Edward Rosen 

@[email protected]
34 Followers
23 Following
76 Posts
#Cloud evangelist & CxO advisor. I help Public Sector organizations get the most from Google Cloud.
Google Cloud certifications: https://www.credential.net/profile/edrosen/
Former Cisco Consulting Engineer & Product Manager.
He/him; views are mine.
Verificationhttps://www.edvoidswarranties.com/
GitHubhttps://github.com/edwardrosen
 Edward Rosen Mar 10, 2024
2024-03-10: I recertified as a Google Certified Associate Cloud Engineer! Celebrating with a donut!
#gcp #googlecloudcertified
 Edward Rosen Aug 12, 2023

Do you write and publish your own content? You can block ChatGPT from training on it.
Add this to your robots.txt file:

User-agent: GPTBot
Disallow: /

 Edward Rosen Dec 4, 2022
Pretty wild story from Ars Technica: Samsung’s Android app-signing key has leaked, is being used to sign malware.
https://arstechnica.com/gadgets/2022/12/samsungs-android-app-signing-key-has-leaked-is-being-used-to-sign-malware/
#android #samsung #wtf #infosec
Samsung’s Android app-signing key has leaked, is being used to sign malware

The cryptographic key proves an update is legit, assuming your OEM doesn't lose it.

Ars Technica
 Edward Rosen Nov 26, 2022
I recertified as a Google Certified Professional Cloud Architect! Celebrating with a donut!
#gcp #googlecloudcertified
 Edward Rosen Nov 25, 2022
I recertified as a Google Certified Professional Data Engineer! Celebrating with a donut!
#gcp
 Edward Rosen Nov 25, 2022

A letter from 1547 written by Charles V has been decrypted. Entire words were encoded as symbols and junk symbols were inserted to thwart decryption.

https://www.theguardian.com/world/2022/nov/24/emperor-charles-vs-secret-code-cracked-after-five-centuries

Emperor Charles V's secret code cracked after five centuries

Letter from 1547 reveals Spanish king’s fears of a French assassination plot against him

The Guardian
 Edward Rosen Nov 22, 2022

Passkeys! Watch this space! I never understood how a passwordless future would work; this is it. This solves so many of the issues we see today with passwords, phishing, and MFA - while bringing the benefits of FIDO keys.

Google posted this last month:
https://developers.google.com/identity/passkeys

And 1Password recently published this page, which allows you to use a passkey right now.
https://www.future.1password.com/passkeys/

Passwordless login with passkeys  |  Authentication  |  Google for Developers

Google for Developers
 Edward Rosen Nov 17, 2022

Wow! The average person doesn't realize SMS MFA is the worst form of MFA. This is bad news if true.

"A researcher contacted Information Security Media Group on condition of anonymity to reveal that texting "STOP" to the Twitter verification service results in the service turning off SMS two-factor authentication.

"Your phone has been removed and SMS 2FA has been disabled from all accounts," is the automated response.

The vulnerability, which ISMG verified, allows a hacker to spoof the registered phone number to disable two-factor authentication."

https://www.bankinfosecurity.com/twitter-second-factor-authentication-has-vulnerability-a-20475

#mfa #twitter

Twitter Two-Factor Authentication Has a Vulnerability

Twitter accounts that use SMS for two-factor authentication are at a heightened risk of account takeover with the disclosure that texting "STOP" to the