|
github was apparently doing plaintext logging of some passwords https://twitter.com/SwitHak/status/991416974252167169
|
#
¿
May 2, 2018 19:09
|
|
|
|
| # ¿ Apr 16, 2024 04:28 |
|
|
well this is certainly worse than the github one, and not just because the article/press release has zero information in it https://twitter.com/Reuters/status/992133254550519808
|
|
#
¿
May 3, 2018 21:25
|
|
|
apparently twitter thought they didn't need to tell anyone about the password disclosure https://twitter.com/paraga/status/992135139994943488 later he walked that back https://twitter.com/paraga/status/992146630232043520
|
|
#
¿
May 3, 2018 23:15
|
|
|
is it a coincidence that tavis went on vacation and now there's eight more "spectre next generation" flaws that all have cves and are being worked on in secret https://www.heise.de/ct/artikel/Exclusive-Spectre-NG-Multiple-new-Intel-CPU-flaws-revealed-several-serious-4040648.html
|
|
#
¿
May 4, 2018 04:56
|
|
|
Father Jack posted:is 1password still the best choice for a low hassle, cross platform password manager?
|
|
#
¿
May 4, 2018 21:27
|
|
|
Rufus Ping posted:v7 beta has standalone vaults now
|
|
#
¿
May 4, 2018 22:18
|
|
|
EL BROMANCE posted:Has something changed with the way the site logs in in the last year or so? I have a voting site for the GBS Eurovision thread that does a quick validation (using the old 'check if a string exists in a users profile' thing) which needs the site to be able to log in and do this check. I can't get it to validate this time round, and I'm thinking this is where things are falling over.
|
|
#
¿
May 7, 2018 17:56
|
|
|
Lain Iwakura posted:on and off i want to find a mechanical switch still in use somewhere in this world. i don't know where you'd still find one but not in the west at least https://twitter.com/anthonypants/status/993204605872881664
|
|
#
¿
May 7, 2018 21:10
|
|
|
LP0 ON FIRE posted:install Hiya. changed my life or their other privacy policy https://hiya.com/privacy
|
|
#
¿
May 7, 2018 21:48
|
|
|
Bulgogi Hoagie posted:from the appel thread
|
|
#
¿
May 9, 2018 01:47
|
|
|
Schadenboner posted:https://en.wikipedia.org/wiki/Desire_path
|
|
#
¿
May 9, 2018 04:20
|
|
|
excel and the rest of the office suite has vba, which is kind of like vbscript, but there's still a lot of COM. there's not even any good first-party powershell tools for office right now; the importexcel module is made by some guy
|
|
#
¿
May 10, 2018 00:42
|
|
|
could somebody please explain what this means thank you https://access.redhat.com/security/vulnerabilities/pop_ss
|
|
#
¿
May 10, 2018 02:46
|
|
|
Subjunctive posted:Don't they just save a token from the payment processor?
|
|
#
¿
May 10, 2018 19:07
|
|
|
Lutha Mahtin posted:i saw some people on twitter talking about the free swag they got from Klout. a lot of it was little discounts and gift cards to stores and restaurants. the biggest-sounding one i saw was some guy who said he got a free car rental out of it
|
|
#
¿
May 11, 2018 21:25
|
|
|
https://gizmodo.com/1825938208
|
|
#
¿
May 12, 2018 02:21
|
|
|
https://twitter.com/geoffwhite247/status/994998863806324741
|
|
#
¿
May 13, 2018 00:47
|
|
|
Subjunctive posted:trivially not, I think. it's entirely possible to encrypt without a message digest
|
|
#
¿
May 14, 2018 18:25
|
|
|
~Coxy posted:everyone favourite netbank is finally getting rid of their OSK
|
|
#
¿
May 15, 2018 01:41
|
|
|
Salt Fish posted:I like the creativity here:
|
|
#
¿
May 15, 2018 19:53
|
|
|
Raere posted:In this week's Adobe Reader patch, they fixed 'NTLM SSO hash theft':
|
|
#
¿
May 15, 2018 23:31
|
|
|
redleader posted:if i were a spammer, i'd go out of my way to strip +whatever from gmail addresses specifically to annoy people who care enough to use that feature
|
|
#
¿
May 15, 2018 23:48
|
|
|
"used to be"?
|
|
#
¿
May 16, 2018 19:54
|
|
|
NEED MORE MILK posted:im guessing youre skimming over that/misreading it
|
|
#
¿
May 16, 2018 20:14
|
|
|
pseudorandom name posted:so am I understanding the situation correctly when I say everybody involved with PGP is a dick?
|
|
#
¿
May 18, 2018 00:41
|
|
|
https://twitter.com/macewan/status/998564299126820865
|
|
#
¿
May 21, 2018 15:03
|
|
|
Shaggar posted:thats what I was thinking, but what happens if the kid changes their apple password?
|
|
#
¿
May 21, 2018 17:45
|
|
|
literally the easiest way i can think of capturing someone's changed icloud password would be to throw up a prompt on their iphone telling them to type it in on every failed polling attempt
|
|
#
¿
May 21, 2018 17:50
|
|
|
rjmccall posted:cache reveals everything around me
|
|
#
¿
May 22, 2018 02:16
|
|
|
ate poo poo on live tv posted:Actually it was a 30k payout plus $1,337 bonus, plus 5k for another bug. Also prompt payout which is pretty nice. Achmed Jones posted:it was $31337 for rce and $5k for a different issue
|
|
#
¿
May 22, 2018 21:30
|
|
|
Truga posted:the original poster did put a letsencrypt cert on, the page was https lmao https://www.myhomemanager.sony.com
|
|
#
¿
May 24, 2018 17:35
|
|
|
Wiggly Wayne DDS posted:happy gdpr everyone
|
|
#
¿
May 24, 2018 23:04
|
|
|
Doom Mathematic posted:'Twas the night before GDPR and all through the house it was not known how many creatures were stirring because we do not have a legitimate business reason to store that information.
|
|
#
¿
May 25, 2018 01:01
|
|
|
i couldn't think of any of those places i'd call that would be affected by gdpr, but then i remembered that a lot of callcenters are overseas
|
|
#
¿
May 25, 2018 04:38
|
|
|
evil_bunnY posted:https://blog.doyensec.com/2018/05/24/electron-win-protocol-handler-bug-bypass.html quote:The original issue was extensively discussed in many blog posts, and can be summarized as the ability to use custom protocol handlers (e.g. myapp://) from a remote web page to piggyback command line arguments and insert a new switch that Electron/Chromium/Node would recognize and execute while launching the application.
|
|
#
¿
May 25, 2018 16:25
|
|
|
https://twitter.com/xorrior/status/1000053217298997257
|
|
#
¿
May 25, 2018 17:50
|
|
|
Gazpacho posted:i work specifically in the software domain of identifying and tracking people and first there was this equifax breach which sent a shitload of security mandates my way and now there's the facebook and GDPR blowup and in the same time frame our headcount has been slashhed, idk how i can take another month of this
|
|
#
¿
May 25, 2018 19:27
|
|
|
Gazpacho posted:there are no specific mandates regarding gdpr or data management yet but the previous round of mandates showed that the management is inclined to overreact blindly with zero fucks given about resources or preserving the system fucnctions that we need to develop and maintain product features
|
|
#
¿
May 25, 2018 20:55
|
|
|
Gazpacho posted:gee whiz it's like i'm the only person in yospos who ever worked under management who thought basic best practices were "not a priority" (until they were, and then having resources to deploy them was not a priority)
|
|
#
¿
May 25, 2018 22:08
|
|
|
|
| # ¿ Apr 16, 2024 04:28 |
|
|
i mean if they're getting blindsided by new laws on the day enforcement begins it sounds like their company might not even have a legal department
|
|
#
¿
May 25, 2018 22:51
|
|