* Posts by Amphibious RawCod

11 publicly visible posts • joined 30 Oct 2014

Been hacked? Now to decide if you chase the WHO or the HOW

Amphibious RawCod

Re: Rubbish

Well played, choosing an incredibly emotional situation (kidnapping of child) to test whether the the "who" is an emotional distraction. However I think you miss the mark. I understand your stated desire for justice, but that comes after the kidnapper has been caught. I wonder how many kidnappers are caught because their identity was revealed, as opposed to (for example) their location (possibly via some opsec fumble like a traceable phone call). Your response also relies on the existence of a legal framework within which the punishment you describe (or some form of punishment at least) is possible.

Intelligence is only of any use if it can make a substantial contribution to our response. Let's say our company is hacked and we can solidly attribute the attack to the Elbonian Government Elite Hackers. So what? What actual difference will that make to our response in terms of how we handle the incident? What if the attack had been solidly attributed to Microlombia instead?

Hacking Team: We’ll be back in the spyware biz before you know it

Amphibious RawCod

translation please

Does ANYONE understand what this is supposed to mean?...

"While it is true that criminals exposed some of our source code to internet users, it is also true that by now the exposed system elements because of universal ability to detect these system elements."

MS scolds businesses for failing to eradicate 7-year-old malware

Amphibious RawCod

Re: Microsoft is the malware cesspit

I'm assuming you are using "attractive" in the sense of magnets here, as opposed to beauty.

Phished IT bod opens door to 40,000 finance folks' personal details

Amphibious RawCod

/thread

really nothing can be added to what's already said, so I'll just upvote...

edit..

"this is not a breach"

"we are taking this breach extremely seriously"

New relay selection fix for Tor to spoil spooks' fun (eventually)

Amphibious RawCod

Re: link to the new paper

Somewhat incredibly, given the times, it looks like the devs got caught unprepared for the amount of attention:

https://lists.torproject.org/pipermail/tor-talk/2015-May/037914.html

UK data watchdog: Massive fines won't keep data safe

Amphibious RawCod
FAIL

A £250,000 pound fine to Sony is literally nothing. I am reminded of the scene in Quadrophenia when Ace Face offers to pay the fine on the spot.

Crude scammer targets Brit oil brokers

Amphibious RawCod

grey area? line crossed?

"This was confirmed when we accessed the FTP server that the stolen data was sent to, and found that

the oldest files dated back to August 2013. That is, the attack had been underway for almost six months

completely undetected."

I don't imagine that Panda had permission to access the hacker's FTP server. I wonder if they just openly admitted crossing a line over into computer misuse act territory (or whatever equivalent exists in the relevant jurisdiction)..

RSA supremo rips 'failed' security industry a new backdoor, warns of 'super-mega hack'

Amphibious RawCod

Re: Or to put it more simply

If there's no way in, you can make one.

Spooks BUSTED: 27,000 profiles reveal new intel ops, home addresses

Amphibious RawCod

Re: eye of the beholder

I came to the sad conclusion that I am getting old - not only because MC looks 14 to me too, but because he calls himself MC and therefore must be about 14. I was annoyed at how much effort it took me to get over myself (and his very minor lisp) and watch the presentation. I am glad I made the effort though, because that was thoroughly enjoyable.

Bulk interception is NOT mass surveillance, says parliamentary committee

Amphibious RawCod

newspeak indeed

"bulk interception is not mass surveillance". Let's break that down class...

bulk is not mass

interception is not surveillance

Mozilla releases geolocating WiFi sniffer for Android

Amphibious RawCod

Re: Let me get this right?

This. +10