Availability is the new confidentiality(TM). Gal Shpantzer, 2016

⚠️ Update: It has now been 24 hours since #Iran implemented a nationwide internet shutdown, with connectivity flatlining at 1% of ordinary levels. The ongoing digital blackout violates the fundamental rights and liberties of Iranians while masking regime violence ⏱

This one here is a goodie! A customer called us because they had several incidents where the system time "magically" jumped days, sometimes even months, back and forth (see screenshot). You can imagine the issues inflicted by this behavior. So the question was.. Cyber? Attacker?

In various business email compromise (BEC) cases, we later discovered that although the customer had set up a conditional access (CA) policy to enforce multi-factor authentication, mistakes had been made during the implementation of said policies. For example, certain resources

Goals

This one came directly for me this morning. Cc @punk_ab

Kinda wild that this "AI coding assistant" that creates GitHub PRs according to changes I request was almost entirely written by me prompting ChatGPT. About 700 lines of code, and really just two evenings performing iterated prompting & some cut/paste & some minor edits.

Got to connect with @RachelTobac on some of the latest AI deepfake news about Taylor Swift. Rachel is one of the top experts in all things social engineering and we decided to start recording our side chats for you all.

This.

Everyone: Telegram is encrypted. Experts: Telegram IS NOT an encrypted messaging app <CEO gets arrested> News: Telegram is an encrypted messaging app. Experts: Telegram IS NOT an encrypted messaging app.

This is what it looks and sounds like when your child breaks the world record at the Olympics. This is shot live from my perspective.

Please make this happen. I would love nothing more than to have an image parser run during a bugcheck

Has anyone in my network deployed Copilot for Microsoft 365 and users feel they're getting $30/mo value from it?

Dear Platforms: Stored blind XSS is NOT social engineering

Oh god I have to take a technical cert too. Okay. Let's do Networking Specialty. Practice question 1: Correct answer is B.

Interesting

The best part of my job is talking to rad people about their career and geeking out. This is one of my favorite episodes with CTO of @honeycombio, @mipsytipsy about her career, the future of observability, and the early days of a startup. https://t.co/6dKsecuscn

From the archives - at Strangeloop (RIP!) in 2017, @samstokes gave a terrific talk about the internals of our storage engine. https://t.co/GOrmo6uG29 This talk shows how we are able to deliver complex sub-second queries over vast data volumes in real time.

That's one of two long-form pieces by Alex Vondrak -- this being the other: https://t.co/YTnUhrlfsF -- which together provide a clear, grounded overview of how databases work. Both are fascinating and incredibly accessible -- if you haven't read them, PTAL. ☺️

And of course, it goes without saying, it has to be schemaless and handle any and every data type and structure, including as much high cardinality as you can throw its way. If you're a data nerd and you want to understand how this is done, I recommend: