J.M. Porup ✅ @toholdaquill@octodon.social
contributing security reporter, @ArsTechnicaUK. Assembly @BKCHarvard. Once a programmer. Yeah, I'm that @LonelyPlanet Colombia guy. Views my own. Assume breach.
We are creating an internet of things that senses, thinks, and acts, the classical definition of a robot, Schneier tells #sectorca #sector2017
We are creating an internet of things that senses, thinks, and acts, the classical definition of a robot, Schneier tells #sectorca #sector2017
We are creating an internet of things that senses, thinks, and acts, the classical definition of a robot, Schneier tells #sectorca #sector2017
We are creating a world where everything is a computer, Schneier tells #sectorca #sector2017
Big changes coming to our industry, Schneier tells #sectorca #sector2017
follow hashtags #sectorca #sector2017
I'll be live-tooting Bruce Schneier's keynote this morning at #sectorca
So we've got a Twitter clone with a ton of new options, but when are we all just going to go back to IRC?
How the #CISSP CBK defines #transparency. Orwell would be proud.
https://octodon.social/media/FjWCqrTfeDmbY8ZWtNA
It is here, the Instance Picker!
You can help your friends find a home on #Mastodon, by directing them to two places.
If you also want to provide them information about what Mastodon is, Joinmastodon.org is the place
https://joinmastodon.org/
If you want to just help them pick an instance, @TheKinrar 's instance picker can be found at
https://instances.mastodon.xyz/
And a feedback thread is here:
https://discourse.joinmastodon.org/t/feedback-instances-mastodon-xyz-thread/401
So if you haven't read my 95 Theses of Cyber you should.
95ThesesOfCyber.com
There are so many corners of insanity in all our IT systems.
I am starting to think that I am a poor attacker: I spend way too much effort on the crazy / impossible / hard bugs, or on finding bugs in the hard bits of code.
It seems that true offensive genius (which I don't have) is sniffing out the insanity in the codebase - the stuff that everybody forgot is there, or would prefer it wasn't there, and wishes it wasn't there.
Understand Android security up to 2015 by going to https://www.essential.com/about#team and then clicking on "Security".
Ultimately, educating people about how to resist propaganda and determine reality - and valuing such determinations of reality over propaganda-influenced opinions - undermines the ability of advertisers to coerce people's attention to their products and services.
If you resist propaganda, you resist advertising.
[ Because they're essentially the same thing ]
And that's not anything that will ever be supported by the people who write Facebook's checks.
🚨🚨🚨 Really major Gmail phishing attack going around right now. Do NOT click on an unexpected "Open in Docs" link.
Whether or not you have, now is a great time to review the apps you've authed to your account: https://security.google.com/settings/security/permissions
106,091 accounts
+1,221 in the last hour
Good summary of Intel's AMT vulnerability.
https://mjg59.dreamwidth.org/48429.html
Qubes Security Bulletin #30 for another critical Xen bug(s) in PV memory virtualization (XSA 213-214): https://github.com/QubesOS/qubes-secpack/blob/master/QSBs/qsb-030-2017.txt
The bugs were found by the same researcher who found the previous Xen bug (XSA 212): Jann Horn of Google P0, congrats!
Also, please read our commentary in the bulletin (linked above) about the general defense approaches we've been working on for Qubes 4.x.
