Friday, June 29, 2018

Digging yourself into a hole

from here

Not only was Mirai made to get a leg up in Minecraft, but then when things got too hot they gave away the source code for the botnet so that anyone could use it - making the problem that much worse.

The first rule of holes is: when you find yourself in one, stop digging.

The Dox Knight

found on Imgur

This seems poorly thought out. Not only could Superman retaliate with force, he could also retaliate with a counter doxxing, and he gets to write in a newspaper so a lot more people would be likely to see and believe it.

There's more to doxxing than just letting information out into the world.

Thursday, June 28, 2018

Can't even remember most of them

from here

Quick, how many vulnerability names can you rattle off in 60 seconds?

Use your head

found on The Humor Train

Maybe she should have put that in her shirt instead.

Wednesday, June 27, 2018

Low profile fail

from here (image source)

Seems pretty much like the opposite of discreet if you ask me.

How to make burglars NOPE right out of there

found on The Art Of Trolling

Plot twist: the burglar doesn't steal anything except the serial killer supplies you left on your coffee table. What do you do?

Tuesday, June 26, 2018

Plausible Deniability

from here

Imagine if the authorities wanted access to your data but couldn't get it because it was encrypted, and couldn't demand you decrypt it because it looked like you weren't the one who encrypted it. Even better if they try to send cryptocurrency to unlock the device and either you or the vendor simply pockets the money send with an unauthorized unlock attempt.

Use a passphrase but get your own

found on NIST

Well what do you know. Even NIST is doing security memes now.

Monday, June 25, 2018

RE just doesn't have the same ring to it

from here

Definitely a missed opportunity here, but maybe there's still time.

On the Darknet nobody knows you're a dog

found on Memedroid

I bet he guessed the pawsword on the first try. He's such a good dog.

Friday, June 22, 2018

How not to become the master of someone else' domain

from here (image source)

Obviously you shouldn't commit cybercrime, but even more than that, you really shouldn't do it in person.

There's more than one way to crack a password

found on Schlock Mercenary

The dialog at the very beginning is a little hard to follow, but otherwise this is an excellent illustration of what rubber-hose cryptanalysis means.

Go ahead and check out the Schlock Mercenary webcomic. It seems to have been going on for years and years.

Thursday, June 21, 2018

Encryption backdoors wouldn't be very bright

from here

Oh those poor FBI agents. What will they do if they can't break into everyone's cell phones?

Maybe exactly the same thing they did before everyone had cell phones?

How far do you have to go to unsubscribe?

found on Imgur

No matter where you go, the GDPR goblins will find you.

Wednesday, June 20, 2018

Alexa, would you please give us some privacy?

from here

Do we really want to stick these devices in hotel rooms after they were caught recording private conversations and sending them to random contacts?

If only online attribution were this easy

found on The Art of Trolling

If you could force suspects to cooperate with investigators, cybercrime and governmental cyber attacks would be a lot easier to deal with.

Tuesday, June 19, 2018

The 90's called and they want their phishing lure back

from here

I didn't know Rip Van Winkle was in the business of cybercrime, but apparently he woke up not too long ago.

When ennui attacks

found on LOL Super Fails

I imagine this must be the expression cybercriminals use when they don't get to use their bag of tricks.

Monday, June 18, 2018

You'd think one of the world's most powerful corporate surveillance platforms would be able to figure this out

from here

In theory they should also be able to tell if you hate your father. After all, the fact that they've performed psychological experiments to manipulate people's emotions means they must have some way of discerning what those emotions are.

However, the absence of a particular kind of connection should require a lot less analysis. It doesn't instill confidence in the efficacy of their ad targeting service if they can't even figure this much out.

Tactical Kitty

found on Memedroid

It is possible to weaponize cats, but this is not how you do it.

Friday, June 15, 2018

Almost as disappointing as the finger command

from here

What better way to celebrate 10 years of bad security jokes than with a bad security joke?

No Terrminators Allowed

found on Imgur

Thanks to Alex Girard for providing the most important CAPTCHA in the world. This is how we prevent judgement day and stop the robot uprising.

Thursday, June 14, 2018

I don't want a device that dies the same time as your company

from here

A company going bankrupt is a really stupid reason for a toaster or a light bulb to stop working. If people realized that the A in the CIA triad was so unreliable in IoT devices, the market would look a lot different.

If you wanna use my card you'll have to pay first

found on Meme XYZ

I suppose it could still be used as proof of age while maxed out, but that's no skin off my nose.

Wednesday, June 13, 2018

Gives new meaning to finding malware in the wild

from here (source article)

It's not like cyber criminals care who they harm. If there's money to be made by botting wildlife preserves, someone is going to do it.

Petty Pranks: How to annoy a phone scammer

Watch on YouTube

I wish I had the patience to do this sort of thing. Unfortunately I get mad too quickly and confront the scammers and that generally ends the call.

Tuesday, June 12, 2018

If the hackers don't get you the volatility will

from here

It kind of doesn't matter how safe you keep your coins. They could be in a hardware wallet, they could be in cold storage. They could be in a vault buried under ground. It doesn't matter because other people losing their money causes you to lose money too. Even if the number of coins you own doesn't change, their value still can and does when breaches happen. Your coins aren't safe until everyone's are safe - which will be never.

Reputations are hard to live down

found on Piximus

Windows Firewall might actually be perfectly fine nowadays, but nobody trusts it because it's Microsoft and Microsoft does not have a reputation for security

Monday, June 11, 2018

The name's Whiskers. Mister Whiskers

from here (image source)

Pets are remarkably good at catching us in compromising situations. Some of us will even let them come in the bathroom with us. It's a good thing no foreign powers have figured out how to exploit those talents (I think).

Be sure to use a different dog for each site

found on the PureVPN Blog

Good password hygiene is going to require a lot of dogs if that's how you manage your passwords.

Friday, June 8, 2018

And never touch anything

from here (image source)

Anyone who has access to you when you sleep can probably unlock your biometrically protected phone without you knowing about it.

Barriers: They're a good thing

found on Meme.XYZ

Just remember not to answer the door if it happens to ring the bell.

Thursday, June 7, 2018

Overdue process

from here

Has it not occurred to the authorities that they might have better luck with the phones if they used the fingers while they were still fresh? I suppose the family should be glad these cops didn't wait even longer.

British Privacy

found on Reddit

I guess they must have crisps in their computers too.

Wednesday, June 6, 2018

The Internet of Leaks

from here

There's a school of thought that it's not if you get breached but when. The logical conclusion to that line of reasoning is that everything gets breached if given enough time, and a breach of a DNA testing service/genealogy site is certainly not hurting that argument.

My uncle the scam artist

found on Imgur

I assume this uncle came from Nigeria or some place similar.

Tuesday, June 5, 2018

What we give up for convenience

from here

Just a shower thought. Yes, I have security-themed shower thoughts. No I will not admit to having a problem.

Keep your distance

found on Dump A Day

If I saw a squirrel trying to take a run at me after seeing that sign, I'd nope right out of there.

Monday, June 4, 2018

Maybe we should stop pissing it away

from here (image source)

Supposedly we value privacy, and yet we throw it away in favour of some of the most trivial things. Sometimes it's nothing more than a literal candy bar.

That would definitely stop me

found on Izismile

I have no idea if this is as effective as The Club at preventing car thefts, but I would definitely be deterred by it.

Friday, June 1, 2018

Redefining 'double-take'

from here (source article)

Can this be real? I wasn't expecting 51% attacks to be feasible, but apparently they are.

Her parents must have had a sense this would happen

found on Thug Lifer

What's really going to bake your brain is the question of whether she would have turned out that way if her parents had given her a different name.