Update: he's looking for a remote red-teaming job/internship this summer. Did very well in a couple of competitions this spring. If you have leads or tips please send them! @woland @whonose123 @rudolf @treitos @lertsenem @jerry @superruserr @bamfic@hub.spaz.org @fribbledom

Show thread

I am happy to announce I was appointed VP and CISO of IBM Public Cloud today.

Thanks for all the suggestions. I asked him whether he wanted to have fun and learn or break things. I wish I had seen @woland 's post first, but I ended up buying a different and rather recognizable Hak5 product. πŸ¦†

Show thread

Imagine you are a 20 y.o. studying software development but feel drawn to the dark side (). What would you wish for on your Christmas list (under $50)?

Looking for IR Tabletop tips:

What frustrates players that should be avoided?

What sorts of twists and turns work well to throw in challenges and keep things interesting without going into the realm of the implausible?

I'm a novice. I picked up a 3B+ earlier this year, set up a PiHole, etc., but was a little disappointed by its performance for day-to-day web browsing and other general computing stuff (esp. anytime video was involved). Is the 4 as big a jump in performance as it seems?

This is a staggering number. To put it in perspective, a $5B fine would be {checks notes} *more than twice* the maximum fine under .

Facebook Expects to Be Fined Up to $5 Billion by F.T.C. Over Privacy Issues: nytimes.com/2019/04/24/technol

#2128 "New Robot" 

"Some worry that we'll soon have a surplus of search and rescue robots, compared to the number of actual people in situations requiring search and rescue. That's where our other robot project comes in..."

#2122 "Size Venn Diagram" 

Terms I'm going to start using: The Large Dipper, great potatoes, the Big Hadron Collider, and Large Orphan Annie.

Adi Shamir, the S in RSA, could not obtain a tourist visa to enter the US in order to attend the conference he helped found. He appeared by video, saying, "perhaps it’s time we rethink how and where we organize our major scientific conferences."

From birdsite twitter.com/wmaxeddy/status/11

do πŸ‘ not πŸ‘ expose πŸ‘ rdp πŸ‘ to πŸ‘ the πŸ‘ internet πŸ‘. Use πŸ‘ a πŸ‘vpn πŸ‘ or πŸ‘ ACL πŸ‘ you πŸ‘ coward/potato.

That tack has definitely changed, and I think this conversation was very different. Kim was saying that the 2FA process does more harm than good when people aren't ready for it. And I completely agree with that. She clearly understands that there is no magic bullet, even when she has a phenomenally successful tool on her hands.

Show thread

Just 24hrs with Pi-hole protecting my home network. That's a lot of DNS activity.

Not strictly related, but this is a very big deal. The main hurdle facing the plaintiffs' bar on these suits was this standing/injury issue. If your company has been playing fast and loose with data...you may want to get on top of that. capitolfax.com/2019/01/25/supr

Show older
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.