|
https://www.youtube.com/watch?v=DJklHwoYgBQ
|
#
?
May 12, 2017 10:25
|
|
|
|
| # ? Jun 1, 2024 17:05 |
|
|
man i remember when i first read about gait analysis & keyboard pauses & using them for identification. it was pretty mindblowing but of course it goes for every single thing we do. you could likely identify people by the way they pick their nose if you have enough data about people picking their noses
|
|
#
?
May 12, 2017 12:02
|
|
|
Powaqoatse posted:man i remember when i first read about gait analysis & keyboard pauses & using them for identification. it was pretty mindblowing but of course it goes for every single thing we do. something something zizek
|
|
#
?
May 12, 2017 12:05
|
|
|
you ever pick your toes in Poughkeepsie? we'll know!
|
|
#
?
May 12, 2017 12:51
|
|
|
Jeez, and here I thought internet of poo poo was a metaphor
|
|
#
?
May 12, 2017 13:24
|
|
|
Please Use KeepAss
|
|
#
?
May 12, 2017 13:46
|
|
|
BangersInMyKnickers posted:Please Use KeepAss
|
|
#
?
May 12, 2017 13:48
|
|
|
Last Chance posted:are you sure you don't have dissociative identity disorder and you actually own both email accounts? man, i wish
|
|
#
?
May 12, 2017 13:49
|
|
|
BangersInMyKnickers posted:Please Use KeepAss 
|
|
#
?
May 12, 2017 13:58
|
|
|
surebet posted:security fuckup: the poop is trying to touch me edition Just ignore it/archive it/trash it. If she keeps doing it create a filter to stop her stuff from showing up. You can't stop people from idiotically sending you their stuff, but please don't take advantage of that idiocy.  A long time ago I picked up a very generic gmail address, something as common as help@gmail.com (and similar to that). Every time I check that address these days it's a dumpster fire of folks willingly dumping sensitive information to it and convincing every single idiot to stop sending things to it would take up too much time. Hell. I had a visa processing office in Iran cc'ing that address on every passport and visa they processed for months with full color scans of passports attached to every application.
|
|
#
?
May 12, 2017 14:56
|
|
|
can you put an auto respond on saying "stop sending me poo poo you moron" ?
|
|
#
?
May 12, 2017 15:12
|
|
|
BangersInMyKnickers posted:Please Use KeepAss two-ply authentication
|
|
#
?
May 12, 2017 15:29
|
|
|
welp https://www.theguardian.com/society/2017/may/12/hospitals-across-england-hit-by-large-scale-cyber-attack
|
|
#
?
May 12, 2017 15:33
|
|
|
2FA two flush authentication
|
|
#
?
May 12, 2017 15:33
|
|
|
Ur Getting Fatter posted:two-ply authentication aes poofish
|
|
#
?
May 12, 2017 15:34
|
|
|
Thanks Ants posted:welp quote:Hospitals across the country appear to have been simultaneously hit by a bug in their IT systems ah yes that "malware appears out of nowhere through no fault of anyone" bug big problem that one's been causing
|
|
#
?
May 12, 2017 15:35
|
|
|
in more secfuck news: https://www.bleepingcomputer.com/news/security/telefonica-tells-employees-to-shut-down-computers-amid-massive-ransomware-outbreak/ quote:A ransomware outbreak is wreaking havoc all over the world, but especially in Spain, where Telefonica — one of the country's biggest telecommunications companies — has fallen victim, and its IT staff is desperately telling employees to shut down computers and VPN connections in order to limit the ransomware's reach. quote:In Twitter conversations, Telefonica employees and collaborators told Bleeping Computer that the company had sent several internal memos, telling employees to also disconnect from the company's internal WiFi network. Additionally, the company blasted warnings throgh audio speakers inside their Madrid headquarters, warning employees to shut down their computers.
|
|
#
?
May 12, 2017 15:38
|
|
|
it was reported as ransomware to at least one reporter before the announcement re: hospital https://twitter.com/GossiTheDog/status/863035626496684035 https://twitter.com/millscj01/status/863038449720414208 https://twitter.com/Felix_Nuno/status/863039071857364992
|
|
#
?
May 12, 2017 15:38
|
|
|
i'm glad people finally started attacking low hanging fruits, maybe they'll finally start taking this poo poo serisouly hahaha who am i kidding nothing will change, iot mri in 3.. 2.. 1..
|
|
#
?
May 12, 2017 15:38
|
|
|
im imagining the network guys doing a full boris in goldeneye and pulling modems out to stop the hack
|
|
#
?
May 12, 2017 15:40
|
|
|
imo "full boris" should be a standard name for that kind of intrusion response plan "just finished a call with the it chief. we're going full boris"
|
|
#
?
May 12, 2017 16:29
|
|
|
if you don't use the phrase "slug heads" at least once then it's a half boris, at best
|
|
#
?
May 12, 2017 16:35
|
|
|
breaking: chief of NHS IT authorizes deployment of spike, declares self "invincible"
|
|
#
?
May 12, 2017 16:46
|
|
|
Deep Dish Fuckfest posted:imo "full boris" should be a standard name for that kind of intrusion response plan Meat Beat Agent posted:if you don't use the phrase "slug heads" at least once then it's a half boris, at best 
|
|
#
?
May 12, 2017 17:00
|
|
|
haveblue posted:breaking: chief of NHS IT authorizes deployment of spike, declares self "invincible" runs at wall, disappears
|
|
#
?
May 12, 2017 17:00
|
|
|
Thanks Ants posted:welp my source on the inside says 'our systems aren't affected because we run our own network on win 7 but all other machines are xp and with no AV because they didn't want to pay [av vendor] for extended support' i mean av is poo poo and all but it probably would have picked up last years cryptolocker also lol at 'cyberattack', thats like calling a hurricane you knew was coming as an act of 'weather war'
|
|
#
?
May 12, 2017 17:15
|
|
|
well it isn't last year's cryptolocker it's WannaCry using ms17-010
|
|
#
?
May 12, 2017 17:17
|
|
|
Wiggly Wayne DDS posted:well it isn't last year's cryptolocker it's WannaCry using ms17-010 oh well i guess whoever decided not to update the av is off the hook. They are mega owned though. There's no segregation of machines between 'poo poo running IE7 people use on their break' and 'machines used to do diagnostic images'
|
|
#
?
May 12, 2017 17:33
|
|
|
Nah AV wouldn't pick that up in the first few hours or days after release even if the ransomware is "old". The samples used would be unique. Also lol this is what you get if you don't patch.
|
|
#
?
May 12, 2017 17:34
|
|
|
https://blockchain.info/address/115p7UMMngoj1pMvkpHijcRdfJNXj6LrLn If you'd like to follow along with people paying up.
|
|
#
?
May 12, 2017 17:36
|
|
|
Truga posted:i'm glad people finally started attacking low hanging fruits, maybe they'll finally start taking this poo poo serisouly between poo poo like this and the latest executive order I fully expect security compliance standards like NERC-CIP to expand in scope to include things like all the municipal utilities that have been flying under the radar. The EO is surprisingly not poo poo except for the whole "cyber threat deterrence policy" bit which could have wildly unintentional consequences for security researchers and people doing disclosures
|
|
#
?
May 12, 2017 17:36
|
|
|
re nhs: just heard from a guy i know about how their office got clipped "Thankfully it looks like only one of our machines was hit, and it was a low end dev server running Windows server 2003, which is probably why it got hit in the first place." 
|
|
#
?
May 12, 2017 17:53
|
|
|
is it just me or is an azure-hosted cloud website leaving iis stack trace error pages on a bad idea
|
|
#
?
May 12, 2017 18:04
|
|
|
Ur Getting Fatter posted:in more secfuck news: My hospital got completely taken out. Everything went down and managers were running around shouting at people to switch off computers at the socket. Lots of lulzy chat about cybers and Russia by people who struggle to unlock their phones who are in charge of the response.
|
|
#
?
May 12, 2017 18:12
|
|
|
anthonypants posted:is it just me or is an azure-hosted cloud website leaving iis stack trace error pages on a bad idea lol leaving stack traces on an error page is always a bad idea in production, doesn't matter where it's running
|
|
#
?
May 12, 2017 18:12
|
|
|
my goth gf posted:lol leaving stack traces on an error page is always a bad idea in production, doesn't matter where it's running
|
|
#
?
May 12, 2017 18:13
|
|
|
anthonypants posted:what if that website is "secret server cloud dot com" i don't know what the gently caress that is but it's still bad e: oh god i just looked and that sounds real fuckin dumb
|
|
#
?
May 12, 2017 18:13
|
|
|
Loving Africa Chaps posted:My hospital got completely taken out. Everything went down and managers were running around shouting at people to switch off computers at the socket. Lots of lulzy chat about cybers and Russia by people who struggle to unlock their phones who are in charge of the response. a cryptolocker variant that blasted out WoL frames to every conceivable Mac address for maximum penetration would be slick as hell
|
|
#
?
May 12, 2017 18:50
|
|
|
my goth gf posted:i don't know what the gently caress that is but it's still bad
|
|
#
?
May 12, 2017 19:06
|
|
|
|
| # ? Jun 1, 2024 17:05 |
|
|
BangersInMyKnickers posted:maximum penetration call me
|
|
#
?
May 12, 2017 19:13
|
|