So tomorrow is going to suck I need upgrade my PfSense firewall and apparently there is a bug that requires a reinstall to get it fixed as the partition was too small. Then I can get around to setting up @protonprivacy and @bitwarden but I am keeping @keepassxc for the TOTP MFA, because I don’t want to store those in the same password manager. Also rotating all passwords and setting up new Yubikeys then migrating from Ledger to Trezor #infosec
It’s #NewstodonFriday! It’s been another busy week for the many newsrooms who have an active presence in the #fediverse, and we’re highlighting their work in the thread below. If you like what you see, follow the profiles and boost their stories.
If you’re a journo or newsroom that we don’t know about or if there’s a newsroom you’d love to put on our radar, please let us know in the comments.
⤵️
@josephcox has written a book, “Dark Wire,” about an encrypted messaging service app called Anom, which is used by drug traffickers but was infiltrated by the FBI and Australian Federal Police (AFP). @404mediaco has published this extract about how a kidnapping was both planned and foiled on Anom.
It took some tinkering but got @QubesOS reinstalled during my #Twitch stream on my @purism Librem 14. Had to rework some of the steps based off documentation to get the #Monero with wallet isolation going. Basically grabbed the tar ball and extracted it to a folder in the template Qube and then had the systemd run that. VPN is setup with @mullvadnet and I am loving the GUI updates to Qubes now marking Dark mode easier except for a few places. #infosec
The new wave of LLM-based AI is very much like Viagra. Originally invented to treat high blood pressure and angina, it was discovered that Viagra could help with reluctant boners. I'll let you work out whether this analogy is good or bad, but I'll just say I'm seeing a lot of dick waving when it comes to AI....
ATTN: Mail Admins!
The SORBS #DNSBL is shutting down immediately.
Smells like Proofpoint cutting costs.
Michelle Sullivan has said that she’ll be looking for a new gig after 6/30.
Sad, as SORBS was one of the best semi-automated DNSBLs out there for catching #spam from places where it was coming right now. A bit harsh for absolute usage, but very useful as a strong thumb on the scale. #Sysadminnery#InfoSec#email
So Microsoft is shipping a new feature in Windows 11 called Recall, which takes screenshots of what the user is doing every few seconds, and then feeds it into OCR.
And I've read a number of people describe it as useless.
But I disagree.
I'm sure plenty of people will find it very handy.
For example, your friendly local law enforcement agents and prosecutors are likely to find a feature like this very useful.
As will the NSA, the other three-letter agencies in the US, and intelligence agencies around the world.
Including the ones in authoritarian states. A couple of back doors, and it will be so much easier keeping track of who's been typing naughty words like "Prigozhin", "Navalny", or "free Hong Kong".
Not in the state surveillance business? No worries!
Assuming this data isn't locked down properly — and we are talking about Microsoft here — it's sure to find plenty of more mundane uses.
Perhaps for bosses who will no longer need to install keyloggers to snoop on their staff.
Or jealous current and former partners.
Mark my words, this poorly-thought-through attempt to shove LLMs in another place they don't belong to temporarily spike Microsoft's share price will find its uses.
And the next computer I get definitely won't be running Windows.
Stylized 3D illustration for a 2001 article in the Dutch PC-Active magazine, about the Code Red worm, which was the first large-scale, mixed-threat attack to successfully target enterprise networks.