Right click > View Image. Twitter does awful things with transparent PNGs.
-
-
- 2 more replies
New conversation -
-
-
Would you include AppLocker? (And sorry to be a spelling nazi but I’m sure you meant Carbon Black vs blank)
-
Yes and yes, oops.
- 2 more replies
New conversation -
-
-
Yes, Whitelisting requires upfront planning, stakeholder coordination and ongoing maintenance - its a strategy after all, but the benefits of the control cannot be understated. Modern solutions have better workflows that address many of the traditonal challenges.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Tavis, you sure know how to bring the funny
-
Twitter wasn’t the same without Tavis, glad to have him back, with a vengeance :-)
End of conversation
New conversation -
-
-
I’m not familiar with Windows 10 S, does it only run signed binaries from the store? Also, how does it prevent Office from being exploited?
-
It runs store and inbox binaries, but some of inbox ones are blocked by policies (cmd, powershell, etc). This should get you started https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-application-control/microsoft-recommended-block-rules … (and up the menu ladder) https://tyranidslair.blogspot.com/2017/07/device-guard-on-windows-10-s_20.html … As for Office, trick the user to run the malicious content.
End of conversation
New conversation -
-
-
My experience with large companies that tried to enforce whitelisting is that it did not work. They were either overwhelmed with requests to add to the list, or could not keep up with versioning and approving new revisions of software. It was a productivity hog for most engineers
-
Keep it simple. Blacklist executables from running from user writable locations (userprofile, network shares, and external media). Whitelist webex and such. Blacklist/firewall LOLBINS. Not flawless but ends most stupidity.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
