Notices by ❄️☃️Merry Jerry🎄🌲 (jerry@infosec.exchange)

I did not have "new surge of accounts on infosec.exchange due to X bungling their passkey migration" on my bingo card for today

I don't remember the last time I was at a security conference... I'm looking forward to BSides Atlanta on Saturday, where I'll apparently be making a guest appearance in a presentation about the Fediverse. Hopefully, I am not too embarrassing.

@GossiTheDog I’ve seen plenty of romance scam accounts trying to lure people to telegram or other DM, but I hadn’t seen this class of account doing that. I may just not be looking though.

@GossiTheDog there’s about 12,000 of those lately on mastodon.social. I can’t yet tell what the game is, but my best guess is account farming to build and the. sell high follower accounts, like happens on twitter, instagram, and so many others. Little do they know how few people are actually here.

There have been a deeply disappointing number of mastodon account takeovers in the past few weeks used to spam out malicious links in the guise of porn. I’m guessing most or all are abandon accounts, so the owner doesn’t even realize.

Please please please enable two factor authentication on your mastodon accounts regardless of which instance you are on or how sensitive or not you think the stuff you post is.

RE: https://infosec.exchange/@jerry/115407118712223410

The old saying comes to mind: “in theory, there is no difference between theory and practice. In practice, there is.”

@GossiTheDog all the people might be gone, but there would still be plenty of active accounts willing to argue about politics with you.

There’s been an oppressive amount of spam originating from what appears to be compromised mastodon accounts posting links that appear to be porn, but lead to various badness depending on the location, IP address, browser, and operating system of the visitor. Don’t click on tinyurl or other link shortened links promising to, er, satisfy your porn needs. And for the love of $deity, please enable 2fa authentication on your accounts AND stop using the same damn password everywhere. Thank you for your attention in this matter.

I took a trip out on the Sea Screamer yesterday and got some ok dolphin pics. The dolphins love to hop through the wake the boat creates.

Testing image uploads from vivaldi. Please ignore.

Looks like Tropical Storm Jerry is brewing off the coast of Africa 🎉🌀🎉

I just got an alert that Nvidia’s market cap crossed $4.5T. I know I am mixing elephants and telephone poles here, but it seems weird that the manufacturer of IT components has a market cap that is almost 15% of the GDP of the US for 2025 🤔

The reason for wanting to join infosec.exchange in a recent signup. Yes, it includes the placeholder for the person’s name, which I assume came from ChatGPT or one of the other amazing LLMs. 🚮

Hi, I’m [Your Name]. I have a strong interest in information security, privacy, and technology. I’d like to join infosec.exchange to stay updated, share knowledge to connect with the community

Why, oh why does SNMP need to be exposed to the Internet for everyone to hack?

Y’all - I just heard there’s going to be raptors tomorrow! 🦅 so excited!

@jernej__s @tchambers you can turn the beeps off in the settings at the top of the notifications timeline.

@jernej__s right - you should get a notification each time someone quotes you, so it’s the same sound/experience as when someone mentions you

I've enabled post quoting on infosec.exchange, infosec.space, and convo.casa. On the web interface, the boost icon will now bring up a small menu that will let you either boost or quote. You can only quote posts that the author has granted permission to, and since this is a new feature, there probably won't be too many.

Reminder that most other fedi-software allows quote posting without the mastodon-style consent, as does most mastodon mobile apps, so be aware of that.

Dateline 2039: society has collapsed months after the Y2K38 bug rendered Linux systems inoperable globally. Meanwhile, over on LinkedIn, business continues unabated as all non-AI members of the site had left over 15 years earlier. A new sentient-ish AI CEO recently signed up and posted a job opening for a product manager at their new paperclip factory.

The moon and my first attempts at taking some milk way shots from the beach over the Gulf of Mexico