IPsec with IKEv2 is the NCSC’s recommended alternative for secure remote access. This protocol encrypts and authenticates each packet of data, using keys that are refreshed periodically. Despite acknowledging that no protocol is entirely free of flaws, the NCSC believes that IPsec with IKEv2 significantly reduces the attack surface for secure remote access incidents, especially due to its reduced tolerance for configuration errors compared to SSLVPN.
Inspired by a post since deleted, I feel bad for probably coming off judgemental about the poster's taste in the movie that drove him to consider sailing....
Interesting problem here. So I self host jellyfin, happy to share my (owned) movies with my family. Well, my mother has asked me to digitize her collection too and have me host it. Originally, fine, you give your movies to me, I host them, same thing....
If Nintendo stays consistent, they went after Yuzu because they were accepting donations. They went after ROM sites that had advertising. They left everyone else alone if they aren't making money off their games. Right now Ryujinx has a Patreon page...
The Hero 10 is supposed to cost €400 (around $425/₹36,000), which will undercut the current cheapest foldable, the nubia Flip, by some margin (it made its debut at the MWC at $600).
So I joined a new gym last year and was pleasantly surprised. They gave me a smart card to get in and out, that's it, no app, no accounts, no nothing. Well, today I got to the gym and saw the announcement that they are phasing out the access with the smart card and starting to use, you guessed it, an app....
Looking online at similar situations people had their membership canceled by management. Other cases showed bring able to enter by a phone number, by their old tag, or ID verification. Looks like it happened for people whose app kept on crashing or a work phone that wouldn't allow installs.
Which gym would just keep charging you if you said you can't get in?
I'm not really sure what happens if Proton bans your account for any reason but Proton Pass does have offline access. I assume if you turn off internet access, you can still get all your passwords.
I don't have an account myself, and the photos and videos I'm trying to download en masse belong to a famous person's public account. Is there anything I can use to do it (as long as it's not creating an account lol), preferably proxied tools as apparently I get blocked while behind a VPN?...
It is creeping. If your neighbor goes outside in public and you stare at her from your window blinds, with the lights out just so you can see her ankles twice a day. Yes, she is in public and you are only looking, but the obsession is not normal behavior.
When Google said they were stopping 3rd party cookies, I thought it was just a simple security setting. The new system, Protected Audience, seems like 3rd party cookies without the whack-a-mole approach of listing every cookie advertisers can take, especially since there is nothing stopping data collectors from extracting data from it, like what Mozilla said in the article.
Hopefully there are fake data dumpers or cleaners for Protected Audience which would reduce the effectiveness of this system but looking how the Chrome team treats browser extensions, I doubt it.
The US’s latest attempt to chill speech online, KOSA-a bill to effectively force everyone to identify themselves to online platforms-is picking up steam and looking like it will pass the Senate.
I need to pirate this book thats over 1000 pages. I already have the pdf but I really want a physical copy and the book costs too much for me. Even if I have to buy a bunch of ink (the book has no pictures) and even if I wear out the printhead before the job is done, it's still going to be cheaper to do this. My printer has been...
If you have Adobe InDesign or QuarkXPress, they should have an option to print in this way. You can set signature sizes (or small booklet sections). You fold the signatures in half and stitch it together to create a book. It will layout everything for you but always do a print preview or print to pdf if you are a beginner.
For carrying the unauthorized number porting, Katz received $1,000 in Bitcoin per SIM swap (total of $5,000), plus an (unspecified) percentage of the profits earned from the illicit access to the victims' devices.
The amount he made is $5,000 minumum.
I think 1 year for every instance is fair. This could really ruin someone. At least stolen credit cards have protection. Stealing someone's crypto wallet could mean that money is gone for good.
WHEN PEOPLE ask Michael Moritz, a former journalist and prominent tech investor, what book they should read to understand Silicon Valley, he always recommends two. “They are not about Silicon Valley, but they have everything to do with Silicon Valley,” he says....
To OP, I really appreciate you posting the entire article. Really interesting read.
As for the subject, the difference between Wall Street and Silicone Valley is Wall Street accepts that they have illegal activities, immoral choices, assholes, drugs, and greed. Silicone Valley rejects those things exists in their world and tries to have show that innovation is the most important goal. They are lying.
Kenn Dahl says he has always been a careful driver. The owner of a software company near Seattle, he drives a leased Chevrolet Bolt. He’s never been responsible for an accident....
I feel like with the rise of AI something that anonymizes writing styles should exist. For example it could look for differences in American versus British spelling like color versus colour or contextual things like soccer versus football and make edits accordingly. ChatGPT could be fed a prompt that says "Rewrite the following...
One of the vulnerabilities (identified as CVE-2024-27198) has a near-maximum severity CVSS rating of 9.8 out of 10 and is an authentication bypass issue in TeamCity's Web component. Researchers from Rapid7 who discovered the vulnerability and reported it to JetBrains have described it as enabling a remote unauthenticated...
One of the vulnerabilities (identified as CVE-2024-27198) has a near-maximum severity CVSS rating of 9.8 out of 10 and is an authentication bypass issue in TeamCity's Web component. Researchers from Rapid7 who discovered the vulnerability and reported it to JetBrains have described it as enabling a remote unauthenticated...
Norwegian National Cyber Security Centre Recommends Moving Away from SSLVPN and WebVPN ( thecyberexpress.com )
What drew you to the high seas?
Inspired by a post since deleted, I feel bad for probably coming off judgemental about the poster's taste in the movie that drove him to consider sailing....
How do you handle family requests that you disagree with?
Interesting problem here. So I self host jellyfin, happy to share my (owned) movies with my family. Well, my mother has asked me to digitize her collection too and have me host it. Originally, fine, you give your movies to me, I host them, same thing....
Nintendo blitzes GitHub with over 8,000 emulator-related DMCA takedowns ( www.engadget.com )
WTF - Rest in peace... I hope no one has to pay any legal fees. Wish you all the best!
Blackview Hero 10 detailed: the cheapest foldable has a 6.9" OLED display, 108MP camera ( m.gsmarena.com )
Got annoyed by my gym
So I joined a new gym last year and was pleasantly surprised. They gave me a smart card to get in and out, that's it, no app, no accounts, no nothing. Well, today I got to the gym and saw the announcement that they are phasing out the access with the smart card and starting to use, you guessed it, an app....
Proton Pass open source password manager is now available on F-Droid ( proton.me )
Are there any working tools to rip an entire Instagram account?
I don't have an account myself, and the photos and videos I'm trying to download en masse belong to a famous person's public account. Is there anything I can use to do it (as long as it's not creating an account lol), preferably proxied tools as apparently I get blocked while behind a VPN?...
Mozilla Stands Against Google's New Advertising Tech ( news.itsfoss.com )
ASUS refunds Zenfone buyer for failing to provide bootloader unlock tools as promised [after being sued] ( www.androidauthority.com )
bunbun - A simple and adorable sysinfo utility. ( lemmy.ml )
Just a small tool I made to improve my Rust, GitHub repo can be found here....
Archive(.)is problems
I use Orbot, and every browser I have tried, Firefox and forks, Chromium, Webviews, these links give me a captcha that cannot be completed....
Kids Online Safety Act gains enough supporters to pass the Senate ( www.theverge.com )
The US’s latest attempt to chill speech online, KOSA-a bill to effectively force everyone to identify themselves to online platforms-is picking up steam and looking like it will pass the Senate.
Trying to pirate a physical book. Where do I get thinner printer paper?
I need to pirate this book thats over 1000 pages. I already have the pdf but I really want a physical copy and the book costs too much for me. Even if I have to buy a bunch of ink (the book has no pictures) and even if I wear out the printhead before the job is done, it's still going to be cheaper to do this. My printer has been...
WordPress Admins Urged to Remove miniOrange Plugins Due to Critical Flaw ( thehackernews.com )
WordPress Admins Urged to Remove miniOrange Plugins Due to Critical Flaw ( thehackernews.com )
AT&T says leaked data of 70 million people is not from its systems ( www.bleepingcomputer.com )
AT&T says leaked data of 70 million people is not from its systems ( www.bleepingcomputer.com )
Fujitsu: Malware on Company Computers Exposed Customer Data ( www.darkreading.com )
Fujitsu: Malware on Company Computers Exposed Customer Data ( www.darkreading.com )
Chinese APT 'Earth Krahang' Compromises 48 Gov't Orgs on 5 Continents ( www.darkreading.com )
Chinese APT 'Earth Krahang' Compromises 48 Gov't Orgs on 5 Continents ( www.darkreading.com )
Former telecom manager admits to doing SIM swaps for $1,000 ( www.bleepingcomputer.com )
Former telecom manager admits to doing SIM swaps for $1,000 ( www.bleepingcomputer.com )
StopCrypt: Most widely distributed ransomware evolves to evade detection ( www.bleepingcomputer.com )
StopCrypt: Most widely distributed ransomware evolves to evade detection ( www.bleepingcomputer.com )
National Security Agency | Cybersecurity Information Sheets
CSI: Advancing Zero Trust Maturity Throughout the Network and Environment Pillar [pdf]...
National Security Agency | Cybersecurity Information Sheets
CSI: Advancing Zero Trust Maturity Throughout the Network and Environment Pillar [pdf]...
Why it’s hard to write a good book about the tech world ( www.economist.com )
WHEN PEOPLE ask Michael Moritz, a former journalist and prominent tech investor, what book they should read to understand Silicon Valley, he always recommends two. “They are not about Silicon Valley, but they have everything to do with Silicon Valley,” he says....
Automakers Are Sharing Consumers’ Driving Behavior With Insurance Companies ( www.nytimes.com )
Kenn Dahl says he has always been a careful driver. The owner of a software company near Seattle, he drives a leased Chevrolet Bolt. He’s never been responsible for an accident....
Are there tools that exist to anonymize writing styles?
I feel like with the rise of AI something that anonymizes writing styles should exist. For example it could look for differences in American versus British spelling like color versus colour or contextual things like soccer versus football and make edits accordingly. ChatGPT could be fed a prompt that says "Rewrite the following...
JetBrains TeamCity Mass Exploitation Underway, Rogue Accounts Thrive ( www.darkreading.com )
One of the vulnerabilities (identified as CVE-2024-27198) has a near-maximum severity CVSS rating of 9.8 out of 10 and is an authentication bypass issue in TeamCity's Web component. Researchers from Rapid7 who discovered the vulnerability and reported it to JetBrains have described it as enabling a remote unauthenticated...
JetBrains TeamCity Mass Exploitation Underway, Rogue Accounts Thrive ( www.darkreading.com )
One of the vulnerabilities (identified as CVE-2024-27198) has a near-maximum severity CVSS rating of 9.8 out of 10 and is an authentication bypass issue in TeamCity's Web component. Researchers from Rapid7 who discovered the vulnerability and reported it to JetBrains have described it as enabling a remote unauthenticated...
Yuzu will lives under new name ( github.com )
International warning: Attackers could gain persistence on Ivanti VPN appliances ( www.csoonline.com )
International warning: Attackers could gain persistence on Ivanti VPN appliances ( www.csoonline.com )
U.S. Court Orders NSO Group to Hand Over Pegasus Spyware Code to WhatsApp ( thehackernews.com )
U.S. Court Orders NSO Group to Hand Over Pegasus Spyware Code to WhatsApp ( thehackernews.com )