Tuesday, September 18, 2018

Royal Bank of Scamland

from here

 If nobody has ever told you this before - don't click in links in emails purporting to be from your bank, Paypal, or really anything where you have an account. Chances are it's a scheme to break into that account.

All those moments will be lost in time, like tears in the rain

found on Imgur

Monday, September 17, 2018

People who work in glass offices shouldn't throw stones

from here

Leave it to a company whose business model revolves around making bets to tempt fate and lose.

That's one way to make a breach worthless

tweeted by jonny sun

In information security you may hear the term data minimization. It's a principle that says the less data you collect, the less value you pose to an attacker. For example, if a database doesn't have credit card numbers in it then it won't be very useful to carders.

If you can't add any data to an account (perhaps because you can't log in in the first place) then that seems like the principle of data minimization has been followed (even if that wasn't the intent).

Friday, September 14, 2018

When your OpSec is more like OoopsSec

from here

This story about a woman allegedly murdering her husband after publishing an essay about how to murder your husband has left me wondering "What was she thinking?" An essay like that was certainly going to make the authorities extra suspicious of her when her husband was shot dead.

You know they're well protected because it says security right on the box

found on Imgur

I'm not really sure what a security tampon is and at this point I'm afraid to ask.

Thursday, September 13, 2018

Gentle Reminder: Don't be evil

from here

Do you think the folks at Google are at all unaware that in order to be competitive as an advertising company they've actually become a corporate surveillance company? Of course not. They knew exactly what they were doing when they bought credit transaction records from Mastercard.