The hottest Security Substack posts right now

And their main takeaways
Category
Top U.S. Politics Topics

Must Learn KQL Part 2: Just Above Sea Level

Rod’s Blog 0 implied HN points 31 May 23
🕹 Technology Security
  1. KQL stands for Kusto Query Language, named after undersea pioneer Jacques Cousteau. Understanding the origin of the name can give insights into the nature and purpose of the query language.
  2. KQL is designed for quickly surfacing critical security information hidden in large datasets. Its performance and simplicity make it a valuable tool for security professionals.
  3. Efficiency, simplicity, and cloud optimization are key factors that distinguish KQL from other query languages, enhancing its ability to help security professionals identify and address threats efficiently.

Building Microsoft Sentinel Detections for Azure Open AI

Rod’s Blog 0 implied HN points 02 Mar 23
🕹 Technology Security
  1. Questions about safety and security in Azure Open AI should be addressed early on to ensure preparedness when issues arise
  2. Monitoring Azure Open AI involves utilizing Diagnostic Settings to enable auditing logs for service activity records
  3. Building Microsoft Sentinel Detections for Azure Open AI involves querying data in AzureDiagnostics and AzureActivity tables to monitor actions and determine valuable security measures

Open Sourcing Discussions and Content for Responsible and Secure AI

Rod’s Blog 0 implied HN points 24 Feb 23
🕹 Technology Security
  1. Monitoring security for AI technologies is still in its early stages, with similarities to other security monitoring approaches.
  2. Open sourcing discussions and content can enhance collaboration and understanding in the field of responsible and secure AI.
  3. Resources like the OpenAISecurity repo, the Responsible and Secure AI manifesto, and Microsoft Sentinel content are valuable tools for those interested.

Top New Incident Experience Features for Microsoft Sentinel

Rod’s Blog 0 implied HN points 17 Jan 23
🕹 Technology Security
  1. The new Microsoft Sentinel Incident experience features a new rollout model that allows users to switch between old and new experiences.
  2. The new Incident experience includes enhancements like an Activity Log accessible from the Incident menu and the ability to add comments directly in the panel overlay.
  3. Another important feature is the Incident Actions option which provides quick access to running Playbooks, creating Automation Rules, and setting up Teams channels for collaborative scenarios.
Get a weekly roundup of the best Substack posts, by hacker news affinity:

The Revoke Action for Threat Indicators in Microsoft Sentinel

Rod’s Blog 0 implied HN points 12 Jan 23
🕹 Technology Security
  1. Marking a threat indicator as 'Revoked' in Microsoft Sentinel sets a flag indicating the indicator is no longer active, excluding it from rules.
  2. By marking an indicator as 'Revoked' instead of deleting it, you can keep it excluded from rules while still being able to query against it.
  3. This feature is particularly useful for managing potential false positives from 3rd party sources in Microsoft Sentinel's Threat Intelligence blade.

How to Send Azure Storage Logs to Microsoft Sentinel

Rod’s Blog 0 implied HN points 12 Jan 23
🕹 Technology Security
  1. To send Azure Storage logs to Microsoft Sentinel, create a Diag Setting for each Storage account type and send the logs to the same Log Analytics Workspace.
  2. Enabling this feature incurs regular ingestion charges, so choose carefully what type of logs you want to collect.
  3. You will need to create your own Analytics Rules as they are not provided, but the author might share some sample rules on their GitHub repo.

How to Quickly Tell Which Microsoft Sentinel Tables are Configured as Basic Logs

Rod’s Blog 0 implied HN points 12 Jan 23
🕹 Technology Security
  1. Basic Logs in Microsoft Sentinel is a preview feature that offers a cheaper way to ingest logs, but with some limitations.
  2. Currently, there are UI and code-based methods to identify tables configured as Basic Logs, with a new method on the way.
  3. A new feature in preview will introduce a Tables blade in the Log Analytics workspace to filter tables by plan, making it easier to distinguish Basic Logs configured tables.

Creating an URL Detonation Demo for Microsoft Sentinel

Rod’s Blog 0 implied HN points 06 Jan 23
🕹 Technology Security
  1. URL Detonation in Microsoft Sentinel provides deeper insights for quicker alert triage, eliminating the need for other tools
  2. Creating a demo for URL Detonation involves using a Watchlist with customizable URLs and an Analytics Rule for mapping
  3. Detonated URLs from the Watchlist show up in the Investigation graph, aiding in incident analysis

What does Snyk do?

Technically 0 implied HN points 06 Mar 24
🕹 Technology Security
  1. Snyk helps developers ensure their code is secure and free of vulnerabilities by finding and fixing code weaknesses that hackers can exploit.
  2. Code vulnerabilities are weaknesses in code that hackers could potentially exploit, which Snyk helps to identify and resolve.
  3. Snyk can be used to secure app code, containers, infrastructure code, and more.

How to Design Software — Image Uploaders

Joseph Gefroh 0 implied HN points 19 Oct 19
🕹 Technology Security
  1. When designing a system for image uploading, it's important to consider technical concerns such as displaying, authorizing, validating, processing, storing, and associating the images.
  2. Tradeoffs to think about include scaling to handle large uploads efficiently, ensuring security to prevent vulnerabilities, managing authorization based on business logic, and maintaining consistency in the image uploading workflow.
  3. A well-designed image uploading system should support creating and using various image variants, offloading processing to separate services, ensuring consistent growth across subsystems, and establishing clear architectural boundaries for scalability.

Google Marketing API, Tavus $18M, Microsoft Patches 60+ Issues

The API Changelog 0 implied HN points 19 Mar 24
🕹 Technology Security
  1. Google introduced a new API enhancing administrative control over analytics properties, merging organization details for easier management.
  2. Tavus, a generative AI video firm, raised $18 million and unveiled its Developer Platform with Replica API for text-to-video and digital replica creation.
  3. Microsoft patched over 60 security issues including critical vulnerabilities in HyperV and Open Management Infrastructure to ensure user safety.

It's Time to Stop Using Jenkins

Certo Modo 0 implied HN points 19 Sep 23
🕹 Technology Security
  1. Consider alternatives to Jenkins for new software projects due to limitations in plugin complexity.
  2. Evaluate your R&D department's expertise and resources to manage Jenkins installation and perform updates.
  3. Assess the security risks and maintenance requirements of Jenkins installations to prevent potential breaches.

In House vs. Outsourced Red Teams (Part 2)

Locks and Leaks 0 implied HN points 03 Jan 24
🕹 Technology Security
  1. Consider factors like trust in vendors, needed skills, cost, and bureaucracy when deciding between in-house and outsourced red teams.
  2. Experiment with different approaches to find the best model for conducting red team assessments.
  3. When establishing red team capabilities, seek guidance from others who have experience and be prepared to invest time and attention to detail.

Start Here: Locks & Leaks Teaser

Locks and Leaks 0 implied HN points 14 Oct 23
🕹 Technology Security
  1. Locks & Leaks promotes the physical security red teaming profession to help organizations make better security decisions.
  2. The site offers an outline of the Locks & Leaks structure, including resources for physical red teaming and profession growth.
  3. Different sections on red team types and targets, red team tradecraft, and building a red team provide detailed insights and guidance.

Red Team Resources

Locks and Leaks 0 implied HN points 12 Jul 23
🕹 Technology Security
  1. The post shares links to valuable resources for red teamers and beginners.
  2. Some of the best red team physical security resources include Red Team Tools, U.S. Army Red Team Handbook, and Hak5.
  3. Various tools and alliances like TOOOL, Sparrows Picks, and Red Team Alliance are highlighted for red team operations.

Resource: Red Team Job Descriptions

Locks and Leaks 0 implied HN points 10 Jul 23
💼 Business Security
  1. Companies like UBS, Meta, and Amazon are offering physical red team positions, which are significant for job seekers in the field.
  2. The collection of job descriptions serves as a resource for job seekers, security managers, and the public interested in the field of red teaming.
  3. Physical red teaming is a growing field, and resources like Locks & Leaks are working to elevate the profession by identifying and sharing industry resources.

Physical Security Red Teaming Overview

Locks and Leaks 0 implied HN points 09 Jul 23
🕹 Technology Security
  1. Organizations use internal physical security red teams to protect valuable assets from potential breaches.
  2. The global Physical Security market is expected to grow, reaching $215 billion by 2030 - the effectiveness of these security measures is tested through red team assessments to prevent costly incidents.
  3. There's a lack of substantial resources for businesses looking to establish or enhance their physical security red teams, highlighting a need for more support and knowledge sharing in this area.

The Why of Security Red Teams

Locks and Leaks 0 implied HN points 29 Jun 23
🕹 Technology Security
  1. Red Teaming is essential for organizations with high-value assets, significant threats, or discovered vulnerabilities to test and strengthen their security measures proactively.
  2. Red Teams assess threat actors tactics, uncover vulnerabilities, address organizational hubris, challenge security assumptions, and protect business and assets through rigorous testing.
  3. Red Teaming is not just a tool but a philosophy that promotes critical thinking to improve security measures, ensure defense readiness, and make informed decisions to safeguard organizations and valuable resources.

Game Theory and Apples Encryption Challenge

Joshua Gans' Newsletter 0 implied HN points 17 Feb 16
🕹 Technology Security
  1. The FBI's struggle to decrypt an iPhone raises questions about user cooperation and Apple's capability, highlighting the importance of maintaining strong encryption.
  2. Apple's resistance to creating a backdoor for unlocking iPhones is driven by concerns about privacy erosion and the slippery slope toward invasive surveillance.
  3. The game theory aspect emphasizes the need for common knowledge in encryption, showing why tech companies like Apple are taking a stand for secure devices and innovation.

Too good not to

Links I Would Gchat You If We Were Friends 0 implied HN points 10 Mar 16
🕹 Technology Security
  1. Shaming can sometimes be used positively, but there are cases where it can do more harm than good, like when exposing individuals online before they've been properly tried.
  2. The owner of Silk Road 2.0 has managed to evade arrest, possibly due to being paranoid and secretive or simply being lucky.
  3. Some people resort to crowdfunding essential benefits like parental leave, showing a need for better support systems in place.

The number of f*cks I give

Links I Would Gchat You If We Were Friends 0 implied HN points 03 Sep 14
🕹 Technology Security
  1. Research suggests people may be more honest via email and text than face-to-face, though it doesn't guarantee morality or kindness.
  2. Screenshots have become a common way to capture moments in our digital lives akin to personal perspectives.
  3. Designing new emojis is a challenge as they're regulated by a small, overworked non-profit organization.

Okay weirdo, here it is.

Links I Would Gchat You If We Were Friends 0 implied HN points 16 Jul 14
🕹 Technology Security
  1. Comcast's customer service issues stem from the company's structure, not individual representatives.
  2. Using public computers, like those in hotels or airports, can expose you to the risk of keylogging software.
  3. The internet offers quirky and insightful content like accidental commentaries based on Google searches.

Loaded on Slurpees

Links I Would Gchat You If We Were Friends 0 implied HN points 30 May 14
🕹 Technology Security
  1. We're all dealing with surveillant anxiety due to the constant fear of our personal data being too revealing of ourselves.
  2. In the manosphere, not everyone is a creep - some tried to talk sense to troubled individuals like Elliot Rodger.
  3. To make digital memories feel more permanent, you can print them out using an industry that turns your online interactions into keepsake books.

You're not special.

Links I Would Gchat You If We Were Friends 0 implied HN points 07 May 14
🕹 Technology Security
  1. Philip Welsh's murder investigation was challenging due to his lack of digital footprint.
  2. Debates about porn addiction are contentious, even within recovery groups like Fight the New Drug.
  3. Ordering food online may lead to ordering more food, with potential regulations coming to address this issue.

Traditional moderation systems struggle to cope with AI-generated content; Anthropic and Inflection release GPT-4 class models; why AI benchmarks tell us so little; NIST plagued by workplace issues

Computerspeak by Alexandru Voica 0 implied HN points 08 Mar 24
🕹 Technology Security
  1. Traditional content moderation systems struggle to handle AI-generated content as AI becomes more adept at creating realistic harmful content.
  2. New approaches suggest the need for moderation at the point of creation rather than just distribution to prevent harmful AI-generated content from circulating.
  3. Content moderation strategies need to evolve by implementing measures like generative AI-powered detection systems and content verification mechanisms across the AI creation and distribution supply chain.

How do Politicians remember everyone?

Recontact 0 implied HN points 16 Feb 24
🇺🇸 U.S. Politics Security
  1. Politicians need strong interpersonal skills to build public trust, understand constituent needs, and communicate effectively.
  2. CRM systems are essential for politicians to manage data, personalize communication, improve campaign efficiency, and track engagement.
  3. Politicians use CRMs uniquely by segmenting voters, integrating with social media, ensuring compliance, and managing large-scale operations.

Natto Thoughts is One Year Old

Natto Thoughts 0 implied HN points 08 Apr 24
🕹 Technology Security
  1. Natto Thoughts celebrated its one-year anniversary by exploring unique angles on topics like Russian psychological operations
  2. The Natto Team's work has gained significant recognition and has been featured in major global media outlets
  3. Upcoming content from Natto Thoughts will focus on delving into Russian extortion operations to understand financial and political motives behind ransomware attacks

6 security advancements that Plang offers for the user

Ingig 0 implied HN points 13 Apr 24
🕹 Technology Security
  1. Plang has built-in security mechanisms, preventing common issues like SQL injection and XSS, allowing developers to focus more on functionality.
  2. Plang offers password-less authentication using ECC, enhancing security and providing a user-friendly login experience.
  3. Plang promotes privacy through local data storage, preventing large-scale breaches and unauthorized access to sensitive information.

Minimize the time it takes to develop a useable software

Ingig 0 implied HN points 09 Apr 24
🕹 Technology Security
  1. Minimizing the time it takes to develop usable software is crucial for competitiveness and project success.
  2. Lowering the complexity of code, such as with Plang programming language, can lead to clearer, more concise, and easier-to-understand code.
  3. Reducing lines of code not only makes development faster and cheaper, but also contributes to better security, fewer bugs, and increased stability in software projects.

RDEL #33: Does AI-assistance lead engineers to write more insecure code?

Research-Driven Engineering Leadership 0 implied HN points 11 Mar 24
🕹 Technology Security
  1. Using AI coding assistants can lead engineers to produce less secure code compared to not using these tools.
  2. Engineers tend to overestimate the security of code generated with AI assistants, creating a false sense of security.
  3. Integrating specific security practices into the development workflow when using AI coding assistants can help uphold security standards and guidelines.

Tracked by solar key-rings

The End(s) of Argument 0 implied HN points 17 May 21
🕹 Technology Security
  1. Be cautious of free key holders given out at gas stations, as some may contain hidden tracking devices.
  2. Verify the credibility of alarming claims before panicking. Many conspiracy theories have logical flaws upon closer inspection.
  3. Some urban legends, like the one about tracking devices in key rings, may have originated from a real event but have been perpetuated over time through misinformation.

Today’s Top 5 HN posts

Top 5 HN Posts of the day 0 implied HN points 06 May 24
🕹 Technology Security
  1. Social engineering takeovers of open source projects is a hot topic on HackerNews.
  2. Israel shutting down local Al Jazeera offices has sparked interest in the tech community.
  3. Deep Reinforcement Learning from zero to hero is a trending subject for tech enthusiasts.

Today’s Top 5 HN posts

Top 5 HN Posts of the day 0 implied HN points 16 Apr 24
🕹 Technology Security
  1. Today's top 5 HackerNews posts are shared daily in a list format.
  2. The posts shared in the top 5 discuss various topics like source code, software vulnerabilities, and illegal activities.
  3. Bonus job listings are also included in the post for OneSignal and Skio, offering opportunities for engineers.

Today’s Top 5 HN posts

Top 5 HN Posts of the day 0 implied HN points 30 Mar 24
🕹 Technology Security
  1. There has been a sustained DDoS attack on a certain platform, which has not been effectively dealt with.
  2. The concept of collective memory being sold for destruction in Santa Barbara is an interesting topic to explore.
  3. When new hires are paid more than existing employees, it may lead to top performers leaving the organization.