Keeping an eye on online identity, privacy, and security.
This page displays the recent posts I've published via my Mastodon account @jtrentadams@infosec.exchange.
There's a lot of great points made in this post by @mttaggart and the comment thread that I agree with (and some I don't)... but overall, a useful read.
Key among the takeaways, IMO, is that well-considered collaboration between individuals can have more of an impact than individuals would likely have alone.
Wow... so excited that "Brothergirls", a short film my son worked on, has been invited to show at Cannes! It's a great story that I hope to make into a series someday (with a distinct "Derry Girls" vibe). Hope you enjoy it!!
Well, there's no way this could go wrong... an AI company having carte blanche to train it's models on a heavily alt-right, conspiracy-laden corpus. (Not that they weren't already doing it.)
#xai #x #twitter #ai #llm #fail
https://www.reuters.com/markets/deals/musks-xai-buys-social-media-platform-x-45-billion-2025-03-28/
I was just introduced to an amazing new team tradition... a weekly sharing of "Wins" and "Gratitude" that help folks celebrate the goodness at the end of a hard week... What a great way to enter the weekend on a positive note. Thanks, @mttaggart for introducing me to the tradition! :)
ATTENTION: Cancer Research Grant Applicants
Apparently, if you include the terms "at risk, belong, bias, breastfeed, female, inclusive, most risk, race, sex, status, systemic, women" in your NIH grant to perform research on (for example) breast cancer... you'll likely be flagged as potentially in violation of the current regime's view of "appropriate nomenclature."
This is wrong... just wrong... on so (so) many levels.
NOTE: I am on the board of a cancer research NCORP. And I'm looking for who to bring this issue to. Suggestions?
https://www.nytimes.com/interactive/2025/03/07/us/trump-federal-agencies-websites-words-dei.html
Well... can't say it was unexpected... but sheesh. IMO, the drop-in-the-bucket savings of $10MM is going to significantly disrupt ISAC coordination activities. :/
At first I thought this was just a humorous video making fun of AI assistants talking to each other like R2D2:
https://www.youtube.com/watch?v=EtNagNezo8w
... but then I found the GitHub repo with the GibberLink communication protocol code:
Holy insecurity, Batman! I strongly dissuade any US Federal employees from responding to the "what did you do last week" email. Seriously? That's a cRaZy security risk when potential responders don't necessarily understand what they should / shouldn't be sharing with an insecure receiver.
... then I realized I could generalize their error page to be more comprehensive. There, fixed it! :)
Heh - I just noticed I had a tab open to what was a summary of cybersecurity directives from the previous administration on the Whitehouse.gov site... but is now 404.
No surprise to anyone... government cybersecurity folks I know are exploring private sector positions... anyone looking to land experienced hands (analysts to CISOs), hit me up for connections. They're good people caught in a maelstrom.
#cybersecurity #standards #fedramp #jobs #jobhunt #connections
The folks at .Bank published the #InfoSec executive interview they did with me a few months ago... Too bad it's already dated, though, as we've moved on from #ARC to #DKIM2. Other than that, it's not bad as my style of speech does seem to have survived the editorial / pr / legal gauntlet. :)
https://register.bank/media/executive-interview-trent-adams/
For those who've been working with ML tech for decades, it's great to see it and its AI cousins hit the main stage (again)... but it also takes a great deal of patience while the general public (and marketing wonks) slowly ramp up to speed.
While at the Oktane Identity conference in Las Vegas, I found myself chatting with a US Air Force employee who he told me: "I don't believe in climate change. I'm no scientist, it's just what I believe." ... I nearly cried.
I can't help but feel that Proofpoint missed out when enumerating only 5 products in it's Nexus line of cybersecurity defenses... though... perhaps they're still working on Nexus VI.
Every project starts with a clear idea of the end goal... now it's time to boil the ocean!
People frequently call something a "science" when what I think they mean is "engineering". This seems to happen when folks refer to something complicated... but they aren't talking about rigorous testing of a hypothesis.
