dgc

This feels like a scam.

The moment of panic when I'm paging through my paste buffer and see something that looks like a generated password. Only to realize it was a regular expression.

@troyhunt "password length must be odd"? 🤣

It would really help me out if spammers would stop putting their company name in their passwords, it takes work to redact this stuff! #PasswordPurgatory 👿

@eevee I know it's satire but... Want?

the man is like a bright eyed indie gamedev. oh my game will be an mmo five hundred times the size of wow. oh it'll have crafting and building and you can play it on your phone but also it's an fps. there are procedurally generated quests and it's a platformer fishing minigame

Hanging out in deloris Park for the first time in years. A park ranger walks up to a group to ask them politely to please smoke their pot away from the kids playground. Subtle changes. Never saw a ranger in the park before.

@Gillis57 I did not plan far enough ahead to make it to defcon this year, but I do kinda want drinks and to talk about privacy, as my Corp role is also in that ball park

If you know me, you know I can resist #DEFCON30. So I'll be there, I used to be extremely appsec focused, but in the last year my corporate role has focused more on a #privacy role, if you want drinks and to talk about #privacy policy and the role it plays in society hmu

The bill is 14 pages long. No bullshit. Just guaranteeing access to contraceptives and information related to contraceptives. Republicans don’t even represent general republicans anymore. They’ve elected extremists.

Now that I'm not quite so feverish I wish I had kept a care log

@caseywest This is the most first world problems take I've seen in a while 😛

People who leave the seat heater on (max) in shared toilets are custodial terr*rists. This is my annoyingly hot take.

@SunnyDisposish1 Mutual hardship. But it's kinda toxic to do that on purpose. Activities around common passions can lead to those situations though.

@campuscodi I would like to know what they mean by "proper testing" please

@chronic @notshenetworks The risk scenario is mixpanel gets subpoena'd for records related to a phone number, and that is used to determine you are a stardust user, then stardust is subpoena'd for all information available on you.

@chronic @notshenetworks Sending identity information to mixpanel is not great, but unless you expect to be attacked on the basis of using the app it's not a huge risk factor. Totally a compliance issue though.

early impression: it’s not great that Stardust sends your e-mail address / phone number to Mixpanel. it does not appear to be as bad as some other period tracking apps, I think. but I am not 100% confident in that, as I am unsure how exactly it leverages Firebase Cloud Storage.

@crowder @nearyd @doctorow Quote tweet the correction then delete?

@nearyd @doctorow Leaving the original post risks that it circulates without people seeing the corrections/apologies

You post a tweet with incorrect information on Twitter, and an expert corrects you. Do you:

@nearyd Own the mistake and leave it for other misdirected people to learn from.

@notshenetworks @TiPoK They could also claim that the data is a special category (health data) Which has additional regulatory obligations. Health data laws differ from region to region but often require effectively indefinite data retention

@dgc @TiPoK They are available in Europe

Question: so if the app is saying they can’t link your account information to your data, does that mean you can’t request they delete your data?

@notshenetworks Fwiw both GDPR and CCPA allow the company to request extra information from you in order to validate your identity before deletion. Also CCPA has so many exceptions that it's not hard for a company to just legally deny your request.

Some people were commenting that they emailed stardust support to request they delete their data and accounts.. and that got me thinking on how they’re going to do that

@TiPoK @notshenetworks GDPR only applies to European customers

@notshenetworks that's really funny, if they did the things they talk about they just broke their GDPR compliance (if they ever were) by not securing anything properly 😂

@thingskatedid I'm just a little disappointed it wasn't boxes

inside the box is... paper

maybe now's a good time to unpack one of the boxes from when i moved in january