HackerTrans
TopNewTrendsCommentsPastAskShowJobs

ideksec

no profile record

Submissions

[untitled]

3 points·by ideksec·w zeszłym roku·0 comments

UNC5537 Targets Snowflake Customer Instances for Data Theft

cloud.google.com
4 points·by ideksec·2 lata temu·0 comments

Hardest Geezer: British man Russ Cook completes run across Africa

bbc.co.uk
2 points·by ideksec·2 lata temu·0 comments

Hackers threaten to publish cache of NHS data

bbc.co.uk
1 points·by ideksec·2 lata temu·0 comments

Confluence Status Page

confluence.status.atlassian.com
1 points·by ideksec·2 lata temu·0 comments

Whoop is adding a ChatGPT-powered ‘coach’

theverge.com
1 points·by ideksec·3 lata temu·0 comments

The Terrifying Rise of Debanking

spiked-online.com
4 points·by ideksec·3 lata temu·2 comments

Ripple notches win in SEC case over XRP cryptocurrency

reuters.com
154 points·by ideksec·3 lata temu·88 comments

Secureworks to lay off 9% of workforce

sec.gov
2 points·by ideksec·3 lata temu·0 comments

ProxyNotShell– the story of the claimed zero days in Microsoft Exchange

doublepulsar.com
2 points·by ideksec·4 lata temu·0 comments

[untitled]

1 points·by ideksec·4 lata temu·0 comments

A Boss Ordered All Workers Back to the Office a Year Ago. He Has No Regrets

wsj.com
3 points·by ideksec·4 lata temu·3 comments

The pandemic is no longer an excuse for poor customer service

instituteofcustomerservice.com
1 points·by ideksec·4 lata temu·0 comments

iPhone autocorrect driving you crazy lately? You're not alone

smh.com.au
2 points·by ideksec·4 lata temu·2 comments

Woman caught virus twice within record 20 days

bbc.co.uk
2 points·by ideksec·4 lata temu·0 comments

[untitled]

1 points·by ideksec·4 lata temu·0 comments

Russia moves to declare Meta an 'extremist' organization

businessinsider.com
12 points·by ideksec·4 lata temu·0 comments

Google to Acquire Mandiant

mandiant.com
353 points·by ideksec·4 lata temu·113 comments

Namecheap is banning Russians, asks them to switch registrars

bleepingcomputer.com
6 points·by ideksec·4 lata temu·2 comments

comments

ideksec
·3 lata temu·discuss
This article makes so many unfounded assumptions in order to make a point.

> Presumably they are going to immediately make themselves admin, or wire all your bitcoin to their account.

Attackers running scams like a sophisticated BEC will lay dormant for long stretches of time to gather information before acting. Sure, they can export the emails and set up auto-forward rules to maintain visibility when the session expires, but they've now made a lot more noise to detect on. I've seen threat actors view mailboxes once a day for months before they launch this scam.

> Also, it would be better to protect against this by securing the logs or using hard drive encryption.

Of course it would, but often it's not. It's that simple. It's crazy to think the person responsible for writing a secure app is also the one making decisions on endpoint encryption.

> some applications are used strictly within an company from company devices

Some are, lots are not. This reads like someone who has worked in enterprise environments with well funded security teams, not a small business with one IT guy running the show.

> But even then, the attacker could install a browser extension that sends your credentials to them the next time you log in.

This contradicts the rest of the article. Why is a company securing logs, encrypting disks, locking down where users can access apps, but then allowing anyone to install browser extensions?

I agree that short sessions are not the quick fix that some devs make them out to be, but the author is ruling out a perfectly acceptable control based on an imaginary end user setup.
ideksec
·3 lata temu·discuss
Again, completely untrue. Automatic unfair dismissal does not have a minimum tenure to be applicable. Here [1] is a handy list of protections that do not require two years. You've also conveniently ignored all the other benefits in that list that are not available in the US.

You've already been corrected by someone else on the unemployment benefits so I'll not waste time repeating that.

The UK has a lot of problems, but downplaying workers rights in comparison to the states is a strange hill to die on.

1) https://www.tribunalclaim.com/unfair-dismissal/automatic-unf...
ideksec
·3 lata temu·discuss
Can you elaborate more on how the UK's workers rights are "literally worse than the US"? I would say things like statutory sick pay, mandatory holiday allowance, protection from unfair dismissal and the right to uninterrupted breaks are all pretty progressive compared to the States.
ideksec
·4 lata temu·discuss
Very much feels like we're watching history, just a matter of time it seems
ideksec
·4 lata temu·discuss
I see this very quickly made it's way to the front page, are the HN mods trying to tell us something? /s
ideksec
·4 lata temu·discuss
This article is from 2019, but it was my recent experiences with autocorrect which led me to finding this. My phone will occasionally have a few days of complete autocorrect meltdown (words completely out of context, random capitalisation, Spanish?) before normal service resumes.
ideksec
·4 lata temu·discuss
Anyone who has worked in the domain takedown space knowns namecheap are one of the worst, so I'm interested to see what (if any) effect this will have