Don't forget about preemptive security freezes at credit bureaus, which you have to do for each one individually. /r/personalfinance recommends 7 by default [0], but there are many more [1].
Fascinating, thank you for sharing. I'm impressed they were able to find so many ways to essentially confuse the GFW as to the current state of the connection. Looks like any company which wants to do business in China will just avoid implementing ESNI for the foreseeable future.
Are you competing this weekend? I put together a small team for qualifiers and had a blast with the CTF problems. We did well enough to get challenge coins but not to move on to finals.
I also use restic and I have a cron script which runs early Monday morning every week. Restic supports auto-pruning, so I have it set up to backup a new snapshot then purge all except the most recent 100 years, 12 months, and 5 weeks.
Wasn't at a huge scale but for one project another intern and I took a proof of concept that another engineer had done with Gremlin [1] and turned it into a full tool and ended up using dgraph. The python bindings were easy to work with and Ratel (the UI/web frontend) made quick searches and tests easy.
I liked working with it so now I'm the package maintainer for it on AUR [2]. At some point I'd like to make a repo showing how to implement common graph algorithms with the python bindings, since GraphQL+- currently only supports k-shortest path at the query level [3].
To anyone who wants an introduction to car hacking, I recommend the Car Hacker's Handbook, which is available for free online [0]. The book has a security focus but is also interesting to skim if you just want to learn a bit about what goes on in the networks in your car.
You are right that many pieces of software infringe on privacy. However, Zoom only recently has become one of the most widespread of these and because of that has only recently begun to affect a significant portion of the population, hence why it is newsworthy.
I think this also has to do with the fact that Zoom is being used for work and school and therefore people have less choice over their use of it. It's not a social network that many people have chosen to start using, it's a piece of software that millions of students and other people are being required to use without consideration of privacy.
The OverTheWire Advent Security CTF had one problem this year [0] which involved reverse engineering a (self-modifying) Master Boot Record binary similar to this which implemented AES-ECB-128, felt very rewarding to complete. I made heavy use of bochs [1] which seems to be the most common tool for emulating and debugging protected mode and bootloader code such as this. The creator of the CTF challenge talked about it on twitter as well [2].
https://m17project.org/ https://openrtx.org/#/ https://freedv.org/
These are a few projects that I personally think embody this well.