RE: https://mastodon.social/@jessie/115774314854244968
I notice that the British Library is also hiring a #Linux Server Specialist (#RedHat), UK only, to recover from their 2023 cyber attack.
This posting is up in Boston Spa; that's not that Boston, not /that/ Boston, keep going.... yep that one.
It's interesting to see them trying to hiring #opsec and #sysadmin skills to try and harden their systems. Wonder if it will work.
@Ba_Dang Comme qu'y disent (Proton) l'activiste aurait dû utiliser leur portail tor... mais certains affirment que même tor est compromis. Sérieux, je pense depuis des années à l'importance de la comm entre activistes et résistants (nous le deviendrons bientôt tous... en tout cas, certains d'entre nous).
J'ai une collection pour ça aussi 🙂 https://pinboard.in/u:lutzray/t:opsec/
Was Edward Snowden a fake? Idk I hadn't considered it until I found this long (sometimes suspicious) thread on X and it made me thing, it could have provided a false sense of security in Americans, since they felt they knew what the government was up to, when it could have been to distract. Ik I sound like a conspiracy theorist but I am very distrustful of mainstream media narratives. Anyway it was a fun read https://x.com/Truthtellerftm/status/2002218300617421181 #nsa #cia #opsec #whistleblower
I cannot understand the reasoning, of the developer(s) of any free and open source Android launcher—or even proprietary, for that matter—NOT bothering to make the apps in the work profile visible in the app drawer.
The work profile is a basic feature of Android. So are multiple user accounts, while we're at it, although that's a different issue entirely.
I cannot understand why Google removed Shelter from the Play Store. I would, however, agree with everyone involved if Google had instead taken notes, and baked all of the same functionality into the operating system itself, and Shelter had eventually stopped development because their app was no longer necessary. That would've been ideal for everyone, it would've hurt no one, and Google could've made that a huge selling point. They could've made even more money by copying the silly thing, and they just decided to kill it for no particular reason.
I need the work profile on the main user account for what I'm trying to do. I use Open Camera as my default camera app and I have for years. Love Open Camera. It has a feature, however ironically, that is not only bad for privacy but totally destroys your OPSEC if you use it irresponsibly and get sloppy with said pictures. It lets you overlay GPS and compass data, along with date/timestamp if you want (and what's left to lose, at this point?), over the image itself. Having it in the metadata is no longer necessary; you literally see it when you look at the picture.
One time, I wanted to confirm that a specific tree was, in fact, exactly where I'd hoped it would be; so I enabled the overlays for all of that, and took a bunch of pictures of it from multiple perspectives and compared them. I know, I only needed two, but also they're free. It was right where it was supposed to be, precisely, if you're wondering. Good tree, that one. Anyway, so then I had to remember to turn all of that back off after I was done.
You see how annoying that is, to have to change a bunch of settings on the same app repeatedly, and hope that you're not just a normal person, who messes something up occasionally and especially when you're in a hurry? You see how much easier this makes my life, when I can simply have two separate instances of the same app, but with completely different settings, at the same time; and have the funny one, and all of the other apps that go along with it, all access the file system separately from my main profile—the one I use to post things online and hopefully not dox myself in so doing?
Why is having a reliable solution to the real world problem I just described bad, Google?
Why do I have to use a different app store, to install an app that you refuse to install for me on your own, just to be able to do this without having a migraine? What am I supposed to do instead of that, write it myself; pull an all-nighter reading a bunch of documentation that wasn't written for people like me, just to make my phone—which you manufactured yourself, btw—what it should've been when it left your factory?
Or would you rather I have Gemini "help" me with that so that it and/or I can hallucinate?
#Google #Android #FuckCapitalism #Enshittification #UX #OPSEC
In case anyone needs some #testing #CreditCard numbers for #API tests:
Here are some from official payment processors' public documentation.
Obviously these WON'T WORK on any non-testing payment system (blocklisted by the payment processors!) so all one will get is declines and being listed as fraudster on any live payment network.
So definitely don't hand them to #scammers (obviously if they're stupid enough to accept 4242 4242 4242 4242 they should get jailtime just for being "criminally stupid") and only use them for responsible testing uses as outlined by payment processors.
These are merely documented for reference for ethical development purposes and cases where one needs something for mockups, as these have the optics of realness (and they checkout as legit numbers per algorithm) but obviously no real card would ever be issued and I'd see this as a more ethical way to test things that to use i.e. Wirecard's assigned BINs cuz those may be reassigned to a different card issuer and thus could actually incur fraudulent charges!
#payment #PaymentProcessing #CC #CreditCards #OnlinePayment #development #OpenSource #OpenData #PublicData #OSINT #tech #devs #dev #ITsec #InfoSec #OpSec #ComSec
Decided to make the jump to a secure and even a verifiably secure laptop. Love the temper evident screws, packing , cryptographically secure boot etc etc. But really made the mistake of not having the nitro key shipped in the same shipment, looks like I am waiting for the new year to make the switch...
#OPSEC #QubesOS
Benn Jordan – This Flock Camera Leak Is Like Netflix for Stalkers [video]
https://www.youtube.com/watch?v=vU1-uiUlHTo
#ycombinator #music_production #science #synthesizers #pro_audio #flock #flock_safety #alpr #camera #security #surveillance #ai_camera #police_camera #privacy #rights #leak #hack #breach #stream #password #admin #infosec #opsec #osint #ip_camera #404 #404_media #benn_jordan #the_flashbulb #personal_data #data_privacy #data #open_source
Free Christmas #opsec advice:
Don't bring your two year old Christmas shopping. Those jerks can't keep secrets.
The Deviancy Signal: Having "Nothing to Hide" Is a Threat to Us All
https://thompson2026.com/blog/deviancy-signal/
#ycombinator #privacy #surveillance #nothing_to_hide #deviancy_signal #civil_liberties #encryption #operational_security #baseline #state_power #opsec
@jesterchen @heiseonline #Funfact: Der #BND darf garnicht innerhalb #Deutschland|s gegen deutsche #Staatsbürger*innen operativ tätig werden.
Und alle die "von Interesse" sind haben entsprechende #OpSec, #InfoSec, #ITsec & #ComSec...
I'll be hosting a "Privacy Ultras Meetup" at #39C3 for everyone interested in raising their privacy/OPSEC to the max.
The idea is to share practical solutions and ideas about addressing various threat models in the digital and real worlds, and learning from each other.
If you're interested, please mark the session as favorite in the hub so an adequate room can be made available!
See https://events.ccc.de/congress/2025/hub/en/event/detail/privacy-ultras-meetup for details.
Currently planned schedule is Day 2 @ 14:30.
I know, I know. Subletting your Identity & security access seemed like such an obvious no-no but yeah just go ahead & add it to the employee manual Bob, thanks.
https://www.scworld.com/brief/us-jails-maryland-man-over-north-korean-it-worker-scheme-involvement
Incident cyber au ministère de l'Intérieur. Intrusion détectée mi-décembre 2025, entraînant l'extraction d'une centaine de fiches TAJ. Le vecteur d'attaque identifié est un phishing menant à la compromission de mots de passe stockés en clair. Un suspect a été arrêté.
⚡️ https://linkeaz.net/fr/posts/french-interior-ministry-cyber-intrusion-december-2025
#Cyberattaque #Sécurité #MinistèreIntérieur #CyberSécurité #InfoSec #OpSec #News
@m I mean, #Copaganda like this actively harms everyone by making #MediaIlliterates and #TechIlliterates cause #FalseAlarms due to #FalseSuspicion and teaching #kids proper #OpSec, #InfoSec, #ComSec & #ITsec, preventing actually necessary interventions when it comes to 'much worse things...
📬 tv-bunker.to: Interview mit dem Admin des neuen CS- & IPTV-Forums
#Interviews #IPTV #Szene #csservice #nologging #opsec #resellerpanel #tvbunkerto #zeur https://sc.tarnkappe.info/4a512b
@JustinDerrick Text scammers have adopted stalker tactics.
Edgy marketers for legit companies often adopt them too.
They can fake any calling number they like. They can buy name+address+phone data on the open commercial market in the US.
#InfoSec #OpSec
It’s interesting how many people think wanting privacy means you’re doing something nefarious. The fact is, privacy is about sharing what you want with whom you choose.
(I don’t recall who wrote these words or where I originally saw them. I only made the graphic.)
