Sergey Shkundaleu @archit3ct@social.ssbx.dev

If anyone still had an illusion that social media platforms are about purpose, social good, here is article for you. They only care about ways to exploit networking effect for as long as it increases their bottom line, thus people with large audience, politicians and etc are exempts from rules defined by platforms. Rules are for regular people and people are just a product being packaged and sold to advertisers. Ethiork helps you break free of those giants. https://www.wsj.com/articles/facebook-files-xcheck-zuckerberg-elite-rules-11631541353?st=g3pys94rcdk8h9r&reflink=share_mobilewebshare

#privacy

Microsoft disclosed Zero-Day vulnerability 2 days ago about remote code execution that is exploited through specially crafted MS Office documents. Please be careful and better refrain from opening any docs from untrusted sources. It sounds like actively exploited targeted attack. https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-40444

Finally got around reducing resolution of the images on my blog and submitting it to https://512kb.club/ doing my part in reducing digital waste on the Internet. Check it out here https://sergeysh.com/

@kev Looks awesome, I would have done networking closet first :D

Security poverty line. Many organizations fell behind it with more sophisticated threat actors out there. However organizations can buy their way out of it with more investments. What about individual consumers? Are the products that suitable for consumers? Are they stuck with big tech companies and their "free" products. That's why we started Ethiork project, to give individuals a hand to raise above security poverty line. https://www.ethiork.com/

Holidays are usually sweet spot for threat actors, because it's easy to go undetected over extended holidays. There is no sleep people involved in cybersecurity :( here is advisory from CISA and FBI https://us-cert.cisa.gov/ncas/alerts/aa21-243a

Product leaders today often met with a dilemma: what are those values you will never compromise on, even if that would cost you a job. I would say ethics should be one of those values, without ethics you but going to be able to build fruitful product or company.

... accidental typo in nmap scan leads to scanning of majority of network infrastructure, which leads to finding some unexpected ports on several host, which leads to a witch hunt unleashing wide variety of tools on to those hosts ... just to confirm that everything runs as expected ... as a result all tools on offensive security box has gotten most recent updates and skills brushed off ...

Those who still live under impression that data anonymization which tech giants tooting while selling your data left and right works read this article: https://nypost.com/2021/07/25/reporting-that-outed-catholic-priest-reveals-data-is-not-private/
Just pay close attention to "how" they investigate rather than what is reported. There are also articles from NY Times
https://www.nytimes.com/2021/02/05/opinion/capitol-attack-cellphone-data.html
and
https://www.nytimes.com/interactive/2019/12/19/opinion/location-tracking-cell-phone.html
Your data is valuable, stop giving it away for free. #privacy

Doing what's right is always more expensive that just brushing symptoms on the surface.

@redeagle Yes that's exactly what I was talking about, standard is free, but often Adobe uses a lot of proprietary features, and their grip on business community forces businesses and governments to use those proprietary features, so which means any editor is not going to be that useful, since majority of interactions going to be on business related side.

@redeagle While I agree with sentiment, PDF is a different beast, since it's major line of business for Adobe, they won't let you get off the hook that easy.

@silverhax Happy birthday then, if that is for real.

Humanity as a whole is really good at finding solutions, but a terrible at root cause analysis, so we often would end-up remediating symptoms rather than solving problem. Private companies are quick to come up with new product and keep progress running at a stunning pace, but they can't solve the problems as their focus will be on symptoms that are on the surface, because those are visible to their shareholders, which put company and directors under high pressure.

@metalune@fosstodon.org as long as developers will do a good job, historically growth in hardware was driven by "laziness" of software development teams, or in reality by unwillingness of software companies to spend any time of development life cycle for performance optimization of their software.

At the beginning of the century we as a society accepted that internet is our future and now it has become irreplaceable. Today coffee makers, dishwashers and other devices from our home are connected to the Internet, so it's time for Zero Trust. Government already realized importance of this concept hard way, time to take embrace it on a personal level. https://info.summit7systems.com/blog/the-evolution-to-zero-trust #cybersecurity #zerotrust