Nik Cubrilovic

  • About

36 Posts

Craig Wright is not Satoshi Nakamoto

-

Investigating the claim that Craig Wright is Bitcoin creator Satoshi Nakamoto

Securing Blockchain.info Users with Tor and SSL

-

We setup SSL on the blockchain.info Tor Hidden Service to better prevent recent phishing and MITM attacks

FBI seizes fake Tor hosted Jihad funding website as part of Operation Onymous, leaves up real site

-

One of the fake websites the FBI seized recently was a jihad funding site. The real site still lives.

Large Number of Tor Hidden Sites Seized by the FBI in Operation Onymous were Clone or Scam Sites

-

The FBI announced the seizure of a large number of darkweb sites to much fanfare. It turns out most of what they got were fake clone sites

60 Minutes Australia on Silk Road and Bitcoin

-

60 Minutes airs a story on Silk road and it goes about as you'd expect it

Analyzing the FBI’s Explanation of How They Located Silk Road

-

When it comes to how the FBI located the Silk Road server, something doesn't add up

Notes on the Celebrity Data Theft

-

Lots of celebrities have their iCloud accounts hacked and their photos leaked. Digging into how and why it happen.

Multiple Vulnerabilities in Disqus WordPress Plugin

-

Disclosure and fixes for a number of bugs in the Wordpress plugin for the popular Disqus commenting system

CS-Cart v4.2.0 Session Hijacking and Other Vulnerabilities

-

I send a vulnerability report to a popular e-commerce application and then deal with the developers

Multiple Vulnerabilities in MyGov, the Australian Government Single-sign-on Solution for Citizen Services.

-

I find numerous serious vulnerabilities in the Australian Governments new single sign-on portal for all citizens

Two Google Chrome Privacy Issues

-

Finding and reporting a couple of privacy issues in the Google Chrome browser

Yahoo Axis Chrome Extension Leaks Private Certificate File

-

Yahoo! launched a new browser extension today to much fanfare. I find that they leaked their private signing key.

BlockPlus v4 - Block Google+ widgets and links from other Google sites

-

An update to the BlockPlus browser extension which removes Google+ and other sites from the Google homepage and other properties

Facebook and many other sites also bypass Internet Explorer privacy controls

-

Facebook and Google found to be setting false P3P headers to bypass third-party cookie control

Facebook Is Losing E-Commerce

-

Bloomberg has a report out today about retailers shutting down their online Facebook stores due to lack of interest and activity from…

How Megaupload Was Investigated and Indicted

-

From reading the indictment and digging around online you can start to reverse-engineer how the investigation was carried out. The…

The Google Firefox search deal, Chrome and Lady GaGa

-

Finding an explination for why Google is investing so much in it's Chrome web browser

The Crunchpad is proof of obviousness in the iPad design

-

The patent case between Apple and Samsung regarding the iPad and Galaxytab has been an ongoing issue. Apple won an injunction against the…

The Download Dot-Con

-

Download.com are one of the largest propagators of malware on the web

Google Android - The Accidental Empire

-

The story of how Google accidentally created the Android mobile empire

Introducing Frictionless - Taking the friction out of Facebook social-sharing applications

-

We write a browser plugin to provide better privacy for Facebook users

Lies, Damn Lies and Google+ Statistics

-

Nobody knows how Google+ is doing, but it isn't stopping some people from guessing

Unicode U+F8FF - aka. The Apple Logo Character, on Macs

-

Something funny happens when you include the Apple icon emoji and send it to users on non-Apple products

Facebook Re-Enables Controversial Tracking Cookie

-

It didn't take long for Facebook to bring back the cookies it uses to track all users across the web

How To Setup secure and private Facebook browsing

-

A guide to setting up your Facebook for better privacy

Facebook Fixes Logout Issue, Explains Cookies

-

Facebook fix their logged out user privacy issues in response to my earlier post

Logging out of Facebook is not enough

-

When it comes to losing track of Facebook online and preserving your digital privacy - being logged out is far from enough. We find some privacy issues with Facebook and report them.

Persistent and Unblockable Cookies Using HTTP Headers

-

Using HTTP headers as unblockable super-cookies

BlockPlus - A browser extension to block Google+ notifications

-

I write a browser extension to remove Google+ since the company seems to be doing all it can to promote it

Numeronym

-

On the increasing popularity of using numeronyms to abbrevite

Pain and Gain

-

An insane crime story from Miami that has been optioned to become a film

Finding a Technical Co-Founder

-

My guide to finding a technical co-founder for a startup

Guide to Finding a Good and Safe Company or Product Name

-

My guide to selecting a good business or product name

The Google IPO Skeptics

-

Many were skeptical at the prospects of the Google IPO

Relevance Time for Twitter

-

Why Twitter will inevitably switch from displaying tweets in chronological order

Fidelio - A browser plugin for secure web browsing

-

I release a browser plugin that forces the browser to redirect to HTTPS versions of sites when available