Look at this fantastic piece of advice from Microsoft!
-
Look at this fantastic piece of advice from Microsoft! https://learn.microsoft.com/en-au/answers/questions/2007466/are-costs-incurred-when-attempting-to-scan-passwor
@theodric p4ssw0rd1
-
Look at this fantastic piece of advice from Microsoft! https://learn.microsoft.com/en-au/answers/questions/2007466/are-costs-incurred-when-attempting-to-scan-passwor
@theodric “Microsoft has methods for scanning the contents of password-protected zip files, such as extracting possible passwords from the bodies of an email or the name of the file itself[.]” Cool and normal stuff, your storage provider telling you that they are essentially cracking your data.
-
Look at this fantastic piece of advice from Microsoft! https://learn.microsoft.com/en-au/answers/questions/2007466/are-costs-incurred-when-attempting-to-scan-passwor
@theodric
Does it suggest "password" or "ABC123"? -
@theodric This has to be an LLM response... even leaving alone this horrible security advice, the whole response is trying to do the exact opposite of what the OP asked!
@LeoRJorge @theodric Offering irrelevant / off topic advice is pretty normal for humans where complicated or obscure questions are in play (source: reading lots of StackOverflow and forum responses written before the advent of stochastic parrots). That said, I do agree this is likely slop since the point about the passwords would have to be hallucinated.
-
-
@LeoRJorge @theodric Offering irrelevant / off topic advice is pretty normal for humans where complicated or obscure questions are in play (source: reading lots of StackOverflow and forum responses written before the advent of stochastic parrots). That said, I do agree this is likely slop since the point about the passwords would have to be hallucinated.
@EveHasWords @theodric Yeah, maybe I was giving too much merit to the Microsoft employee who posted the reply...
-
@kr3st3n@infosec.exchange @theodric@social.linux.pizza @phloggen@expressional.social this is an actual technique that works against many commercial AV and EDR solutions
-
@kr3st3n@infosec.exchange @theodric@social.linux.pizza @phloggen@expressional.social this is an actual technique that works against many commercial AV and EDR solutions
@kr3st3n@infosec.exchange @theodric@social.linux.pizza @phloggen@expressional.social a related one is to generate a bunch of very large benign archives to flood the scan queue before it picks up your payload, giving it time to execute before the system flags it.
-
Look at this fantastic piece of advice from Microsoft! https://learn.microsoft.com/en-au/answers/questions/2007466/are-costs-incurred-when-attempting-to-scan-passwor
-
@theodric
Does it suggest "password" or "ABC123"? -
Look at this fantastic piece of advice from Microsoft! https://learn.microsoft.com/en-au/answers/questions/2007466/are-costs-incurred-when-attempting-to-scan-passwor
@theodric what the..what??
-
@theodric what the..what??
-
Look at this fantastic piece of advice from Microsoft! https://learn.microsoft.com/en-au/answers/questions/2007466/are-costs-incurred-when-attempting-to-scan-passwor
@theodric In an unrelated statement, a Microsoft employee also recommended the use of generic locks that are easy to pick, lest you’ll never be locked out of your house again.
-
Look at this fantastic piece of advice from Microsoft! https://learn.microsoft.com/en-au/answers/questions/2007466/are-costs-incurred-when-attempting-to-scan-passwor
Classic Microslop
-
Look at this fantastic piece of advice from Microsoft! https://learn.microsoft.com/en-au/answers/questions/2007466/are-costs-incurred-when-attempting-to-scan-passwor
@theodric I am concerned that Defender is trying to decrypt files at all...
-
Look at this fantastic piece of advice from Microsoft! https://learn.microsoft.com/en-au/answers/questions/2007466/are-costs-incurred-when-attempting-to-scan-passwor
@theodric relatedly, if everybody uses the same password the odds of someone guessing a password goes way down, right? Like, if there are 50 people in an organization and they each have their own password, an attacker is 50 times more likely to guess a password. That's just basic math.
-
Look at this fantastic piece of advice from Microsoft! https://learn.microsoft.com/en-au/answers/questions/2007466/are-costs-incurred-when-attempting-to-scan-passwor
@theodric ah, passwords as social convention
-
@theodric relatedly, if everybody uses the same password the odds of someone guessing a password goes way down, right? Like, if there are 50 people in an organization and they each have their own password, an attacker is 50 times more likely to guess a password. That's just basic math.
@swelljoe your logic is impeccable.
-
Look at this fantastic piece of advice from Microsoft! https://learn.microsoft.com/en-au/answers/questions/2007466/are-costs-incurred-when-attempting-to-scan-passwor
@theodric@social.linux.pizza google is evil but they're good at what they do. Microsoft is just evil
-
Look at this fantastic piece of advice from Microsoft! https://learn.microsoft.com/en-au/answers/questions/2007466/are-costs-incurred-when-attempting-to-scan-passwor
@theodric I’m sure this response was perfectly appropriate…
