in-utrecht-wie-is-dit-fenomeen/
 ·  Translate
‘De grootste levende natuurkundige’ Stephen Hawking geeft vanmiddag in Utrecht een lezing op initiatief van studievereniging A-Eskwadraat. Een bijzonder bezoek waarvan de kaartjes binnen een halve minuut weg waren. Mocht je er geen hebben: lees hier wie dit fenomeen precies…
1
Add a comment...
Have him in circles
85 people
pascal Lafourcade's profile photo
Jeremy Clark's profile photo
Sanne Laurenssen's profile photo
Marije van Helvoort's profile photo
Rolando Trujillo Rasúa's profile photo
Ana Sokolova's profile photo
Els van Haaren's profile photo
Ivana Belgers's profile photo
Thijs Timmerman's profile photo
 
+Sven B +Amy B Here ya go. My bid at revenge food porn - revenge for all those pictures you two keep showing off. Now please stop giving me reasons to make revenge food porn: I'm not good at it. ;-)
#revengefoodporn
(PS: you have to admit that that's a cool hashtag ;-)
2
Amy B's profile photoHugo Jonker's profile photoSven B's profile photo
3 comments
Sven B
+
1
2
1
 
Oh, it's on now. ON LIKE DONKEY KONG!
Add a comment...
 
Security in the News:
Privacy app "Whisper" seems not to safeguard your privacy that well:
http://www.theguardian.com/world/2014/oct/16/-sp-revealed-whisper-app-tracking-users

The pic below is supposedly a map of the whitehouse, the icons indicating where someone used whisper. The Guardian claims that Whisper stores geolocation information, and/or ip address.

If Whisper does store such information, then they have thoroughly misunderstood location privacy.
Whisper response, https://www.scribd.com/doc/243241082/Responses-for-Guardian, is insufficient in my view.
#securityinthenews #whisper #privacy
‘Confessional’ app follows some users even after they have asked not to be tracked
1
Add a comment...

Hugo Jonker

Shared publicly  - 
 
This has to be the best kickstarter ever - too bad it's over.
https://www.kickstarter.com/projects/324283889/potato-salad
I'm making potato salad.
1
Add a comment...
 
The Dutch Christian Democrats ( #CDA ) want to make the intention to participate in armed combat and the intention to join a terrorist organisation illegal.
#nineteeneightyfour #thoughtcrimes
http://www.nu.nl/politiek/3807370/cda-wil-voornemen-jihadreis-strafbaar-maken.html
 ·  Translate
Het CDA wil dat het voornemen om zich aan te sluiten bij een terroristische organisatie of het deelnemen aan de gewapende strijd strafbaar wordt. ;
1
Add a comment...

Hugo Jonker
owner

Discussion  - 
 
Hat tip to +Dan Wallach  for finding the following link: https://jsalmonte.squarespace.com/wanderingandpondering/2014/5/16/the-state-of-the-hop

Very interesting, and contains many good links - including to Ryan Francois' TEDx talk on Lindy hop.
People talk about different aspects of the scene or the dance, but I've found that they’re often they’re coming from a very limited perspectives, and ignoring how different facets of the community are interrelated. That’s an easy thing to do in our community because we’re mostly connected informally through events and social media. There’s no really reliable way to get a big picture view of the entire scene, but that’s what we're going ...
1
Add a comment...
 
Turns out I'm officially a font nerd. Wikipedia updated their fonts (https://blog.wikimedia.org/2014/03/27/typography-refresh/). I found out by going to Wikipedia and being shocked (shocked, I tell you) at the looks. Not only was it plainly obvious to me, my instant reaction was "They Changed It, Now It Sucks" (http://tvtropes.org/pmwiki/pmwiki.php/Main/TheyChangedItNowItSucks)

What specifically sucks? Text takes up more space than previously. Line spacing seems larger, and text is less dense.
I'll probably get used to it, but for now: ewwww.

#wikifonts #sucksafterupdate  
Soon, we're releasing a small but important update to the typography on the desktop version of Wikimedia sites. All Wikipedia readers and editors will see the change one week from today (Thursday, April 3rd), while other Wikimedia sites will receive the update earlier, on Tuesday, April 1st.
1
Add a comment...
People
Have him in circles
85 people
pascal Lafourcade's profile photo
Jeremy Clark's profile photo
Sanne Laurenssen's profile photo
Marije van Helvoort's profile photo
Rolando Trujillo Rasúa's profile photo
Ana Sokolova's profile photo
Els van Haaren's profile photo
Ivana Belgers's profile photo
Thijs Timmerman's profile photo
Basic Information
Gender
Male
Story
Tagline
Privacy & Security Researcher
Links