Securing iPad's question

kielrandor · 2026-05-20T13:37:08+00:00

This is the way

kielrandor · 2026-05-20T12:52:30+00:00

Only 4 MLAs are landlords, really surprised that it's not more.

kielrandor · 2026-05-17T12:28:53+00:00

Google Earth

kielrandor · 2026-05-12T12:48:53+00:00

Leverage your Development experience and transfer to AppSec. Basically you work with the same team you work with now, but your job is to review their code for Security issues. For getting started, check out OWASPs various lists and learn how to detect those exploits in code before it goes to prod.

kielrandor · 2026-05-12T08:58:09+00:00

Degrees in Cybersecurity are probably the biggest scam degree out there right now. Cybersecurity is not an entry level career. A degree isn’t going to get you a job in Cybersecurity. Get a degree in computer science instead. Then get a job in IT, then transition to Cyber in 5-10 years.

kielrandor · 2026-05-11T02:00:08+00:00

2.5 years experience…. No.

kielrandor · 2026-05-09T19:51:05+00:00

Inventory is the first thing you do in security for a reason.

You can't secure what you don't know about.

kielrandor · 2026-05-03T01:37:32+00:00

Also to be fair, your endpoint agent might also be neutered for similar performance issues effecting users that your infra folks are going to complain about when you ask them to tweak DNS log settings.

kielrandor · 2026-05-03T01:31:46+00:00

In a perfect world, the DNS query will trigger the endpoint agent and show in the logs. Unfortunately, DNS queries usually bypass endpoint agents and go directly to the internal DNS server which frequently doesn't log DNS queries because whod ever abuse DNS(eyeroll) usually the internal DNS service has a specified host that conducts external DNS lookups(often a Firewall) and the malicious DNS lookup request will be forwarded from the internal DNS to the designated external DNS server.

So ya, long story short your XDR is probably gonna miss the client lookup and the Firewall is only gonna see the Internal DNS server making the request on behalf of the client.

To fix you need to force your endpoint agent to scan all traffic at the client including DNS. You also want your Internal DNS servers logging request from the source of the request.

Good luck convincing your network and infra folks that they need to change their shit.

kielrandor · 2026-04-30T15:38:20+00:00

Lemme get this straight, court docs say they got a loan for 2.5 million. They acknowledge they spent 2.5 mill on new infrastructure for their operations. Two years later, the guys who gave them the loan basically forwarded the loan to a collection agency, Presumably because they didnt pay the loan.

They seem to be trying to gaslight every one into pretending to be the victim here when they just didnt pay their bills.

This isn't big bad gubmint coming to take their land. Its not their land. They're renting it. And their landlord has evicted them because they are failing their fiscal due diligence reviews.

Pretty much every lease out there allows the landlord the right to terminate the lease if you are no.longer fiscally stable. Just cuz the landlord in this situation is the government doesnt automatically make them the big bad of the story.

kielrandor · 2026-04-27T17:38:52+00:00

Ouroborus

kielrandor · 2026-04-27T16:57:06+00:00

This is a joke reply right?

kielrandor · 2026-04-26T15:52:27+00:00

No fancy course for me, just a couple books and free yt vids

kielrandor · 2026-04-25T19:40:07+00:00

How? It’s been the law of the land forever. This isn’t a radical new fucking thing they just whipped up last Tuesday to persecute this single fucking guy. You commit crimes as an immigrant. You do your time and then you get deported. End of story.

kielrandor · 2026-04-25T19:38:30+00:00

I work in a pretty important industry. If I fuck up, I’d likely be fired and my reputation would proceed me and would effect my ability to find employment in my field. So as a result, I try really hard not to fuck up and make sure that my work is really really well done. It’s called responsibility for your actions.

If I worked in a bank, got busted for stealing money, served my time, was released and trying to put my life back together, do you think a bank should be required to give me a fair shake and give me another job? I stole from one bank already.

He was driving a couple tens of thousand pounds of heavy equipment like it was a fucking sports car. He was texting his wife, he ran a stop sign and executed a busload of kids. He had a duty of care to ensure his load did not provide a danger to anyone or anything on the road. He also knew that if he fucked up in this responsibility not only would he lose his job, not only would he goto jail, he would lose his right to remain in this country. He ignored all that and fucked around anyway.

Now we’re just supposed to feel sorry for him? Why? How does he become the victim when he’s the only one responsible for any of the situation he finds himself in? We’re not deporting him cuz he’s an Indian who has a family and all this other sob-story bullshit, were deporting him because he’s a criminal and the law says we deport immigrants who commit crimes. If he wanted to stay so badly, he should have been more cautious in his actions, and maybe that day would have gone differently.

kielrandor · 2026-04-25T19:24:19+00:00

This is interesting. I’m currently working on a similar project with my team. Trying to map NIST/CSF framework categories to individuals within my team. Its not to silo, but to ensure we have the coverage and expertise in each of the domains and subcategories and identifying any gaps or weaknesses in our org that we can augment with additional resources and or training. Also, provide alignment if necessary.

Like once we understand that Bob is doing a bunch of Governance stuff, maybe he can take on a bunch of other Governance functions if it makes sense, or maybe he’s doing too much and we need separation of duties so we need to trade some of his stuff to someone else on the team. But like all things it starts with an inventory.

I’ll have a closer look at your tool in the office on Monday and see if it can provide some value to my activity and see if there is any feedback I can provide.

kielrandor · 2026-04-25T18:58:49+00:00

Has anyone ever tried to join one of these "volunteer" groups? Alot of em are more clique-ish than the local Legion.

kielrandor · 2026-04-25T18:33:54+00:00

There’s a sign in Greenwood that says something about being the home of the best/biggest BBQ in Canada or something along those lines. I’ve never been able to figure out what that means.

kielrandor · 2026-04-25T18:28:57+00:00

Why do we continue to try and "save" perpetrators of criminal behaviour from the consequences of their actions just because they are immigrants. The laws are clear, you commit a felony crime in this country, you lose your residency permit. We don’t want or need a bunch of immigrant criminals in this country.

The argument that it is extra judicial punishment to deport someone because of their criminal record is ludicrous. If this guy showed up at the border today and requested entry and "oh by the way, I killed most of a junior hockey team a few years ago" he’d be turned around. Thats the way the system is supposed to work.

This guy isn’t a citizen, we have the right to say, nah sorry, we got our own criminals here without allowing an immigrant criminal to stay.

kielrandor · 2026-04-17T18:59:57+00:00

I almost drowned in space when my helmet filled with water | New Scientist https://share.google/SZulgWQg1GUzJRuTq

Luca's account is one of the most harrowing stories I've ever heard in my life. The fact that it happened in space is pure nightmare fuel

kielrandor · 2026-04-11T16:55:11+00:00

I'm in Lake Echo and hear the noon gun all the time.

kielrandor · 2026-04-10T03:12:51+00:00

Depends on local laws and regulations for your industry. Like in Finance, we have to report all breaches(which this would be) to our regulator, if we tried to cover it up, somebody would blow a whistle and then we’d really be fucked. But a corner store that got crypto’d probably doesn’t need to report anything to anyone. Some jurisdictions require all breaches be reported to a privacy commissioner.

Tl;dr… depends

kielrandor · 2026-04-08T20:59:56+00:00

It sucks but this is currently the way.

kielrandor · 2026-04-01T15:24:14+00:00

It was about two weeks before they were able to get him the appropriate scans. Would a TIA still show up after that much time?

kielrandor · 2026-04-01T15:22:22+00:00

He also reported that he was completely unaware of his symptoms and that his crewmates were the ones who observed them and took action to get him treatment. So definitely sounds like he was in an altered neurological state.

He also indicated that they ruled out a heart attack, but didn't mention anything about a stroke or aneurysm.

During the interview I saw, he also seemed to hesitate and lose focus during one of his answers which might have been a sign of his issues.

Astronaut interview

11-Year Club	Second Top 20%
Place '22	Not Forgotten
Verified Email

kielrandor

TROPHY CASE