BC TECH
Saved by @zmbnski

Just published 15,000+ words on security keys. 🔐📱💻

With SIM attacks at their highest, now is a great time to take a closer look at your online security.

Removing SMS from your two-factor auth is a start, but authenticator apps have downsides too...

https://t.co/Dk0MPJHL2V

 Just look at these headlines from recent SIM swap and port attacks.

It's all too established for attackers to find ways to socially engineer control of your phone number and start gaining control of your accounts.

I first talk about some general security tips.
Unfortunately not all websites let you remove your phone number from accounts.

You may consider migrating your phone carrier to @googlefi , which requires email account access to do anything (and can be locked down with security keys and even Advanced Protection)
Beyond SMS, I talk about issues that TOTP authenticator apps (the code generators) have as a form of two-factor auth. They're so, so much better than relying on SMS for your second factor but they still have issues like utilizing shared secrets and lacking phishing prevention.
Enter security keys!

Utilizing public key cryptography they don't have any shared secret between the client and the server. They prevent phishing by taking the website domain into account.

Even if you get tricked by a clone phishing website, your key won't.
Keys have been around for a while under various names and technologies. Recently it was FIDO U2F + CTAP1 but now we have FIDO2 WebAuthn with CTAP2..

It's all very confusing...
Security keys are great for two-factor auth but FIDO2 has a vision for more: support for platform authenticators (like fingerprint readers and other biometrics) as well as being able to use them for "passwordless" authentication. https://t.co/qHI8n8x8m6
But this area is still nascent. Plagued by years of sub-par security key support across browsers. Things have been getting better in recent years with recently updated NFC support on iOS 13 but it's still a waiting game until things are made easier.
Which brings the question.. Why must I carry around an extra device just to be safe online?

You shouldn't. WebAuthn aims to change that.

But for now, security keys—combined with strong online security best practices—are a great way to fortify your regular online activities.
This article was so long (like all of mine) that I took the time to build this little fly-out table of contents browser 🤣
I also went out of my way to design these little security key icons in figma while I was writing this 😍 cc @Yubico

More from Tech

Devdutta
Devdutta
@Devdutta96
Please please please take your cyber security seriously even if you don’t consider yourself a high risk person. Here are a few easy things to start with. 1/n

Switch from WhatsApp to Signal and enable disappearing messages. Most of us cannot stop using WhatsApp entirely but at least turn off back ups to Google Drive or iCloud. 2/n

Do not have private conversations using the messaging service on any social media platform like Facebook, Instagram or Twitter. 3/n

Switch from Gmail to ProtonMail or any other secure email service provider. 4/n


Switch from Google Docs to CryptPad or RiseUp Pad.
CYBER SECURITY , IT PRIVACY , CYBER SECURITY STEPS
ashkan soltani
ashkan soltani
@ashk4n
BREAKING: @CommonsCMS @DamianCollins just released previously sealed #Six4Three @Facebook documents:

Some random interesting tidbits:

1) Zuck approves shutting down platform API access for Twitter's when Vine is released #competition


2) Facebook engineered ways to access user's call history w/o alerting users:

Team considered access to call history considered 'high PR risk' but 'growth team will charge ahead'. @Facebook created upgrade path to access data w/o subjecting users to Android permissions dialogue.


3) The above also confirms @kashhill and other's suspicion that call history was used to improve PYMK (People You May Know) suggestions and newsfeed rankings.

4) Docs also shed more light into @dseetharaman's story on @Facebook monitoring users' @Onavo VPN activity to determine what competitors to mimic or acquire in 2013.

https://t.co/PwiRIL3v9x
TECH
Advertisement
foone
foone
@Foone
I got a Toshiba T1200, which has a bad screen, and a dead CMOS battery, and I thought the hard drive was broken too...


but I rebooted it and heard a KTHUNK and a really loud spin-up noise and holy shit, the hard drive works!


and it still has files on it. the newest date is January 1994.


It's a 21mb hard drive, with ~37k of bad sectors.

This fucker is never going to spin up again, so I better go find some serial cables and copy shit off now.


The backlight is fucked so I'm shining a flashlight on it.
without it, it looks like this.
TECH
Gbenga Samuel-Wemimo
Gbenga Samuel-Wemimo
@GbengaWemimo
An apostle was addressing his own members
If not for technology, you wouldn't be privy to his discussion with his members
He was sharing with them within the context of their understanding of his message, nature, and personality how he thrived in the middle of a season of casting

down
He mentioned what he achieved and even though it might sound like a boast, he was not boasting to you
He was boasting to his church members and as such, you cannot call it a boast
A father does not need to boast to his children and a shepherd surely does not need to boast to

his sheep
Newspapers needed a scandal and felt the message of the apostle was the right fit in their quest to get eyeballs
You read it and you began to insult the apostle
You, the son of a dog from Abatan refuse dump decided to drag an apostle on Twitter
Do you understand what it

means to be an apostle?
The angels working with an apostle are innumerable, they do not only work at his command, but they also work at his behest!
They are entrusted with the duty of ensuring that the Lordship of his office is respected by both spiritual and mundane entities

In the days of Jesus, many of the Pharisees and religious leaders treated his words and actions the same way many of the gutter bred stone casters with 100 Naira data and stolen or London used phone treated the words of the apostle
Jesus warned them at the time that they were
TECH
Trond Bjor\xf8y
Trond Bjorøy
@trondbjoroy
1/12 @HathorNetwork offers a unique set of features for both builders and users. Some well known ones, others not so much. Let’s look at why you might want to consider Hathor as the layer 1 solution for your project. $HTR @HTRFDT #BuildOnHathor

2/12 Easy tokenization is the obvious one. You create your own token in less than a minute, no coding required.

3/12 As opposed to ERC tokens, your custom Hathor token is a layer 1 token. It inherits the same features and security as the native token, $HTR, effectively giving your token the same level of security as the #Bitcoin $BTC blockchain.

4/12 Hathor Network also passed their security audit by @SlowMist_Team so you can feel safe knowing that your L1 token fulfills the same security requirements as $HTR.

5/12 By configuring built-in nano contracts you will be able to add logic to your token. No coding required. Native nano contracts also mitigate the risk of bugs and security issues that comes with custom smart contracts development on other platforms. $HTR
TECH

You May Also Like

\u0936\u094d\u0930\u0940\u092e\u093e\u0932\u0940 \u0939\u093f\u0924\u0947\u0936 \u0905\u0935\u0938\u094d\u0925\u0940
श्रीमाली हितेश अवस्थी...
@HiteshAwasthi89
Statue of Equality (Ramanuja) Muchintal, Hyderabad, Telangana

The Statue of Equality is a monument in India dedicated to the 11th-century Vaishnavaite Sage Bhagavad Ramanuja, commemorating 1000 years since his birth. It was inaugurated by Prime Minister Narendra Modi ji in 2019.


In 2014, Sri Chinna Jeeyar came up with the idea to commemorate the 1000th anniversary of Sri Ramanuja's teachings by building the Statue of Equality. The statue is constructed on an estimated 34 acres in Hyderabad, India.


It consists of a 216 foot tall statue of Ramanuja and is surrounded by 108 Divyadesams (model temples) and includes an educational gallery. The project budget is 1000 crore rupees.The foundation stone for the Statue of Equality was laid by Chinna Jeeyar.


The statue was built by Aerosun Corporation in China before being shipped to India. It is made of panchaloha, a combination of gold, silver, copper, brass and titanium. The statue relies on donations to fund its construction.


The temple is located on the 27,870 square metre second floor with a 120 kg statue of Ramanuja, representing the years he lived, meant for daily worship. The 1,365 square metre third floor including a Vedic digital library and research center.
ALL
Eric
Eric
@ericbahn
1/ Recently, I learned about the concept of ‘struggle porn’. This refers to the fetish of sacrificing nearly everything (health, relationships, time) for your startup. I fear that this label is creating more harm than good.

2/ @nateliason wrote a fabulous article about this topic, which first introduced me to this concept. Everyone should read it:

3/ @alexisohanian also recently spoke about struggle porn, though referring to it as ‘hustle porn.’ (as the co-founder of @hustlefundvc, obviously I take issue with this pejorative definition of ‘hustle’, but that’s another topic)

4/ Struggling in itself isn’t necessarily bad. Let’s be real here--if you’re going to start a startup, you will struggle. Founders should expect to work harder generally than employees. You will be challenged in many ways and also be super rewarded in others. This is normal.

5/ However, if you are over-indexing on hard work without clear purpose and degrading your mental health/relationships in the process--then this is very bad and we obviously should not celebrate this behavior.
STARTUPS
Advertisement
sriram \U0001f1ee\U0001f1f3
sriram 🇮🇳...
@SriramKannan77
Saptapadi

The most essential rite (Sanskrit: rītī) of a Hindu marriage ceremony is Saptapadi (English: seven steps, saptapadī). Saptapadi is a Sanskrit term that means "seven steps." The wedded couple walks seven steps after tying the Mangalsutra, which is known as Saptapadi.


The couple legally becomes husband and wife after the seventh step.
Hindu wedding rituals: During Saath Phere, the bride and groom exchange their marital vows while circumambulating (walking around) the sacred fire seven times.


This is because the bride and groom exchange marriage vows and hope for a happy married life together.

1. The first marriage vow, out of seven, is a petition to the Lord for nutrition and nourishment for the Hindu bride and groom.


2. Hindu Bride and Groom: The second marriage promise is for strength in sickness, health, good times, and terrible times.

3. For the Hindu Bride and Groom - The third marriage promise is for the Hindu bride and groom's prosperity.

4. For Hindu Bride and Groom - The fourth pledge is to stand by their families in good times and bad.
ALL
Erik Torenberg
Erik Torenberg
@eriktorenberg
1/ Here’s a list of conversational frameworks I’ve picked up that have been helpful.

Please add your own.

2/ The Magic Question: "What would need to be true for you


3/ On evaluating where someone’s head is at regarding a topic they are being wishy-washy about or delaying.

“Gun to the head—what would you decide now?”

“Fast forward 6 months after your sabbatical--how would you decide: what criteria is most important to you?”

4/ Other Q’s re: decisions:

“Putting aside a list of pros/cons, what’s the *one* reason you’re doing this?” “Why is that the most important reason?”

“What’s end-game here?”

“What does success look like in a world where you pick that path?”

5/ When listening, after empathizing, and wanting to help them make their own decisions without imposing your world view:

“What would the best version of yourself do”?
LIFE
What The Trans!?
What The Trans!?
@WhatTheTrans
A thread on how absurd the UK is on transgender issues and how the UK got so transphobic

In 2015 Parliament held an inquiry looking into the state of Transgender equality. Trans people of all stripes outlined many different problems across many, many different areas.

As a result Parliament created a list of recommendations including legal recognition for non binary people, gender recognition act reform, allowing 16 year olds to change their legal gender and reform of NHS gender identity services.

The government under Theresa May ignored everything that was recommended except for Gender recognition act reform. This act came into law in 2003 and gave trans men and women (but not non-binary people) the ability to legally change their gender on their birth certificates.

The process at that time to change your birth certificate under the GRA was to make an application to a panel of cisgender people who would decide if you were sufficiently trans based on your payslips, photo ID and bank statements. You would not get the option to speak to them.

(Also this process cost £140 which is just a tax on being trans)
SOCIETY