It's really unhelpful when an email security system treats viruses, phishing, spam or messages that happen to have spam-like keywords all as "threats".
@rrwo Related: just yesterday I was unable to follow a link from #Verizon’s knowledge base to their support contact page because the former was an article on new gateway firmware and its URL contained the #SQL keyword UPDATE
Yes, their own “#security” protection was blocking referrers from their own help pages. No wonder they think their service is tops because they don’t get any support requests. Good job #InfoSec!
I wish sites would make it easier to change the 2FA code generator app — for many sites/services you have to disable 2FA and then re-enable just to switch the generator app.
🎬 Safari in #macOS 14 #iOS/ #iPadOS 17 removes tracking added to URLs in private browsing. The feature didn't support Twitter links when we tested it earlier. Now it does (unclear if #Apple updated it remotely or Safari learned that through its #AI model).
In this demo, Safari opens a Twitter link with tracking added to it in this parameter:
t=rpDAfXAHMthyq-L5hTMOIA
Safari identifies and removes the tracking parameter before opening the link. This is shown by copying the link after the website is loaded and pasting it to see that the tracking parameter has been removed from the original link 👍👍🙏
The upcoming Teams and Enterprise Demo will include a special topic on how to set your match detection options. Save your seat today! https://bitwarden.com/weekly/
I've been rediscovering RSS feeds and Feeder has been a delight! I'm curious what other feed readers folks are using and what interesting feeds folks are following?
Hopefully enough folks see this who use RSS feeds to respond
Empowering Security Operations with Next-Gen AI: ChatGPT's new Function Calling features for Microsoft Sentinel Playbook Execution SOCGPT https://rodtrent.com/yuk
Nord-Stream-Sabotage: NATO will Seekabel und Pipelines besser schützen
Die NATO wird ein Marinezentrum für die Sicherheit kritischer Unterwasserinfrastruktur einrichten. Russland soll Leitungen im Meer bereits kartographiert haben.
So, yeah, I'm still on #Windows. And I think I will stay. I unchecked any telemetry that I could. I use #Brave, with extensions. I use #Adguard#VPN I use #Signal with family. I do what I can for #privacy and #security
I must say that Windows as a desktop is full of little things that make life easier. I even like it more than MacOS. Linux is great, but I often felt that GNOME or any other desktop was holding with gaffer tape. No tomatoes please. 🍅😎
TaSK vom BSI ist ein konfigurierbares Testwerkzeug zur Durchführung von TLS-Konformitätstests auf Basis der Technischen Richtlinie TR-03116-TS. Quellcode und Tool auf GitHub verfügbar. 👇
And as long as you have two-factor authentication on your Apple ID (enabled by default for most people), not even Apple can read your synced health and activity data.
It’s pretty terrible that #Apple introduced hardware #Security Keys support (e.g., #YubiKey) for Apple ID six months ago and #Windows users are still locked out if they enable it.
Yikes: “The Register reports that malicious actors are exploiting expired #AWS S3 buckets to inject harmful code into legitimate #npm packages without needing to modify existing code.”
@thisismissem I've long seen this as an attack vector, and written S3 bucket takeover neutralization RFCs at multiple employers to prevent relinquishing S3 buckets that were used in production products. (Think empty, tag, add bucket policy to prevent deletion.)
The global S3 bucket namespace was a mistake, and it will, over time, become more difficult to create unique names as companies/orgs fail to release any previously used bucket names for the foreseeable future. #aws#s3#security
Bike Index - Bike registration that works (bikeindex.org)
The best bike registry: Simple, secure and free.