Eleanor Saitta
@dymaxion.infosec.exchange.ap.brid.gy
Thinking about security, failure, change, art, and living. Recruiting barbarians; complicate your narratives. Fractional CISO to startups via Systems […]
[bridged from https://infosec.exchange/@dymaxion on the fediverse by https://fed.brid.gy/ ]
[bridged from https://infosec.exchange/@dymaxion on the fediverse by https://fed.brid.gy/ ]
Companies, don't try to stiff your consultants for work they've already done. It's a terrible look and it's likely to cost you more than you think you're going to save. Also usually illegal and always immoral, should shame be a feeling you experience.
Consultants, I strongly recommend having […]
Consultants, I strongly recommend having […]
Original post on infosec.exchange
infosec.exchange
November 27, 2025 at 2:29 PM
Companies, don't try to stiff your consultants for work they've already done. It's a terrible look and it's likely to cost you more than you think you're going to save. Also usually illegal and always immoral, should shame be a feeling you experience.
Consultants, I strongly recommend having […]
Consultants, I strongly recommend having […]
Reposted by Eleanor Saitta
I guess part of the reason that reading code can be harder than writing it is that what you really need to understand isn't necessarily *in* the code, you're kind of inferring the understanding you need *from* the code.
Again, we keep conflating the work with the artifact of it, and the value […]
Again, we keep conflating the work with the artifact of it, and the value […]
Original post on glasgow.social
glasgow.social
November 23, 2025 at 9:04 PM
I guess part of the reason that reading code can be harder than writing it is that what you really need to understand isn't necessarily *in* the code, you're kind of inferring the understanding you need *from* the code.
Again, we keep conflating the work with the artifact of it, and the value […]
Again, we keep conflating the work with the artifact of it, and the value […]
While I'm thinking about work, a piece of advice for startups thinking about security: fix your project management and roadmapping process before/at the same time as bringing someone in to help with security, especially if that person is not getting put in as a peer to the CTO with the swing to […]
Original post on infosec.exchange
infosec.exchange
November 24, 2025 at 10:35 AM
While I'm thinking about work, a piece of advice for startups thinking about security: fix your project management and roadmapping process before/at the same time as bringing someone in to help with security, especially if that person is not getting put in as a peer to the CTO with the swing to […]
I've been instituting exactly this kind of cooldown/delay on dependency updates at all of my clients for four or so years and I'm glad to see more people talking about it: https://blog.yossarian.net/2025/11/21/We-should-all-be-using-dependency-cooldowns
We should all be using dependency cooldowns
Comments
blog.yossarian.net
November 24, 2025 at 10:19 AM
I've been instituting exactly this kind of cooldown/delay on dependency updates at all of my clients for four or so years and I'm glad to see more people talking about it: https://blog.yossarian.net/2025/11/21/We-should-all-be-using-dependency-cooldowns
Reposted by Eleanor Saitta
Chatting with a friend about Cloudflare's intermittent outages today, they brought up an interesting point: How many organizations have started relying on Cloudflare to do basic security blocking and tackling stuff, like stopping SQL injection attacks at the edge? Maybe your devs were lazy at […]
Original post on infosec.exchange
infosec.exchange
November 18, 2025 at 4:52 PM
Chatting with a friend about Cloudflare's intermittent outages today, they brought up an interesting point: How many organizations have started relying on Cloudflare to do basic security blocking and tackling stuff, like stopping SQL injection attacks at the edge? Maybe your devs were lazy at […]
Has anyone looked at doing large scale newsletter type distribution over signal (not admin-only groups)? I know @thecontinent does it, but I'm not sure if they're using a third party client or what.
November 19, 2025 at 7:56 PM
Has anyone looked at doing large scale newsletter type distribution over signal (not admin-only groups)? I know @thecontinent does it, but I'm not sure if they're using a third party client or what.
Reposted by Eleanor Saitta
I’ve been testing a theory: many people who are high on #ai and #LLMs are just new to automation and don’t realize you can automate processes with simple programming, if/then conditions, and API calls with zero AI involved.
So far it’s been working!
Whenever I’ve been asked to make an AI flow […]
So far it’s been working!
Whenever I’ve been asked to make an AI flow […]
Original post on hachyderm.io
hachyderm.io
November 14, 2025 at 3:29 PM
Has anyone here ever tried to get GrandMA3 OnPC working on Ubuntu on emulation? If so, how, and how was performance?
November 16, 2025 at 10:14 AM
Has anyone here ever tried to get GrandMA3 OnPC working on Ubuntu on emulation? If so, how, and how was performance?
Reposted by Eleanor Saitta
Two years ago, I wrote at very great length about how this played out in Myanmar. It is so upsetting to see how many of the same dynamics are at work here now.
https://erinkissane.com/meta-in-myanmar-full-series
https://erinkissane.com/meta-in-myanmar-full-series
Meta in Myanmar (full series) - Erin Kissane's small internet website
The landing page for the full series on Meta in Myanmar.
erinkissane.com
November 12, 2025 at 7:01 PM
Two years ago, I wrote at very great length about how this played out in Myanmar. It is so upsetting to see how many of the same dynamics are at work here now.
https://erinkissane.com/meta-in-myanmar-full-series
https://erinkissane.com/meta-in-myanmar-full-series
Reposted by Eleanor Saitta
This thing that 404 is writing about in the US—the dehumanizing fake content created purely because Facebook pays people to make it?
https://www.404media.co/ai-generated-videos-of-ice-raids-are-wildly-viral-on-facebook/
It has a direct precedent in the Myanmar genocide and has been widely […]
https://www.404media.co/ai-generated-videos-of-ice-raids-are-wildly-viral-on-facebook/
It has a direct precedent in the Myanmar genocide and has been widely […]
Original post on mas.to
mas.to
November 12, 2025 at 6:56 PM
This thing that 404 is writing about in the US—the dehumanizing fake content created purely because Facebook pays people to make it?
https://www.404media.co/ai-generated-videos-of-ice-raids-are-wildly-viral-on-facebook/
It has a direct precedent in the Myanmar genocide and has been widely […]
https://www.404media.co/ai-generated-videos-of-ice-raids-are-wildly-viral-on-facebook/
It has a direct precedent in the Myanmar genocide and has been widely […]
Reposted by Eleanor Saitta
"If normal people don't get tripped up by it, what use are my 1337 skilz?" is not a good design principle.
November 9, 2025 at 7:40 PM
"If normal people don't get tripped up by it, what use are my 1337 skilz?" is not a good design principle.
Reposted by Eleanor Saitta
RE: https://indieweb.social/@bonfire/115507615653471686
What @bonfire are working on is impressive and important and y'all should consider supporting their crowdfunder!
Bonfire was absolutely the top contender for my work building New_ Public's Local project (https://newpublic.org/local); in […]
What @bonfire are working on is impressive and important and y'all should consider supporting their crowdfunder!
Bonfire was absolutely the top contender for my work building New_ Public's Local project (https://newpublic.org/local); in […]
Original post on mastodon.social
mastodon.social
November 7, 2025 at 4:06 PM
RE: https://indieweb.social/@bonfire/115507615653471686
What @bonfire are working on is impressive and important and y'all should consider supporting their crowdfunder!
Bonfire was absolutely the top contender for my work building New_ Public's Local project (https://newpublic.org/local); in […]
What @bonfire are working on is impressive and important and y'all should consider supporting their crowdfunder!
Bonfire was absolutely the top contender for my work building New_ Public's Local project (https://newpublic.org/local); in […]
Reposted by Eleanor Saitta
600,000 already killed. Two thirds are children. Trump’s and Musk’s and the cowardly Republican legacy. And it keeps giving.
#Trump #Musk #GOPMurderers #usaid #USpol
#Trump #Musk #GOPMurderers #usaid #USpol
November 7, 2025 at 3:13 AM
600,000 already killed. Two thirds are children. Trump’s and Musk’s and the cowardly Republican legacy. And it keeps giving.
#Trump #Musk #GOPMurderers #usaid #USpol
#Trump #Musk #GOPMurderers #usaid #USpol
I'll take a break from the politics now for a brief word from our sponsors:
If you're a startup beginning your security journey and you're interested in help building a security program — not just from a technical security architecture perspective but also in terms of structure, hiring, and […]
If you're a startup beginning your security journey and you're interested in help building a security program — not just from a technical security architecture perspective but also in terms of structure, hiring, and […]
Original post on infosec.exchange
infosec.exchange
November 6, 2025 at 12:25 PM
I'll take a break from the politics now for a brief word from our sponsors:
If you're a startup beginning your security journey and you're interested in help building a security program — not just from a technical security architecture perspective but also in terms of structure, hiring, and […]
If you're a startup beginning your security journey and you're interested in help building a security program — not just from a technical security architecture perspective but also in terms of structure, hiring, and […]
Reposted by Eleanor Saitta
The guy who got famous betting against the housing market in 2007 just before that bubble burst - played by Christian Bale jn “The Big Short” - just wagered $1 billion on the collapse of the AI boom.
www.wsj.com/livecoverage...
www.wsj.com/livecoverage...
Michael Burry Returns With Two Big Shorts: Palantir and Nvidia
Signs of an AI bubble abound: Stock valuations have become uncomfortably rich, AI-related debt is ballooning, and a sustainable financial model for the technology has largely yet to emerge. Now Michae...
www.wsj.com
November 4, 2025 at 9:35 PM
The guy who got famous betting against the housing market in 2007 just before that bubble burst - played by Christian Bale jn “The Big Short” - just wagered $1 billion on the collapse of the AI boom.
www.wsj.com/livecoverage...
www.wsj.com/livecoverage...
Reposted by Eleanor Saitta
This is sometimes read as "look 'AI' isn't working". But the opposite is true.
_This_ is what "AI" is _for_. Push down labor power, push down wages, make employment more insecure.
https://www.theregister.com/2025/10/29/forrester_ai_rehiring/
_This_ is what "AI" is _for_. Push down labor power, push down wages, make employment more insecure.
https://www.theregister.com/2025/10/29/forrester_ai_rehiring/
October 30, 2025 at 12:07 PM
This is sometimes read as "look 'AI' isn't working". But the opposite is true.
_This_ is what "AI" is _for_. Push down labor power, push down wages, make employment more insecure.
https://www.theregister.com/2025/10/29/forrester_ai_rehiring/
_This_ is what "AI" is _for_. Push down labor power, push down wages, make employment more insecure.
https://www.theregister.com/2025/10/29/forrester_ai_rehiring/
Reposted by Eleanor Saitta
October 30, 2025 at 1:11 AM
Reposted by Eleanor Saitta
I know it’s overwhelming right now, but kick in your rational brain and risk measures and then evaluate if things are the same or as good as they were a year ago, ten years ago, etc. Is this something you would have considered normal or noteworthy? Is this what you’d expect from the gov or media?
October 29, 2025 at 9:16 PM
I know it’s overwhelming right now, but kick in your rational brain and risk measures and then evaluate if things are the same or as good as they were a year ago, ten years ago, etc. Is this something you would have considered normal or noteworthy? Is this what you’d expect from the gov or media?
Reposted by Eleanor Saitta
Hey, so as a veteran and incident responder I need to warn you to pay attention to something in America.
The human brain is resilient. While you’re watching kids get dragged away from the parents and people being beaten in the streets, you’re accumulating trauma but also being desensitized.
The human brain is resilient. While you’re watching kids get dragged away from the parents and people being beaten in the streets, you’re accumulating trauma but also being desensitized.
October 29, 2025 at 9:15 PM
Hey, so as a veteran and incident responder I need to warn you to pay attention to something in America.
The human brain is resilient. While you’re watching kids get dragged away from the parents and people being beaten in the streets, you’re accumulating trauma but also being desensitized.
The human brain is resilient. While you’re watching kids get dragged away from the parents and people being beaten in the streets, you’re accumulating trauma but also being desensitized.
Reposted by Eleanor Saitta
Reposted by Eleanor Saitta
“People aren’t misguided to want shelter from surveillance and harassment, or to seek high-context, community-centric moderation; all echo-chamber punditry notwithstanding, those are necessary conditions when life online has such direct and dramatic effects on the character of our offline […]
Original post on cosocial.ca
cosocial.ca
October 22, 2025 at 7:02 PM
“People aren’t misguided to want shelter from surveillance and harassment, or to seek high-context, community-centric moderation; all echo-chamber punditry notwithstanding, those are necessary conditions when life online has such direct and dramatic effects on the character of our offline […]
Hilarious side effect of the OpenAI pivot to porn plus the Swedish ban on online pornography purchases: Paying for ChatGPT in Sweden may be a criminal act soon.
October 22, 2025 at 10:22 AM
Hilarious side effect of the OpenAI pivot to porn plus the Swedish ban on online pornography purchases: Paying for ChatGPT in Sweden may be a criminal act soon.
@deviantollam Do you have faraday gloves for your chips?
October 16, 2025 at 8:17 PM
@deviantollam Do you have faraday gloves for your chips?
@effi The biggest attack against the civil liberties you claim to care about in Finnish history is happening right now and you only bothered to comment on one proposal with the most limp-wristed bit of policy critique I've seen in ages and you've done absolutely nothing to sound the alarm bells? […]
Original post on infosec.exchange
infosec.exchange
October 15, 2025 at 3:37 PM
@effi The biggest attack against the civil liberties you claim to care about in Finnish history is happening right now and you only bothered to comment on one proposal with the most limp-wristed bit of policy critique I've seen in ages and you've done absolutely nothing to sound the alarm bells? […]
So last night I just found out that the far right Finnish government is planning on gutting limits to police use of malware, wiretaps, undercover infiltration, and police/military intelligence data sharing, and eliminating some or all of the constitutional protections around personal […]
Original post on infosec.exchange
infosec.exchange
October 15, 2025 at 7:23 AM
So last night I just found out that the far right Finnish government is planning on gutting limits to police use of malware, wiretaps, undercover infiltration, and police/military intelligence data sharing, and eliminating some or all of the constitutional protections around personal […]