@Sebastian Scharf beobachtet. Die Branchenbezeichnung #cybercyber sorgt dabei für angemessene Distanz und ironischen Mehrwert, wenn man sich mit solcherlei Publikum überhaupt unterhalten muss.

I have a couple #Cyberwehr Patches left - probably won't make another batch of them in the foreseeable future. So, if you want to help out clear the stock until my new hacker-patches arrive, you can get the last couple of them here:

https://cyberpatch.lol

#cyber #cybercyber

Ich kann Menschen nicht ernst nehmen, die im professionellen Kontext das Wort "Cyber" ernsthaft verwenden. #cybercyber

Blacklight wall @ #eh20 K1
#cybercyber #Feuerwehr #cyberwehr

uff uff uff #cyberCyber

https://www.heise.de/news/Cyber-Angriff-auf-IT-Dienstleister-Materna-8155606.html

Schon etwas speziell, aber nicht mal so schlecht abgeschnitten beim #TGIQF #AküFi. #CyberCyber https://social.heise.de/@heiseonline/109839939125898883

Back on the tracks. #cybercyber

On January 19, a team of us ran the 6th #HackersOnTheHill. 100+ hackers met and briefed 20+ congressional staffers in the morning. The White House invited dozens of us to brief them afterward.

It was a massive success! Thank you to all who helped and participated.

First, thank you, @spowazek for helping make things run so smoothly this year! Building on the automation and structure that you and Jennie built last year, this year scaled up (way up) gracefully with more than 50% growth!

Thank you, @RoRo for recording the public portion of the event, printing posters and stickers, and laser etching nameplates. Lots of work. And last year, building the streaming infrastructure that made it possible to accommodate virtual and in person participation.

Thank you, @winnona for being among the eagerest of us to keep the wheels turning, even cold calling Congressional offices to make sure members involved in cybersecurity legislation had the opportunity to engage.

Thank you, Katie Trimble-Noble for helping herd us to make sure the event ran smoothly and everything was thought through! And for helping inform hackers about what staffers do.

Thank you, @HarleyGeiger for supporting the event for the past several years, both in planning and organization, as well as briefing us on current events in cyber policy on the Hill. https://youtu.be/OUspGKVWYWQ?t=32

Thank you, @jackhcable for coordinating with staffers, lining up an interview subject, and getting a space! Last year your work was critical, flexing your bureaucracy hacking skills to organize space and entrance during pretty intensely constrained conditions.

Thank you to the many Congressional staffers who value engagement with the community. Who learn from us to get better at what you do, and who turn our knowledge into action. Especially Jeff Rothblum who showed us a day in the life of a Congressional staffer. https://youtu.be/cP4fSn4vyHE?t=233

Thank you to the increasing number of security researchers who value engaging with policymakers. We've come a staggeringly long way in six years. The next six will be moreso.

Thank you for saying 'cyber' unirionically and for doing the hard thing - peopleing for good.

Thank you to the National Cyber Director, Chris Inglis, and the Federal CIO, Clare M. for bringing us to the White House for amazing discussions. And to their staff who made the process easy enough even a hacker could get our WAVES forms done. Well, most of us. ;) https://www.whitehouse.gov/oncd/briefing-room/2023/01/19/readout-of-office-of-the-national-cyber-director-meetings-with-cybersecurity-researchers/

Finally, a BIG THANK YOU to Nick Leiserson, who started it with the simple words "I wonder if some hackers would enjoy a tour of the Capitol building," and now brought us to the White House.

To the many big dreams that start with "I wonder what would happen if..." and lead us to better things.

AFAIK, this year was the largest gathering of the security researcher and public policy communities. A major milestone, built by a misfit group of altruists doing good.

If you want to participate in future years, sign up on our interest form. https://hackersonthehill.org

#cybersecurity #cyberpolicy #cybercyber #congress #whitehouse

Dear Customer,

We are contacting you to keep you updated regarding your order with Lack of Afro that is due for dispatch now, or in the coming weeks. Royal Mail are still experiencing delays from their recent cyber attack. There are some indications that parcels are beginning to ship, so we are hopeful of this being resolved soon, but do not have a timescale to provide at this time."

#RoyalMail #cybercyber

https://www.youtube.com/watch?v=WY6KkRsS26M

Jetzt, bis 16 Uhr, #Anhörung zur #ITSicherheit im #Bundestag.

Stream: https.://www.bundestag.de (etwas runterscrollen)

Infos und Stellungnahmen https://www.bundestag.de/dokumente/textarchiv/2023/kw04-pa-digitales-928536

#cybercyber

Dann war die Stadtverwaltung #Potsdam also keine 24h komplett wieder am Netz. Auch eine Leistung.
Erinnert mich ja schon ziemlich an die Zeitbeschränkung, die wir für die Kinder beim Tablet eingerichtet haben.
#cybercyber

Pünktlich zum Warntag um 11:00 geht https://warnung.bund.de/meldungen down. #DoS by Design. #cybercyber #cybersicherheit

Der Moment an dem man realisiert, das man Cyber Cyber Compliance macht...

#Compliance #Security #CyberCyber

@zackwhittaker cc @barzik #cybercyber

J. Dykstra et al., "Sludge for Good: Slowing and Imposing Costs on Cyber Attackers"¹

Choice architecture describes the design by which choices are presented to people. Nudges are an aspect intended to make "good" outcomes easy, such as using password meters to encourage strong passwords. Sludge, on the contrary, is friction that raises the transaction cost and is often seen as a negative to users. Turning this concept around, we propose applying sludge for positive cybersecurity outcomes by using it offensively to consume attackers' time and other resources.
To date, most cyber defenses have been designed to be optimally strong and effective and prohibit or eliminate attackers as quickly as possible. Our complimentary approach is to also deploy defenses that seek to maximize the consumption of the attackers' time and other resources while causing as little damage as possible to the victim. This is consistent with zero trust and similar mindsets which assume breach. The Sludge Strategy introduces cost-imposing cyber defense by strategically deploying friction for attackers before, during, and after an attack using deception and authentic design features. We present the characteristics of effective sludge, and show a continuum from light to heavy sludge. We describe the quantitative and qualitative costs to attackers and offer practical considerations for deploying sludge in practice. Finally, we examine real-world examples of U.S. government operations to frustrate and impose cost on cyber adversaries.

#arXiv #ResearchPapers #CyberCyber #CyberDefence
__
¹ https://arxiv.org/abs/2211.16626

Going to end the weekend with the latest episode of Peripherie.

Still waiting for a movie / series adaptation of Neuromancer. 🤓

#siencefiction #cybercyber

@EDPS I’m also curious whether NATO has a position on its members’ obligations (or otherwise) on #spyware and #hacking tools (“offensive” #cybercyber). I remember about 8 years ago, officials at NATO HQ had to learn what its largest member/funder was doing on this from Edward Snowden’s leaks… 🤨

Parts of the “cyber community” that are enjoying the current unregulated free-for-all with spyware? 😉 #cybercyber

RT @vmanancourt@twitter.com

Hearing increasing grumblings from the cyber community that the European Parliament's PEGA report is ill thought through. Please DM me with your thoughts if this sounds like you (and also if it doesn't, and you think the report is great :) ) Contact details in bio.

🐦🔗: https://twitter.com/vmanancourt/status/1590316841205141504

#popcorn #schönbohm #cyberclown #bsi #nancyfaeser #spd #cybercyber.
https://www.heise.de/news/BSI-Affaere-Kaltgestellter-Schoenbohm-zieht-vor-Gericht-7330915.html

Zeiba-Angriff.

#cyber #cybercyber #hyperhyper