information   76776

« earlier    

Fox-IT hit by cyber attack - Fox-IT (ENG)
What a wonderfully transparent after-action review of an incident. Though changing the registrar password regularly doesn't seem like it would buy them much, as they kept their password in a vault and rarely used it (low chance of extraction/exfil), and the subtle implication the registrar got owned. Though as a mitigation to lack of 2FA, at the registrar, maybe worthwhile. But the real need is watching for abnormal events, which requires a registrar change feed or external monitoring, as you need to trigger on registrar change events or general DNS SOA changes.
DFIR  case  study  DNS  registrar  hijack  MitM  reference  information 
yesterday by asteroza
baby stuff
Jamie McDevitt
Developer
Aberdeen Asset Management PLC
T +44 1312 22 8356
aberdeenstandard.com
This email and any attachment are confidential and may contain privileged and copyright information. It is intended solely for the addressee. If you are not the intended recipient, please notify the sender immediately and delete this email. In accordance with good business practice and applicable regulations, all electronic communications with the Aberdeen Asset Management Group of companies may be monitored and retained. Aberdeen Asset Management PLC, Company Number: SC82015, Registered Office: Ten Queen's Terrace, Aberdeen AB10 1YG Scotland.
For  further  information  please  visit  our  website:  http://www.aberdeen-asset.com  and  www.aberdeen-asset.com/aam.nsf/AAM/privacy. 
yesterday by majjam
endless summer - surfing documentary
Jamie McDevitt
Developer
Aberdeen Asset Management PLC
T +44 1312 22 8356
aberdeenstandard.com
This email and any attachment are confidential and may contain privileged and copyright information. It is intended solely for the addressee. If you are not the intended recipient, please notify the sender immediately and delete this email. In accordance with good business practice and applicable regulations, all electronic communications with the Aberdeen Asset Management Group of companies may be monitored and retained. Aberdeen Asset Management PLC, Company Number: SC82015, Registered Office: Ten Queen's Terrace, Aberdeen AB10 1YG Scotland.
For  further  information  please  visit  our  website:  http://www.aberdeen-asset.com  and  www.aberdeen-asset.com/aam.nsf/AAM/privacy. 
2 days ago by majjam
Keepers of the Secrets
"In the process of writing the book, Grann said, through all the archival work, there’s 'a kind of relationship with these documents that you begin to develop as you become more familiar with them, and as you hold them, and as you look at them.' He likened it to the relationship you develop as you speak to someone, face to face, in an interview; it’s more than you could ever get over email. 'I thought the *handwriting* in that ledger was revealing,' he said. 'It was just a simple word. And I just kept thinking, "Who was that bureaucrat who kept writing this word 'dead'?" And I just would look at the handwriting, and that’s all they wrote, and in that word it contained volumes of hidden history, suffering, death, poisonings — souls.'"
a:James-Somers  p:The-Village-Voice  d:2017.09.20  w:3000  information  history  organization  process  from instapaper
3 days ago by bankbryan
What Are We Willing to Know?
The problem with deciding not to inform ourselves is the assumption that attempting to understand the vast web of systems on which we depend is optional. The principle that ignorance is no excuse dates back to the ancient Romans. And towering theologians like Thomas Aquinas and Jonathan Edwards have affirmed it as a theological principle, arguing that willful ignorance of things one is "bound and able to know" is a sin. In some circumstances we call it failure of "due diligence," a phrase that implies an obligation to find out those things on which our lives, welfare, and moral integrity depend. Obviously, no one of us is "bound and able" to acquire a working knowledge of all that affects us. But it's good for us to know the rudiments of anatomy to care for our bodies, and enough biochemistry to understand roughly what high-fructose corn syrup does; it's good to know something about how our cars and our waste disposal systems work (or don't) and why recycling is a good idea. It's good to understand what "free market" and "regulation" actually mean in practice. We need to know what a "carbon footprint" is, and why deforestation matters. We need to know why overuse of antibiotics and careless disposal of them are problems.
knowledge  information  ethics  from instapaper
3 days ago by ayjay

« earlier    

related tags

00-top  20017  a:james-somers  access  address  adm  advice  aiona  algebra  alternative  analysis  and  api  application  architecture  archive  article  articles  attack  aws  axiom  b2b  banking  barcode  bestpractices  bias  bitcoin  books  both  botnet  brexit  british  build  business  buyer  buying  c  canggu  card  cardcatalog  case  cataloguing  causal  certificate  charts  china  christopherfuchs  chunks  cli  command  common  company  comprehension  consommation  containers  context  contract  credit  cryptocurrency  curl  d:2017.09.20  data  dataviz  defense  design  development  devops  dfir  disinformation  dns  docker  documentation  dotnet  dynamodb  ebook  ecs  education  elements  empirical  employee  employment  empowerment  encyclopedia  endpoint  environnement  ethics  eu  europe  evaluation  exchange  exercise  expat  extensions  external  extraction  facebook  fact  facts  fake_news  fakenews  financial  fix  flow  food  for  formation  free  further  geek  genius  geometry  git  github  go-to-market  gov.uk  government  graph  graphic  graphs  gravity  group  groups  guide  hacking  health  here  hijack  history  howto  html  http://www.aberdeen-asset.com  httpclient  ia  identification  imei  indefinite  indexing  info  infoethics  infographic  infographics  informationoverload  informationskompetens  input  instapaperlike  instruction  intellect  interface  internet  interpretation  introduction  ip  ischool  japan  javascript  junkyard  jupyter  keskiviikko  knowledge  labor  law  leak  leakage  learning  library  light  line  linear  links  linux  list  log  machine  mainstream  malware  man  manual  maps  markdown  marketing  materials  mathematics  matrix  matweb  media  millers-law  misinfo  misinformation  mitm  mobile  monitoring  msim  name  navigation  ndl301  network  networking  neural  news  node.js  npr  numpy  observation  open  opensource  organization  otf  our  output  owasp  p:the-village-voice  participation  pentesting  phase  phone  physics  pizza  please  plot  plotting  podcasting  politics  power  probability  process  produkte  programming  propaganda  protocol  psychology  python  qbism  qrcode  quantum  quebec  quotes  r  radlib  recipe  recon  reconstruction  reddit  reference  registrar  remembering  research  review  reviews  russia  s3  sales  sample  science  search  security  self-help  service  shiny  simplicity  smell  social  software  source  spring  startup  state  statistics  storytelling  strategy  streams  study  superposition  syntax  sysadmin  systems  table  tactical  tech  technology  terminal  thingsyoucando  tldr  togaf  tool  transparency  travel  trust  tumblr  tutorials  type-compendium  uganda  ui  uk  unix  unpacked  usability  user-agents  user  userexperience  username  ux  validation  verbraucher  video  videos  vim  visit  w:3000  warhnung  wave  web  webapi  webdesign  website:  weight  wen  wiki  word  wordlist  writing  www.aberdeen-asset.com/aam.nsf/aam/privacy.  your  youtube  zap 

Copy this bookmark:



description:


tags: