Posts by Diogenes8080

Re: Hmmm

And Brian Krebs put the boot in Twilio for lack of MFA nearly 2 years ago to the day:

https://krebsonsecurity.com/2020/08/sendgrid-under-siege-from-hacked-accounts/

Re: Concurrent CP/M and ICL 80286 hardware

MicroLAN. The hardware was full 10-base2 so in theory 10Mbit. I don't know if the cards were up for that, and with the DRS range it wasn't ever a question because the apps and consequent traffic were tiny.

Re: The Weakest Link

The survey omits two favourites, "we've just bought them so go support their tech" (I wonder why the business was for sale in the first place?) and the truly worrying "we've just bought them for their tech". And that is without going through the "two CIOs enter, one CIO leaves" which normally accompanies mergers and, I hear, can be quite traumatic.

Re: Car bomb?

It isn't a proper continuity site unless it can withstand a near miss from a 1MT warhead.

Re: Bus drivers...

I have it on good authority that the traditional solution is to keep a rabbit and a revolver in the glove box and to scream at the children as soon as they do anything out of line. Untidy hair completes the intimidating image.

Re: "the Afghan Relocation and Assistance Policy (Arap) team"

Joking aside, that comment might frame the problem with the West's policy in Afghanistan over the last 15 years rather well.

Pennywise and pound-simple

Makes you wonder if the "small group of specialists" was being progressively diverted to tackle a rising number of fraud cases, leading to a backlog of queries. They couldn't recruit more? Now the department owes GBP 1B, with an additional 15k cases reckoned untraceable and data on the deceased deleted after 4 years due to convenient data protection.

The oldest cases go back to 1985, so it sounds as if the problem really is procedural rather than due to a coding error. I suppose there is some excellent reason why on retirement the NICS record of a taxpayer could not just be copied over to the DWP in a "thats-all-folks" file. Give it the data and a VME box will happily chomp through a lot of complex rules, batch or interactive.

Re: Yes, that's exactly what I need

Then drop the ranges indicated by https://mxtoolbox.com/SuperTool.aspx?action=mx%3amcsv.net&run=toolpage and remember that they will include all of the Mandrill space which is notionally transactional. In practice RSG's toleration for bulk from those blocks has varied over the years. Any commentards managing mailservers for others would be better advised to conditionally deliver (i.e. place in junk) with a prior policy announcement to recipients.

For those suggesting / requesting free services, my experience is that any sort of entry level / taster service will be abused.

In other news, Scurvy Monkey are renaming themselves. The damage to simian-themed poo-slinging brands appears to be irreparable. Did I just muddle that last sentence?

Re: this process could cost the council £8,000 in taxpayer funds.

So the council received legal advice that a legal advisor would need to charge £8k of legal fees to reverse the inadvertent publication of test data. Unless the maligned system automatically poked records into other systems, I suspect that the council received advice from a local outside body.

Re: "as owner of half the company's shares"

I am sure that somewhere I read that the real trick is knowing when to bail out of a scam, and to have an effective escape plan:

"Turn your back and walk away,

and live to graft another day."

Re: If only...

That would be PCL5e if driving the traditional herd of Heaving Packhorses in the corporate Windows space. To hell with whatever the badge says on the hardware.

Allowing end users to install some driver they found on the internet is hardly a recipe for system stability, is it? I don't know why some IT teams put up with it.

Salesperson, we want a standard driver. One that runs anything we are likely to order from your brochure. Here, we've ticked them for you. If anyone wants to call off anything else from your product range, speak to us first because accounts payable have /very/ strict instructions.

Naturally we're talking exclusivity. Here's an inventory giving you some idea of the size of the existing estate. Still interested? Good. Sign here, please, in blood.

He's only making things worse for himself!

I'll have two large flat ones and a bag of gravel, please!

Re: dirty pool, dude

The lowest I heard of were a pack of data thieves who went after a Florida hospice, deliberately looking for the personal details of the recently deceased. That gave them the widest window for identify theft, with the bonus that the crime might never be discovered by the executors.

Test card J

For the benefit of readers outside the UK, this is a reference to the BBC test card transmission when a channel is not broadcasting:

https://en.wikipedia.org/wiki/Test_Card_F#testcardj

The sky was the colour of television, tuned to a dead channel

I want my JAL shuttle.

This being Google, one would hope that their HR team could run a search...

Why am I deluding myself?

Hang on a [sub-tropical linen plant-picking] minute, is there an Oompa Loompa song for this?

Rank pedantry

If they are incompetent, how is the situation deliberate? That would be malice...

But yes, paying ransoms is massively fuelling the fire, and taking funds away from correcting the faults that led to the opportunity in the first place.

Hit any beancounter budgeting for ransoms with the Colonial Pipeline case: the victims paid and the gang gave a valid decryption program that performed so slowly it was quicker to restore anyway.

The House Always Wins

A money service bureau [bank] unknowingly accepts the business of a fraudster. The MSB takes its usual fees. The victims lose, but the MSB profits [unknowingly] from the crimes. The fraud is detected and the account is frozen. The MSB holds the funds until the allegations are proven and the moneys are returned to the victims or the allegations are disproven and the account unfrozen. This may take some time, during which the balance remains with the MSB. Stage 3 applies.

Re: Don't ask "is it plugged in"

You have learned the tao well, Grasshopper.

Re: Proxima Centauri is a glimpse of our own future

Also see Inconstant Moon (story, not entire anthology) by same author, for a lesser blink.

Then Flare Time (Limits) for much lesser regular blinks.

Jolly Boating Weather

Possibly correct if your honeypot is in Chennai.

Elsewhere in the world, other nets are likely to figure. For botnets, Stiff's scurvy crew say CN 1st, IN 2nd and US 3rd: https://www.spamhaus.org/statistics/botnet-cc/

I am surprised the ratio of encrypted traffic is not higher. SSL is free, domains and hosting are cheap and no-one seems to think it is their problem if a fraudster tells lies when applying for any of these.

An honourable shortener

The case for URL shortening services in an era when a URL can be conveniently represented by a short hyperlinked word is indeed marginal. SMS is regrettably one case where it is justifiable, though the [redacted] responsible for the site mentioned in the article could have done better even so. I would be curious to know if misrepresentations were made to the councils in question, or whether IT project staff on the ground failed to read the small print or possibly even the large print written in friendly crayon colours. Capita, as always, remain the clerical omelette.

To judge the worth of a shortening service, see if it offers a convenient reverse service whereby the recipient can input a link and see what it would expand to.

Muppet Show

I suspect that some of those are by posters farming for reputation. What is more depressing is when some of the more asinine suggestions are accepted as fixes, suggesting a degree of collusion or puppetry.

Dropbox market share

Fewer phishers and malware spammers using it as their document delivery platform of choice, perhaps?

These days it seems any free or free-to-trial resource will be abused, and many of the more obscure ones don't appear in the right classification of many security products.

Well of Lost Souls

Uservoice was useful for seeing that a problem one had discovered was in fact general, that others were complaining about it and it had not been fixed since {yore}.

With its closure, the quality of Techcommunity may go down unless the moderation becomes highly partisan.

This would also be a blow for "Microsoft Product Support" if their remuneration depended on not forwarding irate customers to Microsoft proper.

Re: Situation normal for Microsoft

EXO message tracking will give you a quick response on anything up to 10 days ago. After that, you are in "post a request and we might get an answer today" territory - which is something you would do if you are looking for a long-standing problem, or want to know if the latest phish is from a regular correspondent.

Now if you were complaining that EXO message tracking is not real-time... which would be a near-impossible goal for any cloud solution, let alone something the size of O365. Even on-premises solutions normally have a latency of a minute or so. What annoys me about all of O365's tracking, exploring, hunting and scripting alternatives are that the results are variable, and do not say "this is up to 5 minutes ago", "up to an hour ago" or whether the results you are seeing are not in fact inclusive of the last day and a half.

Re: Too "safe" already?

Incorrect. An unaddressed spam problem will gradually rise to the point where the mailbox is unusable. I have taken over the administration of domains where the worst-case mailbox inflows were easily 80% junk if the more borderline grey mail was included.

Regarding the original article and phishing, I currently assist in the administration of a domain covering the UK, Eire and a number of other European nations. The anglophone nations appear to get more of their fair share of phishes, and can see threat patterns weeks, months or even a year before they appear in other linguospheres (if that's a word). Even other nations with a high proportion of english-speakers are left behind, and some of the phishes they do get... are in English.

Magic Quadrant

Take that thought a step further, Prof. Fox.

Given the management magic quadrant of benign/malignant vs competent/incompetent (after Adams?) how long will it take one quadrant to realise that there there /is/ an inverse correlation between these metrics and actual results? Better draft that response carefully: you are now only allowed 3 posts and 3 sent mails per day!

Re: Penultimate Space Power

That is because your mobile was not designed for a one-way trip to deep space.

Whether it deserves a one-way trip to deep space I leave to the commentators on Android, IOS and... another operating system.

Attribution

Gaming was my first thought too - Reno is / was the registration of choice / necessity for a number of outfits?

However, see https://www.zippia.com/company/best-biggest-companies-in-reno-nv/ - there are a number of medicals there too.

Looking down the scale, isn't there also a certain ranch in Nevada? Be fscked if I can remember the name.

Re: Fancy Bear Linux rootkit

Wrong XKCD, comrade!

Try https://xkcd.com/424/

Re: Same old MS

Thinking back to the browser wars, which ironically Microsoft appear to have finally lost with the adoption of Chromium "Edge", one of the arguments was that they were cross-subsidizing IE development with Office revenues.

Before that we had grumblings that Office enjoyed unfair access to the undocumented lower levels of Windows which its erstwhile competitors did not.

Re: Anyone told Data Access Corp?

Someone tell Microsoft about Wikipedia: https://en.wikipedia.org/wiki/DataFlex

I was under the impression the RFC requirement for an Abuse address had been deprecated.