echoesandashesMay 22, 2025

What if you 𝘢𝘳𝘦 broken?
https://echoesandashes.bearblog.dev/there-are-bad-people/

#brokenness #grief #identity #ifyouknowyouknow #mentalhealth #noteverythingheals #quietthoughts #radicalacceptance #redemption #selfawareness #thedarkside #therapy #unfixable #whisperedtruth

There Are Bad People

In life, in culture, and in the stories we tell ourselves we are led to believe that there are always those in life who are "bad". The antagonist. The advers...

Echoes & Ashes ❖
Kevin Karhan Oct 8, 2024

@douglevin see, this exact scenario is why I act as "#BenevolentDictator" and literally lockdown stuff so hard #TechIlliterates cant fuck up!

  • Unless you put that option on the table as a.fellot #TechLiterate, you won't be able to survive this game.

I wasted 15+ years of my life trying to make #Windows somewhat secure to come to terms with the fact that ut's an #unfixable #Givware that is #UnsafeAtAnyConfiguration / #InsecureAtAnyConfiguration.

  • Believe me when I'd tell you that "#Users" like her don't give a shit about what Hardware/OS they get: Just set her up once with a good config (i.e. #UbuntuLTS if you're lazy like me), backup all the important stuff, setup regular backups, remove #sudo privilegues and then you'd only need to check in once a year at most if not have a system that just runs for the next 2-5 years without intervention.

On the flipside I've seen cases where #Scam|my Sales Reps were able to upsell some 5-digit 21,5" gaming monster to a photographer that uses ACDSee to do minimalist editing of their JPEGs.

At least I won't deal with #Windows11 or any of that shite because noone is gonna pay me enough to loose my sanity over such a garbage software!

And yes, WE, THE "TECH LITERATES" ARE TO BLAME FOR THIS because we didn't demand #Security and #Simplicity before #Convenience!!!

Doug Levin (@[email protected])

This weekend I spent half a day remediating an elderly relative's Win 11 home laptop. Totally overpowered and overpriced for her needs, it was recommended to her by BestBuy when her old machine was complaining it wasn't compatible with the new MS OS rollout :( Both her OS and primary email were compromised. The threat actor did not disable Defender but just excluded every important directory from scans. May have also punched a hole in her device firewall for all I could tell. Only reason she even knew an issue had occured was due to issues with her email. She stopped receiving any emails and we reached out upon recieving what appeared to be a phish from her account. (No link to click in initial message, but an invitation to a longer urgent conversation.) Turns out they just redirected her email to her outlook account email (which she didn't even know she had, but was generated as part of her Win 11 install). They created a new alias and added some other rules to auto-forward further comms. FWIW, the rogue device attached to her account was coming from a TX location - many states away from us. No 2FA, no adblocker, no password manager, no understanding of firewalls, what makes a password stronger vs weaker, confused by messages about actions that were computer/browser/OS related. But look. She's 80+. I only had a few hours to investigate and remediate. I can't change all that and expect her to manage it on her own. How the f*ck is it possible that an average user can manage this stuff? Why is Win such a trash fire? Can't MSFT make a default config for non-technical home users that is locked down by default? She has literally ZERO chance against threat actors on the modern web. We in tech have totally lost the plot... I am NOT looking for advice (just use Linux or w/e). I am venting about shit UI, shit tech co's pushing the next new crap tech for no other reason than $, and the state of the modern web.

Infosec Exchange
Kevin Karhan Aug 18, 2024

Reason #9001 why #Windows is #unfixable, broken #Govware and #Microsoft is blatantly evil:

Instead of actually fixing their shitty #BitLocker #encryption [which has #Govware #Backdoors BTW!] they pushed a broken update and instead of fixing that they told users nonchalantly to 'go fuck yourself' and instead expected them to run some shitty #PowerShell, which then allowed #CyberCriminals to prey upon #TechIlliterates by shoving malicious stuff at them...

Case in point: This is just inexcuseable espechally for a #CCSS that costs hundreds of dollars retail [ #OEM-Keys don't count! ]...

Unmasking Pedos with Malware (Without Hacking Them)

YouTube
Kevin Karhan Jul 29, 2024

@GossiTheDog Shit like this is why I've turned into a #BenevolentDictator and forcibly migrated everything and everyone to #UbuntuLTS with no sudo privilegues and a daily update cronjob in the background!

-Because I'm sick and tired of the #unfixable & #InsecureAtAnyConfiguration #Govware that is #Windows.

Kevin Beaumont (@[email protected])

Attached: 1 image I got my partner - who is non-technical - a Windows laptop for Christmas in 2023. A fancy one with Windows 11, TPM blah blah. Clean install. It has Defender, Smart App Control enabled etc so I wasn’t concerned about the security. Anyhoo, just looked at 7 months later and Defender is disabled, a ‘free’ AV called RAV is registered which appears to be a fake Chinese AV, Smart App Control is disabled, her traffic is routed to a Chinese VPN, her browser is Opera GX (a Chinese owned one).

Cyberplace
Show threadKevin Karhan Apr 23, 2024
@johntimaeus @nuintari @jima @da_667 that's because #Windows is an #unfixable shitshow that needs to outlawed for #NatSec, #Privacy & #ITsec reasons immediately!
Matt WillemsenApr 13, 2024
Hackable Intel and Lenovo hardware that went undetected for 5 years won’t ever be fixed
https://arstechnica.com/security/2024/04/supply-chain-snafu-causes-intel-and-others-to-ship-hackable-hardware-for-5-years/ #Intel #Lenovo #hardware #vulnerability #SupplyChain #RemoteExploit #unfixable #lighttpd
Hackable Intel and Lenovo hardware that went undetected for 5 years won’t ever be fixed

Multiple links in the supply chain failed for years to identify an unfixed vulnerability.

Ars Technica
Show threadKevin Karhan Dec 6, 2023

@dangoodin @matrosov Why am I not surprised?

#UEFI is a mess and #unfixable #bloatware!

@infosec_jcp 🐈🃏 done differentlySep 27, 2023

The push to delegitamize a whole #NewsPlatform took less than $45 Billion dollars and in the name of #FreeSpeech lost $40 Billion dollars in the process in less than one year because #governance is an NP=hard maths problem called content moderation wrapped in #ToS that is applied, #equally.

This is gonna cost a #Fortune 💯. #Unfixable #OligarchTaxWriteOffs

Show threadKevin Karhan Jul 13, 2023
@paul maybe it's because they are essentially #Vaccuum|s that collect all the dust but are inherently designed to be #unfixable and #unserviceable from the factory!
https://www.youtube.com/watch?v=EdwDvz47lNw&t=259s
Fixing the Unfixable iMac Pro with Louis Rossmann!

YouTube
Show threadKevin Karhan Jan 16, 2023

@cyberfeed have fun fucking up #CensorBoot!

It's #unfixable...
https://gist.github.com/acepace/df34b5213f1e0fae6529eb703d947187

https://www.phoronix.com/news/Secure-Boot-Golden-Key

Secure Golden Key Boot: (MS16-094 / CVE-2016-3287 and MS16-100/ CVE-2016-332)

Secure Golden Key Boot: (MS16-094 / CVE-2016-3287 and MS16-100/ CVE-2016-332) - rol.im-securegoldenkeyboot

Gist