Public
- Public
- Network
- Groups
- Featured
- Popular
- People

Notices by Royce Williams (tychotithonus@infosec.exchange), page 6

Embed this notice
Royce Williams (tychotithonus@infosec.exchange)'s status on Friday, 01-Sep-2023 22:51:11 JST Royce Williams
in reply to
- Patrick C Miller :donor:
@patrickcmiller
Quoting the upstream source:
https://www.websiteplanet.com/news/cigna-breach-report/
Cigna Security’s response: “Thank You for your email to our responsible disclosure site. In review of the issue, the data is intended to be public as part of our Transparency in Coverage program and as per Federal regulations which began in 2022”.
[end quote]
Though I can't imagine it was left exposed this way on purpose.

In conversation Friday, 01-Sep-2023 22:51:11 JST from infosec.exchange permalink
Embed this notice
Royce Williams (tychotithonus@infosec.exchange)'s status on Thursday, 20-Jul-2023 09:54:27 JST Royce Williams
in reply to
- Patrick C Miller :donor:
@patrickcmiller Direct link to the report (PDF):
https://www.forescout.com/resources/the-riskiest-connected-devices-in-2023/

In conversation Thursday, 20-Jul-2023 09:54:27 JST from infosec.exchange permalink
Embed this notice
Royce Williams (tychotithonus@infosec.exchange)'s status on Monday, 13-Mar-2023 01:30:29 JST Royce Williams
in reply to
- Jake Hildreth (acorn) :blacker_heart_outline:
@horse Given how many people I follow, quite a bit! I also pretty regularly tap to reveal (when I have time to do so) - in fact, my filters are there to make sure I don't miss things (and I have a naming convention to make them stand out)

In conversation Monday, 13-Mar-2023 01:30:29 JST from infosec.exchange permalink
Embed this notice
Royce Williams (tychotithonus@infosec.exchange)'s status on Sunday, 12-Mar-2023 20:34:42 JST Royce Williams

The filters are really doing yeoman's work today.
In conversation Sunday, 12-Mar-2023 20:34:42 JST from infosec.exchange permalink
Attachments
1. An entire mobile screen full of Mastodon filtered posts, with topics including SVB, Elon, and trolling
  https://media.infosec.exchange/infosecmedia/media_attachments/files/110/008/885/271/650/804/original/c7b11aca336c80bf.png
Embed this notice
Royce Williams (tychotithonus@infosec.exchange)'s status on Monday, 30-Jan-2023 01:23:28 JST Royce Williams
in reply to
- Jake Hildreth (acorn) :blacker_heart_outline:
@horse Yeah, initial asking for email and routing accordingly would be solid. Though I wonder how many vets have no email address at all.

In conversation Monday, 30-Jan-2023 01:23:28 JST from infosec.exchange permalink
Embed this notice
Royce Williams (tychotithonus@infosec.exchange)'s status on Monday, 30-Jan-2023 00:53:29 JST Royce Williams

The first step of the VA authentication flow is just ... wow
In conversation Monday, 30-Jan-2023 00:53:29 JST from infosec.exchange permalink
Attachments
1. The initial VA login page, which presents three options: a "new VA sign in (recommended)" option , a "continue to my HealtheVet only" option, and a "choose a secure sign-in partner" option. When this last option is expanded, there are four additional options: DS, id.me, login.gov, and My hHealthevet.
  https://media.infosec.exchange/infosecmedia/media_attachments/files/109/773/260/207/070/740/original/cb20fbff8bb6375a.png

After

User actions

Just doing my undue diligence.ISP vet, password cracker (Team Hashcat), security demi-boffin, YubiKey stan, public-interest technologist, AK license plate geek. Husband to a philosopher, father to a llama fanatic. Views his.Day job: Enterprise Security Architect for an Alaskan ISP.Obsessed with security keys:techsolvency.com/mfa/security-keysMy 2017 #BSidesLV talk "Password Cracking 201: Beyond the Basics":youtube.com/watch?v=-uiMQGICeQY&t=20260sFollowed you out of the blue = probably stole you from follows of someone I respect.Blocked inadvertently? Ask!Am I following a dirtbag? Tell me!Photo: White 50-ish man w/big forehead, short beard, & glasses, grinning in front of a display of Alaskan license plates.Boosts not about security ... usually are.Banner: 5 rows of security keys in a wall case.#NonAIContent#hashcat #Alaska #YubiKeys #LicensePlatesP.S. I hate advance-fee scammers with the heat of 400B suns❤️:⚛👨👩👧🛡🙊🌻🗽💻✏🎥🍦🌶?

Tags