0x0

joined 1 year ago
[–] 0x0 1 points 9 hours ago

Of course, of course.......

[–] 0x0 12 points 1 day ago (3 children)

The? The year's far from over.

[–] 0x0 5 points 1 day ago* (last edited 1 day ago)

A state actor will use more precise techniques to attack specific targets. Think SolarWinds and Stuxnet.

Ransomware doesn't apply here and tends to depend on phishing first anyway.

Even terrorists have specific targets in mind.

So it's either Bond villains or incompetence.

Edit: The only way i can fit your comment would be an incompetent script kiddy. Even then, doesn't make sense as all systems were not directly attacked, as would be the case, but rather through what would have to be a side-channel attack, so no.

[–] 0x0 31 points 1 day ago (1 children)

Cmon guys, it's Crowdstrike implementing the 4 day week.

[–] 0x0 1 points 1 day ago

The software monitors all activity on a computer, even when offline actions are performed such as copying a file. Then this data is all sent back to CrowdStrike to be monitored for their supposed security purposes.

Congratulations, you've described how anti-virus software. How is this monero-related?

[–] 0x0 4 points 1 day ago

The outage is due to an update on anti-virus software from Crowdstrike. Yeah it's easy to pin it on Microsoft and they're not exempt from blame but av software runs with high privileges so it's gonna have serious consequences if it hits the fan. As it has.

[–] 0x0 15 points 1 day ago* (last edited 1 day ago) (2 children)

I'd wager most ransomware relies on old vulnerabilities. Yes, keep your software updated but you don't need the latest and greatest delivered right to production without any kind of test first.

[–] 0x0 6 points 1 day ago (1 children)

Bitching about reddit on lemmy, are we?

[–] 0x0 -1 points 1 day ago (2 children)

The Dune movie (split in two for profit as always) is an exception, but most of what Hollywood has been spewing out lately is utter crap. I'll wait for the Drinker's review.

[–] 0x0 18 points 1 day ago

I wonder if the latest embargo on Russian oil sales is in anyway connected?

Doubt it, but it's ironic that this happens shortly after Kaspersky gets banned.

 

At least a dozen organizations with domain names at domain registrar Squarespace saw their websites hijacked last week. Squarespace bought all assets of Google Domains a year ago, but many customers still haven’t set up their new accounts. Experts say malicious hackers learned they could commandeer any migrated Squarespace accounts that hadn’t yet been registered, merely by supplying an email address tied to an existing domain.

 

cross-posted from: https://programming.dev/post/16750896

The NSA has a video recording of a 1982 lecture by Adm. Grace Hopper titled “Future Possibilities: Data, Hardware, Software, and People.” The agency is (so far) refusing to release it.

Basically, the recording is in an obscure video format. People at the NSA can’t easily watch it, so they can’t redact it. So they won’t do anything.

 

The NSA has a video recording of a 1982 lecture by Adm. Grace Hopper titled “Future Possibilities: Data, Hardware, Software, and People.” The agency is (so far) refusing to release it.

Basically, the recording is in an obscure video format. People at the NSA can’t easily watch it, so they can’t redact it. So they won’t do anything.

 

Of course if Microsoft undermines standards' interoperability...

 

Regression in signal handler.

This vulnerability is exploitable remotely on glibc-based Linux systems, where syslog() itself calls async-signal-unsafe functions (for example, malloc() and free()): an unauthenticated remote code execution as root, because it affects sshd's privileged code, which is not sandboxed and runs with full privileges.

 

Ooooh... car BSOD vibes...

 

Another great Fortnine video just came out, this time about Honda.

Didn't quite explore the supply shortage impact on JIT as seen during the pandemic, though.

-15
submitted 4 weeks ago by 0x0 to c/security
 

If it ain't 'murican we ban 'em!

Guess all foreign cars should be next, what with all the telemetry and all...

view more: next ›