|
Shame Boy posted:how much do you trust a bank to properly invalidate it so try to use it to log in and see if it still works? seems pretty easy to test
|
#
?
Jan 18, 2024 21:00
|
|
|
|
| # ? Apr 28, 2024 06:05 |
|
|
Subjunctive posted:so try to use it to log in and see if it still works? seems pretty easy to test i still wouldn't trust it then because i'm sure my bank has some app or something that may or may not use the same login code anyway my suggestion is to just get a pair of pliers and snap the thing in half before throwing it away
|
|
#
?
Jan 18, 2024 21:05
|
|
|
looking at it again it actually expires at the end of the month. the replacement works so I'm going to throw it in a drawer and forget about it and presumably find it a decade from now with the battery thoroughly drained
|
|
#
?
Jan 18, 2024 21:17
|
|
|
even if you throw it out someone would still have to identify that it was yours, that it was to a specific account you have, and also have your username and password. unless you have a spook on your rear end i do not think a single person on god's green earth will ever care
|
|
#
?
Jan 18, 2024 22:23
|
|
|
I had an RSA key that I used to log into DOE super computers and I tossed it in the garbage without the slightest hesitation once my account was terminated
|
|
#
?
Jan 18, 2024 22:31
|
|
|
just drill a 1/4" hole through the middle of it
|
|
#
?
Jan 18, 2024 22:32
|
|
|
Troll some random person by dropping it in a well-trafficked parkinglot and let them drive themselves mad trying to figure out what to use it on.
|
|
#
?
Jan 18, 2024 22:34
|
|
|
Do what my friend did after a work trip to China, go out to your boss's ranch in the county and spend the afternoon performing 9mm secure deletes.
|
|
#
?
Jan 18, 2024 23:00
|
|
|
are you sure 9mm is enough, sounds like a job for 7.62
|
|
#
?
Jan 18, 2024 23:13
|
|
|
set up an open webcam pointing at it
|
|
#
?
Jan 18, 2024 23:35
|
|
|
Subjunctive posted:yeah they don’t block stack overflow either, or `pip install` quote:I wish you were as accurate, & as much to be relied on, as I am myself.  Correct, it has in fact happened since the second programmer came into existence.
|
|
#
?
Jan 19, 2024 00:48
|
|
|
use it to snort cocaine
|
|
#
?
Jan 19, 2024 08:31
|
|
|
shove it up your rear end op
|
|
#
?
Jan 19, 2024 11:26
|
|
|
Trabisnikof posted:set up an open webcam pointing at it
|
|
#
?
Jan 19, 2024 14:04
|
|
|
Powerful Two-Hander posted:shove it up your rear end op otp for my pihole
|
|
#
?
Jan 19, 2024 14:14
|
|
|
Volmarias posted:
lol, i had never read that before, that is great
|
|
#
?
Jan 19, 2024 14:27
|
|
|
Cybernetic Vermin posted:lol, i had never read that before, that is great big same lol
|
|
#
?
Jan 19, 2024 15:08
|
|
|
Volmarias posted:
CLOSED WORKSFORMYQUILL
|
|
#
?
Jan 19, 2024 16:05
|
|
|
hell yeah
|
|
#
?
Jan 19, 2024 18:16
|
|
|
Powerful Two-Hander posted:I think I prefer the idea that he's making the money from actual cybercrime over the idea that he's making millions from rapping about cybercrime not me. if he's just some suburban or exurban privileged douchebag though it doesn't count, it's only Cyberpunk As Hell if it's legitimate expression of the repressed a la ten crack commandments
|
|
#
?
Jan 19, 2024 18:43
|
|
|
https://msrc.microsoft.com/blog/2024/01/microsoft-actions-following-attack-by-nation-state-actor-midnight-blizzard/quote:Beginning in late November 2023, the threat actor used a password spray attack to compromise a legacy non-production test tenant account and gain a foothold, and then used the account’s permissions to access a very small percentage of Microsoft corporate email accounts, including members of our senior leadership team and employees in our cybersecurity, legal, and other functions, and exfiltrated some emails and attached documents. quite a pivot from a “legacy non-production test tenant account”
|
|
#
?
Jan 20, 2024 00:32
|
|
|
once I saw a red team debrief that included “pivoted to conference room calendar displays for persistence” I just accepted that anything is possible and, indeed, inevitable
|
|
#
?
Jan 20, 2024 01:14
|
|
|
Subjunctive posted:once I saw a red team debrief that included “pivoted to conference room calendar displays for persistence” I just accepted that anything is possible and, indeed, inevitable lmao also, conference room as in built in webcam? cause if so double lmao
|
|
#
?
Jan 20, 2024 01:19
|
|
|
Subjunctive posted:once I saw a red team debrief that included “pivoted to conference room calendar displays for persistence” I just accepted that anything is possible and, indeed, inevitable those kjnds of devices are great because they never have any kind of monitoring
|
|
#
?
Jan 20, 2024 01:20
|
|
|
Carthag Tuek posted:lmao no, just the little tablet thing by the door that showed when it was booked
|
|
#
?
Jan 20, 2024 01:43
|
|
|
just have the display tell people to go to a url and enter their password
|
|
#
?
Jan 20, 2024 01:50
|
|
|
Subjunctive posted:no, just the little tablet thing by the door that showed when it was booked ah well, still an excellent pivot
|
|
#
?
Jan 20, 2024 01:56
|
|
|
rafikki posted:https://msrc.microsoft.com/blog/2024/01/microsoft-actions-following-attack-by-nation-state-actor-midnight-blizzard/ i like how the new SEC cybersecurity disclosure rules require that material cybersecurity breaches must be disclosed within four business days of the determination of materiality they detected it last friday and disclosed it this friday so they were probably thinking real hard over the weekend about whether to call it material on monday
|
|
#
?
Jan 20, 2024 09:23
|
|
|
Somebody fucked around with this message at 19:23 on Jan 22, 2024 |
|
#
?
Jan 22, 2024 02:31
|
|
|
Somebody fucked around with this message at 19:23 on Jan 22, 2024 |
|
#
?
Jan 22, 2024 02:51
|
|
|
Imagine astroturfing an arg on sa in 2024 
|
|
#
?
Jan 22, 2024 12:27
|
|
|
Subjunctive posted:once I saw a red team debrief that included “pivoted to conference room calendar displays for persistence” I just accepted that anything is possible and, indeed, inevitable spankmeister posted:those kjnds of devices are great because they never have any kind of monitoring
|
|
#
?
Jan 22, 2024 15:17
|
|
|
evil_bunnY posted:Or auditing before they're put in, or updates of any kind. after this I believe we actually switched to an in-house Android image for them so that we could manage them ourselves, because the vendor software was poo poo similarly with the video conferencing gear in 2013/2014, Cisco’s management suite fell over at the scale of our deployment and devices were getting stuck in update loops. I think we had to stay on Cisco’s firmware for the devices, but we built our own management and deployment system (we being the company I was at, not the team I was on)
|
|
#
?
Jan 22, 2024 15:32
|
|
|
hp: we need drm on our printers because cartridges are a malware vector
|
|
#
?
Jan 22, 2024 21:17
|
|
|
what a load of bullshit lol
|
|
#
?
Jan 22, 2024 21:19
|
|
|
*cocks shotgun*
|
|
#
?
Jan 22, 2024 21:21
|
|
|
that’s amazing. honestly I’m impressed with whoever came up with that but really how would you even notice if an HP printer got hit with malware?
|
|
#
?
Jan 22, 2024 21:22
|
|
|
you would now have slightly different malware on your system
|
|
#
?
Jan 22, 2024 21:25
|
|
|
honestly, let’s give the other guy’s malware a fair chance
|
|
#
?
Jan 22, 2024 21:27
|
|
|
|
| # ? Apr 28, 2024 06:05 |
|
|
i mean, it's different, but is it worse? presumably they've stopped installing apache tomcat and the entire jdk with their printer drivers, but who knows.
|
|
#
?
Jan 22, 2024 21:35
|
|