Notices by Fi 🏳️‍⚧️ (munin@infosec.exchange), page 2

:blobcatthinkingsmirk: Hey if you put a DEI policy in your open source projects, the feds can't use it now right?

There's a lot of shit you can control, even when the overall environment is threatening.

And doing something agentic - something that derives from your knowledge, skills, and practices, that comes from within rather than being a reaction to something outside - makes for a much more settled mindstate.

That's been one of the fun parts about this whole bullshit-

all my professional blue teaming skills?

Exact same thought processes, but setting "queer people" as the group to be defended, and it works out great.

Probably a pretty significant part of why I've not been panicking - this is just another defensive security situation; I know this, and I know that my skills work in these situations.

Remember, you're fighting someone who does not see you as being a real person.

Organize your risk assessment accordingly.

tho, for situational awareness, the fash have been known to put razorblades and other harmful objects behind their posters.

Please exercise caution and wear PPE if you engage in this activity.

Attackers have time and budgetary constraints too.

@foone

too gentle. clippy would be a wire mother, no?

Scams targeting consumers are legal now.

https://cyberplace.social/@GossiTheDog/113974644448981130

the godsdamned losers have dropped this attempt to harm us.

https://thehill.com/newsletters/health-care/5133846-trump-administration-drops-challenge-in-transgender-care-dispute/

Fucking -Snowden- did less damage.

Like, this is -literally worst case scenario espionage- here.

@Legit_Spaghetti

The problem is that the AI company now has an archive that can be used to infer the existence of many classified programs,

and there is no guarantee that data will not be copied into the possession of someone -competent-.

@drwho @da_667

I am absolutely livid beyond my ability to express it, and you full well fucking know my proficiency at expressing the inexpressable.

I will say this:

the Spanish Inquisition -wishes- it had the tech we have available now; with it, they could have extracted confessions of heresy from St. fucking Francis of Assisi.

So, this bullshit:

https://www.nytimes.com/2025/02/03/technology/musk-allies-ai-government.html

See, the thing is, if you have a collection of records that you can use to infer the existence of a classified program?

That collection of records is classified at the same level as the program.

So putting

the pentagon's contracts

through a fucking correlation engine

that is -intended- to infer links between shit

means that whatever fucking "ai" that utter douchenozzle crams the pentagon's budget through

is going to have all -kinds- of inferences to make about fucking classified programs

at a very fuckign secret level.

This is a foreign agent perpetrating espionage.

I think consent-gating ought to be more widely available generally. Allowing the audience for something to engage with it with deliberate intent creates a specific dynamic which people tend to perceive as being "meaningful"

I use a cw when I want to consent-gate the content.

This can be because it's an emotional or traumatic subject and I want to ensure you're looking at it deliberately and with intent.

This can be because I don't want to talk about it at a top level visibility for any number of reasons, usually around limiting the audience to those people who choose to engage with that topic.

Sometimes it's because I think it's funny to structure a joke in such a fashion.

In all cases, it's about my preference with how I want to structure my timeline.

Oh hey China's the major source of lithium for the US market, ain't they.

Anyway, you know, filing your taxes on paper takes way the fuck more resources to process than e-filing them.

@silverwizard

Yes, but that's not within the scope of your organization and is not your problem.

Treating it as a failure by management to manage their requirements appropriately puts the agency and responsibility on management for fixing the situation.

@silverwizard

If your management has failed to negotiate the terms of your insurance to adequately represent the realities of your organization,

that constitutes a failure on their part,

which is a failure of governance.