🚨 Nextcloud Critical Security Issue

Attention Gibberfish Cloud platform users: There is a security flaw which affects Nextcloud servers using the default nginx configuration, including the one we bundle with our platform. We have released an update, tagged 20191102.0 which fixes this issue, including updating the php:fpm base docker image and nginx configuration file. We…

read more

Security Vulnerability Notice

A security flaw in daygate (AKA the Gibberfish Management Portal) has been discovered which could allow an unauthenticated attacker to eavesdrop on websocket traffic, potentially leaking sensitive information such as passphrases. No encrypted user data or files were made accessible by this flaw. This issue has been fixed in the…

read more

Dark Caracal: The Anatomy of a Covert Op

This morning, Lookout and the Electronic Frontier Foundation released a joint report about their investigation into a spy operation linked to the Lebanese government dubbed “Dark Caracal”. It’s a fascinating read, both for the information it reveals about the methodology of state-sponsored espionage and methodology of the investigators who uncovered…

read more

Guest Blogger

Editor’s note: Our blog post, Protect Your Privacy in 5 Minutes, garnered a lot of positive feedback. However, one reader felt that it did not go far enough. While we stand by our recommendations, we offered to publish his rebuttal, which you can read below. On Monday [ed: 4/10/17], a blog…

read more