@gabsmashh It’s becoming an epidemic. I was at the car dealership the other day, and half the waiting room was having full-volume speakerphone conversations. Whatever happened to using the phone like… a phone? 😂
@ArtemPolynko A! As for B Forcing password changes every 30 days is outdated. NIST has found that frequent mandatory password resets often lead to weaker passwords, predictable variations (Password1 → Password2), and more risky user behavior. Better practice: use long, unique passwords, MFA!
@sec_hub93028@_DeejustDee My MCSE NT 4.0 doesn’t have an expiration date :). That said it’s a money grab though something’s like AWS change so rapidly it shows you stay up to date
@CyberRacheal Also a Real-world example: insurer denied a multi-million cyber claim because MFA wasn’t fully enforced. MFA is now a contractual control, not optional.
Phish-resistant MFA + strong enforcement (esp. admin accounts) = security and insurability.
https://t.co/DWQlAaAbFz
@CyberRacheal SCEP + cert-based auth is 🔥—phish-resistant MFA actually shuts down AiTM/phishing instead of just slowing it .
Pair it with YubiKeys for privileged accounts + short-lived sessions and you massively reduce token theft blast radius.
@niccruzpatane Took a model Y for a test drive yesterday the FSD worked really good. Only issue in MA we have rotarys (traffic circle in other states) caused is some challenges as it was waiting forever but not a big deal I took over to get through it then hit Self Drive again
@troyhunt I’m always amazed how different companies react when we report to them that their legitimate platform is being used for active phishing campaigns. Some take it serious one very large signing platform says “we need your account number to speak to you”
@cyber_razz By default or can you get them to? Default no. Add an an entry to the arp table (cam table Cisco terms) yes they can. Highering for networking I test on this by entering bad mac (all zeros) and have the work the osi model
@JeremysITLab I love the AND function of a calculator makes these things so easy. Non calculator my way of thinking of it 27 is x.x.x.1110000 so 32 multiply the 32 to arrive at B. Lower than that network is 128 next higher 192
Was recently ask “when is it the right time to start looking for a new job” my answer is “when you feel you can’t make a difference at the current company and you lost your passion for your job at that company”
@rootsecdev@DocuSign use to have a flat yearly sso fee now on a per envelope subscription there’s a per envelope sso tax how does that even makes sense?