Notices by Brian Anderson (He/Him) (btanderson@infosec.exchange)

Just got a cold call email advertising training in “ChatGPT for Accountants”.

Folks, I just want to remind you all that “vibe accounting” is better known as “fraud” or “embezzlement”. Please plan accordingly.

#InfoSec
#InformationSecurity

@paninid @Lana @hobs

“We trust them not to kill us with their cars as we ride bicylces beside them on the road. “

NO WE ABSOLUTELY THE FUCK DO NOT TRUST THEM NOT TO KILL US

THEY HAVE KILLED US AND WILL DO SO AGAIN THE FUCK IS WRONG WITH YALL

@jessicalwarelab @ZekuZelalem @black_intellect @professor444 @muiren @Wolven @BsCreativeLife @mekkaokereke @timnitGebru @blogdiva @calimari @drcaberry @Jorvon_Moss @Jaden3 @AngryBlackLady @maxpearl @blackjoy @clayrivers @futurebird @ArtistX

Wow, THANKS!

Dear Well-Known Reputable Bank,
You have more money than God. You insist that we, as a business, comply with every possible measure of security and transparency when it comes to our clients, and make us pay heavily when we don’t.

The LEAST you can do is own up when we report that the fraudulent email we received came from your servers. We can read a goddamned email header.

Yours truly,
All the Damn InfoSec People Everywhere

#InformationSecurity
#InfoSec

@futurebird recent claims by certain platforms that they actually own the user accounts associated with a certain bankrupt slanderer certainly feel feudalistic in nature…

Kids, theft is wrong. Two wrongs don’t make a right. Everyone is entitled to privacy…

…

BUT

OH PRETTY PLEASE let this theft send that Motherfucker further down the path to hell.

We need a win. Or at least a laugh.

https://abc7.com/post/hacker-stole-documents-file-server-used-civil-case-connected-gaetz-sources/15560081/

I’ve come to understand that there’s a dynamic to this issue. I, a black person, interact with dozens of white men and women per day, professionally and socially. But for those same white people, I am literally the only black person *they* interact with. Their social and professional circles insulate them from the kinds of situations that expose racism (institutional and otherwise), rendering conversations about race an abstract thing. They can’t have a conversation about *why* I’m the only black person they interact with, or *why* there’s only 1 black kid in their kids’ AP classes, or on that school sports team. Who are they going to have that conversation with?

“I see dead people…
…They don’t know they’re dead”

I miss Chicago.

@accidentalciso what else is there to do in infosec?

Hey y’all,
@jerry is doing a killer job maintaining infosec.exchange. Just thought you needed a reminder.

Hi my name is Brian.

I’m an infosec professional and I’ve used and re-used weak passwords.

@SwiftOnSecurity SSO is one of those terms where the someone said “easier for users” but the business heard “easy to implement” and therefore dispensed with architecture and planning. It then follows that it gets deployed unevenly, incompletely,with wildly different user experiences across heterogenous, hybrid and legacy apps and auth proxies until IT just throws their hands up. It takes a lot of planning and communication to make SSO work well past a few apps.

@seldo what I don’t understand is the GOP holdouts’ endgame—they’ve already squeezed blood out of the stone, gotten ridiculous concessions and guaranteed no reasonable legislation will leave house committees. At this point, they’re making it impossible to put forward their own cockamamie oxygen deprived proposals, which is just fine for all of us…

@alyssam_infosec stop it. You KNOW Jesus was born on January 0, 1900, as confirmed by Microsoftus Excellus in The Book of Spreadsheets (Chapter 1, Verse 1).

@paco thanks for the write up! Question: what is the process to become a moderator, and what kind of reporting on moderation are available?