infoSource is a cybersecurity newsletter. By subscribing to infoSource you will remain up-to-date on the latest in communication, computer and software cybersecurity issues.

Didn't I See You Before?

Don't Get Faked Out. Part 1 A deepfake takes a combination of machine learning ("deep learning") and artificial intelligence to create synthetic media. Over the past few years the quality and ease of creation of deepfake video content has accelerated. Skepticism, as a point of view, isn't a bad thing. The InfoBro Deepfakes are getting better and ea...

Continue reading
  1179 Hits

Can we stop saying Zero-day?

Zero-day Is When Discovery "Happens" Not What It Is. I've long been of the mindset that doesn't agree with the term "zero-day" exploit or vulnerability. Where the only party to whom it applies seems to be the victim or defender. It's a term of art I think is flawed.  Let's go a little deeper so you can understand where I'm coming from on ...

Continue reading
  1088 Hits

All Sprays Aren't Ultra Sheen™

Laziness Leads To A Bad Password Day At one level or another many people fall into the bad practice of password reuse and typically the password is an easily guessable one or, worse yet, has been previously compromised during a data breach. It's the length, not the strength. The InfoBro When there is a website or online service account breach peopl...

Continue reading
  984 Hits

What's your favorite color?

The Try Not To Do It Challenge. Questions that solicit and tease more information from you for alternative uses, even compromise, have become commonplace. I'm intrigued on one hand and befuddled on the other. At times I'm shocked into paralysis by the sheer audacity of the questions (#NOMAKEUPSELFIE, "I'm clearing out my Facebook friends list ...

Continue reading
  992 Hits

National Data Privacy Day - January 28, 2021

Stay aware of your apps and privacy settings. Today, as originally visited on January 27, 2014 by the 113th U.S. Congress, in S. Res. 337 is the date designated as "National Data Privacy" day.  Although the resolution was non-binding it served to establish a precedent that "encourages State and local governments to obs...

Continue reading
  989 Hits

Get back to patching day for... sudo(8) CVE-2021-3156

Most Linux distributions affected by a sudo(8) bug that allows privilege escalation to root Announced today was CVE-2021-3156 a/k/a "Baron Samedit", a vulnerability to most default installations of sudo(8) prior to 1.9.5p2 on Linux, that may go back as far as 10 years.  Many Linux distributions are distributed with sudo(8) ...

Continue reading
  884 Hits

Deception Is The Way Of War

"when able to attack, we must seem unable; when using our forces, we must seem inactive; when we are near, we must make the enemy believe we are far away; when far away, we must make him believe we are near." Sun Tzu, The Art of War (5th century BC).  Honey, you can come get all my stuff There has been, for decades, a great deal of focus ...

Continue reading
  1354 Hits

Choices Have Consequences

 Application martyrdom is a risk Firstly, in light of the activity of the last week, it would be folly not to acknowledge that swift actions are required to wrangle control of potential command and control platforms. To be clear insurrection is the activity, which took place in my hometown, in my neighborhood, to which I'm referring. Although ...

Continue reading
  986 Hits

The Cyber Neighborhood Watch

 Transparency is not the same as disclosure. At this point, there's no indication that any classified networks were penetrated, although that could change easily. It will take years to learn which networks the SVR has penetrated, and where it still has access. Much of that will probably be classified, which means that we, the public, will neve...

Continue reading
  955 Hits

Everyone Uses A Supply Chain

How does the idea of a "supply chain attack" affect regular folk?  Everyone uses a supply chain and because nothings perfect, especially internet technology, everyone is subject to supply chain attacks.  But, what can you do about it? I'm going to take this to a higher level less specific than what has been recently discuss...

Continue reading
  945 Hits

A framework for mitigating social media MADNESS

It's not what you say it's how it's perceived  The matter of social media and cognitive affective neuroscience has been in the public eye and the discussion of the its impact, recently, has been accelerating. As dramatically portrayed as biography in The Social Network and aptly unpacked as a docudrama in The Social Dilemma, there ar...

Continue reading
  1169 Hits

Where we are and where we're going

InfoBro - An Origin Story Curiosity feeds desire and that desire focuses passion. Passion drives success.  "InfoBro" - Eric Dana Williams As of 2020 it has been 25 years since the inception of  The idea of was not born in 1995, the activity that led to the birth of that concept was born&nb...

Continue reading
  952 Hits

Contact Me


1309 S Street S.E., Washington, DC, 20020
00 1 202-276-8641

Send Me a Message

Contact Me