![]() Sakura Samurai researchers Aubrey Cottle, Robert Willis, and Jackson Henry discovered an unencrypted directory, /Cache, associated with the Keybase client that contained a comprehensive record of images from encrypted chat sessions. In a statement, a Zoom spokesman said that the company appreciates the work of the researchers and takes privacy and security "very seriously." The application used a custom extension to name the files, but they were easily viewable directly or simply by changing the custom file extension to the PNG image format, researcher John Jackson told Security Ledger. Forindividual consumers in the United States, Apples FaceTime app, with an estimated 45per cent marketshare, was the most popular way tovideo-chatfor. ![]() ![]() "We addressed the issue identified by the Sakura Samurai researchers on our Keybase platform in version 5.6.0 for Windows and macOS and version 5.6.1 for Linux. Users can help keep themselves secure by applying current updates or downloading the latest Keybase software with all current security updates," the spokesman said. In most cases, the failure to remove files from cache after they were deleted would count as a "low priority" security flaw. However, in the context of an end-to-end encrypted communications application like Keybase, the failure takes on added weight, Jackson wrote.Let’s see some cool stuff now! Really COOL. Just imagine: Your family invaded Mars and made a place to live there. Unfortunately, there are no YouTube servers on Mars, but you are in desperate need to watch a video. It takes 10 mins to buffer 1 min content. To watch 5 mins, we need to wait for nearly an hour. My bad! Assume you want to watch it again after some time. Yeah, well be in touch if anything changes with Keybase. IPFS to the rescue! In this concept, when a file is served for a node, it then acts as a server. So, your dad watched the video on Mars waiting for an hour, now, you can watch it without buffering. Keeping that concept on mind, Keybase named their idea, KBFS, abbreviated as Keybase File System. Where your computer can act as a node as well as a server. A cool use case is: You can host a static website with keybase. This is also a reason for messages flushing at once. (Subject to many users experiences in my network.) chicksdaddy writes: The Security Ledger reports that a flaw in Zoom's Keybase secure chat application left copies of images contained in secure communications on Keybase users' computers after they were supposedly deleted, according to researchers from the security research group Sakura Samurai. ![]() Other cool thing is, you can be anonymous, literally. You don’t need to add any identity while signing up. Just a device, with keybase installed is enough. We can add various identities like: GitHub, Reddit, Mastodon, PGP etc. Keybase is designed in such a way that, bot messages use other pair of encrytion keys.īy the way, bots can't read our messages. So, no bot can read your personal messages. Keybase does offer disappearing messages and group chats (called Teams) that Keybase positions as a Slack alternative, however. One can set a time before sending messages. Keybase is available for Android and iOS, and there are also desktop. After that expired, the message sent is automatically deleted. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |