Since apparently this is a major concern to the fediverse, I, the instance owner of infosec.exchange have worked with law enforcement on matters involving the security of the company I’m paid to protect, and my membership to infraguard is pending approval.
Commence defederation if you must.
More evidence today that public-by-default social networks are pretty broken, this time here on Mastodon.
The specific shit-fit doesn't matter. But it does raise an interesting question: When rumors spread in social networks, how may they be quelled?
In a privacy-embracing social network, is there a way to defend yourself against rumors that doesn't involve exposing yourself? I don't think there is.
Is there a way to reduce rumors and witch-hunts?
Avoiding the federation model might help...
Defensive Security Podcast Episode 234
Surviorship Bias and Infosec
Warning - it's possibly the most-NSFW "Smashing Security" podcast yet. But if you dare listen to the show, here's what's on the menu...
Why is Tampa’s mayor tweeting about blowing up the airport? Are hackers trying to connect with you via LinkedIn? And has @maria succeeded in her attempt to survive February without Facebook?
Plus, we have a bonus chat with security veteran Martin Overton to take a deeper look into cyber insurance.
Find the full show at https://www.smashingsecurity.com/117
Talkin' 'bout tax scams https://www.pcmag.com/article/366709/how-to-avoid-tax-season-scams
Just published on opensource.com - writeup on Reducing Security Risks with Centralized Logging https://opensource.com/article/19/2/reducing-security-risks-centralized-logging
Need some help here.
What are the basics of infosec? What should everyone in this field should learn/ know/ be able to do?
The reason I am asking: I am kinda lost bc this field is so big. There is so much to learn which makes it kinda difficult to detect the basics (as a beginner).
Personal experience, book/ resource recommendations and and other feedback is highly welcome and preferable with a reason why s.o. should know it.
I predict that, between the NIS, GDPR, and the forthcoming copyright law (https://arstechnica.com/tech-policy/2019/02/european-governments-approve-controversial-new-copyright-law/), an increasing portion of the internet will soon be inaccessible to Europeans. Also creates high barriers to start new Internet-based businesses in the EU.
Symantec 2019 Internet Security Threat Report
Anyone here working with containers on AWS ECS? I'm looking at https://ecsworkshop.com/introduction/3tier/ but butting heads with mu trying to abstract things away...
Apple sued because two-factor authentication... oh, I give up.
Well, it finally happened to me: My very own creepy Facebook moment.
But I don't even use Facebook.
TL;DR: Facebook account I opened 8.5 years ago and never used receives "recommendation", out of the blue, to check out a small store I only just learned existed and started patronizing.
(That account: No phone number, no friends, no profile info, sort-of-fake name, dedicated email address. Me: No smartphone, didn't pay by credit card.)