• 1 Post
  • 86 Comments
Joined 2 years ago
cake
Cake day: June 2nd, 2023

help-circle






  • I really don’t mind that they hide the button to enable installs from .APK when they are being directly downloaded. It has been in my opinion very bad idea from the beginning that it shows that, it has enabled multiple malwares in android. Non-technical people should not have easy way to install things, even with big warnings, because people ignore warnings.

    If google removes the ability to install non-store apps all together, then that day I will stop using Android.



  • CrowdStrike Falcon is XDR product, there is hundreds of similar products available.

    The role of XDR is to detect and block if some bad actor is trying to do something malicious in the machine. Old school virus signature detection is not enough anymore, you need pattern detection from network communication/DNS queries etc.

    When corporation has thousands of devices to monitor the OS each of those devices Is not relevant. You need to detect if some random user logs to some Linux info display thousand kilometers away, and starts scanning the network.

    Because the detection and response, needs to happen near realtime, for example Incase of cryptolockers, where all devices are encrypted within seconds, the software blocking this needs kernel level access.

    I work in critical infrastructure as IT, but luckily we did not use falcon