Pinned toot

Just a reminder, you can support infosec.exchange through liberapay: liberapay.com/Infosec.exchange

Thanks!

Just upgraded infosec.exchange to Mastodon 2.9.0. The UI seems a bit nicer.

@jerry and also, I have been married to an American women longer than I have not, and she’s twice the apparently max age. She is beyond awesome in every dimension. .

The “womenarestupid” spam seems like an interesting attack on mastodon. Looks like dozens, possibly hundreds of accounts created across many instances all posting the same thing.

Holy moly. Not sure what is up with @GloboHomos but that account is about to get zapped.

Jerry Bell boosted

Well, it's happening. I've been asked to start presenting to my senior leadership and eventually my board on security concerns within my org. What metrics do you guys share? I have a list (AV stats, phishing stats, training stats, details on pen test results and resolutions, vulnerability assessment results, etc).

What do you share with your leadership when it comes to security? Also looking for recommendations on reading materials or talks on this. ;-)

Jerry Bell boosted

Question to writers, especially long form (long poetry, books, graphic novels, etc):

What recommendations do you have for workflow and discipline?

I only have an hour and a half to spare each morning. It’s hard to get past that initial writer’s block. By the time I get going, it’s time to stop and I only have written 500 words.

I also only write once or twice a week.

Trying to get 2,000 words a day (within two hours). Trying to write every day.

Jerry Bell boosted

Microsoft Releases Sysmon 10 With DNS Query Logging Feature

Microsoft has released Sysmon 10 today and with it comes the eagerly anticipated DNS Query Logging feature. This feature will allow Sysmon users to log DNS queries performed on a monitored computer, which will also include the executable that performed the query.

Microsoft Releases Sysmon 10 With DNS Query Logging Feature bleepingcomputer.com/news/micr

Jerry Bell boosted
Jerry Bell boosted

Just to remind my IT affine bubble:

Plan for your death; what passwords should be able to be accessed after your death, which mustn't?
Share a database with the current ones and maybe a splitted password with the right people .

Make contact lists, if your phone is locked

Jerry Bell boosted

Is there a good list of infosec blogs that are less business-oriented and more maker/breaker/hacker focused?

Bonus points for appsec/hardware

Jerry Bell boosted

Any ceph admins around here? Having trouble trying to do a test install

Jerry Bell boosted

"Circumventing my source code" as reason to block adblockers? Well that's a new one...

Maybe I really should go back to running NoScript by default.

Jerry Bell boosted

For those who are in and around Waterloo, Ontario (in Canada), we have our CFP live! Even if you're not, feel free to look, we're just not offering travel assistance in our first year.

Two tracks, one business and one technical. If you're interested in speaking, take a look:

papercall.io/cybercityconf

Website: cybercityconf.io

Tickets will be available soon for those interested in coming without speaking.

Jerry Bell boosted

When I was a child, I thought that the sun burning out was a critical problem my generation would need to solve.

#ChildhoodAdmissions

Jerry Bell boosted
Jerry Bell boosted

Has anyone been to, is going to or has heard of infosecurityeurope.com ? I've been able to get a day off for it as looks like a lot of the talks might actually be useful, they also have a SANS CTF, though I may give it a miss. Not that confident!

Wow. It takes a lot to make me made, but after @oneway got reported, I'm going to just domain block oneway.masto.host.

Jerry Bell boosted
Jerry Bell boosted

Does anyone have any experience with either Kolab or KolabNow? I'm looking at my private e-mail options.

Show more
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.