Show more

On The Allure of Flat Earth Debunking Videos
For a while now, I've really enjoyed watching SciManDan and others on Youtube debunking videos posted by flat eathers.  Based on the number of subscribers of these debunking video producers, I'm in good company.  SciManDan has over 300k subscribers, for example.

I also enjoy several other Youtube channels, including Numberphile, Fermilab, PBS Space Time, an
eternal.vision/on-the-allure-o

Jerry Bell boosted

Ghost blogging platform suffers security breach - hackers exploited Salt vulnerability in attempt to mine cryptocurrency.

grahamcluley.com/ghost-bloggin

In other news, I bought myself a 3d printer. The same model I bought my oldest son last year (prusa mk3s). I haven't received it yet - I ordered it a month ago, but Prusa has been waylayed by COVID, but hopefully it'll be here soon. Should be a fun diversion.

I closed registrations just over 2 weeks ago on infosec.exchange. In that time, I've had exactly 2 people ask me to register, only one of whom actually did. I suspect the convenience of the internet has trained people to just move on if the experience isn't frictionless...

Jerry Bell boosted

"WRONG IS WRONG, even if everyone is doing it.
RIGHT IS RIGHT, even if no one is doing it."

- Attributed to Saint Augustine (and also to William Penn)

Jerry Bell boosted

How does a TCP Reset Attack work?

A TCP reset attack is executed using a single packet of data, no more than a few bytes in size. A spoofed TCP segment, crafted and sent by an attacker, tricks two victims into abandoning a TCP connection, interrupting possibly vital communications between them.

robertheaton.com/2020/04/27/ho

Jerry Bell boosted

I just finished 4 weeks in my new job. It's been a learning experience for me. In addition to security, I own our business continuity program. Mike Tyson famously said "Everyone has a plan until they punched in the mouth." I suspect most organizations can relate to that idea in the wake of COVID. I (and the rest of the world) will be very glad when this is over. But, I am not even sure I know what "over" means any more.

Jerry Bell boosted

So, in my first blog post I simply describe why I want to work on my blog and what you can expect in the future.

My focus for the next 100 days will be on tech related topics: infosec, OSINT, open source and so on.

Feedback is welcome!

cancookrice.com/the-beginning/

Jerry Bell boosted
Jerry Bell boosted
Jerry Bell boosted
Jerry Bell boosted

Ok - registrations on infosec.exchange are now closed. All members should have the ability to send an invitation to people who might like to join. The intention is not to close off the site to anyone who legitimately wants to use the site - even if just to lurk. But, no spammers, please.

I think I am going to have to move infosec.exchange to invite only. The number of automated registrations (or mechanical Turk style registrations) is out of control. Less that .1% (1 out of a thousand) registrations appears to be real.

Jerry Bell boosted

And tonight's batch brings me to three dozen. I love the ragmask pattern; I've made a few process tweaks so that I can process a batch of 6 masks in an hour including set up and cleanup. And I'm not a fast sewist; my spouse (a quilter) can go almost twice as fast

Hardly feels like a dent when local care facilities are asking for thousands, but it's better than zero, and it's what I can do

Jerry Bell boosted

INTERPOL has been forced to issue an alert to global police about the heightened risk of ransomware attacks on hospitals and other front-line organizations as they battle the COVID-19 pandemic. ncsc.gov.uk/news/covid-19-expl

Jerry Bell boosted

The Sandboxie Windows sandbox isolation tool is now open-source!

Cybersecurity firm Sophos announced today that it has open-sourced the Sandboxie Windows sandbox-based isolation utility 15 years after it was released.

bleepingcomputer.com/news/soft

Jerry Bell boosted

Nothing new that some try to exploit the pandemic to their own advantages. Especially knowing that most are working from home and may not have proper cybersecurity tools venturebeat.com/2020/04/09/cyb

Show more
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.