@sqrt2 the only winning move is not to use #Microsoft Products like #Windows!

#AllGAFAMsAreBad #AllGAFAMsAreEvil #PRISM #ITsec #InfoSec #OpSec #ComSec

@geist Sorry, aber dass Microsoft nicht wegen illegaler Agententätigkeit für einen ausländischen Geheimdienst zwangsweise geschlossen und des Landes verwiesen wurde sagt doch alles über die lachhafte #ITsec, #InfoSec, #OpSec & #ComSec der Bundesregierungen aus...

@enigmatico At least #Microsoft works hard to increase #AttackVectors for #Azure / #Office365 / #OfficeOnline...

But hey, whoever uses that shit has basically given up on #ITsec, #InfoSec, #OpSec & #ComSec anyway and naively believes that jst because "everydoy else does it too" it won't bite them in the ass once @noybeu is done with the #GAFAMs...

Was lernen wir daraus?

1. Sei kein ekelhaftes Arschloch (also #JulianReichelt)!

2. Wer #Anonymität um jeden Preis will, sollte #InfoSec, #OpSec, #ComSec & #ITsec praktizieren.

3. #Medien können nur dann die eigenen #Quellen (zwangsweise) offenlegen wenn diese identifizierende Informationen hat.

4. #Quellenschutz muss trotzdem gestärkt werden!

https://www.wbs.legal/medienrecht/urteil-im-fall-julian-reichelt-quellenschutz-nur-mit-vereinbarung-67229/

@sec_yote_agenda yeah, that's very sad and I sincerely hope this doesn't happen to anyone - whether they just wasted time waiting or even took money and ran...

Granted I'm more used in #IT and espechally #ITsec, #InfoSec, #OpSec and #ComSec where a minor fuckup will ruin decades of reputation-building in seconds and it's more or less impossible to recover from that...

So it's quite the opposite...

So #Escrow seems more than reasonable to enshure people ain't paying and/or working for nothing.

@elaine I don't but maybe because I don't work >40 hrs a week solely on #ITsec...

#TorGuard and #CloudFlare are good indicators of everything that's wrong with #ITsec:

Mainly that the business model is full of #ValueRemoving #Rentseekers that sell #DigitalSnakeoil that'll only impress #TechIlliterates that have no idea what they talk about...

But don't take my word for it:
http://kaizushih5iec2mxohpvbt5uaapqdnbluaasa2cmsrrjtwrbx46cnaid.onion/page.php?q=blog&b=this-some-serious-bullshit-mah-nigga

@porkroll OFC that's why I demand to be allowed to install a #Linux of my #choice.

Heck I'll not only comply with every reasonable #ITsec rule but have always exceeded those, to the point that even if I ever wanted to do something nefrarious against a former employer, I couldn't.

And I think not enough people have that level of professionalism.

@porkroll WTF?

This is so typical for #remote #managed, #Windows-based #IT:

The #ITsec, #IfoSec, #OpSec & #ComSec gets completely trashed because fundamental tools ain't accessible and thus people are literally being forced to subvert it.

THIS is why I don't work as #IT for companies that don't provide me with #admin rights, because that's literally sabotaging employee productivity for no good reason.
https://toots.matapacos.dog/@porkroll/110777255070708961

@fla @Seirdy @neurovagrant But if you really have to face state-sponsored attackers of the #NSA kind you've already failed so hard in terms of #InfoSec, #OpSec & #ComSec that it's easier to fake the death of one than to even begin leveling up #ITsec.

So your points are entirely moot.

https://mastodon.social/@fla/110776269617206885

@Seirdy @neurovagrant problem is that #Signal literally implements #Cyberfacism by restricting functionality based off claimed user location (phone number)...

The fact that they can do that alone is concerning.

Now add #CloudAct to it and you badically have a giant #HoneyPot.

All #Centralized #singlevendor / #SingleProvider solutions are inherently bad from #ITsec, #InfoSec, #OpSec & #ComSec factors alone!

@Seirdy @neurovagrant just use #XMPP over #Tor then...
Also it's not done with "Just use Signal" because #ITsec, #InfoSec, #OpSec & #ComSec are all interlinked.

#Signal is for gullible #TechIlliterates that are too lazy to learn despite being #TechLiterate is part of their job.

Assholes like #GlennGreenwald for example...

Signal will inevitably crash down like #EncroChat and #ANØM before...

@neurovagrant no, because #Signal is a #proprietary #SingleVendor / #SingleProvider solition that is subject to #CloudAct and thus can't be secure by design.

If you really want #InfoSec, #OpSec, #ComSec & #ITsec, then #SelfHosting everything is key.

But that'll require #TechLiteracy and may not scale well...

IMHO self-hosting a #Zulip Server works good for organizational structures.

@md @bmi @bsi

Also like any #cellular #radio system, #TETRA devices constantly transmit data, making it trivial to locate and track any radio through passive #SIGINT.

The same way LEAs track peoples' mobile phones.

Likewise this is systemic per design and thus unfixable!

So basically the #OpSec, #InfoSec, #ComSec and thanks to #Windows the #ITsec of LEAs are f**ked and the correct fix is in between "impossible" and "painful to implement over more than a year"...

@FinalOverdrive @schrottkatze @enby_of_the_apocalypse @rechelon I know, but as much of a chaos as has been attributed to #Anonymous, they did some good...

And they did showcase that #TechLiteracy, #MediaLiteracy, #ITsec, #IfoSec, #OpSec & #ComSec are essential...

@androcat @JorisMeys

Needless to say that the non-teaching of #TechLiteracy and #MediaLiteracy including #ITsec, #InfoSec, #OpSec & #ComSec isn't an accident but systemically intended.

Because #TechIlliterate and/or #MediaIlliterate people are easy to control without being less productive in terms of taxable income as complete #Illiterates...
https://mstdn.social/@kkarhan/110752123481585671

@basisbit @fluepke @jaseg

What gets my blood boiling are companies that insult my intellect with flatout proven wrong statements re: #ITsec...
https://chaos.social/@fluepke/110746922701863199

@generationX awell, you can be private on the internet...

It just takes good #ITsec, #InfoSec, #OpSec & #ComSec...

@eniko if it was about #ITsec it would've been implemented in a way that lets #users, not #BigTech like #Microsoft, decide what to trust.
https://www.youtube.com/watch?v=s7WDbnHlc1E

Instead of #CensorBoot we would've gotten #NERF + #Heads...

But instead we get the same fundamentally unfixable bs that are #CAs...

@Joseph I've to disagree with @deviantollam on that part solely because #Cyberfacism at the U.S. border necessitates said #ITsec, #InfoSec, #OpSec and #ComSec...

Like even if I wanted to enter the #USA [which I don't considering the fact that more and more states try to criminalize the very existance of several of my mutuals and don't get any repercussions for doing so!] I'd certainly not bring any device with me with any data on it!

https://defcon.social/@deviantollam/110661856101798968