Homebrew malware for everyone with Xcode 7?

Looks like, with Xcode 7, Apple introduced the possibility to develop and test apps for everyone. If you don’t need your App to be in the App Store, no Apple Developer Program will be required to deploy your own Apps to your own iOS Devices from Xcode.

I don’t believe, this will lead to App “piracy”, as some other blogs have suggested. To deploy Apps to your own devices, you’ll need the source code, first of all. (Although I could imagine some sort of .ipa loader app becoming popular, but that’s another story).

However, what I think is going to happen is this: Continue reading Homebrew malware for everyone with Xcode 7?

Plain text passwords…

Ok, It happened again. I registered at some website and they’ve sent me the password in plain text. Yes, this post was really written in 2015.

I won’t tell you, what website it was. This is not the point of this post, but rather the problem itself. And I want to give the developers of the website, whom I handled with my standard procedure of informing them about the problem, some time to fix that.

I just want to rant it out once more. How can a website that has 100k+ users make such a fundamental mistake? How can anyone, if every educated 12 year old knows better?

Some developers tell me in response “yeah but the data is secure with us”.

Sony said the same before playstation network got hacked. But luckily, as a matter of prudence, they actually hashed user passwords. Apparently, most websites don’t, even though every professional web developer knows how to do better. At least they should.

Even if they don’t get hacked, “it’s secure” is a plain lie. Sending the unencrypted plain-text password out from their servers is like printing your username and password on leaflets and throwing them out of a plane over Shanghai.

Even worse, nobody seems to care. The said website was featured on major news networks around the world.

Since I’m aware of this issue, I always use a throwaway-password when registering anywhere. Just as a reminder for everyone: don’t ever register anywhere with your “standard password” or a derivate of it.

It will ultimately end up in dictionaries used for hacker attacks.

And of course, generally use secure passwords. No, “banana” is not secure. Neither is “pineapple123”. “EeF1rJ7YiyrZazC09myJ”. is also not secure, since, due to the  the very fact that I posted it here, it most likely became part of a hacker’s password dictionary already.

Thank you developers! Thank you, security aware internet users.

Logitech K811 “Easy-Switch” Review

Often, reviewers writing for tech sites only get access to a product for a couple of days . In this short time, it’s impossible to find out about all the little quirks tech products like this keyboard have. I’ve been using the Easy-Switch for almost a year now and here’s a review that covers all the pros and cons about the Logitech EasySwitch in (almost) everyday usage and reveals very hacky implementation of just about any OS-Specific functionality that, at a first glance, works, but at the second glance, is simply awkward.

Continue reading Logitech K811 “Easy-Switch” Review

LineFight released!

Today, I released my latest game: LineFight!

In this Mac game, up to 8 players (on the same Mac!) battle each other by drawing lines! Try to encircle your opponents and avoid crashing into their walls since the feature of a built-in break fell victim to the idea of simplifying controls to maximize accessibility and fun!

You can even customize the game play in many ways, tweaking almost any variable that contributes to the addictive game play. Oh, and the game looks awesome! 😀

Get it now from the AppStore! 

random stuff