I'm looking to borrow (it's $200 and I'm not buying it) a copy of an extremely niche book from a law school library for a week or so. It's called "Cybersecurity and the Courthouse: Safeguarding the Judicial Process".

It should be very useful for all of my recent #cybersecurity work in that area (see https://github.com/qwell/disclosures/).

If you, dear reader, have access to such things, I'd like to have a chat to see what we can figure out.

Boosts highly appreciated.

#infosec #law #library

@BeAware This tab is up all day every day, front and center. I may be a little ashamed to admit that. I read everything that hits the Home timeline, and on my other account, as much of the #fedifirehose as I can. It's a problem.

@BeAware I see everything. 😜

@BeAware Do other people not do that due diligence before boosting?

Do you create #fediverse platforms?

Do you have any interest in testing your #IDN (Internationalized Domain Name) support?

If so, hit me up, I've got some really evil ones I can create subdomains on.

@icedquinn The reason for filing something with the SEC is because of potential impact to shareholders.

I have a few #infosec questions...

1) Under what circumstances are SEC filings required when a company is notified of a vulnerability?

2) What are the consequences of lying about the severity in such a report?

Asking for a friend. Who is me. In Minecraft.

Yuzu shuts down amid Nintendo lawsuit.

@icedquinn 🤷

I'm pretty torn on it, ethically, because of the stuff that can be obtained. Ultimately though, I think it would be better to publish one, since it should force them to actually fix it. I'm clearing it with some people first, but I'm thinking I'm going to do that later today or tomorrow.

It's now been one week and one of the court platforms in my recent disclosure[1] is still vulnerable to the issue that was reported to them by multiple state agencies over two months ago. They have not responded to my emails.

At what point does it become appropriate to publish a PoC? There's some Really Bad Shit™️ that can be obtained, so it's a tough position to be in.

[1] https://github.com/qwell/disorder-in-the-court

I, a high school dropout, am doing a Q&A at Stanford tomorrow. That's still blowing my mind a bit.

Hi Fediverse!

I'm just testing a punycode domain instance. You may safely ignore this message (I would be interested in seeing a screenshot of what this message looks like on the feed though, if some kind soul felt so obliged).

Link 1: https://ꩰ.com
Link 2: https://ꩰ.com/@north
Link 3: https://xn--8r9a.com
Link 4: https://xn--8r9a.com/@north

User 1: @north
User 2: @north@ꩰ.com
User 3: @north
User 4: @north@fosstodon.org