https://ulveon-thoughts-f210db.gitlab.io/category/cybersecurity/Recent content in Cybersecurity on Ulveon's ThoughtsHugoen-IETue, 05 May 2026 14:00:00 +0100https://ulveon-thoughts-f210db.gitlab.io/p/2026-05-05-why-did-ai-destroy-my-production-database/Tue, 05 May 2026 14:00:00 +0100https://ulveon-thoughts-f210db.gitlab.io/p/2026-05-05-why-did-ai-destroy-my-production-database/<p>I already posted <a href="https://ulveon-thoughts-f210db.gitlab.io/p/2025-08-10-ai-is-not-a-fad-its-here-to-stay/">my thoughts on AI</a> and why I don&rsquo;t think it&rsquo;s going away any time soon. Unfortunately, it seems some people who don&rsquo;t like LLMs are using AI-induced outages and deletions as an opportunity to reaffirm their biases, and, in doing so, may be missing part of the picture.</p>https://ulveon-thoughts-f210db.gitlab.io/p/2025-12-03-the-secure-open-source-fallacy/Wed, 03 Dec 2025 08:00:00 +0100https://ulveon-thoughts-f210db.gitlab.io/p/2025-12-03-the-secure-open-source-fallacy/<p>Most open source advocates, and many security professionals, often say things like &ldquo;open source software is secure because you can just read the code&rdquo;.</p> <p>This argument assumes that the ability to read source code directly translates into the ability to understand, verify, and trust it, because you can see the files this software opens or the network sockets it listens on. You can see the kind of network data it sends, and the cryptography it uses.</p>https://ulveon-thoughts-f210db.gitlab.io/p/2025-08-09-vanguard-part-1-telegram-raid-protection/Sat, 09 Aug 2025 00:00:00 +0000https://ulveon-thoughts-f210db.gitlab.io/p/2025-08-09-vanguard-part-1-telegram-raid-protection/<p>I&rsquo;ve been developing Vanguard over the past few months. Initially it was little more than a hack, which was developed quickly and without much consideration regarding the cleanliness of the code. I needed a way to have public Telegram links without the risk of raids, or getting botted.</p>https://ulveon-thoughts-f210db.gitlab.io/p/2025-05-25-effective-security-beyond-encryption/Sun, 25 May 2025 00:00:00 +0000https://ulveon-thoughts-f210db.gitlab.io/p/2025-05-25-effective-security-beyond-encryption/<p>To highly technical audiences, it is unsurprising that Telegram is not cryptographically secure and that Signal is much better.</p> <p>Numerous security experts have pointed out that Telegram&rsquo;s reputation as a secure messenger is primarily a result of its marketing rather than its technical architecture.</p>https://ulveon-thoughts-f210db.gitlab.io/p/2025-05-13-software-toggles-are-evil/Tue, 13 May 2025 00:00:00 +0000https://ulveon-thoughts-f210db.gitlab.io/p/2025-05-13-software-toggles-are-evil/<p>&ldquo;Do not sell my personal information&rdquo;, &ldquo;Reject all cookies&rdquo;, &ldquo;Do not show me personalised ads&rdquo;, &ldquo;Do not use my Maps activity for improvements&rdquo;, &ldquo;Do not store my voice recordings&rdquo;, &ldquo;Permanently delete my account&rdquo;</p>https://ulveon-thoughts-f210db.gitlab.io/p/2024-10-05-operational-security-staying-safe-online/Sat, 05 Oct 2024 23:39:19 +0100https://ulveon-thoughts-f210db.gitlab.io/p/2024-10-05-operational-security-staying-safe-online/<p>The Internet is a dangerous place. Especially if you are LGBTQ, furry, have unconventional sexual tendencies (CNC, BDSM, FinDom, etc) or are a member of a religious or racial minority group.</p> <p>The Internet was not designed with safety or security in mind. In its ARPANET beginnings, many systems didn&rsquo;t even have passwords because only privileged users were supposed to access them. As such, privacy and security features are often little more than layers added on top of aging protocols, like HTTPS is just SSL applied on top of HTTP.</p>