pysch

psych

Probably it was only added so they could pull this “sike, air in the middle” stunt

Cooles Fashion-Statement als Ergänzung

TLDR: I can’t say for 100% sure, but there are multiple reasons to believe that this is malware.

Long version: I’m seeing multiple suspicious things here.

• The IPs being connected to are part of some hoster and have some abuse reports: https://www.abuseipdb.com/check-block/217.20.58.98/29

• The domain being resolved is qcloud[.]com, which belongs to Tencent Cloud and definitely not Microsoft.

• Other domains in memory like counter-strike[.]com[.]ua are very new and definitely sound fishy.

• A standalone version of 7zip is being run and extracts the created rar file with the password “infected”. Real alarm bells here.

• A lot of the registry actions look like anti-debugging, which does not sound like something an Illustrator Plugin would do.

Sure thing, the reasons that are most important for me personally are better multi-attach, easier splitting and resize, better plugin ecosystem and it being more modern and actively maintained in general.

I much prefer tmux over screen.

It is very much on track to do so, currently we’re still looking at 9-10k signatures a day. If this doesn’t slow down a lot till the deadline, we might even reach 1.5 million.

Not only do I not mind you yoinking the text, I want to thank you for your contribution to the cause. If everyone who has signed could get one more person to sign, the initiative would succeed!

FRËËDÖM

Ouch owie my bones

“Nicht jeder Computerbegeisterte kann sich selbst zum Sicherheitsforscher ernennen und damit einen Freibrief zum Hacking bekommen”, so CDU-Politiker Günter Krings auf Anfrage der ARD-Rechtsredaktion.

Ich möchte kotzen. Herr Krings hat nichts verstanden. Es geht doch nicht darum, wer mit welcher Expertise Sicherheitslücken findet. Es geht darum, damit verantwortungsvoll umzugehen und Responsible Disclosure zu betreiben, damit die Lücke geschlossen werden kann und Schäden für eine Vielzahl von Menschen und ggf. das Unternehmen abgewendet werden können…

Typecasting Typengießung für Nudeln sozusagen.

Haust du mich, wenn ich Löffel sage?

Die Grenze zwischen mutig und lebensmüde ist fließend oder so

Wieso darf ich nicht einfach meine TES (Tu es selbst) Fadennudeln herstellen? 😢

Take a look into borg backup.

Seven countries need to reach the threshold and 1.000.000 signatures are required in total. The seven countries goal has already been reached, so right now only signatures are needed, regardless of the countries they are coming from.

Soweit ich weiß, kannst du über mo.pla gekaufte Tickets bis zu 24h vor Monatsende kündigen oder pausieren. :)

Usually I just send an email template asking them to delete my data per the GDPR (I’m an EU citizen). I’m not sure if you can force them to delete anything if they don’t have to by law, but I guess asking is free.

I went through some old accounts when I migrated from KeePass to Vaultwarden. From start to finish, it roughly took five weeks for all ~25 inquiries to be completed. I check on my accounts every few moons.

Giving a ballpark estimate, 30% of services offer a (semi-) automated delete function in the account setting, 60% comply to emails within a few days and 10% are absolute pains.

*** RANT INTERMISSION ***

One of those 10% is Twilio (This expressly doesn’t apply if you only use Authy, their 2FA service). They don’t have an automated delete possibility, which is already a huge ick for a company of their size. But it got infinitely worse.

THEY DON’T LET YOU CREATE TICKETS WHEN YOU’RE A FREE CUSTOMER AND FORCE YOU TO USE THEIR AI BOT WHICH CAN’T DO SHIT AND WILL HALLUCINATE A WAY TO DELETE YOUR ACCOUNT BY YOURSELF. Their FAQs have conflicting information which some showing options that don’t even exist (anymore). And you have to dig through a lot of policy pages to even find an email address to contact that THEY DON’T WANT YOU TO CONTACT BECAUSE THEY “cannot delete data on your behalf because we cannot authenticate your request by email” (quote of one of their FAQ pages).

When I finally found an email address (that was for reporting data of minors being processed, but I didn’t care at that point) and pointed out to them that this is likely illegal, it was processed like a normal ticket and my account got deleted within a few days. I wonder why their legal department followed up a few days after that, apologizing for my “experience” and telling me that they would “review their processes”?

Anyway, that is that. If you want to use SendGrid or any other Twilio service except for Authy, save yourself the pain and just email privacy@twilio.com instead of trying to follow their processes which even they themselves don’t seem to know.

*** INTERMISSION END ***

So far, every account I deleted, I couldn’t log into after deletion. I can’t really check if they deleted the rest without breaking into their data centers.

And I’m not very strict with creating accounts nowadays but I’m much stricter with documenting them to my password manager now so I know that they exist. If I don’t need them anymore, they’ll get caught in the next rotation.