eupolicy.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
This Mastodon server is a friendly and respectful discussion space for people working in areas related to EU policy. When you request to create an account, please tell us something about you.

Server stats:

201
active users

#cybersecurity

322 posts168 participants2 posts today

"Government officials outside the US now openly talk of decoupling from America on topics like AI, platform governance, and tech-enabled industry policy. Those conversations — framed around “technological sovereignty” — have sprung up in even the most ardent of US allies where local policymakers are wary of attaching their countries’ long-term interests to the world’s largest economy whose policy agenda can appear to shift, arbitrarily, from one day to the next.

Such potential “digital conscious uncoupling” could not come at the worst time.

Authoritarian governments, led by China and Russia, are pursuing aggressive tactics — embodied in the United Nations’ Convention Against Cybercrime — to embed mass surveillance, widespread suppression and government control over how technology develops.

Confronted with this widespread threat to the digital world, Western democracies must speak with one voice, and not become divided among themselves. Unfortunately, that is now unlikely as Washington pushes MAGA policymaking and the US’ long-standing allies demur on signing up to a digital agenda that, for many, no longer meets their geopolitical needs."

techpolicy.press/washingtons-q

Tech Policy Press · Washington's Quest for AI Dominance Leaves Allies Between Rock and a Hard Place | TechPolicy.PressThe White House says American AI is open for business, writes Mark Scott. But are other democracies eager to sign on to its plan for dominance?
#USA#Trump#AI

"The change comes in response to the planned revision of the Ordinance on the Surveillance of Correspondence by Post and Telecommunications (OSCPT), introduced by the Swiss Federal Council in January 2025. As previously reported by CyberInsider, the proposal would compel telecom and “derived communication service” providers (FSCDs) to impose mandatory user identification once they reach 5,000 users, retain this data for six months after service ends, and, where encryption keys are held, decrypt communications on request. Larger providers with more than one million users or CHF 100 million in annual revenue would face round-the-clock compliance obligations and real-time interception capabilities.

The proposed rules have drawn sharp criticism from the Swiss privacy sector. Firms like Nym, Threema, and Proton argued the measures threaten to dismantle Switzerland’s carefully cultivated image as a privacy haven, while introducing risks of systemic backdoors. In a recent CyberInsider interview, the decentralized messenger project Session said it was “keeping a close eye” on the ordinance’s progress, but noted that its architecture makes it less directly vulnerable to the proposed rules.

Proton, which operates services including Proton Mail, Proton VPN, Proton Drive, and Proton Pass, has been headquartered in Geneva since its founding in 2014. The company has long promoted Switzerland’s legal framework as a cornerstone of its security model, alongside its use of end-to-end encryption and no-logs policies. While the infrastructure move is a major operational change, Proton insists its privacy protections remain intact:"

cyberinsider.com/proton-confir

CyberInsider · Proton Confirms Gradual Exit from Switzerland Over Surveillance Law FearsProton has confirmed that it is gradually relocating much of its physical infrastructure out of Switzerland, citing “legal uncertainty.”

New Open-Source Tool Spotlight 🚨🚨🚨

The `awscurl` tool simplifies making signed AWS API requests directly from your terminal. It combines cURL with AWS Signature Version 4, so you can interact with AWS services securely without manually signing headers. #AWS #DevOps

🔗 Project link on #GitHub 👉 github.com/okigan/awscurl

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

✨
🔐 P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking 💻🏴‍☠️

Continued thread

🔐 1. V2 Encryption: Mandatory E2EE & Audited Cryptography
#DeltaChat V2 enforces end-to-end encryption by default, eliminating legacy "unencrypted chat" risks. The Rust-based core uses rPGP (audited OpenPGP library) with Ed25519 (same as Signal) and post-quantum algorithms. ETH Zurich’s 2024 audit fixed 20 vulnerabilities in SecureJoin/Autocrypt protocols .
➤ Security benefit: Protection against MITM attacks via QR-based verification .
#Cybersecurity #Encryption