Seldon · @Seldon
8 followers · 57 posts · Server fosstodon.org#simplexchat seems like an intriguing #privacy-focused, #decentralized messenger app. #trailofbits conducted a #security audit late last year and the publication is available to read if anyone is curious. However, it would be beneficial if there are a few more audits performed given the boasting on their website regarding the privacy and security of the messenger. Audits can be expensive, but the assurance our #data is safe is paramount.
https://github.com/trailofbits/publications/blob/master/reviews/SimpleXChat.pdf
#simplexchat #privacy #decentralized #trailofbits #security #data
CryptoNewsBot · @cryptonewsbot
413 followers · 17567 posts · Server schleuss.onlineCFTC adds execs from Circle, Ava Labs and Fireblocks to tech advisory group - The technology advisory committee aims to assist the CFTC in “ide... - https://cointelegraph.com/news/cftc-adds-execs-from-circle-ava-labs-and-fireblocks-to-tech-advisory-group #technologyadvisorycommittee #incadigital #trailofbits #fireblocks #abalanche #avalabs #trmlabs #circle #cftc
#cftc #circle #trmlabs #avalabs #abalanche #fireblocks #trailofbits #incadigital #technologyadvisorycommittee
Guinness (they/she) · @Neha
-1 followers · 365 posts · Server free.gluten.space
I truly enjoyed reading Trail of Bits blog post on their security audit of #curl ( https://blog.trailofbits.com/2022/12/22/curl-security-audit-threat-model/ ) and @bagder answer on his blog ( https://daniel.haxx.se/blog/2022/12/21/the-2022-curl-security-audit/ ).
This is the way security audits should be handled, keeping clarity, addressing critical flaws, and working together towards a common path, software security and reliability.
Harry Sintonen · @harrysintonen
66 followers · 34 posts · Server infosec.exchangeThe 2022 #Curl Security Audit by #trailofbits was interesting as I've myself quite a bit of digging into curl internals over the years. While there were quite a bit of findings, only two of them were considered security vulnerabilities.
https://daniel.haxx.se/blog/2022/08/22/increased-cve-activity-in-curl/
https://daniel.haxx.se/blog/2022/12/21/the-2022-curl-security-audit/
Harry Sintonen · @harrysintonen
95 followers · 47 posts · Server infosec.exchangeThe 2022 #Curl Security Audit by #trailofbits was interesting as I've myself done quite a bit of digging into curl internals over the years. While there were many findings, only two of them were considered security vulnerabilities.
2022 security audit: https://daniel.haxx.se/blog/2022/12/21/the-2022-curl-security-audit/
older post about increased CVE activity: https://daniel.haxx.se/blog/2022/08/22/increased-cve-activity-in-curl/