He's so entertaining he actually made me stop staring at the Netscape icon to look at him for part of the video.
@BillClinton228
Жыл бұрын
When I see two laptops I see an amateur... he has to have at least 6 laptops on that desk for me to take him seriously.
@Tweaker420666
Жыл бұрын
you livin in 2050. im using ibrowse 2.5 on amiga os 3.1
@mariotabali2603
Жыл бұрын
A friend works in a company where they send dummy fraudulent mails so those who bite are sent to classes.
@Heavenira
Жыл бұрын
yup, that's the worst ever
@BrentBrewington
Жыл бұрын
Why is that bad?
@fettjango1947
Жыл бұрын
they do this shit in my company too
@BrentBrewington
Жыл бұрын
Also, how else do you recommend helping the human operators of the email accounts on their guard? People tend to trust by default, and you have to help them become skeptical of what comes in
@MagicD3VIL2
Жыл бұрын
Hoxhunt?
@Senpapaya
Жыл бұрын
Literally more informative than my job's cybersecurity training
@eIicit
Ай бұрын
Let me come train your company
@patrickkranzpiller6400
Жыл бұрын
I run arch linux, that means I'm beyond human 😂
@יובלהרמן-ח2ד
Жыл бұрын
When he said it, I cried tears of joy
@e-jarod4110
Жыл бұрын
I use arch, btw
@retsim_x
Жыл бұрын
arch btw
@lgroschiensalle
Жыл бұрын
@@e-jarod4110 Using ‘btw’ is now considered insecure since it was compromised in 2021. You should update to ‘btw v2.0’
@mukundiyer5290
Жыл бұрын
Is Manjaro an option?
@bullpup1337
2 ай бұрын
this aged well…. „dont outsource all your security work to a third party!“ if only we had listened
@LordBeef
Жыл бұрын
The part where he puts in the USB the wrong way, then flips it over and it’s still the wrong way, and then he flips it over again and it’s…somehow the right way now? Happens all the time 😂
@SirGarthur
Жыл бұрын
😭
@hasan8084
Жыл бұрын
Happens to me every single damn time.
@lawrencedoliveiro9104
Жыл бұрын
In physics, the electron has a wave function that has to be rotated through 720° to bring it back to its original orientation. #Relatable
@terraneaux
11 ай бұрын
@@lawrencedoliveiro9104 Yup, USB drives have a spin greater than 1.
@davidbakin1953
Жыл бұрын
"How did that affect the power supply?" - "I might have had access..."
@MethodMain
Жыл бұрын
funniest thing lmao
@Laborejo
Жыл бұрын
I don't even know if this is legit advice dressed as parody or the other way around.
@PorthorianTv
Жыл бұрын
Some true some satire :)
@casperes0912
Жыл бұрын
Both!
@ped7g
Жыл бұрын
it's all legit advice. It's just the technology world become a parody.
@GSBarlev
Жыл бұрын
I'm pretty sure that Big Mac hack no longer works...
@derda1304
Жыл бұрын
@@GSBarlev with many products its cheaper to buy the single items than the bundle. everyone thinks bundles are cheaper, so the companies profit from it
@NikConwell
Жыл бұрын
That part about going to a website and getting distracted by the site is so true!
@demetriusjohnson5358
Жыл бұрын
😭
@nobodyspecial1553
Жыл бұрын
3:20 Flips the USB two times. Relatable as always. Edit: 5:09
@psymoozoo
Жыл бұрын
USB has half integer spin
@asnifuashifj91274
Жыл бұрын
usb-a, which is another name for a quantum state device is always in two states so you never know how many times you need to flip it, until you find a good method to observe the time it takes for it to flip long enough to understand whether it is wrong or right
@krisztiankoblos1948
7 ай бұрын
@@psymoozoo 1/2? I stole it.
@ChristianStout
Жыл бұрын
"recorded on proprietary codecs" So this wasn't cut entirely in FFmpeg then?
@chrisrib05
Жыл бұрын
"written on non-free software" not made on libre/openoffice
@thedeadbaby
Жыл бұрын
I love corporate compliance training programs that preach about security (only social engineering attacks) and then the company has multiple other vulnerabilities like storing plain text passwords, bobby tables, unsanitized html storage etc etc etc that would open them up to being shut down by any malicious individual who doesn't need to communicate with anyone in the organization whatsoever.
@TheWaffleRadio
Жыл бұрын
I think they do that in trainings because well, what are Jerry the HR Specialist or Alisha the NE Regional Sales Manager going to about locking up unsanitized html storage, or interact with the storage architecture directly at all? And those are the "everyone does this" trainings. Specialists need more knowledge but for most users, they need to not plug in random USB sticks they find under the couch
@epajarjestys9981
Жыл бұрын
"bobby tables"? I only know this from the XKCD comic where it is a nick name for the son with the strange SQL injection in his name. Is there actually something else called "bobby tables"? When I google all I find is references to the XKCD comic. Also no mention of any other meaning of "bobby tables" on explainxkcd.
@thefacethatstares
Жыл бұрын
@@epajarjestys9981 that's the intended meaning, any software dev will know immediately what "bobby tables" is referring to
@omarjimenezromero3463
3 ай бұрын
unsatinized html and unsatinized javascript forms are my daily dose of cybersecurity awareness.
@peterisawesomeplease
Ай бұрын
Those type of vulnerabilities are becoming more rare with time in comparison to social engineering attacks. And as others have mentioned isn't something its useful for random employees to know about. Thankfully sane defaults on popular frameworks and systems are slowly removing traditional security vulnerabilities. The price of exploits has skyrocketed with time.
@jakecullimore1172
Жыл бұрын
I need to get one of those password managers too, he seemed like a nice guy
@CalebHawn
Жыл бұрын
3:20 I love how it appropriately takes 3 tries to plug in the USB.
@sudocheese
Жыл бұрын
I once heard that USB connectors are four dimensional, so rotating them 360 degrees actually presents the correct face to the jack.
@aleksandarm4489
Жыл бұрын
"Don't outsource all your security work to fivrr !" 😂👍
@AnotherSkyTV
Жыл бұрын
Yep
@ionut9672
Жыл бұрын
i'll send this to our interns as a legit good security training video
@gregt0m
Жыл бұрын
I love this as being n the tech industry and hearing how “security” experts don’t always live by what they tell everyone else to do.
@danial5387
Жыл бұрын
It’s impossible to. I’ve worked in cybersecurity for 10 years and still got tricked by a very well crafted phishing test lmao. Thankfully real phishing emails are always pathetic.
@lanelesic
Жыл бұрын
As a cyber security architect and guru I must say its easier to earn millions scamming people than living that life.
@richmelchr
Жыл бұрын
like a fat doctor
@eli_chaps
Жыл бұрын
Most of us are under the accidental stupidity category.
@eli_chaps
Жыл бұрын
@@lanelesic 💯
@t117m
Жыл бұрын
waltuh... put your usb drive away, waltuh... im not going to have security training with you right now, waltuh...
@vaulttectradingco8438
Жыл бұрын
This unironically can be avery good training video. Most people don't pay attention to security training. Also, my showing how easy it is to hack makes people more paranoid about secuity to a more degree.
@BusinessWolf1
Жыл бұрын
I think the most effective way to scare them of emails is to teach them just enough html and css to understand that's how emails are made pretty, then show them the script tag.
@Thomasfrank
Жыл бұрын
Script involuntarily by Kevin Mitnick 😂
@Slm3lkm
Жыл бұрын
😂😂😂 I can recall the resemblance now
@initor995
Жыл бұрын
😂
@StEvUgnIn
Жыл бұрын
This guy 😅
@Shadowdncer
Жыл бұрын
Somehow this video is better than a course from a Mitnick-owned company.
@clawsoon
Жыл бұрын
We just had to take a Kevin Mitnick security course at our company, lol. At first I assumed that the email telling us to take it was a scam...
@Jadinandrews
Жыл бұрын
Please do a video on the ceo that tries too hard to sounds tech savvy in a dev meeting
@AnotherSkyTV
Жыл бұрын
Nice
@Fighter05
Жыл бұрын
To be fair this was pretty much what my training class was like 15 years go. In my 30s now but back when there "Computer Science" included everything under the sun one of the security talks I had to take to get a student job in the university IT department, was basically this. "Trust Windows Defender because Microsoft is super wealthy and so therefore Defender bolsters the security image of their OS and will be the best tool to use." Back in the day when you would put "Computer Skills - Excel and Microsoft Outlook" on your resume and instantly get the job and the boss would ask you why his computer was running slow.
@GSBarlev
Жыл бұрын
Jen, is that you? If so, great job breaking the internet...
@sethsends
Жыл бұрын
Everything's come full circle because defender edr is one of the better options at this point
@andreilikayutub3496
Жыл бұрын
Oh gosh should I take excel off my resume?
@cryonim
Жыл бұрын
@@andreilikayutub3496 excel is powerful yea and data analysts/scientists and finance depts love their devs (and pay good $). But honestly, ms ecosystem is pure corporate life.
@atheopagan
Жыл бұрын
15 years ago? You mean Windows Defender is not still an entirely new meme? I'm going to need to lay down and process this for a bit.
@klaesregis7487
Жыл бұрын
Loved the USB quantum state!
@fleity
Жыл бұрын
This might just be the best security training I've ever seen. Sending it to my mother immediately xP
@gandalfgrey91
Жыл бұрын
“Just grab the session from someone” 😂😂😂
@zouweninthesky3445
Жыл бұрын
I was waiting for some kind of ad throughout all the video. What a legend, no profit high quality content machine
@NastyWicked
Жыл бұрын
Wasn't expecting the Arch flex that soon into the training. I use Arch btw.
@astrayadventurer4450
Жыл бұрын
You should always expect it. Arch users are like vegans or tesla owners. You'll know within 5 mins.
@snwtime
Жыл бұрын
Please do an interview with a database engineer!
@soryuushi
Жыл бұрын
This is legitimately really good.
@artzoc
Жыл бұрын
Wonderful! This knowledge and the training overall has taught me so much about security that I finally feel safe. TY Also the reasoning why updating your software asap is better (for hackers ofc) is awesome and truly, I think, has to be backed by experience! luv
@allesarfint
Жыл бұрын
Thank you so much for this training, now I can go and click links without worrying about getting hacked.
@MasterSergius
Жыл бұрын
Everybody: laughs Me: painful flashbacks
@NFSHeld
Жыл бұрын
Been an admin for a small startup (well, I AM not an admin, but I did the administration as good as I can; y'know, start-ups, can't afford a professional for each task). Anyway we/I established a "no connection of external to internal devices" rule, so no connection of smartphone, USB stick, hardware etc. to your laptop. CEO after plugging in his iPhone: "Well it's an iPhone, that doesn't apply for my iPhone, right? We don't need to make strict rules, need to make practical rules." My reply was "Okay, then the practical rule will be 'no restrictions whatsoever, because if even the CEO who has access to all the important business accounts refuses to do it right, what's the point in us 'normal' users with limited internal document access trying to secure anything?"
@watsonwrote
Жыл бұрын
The rules you set in the beginning really matter. The company I work for has grown out of being a flexible little startup into a big company with many moving parts. When I joined the IT team was still having growing pains because users were used to lax rules and a lot of freedom, and trying to set and enforce best practices was causing issues for our users. In particular, I do a lot of software review to determine what can be installed on user machines and I've had to review and approve quite a few things that have no business being on a work computer because, in the past, users were allowed to use their work computers like personal machines and many of those programs were grandfathered in. Now the expectation is "if so-and-so is allowed, why can't I also install this?" Some people still don't have their own personal computers (despite being paid absolutely well enough to afford them) and get upset when we don't allow them to install everything they want on them. (Also we have full access to everything happening on these machines and wish these people would stop putting personal files on these devices. Don't let people do that!!) I've been pushing back much harder on users to justify what programs should be reviewed and approved, and my team has been coming around. But if we just had a clear expectation in the first place nobody would be wasting three people's time time trying to get Goose Game Desktop, Steam Live Wallpapers, and MyRewards Shopping Extensions installed on their company's business computers. (The people who's time is wasted include the user, me, and one of the lawyers who has to review the licensing and the privacy policy. I stop the egregious ones before they get to our poor lawyers but some unnecessary things still technically qualify for review sometimes :/ ) Anyway, wish your business the best of luck and hope you find the right balance of practicality and saving yourself future headaches
@Puschit1
Жыл бұрын
Well, in many occasions those strict rules hamper you greatly, causing you to work very inefficiently. For example copy&paste is forbidden between remote desktop sessions. This means I have to manually transfer serial numbers, telephone numbers and the like from customer system or our system and vice versa. The amount of time I waste is incredible, it's error-ridden and totally nerve-wrecking. On top of that it makes no sense whatsoever. If I wanted to steal data I could still send everything via email, messengers or whatever. Okay, at least that leaves traces - but I could also do screenshots without traces. It's just infuriating. Same applies to the stupid password rules. Meanwhile many studies prove what users always new: Mile long cryptic passwords make things LESS secure because no normal human can remember them, especially when you also have to change it every odd month and when you have to manage a dozen or so. And every solution to this (using the same password for everything, writing it down, using generic passwords that cheat the requirements etc) is worse than having a sane password. Of course it should not be "123456" or as simple as your child's name. But forcing everyone to use a minimum of 12 characters including lower and upper cases, numbers and special characters without being similar to the previous password is just too much. OF COURSE people will use the current year as the number, add a "!" to the end and use uppper case at the beginning etc.
@robertsneddon731
3 ай бұрын
@@Puschit1 I saw the password for my contracted-in boss at a bank office by accident. It ended in "22". The Group Policy enforced a password change every two weeks. I asked him, "You've been working here for about nine months, right?" "Yeah, how did you know?"
@Athakaspen
Жыл бұрын
Great content as always, I can't wait to see an interview with a Qubes OS user now lol
@tedkofficial4244
Жыл бұрын
So you update the... [cut] TemplateVM [cut] AppVM [cut] StandaloneVM [cut] dom0 VM [cut] HVM [cut] PVH [cut] ... [cut] and it's with tor, so it takes six hours... [cut] You don't need a graphics card [cut] It's not like you could use it anyway...
@keoagilempolokeng1310
Жыл бұрын
Big fan from South Africa!! I love this channel.
@IanSebryk
Жыл бұрын
this has got to be the funniest thing i've seen in a very long time. more so, because it is absolutely spot-on! keep going, we love your work!
@lgroschiensalle
Жыл бұрын
TIP: If you're at McDonald's (orderin' a Big Mac + large fries/no-menu of course), the "Don't ever plug anything into your computer rule" doesn't apply. The reason is that, everything runs on computers over there now, even the cashier is a computer, and there's a lot o' computers at McDonald's, but.... These computers don't belong to you! So you may plug in anything, and I mean anything, you want into whatever slot/hole/port/socket whatsoever, to your hearts content! Be creative, but watch out for sparks, cuz those milk-shake machines have lots of tempting little slots to plug things into, but if you're a newbie plug-inner, they'll belch out 220 volts if yer' not careful.... Example: Plug in a paperclip into the "reset" hole of the McDonald's Public-WiFi Access Point (if you can find it...) and hold it there fer' a good 20 Mississippis. That sucker should re-boot right up, except now it is yours! Only downside is that Now the "Don't plug in rule" DOES apply, because it is now "your computer"... ughhh
@redin575
Жыл бұрын
This is gold
@BusinessWolf1
Жыл бұрын
amazing.
@lgroschiensalle
Жыл бұрын
@@BusinessWolf1 Thought you'd like that one... True story, happened to S.W.I.M.!
@coderider3022
Жыл бұрын
I was forced to doing a week long course like this and he got it perfect.
@Yupppi
9 ай бұрын
I died at "I use arch linux so I'm beyond humans, but that still doesn't make me safe" how can you hit the punchline at the beginning of the video already.
@natetronn
Жыл бұрын
What is most impressive is being hacked while watching the video. Didn't even see that one coming.
@johnbruhling8018
Жыл бұрын
'Update to the newest version' while I stare at a giant Catalina desktop! And yeah I only dabble in Arch, I'm not crazy!
@dariogeorge8680
Жыл бұрын
Perl Poet is back, baby!
@Finkelfunk
Жыл бұрын
I was shattered when I wasn't able to visit the Harley Davidsone website
@nO_d3N1AL
Жыл бұрын
For anyone wondering, the song is "Fresh" by Kawai Sprite
@Muhammad.Ali09272
2 ай бұрын
Who came here after crowdstrike failure 😂
@watsonwrote
Жыл бұрын
Once has a dev demand that we turn off the auto-link verification in Teams because "developers are smart and won't fall for phishing links" My team unanimously agreed that this was proof we needed to keep the link verification on lol
@keith3761
Жыл бұрын
He forgot the one where a Spec ops team blows the door off your building, seizes you and all your hard drives and makes you unlock them :P
@Gabbyreel
Жыл бұрын
Yes yes very funny but isn't this actually a very accurate and correctly informative video too!?? Very nice work
@DoorThief
Жыл бұрын
Gettin' freaky on a Friday night!
@MethodMain
Жыл бұрын
Hey, it's our PERL programmer Walter Wallis!
@ab.3800
Жыл бұрын
I remember in 19
@nullvoid3545
Жыл бұрын
love the FnF music.
@jamestiotio
Жыл бұрын
Annual corporate cybersecurity training should just show this video from now on.
@amir78989
Жыл бұрын
more of this please! this was so good!
@jbrandona119
Жыл бұрын
Oh for phishing it can just be “Hello, Im your CEO. Buy please 2.000$ (thousand) in Apple Giftcards and email them backwards. Many blessings.” no need for any emotional manipulation 😂
@chrisrib05
Жыл бұрын
This is emotional manipulation: you're scared of losing your job
@sanityd1
Жыл бұрын
You missed the bit where the company you do security for gets hacked and you get fired and immediately rehired somewhere else because no one in the industry thinks it's avoidable.
@mukundiyer5290
Жыл бұрын
This should be in the yearly system security meeting in every company.
@zeo_crash7984
7 ай бұрын
2:50 This is not wrong. I worked at a company a long time ago. The owner refused to shell out the money for antivirus software. One morning before i came into the office one of the support guys had had to go get a faulty machine from a client's site. The machine in question had a virus. Once the guy got it back to the office he found that the machine turned on but he couldn't make it respond to any keyboard or mouse input. In a moment of what can only be described as pure genius he decided the next thing he should try was connecting via RDP. so he plugged the infected machine into the network with no virus scanners. I arrived in the office shortly after and it was a horror show.
@LuCiPh33R1
Жыл бұрын
Netscape Navigator deep cut
@willthepotato
Жыл бұрын
I love the attention to detail in setting up all of Walter's accounts!
@NoahSpurrier
Жыл бұрын
There is no wrong information here.
@patrickalmeida168
Жыл бұрын
Make a DevOps/SRE one
@jacobmccollum1206
Жыл бұрын
That transition music is absolutely incredible hahaha.
@avithedev
Жыл бұрын
Putting the USB in three times 🤣🙌🏾
@rykehuss3435
Жыл бұрын
As a pen tester I was waiting for this
@tylermiller759
Жыл бұрын
This made my day. Thank You
@dfreeuns
Жыл бұрын
Fucking hell. After 30 years in IT I never thought of "password manager" in this way. I'm dying from laughter rn.
@jang2513
Жыл бұрын
"young hansome 60 year old"
@sesa4141
Жыл бұрын
“Is this encryption”
@justinbeere
9 ай бұрын
I received a phishing while reading this video. Thanks Walter
@Amurpo
Жыл бұрын
best beards on youtube
@zeniththetoaster9712
Жыл бұрын
I'm going into cybersecurity and this literally sounds like what the professionals who come to give lectures say. If I had a nickel for every time I've heard LastPass mentioned...
@Ahmera
Жыл бұрын
6:10 more relevant than ever haha
@micyclej
Жыл бұрын
The fnf music really makes this
@naxcyber1171
Жыл бұрын
It’s so true it’s painful.
@MrSpazbomb
Жыл бұрын
With computer security, trust nothing! The father of a girl I dated was a computer security head that would tell me all about the trouble he had keeping unwanted activity off the server he was running. He never found out that it was me.
@allenmills7940
11 ай бұрын
damn, I guess you were penetrating more than his daughter
@Abrifq
Жыл бұрын
8:28 "Waiting for as*" pops up _smacks lip_ "Beautiful" nice
@beyondsingularity
11 ай бұрын
This is actually pretty good security training.
@Psychx_
Жыл бұрын
This is pure gold. TYVM! I'm looking forward to the next video.
@aafjeyakubu5124
Жыл бұрын
I wish my company's security training was like this. So much better!
@45545videos
7 ай бұрын
"In terms of security all Windows is horrible"
@coco0847
Жыл бұрын
very entertaining,,and Informative too
@mohan43u
Жыл бұрын
are we going to ignore 3:02 the greatest secure operating system here?
@bobmcbob4399
Жыл бұрын
I disabled windows updates on Win7 installation, day one. Never had any auto updates, just a few hand picked (
@jacksoncremean1664
Жыл бұрын
Unauthenticated RCE exploit enters the chat
@bobmcbob4399
Жыл бұрын
@@jacksoncremean1664 Don't worry yourself kid.
@ololh4xx
Жыл бұрын
the three stupidity-reasons are pretty much the most precise representation of reality to date.
@MIDNITE69
2 ай бұрын
This is more relevant this year than ever
@MakingYouTube
Ай бұрын
I work as a SOC analyst and this should be in every in company training
@jacobham5298
Жыл бұрын
Friday night phishin
@JohnZakaria
Жыл бұрын
I don't like the slides style It is better when he only talks
@gnuPirate
Жыл бұрын
This is all hilarious, but these videos are also highly educational!!
@FlabbyTabby
Жыл бұрын
These are....... actually good points
@mr.pavone9719
9 ай бұрын
This sounds like our SAEDA briefings we got in the army during the 90s.
@funmath3835
Жыл бұрын
first non -sleepy security guide. order without menu
@Laserchicken88
Жыл бұрын
ah yes 2fa, another step of inconvenience because of peer pressure and providing a false sense of security... and nothing actually changed
@heartache5742
Жыл бұрын
music be like a beep boop
@tcgvsocg1458
Жыл бұрын
cowboy beebop?
@JohnnysaidWhat
Жыл бұрын
Ahhh technology
@MarkRuvald
Жыл бұрын
I expected ffmpeg to be mentioned in credits.
@krisztiankoblos1948
7 ай бұрын
3:20 the USB wrong, wrong , right was Epic.
@chriscyphercat
Жыл бұрын
I thought lesson 3a was "never plug in or don't own anything". That would still be legit advice.
@petrihadtosignupforthis8158
2 ай бұрын
You remind me of former colleague. Including the prep before presentation.
Пікірлер: 441