Cybersecurity

6924 readers

26 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Be respectful. Everyone should feel welcome here.
No bigotry - including racism, sexism, ableism, homophobia, transphobia, or xenophobia.
No Ads / Spamming.
No pornography.

Community Rules

Idk, keep it semi-professional?
Nothing illegal. We're all ethical here.
Rules will be added/redefined as necessary.

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities !databreaches@lemmy.zip !netsec@lemmy.world !securitynews@infosec.pub !cybersecurity@infosec.pub !pulse_of_truth@infosec.pub

Notable mention to !cybersecuritymemes@lemmy.world

founded 2 years ago

MODERATORS

kid@sh.itjust.works

Lanky_Pomegranate530@midwest.social

Only 1% of malicious emails that reach inboxes deliver malware - Help Net Security (www.helpnetsecurity.com)

submitted 3 days ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works

5 comments fedilink hide all child comments

all 8 comments

sorted by: hot top controversial new old

[–] taladar@sh.itjust.works 5 points 3 days ago (1 children)

I keep wondering lately if email isn't borderline useless for a lot of people anyway when it comes to communication with actual people (specifically outside of a business context).

Aren't many of the legitimate emails we receive today from systems where we already have an account and could be replaced by some sort of system of web hooks with service specific auth tokens? Potentially the messages there could be partially machine readable too (e.g. JSON) since most fall into similar categories (invoices, delivery announcements, password resets, calendar invites and/or reminders, bank account or other payment provider transactions or transaction logs for entire months, notifications about direct messages or other events received on some web application or game,...). This might also make it easier to process these automatically (e.g. let the user tell the system to automatically save all bank statements to a specific hard drive folder instead of manually logging in to download them each month after a reminder mail).

[–] opalfrost@friendica.world 0 points 2 days ago (1 children)

@taladar @kid
Not a bad idea at all, only it wont work without automation with a .py script.
If you want one I can suggest, would it work on encrypted mail? yes

[–] taladar@sh.itjust.works 2 points 2 days ago (1 children)

My point was more that we could get rid of the major downsides of email, namely the underspecified legacy technologies and the ability for anyone to send you one, for the vast majority of current applications.

[–] opalfrost@friendica.world 0 points 2 days ago* (last edited 2 days ago) (1 children)

@taladar
And what do you think that automation script does?
in edit: you can set it at your flavor is all I want to say, exclude this or do that.

[–] taladar@sh.itjust.works 1 points 2 days ago (1 children)

Whatever you think it does it certainly doesn't get rid of SMTP, IMAP, RFC822, Quoted Printable and half a dozen other encodings only used in email, MIME/Multipart, email addresses that require 8000 character regular expressions to get anywhere close to validating the full spec, the ability to send mails to anyone by anyone or anything else I was talking about.