Show more
Jerry Bell boosted
Jerry Bell boosted

I see a lot of articles say things like "They now run this service in the cloud—which brings its own set of security challenges." I wish they would equivalently write "They run their IT in their own data centres—which brings its own set of security challenges."

DIY infrastructure? Oh that's obviously secure. Professionally-run commercial clouds? Whoa, they're risky.

Jerry Bell boosted

It’s Feb and that means the countdown to RSA is upon us.

If you’re coming to SF, please reach out if you need taco, coffee or any other type of local recommendations!

Jerry Bell boosted

Just received my , any interesting projects you recommend me to build?

Looks like I get 3 weeks in Dallas in Feb. Should be exciting.

Jerry Bell boosted

Travelex hobbles back online, one month after ransomware hit it hard.

The beleaguered company, hit by the REvil ransomware on New Year's Eve, has not yet been able to restore all of its online services.

grahamcluley.com/travelex-rans

Jerry Bell boosted
Jerry Bell boosted

Why do people go around insulting everyone? Everyone who uses the cloud "blindly trust the cloud providers"? Nobody is doing due diligence? Nobody has a long list of security risks they track and controls and mitigations, huh? And they want to "disprove the assumption that cloud infrastructures are secure". Because the existence of one bug means what? It's "insecure"? The research is legit, but the preamble is garbage from an out-of-touch techie. research.checkpoint.com/2020/r

Jerry Bell boosted

Follow up my colleague Michael Kan's excellent reporting: Avast will end browser data harvesting.

"Avast CEO Ondrej Vlcek announced his company plans to shut down operations at Jumpshot, the subsidiary in charge of selling the browser history data. "As CEO of Avast, I feel personally responsible and I would like to apologize to all concerned," he said in a statement."

pcmag.com/news/avast-to-end-br

Jerry Bell boosted
Jerry Bell boosted

Just published: Solving Log Collection Challenges with Event Tracing nxlog.co/whitepapers/windows-e

Event Tracing for Windows (ETW) logs kernel, application and other system activity. ETW provides better data and uses less resources.

I also added a section with an example of messing around with ETW for another reason to do ETW data centralization.

This part had to be taken out though: infosec.exchange/@superruserr/

Jerry Bell boosted
Jerry Bell boosted
Jerry Bell boosted
Jerry Bell boosted

If you are in Luxembourg area, it looks like there are some free trainings in February, but a no show would be a 40 euro fee

en.xing-events.com/UXMOBFA

en.xing-events.com/DLCMDJY

Show thread
Jerry Bell boosted

is there a good pure-clojurescript reactive web framework or do i have to use react + bindings? (are inferno and preact worth trying? react is huuge.)

Jerry Bell boosted

Tell me:

What skills would you like to be better at and who is your "role model"?

Jerry Bell boosted

One of my favorite details of Mandalorian lore is that they culture milk, and when they do so they sell the solids but keep the leftover liquid

This is the whey

Jerry Bell boosted

How do you introduce yourself to people in a con/ environment?

Just your clear name, Just your handle or both?

Please RT for reach

Show more
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.