Friday, July 3, 2015

Keep Calm And Make Backups

from here

I thought I was being clever until I saw the URL for this when it was generated. Then I realized I was the 11th person to make a keep calm poster about making backups. On the plus side, 10 other people thought this was a good idea to share around.

Sandwich Thief OpSec Fail

found on the meta picture

Let this be a lesson to all you office space anarchists - you need to do a better job of covering your tracks.

Thursday, July 2, 2015

Encryption: I Don't Think It Means What You Think It Means

from here

Inspired by a tweet from Martijn Grooten.

If Only I Had Some Way To Protect My Eyes From The Sun

found on the art of trolling

I guess this is what happens when fashion is more important than function. Either that or he doesn't understand the tools at his disposal.

Wednesday, July 1, 2015

"These Fat Stacks Of Cash Could Hurt Someone"

from here (original tweet)

As has rightly been asked by multiple other people, what other perfectly legal personal (possibly embarrassing) items does the TSA take pictures of and share on social media when they're rifling through your belongings? And this is just the things they're willing to show the public - what kind of pictures are they sharing amongst themselves? I'm pretty sure you can't bring down a plane with dollar bills, so the TSA's interest in this is disturbing.

It's A Trap!

found on the meta picture

Cat owners know this is a true equivalence.

Tuesday, June 30, 2015

Lazy Security Vendors Make Life More Complicated

from here

Inspired by the trials and tribulations Didier Stevens has to go through to make a tool capable of introducing the EICAR Standard Antivirus Test File onto systems for testing without getting blocked by security products elsewhere (like at the gateway or the IT admin's own desktop).

This shouldn't be difficult. It shouldn't require a special program at all, never mind rewriting the program to stay ahead of security tools, because the original specification stated that a file had to start with those special 68 bytes in order to be considered the test file. Anything else, including the EICAR web page I linked to, should be able to pass through security products unhindered precisely so that the test file can be easily transported to the systems that need testing. I mean, it was even designed so that you could fax it or read it out over the phone, for crying out loud.

I can only imagine how Padgett Peterson must feel at seeing his efforts to make the test file easy to use wasted by lazy security vendors. Thanks to Didier for the effort in trying to reclaim some of that ease of use.