danirod 🇪🇸“If you installed PyTorch-nightly on Linux via pip between December 25, 2022 and December 30, 2022, please uninstall it and torchtriton immediately, and use the latest nightly binaries (newer than Dec 30th 2022).” https://pytorch.org/blog/compromised-nightly-dependency/ #pytorch #python #pip #cybersecurity
richmanab
- 11 Followers
- 37 Following
- 47 Posts
Father, husband, InfoSec architect (CISSP), cyclist, more or less former SCCA road racer, restaurant-biz survivor; Wake Forest Charlotte Hornets, Charlotte FC, and Carolina Panthers fan. He/him/his
@jerry not any one book but those that will provide cultural insights into the broad array of those that will be under their leadership. It often seems like the glaring part of OTJ training for senior leaders is how to think and communicate with a diverse employee base (e.g. not sound and act tone deaf).
Well this is some frustratingly stupid stuff.
considering the "theoretically the affected companies could ship a still-secure OTA update that includes new system apps with new keys, and they could make new corresponding Play Store updates that are compatible with those new keys. That sounds like a lot of work, though."
As a consumer, I don't want "a lot of work" used as any excuse to not do the doable and right thing.
Not sure if this helps anyone else but just ran into a fun quirk. Have a Rasbery Pi that has been acting flakey through the KVM it's attached to, particularly on the V side of the box. I ended up using an Ubuntu VM to rdesktop into it and decided after weeks of tiny screen to rdesktop -f (full screen).
I suddenly realized the key bindings for rdesktop's -f and VMware's are the same so any attempt to get out of full screen in the rdesktop'd pi was fruitless.
Modifying the VMware preferences for the guest that I am rdesktop'ing from resolves this and allowed me to "Ctrl" + "Alt" + "Enter" to de-fullscreen.
If it saves anyone else a minute (or a few seconds assuming I am slower than most), just throwing it out there.
@x0darkpadr3 have you tried "The InfoSec & OSINT Show" podcast? I've listened to several and they have been interesting.
I am officially GDSA certified as of today. That was honestly quite stressful, different way than CISSP stress but the open book thing is not a good match for a chronic second guesser like me. I need a beer, and some sleep.
Granite ManVery sad to hear about Elon Musk.
Nothing happened to him, I’m just very sad to hear about him.
Have accidentally discovered how to get my eldest downstairs in seconds - have the broadband go out. Putting that knowledge in the emergency break-glass kit.
Appreciate this bit "Samsung's Galaxy S22 series devices and the company's Snapdragon-powered handsets aren't affected by these vulnerabilities."
From: Google says Google and other Android manufacturers haven't patched security flaws
https://www.engadget.com/google-arm-android-phones-security-flaw-mali-gpu-samsung-oppo-xiaomi-183029261.html
@Opusmarta he is so grotesque; almost like a completely unrealistic 2D character in a made-for-tv movie. But unfortunately, he's very real and has a massive clutch on the world's user data, be it via Tesla or Twitter algorithms. The more he undermines the intelligence around and security over that data, the fewer the barriers exist to blow the whistle on criminal use of, or criminal stewardship of that data, I fear.