Category Archives: Security

Overvej om du fortsat vil have en konto på Den Blå Avis

Posted on Dec 3, 2025 by Henning Michael Møller Just

DBA går over til logins uden adgangskoder, ved at man fremover skal bruge sin “Vend” konto med email adresse hvorefter der sendes en unik adgangskode til din email adresse der så bruges til login. Det er ikke hvad man vil … Continue reading →

Posted in Security | Tagged dba, den blå avis, fido2, passkey, passwordless, vend, webauthn | 2 Comments

Changing a password

Posted on Oct 26, 2025 by Henning Michael Møller Just

I wanted to change my password for WordPress, so I did. I was then informed that I had to approve the change using the WordPress JetPack app on my phone, so I went there. To do so, I needed to … Continue reading →

Posted in Security | Tagged jetpack, wordpress | Leave a comment

Password requirements

Posted on Sep 5, 2025 by Henning Michael Møller Just

A discussion at work made me revisit what I previously (1, 2, 3, 4, 5, and 6) wrote about password requirements. I know that sensible multifactor authentication (MFA) is better and there are alternatives that are even better than that, … Continue reading →

Posted in Security | Tagged entropy, keeper, lastpass, password, password manager, xkcd | Leave a comment

Goodbye Firefox, nice knowing you

Posted on Feb 28, 2025 by Henning Michael Møller Just

I have been aware that Mozilla lost its direction a long time ago, turning into another activist organisation with the usually added questionable business ethics. Funny how so-called progressive activism goes so well in hand with questionable business ethics. Maybe … Continue reading →

Posted in Security | Tagged brave, firefox, icamtuf, lunduke, mozilla, privacy | Leave a comment

Security and DeepSeek

Posted on Feb 7, 2025 by Henning Michael Møller Just

I am sure everyone is going to be absolutely stunned when they hear that the DeepSeek app isn’t secure. […] experts caution that many of DeepSeek’s design choices […] introduce a number of glaring security and privacy risks. That is … Continue reading →

Posted in Security | Tagged andrew hoog, app transport security, brian krebs, deepseek, ios | Leave a comment

Turing test

Posted on Oct 31, 2024 by Henning Michael Møller Just

Eventually the only way to pass the Turing test (or a captcha) to prove that you are not an AI will be to express politically incorrect opinions. — Rob Henderson … Continue reading →

Posted in Development, Security | Tagged ai, artificial intelligence, captcha, rob henderson | Leave a comment

.zip as a top level domain is a bad idea

Posted on May 25, 2023 by Henning Michael Møller Just

Google got the rights to sell domain names within a new top level domain, .zip. When I told my colleagues their reaction was “that’s a bad idea” and I am happy that it wasn’t just me. For those that don’t … Continue reading →

Posted in Security | Tagged .mov, .zip, google, gtld, icann, thiojoe | Leave a comment

The NSO zero-click iMessage exploit

Posted on Dec 16, 2021 by Henning Michael Møller Just

Interesting to read about the NSO exploit in “A deep dive into an NSO zero-click iMessage exploit: Remote Code Execution” from Project Zero. And this was the surprise: The exploit came in the form of a bitmap image in JBIG2 … Continue reading →

Posted in Security | Tagged black hat, jbig2, nso, project zero, white hat, xerox | Leave a comment

Siri, how many of my photos did you send to the government today?

Posted on Aug 6, 2021 by Henning Michael Møller Just

The meme above was shared by Edward Snowden as the story is unfolding. See also this: “Apple explains how iPhones will scan photos for child-sexual-abuse images“. Now, how could anyone possibly have any problem with that? The way this will … Continue reading →