all InfoSec news
Scirge: When your employer mandates spyware
Oct. 6, 2022, 11:57 a.m. |
Almost Secure palant.info
I recently noticed Scirge advertising itself to corporations, promising to “solve” data leaks. Reason enough to take a look into how they do it. Turns out: by pushing a browser extension to all company employees which could be misused as spyware. Worse yet, it obfuscates data streams, making sure that employees cannot see what data is being collected. But of course we know that no employer would ever abuse functionality like that, right?
Edit (2022-12-07): Turns out, Scirge always logs …
More from palant.info / Almost Secure
Numerous vulnerabilities in Xunlei Accelerator application
2 months, 3 weeks ago |
palant.info
Implementing a “Share on Mastodon” button for a blog
7 months, 1 week ago |
palant.info
A year after the disastrous breach, LastPass has not improved
8 months, 3 weeks ago |
palant.info
Why browser extension games need access to all websites
11 months, 2 weeks ago |
palant.info
Another cluster of potentially malicious Chrome extensions
11 months, 3 weeks ago |
palant.info
Introducing PCVARK and their malicious ad blockers
11 months, 3 weeks ago |
palant.info
How malicious extensions hide running arbitrary code
11 months, 4 weeks ago |
palant.info
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Security Compliance Strategist
@ Grab | Petaling Jaya, Malaysia
Cloud Security Architect, Lead
@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)