|
any exploits in wordpress or javascript are working as expected. when I think virus I think code that gets onto a user's machine without their interaction and replicates to other machines without user interaction.
|
# ¿ May 8, 2017 18:24 |
|
|
# ¿ May 22, 2024 12:15 |
|
yeah that's a better differentiator. either way, imo, they require no human interaction to spread.
|
# ¿ May 8, 2017 18:53 |
|
we have a lot of policies that say you cant allow other people (including internal) to use your credentials. it comes from the hipaa side of things but it applies to all accounts.
|
# ¿ May 10, 2017 19:29 |
|
Wiggly Wayne DDS posted:good job HP https://www.modzero.ch/modlog/archives/2017/05/11/en_keylogger_in_hewlett-packard_audio_driver/index.html well atleast its negligence instead of someone sneaking malicious code into a signed driver.
|
# ¿ May 11, 2017 15:06 |
|
this is cause they're using samba. I found another bug in that same component that was supposed to be patched this week.
|
# ¿ May 16, 2017 00:13 |
|
redleader posted:wouldn't surprise me to learn that amazon are simply big enough to negotiate special deals with cc processors and banks that let them get away with not requiring a cvv pretty sure you have to provide it for your first payment and then once you save the payment deets amazon is storing a special token that's represents your card when being processed by amazon. if its stolen its useless without being able to send thru amazons payment processing system.
|
# ¿ May 17, 2017 22:39 |
|
BangersInMyKnickers posted:Apparently a new worm called Bluedoom is propagating but not yet activating a payload and its using 6 different SMB vulns and one other from the NSA dump. Fun times. Turn off SMB1. are these new vulns or already patched?
|
# ¿ May 24, 2017 18:19 |
|
I would like to see what someone like tavis would do to an EHR. they'd probably try to sue him into the dirt.
|
# ¿ May 26, 2017 14:56 |
|
BangersInMyKnickers posted:So is Microsoft dropping EMET because they're rolling all the features in to the base OS at some point or because they have some idiotic dream that all apps in a year will come through the Windows store and enforce opt-in for all the security features that EMET enforces? Because there's still going to be decades of legacy applications that could benefit from it iirc lots of emet was already made native as part of defender in win10
|
# ¿ May 26, 2017 19:53 |
|
Wiggly Wayne DDS posted:they make it hard to follow any emet news in particular hmm, looks like its EOL https://technet.microsoft.com/en-us/security/jj653751 I was not aware
|
# ¿ May 26, 2017 20:24 |
|
Volmarias posted:I'm getting hard just thinking about the idea of a lovely EHR company trying to sue Tavis and unexpectedly slamming into a wall of Google lawyers, then furiously trying to back pedal out of danger. they have the money and connections to take google on and i'd love to see it happen
|
# ¿ May 27, 2017 15:48 |
|
vOv posted:it's the former, because you can't send jesus over tcp
|
# ¿ May 31, 2017 15:00 |
|
pseudorandom name posted:it isn't a shell script in this case, its a proc file serializing data as plain text with fields delimited by spaces and one of the fields is a file name parsing random string output is the foundation of the unix philosophy
|
# ¿ May 31, 2017 21:33 |
|
an excel document in a one drive 365 folder.
|
# ¿ Jun 5, 2017 15:55 |
|
Subjunctive posted:the extra step is "Open in Instagram?", and equivalent (but more terribly worded) on Android, for which the cancel rate is non-trivial in other scenarios show them a banner in the app that's like "Don't lose access to your account! confirm your email address now!" or something to encourage them to confirm it. if they don't, then gently caress 'em.
|
# ¿ Jun 14, 2017 14:47 |
|
Munkeymon posted:today I got PII emailed to me from a random Austin woman (insurance info) and the Army Corps of Engineers (dam permit I guess?) I occasionally get PHI faxed to me.
|
# ¿ Jun 16, 2017 00:54 |
|
pinewood derby owned
|
# ¿ Jun 21, 2017 15:33 |
|
its probably full of profanity and hacks for 3rd party poo poo.
|
# ¿ Jun 23, 2017 22:55 |
|
well yeah, the usps gets paid to deliver that garbage and the mail carriers aren't allowed to not deliver it.
|
# ¿ Jun 24, 2017 00:10 |
|
i emailed them to ask about that and you cant. the flyers and stuff aren't addressed and they get paid to deliver to all boxes in a region so they don't have lists of who to deliver or not deliver to. if you're on the route, you get a flyer. for a little bit our mail carrier would leave them in a stack on a table by the boxes instead of sticking them into the boxes which i thought was a great compromise but they had to stop.
|
# ¿ Jun 24, 2017 00:16 |
|
eventually we'll get to the point where the only thing in your mailbox is trash and the key to the parcel box and then you can just dump it all directly into the trash instead of having to sort.
|
# ¿ Jun 24, 2017 00:17 |
|
to get the key for the parcel box.
|
# ¿ Jun 24, 2017 00:21 |
|
|
# ¿ May 22, 2024 12:15 |
|
Volmarias posted:I know, I would just love a "we'll pay you to stop, please, please stop" arrangement. The marketers get "targeted" advertisements so it looks better, the USPS gets an extra cash flow, I don't get loving garbage in my mailbox. It should be a win win all around, but the same group that brought us CAN SPAM would kill even a hint of this. a better solution would be to charge businesses more for delivery of properly addressed items and then eliminate delivery of non-addressed mail.
|
# ¿ Jun 24, 2017 01:04 |