The gang get's ducked

Hi and welcome to another Security weekly. Where we laugh, we cry and share the latest and greatest in security and tech news.

Did you know: for the first versions of Mr. Potato Head you to supply your own potato? Crazy times.Ya boy learned his lessons, that's why this weeks newsletter includes everything you need.

In this weeks edition:

⚠️ Careful not to overextend🦆 DuckDuckGo's Mail Protection goes public🙊 Twitter's security gets ass blasted, again🔥 the quick and dirty

Reading time: 03:24

Careful not to overextend

over·​ex·​tend 🔈\ ˌō-vər-ik-ˈstend \The art of installing every browser extension you find.

For weeks I've wanted to write about the harm in extensions. But every week while doing research, I stumbled onto something new.So I waited.

You know when you want to sell your crypto at the all time high, and are sure next week it'll be there? That's the exact same feeling I had with this.So I waited.

But this week, I couldn't wait. No mo.

So what's up with extensions? For the past weeks more and more have been found containing malware.The Hacker News wrote an interesting piece about it few days ago. Check it out.Experts Find Malicious Cookie Stuffing Chrome Extensions Used by 1.4 Million Users (thehackernews.com)

1,4 Million users..That's HUGE!

About as huge as I feel after finishing a full bag of Lays Sensations in one sitting.

This is live.

Here are some remarks you could take into consideration when looking at extensions:

• Extensions don't require admin rights. Every user can install them without asking the admin. Don't be a complete tool, ask your IT dept if it's ok to install.

• Don't have an IT dept? Do your own due diligence. Google, ask, look!

• Don't install every extensions some random dude on Twitter advises. You don't even follow him.

In the coming weeks I'll post an article in Security like I'm five about doing due diligence about the trustworthiness about apps (and extensions). Be sure to check it out!

DuckDuckGo's Mail Protection goes public

After being in beta since late last year, DuckDuckGo (DDG) is releasing their Mail Protection service to the public.Being mostly known for their search engine, DDG also ventured into the lands of e-mail. With Mail Protection they offer a service that focuses on privacy and anonymity.They've already included some cool features:

• Link Tracking Protection that helps prevent tracking in email links

• Smarter Encryption that helps with unencrypted email links

• Unlimited duck emails

I'm a big fan of everything DDG has offered so far. It's the company I wish I had founded.Although I have to admit, if every subscribers were to use their Mail Protection service, that'd make my content analytics a lot harder.

Twitter's security gets ass blasted, again

I know some of you reading this will have problems with the term 'ass blasted'. So let me explain.Ever seen "It's always sunny in Philadelphia"? Most Europeans haven't.It's like my favorite non-animated series everrrrrr.Every episode has a theme, and one of them is ass blasting.

Is this entire segment an excuse to talk about ass blasting? It sure is.Nonetheless I wan't to talk about this Twitter news as well.Twitter has been in the news again for their flawed security. Here's a quick rundown of what happened:

➡️ Twitter faces major hack in 2020, decides to hire the best of the best in security➡️ Hire Peiter Zatko, an infamous hacker-turned-good (in security that's called a blue hat" with an impressive resume➡️ Peiter is shocked by what he finds and urges the board of Twitter to make changes➡️ Twitter doesn't like that and kicks him➡️ Peiter goes public with his findings➡️ TWITTER GETS BLASTED IN THE ASS

I really don't like Twitter, as you may have noticed.They leaked my phone number, Jack Dorsey(founder) is a fart sniffing hippie and I generally don't enjoy being on the platform.Also, not a week goes by without another scandal. Twitter, do better ok?

The quick and dirty

• Studio Ghibli films just became available to rent on major digital platforms Apple TV, Amazon and more - I have a very dark secret. I'm probably the only person in the world who doesn't like Studio Ghibli films.

• Hackers hide malware in James Webb telescope images - and this is why we can't have nice things.

• Microsoft found TikTok Android flaw that let hackers hijack accounts - Good job MS, very noble of you.

Security like I'm five

Don't have time for hours of research? Don't have 20 years of experience in security? Me neither, but I gotchu fam.In Security like I'm five I cover a range of security topics. I do all the hard work, and explain it to you in a practical matter. Lot's of meme's too. Good stuff, good stuff.This and Security weekly conveniently delivered to your mailbox a couple of times a week, for free.Pretty sweet deal if you ask me.

So sign up for the newsletter and be enlightened! (don't set the bar too high tho)