HackerTrans
TopNewTrendsCommentsPastAskShowJobs

longcat

no profile record

Submissions

Malicious versions of Nx and some supporting plugins were published

github.com
443 points·by longcat·11 bulan yang lalu·433 comments

comments

longcat
·11 bulan yang lalu·discuss
[dead]
longcat
·2 tahun yang lalu·discuss
Same for the sysadmins/scripts that create C:\Temp on Windows, there is nothing temporary about that directory.
longcat
·2 tahun yang lalu·discuss
In both situations Okta and Cloudflare a generic or system account has been compromised. CloudFlare would have had to upload or provide a session tokens or secret to Okta's support system.
longcat
·3 tahun yang lalu·discuss
great taste in music @hatf0
longcat
·3 tahun yang lalu·discuss
Plus a lot of vulnerabilities in Windows 10 or 11 also exist in Windows XP but they're no longer mentioned.
longcat
·3 tahun yang lalu·discuss
Windows XP on it's own, behind Windows Firewall and a router firewall not doing anything too controversial may be fine. Where the risks become higher is when you have many machines across the network. That one host would lower the overall security of everything else around limiting the ability to disable weak protocols.

Backwards compatibility with Windows/AD has always caused issues with Active Directory becoming such a juicy target in the way system-to-systems interacted.
longcat
·3 tahun yang lalu·discuss
What makes today's English so great is what has been borrowed and adapted from foreign languages. Everything adapts and grows with the cultures around them.
longcat
·4 tahun yang lalu·discuss
PassKey is great but also may cause vendor lock-in looking at Google and Apple in particular.

Does anyone have any insights to how enterprises will be managing passkeys for corporate accounts with the potential of creds being leaked to potential compromised devices.