Wednesday, July 17, 2019

Not so secret hiding place

from here (source article)

You're going to have to try harder than that to pull one over on the authorities. They may not be geniuses, but anyone with the gift of sight can see the problem here.

Privacy for pups

Watch on YouTube

Clearly humans aren't the only members of the animal kingdom that value privacy. Why else would this dog stop playing as soon as they discovered people were watching? Some things we're just more comfortable doing in private, without having to worry about the judgmental gaze of others.

Tuesday, July 16, 2019

This may be harmful. Are you sure?

from here

You don't have to click Yes (or OK) on all the prompts. Consider trying the other buttons from time to time. Read and think about the dialog boxes to figure out the best thing to click.

Is your WiFi this secure?

found on Reddit

I'm sure you could find an answer to this online, but if you could get online why would you need the answer to this?

Monday, July 15, 2019

How not to implement the "Forgot Password" feature

from here

This Japanese 7-Eleven security incident is a great example of why idiot-proof systems aren't good enough anymore. You need to make them asshole-proof too.

What not to take to the airport

found on Izismile

This woman is going to get secondary screening, tertiary screening, and then whatever screening comes after that. That bag seems tailor made for causing problems at airports.

Friday, July 12, 2019

ZIP files and BAT files and DLLs - Oh my!

from here

I understand that technical jargon can be tough sometimes because it doesn't mean anything unless you're steeped in the technical minutia of the field in question - but fileless malware is just bad jargon.

A layperson looks at the word and then looks at what the word is being used to describe, and you know what they'll think? They'll think "No. This can't be the right word. There must be some mistake. That's not what this word means." This isn't a problem of the word being abstract, it's a problem of the word being too basic and too well defined outside of the field, and that definition contradicting how it's used inside the field.

Somebody came up with this term (turd), and they did a bad job. I understand that there may be a need for a word to encode the concept, but this is not that word, you need to go back to the drawing board.

Eureka! We've solved the problem!

originally tweeted by Joe Schmoe

Thanks to Joe Schmoe for this meme showing how antivirus vendors can really get that much sought-after property of having no false positives.

Thursday, July 11, 2019

Hang in there, $10s and $20s

from here

Using an hydraulic spreader to open ATMs is a pretty clever trick. Buying the thing on eBay is even better. Who needs shady dark web marketplaces when you've got eBay?

Robo Botnet T-Shirt

Product Page

This is rather nice design depicting sick laptops under the marionette-like control of an evil figure. Not a bad characterization of a botnet, all things considered, and it's not just on shirts, but also mugs, hats, ties, etc.

The designer also has some good designs for other security concepts too. Definitely check out their work.

Wednesday, July 10, 2019

It's not a bug, it's a feature

from here

Apparently if enough people complain, that feature turns back into a bug.

Airport Security Personnel - Not even dogs have faith in them

found on I Can Has Cheezburger Animals

You'd think that the airport, of all places, would be once place where that poor dog could let it's guard down. The dog knows better, though, and now at least that soldier can honestly say his luggage was never left unattended.

Tuesday, July 9, 2019

How not to be prepared for cyber-criminals

from here

I mean, as time goes on, the inmates are increasingly going to come in already knowing this stuff, so banning books is not a long term solution.

I see locks in Houdini's future

Watch on YouTube

Houdini is a cute dog, but if he's going to live up to his name he's going to have to keep escaping even when locks are used.

And if Houdini's owners want that enclosure to actually be useful for something, they're going to have to start using locks.

Monday, July 8, 2019

What's the worst thing they could change the license plate to?

from here

It's one thing to stick a computer into an appliance (maybe the computer can make the appliance function better?), but sticking a computer into something that used to just be a hunk of metal with a code painted on it? Digital license plates feel like the Internet of Things (which is already questionable as it is) jumping the shark.

Look who's attacking now

found on Memedroid

From time to time, collective effort can in fact turn the tables on an aggressor.

Friday, July 5, 2019

So that's how much they trust it

from here

This Faraday cage for your key fob is one of the worst indictments of keyless entry I've seen. Sure it makes things more convenient for you. It makes things more convenient for thieves too.

The real FBI will log you without telling you

found on Memebase

The party on top is probably not the FBI, but you never know when the FBI is really logging you so it's probably good to get that warning from time to time as a reminder.

Thursday, July 4, 2019

You've just been Alexized

from here and here

Do you understand the (lack of) privacy rights as I have read them to you?

Alexa is always listening and Amazon keeps the recordings forever. How free do you feel now?

I figure if pervasive surveillance is like imprisonment then there should be an analog to the Miranda rights that get read to who are arrested and about to be imprisoned.

Telepresent pen-testing

Watch on YouTube

Leave a demo telepresence robot open to the Internet and you should expect some random person to find a vulnerability in the physical security of the demo space and penetrate the office's security from the inside out.

Clearly, even though the robot has no hands, the door should have been locked.

Wednesday, July 3, 2019

No security alerts for you

from here

A/V (audio visual) is certainly not the same as AV (antivirus), but I suppose disabling either one will stop the user from seeing those pesky warnings.

They have no idea who they're dealing with

found on Memedroid

These days people equate being anonymous with hacking (in part because of the group named anonymous) but if all it takes to make you think someone is a hacker is wearing a funny mask or changing accounts then the bar is set incredibly low.

Tuesday, July 2, 2019

'Unhackable' computer is patently absurd

from here

It's amazing to me that the patent office granted this guy a patent for an unhackable computer. It's clearly snake-oil. Claiming something is unhackable has never worked out in the past. Ever.

Run VPN T-Shirt ('cuz it's tricky)

Product Page

It took a moment for this Run VPN design to click. It's been a long time since I've heard any Run DMC. I wonder if the designer considered the "It's Tricky" angle when they were making this design extolling the importance of running a VPN.

Monday, July 1, 2019

Hopefully the crooks get their just desserts

from here

Thanks to Zach Whittaker for raising awareness about the incident, though it took me a bit to find anything else about it online.

They'll sniff out the contraband

found on I Can Has Cheezburger

Remember to show them plenty of respect and don't act aggressively.