**Rysiekúr (old account)** @rysiek@mastodon.social · May 07, 2020, 14:23

**Rysiekúr (old account)** @rysiek@mastodon.social · May 07, 2020, 14:23

Rysiekúr (old account) @rysiek@mastodon.social

May 07, 2020, 14:23

Rysiekúr (old account) @rysiek@mastodon.social

Zoom aquires Keybase:
https://blog.zoom.us/wordpress/2020/05/07/zoom-acquires-keybase-and-announces-goal-of-developing-the-most-broadly-used-enterprise-end-to-end-encryption-offering/

You read that right! Now to find the list of all people who were badgering me to set-up a Keybase account...

#Schadenfreude #InfoSec

**Rysiekúr (old account)** @rysiek@mastodon.social · May 07, 2020, 15:18

**Rysiekúr (old account)** @rysiek@mastodon.social · May 07, 2020, 15:18

May 07, 2020, 15:18

Rysiekúr (old account) @rysiek@mastodon.social

Consider the following:

1. #Zoom, a company with bad security track record and murky ownership now has clandestine supply-chain-attack capability on #Keybase, and

2. Keybase is used by a lot of people to sign their #git commits and whatnot.

Therefore:

3. Zoom, a company with bad security track record and murky ownership now has potential supply-chain-attack capability on a lot of software whose git commits are signed using keys that touch Keybase.

#ThisIsFine #InfoSec

**sneak** @sneak@sneak.berlin · 2020-05-07T17:47:17Z

sneak @sneak@sneak.berlin

@rysiek also: https://news.ycombinator.com/item?id=23103578

May 07, 2020, 17:47 · · ·

Trending now

Resources

Developers

What is Mastodon?

sneak.berlin

More…