wyngman@tasket@infosec.exchange
Tech status: Upgrading OS and dealing with unpatched bugs that were fixed upstream 2ya.
The current state of #Linux quality is looking pretty dank.
#fedora #debian #gnu #kde
wyngman@tasket@infosec.exchange
wyngman@tasket@infosec.exchange
wyngman@tasket@infosec.exchange
You can shop for #VPN services that are audited for #privacy. Doing that with ISPs is basically impossible.
Edit: Some VPNs I consider to be decent are Mullvad, Nordvpn and Protonvpn.
Some to be avoided are PIA, Expressvpn and Cyberghost.
#mullvad #protonvpn #nordvpn
wyngman@tasket@infosec.exchange
Its odd how we expect society to be pro-literacy, but then in IT we constantly make arguments against computer literacy because checking things like addresses gets in the way of instant, constant gratification. So most of you get upset when I suggest that YOU should remind users to actually check the spelling of who the f*ck they are actually accessing.
But no, that's too much rocket science.
"Oh but the domain spelling doesn't matter because..." stupid excuse consisting of exceptional incidents. Or saying that users can't know the difference between microsoft.com and edge-update.com. Or suggesting that we'll get the phishing problem licked one day without any bothersome checks by the user – this is literally impossible on an open network, so your ultimate solution would have to be the equivalent of closing the net and/or converting all endpoints to dumb terminals.
🙃
I now return you to our regularly scheduled phishing stories...
wyngman@tasket@infosec.exchange
Today's #infosec weather:
A dense fog of misguided expert opinion about Https:, followed by a hailstorm of successful #phishing attempts.