Every year at this time (except the last 2 🦠), our city gets turned into a race track for the #GC500, with pit lane down the end of our street. 3 days of race cars, jet flybys and loud engines. It’s perfect 😊
View from the ground, what a location! 🏎️
Supercars to the left, this to the right 😍
Want to smoke? There’s a special pen for you near the toilets (but you can’t take your beer in there).
• • •
Missing some Tweet in this thread? You can try to
force a refresh
Losing my mind a bit with the @bigassfans app. Connect to their broadcast network, finds the device, join it to my network then… nothing. 3 different fans, exactly the same experience. 1/n
Fans are definitely on the network as they all show up in @Ubiquiti so join is successful. They're on the 2G band (I believe that's all they support) and have stable connections. 2/n
The @home_assistant Haiku integration also picks them up and successfully controls them so they're *definitely* on the network and communicative. 3/n
I love that part of the Microsoft Security Score for Identity in Azure improves your score if you *don't* enforce password rotation, what a sign of the times! Who out there still works somewhere that forces rotation (because "reasons")?
Geez there’s some debate about this one! Mostly support but also some misunderstanding so let’s fill some gaps:
Firstly, password managers don’t solve this problem, not when you’re talking about the credentials to logon to your PC. That’s a rare case where you need to type it…
…unless you’ve gone passwordless via security keys, biometrics etc. Clearly this negates the need to use the password with such frequency thus reducing the opportunity for compromise. There may still be a password (e.g., fallback from biometrics), but exposure is much less.
Firstly, good stuff re earlier notification. Data such as what was exposed by the #OptusHack is most valuable when it’s freshest because impacted parties aren’t aware and haven’t taken appropriate action.
But banks are only a small part of the picture and arguably, much more damage is done when email and social accounts are compromised. But there’s not the same regulatory controls over them and it’s easier to quantify financial loss rather than privacy loss.
With the preface that all this is "alleged" at this time, there's a post on a popular hacking forum from 12 hours ago making some pretty major claims:
"There's another DB in the Oracle server we're in, it's called "cabinet cloud" and it's 34GB in total. No idea why it's here and what it's for, but we're releasing it because we don't think we'll need it.
Here's the video of the tables:"
Waiting for me on arrival home was a care package from @Ubiquiti. Let’s start unboxing and full disclosure: they’ve sent me a bunch of bits (including these ones) since I spent up big, re-did my whole house and decided I loved the gear: troyhunt.com/ubiquiti-all-t…
So, what is a “G4 PTZ”? It’s the top of the tree camera that sits above the G4 Pro (4K cam used for the photo in my tweet of my back yard just now) and looks totally kick arse ui.com/camera-security
It comes in a bag. And a *very* heavy base, must be several kg right there.
Anyone seen a link to this data? Or the Telegram channel in question? DMs are open if you can help. vpnmentor.com/blog/mgm-leake…
Thanks to the folks that reached out and sent this to me, I now have it. Almost 25M addresses so substantial, but one burning question: is this part of the incident from a few years ago? Or a discrete breach? Update the old one or load a new one? haveibeenpwned.com/PwnedWebsites#…
I've concluded that this is highly likely to be the same incident from 2019. The total row count is *identical* to what was being sold years ago: zdnet.com/article/a-hack…