Data Safety and Information Security

Data Safety and Information Security

749 bookmarks
Custom sorting
AI crawlers need to be more respectful
AI crawlers need to be more respectful
We talk a bit about the AI crawler abuse we are seeing at Read the Docs, and warn that this behavior is not sustainable.
·about.readthedocs.com·
AI crawlers need to be more respectful
Ben Werdmuller (@ben@werd.social)
Ben Werdmuller (@[email protected])
What if the Harris campaign - or the White House - wanted to join the fediverse properly? They'd have to admin their own Mastodon (or similar) instance. I'm convinced there's a need for a VIP hosted instance for brands, government, professional organizations, and anyone who cares about branding, brand safety, analytics, tight links to other branded web properties (including WordPress integration), and professional moderation. #fediverse
·werd.social·
Ben Werdmuller (@[email protected])
WireGuard vs OpenVPN: Which One Should You Use?
WireGuard vs OpenVPN: Which One Should You Use?
Looking for a VPN solution for your devices? Explore our comparison of WireGuard vs OpenVPN to determine which one fits your personal needs.
·maketecheasier.com·
WireGuard vs OpenVPN: Which One Should You Use?
Unfashionably secure: why we use isolated VMs
Unfashionably secure: why we use isolated VMs
Would your rather observe an eclipse through a pair of new Ray-Bans, or a used Shade 12 welding helmet? Undoubtably the Aviators are more fashionable, but the permanent retinal damage sucks. Fetch the trusty welding helmet. We’ve made a number of security choices when building Canary that have held us in pretty good stead. These…
·blog.thinkst.com·
Unfashionably secure: why we use isolated VMs
Phish-Friendly Domain Registry “.top” Put on Notice
Phish-Friendly Domain Registry “.top” Put on Notice
The Chinese company in charge of handing out domain names ending in “.top” has been given until mid-August 2024 to show that it has put in place systems for managing phishing reports and suspending abusive domains, or else forfeit its…
·krebsonsecurity.com·
Phish-Friendly Domain Registry “.top” Put on Notice
Second-class interactions are a first-class risk
Second-class interactions are a first-class risk
Below is a screenshot of Vizceral, a tool that was built by a former teammate of mine at Netflix. It provides a visualization of the interactions between the various microservices. Vizceral uses mo…
·surfingcomplexity.blog·
Second-class interactions are a first-class risk
(Crowd)Strike 3, You’re Out: Reimagining OS Security
(Crowd)Strike 3, You’re Out: Reimagining OS Security
In the fast-evolving world of cybersecurity, the recent CrowdStrike outage served as a stark reminder of the vulnerabilities that can arise…
·pennypinstripe.medium.com·
(Crowd)Strike 3, You’re Out: Reimagining OS Security
How we share secrets at a fully-remote startup | Grist
How we share secrets at a fully-remote startup | Grist
Fully-remote software startups are increasingly common. But what happens when you need to share real secrets? We have a 72-line solution.
·getgrist.com·
How we share secrets at a fully-remote startup | Grist
Fighting bots is fighting humans
Fighting bots is fighting humans
One advantage to working on freely-licensed projects for over a decade is that I was forced to grapple with this decision far before mass scraping for AI training. In my personal view, option 1 is almost strictly better. Option 2 is never as simple as "only allow actual human beings access" because determining who's a human is hard. In practice, it means putting a barrier in front of the website that makes it harder for everyone to access it: gathering personal data, CAPTCHAs, paywalls, etc. This is not to say a website owner shouldn't implement, say, DDoS protection (I do). It's simply to remind you that "only allow humans to access" is just not an achievable goal. Any attempt at limiting bot access will inevitably allow some bots through and prevent some humans from accessing the site, and it's about deciding where you want to set the cutoff. I fear that media outlets and other websites, in attempting to "protect" their material from AI scrapers, will go too far in the anti-human direction.
·mollywhite.net·
Fighting bots is fighting humans
Wild new Wi-Fi routers turn your home network into a security radar
Wild new Wi-Fi routers turn your home network into a security radar
Wi-Fi security usually means keeping virtual intruders off your network, but a new system claims to be able to use Wi-Fi networks to detect physical intruders. Gamgee’s Wi-Fi Home Alarm System can learn to recognize people and pets who belong there and alert you to strangers – or perhaps even when…
·newatlas.com·
Wild new Wi-Fi routers turn your home network into a security radar
Students Target Teachers in Group TikTok Attack, Shaking Their School
Students Target Teachers in Group TikTok Attack, Shaking Their School
Seventh and eighth graders in Malvern, Pa., impersonating their teachers posted disparaging, lewd, racist and homophobic videos in the first known mass attack of its kind in the U.S.
·nytimes.com·
Students Target Teachers in Group TikTok Attack, Shaking Their School
The 2 Types of Data Strategies Every Company Needs
The 2 Types of Data Strategies Every Company Needs
Although the ability to manage torrents of data has become crucial to companies’ success, most organizations remain badly behind the curve. More than 70% of employees have access to data they should not. Data breaches are common, rogue data sets propagate in silos, and companies’ data technology often isn’t up to the demands put on it. In this article, the authors describe a framework for building a robust data strategy that can be applied across industries and levels of data maturity. The framework will help managers clarify the primary purpose of their data, whether “defensive” or “offensive.” Data defense is about minimizing downside risk: ensuring compliance with regulations, using analytics to detect and limit fraud, and building systems to prevent theft. Data offense focuses on supporting business objectives such as increasing revenue, profitability, and customer satisfaction. Using this approach, managers can design their data-management activities to support their company’s overall strategy.
·hbr.org·
The 2 Types of Data Strategies Every Company Needs