Post

Infosec Reading List - July 2023

On a monthly basis I will publish my reading recommendations which mainly focus on Information Security (InfoSec) and Outdoor Sports. All InfoSec Reading Lists can be found here. Text in italic represent quotes from the original article.

Quotes from the Twitterverse

Desktop View


Desktop View


Desktop View


InfoSec

  • Online Security extension: Destroying privacy for no good reason - TL;DR: Most Online Security functionality is already provided by the browser, and there is little indication that it can improve on that. It does implement its functionality in a maximally privacy-unfriendly way however, sharing your browsing history and installed extensions with the vendor. There is also plenty of sloppy programming, some of which might potentially cause issues. - Generally, the amount of browser extensions that actually add value from a security perspective is very low. - [link]
  • All your parcel are belong to us - Talk at Troopers 2023 - playing with the parcel system of Deutsche Post - [link]
  • Boards Are Having the Wrong Conversations About Cybersecurity - [link]
  • Resilience Engineering - Step by Step - this book sounds interesting to better understand the deeper concepts of resilience - [link]
  • Botconf 2023 Wrap-Up Day #2 - [link]
  • The trouble with decommissioning a used FIDO security key - I intended this article to serve as a reminder: security keys don’t last forever! Plan for when you need to decommission them, especially when using the same key for multiple services across the web. Keep a list of where you register your keys! - [link]
  • Organizational Politics - [link]
  • Ransomware Diaries: Volume 1 - In my opinion, LockBit’s payment model, putting the affiliate in control of collecting and distributing ransom payments in addition to their “easy to use” feature-rich ransomware management panel, was the key to its success. - longer article about the Lockbit ransomware group - [link]

Outdoor

  • Patagonia by Packraft - [link]
This post is licensed under CC BY 4.0 by the author.