SwiftOnSecurity Profile picture
computer security person. former helpdesk.
Aquarion/Nicholas❎ Profile picture Jimmy Profile picture sally paddles Profile picture Minh-Triet Pham Tran Profile picture Shannon Barrett Profile picture 69 subscribed
Nov 30 7 tweets 2 min read
The full-length multi-hour compendium of real-time reactions to 9/11 is definitely shocking and something I encourage.
I was in middle school. Class was cancelled. I heard gossip and didn’t experience in-real time. I got home… I saw CNN loop the videos. And I dropped pack. Thud. To understand 9/11 you have to know the world before 9/11. That is the metric. And I don’t know how you do that.
Nov 7 4 tweets 1 min read
Instilling sense of immediate urgency in your action is one of greatest ways to short-circuit human rationality. We were built to take decisive action in emergency.

It takes immense maturity and introspection to override this. And you will still fail. I have.

See it. Resent it. Anything that frames your decisions in the context of time must immediately reset your good-faith execution.

Something maybe isn’t right here.

I will tell you a story from when I was 24 and presented with a contract. I had awareness to alarm. But not walk away. I did it anyway.
Oct 23 8 tweets 2 min read
I have a reputation at work 😊 Image It was caused by a security agent program 😔
Sep 20 7 tweets 2 min read
My company has a possible long-term vision to share our internal materials on IT Security.

But really a whole lot of what I do settings-wise is just implement much of the Windows Security Baseline. It’s not gospel, some stuff I remove, but it’s 👌 solid.
microsoft.com/en-us/download… If you want to understand many fundamentals of Windows, you should be able to understand and explain every setting in the Microsoft Security Baselines.
I have sat for hours giving lectures on this during my familiarization meetings with our Ops group to teach them for buy-in sake
Sep 19 6 tweets 2 min read
Know how I harp on basics? Continually look at underlying fundamentals of stuff you interact with? Because others aren’t?

Few years ago I was examining the returned data in a popular web app, and found a PII leak.

$10,000 bounty reporting it. (Obfuscating exact# for anonymity) Image I have one bug bounty. It’s $10,000.
I do have experience with web stuff but I can’t program it and I’m not a bug hunter. I cannot audit web apps beyond the most basic stuff you could learn in a couple days.
All I did was be curious…
Sep 1 17 tweets 3 min read
For years, I have had a story I have wanted to tell. About an artificial intelligence that precedes the others. An accident. An artifact of time, doomed within it.

This is that story. The Long Lines to Caravelle

a short story

Sep 1 4 tweets 1 min read
If you're worried about browser exploits then before you start hardening against 0-days and centrally patching, you need to turn on the setting to goad users into restarting their browser or doing it for them. babodee.wordpress.com/2020/06/16/man…
Image Before you start jumping to fancy military cyber, you need to understand the application so it is set to succeed on its own. Only then should you be investing time in toolchains and orchestration.
Aug 27 5 tweets 1 min read
I've increasing grown to detest the phrase "this is not who we are." Yes it is, it just happened. That phrase does nothing to correct the status-quo and dishonors the victims.
There was a massacre in your city.
Mismanagement let hundreds burn to death.
3 homeless froze to death. I'm of mind we do not ascribe communal blame nearly enough. Otherwise you are left chasing phantoms. What else impetus is there in a representative system hallowing petition?
You should feel ashamed. You should be implicated. What else is there left but your inaction, and God?
Aug 25 4 tweets 1 min read
Can you imagine the US military response if Taylor Swift encountered an issue overseas. She is our cultural carrier strike group. Taylor Swift had to cancel Thailand last tour due to political upheaval. What if that happened during the concert. You don't think they wouldn't be sending the Osama bin Laden helicopters?
Aug 13 4 tweets 2 min read
Go get explosive gas+monoxide detector. $50. I bumped my stove and turned on a burner one time by accident.
And if you have Alexa, it can alert your phone when a siren like this is going off remotely. https://t.co/PpPlBjMSrwamazon.com/Nighthawk-Mono…
NOTE YOU CANNOT TEST RESIDENTIAL GAS DETECTORS BY JUST PUTTING THEM NEAR A BURNER FOR A BIT. To reduce false alarms the sensor has to see a consistent raise in concentration.
Aug 12 12 tweets 2 min read

Here's the thing about communication. After a few words your possibility space is more atoms than the galaxy.

You haven't iterated enough. You need to experiment. Here's what I've learned ~20 yrs in support messaging.🧵 FIRST: Are you actually interested in being more effective in communication with users?

If you're happy just repeatedly blaming the other party as idiots and that's fine, you put your work in plain language and now you're done, you can pick that! Many do.

Go for it. Sign off.
Jul 8 7 tweets 2 min read
A story.

An enterprise data application has been down for a day. 60 people from the company contractors and vendor have been on and off the same 24/7 service bridge call trying to fix it.

They are currently waiting for a restore process and have been for hours.

Then I log in. P1's are my television. I don't have television. So I login and sit there and listen and learn and monitor.

Plus it marks my status in Teams as busy. What a hack.

There's back and forth chat, numerous people unsure what's happening with the restore but there's no errors so far.
Jun 26 19 tweets 4 min read
Troubleshooting walkthrough:

Tonight I need to write a narrative of a case where a user complained a new browser add-in broke their mouse. This got escalated to me as the final tier.

I'm going to lay it out here first, because saying I'm working while laying in bed sounds cool. User calls Helpdesk. They can't cut and paste anymore. They notice a new browser extension, deployed via corporate policy as expected in a new push.

Helpdesk can't disable the extension. Worse, using the options in the extension doesn't help! Well work is done, escalate case!
Jun 18 5 tweets 2 min read
Straight-up: Had people straight out of modern courses to InfoSec teach me stuff I did not know. THERE WAS NO CURRICULUM for most you see with senior titles. We figured a bunch of random stuff out in other jobs and moved into this. Learn from them, but don't undersell yourself!!! Senior people are great to give you perspective and insight on why things are or traps that take pain to really instill. But you can also contribute, having learned the very latest iteration of stuff. Especially with cloud these days, it is hard to keep up.
May 25 20 tweets 6 min read
HOW: I solved a problem I couldn't figure out. But neither could anyone else.
We don't talk enough about the troubleshooting process, which includes failed theories and ventures! And oversights. The key is powering through, and learning from it. 🧵

For a prv thread, 👀below. Challenge: For reasons, _all_ traces of a software have to be removed from the massive network.

Before this gets to me, multiple teams have tried uninstalls and a vendor tool, but there are a few hundred machines left. Any remaining % is a failure.

Gets to Security. Still ❌.
May 24 4 tweets 1 min read
Yeah I don't do much on my home PC either. I flip some telemetry stuff off but that's mostly it. I know and have discovered so much random issues I fortunately had the knowledge and ability to troubleshoot to know it was my fault. Most people don't. That's why I don't recommend. Enterprise IT staff get to see the results of forays into advanced customizations, across thousands of devices and user-decades of testing. I started off deeply editing everything I could. But it's just not worth it except some basic stuff unless you're an enthusiast learning.
May 24 4 tweets 1 min read
I've gotten into local estate sales and oh my god the rooms and rooms and rooms of monster assemblages of just worthless duplicative crap is endless. Just FYI if you die other people will browse the entire collection of your life and insult your crappy taste in everything.
May 23 4 tweets 1 min read
Microsoft piss off your OEMs by turning the Xbox which literally already runs Windows 10 into a hardened cloud PC access terminal Challenge Imagine getting an Xbox as part of your job welcome package. Hell it's not even worth asking to send it back if they leave.
May 16 4 tweets 2 min read
I ask ChatGPT multiple questions I have a day and then discourse with it on aspects I'm curious about. Like yesterday I wanted to know why people live in Ohio. And it used a term I didn't know, so I asked. Image More samples of how I use ChatGPT for non-work stuff ImageImageImageImage
May 12 7 tweets 2 min read
Do not quote me, but (bless him) I _think_ Dan Kaminsky was involved in getting ICANN to ban selling TLDs like ".local" (or similar) which would have reamed the entire globe's corporate networks.
He did so much behind the scenes with a big picture view. An incalculable loss. While I'm here, I just wanted to say how effusively kind Dan Kaminsky was to me.
I'd just get random DM's of compliments and asks of what I thought the biggest problems facing the web and technology were. So that he could help solve them. That's what he did. Try to fix the world. Image
May 12 4 tweets 1 min read
Really. .zip.
ICANN are fucking deplorable endorsing namespace confusion. Dan Kaminsky and I chatted about his work to stop dumb shit like this behind the scenes.