| Job | Hacker and Admin Bitch (CEO) @ Vector0 |
| https://twitter.com/paragonsec | |
| https://www.linkedin.com/in/quentin-rhoads-herrera-b90320b6 |
Been a good minute since I posted here, so I wanted to share some thoughts I had about today.
Thank goodness it's Friday!!!!
That is all!
Let’s not forget our own mental health! I had an abused women tell me PTSD was only for soldiers, and those soldiers who saw war.
Lies! Many victims of domestic violence, rape, and other crimes can cause PTSD.
If you see someone in need please reach out to them and left them know it is ok. The world moves on. Life changes. Memories become faded.
If you are in an abusive relationship, reach out for help!! Being weak means giving up.
@GoblinLucy agree! The way I give tasks out is “get X done whenever you can by Y date.” That way people can get the sleep they need, work the hours they need, and maintain a healthy work life balance. That requires me to understand what I need a few weeks or months out though. Sometimes quick work comes out and it’s about delegating accordingly.
Unfortunately, people like myself tend to work ourselves to the bone with no regard of self health.
My point was that if you fall in either camp, you recognize the mental health stress constant work puts on people, or yourself, and ensure you are putting the health aspect first.
The best junior assessors who have made it to more senior assessor positions have one quality I have seen:
1. They all hate to lose and continue trying to win.
For those managing this type of personality, force breaks on them so they don’t burn out. Remind them that they can break that box Monday! That the bad code won’t change in 48 hours!
If you are a leader, and that with that type of personality… welcome to the chaos! Just don’t forget about your people!
Can’t sleep. So let me begin a #ff on this #fediverse.
@charlesdardaman
@colemankane
@hacks4pancakes
@HackingLZ
@alyssam_infosec
@frichetten
Two fun #Kubernetes CVEs were published today!
CVE-2022-3294 [1] is a bypass for the node proxy restrictions (related to the TOCTOU found in CVE-2020-8562 [2].
CVE-2022-3162 [3] is a very cool authorization bug that was caused by URI path traversal in the etcd client.
[1] https://github.com/kubernetes/kubernetes/issues/113757
[2] https://github.com/kubernetes/kubernetes/issues/101493
[3] https://github.com/kubernetes/kubernetes/issues/113756
CVSS Rating: CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H A security issue was discovered in Kubernetes where users may have access to secure endpoints in the control plane network. Kubernetes clus...
“I have some really disappointing & horrifying news about how Twitter ads is ingesting + storing advertiser credit cards. They have a ~new "reviewData" field that is a plain text ingestion (CC fields are encrypted) which includes the "firstSix" and "lastFour" #'s of your CC.🌩️⚖️🧵”
Over staffing is a huge problem with growth focused companies vs. profit focused ones. But the answer to fix this issue is not for employees to be more “hard core”… whatever the hell that means.
https://www.nytimes.com/2022/11/10/technology/elon-musk-twitter-employees.html
Selene Xenia
anthony weems