|
ate all the Oreos posted:i've been sketching out designs for simple to build basic little radio systems you could in theory make using cheap parts taken out of other things or bought for a few bucks and use to establish links in phone-jammed environments for this same reason. i'm not actually any good at it though so they probably won't work once i get around to building one ¯\_(ツ)_/¯ after i deal with some IRL stuff over the next couple months, i'm going to be starting an (infrequent) podcast and blog about this very issue and trying to network people up for ideas and stuff. PM me some time.
|
#
?
May 24, 2018 04:59
|
|
|
|
| # ? Jun 9, 2024 05:33 |
|
|
I can't share details but I came in direct personal contact with a systems administrator who was responsible for one of the sec fucks in this thread. I did a little consulting as part of the clean up, and while getting a debrief I thought 'man this sounds familiar' and looked up the news article here. It was pretty weird to be honest.
|
|
#
?
May 24, 2018 05:32
|
|
|
Salt Fish posted:I can't share details but I came in direct personal contact with a systems administrator who was responsible for one of the sec fucks in this thread. I did a little consulting as part of the clean up, and while getting a debrief I thought 'man this sounds familiar' and looked up the news article here. It was pretty weird to be honest. i've got about 16 months left on my NDA, gonna be fun up in this poo poo
|
|
#
?
May 24, 2018 06:11
|
|
|
 Company that makes a game I once bought about the existential horror of a ubiquitous surveillance state is now desperately begging me for consent to keep my data so they can spam me about their games. 
|
|
#
?
May 24, 2018 11:48
|
|
|
https://twitter.com/hanno/status/999554344386224128
|
|
#
?
May 24, 2018 12:53
|
|
|
Salt Fish posted:I can't share details but I came in direct personal contact with a systems administrator who was responsible for one of the sec fucks in this thread. I did a little consulting as part of the clean up, and while getting a debrief I thought 'man this sounds familiar' and looked up the news article here. It was pretty weird to be honest.
|
|
#
?
May 24, 2018 13:10
|
|
|
nothing smarter than using a multinational’s infrastructure for your illegal POC
|
|
#
?
May 24, 2018 13:33
|
|
|
is ZeroTier as much of a clusterfuck as it looks like? I just wasted 3 days back and forth troubleshooting some goober's vpn client because that thing was installed and trashing the route configs at the same time. Indiegogo VPN client/server/tunnel device is setting off a bunch of alarms in my head 
|
|
#
?
May 24, 2018 15:11
|
|
|
BangersInMyKnickers posted:is ZeroTier as much of a clusterfuck as it looks like? I just wasted 3 days back and forth troubleshooting some goober's vpn client because that thing was installed and trashing the route configs at the same time. Indiegogo VPN client/server/tunnel device is setting off a bunch of alarms in my head yeah i think lain had a website about that trash it's all bad, none of the vendors will ever support the poo poo they ship, and the dunning-krueger crowd will refuse to see any flaw with 'em
|
|
#
?
May 24, 2018 15:14
|
|
|
I literally just texted their intel lead about this. hopefully it gets fixed but lmao. Edited with info: He reported it to Hackerone but since it's not a Sony problem they slow rolled him. Wouldn't give him his t-shirt because of the low severity. Outsourced external dns. Loky11 fucked around with this message at 15:19 on May 24, 2018 |
|
#
?
May 24, 2018 15:15
|
|
|
Loky11 posted:I literally just texted their intel lead about this. hopefully it gets fixed but lmao. edit: welp 
|
|
#
?
May 24, 2018 15:19
|
|
|
Ur Getting Fatter posted:
yeah...it's gotten...sony legal's attention. RIP.
|
|
#
?
May 24, 2018 15:23
|
|
|
They should put TLS on it with let's encrypt and see if they can harvest cookies.
|
|
#
?
May 24, 2018 17:05
|
|
|
the original poster did put a letsencrypt cert on, the page was https lmao
|
|
#
?
May 24, 2018 17:11
|
|
|
Haha awesome.
|
|
#
?
May 24, 2018 17:18
|
|
|
Truga posted:the original poster did put a letsencrypt cert on, the page was https lmao https://www.myhomemanager.sony.com
|
|
#
?
May 24, 2018 17:35
|
|
|
mrmcd posted:
lmao
|
|
#
?
May 24, 2018 21:23
|
|
|
happy gdpr everyone
|
|
#
?
May 24, 2018 23:00
|
|
|
Wiggly Wayne DDS posted:happy gdpr everyone
|
|
#
?
May 24, 2018 23:01
|
|
|
Wiggly Wayne DDS posted:happy gdpr everyone
|
|
#
?
May 24, 2018 23:04
|
|
|
Wiggly Wayne DDS posted:happy gdpr everyone
|
|
#
?
May 24, 2018 23:08
|
|
|
Wiggly Wayne DDS posted:happy gdpr everyone
|
|
#
?
May 24, 2018 23:13
|
|
|
Wiggly Wayne DDS posted:happy gdpr everyone
|
|
#
?
May 24, 2018 23:14
|
|
|
Wiggly Wayne DDS posted:happy gdpr everyone
|
|
#
?
May 24, 2018 23:14
|
|
|
Wiggly Wayne DDS posted:happy gdpr everyone
|
|
#
?
May 24, 2018 23:16
|
|
|
Wiggly Wayne DDS posted:happy gdpr everyone I did not consent to this communication, and according to the GDPR article 69, section 420 signed by president Bill Clinton, you must delete this message within 24 hours or you will be hearing from my attorney.
|
|
#
?
May 24, 2018 23:49
|
|
|
also lol:quote:The typical "calls are recorded for training and security purposes" warnings will no longer be sufficient to gain assumed consent to record calls.
|
|
#
?
May 25, 2018 00:03
|
|
|
Wiggly Wayne DDS posted:happy gdpr everyone
|
|
#
?
May 25, 2018 00:05
|
|
|
Wiggly Wayne DDS posted:happy gdpr everyone
|
|
#
?
May 25, 2018 00:43
|
|
|
Wiggly Wayne DDS posted:happy gdpr everyone
|
|
#
?
May 25, 2018 00:48
|
|
|
Wiggly Wayne DDS posted:happy gdpr everyone
|
|
#
?
May 25, 2018 00:51
|
|
|
'Twas the night before GDPR and all through the house it was not known how many creatures were stirring because we do not have a legitimate business reason to store that information.
|
|
#
?
May 25, 2018 00:54
|
|
|
Doom Mathematic posted:'Twas the night before GDPR and all through the house it was not known how many creatures were stirring because we do not have a legitimate business reason to store that information. i did not consent to sharing my data with santa
|
|
#
?
May 25, 2018 00:57
|
|
|
Doom Mathematic posted:'Twas the night before GDPR and all through the house it was not known how many creatures were stirring because we do not have a legitimate business reason to store that information.
|
|
#
?
May 25, 2018 01:01
|
|
|
Has anyone cataloged LastPass's fuckups with their browser plugin in a single thing? The CVE sites only have a single DoS issue listed from last year and I know there was at least a half dozen trivial fuckups on their part that allowed disclosure of the decrypted store. We're in the process of implementing an internal credential management platform but it isn't ready yet and we need to steer people towards something else to bridge the gap. If I don't have good ammo against LastPass they're going to go there instead of 1Password. Hell, I'd rather them sync a shared OneDrive with a KeepAss db.
|
|
#
?
May 25, 2018 01:40
|
|
|
i know they've had a few isssues turned up by Project Zero, you could try searching the archives there
|
|
#
?
May 25, 2018 02:00
|
|
|
Maybe even search the last few iterations of SecFuck threads for the Tavis/LastPass stuff. Not sure how well the SA search function works, since I mostly lurk and shitpost.
|
|
#
?
May 25, 2018 02:15
|
|
|
BangersInMyKnickers posted:Has anyone cataloged LastPass's fuckups with their browser plugin in a single thing? The CVE sites only have a single DoS issue listed from last year and I know there was at least a half dozen trivial fuckups on their part that allowed disclosure of the decrypted store. We're in the process of implementing an internal credential management platform but it isn't ready yet and we need to steer people towards something else to bridge the gap. If I don't have good ammo against LastPass they're going to go there instead of 1Password. Hell, I'd rather them sync a shared OneDrive with a KeepAss db. type into google "taviso shower"
|
|
#
?
May 25, 2018 03:25
|
|
|
Phone posted:type into google "taviso shower" I love the security holes he finds but I don't want to see his sorry
|
|
#
?
May 25, 2018 03:28
|
|
|
|
| # ? Jun 9, 2024 05:33 |
|
|
ate poo poo on live tv posted:also lol: Please tell me this is actually true and not a joke
|
|
#
?
May 25, 2018 03:29
|
|