fsebugoutzone.org:9999

       Post B0bpXfj4MhRay4UxNo by SwiftOnSecurity@infosec.exchange
 (DIR) More posts by SwiftOnSecurity@infosec.exchange
 (DIR) Post #B0bpXdJ7MDUrT0LCee by SwiftOnSecurity@infosec.exchange
       2025-11-25T15:56:15Z
       
       1 likes, 0 repeats
       
       You meet the users where they are to stop them doing the stupidest shit imaginable.You have literally no idea how much this paid off. The number of infected media players people downloaded in the age before Windows Media Player had more than three codecs is unimaginableWho knows if I saved the entire firm doing this
       
 (DIR) Post #B0bpXee4NnqncH9Rx2 by SwiftOnSecurity@infosec.exchange
       2025-11-25T16:00:32Z
       
       0 likes, 0 repeats
       
       Our much larger much more prestigious competitor got completely owned like three times the decade I worked there. Just destroyed.I have a real belief in doing the unorthodox.
       
 (DIR) Post #B0bpXfj4MhRay4UxNo by SwiftOnSecurity@infosec.exchange
       2025-11-25T16:02:56Z
       
       1 likes, 0 repeats
       
       An exposure analysis would say hey people having VLC is a source of vulnerability because the parsers are not exactly strong and easy to exploit.And I would come back and tell them people are literally directly installing malware on their computers. They download the EXE and they run it. Is that good enough for you?
       
 (DIR) Post #B0bq6zB62DWpQtRkTg by lanodan@queer.hacktivis.me
       2025-11-25T16:21:09.729813Z
       
       0 likes, 0 repeats
       
       @SwiftOnSecurity Reminds me of why I also end up having to tell people that no security has to meet usability, and can in fact enhance it (as it can increase things like reliability).While if you noticeably decrease usability via security, then users will likely go against your security in the worst ways possible.
       
 (DIR) Post #B0iTSUj8zdEcWTNXzU by viq@social.hackerspace.pl
       2025-11-28T21:01:00Z
       
       1 likes, 0 repeats
       
       @lanodanI have been in a couple of incident calls and further considerations, where after all the &quot;remove permissions; limit who can do what where; update procedures to make people check things more carefully&quot; I had to add &quot;uh, it wouldn&#39;t have happened if there was a convenient wrapper to do the standard thing easily&quot;. Not that I saw it get much traction...@SwiftOnSecurity