|
Martytoof posted:Money? Yes. We are on the same page. Wiggly Wayne DDS posted:i mean when was this change meant to have occurred? it's been a joke in the industry for over a decade Thankfully for me (a CEH haver) the people that hire me are not in "the industry" so when I get introduced as a "certified ethical hacker" it's like, only 75% they'll laugh at me and not 100%.
|
#
?
Nov 28, 2018 05:24
|
|
|
|
| # ? May 10, 2024 01:43 |
|
|
Cup Runneth Over posted:Should be required reading for Node users IMO: https://hackernoon.com/im-harvesting-credit-card-numbers-and-passwords-from-your-site-here-s-how-9a8cb347c5b5 I'm not really into developing, so I'd never read this, but this just furthers my notion that all information on the internet is compromised
|
|
#
?
Nov 28, 2018 12:33
|
|
|
Cup Runneth Over posted:Should be required reading for Node users IMO: https://hackernoon.com/im-harvesting-credit-card-numbers-and-passwords-from-your-site-here-s-how-9a8cb347c5b5 Ever since I read npm can deliver different code than what's on git (which the author has written about and thus gained my trust) I have been trying to enact devs/it that use npm to do git pulls instead. It's lovely but npm started it !! edit: it's easier than you would think to do and the dev just sets the requirements like always. EVIL Gibson fucked around with this message at 13:33 on Nov 28, 2018 |
|
#
?
Nov 28, 2018 12:47
|
|
|
GDPR is gonna be so fun for regulators
|
|
#
?
Nov 28, 2018 13:41
|
|
|
orange sky posted:GDPR is gonna be so fun for regulators 
|
|
#
?
Nov 28, 2018 14:49
|
|
|
orange sky posted:GDPR is gonna be so fun for regulators The only thing wrong with this is how small the fines were.
|
|
#
?
Nov 28, 2018 14:53
|
|
|
orange sky posted:GDPR is gonna be so fun for regulators No sign to tell people they are being video'd in public, good job EU.
|
|
#
?
Nov 28, 2018 15:16
|
|
|
orange sky posted:GDPR is gonna be so fun for regulators More moooore
|
|
#
?
Nov 28, 2018 15:45
|
|
|
orange sky posted:GDPR is gonna be so fun for regulators This is truly beautiful. edit: Uber ChubbyThePhat fucked around with this message at 18:21 on Nov 28, 2018 |
|
#
?
Nov 28, 2018 18:15
|
|
|
Nalin posted:See: uBlock vs uBlock Origin Thanks for this, I was wondering about the name.
|
|
#
?
Nov 28, 2018 19:21
|
|
|
Rufus Ping posted:the option is still showing up for me in the bottom right corner of my.1password.com when I log in Thanks!
|
|
#
?
Nov 28, 2018 19:36
|
|
|
should I switch from my perpetual 1password lic to the subscription
|
|
#
?
Nov 28, 2018 20:14
|
|
|
NevergirlsOFFICIAL posted:should I switch from my perpetual 1password lic to the subscription Why would you want to?
|
|
#
?
Nov 28, 2018 20:26
|
|
|
Evis posted:Why would you want to? Watchtower
|
|
#
?
Nov 28, 2018 20:28
|
|
|
Volmarias posted:The only thing wrong with this is how small the fines were. 
|
|
#
?
Nov 28, 2018 21:23
|
|
|
NevergirlsOFFICIAL posted:should I switch from my perpetual 1password lic to the subscription probably depends what devices you use it on standalone is okay for a single computer but if you want it on a second one or a phone then syncing and backing up is easier with the subscription version also if you want to get your family in on it and share passwords with them it's the way to go if otoh you desperately want to avoid the cloud and want to save $5/mo don't bother The Fool posted:Watchtower bit of a gimmick; just sign up for haveibeenpwned instead
|
|
#
?
Nov 28, 2018 22:16
|
|
|
https://www.dell.com/learn/us/en/uscorp1/press-releases/2018-11-28-customer-updatequote:Dell is announcing that on November 9, 2018, it detected and disrupted unauthorized activity on its network attempting to extract Dell.com customer information, which was limited to names, email addresses and hashed passwords. dumpster_fire.jpg
|
|
#
?
Nov 28, 2018 22:18
|
|
|
The bar is so low that I'm somewhat impressed they caught it while it was happening, as opposed to nine months later
|
|
#
?
Nov 28, 2018 22:21
|
|
|
Rufus Ping posted:bit of a gimmick; just sign up for haveibeenpwned instead HIBP doesn't have a signup for their password service, and I have no interest in using something outside of my password manager to check for compromised passwords.
|
|
#
?
Nov 28, 2018 22:32
|
|
|
The Fool posted:HIBP doesn't have a signup for their password service, and I have no interest in using something outside of my password manager to check for compromised passwords. Use their API to send only the first 5 characters of your password's sha-1 hash, if your password is compromised it'll return the whole hash
|
|
#
?
Nov 28, 2018 22:45
|
|
|
The Fool posted:HIBP doesn't have a signup for their password service, right yeah fair enough
|
|
#
?
Nov 28, 2018 22:49
|
|
|
orange sky posted:Use their API to send only the first 5 characters of your password's sha-1 hash, if your password is compromised it'll return the whole hash I understand that this is an option, but there are a ton of people that are not going to do that or are unable to do that. FWIW, this is what Watchtower is doing when it checks your passwords.
|
|
#
?
Nov 28, 2018 22:52
|
|
|
Internet Explorer posted:I see you. I had to make sure this was installed nowhere in my org this morning. Thankfully nobody has sidestepped their inability to do so (in this exact case anyways).
|
|
#
?
Nov 29, 2018 00:34
|
|
|
Internet Explorer posted:I see you. Allowing adding trust anchors is bad and continues to be bad. 
|
|
#
?
Nov 29, 2018 02:10
|
|
|
Sure! https://twitter.com/mikefarrell/status/1068201117245292549
|
|
#
?
Nov 30, 2018 02:57
|
|
|
hack the matress. or news at 11, can hackers turn your matress into a bomb stayed tuned after the break.
|
|
#
?
Nov 30, 2018 03:02
|
|
|
https://twitter.com/sleepnumber/status/1068297192941600768
|
|
#
?
Nov 30, 2018 03:43
|
|
|
wargames posted:hack the matress. or news at 11, can hackers turn your matress into a bomb stayed tuned after the break. Hackers can turn your matress into a hell trap. https://www.youtube.com/watch?v=W7t6S6vg6U8
|
|
#
?
Nov 30, 2018 20:18
|
|
|
Are they talking about the app then? Someone wrote, very specifically, that there is audio recording enough to require a bullet point.
|
|
#
?
Nov 30, 2018 22:34
|
|
|
Guy Axlerod posted:Hackers can turn your matress into a hell trap. NSFL this
|
|
#
?
Dec 1, 2018 01:30
|
|
|
Remember, this is the same company that was knocking people’s mobile hotspots out of the air to force them to use their pay-to-access guest network at conferences and hotels. And got slapped by the FCC for $600K fine. The hilarious thing is I know the product they used and the vendor SPECIFICALLY told them using that particular feature in the way they wanted was illegal and HIGHLY NOT RECOMMENDED.
|
|
#
?
Dec 1, 2018 14:51
|
|
|
Proteus Jones posted:Remember, this is the same company that was knocking people’s mobile hotspots out of the air to force them to use their pay-to-access guest network at conferences and hotels. And got slapped by the FCC for $600K fine. Oh no, not 600k.
|
|
#
?
Dec 1, 2018 15:18
|
|
|
Sickening posted:Oh no, not 600k. I agree it’s not a lot, but would you rather $0?
|
|
#
?
Dec 1, 2018 15:25
|
|
|
Proteus Jones posted:Remember, this is the same company that was knocking people’s mobile hotspots out of the air to force them to use their pay-to-access guest network at conferences and hotels. And got slapped by the FCC for $600K fine. To be fair it was precisely one property that did this and like most chain hotels was actually a franchise location owned by someone else that Marriott started managing about a year before the complaint. But since Marriott was paid to operate it at the time of the complaint they got to eat the fine. And this recent breach actually started well before Marriott enter the picture. It started in 2014 when Starwood was its own company; Marriott agreed to acquire them in 2015, and the breach was finally detected a couple weeks after they finally merged the two reward programs into one back in August/September. I guess I’m basically saying Marriott keeps getting screwed by their acquisitions.
|
|
#
?
Dec 1, 2018 15:31
|
|
|
Sounds more like they don't do adequate due diligence.
|
|
#
?
Dec 1, 2018 15:40
|
|
|
fordan posted:To be fair it was precisely one property that did this and like most chain hotels was actually a franchise location owned by someone else that Marriott started managing about a year before the complaint. But since Marriott was paid to operate it at the time of the complaint they got to eat the fine.  
|
|
#
?
Dec 1, 2018 15:56
|
|
|
https://twitter.com/jk1645/status/881096562633527297?s=19 That dude's bio.. he must be having a couple of lovely days
|
|
#
?
Dec 1, 2018 16:32
|
|
|
|
| # ? May 10, 2024 01:43 |
|
|
fordan posted:To be fair it was precisely one property that did this and like most chain hotels was actually a franchise location owned by someone else that Marriott started managing about a year before the complaint. But since Marriott was paid to operate it at the time of the complaint they got to eat the fine. They were *caught* doing it at one property, and it’s naive to think it only happened at one property. They had inquired about the ability to do it years prior and vendor said they would not manage or configure it that way for them because the way they wanted to use is illegal in the US. This was Marriott that asked,so claiming they inherited it is misleading. I was on the periphery of these discussions. Here’s a link to the complaint available in PDF, DOC or TXT formats: https://www.fcc.gov/document/marriott-pay-600k-resolve-wifi-blocking-investigation Edited to clear up a misread of your post on my part. Proteus Jones fucked around with this message at 19:07 on Dec 1, 2018 |
|
#
?
Dec 1, 2018 18:55
|
|