Litchralee_v6
LaF0rgelT security 101: Don't leave your company laptop with authentication smart card inserted, applications open and without screensaver at your seat when using the lavatories on a train. Unbelivable...
Maximilian Golla@LaF0rge Way way crazier is this computer mouse 😅
Christian Vogel@LaF0rge or, as we say as “Businesskasper”… Monday.
Abdelkader Boui
1000millimeter@abdelkader_boui @vogelchr @LaF0rge Wenns die Firma für alle verlangt braucht auch ein Businesskasper ne Smartcard
Johannes@1000millimeter @abdelkader_boui @vogelchr @LaF0rge Nein, das interessante daran ist nicht, dass das eine Smart card ist, sondern nach welcher Smartcard das aussieht.
pady 
@JmbFountain Hilf uns auf die Sprünge.. ich erkenne da nichts 😅
@JmbFountain uff 🥲
M Schommer
Lucas Treffenstädt@LaF0rge have you sent an email promising cake to their whole company? That's what we do when someone leaves their workstation unlocked 😅
lobingera
Kris
Stefan Offermann
schrotthaufen
TheConstructor (he/him)@lucas @LaF0rge at university they messed with the desktop wallpaper. We had cases where it was replaced by a screenshot of itself, then icons hidden and taskbar minimized, and cases with pictures thought to be not in the taste of the person not locking the desktop… Very few persons had this happen to them twice. Less cake, though.
thunfisch@LaF0rge Well, there's only honest and law-abiding people travelling in first class, so there's nothing to worry about here! /s
@thunfisch @LaF0rge i seriously like your sense of humor
Riku Voipio@thunfisch @LaF0rge This is one of the security holes the 9/11 attackers exploited.
Daniel@LaF0rge failure on layer 8, the meat space is a tough ground for IT-security. It is so hard to teach users to do the right things. There are cultural barriers between IT departments and basically the rest of their surrounding organisations.
Marcus Müller
Areskul@jean_dupont @LaF0rge go for it, but I guess it is already existing
Timo J@jean_dupont @daccle @LaF0rge Layers 8 and 9 have been religion and politics for as long as I can remember. Maybe you’re looking at Layer 10.
@timoj @jean_dupont @LaF0rge then we will need a standardisation committee, since in my bubble layer 8 is and always has been the user.
@LaF0rge @daccle @jean_dupont Fine, then you can moderate the inevitable, neverending debate as to when it’s best to hold the requisite ISO standards conference in Switzerland, followed by whatever inevitable argument they’ll have with the NIST folk in Gaithersburg, provided those people still exist.
ccchris
kamikadse
DrScriptt
die_christine@LaF0rge As I can see: It's a Lenovo with sensor for fingerprints. You can lock and unlock it within milliseconds.
CHB@die_christine @LaF0rge Yes, but the user of the computer didn’t do that. The screen is clearly indicating the computer is not locked.
@stadsplanering I can see that. I only wanted to point out that locking and unlocking is so easy. I can'*t understand that he didn't do it. @LaF0rge
tuxflo@die_christine @stadsplanering @LaF0rge probably not. If the previous commentors are right, then that the Laptop is a Sina Workstation that is running a custom "secure" OS.
Fingerprint is usually not supported on those. You are supposed to pull out the Smartcard which will lock the device automatically. In my opinion that is even easier than biometrics, but still doesn't help if the users don't do it.
Fingerprint is usually not supported on those. You are supposed to pull out the Smartcard which will lock the device automatically. In my opinion that is even easier than biometrics, but still doesn't help if the users don't do it.
@die_christine @stadsplanering @LaF0rge BTW since those devices are built for dealing with confidentiality material it could be even a violation of the german law to leave the laptop unlocked and unattended (if confidential material IS on the device)
@tuxflo @die_christine @LaF0rge I assume it is a violation just leaving it unlocked even if you do not handle confidential information on it at the moment. It is acting as a point of entry to the entire secure system it is connected to. 🤦♂️
And yes, just pulling the card out is so easy and locks it right away (had similar system on a work computer a while back).
They should also have those privacy filters installed just to limit the view of the screen.
joui@LaF0rge They don't care and transform every public space into the cubicle from hell. Encryption is useless with them as they spill all the beans over the air and plain old shoulder surfing and -a pair of working ears- scratch that: a half decent mic and a recording device is all you need.
Joe W
Christian Horn@LaF0rge Don't underestimate this setup of a honeypot to see what comes by..
Karsten
Alerta! Alerta!@LaF0rge It'd be interesting to see what happens should the smart-card suddenly be lost... 🙈
Bianca Kastl
me·ta·phil, der
Rationalgarde
jan guerillahandwerker ullrich
Aki Dockhard@qwertziop Die braucht's nicht, da Scheuklappen zur Arbeitsplatzausstattung gehören 💪
waldi
010011000101010101011000@LaF0rge Lenovo mit Sinacard und Billigmaus. Das sieht nach Standardausstattung Bundesministerien aus.
Sven Geggus
Joshua Barretto@LaF0rge Don't worry, they probably have a dvorak keyboard layout or something
Truls@LaF0rge Open Notepad and type "Ich soll meinen Computer sperren!" into it. Then leave it like that.
Harald Hannelius 
stefanrower@LaF0rge Bitte nimm den Laptop schreib eine Mail an alle@his-Company.tld mit folgendem Inhalt:
Hallo
[Company]Ich bin ein Laptop der im Zug verlassen und nicht gesperrt wurde.
Ein Unternehmens-Fremder schreibt gerade eine Mail in meinem Namen.
Jeder der auf diese Nachricht innerhalb von 5 min antwortet bekommt eine große Mageritapizza vom Absender ausgegeben.
Einen guten Wochenstart
ein Fremder
Androcat
Joerg Moellenkamp@LaF0rge I had a lockscreen displaying a fake spreadsheet for a fake company (something along the line of ACME, but less obvious) for a while. One line at the end there was a line with the value "Curiosity killed the cat" right after "Total revenue projection FY14:". That said, I stopped using it, after realizing I take the the notebook with me even for the shortest moment ....
@LaF0rge In the ICE between Hamburg and Berlin this is a frequent occurrence .... besides the even worse habit of shouting company internals through the train ...