|
Rufus Ping posted:whats this about p sure its just a "hurr spy agency has u" thing
|
#
?
Dec 4, 2018 16:54
|
|
|
|
| # ? Jun 8, 2024 14:26 |
|
|
Father Jack posted:how subtle are phishing things these days? i wouldn't fall for the most obvious kinds, but i can't claim to be either an expert nor on constant high alert. no idea tbh. I like to imagine I've never fallen for one but who knows just sidestep the issue entirely and use a password manager that can tell what site you're currently viewing and doesn't even give you the option of filling your gmail password into gmail-com.fake.biz
|
|
#
?
Dec 4, 2018 17:05
|
|
|
Father Jack posted:possible I guess, and i'd rather own up to being suckered than nuke every machine i've ever signed in on. all the ones I’ve ever seen are incredibly obvious which I imagine is deliberate cause they want to target idiots
|
|
#
?
Dec 4, 2018 17:19
|
|
|
Rufus Ping posted:no idea tbh. I like to imagine I've never fallen for one but who knows yeah, i know i should, but  and the last time i tried keepass i found it wonky enough that i was genuinely concerned about locking myself out of things. freaked out enough by this to try again though.My Linux Rig posted:all the ones I’ve ever seen are incredibly obvious does that mater when phishing for passwords? 419 scams sure, but passwords?
|
|
#
?
Dec 4, 2018 17:26
|
|
|
flakeloaf posted:in a move literally everyone saw coming (yet continues to cause shock and astonishment), GSK has bought 23andme
|
|
#
?
Dec 4, 2018 17:42
|
|
|
My Linux Rig posted:all the ones I’ve ever seen are incredibly obvious spear phish is good as hell but closely targeted towards important peeps
|
|
#
?
Dec 4, 2018 18:04
|
|
|
https://www.zdnet.com/article/kubernetes-first-major-security-hole-discovered/ update your k8s masters if you havent. if you are on AWS EKS you are at their mercy until then. lol.
|
|
#
?
Dec 4, 2018 18:20
|
|
|
CRIP EATIN BREAD posted:https://www.zdnet.com/article/kubernetes-first-major-security-hole-discovered/ 60 noscript blocks, a "know your location" dialog box, a popup at lower left to sign up to their newsletter AND an autoplaying video the internet was a mistake
|
|
#
?
Dec 4, 2018 18:27
|
|
|
Father Jack posted:possible I guess, and i'd rather own up to being suckered than nuke every machine i've ever signed in on. the good ones are extremely good, but thankfully rare.
|
|
#
?
Dec 4, 2018 18:28
|
|
|
CRIP EATIN BREAD posted:https://www.zdnet.com/article/kubernetes-first-major-security-hole-discovered/ psh i'm sure nobody has their kubernetes' API available unrestricted to the public internet right? 
|
|
#
?
Dec 4, 2018 18:41
|
|
|
Shame Boy posted:psh i'm sure nobody has their kubernetes' API available unrestricted to the public internet right? google compute and AWS both do
|
|
#
?
Dec 4, 2018 19:01
|
|
|
The National Republican Congressional Committee is saying they got hacked during the 2018 midterms. https://www.washingtonpost.com/worl...m=.e240149b037f (maybe paywalled) https://www.politico.com/story/2018/12/04/exclusive-emails-of-top-nrcc-officials-stolen-in-major-2018-hack-1043309 Current reports are saying some sensitive e-mails were stolen.
|
|
#
?
Dec 4, 2018 19:28
|
|
|
during the glut of black-friday-related sales on newegg i impulse bought a few stupid off-brand "smart" devices to take apart and try to reverse-engineer, including the usual kinda stuff like a smart plug and smart switch, but also a smart "essential oil vapor diffuser" which connects to wifi and lets you control what your house smells like from anywhere in the world!!! i'll report back if i find anything fun in them, hopefully i can figure out how hackers can turn it into a stink bomb
|
|
#
?
Dec 4, 2018 21:02
|
|
|
pr0digal posted:The National Republican Congressional Committee is saying they got hacked during the 2018 midterms. Shame. Maybe they could stop stonewalling legislation on exactly this matter.
|
|
#
?
Dec 4, 2018 21:13
|
|
|
Shame Boy posted:during the glut of black-friday-related sales on newegg i impulse bought a few stupid off-brand "smart" devices to take apart and try to reverse-engineer, including the usual kinda stuff like a smart plug and smart switch, but also a smart "essential oil vapor diffuser" which connects to wifi and lets you control what your house smells like from anywhere in the world!!!  make everything smell like farts
|
|
#
?
Dec 4, 2018 22:07
|
|
|
Krankenstyle posted:
he doesn't need a device to do that
|
|
#
?
Dec 4, 2018 22:11
|
|
|
if you are on EKS fyi: https://aws.amazon.com/security/security-bulletins/AWS-2018-020/
|
|
#
?
Dec 4, 2018 23:27
|
|
|
CRIP EATIN BREAD posted:if you are on EKS fyi: https://aws.amazon.com/security/security-bulletins/AWS-2018-020/ its all of k8sland and all of k8s
|
|
#
?
Dec 5, 2018 03:32
|
|
|
lomarf https://twitter.com/rudygiuliani/status/1070118915139923968
|
|
#
?
Dec 5, 2018 03:45
|
|
|
is he dictating lovely punctuation to whoever writes his tweets 
|
|
#
?
Dec 5, 2018 06:17
|
|
|
Shame Boy posted:is he dictating lovely punctuation to whoever writes his tweets
|
|
#
?
Dec 5, 2018 06:28
|
|
|
reminder that giuliani was (or still is) trump's cybersecurity advisor
|
|
#
?
Dec 5, 2018 07:21
|
|
|
Samuel L. ACKSYN posted:reminder that giuliani was (or still is) trump's cybersecurity advisor a noun, a verb, and digital 9/11 checks out
|
|
#
?
Dec 5, 2018 08:19
|
|
|
https://github.com/systemd/systemd/issues/11026 "Unprivileged users with UID > INT_MAX can successfully execute any systemctl command" 
Jewel fucked around with this message at 12:38 on Dec 5, 2018 |
|
#
?
Dec 5, 2018 12:30
|
|
|
a major security vendor claimed to me that a very popular log format was not parseable probably the wrong person to ever say that to seeing that i enjoyed at one point parsing unstructured data and making it structured i e-mailed them back with the regex to parse it into the appropriate fields and they're now all, "oh oh okay yeah that makes sense now"
|
|
#
?
Dec 5, 2018 16:23
|
|
|
uk parliament published some of the docs seized from Facebook about an hour back, not had chance to browse the info yet but the bbc story says there’s some definite ‘soft’ secfuckery therein  https://www.bbc.co.uk/news/technology-46456695
|
|
#
?
Dec 5, 2018 16:38
|
|
|
"we never sold people's data - we gave it away for free, but only to developers that spent a sufficient amount of money on our ads platform. totally different."
|
|
#
?
Dec 5, 2018 17:44
|
|
|
Lain Iwakura posted:a major security vendor claimed to me that a very popular log format was not parseable I wish I knew how to do this sort of thing. It sounds neat.
|
|
#
?
Dec 5, 2018 18:43
|
|
|
Schadenboner posted:I wish I knew how to do this sort of thing. It sounds neat. Get the O'Reilly Regex book
|
|
#
?
Dec 5, 2018 19:01
|
|
|
friedl specifically, there are other worse ones
|
|
#
?
Dec 5, 2018 19:02
|
|
|
Shame Boy posted:also a smart "essential oil vapor diffuser" fyi if you have pets this can make them very sick
|
|
#
?
Dec 5, 2018 19:04
|
|
|
Father Jack posted:does that mater when phishing for passwords? 419 scams sure, but passwords? it's probably easier to capture login credentials from less savvy users but I was thinking more of 419 scams bob dobbs is dead posted:spear phish is good as hell but closely targeted towards important peeps ah so that's why I get all the generic ones
|
|
#
?
Dec 5, 2018 19:25
|
|
|
NoneMoreNegative posted:uk parliament published some of the docs seized from Facebook about an hour back, not had chance to browse the info yet but the bbc story says there’s some definite ‘soft’ secfuckery therein https://twitter.com/ashk4n/status/1070349123516170240?s=21
|
|
#
?
Dec 5, 2018 19:33
|
|
|
graph posted:fyi if you have pets this can make them very sick pets like cat-sized mammals or like birds?
|
|
#
?
Dec 5, 2018 20:53
|
|
|
this is a good thread, thank you
|
|
#
?
Dec 5, 2018 21:17
|
|
|
androids app model is such trash. ive always wondered what they thought would happen when they decided to allow apps to access poo poo like the call history
|
|
#
?
Dec 5, 2018 21:36
|
|
|
My Linux Rig posted:androids app model is such trash. ive always wondered what they thought would happen when they decided to allow apps to access poo poo like the call history yeah that information seems like stuff google would want to keep to itself instead of giving access to its advertising/panopticon compeittors
|
|
#
?
Dec 5, 2018 21:51
|
|
|
Ha, maybe spoofed number robocalls are just a way to poison the data for anyone fetching call logs.
|
|
#
?
Dec 5, 2018 22:31
|
|
|
Besesoth posted:A German group set up a website for the project they were working on: using facial recognition software to ID people at neo-Nazi rallies, so they could then send that information on to the people's bosses etc.. This was, of course, leaked to neo-Nazi groups, who began going to the site to see if they or their friends had been IDed yet.
|
|
#
?
Dec 5, 2018 22:51
|
|
|
|
| # ? Jun 8, 2024 14:26 |
|
|
yesssssss
|
|
#
?
Dec 5, 2018 22:55
|
|