Safe deposit box?

Everyone who has one, I hope.

It’s called a Bitcoin “wallet”, too. If someone else is holding yours, it’s not your money.

But they’re almost all using it STUPIDLY, aren’t they?

How many people who purport to have Bitcoin actually hold their own private key?

(strike)Frank from IT(/strike)the cleaning crew

I jest, but I’ve seen more facilities maintenance teams cause power issues than IT teams.

It’s aready possible to flash a phone ROM in two clicks

That’s precisely the kind of access that a web browser should NEVER, EVER have.

If you think 2 stage download keylogger apps getting into app stores is bad, wait until it can be done with a banner ad. Or by viewing a comment on a post.

Thank you for your service to this thread.

“WebUSB is a JavaScript application programming interface specification for securely providing access to USB devices from web applications”

Holy Hannah, NO!!!

Might as well allow a website to direct write to your hard drive unprompted again.

Does noone see how BAD this stuff is?

Stop creating attack vectors with glowing neon signs on them.

This is also why there’s such a a prevalence of flashing warning banners, fake pseudobluescreens, and other scary shit disguised in chrome notifications.

The notifications in chrome are as close to on by default as you can get and with the right code snippets you can make it look like the FBI locked down your workstation and you need to call them.

Firefox should start hardening against this behavior now because popularity gets targeted even more specifically.

Make it an end user safety feature.

Force every notification to have

“This is a notification from a website that you elected to receive by allowing notifications. You can disable these notifications here”

with a link to the setting on the frame of of every one, no fullscreen allowed, no flashing, double-check and prohibit the words FBI, CIA, NSA, TSA, IRS, Social Security, Microsoft, etc.

What do you use now?

I work in IT and between the Advent of “agile” methodologies meaning lots of documentation is out of date as soon as it’s approved for release and AI results more likely to be invented instead of regurgitated from forum posts, it’s getting progressively more difficult to find relevant answers to weird one-off questions than it used to be. This would be less of a problem if everything was open source and we could just look at the code but most of the vendors corporate America uses don’t ascribe to that set of values, because “Mah intellectual properties” and stuff.

Couple that with tech sector cuts and outsourcing of vendor support and things are getting hairy in ways AI can’t do anything about.