Skip Navigation
viking viking @infosec.pub
Posts 12
Comments 1.9K
From a cyber security perspective how hazardous are random mini PCs from Ali Express/Amazon if you are starting with a fresh OS install?
  • That's why I said "essentially". The data is no longer accessible by the system, which is all that's needed to prevent malicious files from being executed.

  • Wenn selbst der Imbiss Trinkgeld will
  • Ich hab vor gut 10 Jahren aufgehört, Trinkgeld zu geben. Mögen manche Leute als knausrig empfinden, aber ich finde einfach diese Zwangskultur unmöglich.

  • Meta Quest 4: The future of VR gaming and immersive technology
  • As if the name of the source wasn't indication enough...

  • Marvel and DC lose shared "Super Hero" US trademark after not responding to courts
  • A trademark is exactly that: Ownership. Anybody else using it has to pay you a license fee for permission, or can be denied using it. They have most definitely used the term all over, and might have prevented others from using it. Hard to tell.

  • Box Office: ‘Megalopolis’ Crumbles With $4 Million, ‘The Wild Robot’ Lands at No. 1 With $35 Million
  • “This was never destined to be a box office hit and is the very definition of a passion project,” says senior Comscore analyst Paul Dergarabedian. “That said, the film could enjoy long term interest from movie aficionados.”

    In other words, some poor film students might be forced to analyze the shit out of this movie some decades into the future?

    Also, "could". Yeah well. I could also win millions in tonight's lottery draw. Highly unlikely, but well, I could.

  • From a cyber security perspective how hazardous are random mini PCs from Ali Express/Amazon if you are starting with a fresh OS install?
  • Deleting all existing partitions via the installer is already enough. Once a new partition is created, all files are essentially wiped.

  • How do you lure a stray cat to your yard/house?
  • Ask a local vet or shelter if you can borrow a cat trap. Else it takes a long time and patience to get the cat to trust you.

  • A sorcerer appears and states that they will erase any one song from existence - which song would you choose?
  • The German one is the sound of my childhood. Haven't heard it since though.

  • And you will never catch up as Bezos make 8,000,000 per hour
  • Nope, Malaysia. I've traded a crazy hustle for quality of life.

  • Pirate library must pay publishers $30M, but no one knows who runs it
  • The order forbids anyone from hosting Libgen, registering Libgen domains, or providing cloud storage, file-sharing, or advertising services, among other restrictions.

    Als ob das jemanden außerhalb der USA interessiert...

  • And you will never catch up as Bezos make 8,000,000 per hour
  • As long as the loans aren't paid off though, running the stock into the ground would result in margin calls. An empire built on borrowed money with loans secured only through the value of the empire itself can be a fragile construct.

  • And you will never catch up as Bezos make 8,000,000 per hour
  • Location, location, location. I'm living a great life, missing nothing, and my monthly expenses are below $1500 a month (excluding travels, including medical insurance). That's for a 2 person household in a 1600ft² 4BR rental house nearby a larger city (350k population).

  • LG TVs start showing ads on screensavers | LG's TV business is heightening focus on selling ads and tracking
  • Sure, it's being done. Xiaomi TVs have custom ROMs available, and I'm sure a bunch of others. Thing is, state of the art TVs are are not exactly cheap, and you need one to hack it in the first place. Most hackers do it for free, so they can't exactly go on a spending spree.

  • LG TVs start showing ads on screensavers | LG's TV business is heightening focus on selling ads and tracking
  • Sure, waste electricity while being unable to use the TV as intended, and cause some additional wear & tear. Great idea.

  • LG TVs start showing ads on screensavers | LG's TV business is heightening focus on selling ads and tracking
  • The regular shield does just fine for me, I can attach hard drives to my router and mount them as smb shares, and then access movies with VLC Player.

  • Lang und Nouripour kündigen Rücktritt an
  • Bin mal gespannt, wo die Reise hingeht, da gibt's viel aufzuarbeiten. Nouripour fand ich in seinen Auftritten meistens ganz ok, zumindest mal hinreichend souverän. Lang hat mich nie auch nur im Ansatz bewegen können.

  • Rockstar Games DDoSed Heavily By Players Protesting New AntiCheat Code
  • That's not what this is about, the article is simply garbage. They are enforcing a kernel level anti-cheating system that is incompatible with Linux (where no third party gets kernel access, and rightly so). This locks out all Linux players, including Steam Deck.

  • askmenover30 @lemm.ee viking @infosec.pub

    Men over 30, how is your week going?

    11
    askmenover30 @lemm.ee viking @infosec.pub

    Men over 30, how is your week going?

    Happy Monday!

    How was your weekend? Any plans, milestones, major dread or whatever else you want to share coming up in the week ahead?

    And how are you generally?

    29
    askmenover30 @lemm.ee viking @infosec.pub

    Men over 30, how is your week going?

    Since it's been kind of weekly since 8+ weeks... Maybe start this thread again?

    Not a moderator or anything (nor trying to be one), but I liked this community on reddit and would be sad to see it die.

    23
    Finanzen @feddit.org viking @infosec.pub

    Broker-Diversifikation?

    Hallo zusammen,

    Ich hab mein Depot bei FlatEx und bin damit an sich sehr zufrieden, aber jetzt stelle ich mir die Frage, ob sich dahingehend eine Diversifikation anbietet?

    Bei der DKB als Hausbank hab ich ebenfalls ein Depot, aber da sind nur noch Karteileichen von vor 15 Jahren drin; irgendwelche endfälligen Zertifikate bis 203x, bei denen die Verkaufsspesen höher wären als jegliche Rendite.

    Jetzt möchte ich gerne meine Anlagestrategie ein bisschen diversifizieren und zu dem ETF-Portfolio gerne kurzläufige Staatsanleihen kaufen. DACH mit kleiner Rendite, max 1 Jahr ab Kaufdatum, nix wildes.

    Hintergrund ist, dass ich ggfs. in den nächsten 6-24 Monaten Geld brauche um ein Haus anzuzahlen; gleichzeitig aber das Volumen die Einlagensicherung übersteigt, sonst hätte ich es einfach auf's Tagesgeld gepackt oder Festgelder regelmäßig verlängert, das geht nun leider nicht.

    Jetzt die eigenltiche Frage: Bei Flatex würde ich für diese Order knapp 4 Euro zahlen, bei der DKB 32,50 Euro. Sollte ich früher verfügen müssen und entsprechend nochmal verkaufen, ergo das doppelte (Endfälligkeit ist kostenlos).

    Eigentlich ja ein no-brainer, 28,50/57 Euro zu sparen; aber bietet es sich eurer Meinung nach an, hier denoch das Ausfallrisiko auch über 2 Broker zu verteilen?

    Danke im Voraus!

    2

    Windows 10 shows Linkedin Learning Ads on Login Screen

    cross-posted from: https://infosec.pub/post/14206569

    > Hi all, > > First off: Can't switch to Linux, Windows is a work requirement. Please spare me. > > With that out of the way, here's my problem: > > Since 2-3 days I've been seeing ads disguised as a minimized video player popup on my Windows 10 Login Screen > !image. > > Initially I thought I might have been watching something on youtube and forgot to close the tab and it autoplayed in the background until reaching this stuff by chance; but that turned out not to be the case (I'm also using Firefox exclusively, which I thought wouldn't integrate with Windows, but I wasn't 100% sure on that end). > > I tried to research this a bit, but the only similar case I found was in an old reddit thread saying that some Windows update installed the LinkedIn App for them, which is not the case here. > > Antivirus (Bit Defender) and Malwarebytes both give me a clean report. > > So I did some more digging and right click that thing with my firewall set to deny all to figure out where this is taking me, and surprise... > > !Image > > There's a total of 100 connection attempts from Windows Search to around 10 different IP addresses, all of which belong to Microsoft. > > I have not installed any updates in the last 14 days, no new software, and have not changed any system settings. > > What did change is that I am currently not in China, where I normally live, but am on a business trip to Malaysia, where a bunch of services that are blocked in China might be accessible, and are now splicing in those (somewhat disguised) ads. > > Does this happen to anyone else, and if so, do you have an idea how to get rid of it? > > Thanks a lot in advance!

    20

    Windows 10 shows Linkedin Learning Ads on Login Screen

    Hi all,

    First off: Can't switch to Linux, Windows is a work requirement. Please spare me.

    With that out of the way, here's my problem:

    Since 2-3 days I've been seeing ads disguised as a minimized video player popup on my Windows 10 Login Screen !image.

    Initially I thought I might have been watching something on youtube and forgot to close the tab and it autoplayed in the background until reaching this stuff by chance; but that turned out not to be the case (I'm also using Firefox exclusively, which I thought wouldn't integrate with Windows, but I wasn't 100% sure on that end).

    I tried to research this a bit, but the only similar case I found was in an old reddit thread saying that some Windows update installed the LinkedIn App for them, which is not the case here.

    Antivirus (Bit Defender) and Malwarebytes both give me a clean report.

    So I did some more digging and right click that thing with my firewall set to deny all to figure out where this is taking me, and surprise...

    !Image

    There's a total of 100 connection attempts from Windows Search to around 10 different IP addresses, all of which belong to Microsoft.

    I have not installed any updates in the last 14 days, no new software, and have not changed any system settings.

    What did change is that I am currently not in China, where I normally live, but am on a business trip to Malaysia, where a bunch of services that are blocked in China might be accessible, and are now splicing in those (somewhat disguised) ads.

    Does this happen to anyone else, and if so, do you have an idea how to get rid of it?

    Thanks a lot in advance!

    18

    Announcement: Move to feddit.org

    Dear all,

    Since feddit.de has fallen into disrepair by its administrations, some of the fine folks over here have started feddit.org as a second home.

    Like most (all?) feddit.de communities, we have now launched [email protected] (or alternatively https://feddit.org/c/germany, if your instance hasn't federated the community yet) to continue talking about all things Germany, in English.

    Welcome to join us over there!

    5

    Whatsapp web broken after 124.0.1 update?

    Hi all,

    Just updated FF to 124.0.1 and now the whatsapp web view is broken. The text input field is somewhere in the upper third of the screen and in the background, overlayed by text boxes so that I can't actually select it. It's automatically selected when switching from one chat to another so I can type there, but only blind in most cases since any comment boxes overlap it.

    Tried restarting, clearing cookies, re-authenticating, disabling all plugins, nothing worked.

    Does anyone experience something similar and/or know a workaround?

    Thanks!

    Edit: Fixed by logging out of whatsapp web, clearing cookies, restarting the browser, and then logging back in. Neither of the steps had worked on its own previously, but the combination did the trick.

    2

    Childfree Chatter

    Hi all,

    As our community is still small and not overly active, I thought instead of trying to have a weekly or monthly chatter thread up as a sticky, we could try a perpetual one and see what happens.

    So anything you feel doesn't warrant a post of its own, just put it here.

    Cheers and take care!

    0

    Current account recovery best practices?

    Hi all,

    Need to pick your brains for a bit regarding best practices for handling of account recovery issues while traveling.

    Premise would be that my phone gets lost or stolen, and I may not have easy access to my laptop either, and being in a foreign country I couldn't easily get a copy of the original SIM to restore via OTP.

    Consequently, I also don't really love the idea of using some password manager with a master password and no F2A.

    Under those circumstances, what would you consider the best way forward to ensure accessibility without crippling myself in the process?

    The only thing I can come up with is a random subdomain on one of my domains, with random username and random password, where I store an encrypted container containing txt-files. Maybe even further obscured with a random cypher (all numbers / letters shifted x positions to the right or something).

    But there's gotta be other use-cases out there, so I was wondering what you are using?

    Ideally something that doesn't involve another person.

    Thanks!

    13

    Outlook filters for >x people in CC possible?

    Hi all,

    I've got a bit of a spam issue that isn't solved by either keyword or actual spam filter. The problem is that I'm in China and mass email marketing here is acceptable for some reason, so local spam filters don't catch the perps, and international ones are useless based on the language.

    And since I'm in a customer/supplier facing role, quite a few genuine mails use the same keywords as the spammers, so that doesn't work to fix my problem.

    However, the mails are usually sent to hundreds of people at once, all with their mail addresses in plain view in CC.

    So I'd just like to set up a filter to send mails with >100 recipients or something like that straight to trash, but can't seem to find it in the outlook rule settings.

    Does anyone know of a useful workaround?

    Thanks!

    0

    Looks like Facebook is following youtube with anti-adblock measures.

    I don't really use facebook anymore so couldn't care less; but so happened to log in today to change my password and saw this on my front page.

    209