I work both cybersec + fun/research, LOVE this resource and lucky to have come across it here. Subscribed via email & looking forward to RSS. Thanks for sharing it here!
Thanks so much, that really means a lot! I'm actively upgrading the feed right now: more vendors, faster signal (closer to real-time), and smarter triage to cut through the noise.
I’m also shaping a Pro tier and would love your input. Some of the things I’m working on:
There are multiple 'National Archives' across the country: https://www.archives.gov/locations Looks like this only affects the one in College Park, MD.
Really wish people didn't continue to misunderstand the concept of wealth & having cash. First sentence of the article:
> Back when Elon Musk had a bank account with merely one billion dollars in it he had to borrow money from the federal government to get his fledgling EV automaker off the ground. In January of 2010 the Department of Energy's Loan Programs Office floated Tesla $465 million ...
> The Verizon Call Filter app uses the endpoint hxxps://clr-aqx.cequintvzwecid.com/clr/callLogRetrieval to lookup call history for the authenticated user and display it in the app.
Have you ever seen a more internal-looking domain name?
It does look very internal, but the root domain name is more comprehensible than it might appear.
Cequint is a company that provides caller ID services. "Vz" is short for Verizon. "Cid" is short for caller ID. That only leaves "we", which probably refers to either
"wireless" or "web" in some way, e.g. wireless/web "edge" or "endpoint".
The domain is therefore the Cequint Verizon Wireless (Web?) Edge Caller ID endpoint.
I don't know what clr or aqx are, though. (I assume CLR is not Microsoft's Common Language Runtime, but I suppose it could be. I know at least one company that likes to name services after the technology used to implement them.)
though it seems a little strange that the name of the endpoint would be repeated three times across the URL (including domain name), it looks like CLR stands for "call log retrieval"
I don't get that at all. I understand this to point to an attempt at scrubbing information that could lead back to him personally -- but done poorly as Krebs pointed out that other personal photos continued to exist on the Facebook account afterwards.
I just wish Microsoft had a simpler mindset for their OS. Simple, privacy-first, consumer-first defaults and optional upgrades to more enhanced tools via their App Store.
Imagine if instead of Windows Recall being installed and available automatically on machines, they just added Recall as an optional downloadable add-on via the App Store... I don't think it would have received nearly as much backlash.
I don't think creating a separate tier of enhanced OS upgrades would benefit Ubuntu. Ubuntu isn't connected to a multi-billion dollar corporation. Canonical has no resources to offer a free AI-powered Notepad editor. Microsoft is connected to OpenAI, Microsoft has AI-hardware partners, and Microsoft has the in-house resources to create new drivers for new hardware/software compatibility issues.
There will always be valid reasons to use Windows over Ubuntu.
The pricing is very interesting. The company I work for pays $20k for Jira & Confluence and $20k for Slack every year. And this platform claims I can replace both of them for $3600/year? and it's open source? The marketing looks great, so I hope the platform is actually a good competitor. I'd be so curious to see what their revenue is every year.
Basecamp is also the same price. SaaS pricing is all made up. If you're a high-margin SaaS company the idea of spending $40k/yr for this seems... fine. If you're a small business, or you operate on retail margins, you'd laugh them out of the room, and rightly so as there are great tools at far better prices.
The idea of every service charging $15-30 per user per month is a myth perpetuated by companies who themselves have that budget to spend out of their VC funding.
SaaS pricing is so weird because for so many things because the cost to run per user is almost zero, but then the company is spending tens or hundreds of millions of dollars developing the software.
Evernote once had a valuation of nearly 2 billion, and like 400 employees.
I replaced it with Obsidian which gives me more value and it was mostly just made by two people, now they list 9 employees, one of whom is the office cat.
Each company for me was just syncing some text and maybe a few larger things like PDFs. The actual cost of that is pennies per year.
I am of the opinion that curl is better simply because you are already in the command line. You can use vim fzf or bash with it. Also curl will be the same on the day you die.
Not only this, but it's worse for the fact that it's in a web browser, vs just being a native app that could be sold once, or at least with a yearly subscription for maintenance at 1/10th of the cost.
The problem is that they realised they could make more money by trying to lock companies into a proprietary API definition platform – they want the design, testing, QA, documentation, etc, all to happen in Postman.
I guess my point here is that being closed is directly against the goals of the technology. Apple's lock-in is either a side effect or potentially even beneficial to their goal of providing a good phone/computer/whatever, whereas commercial lock-in is fairly clearly opposed to creating an API ecosystem that is usable across a range of technologies/consumers/etc.
SaaS pricing is based on how captive the customers can be.
I am not a fan of Atlassian products, but what retains them the most aren't the qualities of the products themselves nowadays, but the integration and plugin ecosystem + the difficulty of exporting the data. Nearly every tool has an integration for either jira, bitbucket, confluence, or all of them. And you would usually dismiss any tool that doesn't have them if you are an Atlassian customer already. Once you have set that up but decide you are paying too much for it, good luck good luck telling your users they will surely lose data/formatting/integrations when migrating to some other tool. This + having to train people to use another tool while companies usually take for granted that their users won't get lost in Jira (which really isn't true).
