Steve Holden's Blog

Follow these steps to discover your what3words address and display it so customers and guests know exactly where to find you.

From Wired: "Feds Halt the National Electric Vehicle Charging Program - The US government has ordered states to retract their plans to build hundreds of federally funded EV charging stations."

Here is a link to the memo: https://www.fhwa.dot.gov/environment/nevi/resources/state-plan-approval-suspension.pdf.

And more coverage at Washington Post.

Google has released a February 2025 operating system (OS) update for Pixel phones!

This came in this morning's email newsletter from Recommendo.

This website will map out where rain goes based on the topography of the land:

•     https://river-runner-global.samlearner.com/

During a recent upgrade to the latest version of Windows 11, the SCR3310 USB Smart Card Reader I was using stopped working due to security issues with Microsoft's Device Security related to Core Isolation (Memory Integrity, Local Security Authority Protection), and the Security Processor.

The fix was to go into Device Manager and uninstall the SCR3310 USB Smart Card Reader.

Then, unplug the card reader and put it back in a USB port.

This should load the new Microsoft Usbccid Smartcard Reader (WUDF) drive, and the SCR3310 should be ready.

During a recent trip to Arizona, I found this "printer" option for those who don't have a printer in a coffee shop. 

I thought it was a good idea.

Hopefully, it will be profitable.

The Internet has good and evil.

Three warnings to review on the evil side:

• Washington Post-
  • She believed she was an FBI ‘asset.’ The scam drained her life’s savings.
  • Enter the ‘ether,’ where scammers weaponize your emotions.
• Wired - 
  
  • Malicious Ads in Search Results Are Driving New Generations of Scams

I got the Google Pixel 6a two years ago, in August 2022, as a free phone on T-Mobile. 

I was surprised to get the latest Android 15 upgrade recently.

Click here if you want to see the new features!

I recently presented the following presentation at Manager-Tools.com's M-Conference 2024.:

"From The Dark Web To the Boardroom: Cybersecurity Strategies from 15 years of attending DEFCON" (PDF presentation download)

These are all the links I referenced in my presentation:

• https://www.technewsradio.com/2024/09/defcon-32-2024-notes-references.html
• https://media.defcon.org 
• https://en.wikipedia.org/wiki/Sun_Tzu
• https://www.wired.com/story/russia-gru-unit-29155-hacker-team/
• https://www.infosecurity-magazine.com/news/malware-service-top-threat/
• https://www.helpnetsecurity.com/2024/02/02/ddos-attacks-h2-2023/
• https://www.nsa.gov/Podcast/
• https://stpetecatalyst.com/local-cybersecurity-firm-we-hired-a-north-korean-hacker/
• https://www.infosecurity-magazine.com/news/malware-service-top-threat/
• https://www.helpnetsecurity.com/2024/02/02/ddos-attacks-h2-2023/
• https://www.hivesystems.com/blog/are-your-passwords-in-the-green
• https://informationisbeautiful.net/visualizations/most-common-pin-codes/
• https://gizmodo.com/google-just-made-entering-passwords-on-desktop-a-thing-of-the-past-200050128
• https://www.aboutamazon.com/news/innovation-at-amazon/what-is-amazon-project-kuiper
• DEFCON Examples:
  
  • https://media.defcon.org/DEF%20CON%2032/DEF%20CON%2032%20presentations/DEF%20CON%2032%20-%20Lennert%20Wouters%20Ian%20Carroll%20-%20Unsaflok%20-%20Hacking%20millions%20of%20hotel%20locks.pdf
  • VIASAT
    • https://forum.defcon.org/node/246846
    • https://www.youtube.com/watch?v=qI_ICtX3Gm8&themeRefresh=1 
• https://www.blackhillsinfosec.com/satellite-hacking/
• ZERO TRUST
  • https://dodcio.defense.gov/Portals/0/Documents/Library/CS-Ref-Architecture.pdf
  • https://dodcio.defense.gov/Portals/0/Documents/Library/(U)ZT_RA_v2.0(U)_Sep22.pdf
  • https://dodcio.defense.gov/Portals/0/Documents/Library/ZeroTrustOverlays.pdf
  • https://dodcio.defense.gov/Portals/0/Documents/Library/DoD-ZTStrategy.pdf
• https://www.bleepingcomputer.com/news/security/hackers-use-poc-exploits-in-attacks-22-minutes-after-release/
• CROWD STRIKE Updates/Patching Issues:
  • https://www.wired.com/story/microsoft-windows-outage-crowdstrike-global-it-probems/
  • https://www.reddit.com/r/crowdstrike/comments/1e6vmkf/bsod_error_in_latest_crowdstrike_update/?rdt=35791
  • https://x.com/Xaaavier_8613/status/1814180533108400569
  • https://krebsonsecurity.com/2024/07/global-microsoft-meltdown-tied-to-bad-crowstrike-update/
  • https://www.wired.com/story/microsoft-crowdstrike-outage-cash/
  • https://www.wired.com/story/hospitals-crowdstrike-microsoft-it-outage-meltdown/
  • https://www.wired.com/story/crowdstrike-windows-outage-airport-travel-delays/
  • https://www.wired.com/story/crowdstrike-outage-update-windows/
  • https://www.crowdstrike.com/blog/falcon-update-for-windows-hosts-technical-details/
• https://owasp.org/www-project-top-ten/
• https://federalnewsnetwork.com/cybersecurity/2024/09/cisa-review-low-hanging-cyber-lapses-plague-critical-infrastructure/ 
• Bonus:
  • AFCEA's "Cybersecurity in the Boardroom" resource (behind a soft paywall):
    • https://www.afcea.org/signal/resources/linkreq.cfm?id=549
•  Graphics:
  • https://www.iconpacks.net/free-icon/test-exam-document-and-yellow-pencil-17449.html
  • https://www.iconpacks.net/free-icon/winner-podium-7836.html  
• Backup Material
  • https://arstechnica.com/security/2024/07/new-blast-radius-attack-breaks-30-year-old-protocol-used-in-networks-everywhere/
  • https://krebsonsecurity.com/2024/08/local-networks-go-global-when-domain-names-collide/
  • https://federalnewsnetwork.com/artificial-intelligence/2024/09/state-dept-looks-to-test-cyber-data-automation-project-by-years-end/
  • https://informationsecuritybuzz.com/generative-ai-fuels-new-cyberattacks/

Let me know if you have any questions, comments, etc.

I am open to presenting this in other venues if you are interested. Just let me know!

Wired recently published their recommendations in an article entitled "The Best Apps for Distraction-Free Writing: Focus on your words and not on your toolbars with these eight minimal writing apps for your computer, your tablet, and even your phone.".

I use two of those recommendations:

1. Obsidian (only application open, one tab open using the plugin
2. Google Docs (full-screen mode, only one document open)

Other best practices: turn off all notifications and close all the other applications on your computer or tablet.

These suggestions work well for Chromebooks, PCs, and Apple iPads.