Posts by This is not a drill

From March 2023, all standalone cyber insurance policies underwritten by members of the sprawling Lloyd’s of London marketplace “must exclude liability for losses arising from any state-backed cyber attack” the 300-year-old organisation has warned – telling members that cyber attack coverage “if not managed properly… has the potential to expose the market to systemic risks that syndicates could struggle to manage.”

Looks like they are getting their own attack in before the deadline they imposed.

Password Only Admin access??

I assume that in UBER MFA stands for Major F***up Achieved.

8ms latency to India.

We had outsourced some our development to India and set up a VPN to their office. As I had experience of doing this at other companies, I explained to the development manager that trying to sync software repositories "over the wire" would be very slow due to latency and they should consider a thin client solution.

However the development manager knew better, Every week we would have a meeting about the performance and every week I said it was a latency issue and couldn't be resolved as we had said initially.

It came to a head in the twixmas period, which was really a slow period because we were in full change freeze. The development manager said that they were having problems with a piece of software and he had read the manual which said that the network must have a 'ping latency' of 8-10ms or less and that If the network team couldn't FIX the network VPN to India he would have to report our incompetency to the the IT director. I downloaded the manual for the software and the first paragraph said in capital letters "this product will only work on a LAN with a latency of 8-10ms. It will not work over a WAN"

I calmly replied to to the development manager that manufactures of the software stated that it would not work over a WAN, so a WWAN was out of the question. I then proceed to describe the lengthy calculations explaining why even with dedicated circuit, utilizing loss-less equipment, the most perfect fibre-optic and copper connections, the wind in the correct direction, etc, the best latency we could get on the 9000 mile round trip from London to Mumbai would be 80-90ms. I finished it off with the following

"I'm sorry that due to the laws of physics we can't provide you with the service you require. However I have read that CERN are doing some amazing work on theoretical quantum teleportation, and as soon as they prove this and release the associated technology to us we will endeavor to install it as soon as possible"

I ensured that the IT director was cc'd in.

The thin client project was initiated shortly afterwards.

Useless service desk manager.

Sounds similar to a situation I was part of. I was network manager (Novell) for a company. Following best practise the "admin" account was not used, I delegated all rights and had a superuser role for my administration account. The "admin" account had a strong password which had been written down, put in an envelope in a locked box, and stored in the company safe "just in case".

Anyhow the company hired a service desk manager, who insisted the service manager and network manager (me) report to him. I wasn't consulted and this was effectively a demotion so immediately found a new job and resigned.

The service desk manager insisted that the help desk team needed the network "admin" account password, I held my ground and explained that they had all the rights necessary. On my last day I handed everything over, including the admin account and explained to the service desk manager that he should use it to add himself and whoever he wanted superuser role then change the admin password and put it back in the safe.

Rather than doing that he just gave the admin account to all the help desk team, after about a month they had managed to lock the admin account and because he hadn't added anybody to the superuser role, nobody could reset it.

This caused major problems and in the end they had to get Novell in to reset the admin account. Shortly after the helpdesk manager and the IT director were sacked.

WFH - Not with current fuel prices

When we were locked down in the colder months my heating and leccy bills shot up. And with energy prices going up...... I like (and have) the flexibility to work from home occasionally when necessary. But the rest of the time I'm happy to let the company pick up the bill for keeping me warm.

But it's hardly the Mr Fusion unit I need to power my flying time car.

And I'm Keyser Söze.

Truth in Advertising

MAC: Hi I'm a Mac

PC: And I'm a PC

MAC: Unlike PC, I don't suffer from security vulnerabil......... Oh shit

Not an IT issue.

"if the content scanner was turned on then the IT department would have firm evidence and have to confront him."

Why? It's not IT's role to police what people do/see, Information Security/IT's use of a content filter is to ensure that users cannot access/download any malicious or dangerous links/files, cannot leak data, or impact the performance of the internet link.

It's a purely HR issue as to what undesirable content is permitted or not, and they also have to deal with offenders.

Remember PHORM

Phorm was being touted by BT, TalkTalk, etc as a way of protecting users from nasties on the Internet.

It was absolutely not about monitoring what everbody was doing so that you could sell the data and 'tailor' a users internet experience based on whoever was paying to most to push their products.

Apple won't be happy until they can control everything you can do and see on your iCrap device. I've never owned an Apple product in my life, never will, and the work iTurd I have forced on me is only used to read work emails, nothing personal.

And yes I know that Google, facebook, telco's can and do monitor everything, but at least they don't pretend that it's for your benefit.

Does this prove....

......that Darktrace is a useless piece of crap.

Describing a previous infection of one of its clients, Darktrace said: "The attack commenced when a cyber-criminal gained access to a single privileged credential – either through a brute-force attack on an externally facing device, as seen in previous LockBit ransomware attacks, or simply with a phishing email."

All very well, but.......

Can it handle Microsoft Flight Simulator (2020) in 4k with graphics set to their highest

Donald Trump = Captain Rum

Blackadder: Look, there’s no need to panic. Someone in the crew will

know how to steer this thing.

Rum: The crew, milord?

Blackadder: Yes, the crew.

Rum: What crew?

Blackadder: I was under the impression that it was common maritime practice

for a ship to have a crew.

Rum: Opinion is divided on the subject.

Blackadder: Oh, really? [starting to get the picture]

Rum: Yahs. All the other captains say it is; I say it isn’t.

Blackadder: Oh, God; Mad as a brush.

Who do I report factual errors too?

There is a massive error in this paragraph:-

"The comedy-actor-turned-presenter seemed to forget that the song in question addresses the end of the world, when "we could all die any day": not exactly an appropriate sentiment for a world still gripped by a pandemic."

Corden is about funny as a prostate exam and has the acting ability of Scots Pine.

Destroy them!!!

They are clearly the source of Covid-19.

Firstly I would check that the following accounts were disabled:-

MourinhoJ@manutd.com

thespecialone@manutd.com

special1@manutd.com

Secondly monitor any IP traffic coming from N17 postcode area.

Lest we forget

In the UK the name of the outgoing US president is euphemism for the bodily emission of noxious gasses...I can't think of anybody so perfectly named.

Charity?

HIBP is a great service, which many in the security domain use. I sure most people would prefer that it remain independent. Perhaps it could be set up as a charity, so it could employ other researchers, I'd donate.