|
more like failchimp
|
# ? Jan 19, 2023 18:21 |
|
|
# ? Apr 24, 2024 08:50 |
|
Powerful Two-Hander posted:EVERY MORNING I WAKE UP AND OPEN PALM SLAM A PASSWORD INTO THE VAULT. ITS IOS SAFARI PASSWORD MANAGER AND RIGHT THEN AND THERE I START COPYING MY PASSWORDS TO MY MAIN MOBILE BROWSER, FIREFOX. I TYPE EVERY PASSWORD AND I DO TYPE IT HARD. MAKIN WHOOSHING SOUNDS WHEN I EXCEED 10 CHARACTERS OR EVEN WHEN I MISTYPE A LETTER. NOT MANY CAN SAY THEY CREATED THE GALAXY’S MOST CONVOLUTED PASSWORD MANAGEMENT SOLUTION. I CAN. I SAY IT AND I SAY IT OUTLOUD EVERYDAY TO PEOPLE IN THE SECFUCK THREAD AND ALL THEY DO IS PROVE PEOPLE IN YOSPOS CAN STILL BE IMMATURE JERKS. AND IVE LEARNED ALL THE PASSWORDS AND IVE LEARNED HOW TO MAKE MY LIFE MORE DIFFICULT BY TYPING EM ALL. 2 HOURS INCLUDING WIND DOWN EVERY MORNING. THEN I LOG IN
|
# ? Jan 19, 2023 18:23 |
|
haveblue posted:more like failchimp dammit this is way better
|
# ? Jan 19, 2023 18:26 |
|
Shame Boy posted:more like mailchump haveblue posted:more like failchimp
|
# ? Jan 19, 2023 18:35 |
|
Powerful Two-Hander posted:EVERY MORNING I WAKE UP AND OPEN PALM SLAM A PASSWORD INTO THE VAULT. ITS IOS SAFARI PASSWORD MANAGER AND RIGHT THEN AND THERE I START COPYING MY PASSWORDS TO MY MAIN MOBILE BROWSER, FIREFOX. I TYPE EVERY PASSWORD AND I DO TYPE IT HARD. MAKIN WHOOSHING SOUNDS WHEN I EXCEED 10 CHARACTERS OR EVEN WHEN I MISTYPE A LETTER. NOT MANY CAN SAY THEY CREATED THE GALAXY’S MOST CONVOLUTED PASSWORD MANAGEMENT SOLUTION. I CAN. I SAY IT AND I SAY IT OUTLOUD EVERYDAY TO PEOPLE IN THE SECFUCK THREAD AND ALL THEY DO IS PROVE PEOPLE IN YOSPOS CAN STILL BE IMMATURE JERKS. AND IVE LEARNED ALL THE PASSWORDS AND IVE LEARNED HOW TO MAKE MY LIFE MORE DIFFICULT BY TYPING EM ALL. 2 HOURS INCLUDING WIND DOWN EVERY MORNING. THEN I LOG IN
|
# ? Jan 19, 2023 18:36 |
|
Powerful Two-Hander posted:EVERY MORNING I WAKE UP AND OPEN PALM SLAM A PASSWORD INTO THE VAULT. ITS IOS SAFARI PASSWORD MANAGER AND RIGHT THEN AND THERE I START COPYING MY PASSWORDS TO MY MAIN MOBILE BROWSER, FIREFOX. I TYPE EVERY PASSWORD AND I DO TYPE IT HARD. MAKIN WHOOSHING SOUNDS WHEN I EXCEED 10 CHARACTERS OR EVEN WHEN I MISTYPE A LETTER. NOT MANY CAN SAY THEY CREATED THE GALAXY’S MOST CONVOLUTED PASSWORD MANAGEMENT SOLUTION. I CAN. I SAY IT AND I SAY IT OUTLOUD EVERYDAY TO PEOPLE IN THE SECFUCK THREAD AND ALL THEY DO IS PROVE PEOPLE IN YOSPOS CAN STILL BE IMMATURE JERKS. AND IVE LEARNED ALL THE PASSWORDS AND IVE LEARNED HOW TO MAKE MY LIFE MORE DIFFICULT BY TYPING EM ALL. 2 HOURS INCLUDING WIND DOWN EVERY MORNING. THEN I LOG IN
|
# ? Jan 19, 2023 19:29 |
|
Powerful Two-Hander posted:I think I only outright remember two passwords: ms account for logon and keepass vault.
|
# ? Jan 19, 2023 19:36 |
Powerful Two-Hander posted:EVERY MORNING I WAKE UP AND OPEN PALM SLAM A PASSWORD INTO THE VAULT. ITS IOS SAFARI PASSWORD MANAGER AND RIGHT THEN AND THERE I START COPYING MY PASSWORDS TO MY MAIN MOBILE BROWSER, FIREFOX. I TYPE EVERY PASSWORD AND I DO TYPE IT HARD. MAKIN WHOOSHING SOUNDS WHEN I EXCEED 10 CHARACTERS OR EVEN WHEN I MISTYPE A LETTER. NOT MANY CAN SAY THEY CREATED THE GALAXY’S MOST CONVOLUTED PASSWORD MANAGEMENT SOLUTION. I CAN. I SAY IT AND I SAY IT OUTLOUD EVERYDAY TO PEOPLE IN THE SECFUCK THREAD AND ALL THEY DO IS PROVE PEOPLE IN YOSPOS CAN STILL BE IMMATURE JERKS. AND IVE LEARNED ALL THE PASSWORDS AND IVE LEARNED HOW TO MAKE MY LIFE MORE DIFFICULT BY TYPING EM ALL. 2 HOURS INCLUDING WIND DOWN EVERY MORNING. THEN I LOG IN
|
|
# ? Jan 19, 2023 20:03 |
|
"Hey, did you see we just completely overhauled our LastPass browser extension today? It's got a new Security dashboard pane! Guys? ...anyone?"
|
# ? Jan 19, 2023 20:36 |
|
Dr_0ctag0n posted:"Hey, did you see we just completely overhauled our LastPass browser extension today? It's got a new Security dashboard pane!
|
# ? Jan 19, 2023 20:37 |
|
Powerful Two-Hander posted:EVERY MORNING I WAKE UP AND OPEN PALM SLAM A PASSWORD INTO THE VAULT. ITS IOS SAFARI PASSWORD MANAGER AND RIGHT THEN AND THERE I START COPYING MY PASSWORDS TO MY MAIN MOBILE BROWSER, FIREFOX. I TYPE EVERY PASSWORD AND I DO TYPE IT HARD. MAKIN WHOOSHING SOUNDS WHEN I EXCEED 10 CHARACTERS OR EVEN WHEN I MISTYPE A LETTER. NOT MANY CAN SAY THEY CREATED THE GALAXY’S MOST CONVOLUTED PASSWORD MANAGEMENT SOLUTION. I CAN. I SAY IT AND I SAY IT OUTLOUD EVERYDAY TO PEOPLE IN THE SECFUCK THREAD AND ALL THEY DO IS PROVE PEOPLE IN YOSPOS CAN STILL BE IMMATURE JERKS. AND IVE LEARNED ALL THE PASSWORDS AND IVE LEARNED HOW TO MAKE MY LIFE MORE DIFFICULT BY TYPING EM ALL. 2 HOURS INCLUDING WIND DOWN EVERY MORNING. THEN I LOG IN
|
# ? Jan 19, 2023 21:26 |
|
https://www.youtube.com/watch?v=EemoOviEC74
|
# ? Jan 20, 2023 00:06 |
|
|
# ? Jan 20, 2023 00:07 |
https://www.bleepingcomputer.com/news/security/paypal-accounts-breached-in-large-scale-credential-stuffing-attack/ so, is this lastpass
|
|
# ? Jan 20, 2023 03:53 |
https://www.bloomberg.com/news/articles/2023-01-19/t-mobile-tmus-says-hacker-stole-data-for-37-million-customers T-Mobile US Inc. said a hacker obtained data for 37 million customer accounts, though it didn’t include payment information, passwords or other sensitive personal data. The wireless provider said in a federal filing it discovered the hack on Jan. 5 and was able to trace the source and stop it within a day. The investigation is still ongoing, the company said, but the culprit appeared to obtain the information through a single entry point serving customer data, and doesn’t appear to have breached the company’s systems or network.
|
|
# ? Jan 20, 2023 03:58 |
|
haveblue posted:more like failchimp new thread title please
|
# ? Jan 20, 2023 07:09 |
|
https://www.dailydot.com/debug/no-fly-list-us-tsa-unprotected-server-commuteair/quote:Analysis of the server resulted in the discovery of a text file named “NoFly.csv,” a reference to the subset of individuals in the Terrorist Screening Database who have been barred from air travel due to having suspected or known ties to terrorist organizations.
|
# ? Jan 20, 2023 07:35 |
|
happy xmas (war is over) by john lennon starts playingcinci zoo sniper posted:so, is this lastpass
|
# ? Jan 20, 2023 14:11 |
|
what are people doing with managed devices and passkeys or whatever non-Apple people call the WebAuthn stuff? can they be escrowed like with a password manager or (I think) WHfB?
|
# ? Jan 20, 2023 17:02 |
|
Subjunctive posted:what are people doing with managed devices and passkeys or whatever non-Apple people call the WebAuthn stuff? can they be escrowed like with a password manager or (I think) WHfB? my hope is they can but so far i haven't heard anything. it's frustrating because i use windows, linux, and macos plus ios so i really want a universal way to handle all of them with a third party pwm (in my case, bitwarden) e: looks like 1password is working on it: https://blog.1password.com/1password-is-joining-the-fido-alliance/ so hopefully bitwarden will follow suit e2: looks like probably yes for bitwarden, in 2023 (buried in a table in this article): https://bitwarden.com/blog/bitwarden-extends-passwordless-leadership-with-acquisition/ Cold on a Cob fucked around with this message at 19:27 on Jan 20, 2023 |
# ? Jan 20, 2023 19:10 |
|
There are 128 Andrews on the nofly list
|
# ? Jan 21, 2023 00:22 |
219 James
|
|
# ? Jan 21, 2023 00:27 |
|
|
# ? Jan 21, 2023 06:52 |
|
is there a list somewhere that tells me which JVM CVEs/versions I actually need to worry about if I’m running server side Java? Nessus goes nuts over almost every JVM we have, but like 99% of the exploits are only possible in applets or running untrusted code.
|
# ? Jan 21, 2023 19:03 |
|
BlankSystemDaemon posted:A cloud provider isn't more or less likely to lose data than you are, if you have proper backups in place (meaning a 3-2-1 procedure with RPO-/RTO-targets and automated testing) To be clear, have you ever met an end user? Potato Salad posted:There are 128 Andrews on the nofly list And yet I assume all of them can sweat.
|
# ? Jan 22, 2023 18:30 |
|
https://twitter.com/mspfa/status/1616454903982919681?s=20
|
# ? Jan 23, 2023 09:41 |
thank you for psychic damage
|
|
# ? Jan 23, 2023 10:07 |
|
I guess people with a cybersecurity major are incredibly poo poo at cybersecurity. The #1 rule in cybersecurity is to create disaster plans, funny enough. The #2 rule is to actually test the disaster plans. And why would someone run malware inside what is probably their primary computer instead of just a VM?
|
# ? Jan 23, 2023 10:50 |
|
examining the contents of an exe by double clicking on it must be part of the advanced classes
|
# ? Jan 23, 2023 11:06 |
Imagining the wild alternate reality in which self-taught Infectious Disease Researchers also think it's fine to examine samples of Ebola in their living room
|
|
# ? Jan 23, 2023 11:29 |
|
You Wouldn't Download An Anthrax Sample
|
# ? Jan 23, 2023 11:33 |
|
hi i'm not a security researcher but if i was "examining" something like this my first thought is to do it on an airgapped pc with a clean install of windows and whatever tools i need to study it. i wouldn't have discord installed on it. lol. lmao.
|
# ? Jan 23, 2023 14:05 |
|
colleague got DA immediately in an assessment many years ago because he sent a phish to a few employees and they correctly reported the phish. a security engineer (of like, 20+ years experience!) then interacted with the malware on his domain machine to "research" the malware despite having no idea what that entails (like seriously, you don't have any reverse engineering experience at all, what do you think you're going to find out?). i dont know what the pivot step from there to DA was, but i'm gonna take a wild guess and say cleartext admin creds on a file on the desktop.
|
# ? Jan 23, 2023 14:12 |
|
LolFungiCap posted:colleague got DA immediately in an assessment many years ago because he sent a phish to a few employees and they correctly reported the phish.
|
# ? Jan 23, 2023 14:15 |
|
sb hermit posted:I guess people with a cybersecurity major are incredibly poo poo at cybersecurity. serious question: how does one make a disaster plan for a discord? now that everyone's moving everything off the internet and into closed little discord boxes i get the feeling that a hell of a lot of important poo poo is just one click away from being obliterated forever
|
# ? Jan 23, 2023 14:34 |
|
idk but it definitely involves speaking to their enterprise support team and then handing over a lot of money
|
# ? Jan 23, 2023 14:56 |
|
The core security issue is that we do things with computers, and poo poo would dramatically improve once we stop doing things with computers.
|
# ? Jan 23, 2023 14:57 |
Shame Boy posted:serious question: how does one make a disaster plan for a discord? now that everyone's moving everything off the internet and into closed little discord boxes i get the feeling that a hell of a lot of important poo poo is just one click away from being obliterated forever you don’t; which is why i hate to seeing purportedly knowledge sharing-oriented discord servers
|
|
# ? Jan 23, 2023 15:25 |
|
Shame Boy posted:serious question: how does one make a disaster plan for a discord? now that everyone's moving everything off the internet and into closed little discord boxes i get the feeling that a hell of a lot of important poo poo is just one click away from being obliterated forever i would have expected backups to be a feature of discord since its all hosted by them, but looks like its not. seems like a gently caress up, imo.
|
# ? Jan 23, 2023 15:26 |
|
|
# ? Apr 24, 2024 08:50 |
|
youtubers that have lost control of their channels have had everything restored. i wonder if that's possible with discord. there are differences though, like youtubers bring in money to google, not sure free discord users do?
|
# ? Jan 23, 2023 15:32 |