Posts by Halfmad

I don't see any issue with this.

Particularly as the NHS is using AI in many, many more health related decision making processes. Not that I think our government will for a second adopt similar legislation.

Colorued waffle?

Anyone for some coloured waffle?

Re: Pi-Hole

For the lols go to the daily mail before and after setting it up. The difference is insane.

Sadly it's not an entirely blank page which would be the ultimate improvement.

Re: The standard

Oh they care.

Bigwigs will not be pleased.

Re: "it essentially hardens all email users who rely on Microsoft Exchange Online"

Don't forget it also encourages them to adopt other related products to secure their Microsoft Exchange Online.

Re: Sourcing everything from the UK

and most of that coal comes from one place, a surface level mine that's almost the size of a city.

Re: None of those are "home office"

I'd be happy with a 5MB/s thanks.

Because those supplying the phones are happy with the status quo.

As an added bonus.

For your added benefit we also fingerprint your activity, device and track your usage all over the internet even when someone else uses your device we help you by attributing that use to you as well.

You are welcome.

Requirements are included to ensure a consistent experience and reduce support calls due to under spec'd hardware but they should always been seen as a guide.

I can't remember the number of times my PC in the 90s didn't meet requirements for AutoCAD or games - yet I used it perfectly happily.

It's mining your interactions with it irrespective of whether you make a purchase or not. Any interaction can be used and that could also be accidental - or why not even expand that to be passive listening and mining since that's how the devices have to operate in order to be ready to respond?

It's not ridiculous to complain that you are unaware of essentially dubious use of your interactions

from her bio: "Break the silos and let's get S*** done."

Silos are sometimes there for a good reason.

Re: I have just one question

Those of us working in CNI were aware of it before the invasion. What you should be asking is what CRITICAL national infrastructure needs warning and to be told to "shields up" just on the days we might be at risk.

We're at risk 24/7.

Re: Money can't buy maturity

He never joined because of the restrictions over how much stock he could own.

That would suggest he planned to buy more from day one.

Re: " D-Link suggest that you retire these models ASAP"

Planned obsolescence ?

Even accidental as may be the case here should result in some form of compensation.

Re: Pull the plug , Scotty.

Not the brightest spark are we?

Even if we could disconnect them entirely, what about civilian reporters, journalists etc who are providing the truth of what's going on - do we really want to cut them off too? That's what would happen, the veil would fall and what little scrutiny and independent evidence gathering and exfiltration would stop.

Re: "sources finger Capita-run system"

It's similar in most governmental frameworks or the price is weighted so heavily that other concerns can never be enough to counter balance it.

Re: I don't see a problem in his statement.

He spouts about possibilities with little science backing it up. Hyperloop, fake electric truck etc etc.

Sure he occasionally gets it right and he's certainly someone worth following as I do think he's absolutely necessary to have - people pushing for more, better, faster and change but he's not worthy of the idolisation he gets, he's wrong far more than he's right.

Thing is when he is right he makes people wealthy so you can see why they speculate on his BS.

Re: It's complicated

All for it if we have anyone worth considering as a replacement. None of the parties are brimming with ethical competent people these days.

I'm more worried about us not having any strategy for recycling them, other than landfill.

should be illegal to use until this is in place and ideally owners pay.

I don't believe that for a second. I do however think that a VAST majority of people involved CLAIMED to have made good money out of it.

Nobody likes admitting they lost money on something like this to people they know.

Re: Can't fix

The same type that will grill you over business continuity while having no plans of their own.

I was a CAD draughtsman back in the 90s on a DOS version of AutoCAD. I remember the costs back then were insane and I joked that one day they'd find a way to do away with the dongles and screw the company over some other way.

Later on I found out about the subscription models they were adopting, constant need for updates etc and realised they'd found that mechanism..

Re: Why the outrage?

It would be different if they didn't publicly bang on about transparency, fairness etc.

Then do the opposite. This is just people calling them out on their BS.

It won't, it'd just create more, smaller ones doing the same thing.

Monetary penalties which put the C-suite at risk personally would help.

UK public sector should be mandated to grade procurements with a weighting of cyber security at 20-30%, currently any procurement I've been involved in security is worth at most 5%, in many cases less. While cost will be 40-60% of the weighting.

All that does is mean we buy cheap insecure products over and over again and then people like me are given the impossible task of trying to manage risks around products we thought were horrendously insecure.

When companies fail to get business because they are insecure they will start to take it seriously.

Why on earth would I want to entrust my info to MS or save in a MS keychain?

Eggs in one basket much?

There's little difference between the use of something like kwallet and say bitwarden.

Re: The way forward?

Not reliable, little change control, zero business continuity etc.

Where does my senior management sign up?

How do you know both my PINs ?

*calls police*

Re: "the company must be run on a commercial basis"

10 Instigate purge

20 Same old sh!t

30 goto 10

This is just vulnerability management though, doesn't matter what OS or application it is - the same methodology can work fine.

It's not even a Windows V Linux discussion point tbh.

Re: It's a feature not a bug

Given the way NHS England are planning to use GP data I'm surprised this hasn't been a warning to the EU already.

honestly because experts are paid to tell us otherwise.

But yeah, fit the tool to the job, not the other way around.

Re: Why is North Korea connected to the Internet ?

Even if split along national lines it will be trivial to link up a PC to that national "internet" and remotely access it via satellite etc even if there is no physically connection to do so - which there would be anyway thanks to telephone lines.

Even if there's an entirely different networking technology underlying it there will always be a way around it

Re: Previous approach

and Amazon will ask Microsoft, who will ask Yahoo and they all all cite each other as reliable sources.

The corporate circle jerk will be endless.

The EU safety regs didn't stop Grenfell, product safety tests done in the UK may not either.

Proper on site surveys of buildings, which used to be done years ago may do so - if the companies conducting them can be held liable should they miss something.

It's not just a case of checking products though, especially in construction and manufacturing but also how they are applied, what methods of treatment are used, what products are near, touching, heating/cooling, have current going through them etc.

It's a bit like welding box sections in bridge construction, it CAN be effective but if done incorrectly introduces stresses within the material which MAY affect performance depending on the type of bridge the box section is part of.

It needs a layered approach to safety.

Re: Erm

This is the problem with Cyber/Info Sec, some products are easier to show ROI on than others and many it's very much a benefit which end users don't see or don't notice e.g. less down time.

I frequently use incidents like this, Wannacry etc to show what can happen and I'm a huge fan of risk assessments as a way to make senior management accountable for what is or is not done. Sadly that doesn't seem to be done in many companies though.

Don't worry we can shoehorn in "cyber" and "AI" so we get the best buzz words.