Going through this excellent book by Shaun Pinner, much recommended! There’s many lessons to learn from this book but from my #infosec angle there are a few. Firstly, always keep an off-line maps app on your phone (I use OsmAnd). As a test — switch on airplane mode and try to survive for a day. Can you still navigate from point A to point B? Secondly, keep your social media profiles friends-only access. Thirdly, don’t keep any passwords in memory - it’s a bad practice from security point of view anyway, but I never thought about the interrogation angle. A password manager locked with biometrics and PIN and random passwords everywhere will prevent you from finding yourself in situation where you’ll be begging your interrogators to check another password because you might have remembered wrong.
@organicmaps@notsoloud@kravietz I was trying to find a way to route from a hypothetical A to a B, but couldn’t find it. The lens wants me to enter only the destination, the origin is derived from GPS. But I often want to check the length of routes that start in other places than my current location, that is what I meant
#Infosec#Twitter is dead, why do people still insist on being on that platform? It's lost its relevance, and all the best people in Infosec have moved here to #Mastodon or another #Fediverse app.
I feel like most of those still on Twitter are more worried about appearances and keeping their follower numbers than keeping and growing a great community.
@chiefgyk3d had a couple of meetings today though and in general here in the UK the numbers are down hugely in 2024 across all the platforms including youtube, twitch, tik tok. Everything is harder, and prices are up and rewards are down. The big tinternet bubble of great numbers and easy money seems to have gone very quickly
@3dcandy I think overall a lot of people had a lot of free time to use the internet more during the pandemic, and not that is starting to decline as people have to get back to regular routines.
I know that free time and being bored in a house is what led me to make Tiktok and other content.
(Go ahead, argue with me. Whatever notional safety you're adding by making sure every email and Teams chat from me comes from “Maximilian" doesn't outweigh the many annoyances this causes me and my colleagues, and if you think it does you've proved my point.)
On/around 27th May 2024, the traffic from Azerbaijan to www.bbc.com & www.bbc.co.uk reduced by over 80%.
Looking at our data, I can see that the vast majority of traffic in Azerbaijan comes from AS29049 (Delta Telecom) which is their majority ISP according to Wikipedia.
OONI says tests were passing as recently as 28th May from AS29049 but there's definitely something going on...Unsure exactly what.
(the gap in AS29049 is a GeoIP data migration) #Azerbaijan#Censorship#InfoSec
Wondering if anyone has already started adding malicious LLM prompts to their User Agent strings and hammering sites of companies that might be expected to use "AI" for log analysis. 🤔
@rysiek That requires the software to be written spectularly badly to have any effect? The original story around "email LLM" also sounds very very unrealistic, and the comment chains are weirdly centered around cheerleading privacy-centered email providers. Something doesn't add up.
+256754810143 ##BLACK MAGIC INSTANT DEATH SPELL CASTER IN UGANDA, NETHERLANDS, SPAIN, KENYA, RWANDA POWERFUL WITCHCRAFT REVENGE SPELLS CASTER IN GHANA, BENIN. STRONG LOVE SPELLS CASTER IN MAURITIUS, MALTA. VOODOO DOLL SPELLS IN USA, UK, STRONG REVENGEDR.LOVEwelcome to jajakevin the most powerful witchcraft , spiritualist revenge spells casters , jajakevin is welknown around the world becouse of her powers, im specailize in the following fields of art, , witchcraft , revenge spells, black magic spells casters , psychic readings, winning courtcase, instant black magic spells casters ,
jajakevin has been know for the last 35yrs of experience , stop worrying about your problems and evill spirits attacks , here is your resue ..jajakevin @@@$$$+256754810143}
+256751735278 @@BLACK MAGIC INSTANT DEATH SPELL CASTER IN UGANDA, NETHERLANDS, SPAIN, KENYA, RWANDA POWERFUL WITCHCRAFT REVENGE SPELLLEBANON, , TURKEYspell casting specialist, +Khan, black magic death spells that work overnight or by accident? I cast these strongest black magic revenge death spells that work fast overnight to kill ex-lovers, husband, wife girlfriend Enemies overnight without delay. It doesn’t matter whether he or she is in a far location, I guarantee you will have your results you are looking for immediately. Just make sure before you contact me you are committed and you want what you are looking for (Victim Death) because my death spell works fast overnight after casting the spells. Immediately working black magic death spells that work fast will be cast on the person and the result is 48hours. How To Cast A Death Spell On Someone, Death Spells That Work Overnight to kill wicked Step-dad/ Step mom, Death Revenge Spell on wicked friends, Voodoo Death Spells to kill Enemies, Black Magic Spells To Harm Someone, Black magic death spells on ex-lover, Revenge instant death spells on uncle, Instant death spells caster, successful death spell, most powerful death spell, death spells that work fast, spell to die in your sleep, death spells that work overnight, voodoo death spells, death spell chant, most powerful death spell, revenge spells that work instantly, spell to die in your sleep, voodoo death spell caster, spell to make someone sick and die, revenge spells, breakup spell, spells to punish someone, revenge spells on an ex- lover, revenge spell caster, revenge spells that work instantly, spell to make someone sick, how to put a spell on someone who hurts you, voodoo spells to hurt someone, death spells on my ex-lover husband wife boyfriend girlfriend, I need death spells caster, I want my ex-husband, wife, girlfriend, boyfriend, dead overnight, voodoo death spell to kill my ex-lover, I need overnight death spell caster. Voodoo death spells, black magic voodoo spells, spell to make someone sick and die, death spells that work fast, death spells that work overnight, spell to die in your sleep, black magic spells to harm someone, most powerful death spell, spells to curse someone, spell make someone die, revenge spells. Here are some of the basic harm that is inflicted upon people using black magic to Kill Someone Overnight. jaja kevin, powerful instant death spells online instant spells that work fast in the USA, UK, Kuwait, Germany, Asia, Europe, Philippines, Canada, South Africa, Italy, Peru, India, Iran, Monaco. Sweden, Australia, Nigeria, Spain, Ghana, California, Greece. Voodoo death spell casters spell to make someone sick and die without delay. Here are some of the basic harm that is inflicted upon people using black magic to Kill Someone Overnight. Khan, powerful instant death spells online instant spells that work fast in the USA, UK, Kuwait, Germany, Asia, Europe, Portugal, Canada, South Africa, Italy, Peru,, Iran, Monaco. Sweden, Australia, Namibia, Spain, California, Greece. , Voodoo death spell casters spell to make someone sick and die without delay. Kill Someone Overnight. + , powerful instant death spells are online instant spells that work fast in the USA, UK, Kuwait, Germany, Asia, Europe, Philippines, Canada, South Africa, Italy, Peru, Portugal, Iran, Monaco. Sweden, Australia, Saudi Arabia, Spain, Qatar, California, Greece. n, Voodoo death spell casters spell to make someone sick and die without delay. California, Greece. + , Voodoo death spell casters spell to make someone sick and die +256751735278
+256751735278 @@BLACK MAGIC INSTANT DEATH SPELL CASTER IN UGANDA, NETHERLANDS, SPAIN, KENYA, RWANDA POWERFUL WITCHCRAFT REVENGE SPELLLEBANON, , TURKEYspell casting specialist, +Khan, black magic death spells that work overnight or by accident? I cast these strongest black magic revenge death spells that work fast overnight to kill ex-lovers, husband, wife girlfriend Enemies overnight without delay. It doesn’t matter whether he or she is in a far location, I guarantee you will have your results you are looking for immediately. Just make sure before you contact me you are committed and you want what you are looking for (Victim Death) because my death spell works fast overnight after casting the spells. Immediately working black magic death spells that work fast will be cast on the person and the result is 48hours. How To Cast A Death Spell On Someone, Death Spells That Work Overnight to kill wicked Step-dad/ Step mom, Death Revenge Spell on wicked friends, Voodoo Death Spells to kill Enemies, Black Magic Spells To Harm Someone, Black magic death spells on ex-lover, Revenge instant death spells on uncle, Instant death spells caster, successful death spell, most powerful death spell, death spells that work fast, spell to die in your sleep, death spells that work overnight, voodoo death spells, death spell chant, most powerful death spell, revenge spells that work instantly, spell to die in your sleep, voodoo death spell caster, spell to make someone sick and die, revenge spells, breakup spell, spells to punish someone, revenge spells on an ex- lover, revenge spell caster, revenge spells that work instantly, spell to make someone sick, how to put a spell on someone who hurts you, voodoo spells to hurt someone, death spells on my ex-lover husband wife boyfriend girlfriend, I need death spells caster, I want my ex-husband, wife, girlfriend, boyfriend, dead overnight, voodoo death spell to kill my ex-lover, I need overnight death spell caster. Voodoo death spells, black magic voodoo spells, spell to make someone sick and die, death spells that work fast, death spells that work overnight, spell to die in your sleep, black magic spells to harm someone, most powerful death spell, spells to curse someone, spell make someone die, revenge spells. Here are some of the basic harm that is inflicted upon people using black magic to Kill Someone Overnight. jaja kevin, powerful instant death spells online instant spells that work fast in the USA, UK, Kuwait, Germany, Asia, Europe, Philippines, Canada, South Africa, Italy, Peru, India, Iran, Monaco. Sweden, Australia, Nigeria, Spain, Ghana, California, Greece. Voodoo death spell casters spell to make someone sick and die without delay. Here are some of the basic harm that is inflicted upon people using black magic to Kill Someone Overnight. Khan, powerful instant death spells online instant spells that work fast in the USA, UK, Kuwait, Germany, Asia, Europe, Portugal, Canada, South Africa, Italy, Peru,, Iran, Monaco. Sweden, Australia, Namibia, Spain, California, Greece. , Voodoo death spell casters spell to make someone sick and die without delay. Kill Someone Overnight. + , powerful instant death spells are online instant spells that work fast in the USA, UK, Kuwait, Germany, Asia, Europe, Philippines, Canada, South Africa, Italy, Peru, Portugal, Iran, Monaco. Sweden, Australia, Saudi Arabia, Spain, Qatar, California, Greece. n, Voodoo death spell casters spell to make someone sick and die without delay. California, Greece. + , Voodoo death spell casters spell to make someone sick and die +256751735278
I don't recall which #infosec person inspired me to create a security/cyber policy page on our company website, and security.txt files on our apps, but I am glad we did.
We received our first vulnerability notification email last night and it was fixed today. Grateful for the white hats out there. 🙌
Those two months of taking a break from content creation on tiktok and Twitch kind of hurt my savings for my projects as I have a separate bank account for all this.
I would really appreciate new Twitch and Tiktok subscribers and I have some items for review that I purchased that I will give honest reviews to, but also tips/donations are always appreciated
I did manage to also get a sponsor for @defcon but I will need to raise/save money for the actual DEFCON trip. You know things like food.
I plan to cover the event (without recording the public areas of DEFCON for privacy reasons) and I am trying to get a laptop stood up for a portable OBS setup next month. I physically have the laptop just need to sit down and set it up but I have to make my current OBS portable.
Any tips/donations and subscribers in the link above are appreciated
@bpavuk if they will send me one. I'll try and hit them up as I have worked with other vendors. I am still waiting on my @mntmn Pocket Reform I paid for out of my own pocket. I am seriously excited to review that one as it's been a dream.
NIST turns to IT consultants to clear National Vulnerability Database backlog
🤔
"According to the agency's statement last week, it hopes to reach its pre-February processing rate of CVEs within the next few months. NIST predicted it should be caught up and back to processing current CVEs by the end of the fiscal year."
I just received a moderately interesting #scam call.
The phone rings.
It's a New York Number (I'm in NYC) with "New York NY" as its CID.
I answer and say hello, and hear a couple seconds of silence and then the blip sound indicating I've been transferred from the bulk dialer to a live person.
The person who says hello has a strong Indian accent and I can hear other people talking in the background. #infosec#privacy#telemarketing
1/4
"I'm calling from the diabetes supply team, and we're sending you an [unintelligible] glucose meter. Are you a diabetic?"
Me: "Why?"
The guy repeats exactly the same sentence.
Me: "I heard you. Why are you sending me a meter. Did someone tell you to do that?"
He repeats the same sentence.
Me: "I heard you. I'm asking why you're sending me a meter."
He hangs up.
2/4
He's trying to get me to say "Yes" so he can record that and use it to fraudulently claim I verbally agreed to buy something.
If I'd played ball he would have collected personal / payment information about me and used it to harm or scam me.
It's possible that there really is a glucose meter that they want to send me as a loss leader to make money off of the needed supplies.
I'm thinking it was probably (1), but not certain.
3/4
I really want to make a career in the #InfoSec field. Security is my passion. I haven't yet decided which role I'd like to get involved in. All I know so far is that Malware Analysis isn't for me. I'm interested to hear from folks in the field who are #ActuallyAutistic, have #ADHD, or both. What roles have been a good fit for you? I'm guessing that Incident Response would be far too high stress, but I could be wrong about that. Boosts appreciated. #NeuroDiverseSquad#AuDhd#AskingAutistics
@JEkis not autistic, not ADHD, so big disclaimer on this, but I could see bug bounty hunting or pentesting working. Generally those involve setting things to do theirthing and then looking at the results and poking at them which can either work really well or really not well depending on how your brain works. I'd say most blue team stuff might be difficult because it really nvolves buckling down and looking through a bunch of data which may be hard to do if your mind tries ot yank you around but again, I don't know if that's how your ADHD manifests so that's where my usefulness ends I'm afraid :)
Installed the new RAM running memtest86+ on the windows box that runs my OBS. I’ll probably stream Wednesday night as I just visited my grandfather in the hospital as he went to the ER.
Question for #infosec crowd. I've always stayed away from TouchID (or similar) due to not wanting Apple (or other companies) to have access to my fingerprint. Am I wrong?
@mr_oova Most fingerprint detection systems built into mobile devices (not sure about TouchID specifically) store the biometric data locally, often in a "secure element", so, at least pro forma, the vendor does not get access to it. However, since the vendor controls the entire OS around it, one has to assume they can get access, at minimum when you unlock the device. Stationary scanners tend to be connected to databases directly, they don't even pretend otherwise. Also: In many jurisdictions you can be legally compelled (usually incarcerated until you comply, more or less indefinitely) to provide your fingerprints to police, which is often not true for passwords. They are easy to obtain against your will anyway (for example I have the fingerprint of former minister of the interior of Germany, Wolfgang Schaeuble, as a literal stamp right here: https://shop.digitalcourage.de/stempel/stempel-schaeubles-fingerabdruck.html), and you have a limited number of fingers you can lose (physically, or through aforementioned shenanigans) before that becomes a problem; Not to mention how many systems get very suspicious if you insist on using a different finger from their default, because the staff do not understand these implications. In short: Stay away from biometrics. They seem convenient until they really aren't; And they can be stolen, faked, and abused easily (especially bad compared to the nimbus of "security" they enjoy).