Evariste
@evaristegal0is.bsky.social
🏳️🌈🦄 don't drink and root 🦄🏳️🌈
Reposted by Evariste
"writing code to solve a problem" used to have "understanding the problem" as a prerequisite. but vibecoding allows solution-shaped objects to be produced without any of the hard-won understanding. beware of solution-shaped objects.
November 24, 2025 at 12:16 PM
"writing code to solve a problem" used to have "understanding the problem" as a prerequisite. but vibecoding allows solution-shaped objects to be produced without any of the hard-won understanding. beware of solution-shaped objects.
Reposted by Evariste
Twitter accounts are based in Russia. BlueSky accounts are based in homes with, frankly, too many books, plants, obsolete cables, and pieces of rustic pottery, that could do with a bit of a tidying up, to be honest.
November 23, 2025 at 8:29 PM
Twitter accounts are based in Russia. BlueSky accounts are based in homes with, frankly, too many books, plants, obsolete cables, and pieces of rustic pottery, that could do with a bit of a tidying up, to be honest.
CIE ID non dovrebbe dare problemi al momento (ecco perche' la diversificazione e' importante)
Se qualcuno ha problemi ad accedere con SPID sappiate che il registro degli Identity Provider ufficiali di SPID è DOWN da circa 2 ore e quindi molti siti che usano Accedi con SPID danno errore appena si sceglia il provider da usare.
registry.spid.gov.it
registry.spid.gov.it
November 24, 2025 at 10:20 AM
CIE ID non dovrebbe dare problemi al momento (ecco perche' la diversificazione e' importante)
Reposted by Evariste
If I’m understanding this correctly, X is owned by a white nationalist who pays poor people of color in developing countries to pretend to be working class white Americans to scare other white Americans into being afraid poor people of color from developing countries are going to ruin America?
November 23, 2025 at 7:30 PM
If I’m understanding this correctly, X is owned by a white nationalist who pays poor people of color in developing countries to pretend to be working class white Americans to scare other white Americans into being afraid poor people of color from developing countries are going to ruin America?
Reposted by Evariste
Vaccines save lives.
And no, they do not cause autism.
And no, they do not cause autism.
November 22, 2025 at 5:00 PM
Vaccines save lives.
And no, they do not cause autism.
And no, they do not cause autism.
Reposted by Evariste
Reposted by Evariste
The International Association for Cryptologic Research has used heliosvoting.org – my online voting system – for a number of years.
This year, a trustee lost their secret key. The election has to be re-run.
Below, a few thoughts that didn't fit in the NYT piece.
www.nytimes.com/2025/11/21/w...
This year, a trustee lost their secret key. The election has to be re-run.
Below, a few thoughts that didn't fit in the NYT piece.
www.nytimes.com/2025/11/21/w...
Cryptographers Held an Election. They Can’t Decrypt the Results.
www.nytimes.com
November 22, 2025 at 2:40 AM
The International Association for Cryptologic Research has used heliosvoting.org – my online voting system – for a number of years.
This year, a trustee lost their secret key. The election has to be re-run.
Below, a few thoughts that didn't fit in the NYT piece.
www.nytimes.com/2025/11/21/w...
This year, a trustee lost their secret key. The election has to be re-run.
Below, a few thoughts that didn't fit in the NYT piece.
www.nytimes.com/2025/11/21/w...
Reposted by Evariste
Not even a small scale election run by and for cryptographers can be held online without complexity rearing its ugly head.
Go figure a general election!
Go figure a general election!
The International Association for Cryptologic Research has used heliosvoting.org – my online voting system – for a number of years.
This year, a trustee lost their secret key. The election has to be re-run.
Below, a few thoughts that didn't fit in the NYT piece.
www.nytimes.com/2025/11/21/w...
This year, a trustee lost their secret key. The election has to be re-run.
Below, a few thoughts that didn't fit in the NYT piece.
www.nytimes.com/2025/11/21/w...
Cryptographers Held an Election. They Can’t Decrypt the Results.
www.nytimes.com
November 22, 2025 at 10:15 AM
Not even a small scale election run by and for cryptographers can be held online without complexity rearing its ugly head.
Go figure a general election!
Go figure a general election!
Reposted by Evariste
La mail in cui il segretario generale del Garante della privacy chiede di violare la privacy dei dipendenti del Garante
La mail in cui il segretario generale del Garante della privacy chiede di violare la privacy dei dipendenti del Garante
E la notevole risposta negativa che ha poi portato alle sue dimissioni
ilpost.link
November 21, 2025 at 9:32 AM
La mail in cui il segretario generale del Garante della privacy chiede di violare la privacy dei dipendenti del Garante
Reposted by Evariste
Perché ho deciso di venire in Ucraina
Perché ho deciso di venire in Ucraina - Valigia Blu
Il viaggio in Ucraina di Arianna Ciccone per rendere omaggio da cittadina europea a un popolo che sta sacrificando i propri figli per continuare a proteggere la sua democrazia e sta lottando anche per...
www.valigiablu.it
November 22, 2025 at 6:09 AM
Perché ho deciso di venire in Ucraina
Reposted by Evariste
This thread reminds my yearly reports about phishing trend on Pitch platform (pitch.com). Happy to see my idea to share publicly this data was good :) (Pitch always supported me in this approach to Security)
Throughout 2025, Tycoon2FA (tracked by Microsoft as Storm-1747) has consistently been the most prolific phishing-as-a-service (PhaaS) platform observed by Microsoft. In October 2025, Microsoft Defender for Office 365 blocked more than 13 million malicious emails linked to Tycoon2FA.
November 21, 2025 at 6:35 PM
This thread reminds my yearly reports about phishing trend on Pitch platform (pitch.com). Happy to see my idea to share publicly this data was good :) (Pitch always supported me in this approach to Security)
Reposted by Evariste
Throughout 2025, Tycoon2FA (tracked by Microsoft as Storm-1747) has consistently been the most prolific phishing-as-a-service (PhaaS) platform observed by Microsoft. In October 2025, Microsoft Defender for Office 365 blocked more than 13 million malicious emails linked to Tycoon2FA.
November 21, 2025 at 5:23 PM
Throughout 2025, Tycoon2FA (tracked by Microsoft as Storm-1747) has consistently been the most prolific phishing-as-a-service (PhaaS) platform observed by Microsoft. In October 2025, Microsoft Defender for Office 365 blocked more than 13 million malicious emails linked to Tycoon2FA.
Reposted by Evariste
Good morning what a week
November 21, 2025 at 1:41 PM
Good morning what a week
qualcuno ha qualche bell'articolo da leggere su questo trend del microlearning nelle ads di vari social? (in particolare lo vedo su youtube uno social con video brevi che uso ancora) perché le persone pensano che imparare non comporti fatica, pazienza e fallimenti?
November 21, 2025 at 2:36 PM
qualcuno ha qualche bell'articolo da leggere su questo trend del microlearning nelle ads di vari social? (in particolare lo vedo su youtube uno social con video brevi che uso ancora) perché le persone pensano che imparare non comporti fatica, pazienza e fallimenti?
Questa risposta di Cosimo Comella è letteralmente arte, sto pensando di stamparla, incorniciarla, e appenderla al muro.
<<Ma certo, sono lieto di dare una mano alla tua carriera.>>
2/2
2/2
November 21, 2025 at 7:47 AM
Questa risposta di Cosimo Comella è letteralmente arte, sto pensando di stamparla, incorniciarla, e appenderla al muro.
Reposted by Evariste
I get these. I also get emails from people who tell me they taught themselves malware reversing and forensics with ChatGPT and they have discovered incredibly sophisticated malware on their phone that could only have been put there by a state actor. They send me their chat logs as "evidence."
I am by no means a prominent public intellectual, but my inbox is increasingly filled with messages from people who have been convinced by sycophantic chatbots that they have discovered revolutionary theories that entirely upend our scientific understanding of the universe.
November 21, 2025 at 5:09 AM
I get these. I also get emails from people who tell me they taught themselves malware reversing and forensics with ChatGPT and they have discovered incredibly sophisticated malware on their phone that could only have been put there by a state actor. They send me their chat logs as "evidence."
Reposted by Evariste
Feds now claim a "system crash" that happened immediately after ICE was sued is the reason why 10 days of footage from inside the Broadview Detention Center has been lost.
Unreal hearing on this earlier:
www.404media.co/ice-says-cri...
Unreal hearing on this earlier:
www.404media.co/ice-says-cri...
ICE Says Critical Evidence In Abuse Case Was Lost In 'System Crash' a Day After It Was Sued
The government also said "we don't have resources" to retain all footage and that plaintiffs could supply "endless hard drives that we could save things to."
www.404media.co
November 20, 2025 at 7:42 PM
Feds now claim a "system crash" that happened immediately after ICE was sued is the reason why 10 days of footage from inside the Broadview Detention Center has been lost.
Unreal hearing on this earlier:
www.404media.co/ice-says-cri...
Unreal hearing on this earlier:
www.404media.co/ice-says-cri...
Reposted by Evariste
Reposted by Evariste
Not sure who made this, but probably the most accurate representation of the current state of tech to date
November 20, 2025 at 10:59 PM
Not sure who made this, but probably the most accurate representation of the current state of tech to date
Reposted by Evariste
The SEC abandoned its case against SolarWinds on the same day that the FEC scrapped its cybersecurity rules for telecom companies — both instances of Trump appointees undoing what Biden appointees had done.
The tech and telecom industries are happy today.
Elections have consequences.
The tech and telecom industries are happy today.
Elections have consequences.
November 20, 2025 at 10:33 PM
The SEC abandoned its case against SolarWinds on the same day that the FEC scrapped its cybersecurity rules for telecom companies — both instances of Trump appointees undoing what Biden appointees had done.
The tech and telecom industries are happy today.
Elections have consequences.
The tech and telecom industries are happy today.
Elections have consequences.
Reposted by Evariste
Reposted by Evariste
Ah yup. Austin Larsen at the Google Threat Intelligence Group says it's basically the same group and same m/o.
"Our team at Google Threat Intelligence Group (GTIG) has observed threat actors, tied to ShinyHunters, compromising third-party OAuth tokens to […]
[Original post on infosec.exchange]
"Our team at Google Threat Intelligence Group (GTIG) has observed threat actors, tied to ShinyHunters, compromising third-party OAuth tokens to […]
[Original post on infosec.exchange]
November 20, 2025 at 6:28 PM
Ah yup. Austin Larsen at the Google Threat Intelligence Group says it's basically the same group and same m/o.
"Our team at Google Threat Intelligence Group (GTIG) has observed threat actors, tied to ShinyHunters, compromising third-party OAuth tokens to […]
[Original post on infosec.exchange]
"Our team at Google Threat Intelligence Group (GTIG) has observed threat actors, tied to ShinyHunters, compromising third-party OAuth tokens to […]
[Original post on infosec.exchange]
Reposted by Evariste
NEW: Salesforce says it's investigating a breach of customers' data after hackers targeted Gainsight, a company that sells a platform for other companies to manage their customers.
It looks like a near-repeat shituation to that of the Salesloft mass-breaches earlier this year.
It looks like a near-repeat shituation to that of the Salesloft mass-breaches earlier this year.
Salesforce says some of its customers' data was accessed after Gainsight breach | TechCrunch
Salesforce said it’s investigating an incident where hackers compromised some of its customers' data after breaching customer experience company Gainsight.
techcrunch.com
November 20, 2025 at 7:42 PM
NEW: Salesforce says it's investigating a breach of customers' data after hackers targeted Gainsight, a company that sells a platform for other companies to manage their customers.
It looks like a near-repeat shituation to that of the Salesloft mass-breaches earlier this year.
It looks like a near-repeat shituation to that of the Salesloft mass-breaches earlier this year.