My Steganographia class is now available on #Patreon! Learn about the secret codes AND the angel magic, and how to use them together. #magic #occult #cryptography #renaissance https://www.patreon.com/posts/hidden-code-of-125690868?utm_medium=clipboard_copy&utm_source=copyLink&utm_campaign=postshare_creator&utm_content=join_link
I just published two cryptography attacks on Uppy Companion, a tool for downloading/uploading documents from various cloud storage providers.
https://github.com/transloadit/uppy/issues/5705
https://github.com/transloadit/uppy/issues/5706
These attacks allow the recovery of the access tokens/refresh tokens of the various cloud provider, enabling an attacker having access to a stolen encrypted cookie value to get access to the cloud storage.
Once again, people: do not roll your own crypto! 
Using plain AES-CBC, deriving secrets with SHA256 and the sign-then-encrypt paradigm are not best practices.
What's the current consensus on whether I should worry about Grover's algorithm when choosing symmetric cryptography?
flAIrng-NG - AI powered quantum safe random flair generator, get your random flair today!
There are some saying that movie theatres are dead.
But the Security Theatre is still alive.
And the admission is free. /s
https://www.theverge.com/news/640422/google-gmail-email-encryption-enterprise-beta
Lo and behold, #OpenSSL 3.5 (their upcoming LTS release) will come out here at the beginning of April, and it does indeed support some of these hybrid PQC schemes. Their recent beta2 announcement can be read here: https://openssl-library.org/post/2025-03-25-openssl-3.5-beta/ and their roadmap is at https://openssl-library.org/roadmap/index.html
Very excited by this work. Big kudos to the OpenSSL Team here! 
Already planning on giving this a spin with the C implementation of #Tor later this week to see how it goes!
If I have a #codeberg account set up, with a verified #ssh key on my account and the corresponding public and private keys in `~/.ssh/`, is there a way that I can make it so that it doesn't ask me for my keyphrase every time I push? I'm sure VSCode could do this, but since I've switched to #Helix, which doesn't have git built-in I've been manually doing the git stuff.
My knowledge of #cryptography and #git are well and truly at the 'barely enough to get myself into trouble' level.
#AskFedi
https://www.sciencealert.com/quantum-computer-generates-truly-random-number-in-scientific-first
Researchers from the US and UK used Quantinuum's 56-qubit quantum computer to generate a truly random number for the first time, demonstrating quantum physics' inherent randomness and its potential for secure electronic communication.
The team's experiment, using Aaronson and Hung's protocol, verified the result's randomness across multiple supercomputers, setting a new standard for quantum security.
Puny 256 bit ciphers stand aside, the new norm is infinite bits. I present the Infinite Cipher: https://github.com/NoHatCoder/Infinite-Cipher
FBI raids home of prominent computer scientist who has gone incommunicado
#FBI raids home of prominent computer scientist who has gone incommunicado
Keylength - Cryptographic Key Length Recommendation https://www.keylength.com/ #cryptography #algorithms #parameter #security #compare #attack #length #method #level #key
Ars Technica: FBI raids home of prominent computer scientist who has gone incommunicado . “A prominent computer scientist who has spent 20 years publishing academic papers on cryptography, privacy, and cybersecurity has gone incommunicado, had his professor profile, email account, and phone number removed by his employer, Indiana University, and had his homes raided by the FBI. No one knows […]
#FBI raids home of prominent computer scientist who has gone #incommunicado
A prominent computer scientist who has spent 20 years publishing academic papers on #cryptography , #privacy , and #cybersecurity has gone incommunicado, had his professor profile, email account, and phone number removed by his employer #IndianaUniversity , and had his homes raided by the FBI. No one knows why.
There has been some speculation that Dr. Xiaofeng Wang of Indiana University was an operative working for China https://arstechnica.com/security/2025/03/computer-scientist-goes-silent-after-fbi-raid-and-purging-from-university-website/ #cybersecurity #cryptography #IndianaUniversity #uspol #espionage
FBI raids home of prominent computer scientist who has gone incommunicado
> A prominent computer #scientist who has spent 20 years publishing #academic papers on #cryptography, privacy, and cybersecurity has gone incommunicado, had his professor profile, email account, and phone number removed by his employer #Indiana #University, and had his homes #raided by the #FBI. No one knows why.
> Xiaofeng Wang has a long list of prestigious titles. He was... https://arstechnica.com/security/2025/03/computer-scientist-goes-silent-after-fbi-raid-and-purging-from-university-website/
How To Become A Hacker: A Step-By-Step Guide
https://sebastiancarlos.medium.com/how-to-become-a-hacker-a-step-by-step-guide-94902dc425b0
Discussions: https://discu.eu/q/https://sebastiancarlos.medium.com/how-to-become-a-hacker-a-step-by-step-guide-94902dc425b0
I'm bored.
I really want to do something with #Cryptography like #Certificates, etc.
I don't know though. What do people do with this? I want to make something that works everywhere as an experiment that may end up being fully used.
Making my own certs require having a trusted #CARoot which not every system will have. Could do that but I don't see a point really.
Not sure right now, any ideas from the audience?
