my tweets are severely limited by my lack of understanding of what I am doing.
Genuine fear: If you look at supply chain attack targets, #1 = Microsoft. They good. #2 = antivirus and InfoSec companies. Risky business.
Pokaż ten wątek
-
This is what I've been trying to say w.r.t. why Kaspersky is such a big risk. Automatic updates, phone-home telemetry, SYSTEM permissions...
That's a different thing, 'how much do you trust the AV companies themselves re the countries they operate in', as opposed to attackers.
-
-
Not so much different as it is cumulative. One is generic infosec risk: modern AV maps out your network, has perms everywhere, auto-updates;
-
and the other is natsec: do you trust a company with that data, that permission, that running code to be operated in adversarial territory?
- Pokaż odpowiedzi
Nowa rozmowa -
Wydaje się, że ładowanie zajmuje dużo czasu.
Twitter jest przeciążony lub wystąpił chwilowy problem. Spróbuj ponownie lub sprawdź status Twittera, aby uzyskać więcej informacji.