Yeah, expecting misogynists to self-report is pretty unlikely to work.
psyklax
joined 3 months ago
Don't worry, it's only a 22 caliber replica
but boy can she place a shot.
Never was obeying in the first place.
4box
Just wanna say
love your hair 😅
If this wasn't loweffortmemes, I wasn't going to upvote. Seeing as it fits the category perfectly, have an upvote :-)
(This meme is pretty old)
That's wild.. how'd he get the email client to send the NTLM hash? That's the real story, there. If you can remotely pull sensitive files like that, you already own that computer. That's an email client vuln, not an issue with the method of encryption.
Actually what is sent is the user’s LAN Manager (LM) or Windows NT LM network authentication challenge response, from which the user’s LM or NT hash can be computed.
Oh.. that's not good. I'm guessing the client was Outlook. In which case, Outlook had a vuln and that was the issue, not the encryption. Or maybe it was windows itself which was vulnerable.
I skimmed kind of quick, but it sounds like Kevin used html email to embed something that loaded from a server he owned. That gave him the target IP, he then did some kind of NetBIOS request where windows sent the NTLM challenge response. That was apparently vulnerable to cracking in such a way that revealed the actual NTLM hash of the windows user being emailed. Then THAT hash was crackable to reveal the actual password of the user.
Not totally sure I read that right, but wow, that is an old ass vuln for windows to still have as late as 2017.
You exchange public keys and then email using your recipient's key to encrypt it. Only they would then be able to decrypt it, using their private key.
https://www.infoworld.com/article/2334365/understand-diffie-hellman-key-exchange.html
I had heard so far that only people who worked closely with poultry had caught it, and that it was not contagious between humans yet.
PGP is a thing. Still.. Trust no one.
I don't understand why you posted this in /politics/
Thanks for the information, anyway. I've been concerned about this new pandemic potentially breaking out in humans and this is quite a development, if true.
I'm in this post and I ~~don't like it~~ (jk) completely understand.
This isn't fantasizing about an unfamiliar future. We experienced this in 2020. The Boogaloo Boys and Rittenhouse were "security". Even the allies in the CHAZ made some bad calls.
I'm one of those who would like to be a protector, but no one should trust a stranger, and that is what I am.
In my experience, it is better to silently do good from the background without recognition than to proudly stand in front where people can try to bait you into a mistake, or misrepresent your good deeds.
Security personnel should have an attitude of service, not of leadership.