TechLetters #91 - digital signature supposedly secure vs quantum computers weaker vs non-quantum ones, curiosity - hacking with emojis, in-app (TikTok, Instagram, etc.) browsers harmful for privacy
Security
Hacking systems with emojis. Yes, emojis can be used to deliver harmful payloads. How come? They can encode opcodes (shell code). In certain situations and on certain systems, emojis can encode instructions. When those are executed, well, this is the payload delivery.
Post-quantum digital signature algorithm weakness identified. In a standards-track SPHINCS+ algorithm . "... can sign arbitrary messages, yielding signatures that appear valid". I mean, this was supposed to replace current, secure systems. Previously, a standards-track encryption algorithm was completely broken.
Privacy
Browsing the web in in-app browsers is harmful. The experience is usually bad. It can be even worse. Those apps inject tracking instructions. They control every interaction, all that is typed, clicked... Browse the web with normal, dedicated web browsers like Safari, Firefox, Chrome.
Other
After more >40 years, Transmission Control Protocol description is updated. TCP is one of the basic/crucial network mechanisms. We use it everyday via our smartphones/computers/whatever to make network connections. This thing simply works. This new version contains privacy considerations.
In case you feel it's worth it to forward this content further:
If you’d like to share: