HackerTrans
トップ新着トレンドコメント過去質問紹介求人

_tk_

3,693 カルマ登録 7 年前
Information Security Officer at Fortune 500 global corporation.

投稿

Filipino virtual assistants behind LinkedIn's "thought leadership" content mill

restofworld.org
29 ポイント·投稿者 _tk_·15 時間前·4 コメント

Daily Berlin Subway Puzzle

umsteigen.app
2 ポイント·投稿者 _tk_·4 日前·0 コメント

OpenAI's apparent failure to visit key site raises questions over UK investment

theguardian.com
6 ポイント·投稿者 _tk_·5 日前·0 コメント

The biggest iceberg has melted away, aged 40 or so

economist.com
3 ポイント·投稿者 _tk_·6 日前·0 コメント

Nearly a Million Investors Lost a Total of $3.8B on Trump Crypto Coin

nytimes.com
9 ポイント·投稿者 _tk_·7 日前·2 コメント

Companies Are Throttling Employees' AI Use Because It's Too Expensive

404media.co
13 ポイント·投稿者 _tk_·9 日前·4 コメント

Claude Helped a Hacker Find a Way to Issue Tickets to US Music Festivals

wired.com
5 ポイント·投稿者 _tk_·10 日前·0 コメント

Nintendo has raised its employees base salary by 10%

mynintendonews.com
561 ポイント·投稿者 _tk_·10 日前·352 コメント

Vietnamese US deportee returns home after a year in South Sudan

eyeradio.org
3 ポイント·投稿者 _tk_·18 日前·0 コメント

A Visit to id Software (November 1993)

youtube.com
3 ポイント·投稿者 _tk_·22 日前·2 コメント

Feds freaked over Fable 5 after 'fix this code', not jailbreak, say researchers

theregister.com
613 ポイント·投稿者 _tk_·25 日前·361 コメント

Bitlocker Bypass by Nightmare Eclipse

git.churchofmalware.org
2 ポイント·投稿者 _tk_·26 日前·0 コメント

Four by Three

hankgreen.com
2 ポイント·投稿者 _tk_·27 日前·0 コメント

They Tried to Catch a Predator. They Trapped Themselves Instead

nytimes.com
8 ポイント·投稿者 _tk_·先月·1 コメント

Charlie Bites, Badgers Dance and a Lettuce Endures in This Archive of Web Memes

nytimes.com
2 ポイント·投稿者 _tk_·先月·0 コメント

The Florida woman catfishing America's political class

politico.com
14 ポイント·投稿者 _tk_·先月·0 コメント

The SpaceX IPO is great for Elon Musk and terrible for you

theverge.com
10 ポイント·投稿者 _tk_·先月·1 コメント

Europe versus America: A Response to the Critics

paulkrugman.substack.com
6 ポイント·投稿者 _tk_·先月·0 コメント

[untitled]

1 ポイント·投稿者 _tk_·先月·0 コメント

Microsoft's stance on zero day exploits is a dumpster fire of their own making

doublepulsar.com
77 ポイント·投稿者 _tk_·先月·32 コメント

コメント

_tk_
·22 日前·議論
Alternative title:

Person who wants to get noticed indeed gets noticed
_tk_
·先月·議論
Dated August 2025
_tk_
·先月·議論
You mean APTs that are not state sponsored…? Oh.
_tk_
·先月·議論
Same goes for lockdown mode on iOS.
_tk_
·2 か月前·議論
I was part of several third party risk management audits from a corporate perspective.

We regularly audited and questioned SMBs (and big corps) with regards to their security posture. We knew that small shops wouldn’t be able to be fully compliant to SOC2 Type 2 or have an ISO27001 certified environment. If it was clear that our business wanted the product, we either tried to help the company with the questionnaire or created a risk report that was then signed by the business. In other words: even if your customer asks you to be compliant, you don’t have to be if they care enough about your product.

If you seem intent on getting things right, that’s a big plus. Most of your competitors don’t even know what SOC 2 is.
_tk_
·2 か月前·議論
https://bsky.app/profile/pengzell.bsky.social/post/3mldozsh4...
_tk_
·3 か月前·議論
I think this article mostly shows that publicly announcing a successful ransoming of a company is now more popular than a couple years back.
_tk_
·4 か月前·議論
Part 1 here:

https://blog.cr.yp.to/20251005-modpod.html
_tk_
·5 か月前·議論
Full headline:

The U.S. spent $30 billion to ditch textbooks for laptops and tablets: The result is the first generation less cognitively capable than their parents
_tk_
·5 か月前·議論
The system card unfortunately only refers to this [0] blog post and doesn't go into any more detail. In the blog post Anthropic researchers claim: "So far, we've found and validated more than 500 high-severity vulnerabilities".

The three examples given include two Buffer Overflows which could very well be cherrypicked. It's hard to evaluate if these vulns are actually "hard to find". I'd be interested to see the full list of CVEs and CVSS ratings to actually get an idea how good these findings are.

Given the bogus claims [1] around GenAI and security, we should be very skeptical around these news.

[0] https://red.anthropic.com/2026/zero-days/

[1] https://doublepulsar.com/cyberslop-meet-the-new-threat-actor...
_tk_
·5 か月前·議論
Agree with the sentiment that the numbers for Germany - and I would say Switzerland as well - are not on the level.
_tk_
·5 か月前·議論
https://archive.ph/FftH3
_tk_
·5 か月前·議論
Take a look here: https://wero-wallet.eu/
_tk_
·5 か月前·議論
Yes.
_tk_
·5 か月前·議論
I’m a little surprised by the takes in the comments. Obviously, heads of departments or agencies, CEOs, or similar personnel are generally not in the same league as normal employees when it comes to compliance.

Productivity and efficiency are key for their work. I am sure there are lots of Sysadmins here, that had to disable security controls for a manager or had to configure something in a way to circumvent security controls from actually working. I have been in many situations where I have been asked by IT colleagues if doing something like that was fine, because an executive had to read a PowerPoint file NOW.
_tk_
·5 か月前·議論
People just don’t talk about Blowfish.
_tk_
·5 か月前·議論
Not to be rude, but it seems to me that you are engaging in some hairsplitting. In general, security people do not recommend to use 3DES or RC4 - even if RC4 is broken in other ways than 3DES.
_tk_
·5 か月前·議論
Big LinkedIn post on a concept with little proof.
_tk_
·7 か月前·議論
That’s exactly what would happen in a simulation.
_tk_
·8 か月前·議論
https://archive.ph/IYD3U