Posts by VoiceOfTruth 1628 publicly visible posts • joined 17 Jan 2022
-> a small number of our customers
Yeah. But how many actual people? BA has about 35,000. The BBC and Boots are well into the tens of thousands extra.
-> another major supply chain attack
Hmm. It almost seems like the supply chain is not very secure.
-> Policy Exchange, a Conservative group
I met somebody from this group a few years ago and had an evening of social chat with them. Apparently the group came up with the idea that parents want good schools. They actually sit around, chew the cud, and come up with this as a 'policy'.
-> Won't help. People are too deeply wedded to MS applications.
So true. Alas I meet and hear a lot of open source advocates who simply do not understand the issue. It's easy enough for a one man band who writes a few letters in Word or works on a few Excel spreadsheets to move to LibreOffice, for example. But in a company where there is a long history of processes using Office, Outlook, SQL Server, it is a completely different prospect. We see it here in The Reg about people saying "try this distro, try that distro" when it comes to Linux. Pretty much all companies are not in the business of "trying distros", they just want to get on with their work.
Not just that, they pass the problem onto the people whose data has been slurped.
-> Those with children whose data was taken in the haul were offered advice in the breach notice on how they could "check to see if someone has created a credit file using my child's information."
Your data has been taken, here is how YOU can check what has happened to it.
Is to force data sovereignty - European data must be kept in Europe and not transferred to the spyhole of the world. This would mean MS, AWS, Google would have the same basic infrastructure costs rather than leveraging already-built-at-scale data centres in the USA. Sure, there will always be differences at the scale they operate at. But being unable to (mis)use US data centres would change their business methods.
-> The man behind a popular website that allowed cyber criminals to fake their caller ID location has been sentenced to 13 years and four months in prison... making or supplying articles for use in fraud
If he had stabbed somebody he would likely have got 5 years at most. Or even nothing at all.
-> Liles, in his capacity as security analyst for Oxford Biomedica
In the comments to this article - https://www.theregister.com/2023/05/12/exubiquiti_developer_jailed/ - I mentioned the difficulty of preventing insider security problems. It is not an easy thing to do. To me it is the trust element which is so troubling. Burglars burgle (for the benefit of our American cousins, they don't burglarize any more than robbers robberize or murderers murderize their victims) , and that is to be expected. It is why we have locks on our doors. We have an expectation that people inside the door are more trustworthy.
-> Liles had attempted to wipe his devices days before his arrest, but the data was recovered.
This git doesn't appear to be the sharpest of 'security analysts', does he? Which is how he was caught, I guess. He deserve a few years in the slammer for this.
-> I look at the Amazon being destroyed
I agree but for one thing. We in Europe, for example, can't point a finger and say "don't cut down those forests" when we have cut down ours. If we collectively want the Amazon to remain as jungle, then we collectively should pay for it. Pay the people of Amazonia not to log. Near to where I am there is a park with some large trees, some of which were cut down last year for "safety reasons". They had apparently become diseased and may fall down. Fair enough, I accept that. But no replacements have been planted. numberOfTrees--
-> I served in the jungles of southeast Asia hoping that the peace we restored would benefit the peoples and the jungle
I'm not sure which campaign(s) you were in, but wars never have such lofty goals. They are about beating an enemy or stealing land and resources (often from an enemy who rightfully owns them). Next up spreading democracy at the point of a gun.
That some people somewhere complained about PPI. 'Tut tut. If only PPI would get off its arse and fix this.' The same sort of people who complained about Log4J while doing nothing at all ever to help.
I tip my hat to the dedicated people in the open source world who maintain this stuff. They are often nameless (until the sh** hits the fan).
And walk away if the terms of the contract are altered in any way they disagree with.
The government (I mean the establishment no matter whoever is 'in power') has for far too long been in the hands of Oxbridge numbskulls who are well-educated but are also as thick as dunces. They are busy chasing gongs while they look down on the peasantry. Failure for them means an upwards promotion, and when they 'retire' it will be to a company which supplies services to the last department they worked for.
If emergency communications are so important the government should build it itself. What is GCHQ for? Apparently spying on grannies' Skype conversations. But actual work?
-> shipping user data belonging to EU residents to the US without proper guarantees it would remain safe from inspection by authorities
Next time Francois or Helmut or Giuseppe goes to the USA they get pulled by the 'authorities' there. Have you now or ever been a communist/human rights advocate/this/that/the other?
No? Well, we have you on record as being that. So now we will charge you with lying to government officials. You are facing 500 years behind bars.
I smell similarities with Mozilla. Let's take the code from a Netscape and make a new browser and email client, rewriting them, etc. OK.
That's done. We've saved the world and become a popular browser. Let's take our eye off the ball and make a file transfer service. Let's make a new OS. Let's turn Thunderbird into a steaming heap. Let's watch as our browser market share becomes irrelevant, used mostly by self-elected 'power users'. Let's become the 2%.
-> We have a whole team of Postgres engineers
It would be better is MariaDB stuck to MariaDB. I've read the article and I know what MariaDB is doing. But they are stepping away from MariaDB by doing this, no matter how they justify it. MariaDB seems to want to be a Swiss army knife, some sort of glue for databases. If I want Postgres I use Postgres. If I want MySQL/MariaDB I use those. I don't want some glue to get in the way.
-> Shirley it's easy to make it a specific crime to profit from this sort of carry on.
The government is far too busy preparing legislation to fine cat owners £500 for not having their cats microchipped. The low-hanging fruit of 'crimes'. Yes, solving block booking seems to me to be easy to control. Require the use of a provisional licence number to make the booking, and give a time window for that number. Once that window has expired, the applicant can reapply. That would probably cost Capita or other outsourced 'IT provider" about £500 million to code up, then not work properly.
I have a really low opinion of 'hackers' who slurp stuff from the companies they work for. Protecting against such people is no easy task as somewhere along the line there has to be an element of trust. Even with systems auditing, somebody has to be trusted. This dude is a turd.
-> “reputational damage for a key supplier to critical UK government services such as Capita is likely far greater.”
A contract that was outsourced to Capita is cancelled on those grounds. Or, when some large public body rejects a tender from Capita on those grounds. Or, when HM government, in general, rejects Capita from bidding with those ground stated for disqualification.
Three options. My tarot cards offer no such prediction.
-> The ratio of out-of-support applications also increased the risk of failure and cyber attack, the report said.
I cannot think of a better argument for NOT requiring or using IT. We're in this world. It's an eternal upgrade mill. Meanwhile we can still read paper records going back 100s of years using our Mk 1 minces.
The Register 
Biting the hand that feeds IT
Copyright. All rights reserved © 1998–2023
