tasket

@tasket@infosec.exchange

Most things do not belong on the Internet.
#IoT #InternetOfShit

Imagine if we put wheels on everything and expected it all to navigate the Interstate.

Made some things for #QubesOS.

This profile is from a federated server and may be incomplete. Browse more on the original instance.

dangoodin, to random

Canadian Prime Minister Justin Trudeau has identified an unlikely public enemy No. 1 in his new crackdown on car theft: the Flipper Zero, a $200 piece of open source hardware used to capture, analyze and interact with simple radio communications.

On Thursday, the Innovation, Science and Economic Development Canada agency said it will “pursue all avenues to ban devices used to steal vehicles by copying the wireless signals for remote keyless entry, such as the Flipper Zero, which would allow for the removal of those devices from the Canadian marketplace through collaboration with law enforcement agencies.” A social media post by François-Philippe Champagne, the minister of that agency, said that as part of the push “we are banning the importation, sale and use of consumer hacking devices, like flippers, used to commit these crimes.”

In remarks made the same day, Trudeau said the push will target similar tools that he said can be used to defeat anti-theft protections built into virtually all new cars.

“In reality, it has become too easy for criminals to obtain sophisticated electronic devices that make their jobs easier,” he said. “For example, to copy car keys. It is unacceptable that it is possible to buy tools that help car theft on major online shopping platforms.”

https://arstechnica.com/security/2024/02/canada-vows-to-ban-flipper-zero-device-in-crackdown-on-car-theft/

tasket,

@dangoodin Actually, I heard that cars make criminals' jobs easier. So ban them, too.

codinghorror, to random

"It turns out that if you give everyone access to the Library of Congress, what they do is watch videos on TikTok." https://www.theatlantic.com/technology/archive/2024/02/chatbots-ai-neal-stephenson-diamond-age/677364/

tasket,

@codinghorror Younger generations are using libraries more, not less.

fifonetworks, to microsoft

The purpose of #Microsoft #Edge is to download #Google #Chrome.

tasket,

@fifonetworks @beep

This appeared right before your post... https://follow.ethanmarcotte.com/@beep/111885189160698959

tasket,

@fifonetworks 🤔​

tasket, to random

@jerry The noauthority-dot-social instance should be blocked. The admin moved to a new domain (from noagenda) to avert prior blocks, and he makes anti-trans posts. The about espouses the idea that the US Constitution has no authority. Many of the accounts are alt-right neo-confederate and some are pushing Russian war propaganda. #fediblock

fifonetworks, to random

Fun fact: data is stored in the cloud as ionized water droplets.

tasket,

@fifonetworks Also, you get a choice between Evian or Dasani. (Perrier is available only from iOS.)

briankrebs, (edited ) to random

Hot off the presses:

Three Americans were charged this week with stealing more than $400 million in a November 2022 SIM-swapping attack. The U.S. government did not name the victim organization, but there is every indication that the money was stolen from the now-defunct cryptocurrency exchange FTX, which had just filed for bankruptcy on that same day.

https://krebsonsecurity.com/2024/02/arrests-in-400m-sim-swap-tied-to-heist-at-ftx/

tasket,

@briankrebs Something the cryptocurrency zealots didn't account for (though I've seen it for over a decade)... Computer security cannot be perfected, and the industry itself is too madcap & rudderless to move it much beyond the worst case scenario.

Using algorithms as the only authority for finalizing transactions was bound to fail.

fifonetworks, to random

“I’m getting an ‘out of storage’ message on my phone, but I have plenty of storage left!”

A client had this problem today. I made an illustration to help them understand what was happening. Since other people no doubt run into the same issue, I’m sharing the picture with you.

Let’s say you have a phone with 256 GB of on-board storage, and your photos are automatically backed up to one or more cloud accounts. Maybe you have a free cloud account with 100 GB of storage. What happens when you have 112 GB of photos on your phone? If you read the storage notice closely, you’ll see that your cloud account, not your phone, is out of space.

Or you could have a local storage problem, rather than a cloud problem.

If you have a phone with 128 GB of storage, you won’t be able to store pictures locally when the device storage is full, even if you have 500 GB of cloud storage.

There’s a third type of problem: some people have their photos automatically saved to two different places. For example, you might be using Samsung Cloud and Google Cloud.

Where are your photos saved?
How much storage are you using?
How much storage do you have available?

#callmeifyouneedme #fifonetworks

#cloud #storage

tasket,

@fifonetworks Fourth type of problem: Dark patterns used to stimulate cloud storage revenue.

Apple turned on "live photo" by default on iOS. Every picture taken is actually a movie that is much larger than it would be otherwise. Most users don't realize this is eating up their internal storage capacity.
https://www.pcmag.com/how-to/how-to-turn-off-apple-live-photos

codinghorror, to random

“Many times when I identified as Libertarian, people said to me, “It’s just rich white guys that don’t want to be told what to do,” and I had a zillion answers to that — and now that seems 100 percent accurate.” https://www.cracked.com/amp/article_40871_penn-jillette-wants-to-talk-it-all-out.html

tasket,

@codinghorror It got this far because they were allowed to sell their laundry list of negative freedoms (those that trample the rights of others) as "freedom".

fifonetworks, to email

The PDF file attached to this email is malicious. You don’t even have to open it to know it should be deleted immediately. Outlook shows the “from” information, and this email didn’t come from Intuit.

The criminal who sent this email is an amateur. Be aware that the “from” information can be much more deceptive than we see in this email example. Sometimes you have to know how to examine the email header to see where the email is really from.

There are a lot of malicious emails that are of poor quality and easy to identify, like this one. By being informed and on guard, you can save yourself from a lot of trouble.

#callmeifyouneedme #fifonetworks

#spam #email #phishing #cybersecurity

tasket,

@fifonetworks Paying attention to domain names is a pet peeve of mine; people don't do it nearly enough. Although I tend to emphasize looking at the domain before clicking links.

dangoodin, (edited ) to random

Quick survey because I need to replace my 14-year-old monitor: Do I need a 4k monitor if I'm using it mostly for email, web browsing (with video) and occasional streaming? Is it worth spending extra, or will a non-4k monitor suit my needs? Keep in mind, I'll likely use this monitor for 14 or more years, so please make your recommendation what that in mind.

Update: Thanks for all the comments so far. To answer a few questions: I have room for only 1 monitor, so I want it to be no smaller than 27" because I often have multiple windows open it it'd be nice if I could put them side-by-side sometimes. I'm willing to go bigger, if it fits into my budget. I'd like to spend no more than $600.

tasket,

@dangoodin My take:

  • Good brand & price
  • Much prefer a 'taller' screen, like 16:10. YMMV.
  • I always look for an immediate way to control the brightness. I don't want to go through a menu (even just one level) to get the brightness control, as I'm adjusting it throughout the day.
StephanieMoore, to firefox
@StephanieMoore@mastodon.online avatar

Ok, made the switch to #Firefox and wondering what extensions people recommend. I’ve installed Badger, Facebook Container, Search By Image, and Dark Background and Light Text.

PS - this was an EASY switch!

#browser #browsers #searchengine

tasket,

@diazona @StephanieMoore @alexanderhay Multi-account containers was created to allow the use of multiple accounts on a single site. It can be used also to prevent tracking across many sites, but that entails manual work (you must consciously avoid using different sites in the same container).

The best "tracker containment" system for is its built-in first-party isolation (FPI) feature. It automatically silos all content incl. 3rd party cookies + cache separately according to the first-party site shown in the Location bar. FPI came after MAC, and one could say the latter led to its development. (Now Mozilla says the Enhanced Tracking Protection Strict mode is an evolved form of FPI, so this is very easy to enable from Settings.)

My take is: Block ads with uBlock Origin, and enable Strict ETP.... its much easier to use and won't fail due to absentmindedness. https://blog.mozilla.org/security/2021/02/23/total-cookie-protection/

tasket,

@teachpaperless This is an OK sentiment for 2012, but it is dangerous as it is facile IMO. The adtech industry is basically out of control, and they have been caught looking the other way while distributing malware (often no-click) to billions of people at a time repeatedly over many years. High malware transmission rates have been reported since at least 2010, and in some years ads were the dominant transmission vector. Your "nice" sites likely have no idea how safe their included ad networks are.

The FBI and NSA are recommending ad blockers, and most sites have moved on to donations or paywalls. https://techcrunch.com/2022/12/22/fbi-ad-blocker/

https://arstechnica.com/information-technology/2017/11/senator-urges-ad-blocking-by-feds-as-possible-remedy-to-malvertising-scourge/

https://www.yahoo.com/lifestyle/ads-steal-astonishing-amount-private-145916182.html

https://www.theregister.com/2015/08/27/malvertising_feature/

tasket,

@teachpaperless All I can do really is donate/subscribe where I think the product is exceptional. Although I think it helps me that I have a large array of sites in my rss reader and there are many stories that I'm not focused on enough to read past the byline.

News orgs should also consider a more cooperative model, since they are always citing each other's work. They should be willing to pay each other, too.

What gets me is that all of this somehow had to happen. That each consumer was expected to trust an ad (propaganda) system that was based on total mistrust, hence the need for tracking and running their code directly.

tasket,

@teachpaperless In that case I recommend using an operating system with stronger security, like Qubes OS.

qurlyjoe, to random
@qurlyjoe@mstdn.social avatar

TFW you realize that Star Wars is the story of an orphaned boy who became radicalized after a military strike kills his family. He is indoctrinated into an ancient religion, joins a band of insurgents, and carries out a terrorist attack that kills 300,000 people.

tasket,

@qurlyjoe What do the Death Star and its "inhabitants" (military personnel) represent to you? And what of the religion at its helm?

tasket,

@qurlyjoe I'm certainly aware of it. One of George W. Bush's advisors likened himself to Darth Vader and wrote a paper about why the Empire are the good guys.

It does limit one's persuasiveness when its assumed such POVs are not in play.

But also, theory of mind requires empathy. I would argue that words like empathy and love fell out of favor in popular culture since the late 90s. 😐​

Em0nM4stodon, to opensource

What is your absolute favorite
open source app? ✨

I know it's hard friends,
but you can only name ONE.

Go! 👇👀

tasket,

@Em0nM4stodon

Operating system: Qubes OS (sanity in a world of exploited code)

App: Firefox (with uBlock Origin)

josephcox, to random

New: We Need Your Email Address

You may notice we're asking for your email to read much of 404 Media. This is an existential issue explained in this 3000 word article

  • AI stealing our work
  • social media collapse
  • media industry tailspin

Please read it
https://www.404media.co/why-404-media-needs-your-email-address/

tasket,

@josephcox I subscribed at $10/mo. as well.
🙂​

JosephMenn, to random

Gift link: Russian government hackers broke into Microsoft’s systems and stole executive emails. The company is already under investigation for lapses that allowed diplomats’ emails to be taken by the Chinese. My story is here. https://wapo.st/3U3Aqgl

tasket,

@JosephMenn Microsec, the smallest sec of them all!

dangoodin, to random

Chinese authorities are clamping down on free speech by exploiting an AirDrop weakness Apple has known about for 5 years (at least).

https://arstechnica.com/security/2024/01/hackers-can-id-unique-apple-airdrop-users-chinese-authorities-claim-to-do-just-that/

tasket,

@dangoodin Does #Briar fill that gap?

#airdrop #china

codinghorror, to random

I hadn’t watched the Hyper-Reality short until today but it has aged well! https://www.youtube.com/watch?v=YJg02ivYzSs

tasket,

@codinghorror Wow. This person is just going shopping, and its totally gripping! Visual caffeine and commentary without overload. Very well directed.

liaizon, (edited ) to random
@liaizon@wake.st avatar

MKBHD talking about the fediverse. This is a big deal, I am surprised I hadn't seen anymore mention this until now. This is like John Oliver or Oprah talking about the fediverse in terms of the reach he has.

Via a post by threads engineer @shubhankar_91

https://yewtu.be/watch?v=h9koJstgdaI

tasket,

@maegul @liaizon I think moderation being the whole point is the reason why the fediverse will have to split in two. Instances will either want to moderate according to pre-Threads consensus, or they will drop their standards and expose their users to Threads. A third option will be to simply close up shop in disgust.

codinghorror, to random

I love Apple's hardware, but what the heck is going on with the Apple TV? I've had to reboot multiple Apple TVs (latest model) multiple times just to get basic video playback going across several apps like Hulu and Netflix and HBO Max. You'll press play and it crashes back out to the main menu. Repeat. Repeat. Until you reboot..

tasket,

@codinghorror For the money they charge, they better. My die-hard iOS friends have been buying Android stuff lately.

tasket,

@codinghorror Those Google Tensor processors perform very nice... :blobcatsmilehappy:​

  • All
  • Subscribed
  • Moderated
  • Favorites
  • megavids
  • osvaldo12
  • DreamBathrooms
  • mdbf
  • InstantRegret
  • ngwrru68w68
  • magazineikmin
  • everett
  • thenastyranch
  • Youngstown
  • slotface
  • cisconetworking
  • kavyap
  • ethstaker
  • JUstTest
  • modclub
  • GTA5RPClips
  • khanakhh
  • tacticalgear
  • Durango
  • rosin
  • normalnudes
  • Leos
  • provamag3
  • tester
  • cubers
  • anitta
  • lostlight
  • All magazines
    •