Notices by GeniusMusing (geniusmusing@nu.federati.net), page 27
-
GeniusMusing (geniusmusing@nu.federati.net)'s status on Saturday, 23-Apr-2022 11:39:49 EDT 
GeniusMusing
@simsa04
While not directly related to vision, this also applies.
Change blindness Wikipedia
https://en.wikipedia.org/wiki/Change_blindness
>Change blindness is a perceptual phenomenon that occurs when a change in a visual stimulus is introduced and the observer does not notice it. For example, observers often fail to notice major differences introduced into an image while it flickers off and on again.[1] People's poor ability to detect changes has been argued to reflect fundamental limitations of human attention. -
GeniusMusing (geniusmusing@nu.federati.net)'s status on Saturday, 23-Apr-2022 11:35:12 EDT
GeniusMusing
@simsa04
>It is striking that they were capable to detect (and reject) fascism in Trump's USA but not in Putin's Russia.
This is why.
Boiling frog Wikipedia
https://en.wikipedia.org/wiki/Boiling_frog
>The boiling frog is an apologue describing a frog being slowly boiled alive. The premise is that if a frog is put suddenly into boiling water, it will jump out, but if the frog is put in tepid water which is then brought to a boil slowly, it will not perceive the danger and will be cooked to death. The story is often used as a metaphor for the inability or unwillingness of people to react to or be aware of sinister threats that arise gradually rather than suddenly.
One came into the scene quickly (trump at full boil) while the other has been in office since 2012 and slowly the "heat" has been turned up to a boil over a decade. -
GeniusMusing (geniusmusing@nu.federati.net)'s status on Monday, 18-Apr-2022 13:18:03 EDT
GeniusMusing
Just the normal evolution, like the evolution of hand, fist, hand with rock, big stick, rock on a big stick, throwing stick, throwing stick that comes back, etc...
At some point someone will come up with something better than a tank and then something better to take it out.
Or better, maybe get rid of the reason for all these thing. -
GeniusMusing (geniusmusing@nu.federati.net)'s status on Monday, 18-Apr-2022 11:07:37 EDT
GeniusMusing
Another reason I am still not playing the cryptocurrency game.
It is still a game.
Beanstalk cryptocurrency loses $182m of reserves in flash ‘attack’ Cryptocurrencies | The Guardian
https://nu.federati.net/url/285913
>The Beanstalk cryptocurrency has been stripped of reserves valued at more than $180m in seconds, after an attacker used borrowed money to snap up enough voting rights to transfer the money away.
>
>The lightning hostile takeover raises fresh questions about the unregulated nature of digital currencies and the lack of protections for investors.
>
>Describing itself as a “decentralized credit based stablecoin protocol”, Beanstalk offers a cryptocurrency, called beans, intended to have a stable value of US$1 a coin. It effectively operated as a bank, letting savers (“bean farmers”) make deposits (of “beans” into a “field”), and using their savings to ensure that the value of a single bean stayed as close to $1 as possible.
>
>Others were encouraged to deposit cryptocurrencies such as ether into a “silo” to build up the stablecoin’s reserves in exchange for voting rights over the operation of the organisation. On Sunday night, one such vote resulted in Beanstalk’s entire silo, worth around $182m at market rates, being transferred out of the organisation.
>
>A still-unidentified attacker had borrowed $80m in cryptocurrency and deposited it in the project’s silo, gaining enough voting rights in exchange to be able to pass any proposal instantly. With that power, they voted to transfer the contents of the treasury to themselves, then returned the voting rights, withdrew their money, and repaid the loan – all in a matter of seconds.
>... -
GeniusMusing (geniusmusing@nu.federati.net)'s status on Sunday, 17-Apr-2022 08:14:01 EDT
GeniusMusing
Related: Chicago, IL commuter train bridge.
This is fine. Imgur
https://imgur.com/gallery/01w40bw -
GeniusMusing (geniusmusing@nu.federati.net)'s status on Sunday, 17-Apr-2022 07:44:11 EDT
GeniusMusing
@lnxw48a1
Heroku Help
https://help.heroku.com/
>Heroku Security Notification
>9 hours ago
>
>Subject: Heroku Security Update: OAuth token revoked
>
>At 5:00 p.m. PT on April 16, 2022, Salesforce completed the revocation of all OAuth tokens from the Heroku Dashboard GitHub integration. As mentioned previously, this will prevent you from deploying your apps from GitHub through the Heroku dashboard or via Heroku automation, and some other actions in the dashboard will no longer work. While you will be unable to reconnect to GitHub via the Heroku dashboard, you may continue to use other code deployment methods available in the following documentation:
Nothing from Travis-CI. -
GeniusMusing (geniusmusing@nu.federati.net)'s status on Saturday, 16-Apr-2022 22:01:23 EDT
GeniusMusing
Security alert: Attack campaign involving stolen OAuth user tokens issued to two third-party integrators The GitHub Blog
https://github.blog/2022-04-15-security-alert-stolen-oauth-user-tokens/
>On April 12, GitHub Security began an investigation that uncovered evidence that an attacker abused stolen OAuth user tokens issued to two third-party OAuth integrators, Heroku and Travis-CI, to download data from dozens of organizations, including npm. Read on to learn more about the impact to GitHub, npm, and our users.
>... -
GeniusMusing (geniusmusing@nu.federati.net)'s status on Saturday, 16-Apr-2022 13:39:54 EDT
GeniusMusing
@lnxw48a1
My former $EMPLOYER's MSP decided to to pretty much the same thing except it was HR (who had no clue about the test) that got the brunt of the consequences and the MSP decided that everybody failed and needed training, including me who reported the email to them and also notified HR and internal IT about it.
A lot of angry people in upper management (esp HR/IT) complained they should have been notified that a test was going to happen, not so much what the test would involve but that it was going to happen so they could be ready for the hundreds of email they would get. The MSP also had some unintended fall out, their phone lines got completely clogged with calls about the email for about two hours.
When karma calls. -
GeniusMusing (geniusmusing@nu.federati.net)'s status on Saturday, 16-Apr-2022 12:13:46 EDT
GeniusMusing
How not to do training...
OHSU sent fake phishing emails to staff, offering financial aid kgw.com
https://nu.federati.net/url/285890
>PORTLAND, Ore. — For some employees at Oregon Health & Science University, an email sent by the university on April 12 offering up to $7,500 in financial assistance may have seemed like a lifeline.
>
>The email read, in part: "In response to the current community hardship caused by the COVID-19 pandemic, Oregon Health & Science University has decided to assist all employees in getting through these difficult times."
>
>It turned out to be a fake phishing test, organized by OHSU to test its employees' cybersecurity awareness and its own technology systems.
>
>The attempt to educate employees about phishing threats caused frustration, with some saying it was harsh or "tone deaf."
>... -
GeniusMusing (geniusmusing@nu.federati.net)'s status on Saturday, 16-Apr-2022 11:38:37 EDT
GeniusMusing
So I had a message pop up on my computer this morning saying that it was now under a lycantropic curse and for 100 Bitecoins it could be cleared.
Yep. Ransomwere. -
GeniusMusing (geniusmusing@nu.federati.net)'s status on Friday, 15-Apr-2022 13:22:19 EDT
GeniusMusing
Twitter Adopts Poison Pill in Bid To Thwart Elon Musk Takeover Slashdot
https://nu.federati.net/url/285878
>Twitter's board on Friday enacted a defensive measure meant to deter Elon Musk's $43 billion hostile takeover bid. From a report:
>The "poison pill," as it's called in corporate terms, gives Twitter's existing shareholders time to purchase additional shares at a discount, thus diluting Musk's ownership stake. Musk disclosed a 9.2% stake in Twitter earlier this month. He then announced he was joining the company's board of directors and began proposing several changes to the platform, including turning the company's headquarters into a homeless shelter. [...] He later backed out of joining the board and offered to purchase the company for $54.20 a share, though he did specify how he planned to pay for it. Twitter said in a statement that "its Board of Directors has unanimously adopted a limited duration shareholder rights plan. ... The Board adopted the Rights Plan following an unsolicited, non-binding proposal to acquire Twitter." -
GeniusMusing (geniusmusing@nu.federati.net)'s status on Friday, 15-Apr-2022 09:03:39 EDT
GeniusMusing
Or maybe the FOSS community will do it's thing, take the idea and run with it.
This part has me wondering how they would pull it off.
>Cryptographic identifiers associate users with public keys. Self-sovereign identity is based on having cryptographic identifiers for users. Control of an account is proved by a cryptographic signature from a user, rather than an entry in a database keeping track of logins.
Would they use something like PGP?
If so, how would key generation be handled and how do you explain the need to have the key on multiple devices to the general public?
I like the idea but I see many real public world issues for people who just login to a site and have no clue about what happens in the background.
All Jonkman Microblog content and data are available under the