Posts by DCdave 137 publicly visible posts • joined 29 Jan 2018
Likely because they are non-techie enough to be running as local admin and will click on anything.
In a corporate environment I'd expect them to be a) not local admin and b) even local admins can't override the corporate security software e.g an addtional security token is required.
Also reading the article reveals that the PC of the person with access to the encryption key was compromised using a vulnerability in Plex Server, the presence of which suggests either BYOD or personal use on a work device. Once the PC was compromised the linking of personal and work accounts led to further compromise.
Hotpatching has been available on Azure for specific SKUs for a while. In both cases it doesn't completely remove the need for reboots, but it does vastly reduce the need for them. We're still evaluating whether reducing the number of reboots is worth the asymmetric nature of when reboots still need to occur. Probably as our automation matures we will gravitate more and more towards hotpatching.
Interception at carrier: techspot.com/news/108364-whistleblower-warning-2fa-codes-sent-sms-trivially-easy.html
Redirect mobile number to another SIM (SIM swap): https://www.techadvisor.com/article/2430811/fraud-with-a-new-sim-card-how-dangerous-is-sim-swapping-really.html
(note it would make more sense for the scammer to order as an "additional SIM" rather than a replacement SIM, as that way they you don't lose connectivity and they see everything).
Yes, Samsung's insistence on tying security and non-security updates together is getting annoying, and even more so with the attempted forced updates and new T&Cs, such that I am tempted to look around for my next phone, rather than just taking the latest Samsung. However, there's no longer as much choice and they know that.
But I don't think your carrier is blocking security only updates that Google issue, just that most manufacturers do not make them available as a separate patch when Google issues a fix (which is only code, not an actual patch), they integrate them into their overall build.
...to see if they tested resiliency properly. In most cases, I imagine they'll find they tested what they could and had at some point to rely on the cloud provider's assurances.
There'll be even more people thinking maybe they should take a look at this resiliency plan thing, some time in the future, if they get round to it.
[quote]
1. If they're keeping the LTSC version updated anyway, is it really that much more work (if any) just to keep regular Windows 10 installations updated too? I mean they're writing the software, aren't they?
[/quote]
Yes and no. Windows 10 general availability is 22H2, Windows 10 LTSC is 21H2. Admittedly that is the same code base as Server 2022, but of course one is a client OS and the other a server OS.
Yeah, me too, for a recent private laptop that isn't supported by Windows 11. MS even say it's only $30 for year 1 for individuals or Windows Home users, which hopefully also covers Windows Professional in my case. But then it doubles the following two years.
https://learn.microsoft.com/en-us/windows/whats-new/extended-security-updates
Failing that probably 0patch at €25/year. May even be the better option.
Both are better than a new laptop.
Looking at most of the OS we have (and crucially the servers), they pretty much only support these cryptography standards, and half of them are scheduled to be still in support well after that date, so a standoff between vendor and regulators seems pre-programmed.
Granted that the servicing stack itself is not really relevant to a problematic specific issue like an LSASS memory leak, but Microsoft nonetheless officially recommend using DISM to uninstall cumulative patches:
[Quote]
To remove the LCU after installing the combined SSU and LCU package, use the DISM/Remove-Package command line option with the LCU package name as the argument. You can find the package name by using this command: DISM /online /get-packages.
Running Windows Update Standalone Installer (wusa.exe) with the /uninstall switch on the combined package will not work because the combined package contains the SSU. You cannot remove the SSU from the system after installation.
[/Quote]
Just because you're using a browser on a server doesn't mean you're browsing the internet, which certainly isn't recommended - indeed in our organisation it is actively prevented.
However, apart from Edge Chromium being part of Server 2022, there are all manner of applications these days that require administration via browser - even to administrate services running on the local machine, so it's not as simple as saying "no browser" in every environment. If your browser is not working, your app might not be working either, which is a problem, and is very much the downside of cumulative patches.
"There's a reasonable rationale for most of those minimum requirements and junking backward compatibility. The CPU threshold seems to be around memory security controls that could be enabled on older machines, but would incur a significant performance penalty, and I can see why MS wouldn't go down that route. It is possible to load WIn 11 on just about any machine by circumventing the hardware checks, albeit missing out on some of the specific security improvements, if people want to do that MS have not stopped them. "
All true, but there are plenty of not very old machines that were supported all througout pre-release, yet disappeared from the release version. My private laptop is among them and whilst I have no wish to "upgrade" to Windows 11, that increasingly becomes a problem as Windows 10 EOL draws near. Even if I can and will apply the workarounds to be able to install Windows 11, it remains at Microsoft's whim to allow those workarounds to be in place. That's not a good place to be, and should have been avoided.
Something wrong with your Windows implementation if it's taking that long and needing multiple restarts.
All current Windows OS have cumulative updates, thus taking care of supersedence, and the servicing stack embedded in the cumulative update so no separate reboot is required. Typically the only other required update would be for .NET framework, which can install alongside the OS patch and does not need a separate reboot.
It does look like metal in the photos, however reports state that it was seen floating in the shallows and was dragged out of the water by a 4x4. People on the scene described it being made of something like carbon fibre or a lightweight resin (which doesn't sound very substantial for part of a space vehicle).
As anyone in Germany who lives at an address with especially a 7 in and receives letters from English-speaking countries will testify. German posties tend to interpret the un-crossed 7 as a 1.
On a related matter, it does make me wonder that Germans manage to cope with computer and print typefaces that do not have crossed 7s and heavily-seriphed 1s when they apparently cannot for handwriting.
Rename Active Directory as Active Directory Classic, or Classic Active Directory, and keep Azure Active Directory as it is. I've already forgotten what they want to rename AAD as. Something like Entrada*
Which, on double-checking, probably isn't what they want.
"Critics also claim that the water and dust resistance consumers have come to assume will be present in their mobiles will be hit hard – a sealed unit isn't just a deterrent for techies after all."
Dust resistance was a myth, at least on the Galaxy S21 5G. It couldn't be charged via cable and when taken to Samsung, the techie was less than suprised and cleaned out all the gunk that was statically attracted, saying it was hard to do at home without the proper kit, advising using a rubber plug in the charging port in future. Never needed that on predecessor models though.
...but from experience it leads to hiding insecure things from people responsible for making sure they are secure. How to report on something that is hidden from you?
In the middle of an incident the last thing you need is to find that some little-used access rights that you have for good reason have in the meantime been silently removed and you don't even know who you need to speak to to get them back.
The Register 
Biting the hand that feeds IT
Copyright. All rights reserved © 1998–2025
