sawaba.bsky.social
🎙️ Enterprise Security Weekly Podcast Host,
🤝 BSides Knoxville Founder,
🗣️ IANS Research Faculty,
🍳 Cooking,
🏎️ F1,
⛰️ Hiking
167 posts
558 followers
207 following
Regular Contributor
Active Commenter
comment in response to
post
step 2: ???
step 3: profit?
comment in response to
post
Just forwarded to your personal email 😘
comment in response to
post
This is an example of poor survey design (we know respondents tend to give the "right" answer, not the "honest" answer), but it's a symptom of a larger problem of casual dishonesty in cybersecurity that hurts our entire industry.
comment in response to
post
In fact, I can't think of a single case where 94% of consumers stopped doing business with a company after data was mishandled. Ashley Madison, maybe?
comment in response to
post
The used car market would regularly get flooded with a particular brand of vehicle.
One wireless provider would lose all its customers overnight, while wireless competitors would struggle to handle the new subscriber load.
Uber wouldn't have survived the 2010s.
comment in response to
post
I don't need to remind anyone that when Elon took over Twitter and demanded code changes, business logic was updated to give his tweets preferential treatment.
why wouldn't he do the same for Treasury payments?
comment in response to
post
The more I learn about AI evaluation/benchmarks, the more I think this should be included in prompt engineering 101
ANYONE using ChatGPT/Gemini/Copilot/Claude needs to understand model shortcomings to use them successfully, IMO.
Even slight changes to wording is the diff between success/failure
comment in response to
post
It is particularly striking how bad at reasoning some common models are (though newer ones are getting better, as reasoning is critical for agentic success!)
Even when assisted (given a nudge towards the correct answer), some models stubbornly stick to the wrong answer.
comment in response to
post
And so frustrating
Quote from me on a webcast earlier today:
"AI is NOT automation"
comment in response to
post
Wonder what the story is here: remove DEIA, put it back - why and why?
comment in response to
post
they are loyal to the dark lord alone and no one else
comment in response to
post
Fuck everything about this.
As an industry we NEED to understand how breaches occur. We don't need to know the identity of the company to get value from the breach details.
comment in response to
post
"The caller ID read 'Dad' but there was an ICE agent on the other end of the phone."
😐
comment in response to
post
Bizarre when people don’t have this sense
comment in response to
post
Omg ❤️
comment in response to
post
Trump has already manipulated/controlled a major media platform, the day before his inauguration
This is gonna be a wild ride
comment in response to
post
Reborn in Trump’s shadow and now hitched to the MAGA wagon.
Will be interesting to see how this changes it and whether folks come back to it.
comment in response to
post
So much irony in all this
comment in response to
post
Is this a Volvo/Polestar?
comment in response to
post
lol, I’ve seen this in a lot of “enterprise” electronics that are essentially consumer gear on the inside
comment in response to
post
Now it is just going to look like everything else
Thinkpad is dead
comment in response to
post
Deception:
1. pretend to be someone else
2. pretend to be _multiple people_ you're not, all at the same time
"I want to speak to your manager"
[switches to the HENRY voice profile]
"This is the manager, how can I help you?"
Could be very useful for social engineering (phone pretexting), no?
comment in response to
post
Then, someone shared this in one of the Slack groups I'm in: youtu.be/sXWe0meAJ8A
I totally get the business need and value for this feature, but...
I'm also thinking about the opportunities for abuse with something like this.
comment in response to
post
My concern here is that, it's easy to enable it to record and transcribe all calls automatically.
It occurred to me the other day that I had accidentally been recording EVERYTHING, so I went through and started deleting recordings. Other parties have no way of knowing they're being recorded.
comment in response to
post
A while back, they introduced a new feature: audio recording and transcription. Not something I really need, but it can come in handy. Unlike other tools like Fireflies.ai, it doesn't need to join a call to record and transcribe it.
It's inline with my audio input/output, so records that way.
comment in response to
post
Just spent an hour outside, most of our snow is still intact. Was lovely.