Pinned toot

Just a reminder, you can support infosec.exchange through liberapay: liberapay.com/Infosec.exchange

Thanks!

In other news, This is going to be my bug out spot soon. bestbeachgetaways.com/property

Not very good for a bugout spot, but it does have a nice view.

Forgot to announce that the upgrade completed successfully. Currently pruning preview cards and old remote media - freed up >150GB so far 😅

Show thread

Upgrading infosec.exchange to Mastodon 3.3.0. Hold on to your hats...

Jerry Bell boosted

Shifting Cloud Security Left — Scanning Infrastructure as Code for Security Issues

Nice overview of a number of tools (Checkov, Regula, Terraform-compliance, Terrascan, tfsec) with examples of custom check writing and more.

blog.christophetd.fr/shifting-

Jerry Bell boosted

us pol 

Dept of State says that Trump's term ends tonight at 7:49PM. Definitely a defaced website, but we can dream.

state.gov/biographies/donald-j

Jerry Bell boosted
Jerry Bell boosted
Jerry Bell boosted

I have to say, whatever they did has made the infosec.exchange server very snappy. Pretty happy. So far.

...and we’re back. Hosting company moved us to a new server and it took about 10x longer than expected.

Jerry Bell boosted

I've started up a new called EliteCast. It's aimed at business leaders and decision-makers who want to understand the importance of without all the technical jargon. The first episode is a bit rough, IMO, but I'll get back into the groove soon.

Spotify link as I wait for Apple to approve my listing:

open.spotify.com/show/1bwMb0Ro

Thanks, and I hope you all enjoy it!

Jerry Bell boosted

Infosec certs are not just about showing employers or the community/world at large that you have knowledge. They can help one feel like they actually do know things and can contribute. This is what happened for me.
I think it is time that certs stop getting such a bad rap.

Jerry Bell boosted

Tell me whom to follow here. Planning to stick here longer this time.

Jerry Bell boosted

So if someone made a podcast about security that's aimed at the C-Level, would you listen to it? Not the usual deep, technical, jargon but rather aimed at executives. No news, just best practices.

Please boost for maximum coverage.

Jerry Bell boosted

Anyone else working on the SANS Holiday Hack Challenge? (link below) I've gotten through 4 of the objectives so far and a handful of terminal challenges but it'd be fun to group up and meet some other people.

Also thanks again to @gangrif for pointing it out to me! I appreciate it!

Jerry Bell boosted

Cybersecurity firm FireEye says it was hacked by a nation state

apnews.com/article/business-ca

"The stolen 'red team' tools — which amount to real-world malware — could be dangerous in the wrong hands. FireEye said there’s no indication they have been used maliciously. But cybersecurity experts say sophisticated nation-state hackers could modify them for future use probing vulnerabilities."

Jerry Bell boosted

The infosec handbook has left the fediverse:
infosec-handbook.eu/news/2020-

I joined the fediverse thanks to them. Understandable decision, but still - what a loss... 💔

Apologies for the outage. I really need to move this site to a different provider.

Jerry Bell boosted

I'm a developer looking to get into pentesting. I've played around on hackthebox.eu a bit but is this worth my time or are there better resources?

Show older
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.