Multiple employees at Microsoft have mentioned to me that separation-of-duties and access privileges are so intense these days they don’t even get to tour customer-facing Azure datacenters anymore. (Microsoft has entire dev/internal datacenters)

This week the internet has learned—once again—that asset management is the center of security. It’s hard to patch what you can’t find.

Some statistics to start the year: During 2021 Bitcoin consumed 134 TWh in total, which is comparable to the electrical energy consumed by a country like Argentina. Related CO2 emissions were ~64 Mt; enough to negate the entire global net savings from deploying EVs.

The Consumer Authentication Strength Maturity Model Credit ᴅᴀɴɪᴇʟ ᴍɪᴇssʟᴇʀ 🛡️ #infosec #cybersecurity #pentesting #oscp #informationsecurity #hacking #cissp #redteam #technology #DataSecurity #CyberSec #passwords #networking

Hacking Articles Thank you for the shoutout! Here's the main piece that has the latest model. danielmiessler.com/blog/casmm-con…

Do you ever get the feeling that NCSC UK, Cybersecurity and Infrastructure Security Agency and - I'm sure - their equivalents in other countries are going to keep telling us about credential stuffing attacks until every single web application is enforcing 2FA? #cybersecurity #informationsecurity

"One of the surprising things to me about web3, despite being built on “crypto,” is how little cryptography seems to be involved" Moxie Marlinspike #web3

Coinbase, Square, Hood, SOFI, Marqeta....all at new lows... Goldman, Schwab, Mastercard, AMEX at highs ... Thank god we spent the last 20 years disrupting fintech :) Investing is easy.

Co-founder of WhatsApp is the new acting CEO of Signal as Moxie steps down vice.com/en/article/4aw…

THE #MATRIX An animated quine in only 187 bytes of HTML+JS: <body onload='setInterval(f=_=>{for(t++,o=i=0,w=35;i<384;o+=i++%+w?(f+f+f)[i].fontcolor(g==9?"#FFF":[0,g,0]):"\n")g=0|(i/w-t/((i%w)**5%w+3)+w*t)%w;p.innerHTML=o},t=9)'bgcolor=X><pre id=p> aem1k.com/matrix/quine/ 🐇

New joint cybersecurity advisory from NSA Cyber, Cybersecurity and Infrastructure Security Agency and FBI: Understanding and Mitigating Russian State-Sponsored Cyber Threats to U.S. Critical Infrastructure. See: media.defense.gov/2022/Jan/11/20…

Today I discovered why we still have mag stripes on payment cards in the UK, when we've had chip and pin for years. I'll give a prize to whoever gets the correct (and slightly depressing) reason. 😁

Bug Alert, developed by Matthew Sullivan (@MattsLifeBytes), is a free tool running on GitHub that sends subscribers early warnings of zero-day vulnerabilities portswigger.net/daily-swig/bug…

Not my meme but why am I crying

OSI Layers for Beginners #infosec #cybersecurity #pentesting #oscp #informationsecurity #hacking #cissp #redteam #DataSecurity #CyberSec #networking

I wish the cryptocurrency industry took critical web application security vulnerabilities as seriously as smart contract vulnerabilities.

Tesla makes the safest cars on the planet. I’ve had the experience of a F150 hitting me on purpose and my X barely moved. Thanks for prioritizing safety first @tesla Elon Musk

The cybercrime area is rapidly growing from year to year, and we have to keep an eye on up-to-date information for safety. ANYRUN team has prepared 2021’s threat stats and hopes it helps you make your best decisions. Check out the all info about updates 👉any.run/cybersecurity-…

“Security at the expense of usability comes at the expense of security.” My favorite quote so far this week. From: redmonk.com/rstephens/2022…

This is a great thread.