Working at front lines of the IT and having fun there. Been around the Internet since 1992 and still in awe what has become of that little baby. Personal interests: - Books (mostly F&SF) - IT Security - Computer Games & RPG - Cooking - Movies - Everything that blinks, has buttons to press and looks remotely gadgetoid Everything i write, post, tweet, blog or blurp is just my personal opinion and is not the opinion or policy of my employer, my cat or my goldfish. I post in English and German. Will try to mark each post correctly, but errors happen. Sorry for that.
Public Key
npub1m7vxz9lyfxgp4sdc987pwcly0r8yq2vymxarwswdfd9339t3j87sqazdpz
Profile Code
nprofile1qqsdlxrpzljynyq6cxuznlqhv0j83njq9xzdnw3hg8x5kjccj4cerlgpz3mhxue69uhhyetvv9ujuerpd46hxtnfduqs6amnwvaz7tmwdaejumr0dsah2che
Author Public Key
npub1m7vxz9lyfxgp4sdc987pwcly0r8yq2vymxarwswdfd9339t3j87sqazdpz Show more details
Published at
2024-03-20T11:30:43+01:00 Event JSON
{
"id": "febff0bd15bad602c77e5c3dd7bf3865ec2c5e590044c75762808eb447f3212f" ,
"pubkey": "df986117e449901ac1b829fc1763e478ce402984d9ba3741cd4b4b18957191fd" ,
"created_at": 1710930643 ,
"kind": 0 ,
"tags": [
[
"proxy",
"https://infosec.exchange/users/masek",
"activitypub"
]
],
"content": "{\"name\":\"Martin Seeger\",\"about\":\"Working at front lines of the IT and having fun there. Been around the Internet since 1992 and still in awe what has become of that little baby.\\n\\nPersonal interests:\\n\\n- Books (mostly F\u0026SF)\\n- IT Security\\n- Computer Games \u0026 RPG\\n- Cooking\\n- Movies\\n- Everything that blinks, has buttons to press and looks remotely gadgetoid\\n\\nEverything i write, post, tweet, blog or blurp is just my personal opinion and is not the opinion or policy of my employer, my cat or my goldfish.\\n\\nI post in English and German. Will try to mark each post correctly, but errors happen. Sorry for that.\",\"website\":\"https://infosec.exchange/@masek\",\"picture\":\"https://media.infosec.exchange/infosec.exchange/accounts/avatars/109/456/161/185/962/395/original/5ff6d77e55e27128.png\",\"banner\":\"https://media.infosec.exchange/infosec.exchange/accounts/headers/109/456/161/185/962/395/original/852fe68e939e858f.png\",\"nip05\":\"[email protected] \"}" ,
"sig": "7fa1d9d31f7649d3bd0a13e8f209559cbb79109f3bd4e4577f089a8000986e0528ef6c47a71851e6cfec540afc2a4183e737b05380358afa812a851a17f2e509"
}
Last Notes npub1m7vxz9lyfxgp4sdc987pwcly0r8yq2vymxarwswdfd9339t3j87sqazdpz Martin Seeger Watching the #windows #recall disaster is like watching an accident in slow motion where cannot look away even though one knows, it won't be pretty 😢. If it were a train, I would look for an emergency brake, but #microsoft goes full steam ahead. npub1m7vxz9lyfxgp4sdc987pwcly0r8yq2vymxarwswdfd9339t3j87sqazdpz Martin Seeger Last night I got a visit from the #infosec fairy. She said: "Martin, you have been doing a lot of good security deeds, I decided to grant you a wish." I replied: "Great, I always wanted a unicorn." The fairy looked pained: "You know, unicorns are extinct. That is a very difficult wish. Do you have another one?" I thought long and hard: "How about a working IT security process?" Now I have a question for the community: **What does a unicorn eat?** npub1m7vxz9lyfxgp4sdc987pwcly0r8yq2vymxarwswdfd9339t3j87sqazdpz Martin Seeger The most feared words on the Internet "We improved our product" Inspired by @npub1rm7…22fk npub1m7vxz9lyfxgp4sdc987pwcly0r8yq2vymxarwswdfd9339t3j87sqazdpz Martin Seeger What lies on my belly and purrs? Hsppy #caturday from the resident hotel cat. https://media.infosec.exchange/infosec.exchange/media_attachments/files/112/341/951/670/608/826/original/9a08d4d028204b20.jpeg https://media.infosec.exchange/infosec.exchange/media_attachments/files/112/341/951/774/984/720/original/3e6313b408e56eeb.jpeg npub1m7vxz9lyfxgp4sdc987pwcly0r8yq2vymxarwswdfd9339t3j87sqazdpz Martin Seeger If you do 12 Bitcoin transactions per year, you use a higher amount of energy than we use for a complete family (including: heating, warm water, electricity, car charging) in the same year. We do all via electricity. From: [@tkinias](https://historians.social/@tkinias) https://historians.social/@tkinias/112283441665687815 npub1m7vxz9lyfxgp4sdc987pwcly0r8yq2vymxarwswdfd9339t3j87sqazdpz Martin Seeger If Noah would build his arch nowadays, it would be probably have to carry cars instead of animals as people become less and less willing to leave those behind. The images from Dubai inspired that thought. https://media.infosec.exchange/infosec.exchange/media_attachments/files/112/285/817/187/112/146/original/cd0958b8b187a2fa.png npub1m7vxz9lyfxgp4sdc987pwcly0r8yq2vymxarwswdfd9339t3j87sqazdpz Martin Seeger Same is true for anyone following you. DM me your snail mail address so I can send you proof 😏. npub1m7vxz9lyfxgp4sdc987pwcly0r8yq2vymxarwswdfd9339t3j87sqazdpz Martin Seeger For reasons ... https://media.infosec.exchange/infosec.exchange/media_attachments/files/112/211/784/957/148/431/original/d206dc969efbc6c0.jpg npub1m7vxz9lyfxgp4sdc987pwcly0r8yq2vymxarwswdfd9339t3j87sqazdpz Martin Seeger The smell of this attack is strange mixture of genius and amateurism. I cannot be sure, but I would bet my money on a single or small group of males. But I should be more careful about asuming a gender. npub1m7vxz9lyfxgp4sdc987pwcly0r8yq2vymxarwswdfd9339t3j87sqazdpz Martin Seeger Worst case outcome: Yes and not few. It depends a lot on attacker intentions. If he had left the backdoor there for a sufficient time and then used it for a self-replicating wiper, the death toll would have been devasting. npub1m7vxz9lyfxgp4sdc987pwcly0r8yq2vymxarwswdfd9339t3j87sqazdpz Martin Seeger Nobody died because it was found early on by freak chance. I come from the the security standpoint and look at "worst possible outcomes". The impact of VW shit was higher, because they brought it into mass production. If the attacker had succeeded there, my estimate is that we would have seen even worse damage. But I agree that this is debatable. npub1m7vxz9lyfxgp4sdc987pwcly0r8yq2vymxarwswdfd9339t3j87sqazdpz Martin Seeger What VW did was extremely bad and a murderous crime. But this was worse by at least an order of magnitude. npub1m7vxz9lyfxgp4sdc987pwcly0r8yq2vymxarwswdfd9339t3j87sqazdpz Martin Seeger Concerning the xz affair, I am struggling on how to explain this to a normal person. The best approach so far: This is as if an attacker succeeded in manipulating the manufacturer of a small part that is built into every car worldwide. Every car that would have been built in the future, the attacker could crash upon pressing a button. And we noticed only because a car fanatic took a prototype to the racetrack and noticed that when he drives it backward through with hand brakes applied, the lap time would be half a second off. npub1m7vxz9lyfxgp4sdc987pwcly0r8yq2vymxarwswdfd9339t3j87sqazdpz Martin Seeger Zu der xz-Affäre überlege ich gerade, wie man einem normalen Menschen erklärt, was das passiert ist. Der beste Ansatz bisher: Das ist als wäre es einem Angreifer gelungen, der Hersteller eines winzigen Bauteils zu manipulieren, das in jedem Auto weltweit verbaut ist. Jedes Auto das in Zukunft mit diesem Teil gebaut werden würde, könnte der Angreifer auf Knopfdruck gegen einen Baum fahren lassen. Und das ganze ist nur aufgefallen, weil ein Auto-Freak aufgefallen ist, dass die Rundenzeit seines Erlkönigs auf dem Nürburgring eine halbe Sekunde zu hoch sind, wenn er das Auto rückwärts mit angezogener Handbremse über den Kurs schickt. npub1m7vxz9lyfxgp4sdc987pwcly0r8yq2vymxarwswdfd9339t3j87sqazdpz Martin Seeger It must feel like checking below the car because of it making a strange sound and finding a nuke 😏 npub1m7vxz9lyfxgp4sdc987pwcly0r8yq2vymxarwswdfd9339t3j87sqazdpz Martin Seeger Im Hafen in #kiel liegen gerade 1.8 Tonnen Sprengstoff rum: Artikel: https://www.kn-online.de/lokales/kiel/bombe-im-hafen-kiel-entdeckt-erstes-bild-von-der-grossen-luftmine-7ZVFH3ZPJFHY5NTHI2VU54BMOI.html Archiv: https://archive.ph/G6sZf