Notices by Munin, Keeper of Lore (munin@mastodon.hasameli.com)

@xor

The infosec community is increasingly moving to Germany instead of the US; to maintain state of the art knowledge, follow it there.

Yo #infosec - new malware, "Petya"

It's wcry again, but with the killswitch taken out and some phishing initial delivery.

And by "it's wcry again" I mean it. Same exploit. Same traffic. Same everything. If your org bothered patching or mitigating, then this won't affect you.

@maiyannah That is absolutely correct, and it's what drives me up the wall about so many of these people who, e.g., disable paste into password fields [thus defeating password managers] - they're encouraging the worse risk to 'defeat' a trivial, unlikely one.

You know, I remember the bad old days of dependency hell - back when you used to have to hunt down twelve different library sources in order to compile something.

I remember the joy I had when I first found a decent package manager that could solve that for me.

And now we're back in dependency hell, with having to resolve gorram ruby versions. Because apparently it's 2001 again.