Posts by relmasian

Backup questions in the same channel can be almost as good as two factor using a second channel (e.g. cell phone), especially if the site you are accessing pretends the correct password you first enter is bad and if there are several backup questions the site can randomly pick. Moreover, the site can even pretend a bad password is good while providing garbage information. Normal users just have to be informed they might have to log in again if they get garbage. The underlying idea of both tactics above is to make a hacked entry hard to repeat and to make hacked information untrustworthy.

Anonymous Coward, I assume you are replying to my initial post.

Yes, I do know that payloads can and are able to infect more than one operating system. However, the presence of a payload does not mean it is operational. Note that my initial post also said that you could actually use another version of your work system that was guaranteed not to be infected by just mounting a data drive on the guaranteed uninfected system.

At some point a file read has to fail or no one would pay a ransom. Why not use that requirement to detect ransomware encrypted files? All you need is a disk read that is completely independent of your working system. As I said earlier, you could even have the code running under an infected operating system; it just cannot use the any of the usual, possibly infected, disk read/write mechanism. Indeed, any computer that had its own, unique disk read/write method would make it difficult for ransomware to encrypt files in the first place, although it could be done by encrypting/de-encrypting at the application level.

Re: Er, but...

The Axe, not much is wrong with charging ISP customers for different levels of service. Indeed, ISPs have been doing that from the beginning, including under Net Neutrality. What they are not allowed to do to give an advantage or disadvantage to data packets coming to their network from outside their customer base. Under Net Neutrality, Internet traffic should be handled the same no matter whether it originated from the East or West Coast, even if one of those places is in the UK and the other in the US.

Agree but ...

I have to agree with what moiety posted:

"Problem is, everyone's doing it and to stop doing it would put you at a significant disadvantage, so it's not going to happen."

However, I disagree with moiety that "it's vitally important for it to remain illegal." Instead, what should be illegal is the use of the gathered information for anything but national security purposes. That way, the information can be gathered while private citizens can keep their private activities as secret as if the information had never been tapped, even if the private citizens were communicating moral failures, such as adultery, and even criminal behavior. Lawyers, medical doctors, psychologists, and other professionals already operate under similar aimed at protecting confidential client information. Spooks could operate under similar rules.