all InfoSec news
Scirge: When your employer mandates spyware
Oct. 6, 2022, 11:57 a.m. |
Almost Secure palant.info
I recently noticed Scirge advertising itself to corporations, promising to “solve” data leaks. Reason enough to take a look into how they do it. Turns out: by pushing a browser extension to all company employees which could be misused as spyware. Worse yet, it obfuscates data streams, making sure that employees cannot see what data is being collected. But of course we know that no employer would ever abuse functionality like that, right?
Edit (2022-12-07): Turns out, Scirge always logs …
More from palant.info / Almost Secure
Numerous vulnerabilities in Xunlei Accelerator application
1 month, 2 weeks ago |
palant.info
Implementing a “Share on Mastodon” button for a blog
6 months, 1 week ago |
palant.info
A year after the disastrous breach, LastPass has not improved
7 months, 3 weeks ago |
palant.info
Chrome Sync privacy is still very bad
7 months, 4 weeks ago |
palant.info
Why browser extension games need access to all websites
10 months, 1 week ago |
palant.info
Another cluster of potentially malicious Chrome extensions
10 months, 2 weeks ago |
palant.info
Introducing PCVARK and their malicious ad blockers
10 months, 3 weeks ago |
palant.info
How malicious extensions hide running arbitrary code
10 months, 3 weeks ago |
palant.info
More malicious extensions in Chrome Web Store
10 months, 3 weeks ago |
palant.info
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Information Security Consultant
@ Auckland Council | Central Auckland, NZ, 1010
Security Engineer, Threat Detection
@ Stripe | Remote, US
DevSecOps Engineer (Remote in Europe)
@ CloudTalk | Prague, Prague, Czechia - Remote
Security Architect
@ Valeo Foods | Dublin, Ireland
Security Specialist - IoT & OT
@ Wallbox | Barcelona, Catalonia, Spain