* Posts by Robert Helpmann??

2578 posts • joined 31 May 2011

Twitter launches probe after miscreants claim to have swiped 5.4m users' details

Robert Helpmann??
Childcatcher

Re: As always

"As always, we're committed to protecting the privacy and security of the people who use Twitter"

if people were actually committed, there would not be an issue with privacy or security

If people were committed, they would be denied access to sharp objects, stay sedated most of the time and have occasional interactions with hospital staff.

UK lays world's longest autonomous drone superhighway

Robert Helpmann??
Childcatcher

And when the medically unattended passenger is DoA it'll be a bit of a problem determining place of death.

I should think vitals would be monitored and logged as would location as the "delivery" progressed. This should be as simple as corelating two logs. I can only hope the human delivery compartments will look like giant pizza boxes and the tracking app will be licensed from Dominos.

Microsoft sunsets Windows built-in data leak prevention

Robert Helpmann??
Childcatcher

XaaS

Microsoft generally insists that users get more value from SaaS because it can be updated more frequently, doesn't need on-prem maintenance or hands-on admin, and … and well … cloud is just really good, okay?

This is like the argument that if you spend a lot more on things that you don't need or want but are marked down from their original overpriced amounts you are in some way saving money. In this particular case, it's also about the difference between purchasing something and renting it and it's pretty clear who comes out ahead in that scenario.

We've got a photocopier and it can copy anything

Robert Helpmann??
Childcatcher

Re: Don't know if it's just that my coffee hasn't kicked in yet...

"Hey, Cletus! Hold ma beer and watch this!"

"Hold my beer!" is the redneck equivalent for "Once upon a time" except it only applies to tragedies. For dramas, instead use "No shit, there I was." For romance, something like "I was at my cousins' wedding..." works well.

Five accused of trying to silence China critics in US

Robert Helpmann??
Childcatcher

Re: Double standards

The issue is more contentious than you suggest. A first amendment argument could be made by those whose reviews were deleted because critical of the xi book, less so by Amazon.

This wouldn't get very far as a free speech issue as Amazon's marketplace should not really be considered a public forum for a few reasons, not the least of which is that it is not the government implementing the restriction. Someone still might use it as a way to make a public point in other media, but a suit based on that alone would most likely be dismissed on the merits. Even given the possibilities brought up in the cited article, I doubt there would be much appetite among the Supremes to allow anything of that nature to stand longer than it takes to say "amicus brief".

Don't ditch PowerShell to improve security, say infosec agencies from UK, US, and NZ

Robert Helpmann??
Childcatcher

Re: Good

...this was clearly just an extended joke.

So a bit like PowerShell's original codename, Monad? To me, PS is emblematic of so much that is Microsoft: allow customers plenty of time to learn to use a given product and then switch it out for something that does the exact same thing differently while promising improved performance and functionality but in reality just costs a lot of wasted productivity while users have to relearn how to do the exact same things they could do perfectly well before... Which MS product does this sound like? My expectation is that PS is about due for a replacement because it has a large enough user base to make it worth targeting.

$6b mega contract electronics vendor Sanmina jumps into zero trust

Robert Helpmann??
Childcatcher

A good tool, but a bit oversold

I can see how this would be useful for most users in a given organization and definitely get that this might reduce bandwidth demands leading to a number of benefits. I especially like that they are working to address IoT issues, though they are vague on how they are attempting to address them. I am also curious how someone on the O&M side would benefit from this. I have worked in environments which require jump boxes to work on sensitive systems and they always, rather than making things better, instead lead to a different set of issues to solve. That's what this solution sounds like it would need. Perhaps VPN for some and this for most?

NSO claims 'more than 5' EU states use Pegasus spyware

Robert Helpmann??
Joke

Re: I don't understand

why anyone would buy this Pegasus stuff, when they can get the "leaked" N.S.A. stuff for free on the net"

So they can call the support line when they have deployment issues.

Telegram criticizes Apple for 'intentionally crippling' web app features on iOS

Robert Helpmann??
Childcatcher

Re: That's Apple for ya

They quite simply have fallen behind on developing their browser

You say "basic slothfulness" and I say "believable spuriousness" but it's all just BS.

Atlassian: Unpatched years-old flaw under attack right now to hijack Confluence

Robert Helpmann??
Childcatcher

Re: What ?

To avoid any number silliness, I just use the date as version number in YYYYMMDD format.

And I am sure there will be someone out there saying the same thing except formatting it MMDDYYYY.

Australian digital driving licenses can be defaced in minutes

Robert Helpmann??

Same with the "more secure" claim. An altered or counterfeit physical DL would show up as such the moment the police ran the card, so how does that back up the claim of more secure? If it was more secure, it would be harder to fake or change. This is actually easier as more people have access to the equipment needed to change it and learning how is presumably a couple clicks of the mouse away.

US won’t prosecute ‘good faith’ security researchers under CFAA

Robert Helpmann??
Childcatcher

Re: "That's breaking and entering"

Um, no ... it's not; it's simply "illegal entry".

I looked this one up because IANAL and wanted to check... Short answer is that if you have to open the door, you are applying force and this constitutes "breaking", at least in some jurisdictions. Obviously, practical definitions vary by jurisdiction within the US. I am not even going to try to address other countries' legal intricacies.

REF:

https://www.law.cornell.edu/wex/breaking_and_entering

It's time to kick China off social media, says tech governance expert

Robert Helpmann??
Childcatcher

Re: makes us no better than them

There are other ways to defend yourself. It's fine to allow Chinese or any other voices on Western social media as long as we know who is doing the talking. This is not to say there is no argument to be made for anonymous sites, but it seems a bit odd to me that what we call "social" media involves a lot of socialization with folks we don't know and have no way of finding out who they are.

#notapartymember

Researchers find 134 flaws in the way Word, PDFs, handle scripts

Robert Helpmann??
Childcatcher

...running a script within Acrobat is no more stupid than running one outside of it.

Depends on the level of security you want to have. Applications like Acrobat are well known for having this capability and are attacked for that very reason. People get sent booby trapped documents all the time in hope they will open them. Not allowing Acrobat, MS Office and similar to run scripts by default cuts down on this sort of behavior being successful. You can still run scripts which can be vetted or blocked independently, but in general this is a good thing to turn off.

Iran-linked Cobalt Mirage extracts money, info from US orgs – report

Robert Helpmann??
Paris Hilton

Re: Secureworks' Counter Threat Unit (CTU)

Maybe they're better at not getting caught. Using ransomware isn't exactly the best way to fly under the radar, after all.

Email domain for NPM lib with 6m downloads a week grabbed by expert to make a point

Robert Helpmann??
Joke

Part of the problem is that JavaScript developers often use JavaScript...

FTFY

REvil resurrected? Ransomware crew appears to be back. Keyword: Appears

Robert Helpmann??
Trollface

Re: Russian government ties to criminals? Can't say it would surprise me.

If they weren't already working for the Russian government before, it's likely they are now.

It's no longer crime if it's government sanctioned, after all.

Now Mandiant says 2021 was a record year for exploited zero-day security bugs

Robert Helpmann??
Childcatcher

Re: "Zero day"

And I expect that the bad folks have rather more (and possibly better organised) resources for finding the vulnerabilities, as there's potential for serious monetary returns for them.

It is important to keep in mind there are other motivations than money when it comes to hackers. These inform what the targets are and what methods are used.

Crooks steal NFTs worth '$3m' in Bored Ape Yacht Club heist

Robert Helpmann??
Childcatcher

All the cool kids are doing it

When I read miscreants stole four Bored Apes, six Mutant Apes, and three Bored Ape Kennel Club NFTs, plus "assorted other NFTs estimated at a total value of ~$3m", all I could think of was this is like a CCG for adults who thought those were a good deal growing up. Before that, baseball cards and before that, tulips with maybe a few other bits of foolishness in between.

Atlassian comes clean on what data-deleting script behind outage actually did

Robert Helpmann??
Happy

Re: Cut once

You still write cheques? How very last century! :-)

Yes. On a cow's back.

Singapore to license pentesters and managed infosec operators

Robert Helpmann??
Childcatcher

Doing the Necessary

In the US, the requirement for contractors is usually one of having a particular set of certs, so on a practical level, it is much the same. The biggest difference would seem to be who you give your hard-earned to.

Japanese startup makes baby carrier-style sling for 'Love Robots'

Robert Helpmann??
Unhappy

Re: I thought my brain would explode...

"LOVOTs are only sold in Japan – either on subscription or outright from ¥283,000 ($2,300) for a pre-loved unit."

Ew! Just ew! No amount of bleach is going to fix this!

The time you solved that months-long problem in 3 seconds

Robert Helpmann??
Childcatcher

Printer Down

I worked for an arts college as one of my first IT admin jobs. I got a call from the dean of the 2D school telling me he had a problem with his printer and that it hadn't fallen from the top of his filing cabinet (his words). I arrived, took a look at the HP IIP with the front crushed in lying on the floor and agreed that it had indeed not fallen, as he had claimed, and got him a replacement ordered the same day. I was able to use the rear portion of the original printer and the front of another piece of moribund equipment to create a Frankenprinter. The freshly ordered printer enjoyed a more secure perch on a work table in the dean's office. All was well.

China declares a new era of digitization has begun

Robert Helpmann??
Devil

There's also the matter of the "one card" being literally that: a single card. I equate that with a single point of failure. What happens when some government jobsworth pushes a patch out to a bunch of authentication servers this thing makes use of which causes the lot to go down? Or someone decides it's a good way to protest a horrible and oppressive regime? Hilarity will ensue.

Unable to write 'Amusing Weekly Column'. Abort, Retry, Fail?

Robert Helpmann??
Windows

Stay just the way you are!

OK, so it's not as funny but we all have to grow up at some point. That's what my kids tell me, anyway.

You have to become older but you do not have to become mature, no matter what your kids might say.

SAP community website leaks member data to savvy users

Robert Helpmann??
Pirate

"XXX takes security very seriously and we are vigilant about addressing security concerns."

Any time I see an official statement that tells the world a company takes security very seriously, I am sure they did not, it caused them to have some sort of exposure and they are most assuredly not going to learn from the experience. How does making your customer base and their contact info tie in to good security practice? It's not like a bad actor could harvest that information and use it for spear phishing or gain access to their accounts through already-exposed passwords from other sites because password re-use is a thing. Just a couple of issues typically explained in any corporate security orientation.

Another data-leaking Spectre bug found, smashes Intel, Arm defenses

Robert Helpmann??
Facepalm

Re: Actually...

...when a statement implying a discussion - "which engineers ended up prioritizing performance over security:" that discussion never happened.

Never happened because it never crossed their minds that it might be important? Color me shocked!

Russia labels Meta an 'extremist' organization, bans Instagram

Robert Helpmann??
Childcatcher

Re: Classic Putin

What is the alternative to diplomacy?

Aggressive negotiations?

Taiwan rounds up 60 Chinese tech workers on suspicion of poaching tech and people

Robert Helpmann??
Childcatcher

Re: Down with foreigners!

as much as I understand the anger towards "poaching" employees, wouldn't it just be "supply and demand" at work?

If I understand the issue correctly, the issue is more that these employees have knowledge of trade secrets that China wants to acquire and that these employees are not legally allowed to share. Just a SWAG.

Moscow to issue HTTPS certs to Russian websites

Robert Helpmann??
Childcatcher

Re: actually

I was just reading an article on IPv6 myths. Pretty funny, really, in that the author started out trying to debunk a few things concerning the format and ended up mostly proving them.

https://rednectar.net/2012/05/24/just-how-many-ipv6-addresses-are-there-really/

Europe's largest nuclear plant on fire after Russian attack

Robert Helpmann??
Childcatcher

Re: Evil mastermind or incompetence at work?

Don't attribute to malice what incompetence adequately explains, except perhaps when both are in play.

BBC points Russians to the Tor version of itself

Robert Helpmann??
Holmes

Old News

"Access has been restricted to a host of information resources owned by foreigners."

So moving from de facto to de jure? Expected this a while back and am surprised it has taken this long for Russia to move on this.

ARPANET pioneer Jack Haverty says the internet was never finished

Robert Helpmann??
Childcatcher

Re: It shouldn’t be completed

...people don’t understand how it happens they just care it does.

This phrase can accurately be applied to almost every user of technology throughout time. I say "almost" because some of those who create and support a given tech also use it and they might understand it as well. The rest have no clue nor care.

Microsoft offers defense against 'ice phishing' crypto scammers

Robert Helpmann??
Joke

Re: I have a sure fire way to avoid these Web3 Scammers...

Ice phishing? But what about my NFT collection? If someone starts targeting NFTs, what will we call it? Mushroom picking, because they have "fungi" in their name and they're a single step away from poop?

Taiwan cracks down on China spying on tech firms

Robert Helpmann??
Childcatcher

You had me until the bit about "I don't think China is really interested in Taiwan". China is interested in anything that isn't nailed down and quite a bit that is. Not that they are unique in this. Just saying.

Privacy and computer security are too important to be left to political meddling

Robert Helpmann??
Childcatcher

Re: Obligatory Reply

I look at the "What do you have to hide?" question in reverse. One of the things a right to privacy ties into is the presumption of innocence as far as the government is concerned. If there is widespread surveillance, then it implies a disregard for this. Also, while this argument is focused on government access to our lives, companies such as Meta profit greatly by eroding the concept of privacy and that we should be concerned with it at all. They have taken the approach of catching users while young and training them up to think that it makes sense to make public their private lives. Government and industry efforts play off each other in this regard and are a blight.

Facebook is one bad Chrome extension away from another Cambridge Analytica scandal

Robert Helpmann??
Childcatcher

Re: Deflect and play down

As part of that deal, Facebook committed to limiting third-party access to user data.

Unless they get paid for it, in which case profit.

On a personal note, I recently posted to FB for the first time in several years. It was a quick note about a Magritte print I had never seen before. I can only guess at the consternation this caused the algorithms Meta employs to track users. If they can make a profit off that, more power to them.

UK cybersecurity revenue up 14% on last year to £10.1bn

Robert Helpmann??
Unhappy

Re: skills training

No. Just no. Security through obscurity as a valid method has long been debunked, although you do make a good case for it in as much as the meaning of your statements is secure from outside understanding, AMFM.

Google expands Privacy Sandbox to Android

Robert Helpmann??
Childcatcher

Re: Google's track record

... if only there were a way how to extricate oneself from Google's tentacles and acceptable forward security of private data...

If only? It takes effort and therein lies the rub. Google makes it easy to access a lot of important services all in one go. Any direct competitors to Google do pretty much the same thing with users' data and any secure, user-oriented services that cover any of Google's suite are very focused on just one or two areas. Few folks are willing to make the effort to secure their digital lives or to go through the hassle of shopping around, but it is possible with effort to avoid Google's trap.

Russia 'stole US defense data' from IT systems

Robert Helpmann??
Holmes

Re: Skid mark

That would seem to be the entire point of the post.

Microsoft prepares for its staff to return to Washington sites

Robert Helpmann??
Boffin

Re: "Remember to keep the Windows open"

WA isn't even in the top 10 for the rainiest states.

The eastern half of the state doesn't get much precipitation because of a few annoying hills blocking clouds getting there, so on average Washington state is not the rainiest, but where most of the people are (along the coast) there's plenty of the wet stuff to be... enjoyed.

IBM HR chief insists 'no systemic age discrimination'

Robert Helpmann??
Childcatcher

Re: Utter Management Stupidity

This is a prime example of the utter stupidity of senior executives in American Corporations and how they are so focused on the immediate cost reductions and not even aware of the long term costs of their actions.

I think you are confusing lack of awareness for lack of concern.

IBM looked to reinvigorate its 'dated maternal workforce'

Robert Helpmann??
Coat

Re: 16 going on 64

Not mean, per se, it's just that such thinking has always been à la mode with management.

Mine has an introductory statistics book in the pocket 68% of the time.

Sophos: Log4Shell would have been a catastrophe without the Y2K-esque mobilisation of engineers

Robert Helpmann??
Childcatcher

...the Log4Shell vulnerability has made it clear just how dependent some companies are on open-source components they don't even know about, don't contribute to or don't have a support contract for...

So open source doesn't equate to freedom from contributing to and maintaining the health of the tools being used? There ain't no such thing as a free lunch!

No more Commercial Space Astronaut Wings after this year because FAA has been handing them out like candy

Robert Helpmann??
Coat

Re: Raising the bar

...Virgin's joy ride sled should be a special case... anyone who has the guts to [climb aboard] deserves some form of recognition.

There is always the Darwin Awards. Maybe create a category for special effort?

*Mine's the one with a dog-eared copy of On the Origin of Species in the pocket.

Newly discovered millipede earns its name by being the first to walk on one thousand legs

Robert Helpmann??
Childcatcher

"We need to build a large taxon collider to find fundamental specification particles and confirm the possibility of a variety of proposed theoretical chimeras."

Somewhere, inevitably, a politician will read these words and funds will be allocated.

WTF is a 'software-defined community cloud'?

Robert Helpmann??
Childcatcher

Re: Google gargling at its best

Google has history in providing products with marginal functionality targeting business rivals' cash cows. They do not do it to give the users of these products something worthwhile. Rather they seem only to want to screw with their opponents in the tech sector. I can think of no better explanation for any of the Google Workspace products that are similar to the Microsoft Office suite. Microsoft responded with Office 365, so mission accomplished. It looks like this cloud product is there to compete by buzzword. I wonder how Amazon et al will reply.

GPU makers increasingly disengage from crypto miners

Robert Helpmann??
Childcatcher

Re: "more troublesome than real money without any real advantage"

the whole thing with blockchain, and bitcoin (and all it's clones/derivatives/etc.) is that it's using increasing amounts of power and compute for something that is at the end of the day, a thing to barter with.

That was a design choice in that it was intended to prevent there from being an infinite amount of a given currency. What happens when quantum computing matures a bit more and there is essentially an infinitely greater amount of the stuff to be made for the same cost of resources?

BOFH: You drive me crazy... and I can't help myself

Robert Helpmann??

Re: Genius

"Does this carpet pull up?"

We need to come back to this! I feel cheated that no one ended up in a carpet, on fire, buried in cement or otherwise given platinum level BOFH service.

SUBSCRIBE TO OUR WEEKLY TECH NEWSLETTER

Biting the hand that feeds IT © 1998–2022