"We’re at the point where someone would rather use a broken laptop dangling off a TV than be subjected to the watchful eye of the TV's native operating system."
https://arstechnica.com/gadgets/2024/07/broken-linux-laptop-makes-for-a-fine-smart-tv-alternative/
Here's a link to the same but it doesn't block Tor users:
A. Bump into someone at a hackercon
B. have an interesting conversation
C. Exchange contact info
D. Continue sharing interesting news & analysis, ask really good questions, work on projects collaboratively
E. Eventually they'll put you in touch with others and someone will invite you into various private channels
At least that's how it's worked for me.
Heh, I get my infosec news from underground sources: private Matrix channels, Signal groups/messages, etc. The people tipping me off are getting them from vendor bulletins, or things they see in the field. It's how most senior infosec people stay in the loop.
But what I want to know is where people outside the field get their info.
Where do you get privacy and cybersecurity info? Do you have favorite blogs or podcasts or something?
This is a real article, despite being a screenshot with no URL to back it up. Here's the article and a translation to English:
Also, the headline isn't hyperbole. It's a fair description of the article.
I misread this as she was showing you how to get around the facial recognition software at the pool and was very confused at the end of the first read.
I'm guessing there's not much protesting or picketing in your family, because that seems like the obvious risk.
Maybe something like "that facial recognition data might later be used to log into bank accounts, and if the swimming pool systems get hacked, that could be bad/we'll be glad we didn't use that system."
If you need some examples on publuc cameras thay got hacked, I can dig up some on ALPR data breaches. It's not exactly the same, but a concrete example can sometimes help show people that these types of concerns are not merely hypothetical.
Are they trying to raise the price for more profit or to maintain the collapsing infrastructure. Because one of those explanations I might be okay with
That sucks. How often does that happen?
If you use any other #cloud storage service (#GDrive, #OneDrive, #iCloud, etc.), you might want to consider #hosting something yourself now, or with friends & family.
The #corporations will sell you out in a heartbeat. #SelfHosting
#shitpost #uspol
If Harris wants to bring the country together, she'll nominate Trump as her vice president.
This is the boring work that often times doesn't get done, or gets done hastily causing more problems down the line.
It's not the fun and exciting work of adding new features, designing a new board or case, or an entirely new model or project.
On the other hand, the willingness to grind through this is what sets projects apart. I'm going to continue to improve the developer documentation as I go through these things too. Mainly for myself (the only developer), but for anyone else who happens to look too. ❤️
The other thing I have going on for #Signet #Saturday is working on poor error handling when a password over 2048 bytes is imported from KeePass. It just hangs the import process and so not everything gets imported (unless the big one happened to be the very last entry).
I spent a couple hours going through the code making notes about what size checks are done at various places in the code.
If I can figure out a way to handle entries this large, I will, otherwise I plan on skipping them.
Learning how the fractional reserve baking system works, and understanding that there is literally not enough money to go around to pay off all the debt and interest was mind blowing. 🤯
I remember hearing about it in 2008 and immediately thinking: this sounds like complete bullshit, but I've heard thay banks do lend out people's deposits and that's why we can have bank runs... so how does it actually work?
Turns out, yeah, that crazy story about repeatedly increasing the money supply by lending out money that doesn't belong to them... it's true. 😱🫣
Some of the details here differ from other accounts (e.g. bad driver update versus bad definition update that triggered the existing driver), but I'd say they got the broad strokes right.
https://www.wheresyoured.at/crowdstruck-2/
"What we're seeing today isn't just a major fuckup, but the first of what will be many systematic failures — some small, some potentially larger — that are the natural byproduct of the growth-at-all-costs ecosystem where any attempt to save money by outsourcing major systems is one that simply must be taken to please the shareholder."
via https://mastodon.social/@dangillmor/112817353944387810
#crowdstrike #infosec #security
Another #Signet #Saturday and this week, I've opened a ticket on the #Qubes issue tracker.
https://github.com/qubesos/qubes-issues/issues/9367
Signets can be used in Qubes without this being fixed, but it currently requires attaching the device to a qube, detaching it, and then attaching it again.
If this issue is fixed, it'll work fine on the first attachment.
#infosec #security #OpenHardware #foss #hardware
If you use a Pi Pico, the's very little software work:
- download a firmware image
- plug in the pi while holding down the boot selector button (it'll show up like a thumb drive)
- copy the firmware to the drive
- that's it. You now have the software installed.
Go to client.meshtastic.org and you can configure everything through any Chromium-based browser (over WebSerial). Firefox reportedly doesn't support the standard for WebSerial
Once configured, you should be good to go.
I am, but I am using a Pi Pico, and I see you used a Pi 3 (or Pi Zero 2?).
I'll check out your writeup in more detail and try to reproduce your work. I've found the documentation on pi-based nodes to be difficult to find and sparse. Having your notes to tie it all together will be great!
The #crowdstrike issue was reportedly caused by a definition update, not a driver update.
https://chaos.social/@gsuberland/112816214186574057
This makes a lot more sense on how it got rolled out so quickly and how it would get past people's update control processes.