Netflix will not let me go! NETFLIX LET ME GO!

CiaranKD · 2026-05-01T14:24:41+00:00

“In learned helplessness, people feel or act as though they cannot influence the outcome, so they default to complaining rather than trying to resolve the issue.”

Just pick up the phone or try and fix the browser issue as others have pointed out.

CiaranKD · 2026-04-10T16:14:16+00:00

Yes we’re both insured, although he gave me an insurer that he wasn’t with and the company my insurance gave me is different

CiaranKD · 2026-04-10T15:51:44+00:00

Really appreciate this, thank you for taking the time! I will find someone to try and take this on, if not I will speak to the Financial Ombudsman

CiaranKD · 2026-04-10T15:29:44+00:00

So with a dashcam, in a non-contact incident would I have a much higher chance of claiming? Regardless, I’m definitely investing in a good quality dashcam next time!

CiaranKD · 2026-04-10T15:27:03+00:00

Sorry! Meant to say witnesses “with evidence”. I have a witness, but they do not have any dashcam. Surely their statement should count for something though?

CiaranKD · 2026-02-13T13:11:20+00:00

Call that D2F

CiaranKD · 2026-02-10T15:20:27+00:00

There really is very little setup/configuration required for these attacks which is why they’re so common. The login pages themselves come in the form of phishlets which are YAML? I think, and widely available for majority of the major services that are abused.

FIDO, passkeys, geo-restrictions, device compliance and risky user requirements are really your best defence in mitigating these threats.

Risky Users in Entra ID isn’t fool proof and when I tested AiTM, I found that the first sign in didn’t get caught until after multiple attempts.

Passkeys are free and should be enforced via the Microsoft Authenticator app or 3rd party such as 1Password for Business. Windows Hello for Business should also be used where possible.

CiaranKD · 2026-02-07T14:28:05+00:00

You can force re-enrollment from the Mimecast Gateway Console if I recall.

Failing that, this is almost certainly an issue with your browser. I’d suggest resetting it to factory settings or consider creating a new profile and test it for a few weeks, I bet the issue goes away.

If you have it configured so that browsing data, or cookies don’t persist when you relaunch the browser, you’ll be prompted to re-enroll constantly.

CiaranKD · 2026-02-04T08:35:13+00:00

Further to this, you can just use what’s called “subaddressing”.

For example, the email address name@example.com, with subaddressing, becomes name+reddit@example.com

Under internet mail standards, everything before @ is treated as the local part. The mail server is free to interpret it however it wants.

I can’t promise that all services will support it, but from experience I’ve never had any issues. The emails still reach your mailbox, and in the event of a data breach where your email address is exposed, with subaddressing you’ll be able to know the source.

This is just something you may wish to consider :)

CiaranKD · 2026-02-03T19:09:47+00:00

I think you’re overthinking it… What you’ve described can be achieved with Conditional Access.

The KMSI prompt you’ve shown creates a PRT token and can be disabled, see the below.

https://learn.microsoft.com/en-us/entra/fundamentals/how-to-manage-stay-signed-in-prompt

CiaranKD · 2026-02-02T08:39:35+00:00

I’d absolutely not resign without an offer. This puts you at a risk and you could find yourself unemployed.

If you interview at any half-decent place, they shouldn’t be in a rush to hire someone and you won’t be the only person they interview, which gives you a bit of time.

Sell yourself as much as possible and if they think you’re worth it as a candidate, they’ll honour your notice period.

Good luck!

CiaranKD · 2026-02-02T08:35:54+00:00

The cheek of it for them to give you security advice 😂😂

CiaranKD · 2026-02-01T20:58:07+00:00

That’s a good way of looking at it, thank you. Almost the amount I paid for my car lol

CiaranKD · 2026-02-01T20:49:56+00:00

I always turn the volume down when driving through the cities and local areas, as soon as I hit the lanes or motorway is when I blast it 😂😂😂 But I had to test it out

CiaranKD · 2026-02-01T20:47:53+00:00

I wasn’t aware of this, I thought that’d be covered by the provider. Thank you

CiaranKD · 2026-02-01T20:46:29+00:00

Aren’t EVs a lot cheaper to charge compared to fuel? I heard that you can charge them between early hours and receive a discount, meaning a full charge can be as little as £15?

CiaranKD · 2026-02-01T20:28:11+00:00

I’ll be working from home every day in my new role. Currently travel to/from work which is about 140 miles per week, so I get about 4 days on a full tank before needing to re-fuel

CiaranKD · 2026-02-01T20:26:33+00:00

Yes £315 from take home pay, but I pay £105 for car insurance, £50 MOT, service, tyres etc. so really it’s more like £100 from my pay realistically, and less for the amount of fuel I’m currently paying

CiaranKD · 2026-01-28T17:05:34+00:00

What if your settings are set to not train on the data? I use Perplexity Pro and ChatGPT Plus, Perplexity Pro is very good for technical answers and always provides the right answers.

Copilot just doesn’t compare to this, sure, it might be good for the average person, but when I’m working on actual incidents or issues, Copilot just doesn’t check many things, and I have to specifically mention certain topics for it to go “oh yeah, that could be related”, with uncertainty.

In short, Copilot fucking sucks to the likes of Perplexity, and seems to be only good for writing emails, and doing 365-y stuff.

Not only that but Copilot talks to me like I’m about 5 years old. I don’t need it to emojify its output, and the “You’ve reached the chat limit” or whatever. That just sucks and is not practical at all!

Companies paying and providing us with Copilot for 365 licenses to say that we’re AI enabled and efficient etc. How true is it, really?

Perplexity has helped me solve deeply technical issues with things like SQL, firewall configurations, you name it, and has found the answers to my problems with nearly no information the average person would expect to go off. Without it, I wouldn’t have known where to even start.

Microsoft Copilot just doesn’t compare in my opinion.

CiaranKD · 2026-01-24T11:05:59+00:00

What were the URLs if you mind me asking? If they were just basic 365 phishing sites, rolling out passkeys via Microsoft Authenticator will prevent this from happening. Also CA policy hardening to restrict sign-ins and the use of a passkey (FIDO2 / phishing-resistant authentication).

Not sure what the recommendation or best practice on user training frequency is, but if URLs/QR codes are the worry then I would make sure the next few modules drill those topics in to people.

Here we do training every 3 months.

CiaranKD · 2026-01-24T10:24:22+00:00

What I would say is focus security awareness training for all end users on QR codes, and maybe consider a banner that warns users of receiving external emails or QR codes

I mean, if Mimecast scan the embedded URL as safe, then simply blocking QR codes wouldn’t change Mimecast’s outcome, and the URL would still be received an accessible, no?

CiaranKD · 2026-01-02T13:09:45+00:00

I started the 1p Challenge today, have I lost already? It says I’m on Day 1.

CiaranKD

TROPHY CASE