How is it that this industry is so full of "the only thing that will stop a bad guy with AI is a good guy with AI" takes? Meanwhile, "advanced" persistent teens are running circles around modern enterprise security systems with ../ and command injection. Fuck. If it weren't for the physical systems that real people rely on to survive being connected to vulnerable networks, I would be so gone.
Conversation
Notices
-
Embed this notice
cR0w :cascadia: (cr0w@infosec.exchange)'s status on Wednesday, 08-Jan-2025 04:16:56 JST 
cR0w :cascadia:
-
Embed this notice
da_667 (da_667@infosec.exchange)'s status on Wednesday, 08-Jan-2025 04:16:56 JST 
da_667
@cR0w I've long since burned out. I do my job with care, but the fact that utter shit product makes it out of the gate is the product of a capitalist ouroboros of shit. It isn't that developers cut corners. Its that companies cut corners on their behalf because there are no consequences for it.
The fact that HNAP vulnerabilties exist across a spectrum of IoT devices spanning over a fucking decade, and the answer to old devices that have these vulnerabilities is "well, buy a new one that is still supported 🤷" is proof that we live in a hellscape propped up by corporate greed.
-
Embed this notice
All GNU social JP content and data are available under the