Youtube’s ban on “hacking techniques” threatens to shut down all of infosec Youtube

BY GOVERNMENT SLAVES ON 07/04/2019

Once upon a time, companies were able to insist — with a straight face — that the real problem with the security defects in their products was the researchers who went public with them, warning customers and users that the products they were trusting were not trustworthy.

Then came the modern infosec movement, in which hactivists and researchers started to give companies a little grace period before going public, while still rejecting the whole idea of “security through obscurity.” If your security depends on no one else independently rediscovering the defects you’ve identified, you’re going to be very disappointed — just ask all those American cities that are paying out to ransomware creeps who got hold of a defect that the NSA kept secret so they could use it against “bad guys.”

Infosec’s watchword is “sunlight is the best disinfectant.” If you want to prove that a product is genuinely defective, it’s not enough to make the claim: you have to back it up with demos that anyone else can replicate — otherwise the companies will straight up call you a liar and assure their customers that there’s nothing to worry about.

Yesterday, Youtube froze Kody Kinzie’s longrunning Cyber Weapons Lab channel, citing a policy that bans “Instructional hacking and phishing: Showing users how to bypass secure computer systems.” He now has a “strike,” which prevents him from uploading any new videos.

This may sound like a commonsense measure, but consider: the “bad guys” can figure this stuff out on their own. The two groups that really benefit from these disclosures are:

1. Users, who get to know which systems they should and should not trust; and

2. Developers, who learn from other developers’ blunders and improve their own security.

Youtube banning security disclosures doesn’t make products more secure, nor will it prevent attackers from exploiting defects — but it will mean that users will be the last to know that they’ve been trusting the wrong companies, and that developers will keep on making the same stupid mistakes…forever.

SOURCE: BOING BOING

Support Rollie, viewers keep PBS alive PayPal.me/RollieQuaidcom Bitcoin: 124Xagc4ai5wfPLLM3HXwd2bEpFhaqf1yx Every great magic trick consists of three parts or acts. The first part is called "The Pledge". The magician shows you something ordinary: a deck of cards, a bird or a man. He shows you this object. Perhaps he asks you to inspect it to see if it is indeed real, unaltered, normal. But of course... it probably isn't. The second act is called "The Turn". The magician takes the ordinary something and makes it do something extraordinary. Now you're looking for the secret... but you won't find it, because of course you're not really looking. You don't really want to know. You want to be fooled. But you wouldn't clap yet. Because making something disappear isn't enough; you have to bring it back. That's why every magic trick has a third act, the hardest part, the part we call "The Prestige"." patreon.com/Rollie_Quaid https://www.youtube.com/channel/UCB-BQKpAVgKeNmBVgaDvehQ/videos?view_as=subscriber Explore the Mind’s 🧠 👁 Eye

0 comments on “Youtube’s ban on “hacking techniques” threatens to shut down all of infosec Youtube

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: