“But Microsoft promised to store our data in a European data center!” 🤡
#BuyEuropean
www.windowscentral.com/microsoft/wi...

We aren't even asking why ICE is even at these protests full of white ICU nurses and moms in vans. Like, why are they there? Looking for a Mexican drug gang in a suburban roundabout? Finding the secret foreign terror hiding in the trunk of a minivan?

They aren't even pretending to do […]

There are a lot of stories right now about #microsoft, the #fbi and #bitlocker

I've expanded my comments from this morning into a longer post.

https://shostack.org/blog/bitlocker-the-fbi-and-risk/

cc @lorenzofb @boblord @GossiTheDog

An open letter: stop spreading outdated advice about internet security

https://www.hacklore.org/letter

All this is BAD ADVICE. Don't…

• Avoid public WiFi
• Never scan QR codes
• Never charge devices from public USB ports
• Turn off Bluetooth & NFC
• Regularly “clear cookies”
• Regularly […]

This is beautiful; pure poetry: https://obsidian.md/blog/less-is-safer/

(Obsidian’s dependency-management philosophy.)

I have a suggestion: If you have a project or repo that's getting popular, stop writing features for a few months and implement this instead.

#softwaredevelopment […]

Proton Mail Falls Under U.S. Jurisdiction

If you read their Terms of Service, at first glance, they reference the laws of Switzerland. However, because they now have offices in the United States — along with registrations, trademarks, copyrights, and patents in the U.S. — they also cite U.S […]

A friend sent me the story of the LLM deleting a database during a code freeze and said "it lied when asked about it." I assert that a generative AI cannot lie. These aren't my original thoughts. But if you read Harry Frankfurt's famous essay On Bullshit (downloadable PDF here), he makes a very […]

"AI is a tool (sorry!) that people who are bad at their jobs will use badly and that people who are good at their jobs will maybe, possibly find some uses for. People who are terrible at their jobs (many executives), will tell their employees that they “need” to use AI, that their jobs depend on […]

Save the Date:

‪RT Disobey_Fi‬ disobeyfi.bsky.social‬

Psst! Some dates may have been confirmed!

Those dates may be Feb 13-14 2026!

disobey.fi/2026/

#infosec #itsecurity #disobey #disobeyfi #finland

New blog, Publish Your Threat Model!

At ThreatModCon, I gave a talk titled “Publish Your Threat Model!” In it, I discussed work that Loren Kohnfelder and I have been doing to explore the idea, and today I want to share the slides and an essay form of the […]

[Original post on infosec.exchange]

Neowin has a promotion in which they’re giving away my Threats: What Every Engineer Should Learn from Star Wars. (They also have Tanya Janca’s new Alice and Bob Learn Application Security and more.)

I know, he said never tell me the odds, but the odds of […]

[Original post on infosec.exchange]

After installing April's updates, Windows 10 and 11 systems now have an empty `C:\Inetpub` directory.

This seems... unexpected?

HEAR ME OUT
Charity infosec D&D steam
But it’s Kevin, Brian, Alyssa, Tarah, Deviant, and Patrick
And they have to rob a museum.

Vuonna 2024 julkisella sektorilla hankittiin yli miljardilla eurolla Microsoft-käyttöoikeuksia. Näihin käytettiin rahaa enemmän kuin mihinkään muuhun.

Rahaa pois Euroopasta, kriittisiin järjestelmiin, joilla Trump voi painostaa meitä huonoihin diileihinsä.

Tämä suunta täytyy nyt kääntää, nopeasti.