I recently deployed Wireguard, and have a blog post about it. It's more of a "real world" blog post than instructional, but I do enclose details about what I did and how I did it.
Why cybersecurity staff burn out, and what to do about it
Based on Computing's research and interviews with two experts, we look at the causes of burnout among cybersecurity professionals and how more attention paid to this issue at board level could help shore up defences.
(Free reg)
My schedule for streaming is going to be weird for the next few weeks as I am taking CISSP classes. So for the time being I will be streaming on Sundays, Mondays, and Wednesdays as I am able to for the time being.
Question for #infosec crowd. I've always stayed away from TouchID (or similar) due to not wanting Apple (or other companies) to have access to my fingerprint. Am I wrong?
Discworld fans know the irregular clock in Lord Vetinari's waiting room.
I just found out that there are building instructions out there how to build such a clock yourself - the source code is here https://github.com/akafugu/vetinari_clock
But it made me think: why don't we have a kernel patch that does this? Anyway I'm now reading up on the /dev/rtc class, NTP and PTP, wondering what would be funnier to do.
Any #infosec folks recommend the best #cyber contractor hiring in vicinity of Ft. Eisenhower? (Ft. Gordon). A friend is looking for an established contractor with good benefits hiring people at GS-13 equivalent level to staff CYBERCOM, TRADOC or other major commands. #USArmy
I've been helping to investigate a few LLVM and Rust bugs recently, and I keep running into pet peeves with how these bugs are reported, so I'm going to put together some #RulesForBugFiling
I don't want to discourage anyone from filing a bug, please do! But... be aware with how you represent the issue that you're seeing.
I also know that there are folks on here who are vastly more knowledgeable than I am, so feel free to suggest corrections, perhaps by filing some sort of report...
If you're going to claim something is a security issue, please explain what the attacker has gained by exploiting the bug. That is, what they can now do they couldn't before.
Just as we got a conviction in the #Vastaamo case, now #Helsinki primary education IT has been breached and 120k students', parents' and teachers' info has been stolen.
Details are sparse, but parts of what has been revealed sound like a #Office365#breach to me. Not confirmed though.
"Possibly the largest data breach affecting [Finland's] municipal sector"
i have been reworking some security bits and a friend got swept up in my sand traps. he's on iOS, isn't a techie, doesn't think he's using a VPN or using special security/privacy settings — but his traffic is coming from CDN addresses (akamai, cloudflare). something's going on that i didn't know about. can anyone point me to learning links? #infosec