Infosec friends are unanimous: if you're using Chrome, you want to visit chrome://settings/adPrivacy and turn off Ad Topics, Site-Suggested Ads, and Ad Measurement.
IMPORTANT: you must do this for each of your Chrome profiles, since it's not a global setting.
Microsoft’s post-mortem into how China-linked attackers accessed cloud email accounts for US gov’t organisations is an incredible read, and it shows how a chain of mistakes and vulnerabilities in the cloud can lead to a real mess. The attackers probably couldn’t believe their luck. In cloud email security poker, it's a royal flush.
A Microsoft engineer account gets hacked. Engineer has access to a sensitive crash dump, which due to a race condition vulnerability still contained a consumer signing key. That expired consumer signing key works for – boom! – enterprise email due to some validation errors. After forging some Azure Active Directory (AD) access tokens, the attackers crack open the email accounts of the State and Commerce departments. #infosec
Story by @dangoodin https://arstechnica.com/security/2023/09/hack-of-a-microsoft-corporate-account-led-to-azure-breach-by-chinese-hackers/
@eff is totally wrong with this take about KiwiFarms and HE: https://www.eff.org/deeplinks/2023/08/isps-should-not-police-online-speech-no-matter-how-awful-it
Every customer of HE signs a contract, which states that they will abide by the TOS/AUP or their service may be interrupted.
There is no world where KiwiFarms abides by their TOS/AUP. By design the entire purpose of the website is an egregious violation of multiple points of the HE AUP.
HE has the right to enforce their TOS/AUP by not routing traffic to Joshua Moon.
EFF should retract this article immediately.
Entrusting our speech to multiple different corporate actors is always risky. Yet given how most of the internet is currently structured, our online expression largely depends on a set of private companies ranging from our direct Internet service providers and platforms, to upstream ISPs (sometimes...
Today in “The Fastest Way To Die” news:
People buying AI written mushroom field guides which is incredibly dangerous.
I can’t believe this has to be said: Don’t risk it.
Instead, why not invest irl Mycology books? You know, written by people who spent years learning how to differentiate between the HIGHLY LETHAL Deathcap from several nontoxic edible species. Or ask a friend with foraging experience to take you which is much safer.
(Edited for clarity.)
You know what I want?
Farming sim set in the Shire. You take over a farm that used to be a major producer of Old Toby, but ofc has fallen into disrepair and you need to restore the family's legacy.
It appears that these Bing pop-ups are handled by a separate executable called "BgaUpsell.exe" which is signed by Microsoft and doesn't use the standard notification system that's built into Windows. There are also users reporting that these pop-ups are showing up in Windows 10 as well, not just Windows 11.
In a statement to The Verge, a Microsoft spokesperson stated that:
Kent Brewster
ebbtide
Tanawts
Jeremy Kirk
Ariadne Conill 🐰
Chris Hallbeck
Coach Gowron
Jen McCulley 
Willow (she/her)
deltatux 
