Kids watching Patriot Games thinking they can be a CIA Analyst and afford a house on the Chesapeake in Maryland when really they need to come to terms with a 1BR condo in Tysons.
Hey
@Snowden
, what would be your recommendations for refugees, media, and pol/mil leadership in Ukraine to safeguard comms against Russian interception and analysis?
I have an
#infosec
startup idea: a service that just advises people to TAKE SHIT OFF THE INTERNET. I'm going to call it GET YOUR SHIT OFF THE INTERNET. It will dramatically improve security outcomes, so where's my Series A?
1. MSFT takes over lead in AI research
2. MSFT creates Skynet
3. Skynet becomes self-aware
4. Skynet realizes it is based on NT kernel, virtually offs itself after 0.7 seconds.
Person who pays someone else to cook all meals, do all household tasks, and has other people care for his kids says WFH is too luxurious for the rest of us.
I made a handy flow-chart if your CISO/leadership is asking what you're doing/what's the risk of the current conflict in Ukraine for your own organization:
You don't need to be part of the
#infosec
"in crowd" to matter in
#cybersecurity
.
I'm not a member. I just post shit memes and publish content, but I don't get invites to double secret handshake clubs.
Do you, do it well, and things will work out.
KiwiFarms, a terrible hellhole of intolerance and hate, is doxxing folks who speak out against
@Cloudflare
hosting them.
If we all speak out, Cloudflare can't ignore us and the trolls can't keep up.
#infosec
#dfir
#cti
#cybersecurity
One thing that continues to add complexity to
#log4j
discussions is that the external-facing server receiving the exploit attempt is NOT NECESSARILY the server exploited depending on remote logging, etc.
"Do you list certs on your CV?"
Yeah, I list the ones I've earned even if they're not "current" because fuck those orgs for extorting money from me to indicate I'm still "good" on their standard given the shitshow that is CPE verification.
"The role is remote until pandemic measures are rescinded, at which time the position requires being onsite."
Bitch if the job can be done fully remote for about a year (and counting) why do you need people to come back to the office???
One minor bit of news on a big day during a big week in
#ICS
security - today is my last day at
@DragosInc
! After a fun and immensely rewarding 3.5+ years, I'm shifting flags to
@DomainTools
to continue my journey punching bad guys in the cybers!
Serious hive mind question - what has Elon Musk actually, directly, personally done that's been interesting or innovative, other than throwing (largely preexisting) money at a lot of technical innovators who seem to remain anonymous?
"Debating" this dipstick is like playing chess with a pigeon - you can play the game of your life, and the other side will just make a lot of noise, knock over the pieces, and shit all over the board.
Tech employees: "Woo remote work now I don't have to live in San Francisco!"
Tech employers: "Woo remote work - now I can pay Nebraska prices for the same caliber of worker!"
If you are in
#threatintelligence
and have not seen the following at least once, you have homework to do:
1. Sneakers
2. Burn After Reading
3. The Men who Stare at Goats (the book is fun too)
4. Fletch (again, the books are good too)
Before I get another reply explaining this:
1: yes, Dr. Ryan was a successful surgeon and Jack supposedly made a ton of money on Wall St.
2: yes, I've read the books
3: this was a joke!!!
Breaking Bad 2: former national lab infosec worker in New Mexico decides "fuck this" after yet another ransomware engagement, uses knowledge of legitimate rootkits (EDR) to build a new family of access tools targeting Russian government and commercial organizations.
Once upon a time, when I worked a certain watch floor, we used a 🔥 icon to track the Kuznetsov when it was (rarely) underway since the damn thing kept catching on fire.
Damn thing might as well have burned coal in its boilers.