On a monthly basis I will publish my reading recommendations which mainly focus on Information Security (InfoSec) and Outdoor Sports. All InfoSec Reading Lists can be found here.
Quotes from the Twitterverse
InfoSec
- Online Security extension: Destroying privacy for no good reason - TL;DR: Most Online Security functionality is already provided by the browser, and there is little indication that it can improve on that. It does implement its functionality in a maximally privacy-unfriendly way however, sharing your browsing history and installed extensions with the vendor. There is also plenty of sloppy programming, some of which might potentially cause issues. - Generally, the amount of browser extensions that actually add value from a security perspective is very low. - [link]
- All your parcel are belong to us - Talk at Troopers 2023 - playing with the parcel system of Deutsche Post - [link]
- Boards Are Having the Wrong Conversations About Cybersecurity - [link]
- Resilience Engineering - Step by Step - this book sounds interesting to better understand the deeper concepts of resilience - [link]
- Botconf 2023 Wrap-Up Day #2 - [link]
- The trouble with decommissioning a used FIDO security key - I intended this article to serve as a reminder: security keys don’t last forever! Plan for when you need to decommission them, especially when using the same key for multiple services across the web. Keep a list of where you register your keys! - [link]
- Organizational Politics - [link]
- Ransomware Diaries: Volume 1 - In my opinion, LockBit’s payment model, putting the affiliate in control of collecting and distributing ransom payments in addition to their “easy to use” feature-rich ransomware management panel, was the key to its success. - longer article about the Lockbit ransomware group - [link]
Outdoor
- Patagonia by Packraft - [link]