Mastodawn

Gerardo Oct 29, 2024

I know, I'm late at the party. I was querying the search engine they call Copilot. I asked "in gcp, how do I find the costs of unattached disks per project?"
Copilot gave me a very bad answer. If s.o. would have used the command for listing unattached disks to delete unused disks they would have done a catastrophic error. Now, I'm happy that I'm late to the party haha. Always double and triple check the answers no matter if it's "AI".

Gerardo Oct 28, 2024

The TV provider Free.fr was breached. Users got notified that a lot of personal data was compromised (name, last name, domicile, phone number, subscription information, bank info, and more).

I find interesting that they include a paragraph regarding the penalties and liability of the offender. They should talk about their own responsibility and fines the should be facing!!

Gerardo May 9, 2024

evacide May 8, 2024

This is your regular reminder that most communications on Telegram are not end-to-end encrypted. Channels and groups are never end-to-end encrypted and 1-on-1 messages are only end-to-end when explicitly enabled.

Gerardo May 3, 2024

EuroUSEC 2024

Only 1 month left to submit to the 2024 European Symposium on Usable Security!

Submit your research and findings to EuroUSEC, a forum for research and discussion on human factors in security and privacy! Discover the perfect synergy of technology, innovation, and tranquillity as EuroUSEC 2024 makes its way to the charming city of Karlstad.

Call for Papers – EuroUSEC 2024 – 30th Sep - 1st Oct 2024, Karlstad, Sweden

https://eurousec24.kau.se/
#cfp #academia #usablesecurity #usec #EuroUSEC

EuroUSEC 2024

EuroUSEC website

Show thread

Gerardo Apr 5, 2024

@j2bryson this is coming to most airports and airlines. I believe Dubai has it for some time.

Gerardo Feb 21, 2024

Not long ago I read headings about Signal losing a big donor. The blogs posts were painting a dire future. It's refreshing work keeps going and the introduction of usernames as identifiers.
https://signal.org/blog/phone-number-privacy-usernames/

Keep your phone number private with Signal usernames

Signal’s mission and sole focus is private communication. For years, Signal has kept your messages private, your profile information (like your name and profile photo) private, your contacts private, and your groups private – among much else. Now we’re taking that one step further, by making your...

Signal Messenger

Gerardo Dec 4, 2023

Fake Job Posts on LinkedIn.
.
.
Always be alert, suspicious and verify before even clicking.

There's been several posts in the media, articles and blogs by people describing how LinkedIn is being used to recruit, deceive, or scam job seekers.

I am receiving emails with job offers with "High experience match", "High skills match", or "Be first to apply" LinkedIn [pretend] labels.

I checked "Fudan University" in Hafnarfjörður (On-site) under the Icelandic Yellow Pages, nothing found:
"Engar niðurstöður fundust fyrir „fudan university“
Ástæðan gæti verið að leitarorðið er rangt skrifað eða ekki á skrá."
Google Translate:
"No results found for "fudan university"
The reason could be that the keyword is misspelled or not in the file."
https://ja.is/?q=fudan%20university

Alright, maybe not in file. So I checked Revenue Iceland. If it's on-site and it is a university it surely has to be registered; well, no surprise there, nothing found.
"Leit eftir „Fudan University“ skilaði engri niðurstöðu"
Google Translate: A search for "Fudan University" returned no results
https://www.skatturinn.is/fyrirtaekjaskra/leit?nafn=Fudan+University&heimili=&kt=&vsknr=

I repeated the exercise for MindPal Kópavogur (On-site).
Similar results, nothing under ja.is or the tax office.
https://www.skatturinn.is/fyrirtaekjaskra/leit?nafn=MindPal&heimili=&kt=&vsknr=
https://ja.is/?q=mindpal

#linkedin #linkedinjobscam #scams #linkedinjobs

Já.is

Gerardo Nov 18, 2023

From @protonmail
"The EU Parliament adopted a crucial position on the #ChatControl legislation removing the attacks on encryption, taking a definitive and progressive stance for privacy and security.

The original proposal threatened the fundamental rights of hundreds of millions of Europeans and risked undermining their safety..."
https://proton.me/blog/eu-parliament-chat-control

EU Parliament made the correct decision on Chat Control today | Proton

The EU Parliament adopted a position that removes attacks on encryption in the Chat Control regulation. This is a positive first step, but the fight’s not over.

Proton

Gerardo Nov 14, 2023

Michael Lopez Nov 14, 2023

❗ WARNING ❗

➡ Fake Skills Assessment Targeting IT & Cyber Job Seekers ⬅

Microsoft's security team has uncovered a disturbing trend targeting IT professionals. A notorious hacking collective, known by names such as Sapphire Sleet, APT38, BlueNoroff, CageyChameleon, and CryptoCore, is exploiting job seekers on LinkedIn. This subgroup of the infamous Lazarus Group is luring individuals with the promise of skills assessments, only to lead them into a trap.

After initial contact on LinkedIn, the scammers direct victims to external platforms where the real deception begins. They've constructed an elaborate facade, complete with password-protected websites that distribute malware under the guise of legitimate job-related content. These tactics are not just a deviation from their previous methods of attaching malware to emails or hiding it in plain sight on legitimate websites; they represent an evolution in cyber threats, with a direct aim at the unwary job seeker.

Stay vigilant. If an opportunity seems too good to be true, it might just be the work of Sapphire Sleet. Verify the authenticity of any skills assessment with the offering company directly and never download files or enter personal details into unverified platforms. Let's keep our digital job-hunting safe.

Please reshare to spread the word

Source:

https://cybersocialhub.com/csh/microsoft-warns-of-fake-skills-assessment-portals-targeting-it-job-seekers/

#CyberSafety #ITJobs #CyberSecurity #LinkedIn #Cyber #infosec #technews #tech #cyber #cybernews #technology #news #hack #hacking

Microsoft Warns of Fake Skills Assessment Portals Targeting IT Job Seekers – Cyber Social Hub

Gerardo Nov 7, 2023

Dan Goodin Nov 6, 2023

Mastadonians wanting more security- and privacy-related content here: there are a bunch of journalists, researchers and engineers who are woefully underfollowed relative to the impact and importance of the work they do. Please follow and engage with them so they have a strong incentive to use this platform more.

There are way too many to name all of them. In no particular order here are some (but sorry, not all; please look at the people I follow for more):

@lhn
@josephcox
@jasonkoebler
@malwarejake
@sophieschmieg
@howelloneill
@selenalarson
@philip
@neilmadden
@ryanc
@Wednesday
@yossarian
@LukaszOlejnik
@chenghlee
@saraislet
@Bryan

Please boost for visibility