Having done battle with patching in an enterprise environment for years, it's very understandable why this would have been missed. My security team is always ready to demand patching ASAP, but the admins and customer support are always on about "up time", "reliability & availability", "regression testing", and other non-sensical terms. Enough with the hand wringing... Just patch the damn stuff and let God sort it out, I tell them.
135 posts • joined 9 Jul 2007
So... who are these freeloaders touting "patternless" next-gen AV vendors? Let's name names...
Ahh - I guess Reuters did: www.reuters.com/article/us-cybersecurity-sharing-virustotal-anal-idUSKCN0XY0R4
A ringing endorsement of the firm's professionalism. About the same for the researcher.
Remember the days when we believed Linux and open source were the paths to security? Oh, we were so full of hope back then...
This page is immune to complaints made to Facebook...
$5B? Pfftt... that's like 28 F-35 fighters.
USA wants in on this
In fact, I'm surprised we haven't already tried this. BTW - it's an open and shut case as Samsung is crap with regards to Android patching.
US Navy & Windows
Back in 2000 I had the chance to tour the USS Hue City when it was docked in Boston Harbor, as part of a special millenial Tall Ships weekend. We eventually headed down to the "war room" on the ship. This place was really impressive to me because of all the computer equipment. It was equally exciting to see Microsoft Windows NT logon screens on several monitors (I had read an article in Computerworld that the Navy was going to use NT on missile cruisers, and we had made several jokes about re-booting in the middle of a battle and dealing with blue screens when things were going hot and heavy). At the Vanguard Security Expo later that year, Bill Murray (of IBM & Deloitte & Touche fame, not the actor), a recognized national expert in secure computing issues, had stated during a presentation that he would leave the country if the military ever began to rely on Microsoft technology for anything of a strategic nature. I could hardly contain my excitement to point out I'd already seen it in use on a US Navy ship. "God help us..." is all he could mutter to the audience.
At least the clean up is simple
I've been helping a friend get some malware/adware off her Mac. The one positive I can add here is that clean up has been pretty easy compared to the Windows side of things.
Paying crims didn't solve the problem? Wow - who could have anticipated that?
Re: "who was arrested by US law enforcement partners"
As an American citizen, I'd be worried that Mother Russia will attempt to put a few American citizens under her skirt in retaliation.
I'd tend to believe the exec who was actually in the car rather than Delphi, who has something to lose if the story is true. Then again, if Brian WIlliams, formerly of NBC, was in either car, then I'm probably back to believing Delphi.
What an idiot
His "life" of enjoying his toy does not trump someone's right to hold onto their life rather than die because he can't keep his eyes focused on the road. I would like to see those convicted of texting while driving or other e-distractions be charged with attempted manslaughter, as that is what they are doing, they are knowingly putting others at great risk due to their inattention. At the very least, it should result in license suspensions of significant time.
Now how about Flash Player?
Hmm... that's a tough one. How would Google, the handler of VirusTotal, deal with Chrome, another Google product.
Would Google act in their own best interests? I'm stumped...
Re: What exactly
So MS sells them for $70, and the pirates sell for $30. MS then sells for $30, and the pirates drop to $10.
Not a winning strategy, but I agree that at some price point some portion of people are going to be willing to pay for the security of having a genuine MS product rather than a questionable purchase. The problem remains with the folks who are always going to want to pay as little as they can get away with.
Before California gets too high and mighty here, I just had a buddy purchase a Cisco ASA firewall on eBay cheap. He turns it on and finds it has a configuration already in place. Turns out it is from the California Department of Parks & Recreation. No wipe, and the thing was on their network as recently as October 2014. Shining example of security awareness right there.
Re: How much C4
There was a story of an American microbrewery that was using a drone to deliver 12 packs? of beer to ice fishermen in the Great Lakes region, but the plug was pulled on it once the FAA heard about it. http://abcnews.go.com/US/faa-slaps-drone-beer-delivery-service-ice-fishermen/story?id=22314625
How much C4 equals the weight of a 12 pack of beer?
I believe El Reg had an article on how the thought of shooting down a drone easily was a fallacy, at least with rifles/shotguns. It was a topic brought up in the hysteria cloud of Amazon's drone package delivery daydream.
Re: Browser clock?
I seed my PC with some random Mali family's photos and set the default Windows OS to Swedish to throw people off my trail.
"industry-standard security practice "
Really? TFA for servers is like a unicorn: I've heard of it, and seen some illustrations of it, but I've never come across it in real life.
Do I really work in a bubble?
These NORK idiots just made it my patriotic duty to go see this movie, when in fact I had no intention to do so. Thanks a lot, Un!
@ Dave Bell
What could be more American than being anti-public transportation?
On behalf of my country, let me apologize for this whole Black Friday nonsense. Many in the States are sickened by the behaviors it causes. Personally I take great pride in not even stepping foot out the door on most Black Fridays (my government agency has the day off), but this year I was dragged out to help my mother-in-law purchase a new vehicle. The Big Three auto manufacturers here decided to jump on the Black Friday bandwagon, and were offering supposed discounts and specials. Ford was offering a $1000 Amazon gift card with any new car purchase, but of course the dolts here don't conclude that it would be far simpler to just have Ford take that amount off the purchase price of the car in the first place. Like the Amazon gift card magically appears out of nowhere...
GM was offering 20% off leftover 2014 models, which according to a buddy who works for a GM dealership, was a great deal if you could find a leftover that fit your needs. Thus, I agreed to go help negotiate.
As a VZW customer, let me comment on the ending statement from VZW...
Sort of off the topic but...
Can anyone provide some background on the origins of the image that accompanies these stories about FB, of the woman with the FB logo painted on her face? Just wondering where this scene came from. It appears El Reg may have added the FB logo from what I can gather from TinEye. I've tried to track down info using Google and haven't had much success.
Where was this?
I saw this guy speak at a security conference in Albany NY this summer. He was as exciting and dynamic as moss. Might have punched things up a bit if he took the opportunity to mention this idea during his 25 minutes snoozefest on stage.
Well, there's goes our plan to develop Stuxnet II...
There's no way this can be reported correctly as there is no trail back to Microsoft being the root cause of the problem.
Heads up to my Russian co-workers here in the States...
Although having discussed their viewpoints on the Ukraine situation, it's probably too late to save them.
So apparently the brains of Anonymous have been scooped up in previous raids, leaving just the tech dregs to carry on the work. Time to close shop or hire new talent.
So the takeaway is that GMO wheat should be showing up on Chinese dinner plates in the near future. Got it.
People complain to the POTUS like he actually has some control over the apparatus at this point. It's so cute.
Improve physical ruggedness or ease glass repair, Mr. Lee
I actually think Samsung is onto something with the focus on physical robustness. The ability to claim to be 'water resistant' is compelling to me. Next up should be innovation improving the ability of the display to withstand drops, or at least allow a cheap and easy way to repair it. Both of those are on most folks' wish lists. Allow me to uninstall the Samsung bloatware and I'm ecstatic.
Thank goodness there was no mouthful of beverage in the mix while reading this...
Visiting Fedex.com and attempting a blank logon in order to kick over to their SSL site, Netcraft reports the following: "The site offered the Heartbeat TLS extension prior to the Heartbleed disclosure, but is using a new certificate and no longer offers Heartbeat."
So it sounds like they've now addressed it, no?
Hacker? Or more likely...
Computer student who through curiosity tested and discovered the issue was real, then was naively excited by the possibility that his actions could somehow propel him to notoriety and fame in his field?
Add two zeroes to those California fines and then you're in the ballpark for something that will help cut back on the manslaughter-waiting-to-happen situations.
Probably cliched but still...
Our new secretary to the HR director, when moving her stuff into the retired secretary's desk, reported finding several love notes between the retired HR secretary and the former director of HR. Everyone who knew both of them were somewhat surprised by that.
I really do want to know what all the apps are up to on my Android, but I get the feeling that if I partner with Mr. McAfee on this venture, I'll have a few scantily clad women of questionable reputation hanging around my phone, with the phone eventually being found murdered in some Central American country under very suspicious circumstances.
Because paying the ransom always solves the problem and makes the extortionists go away.
And yet the one incident we had centered around Microsoft Silverlight, and not Java. Go figure.
Re: How many Directors
"I once saw angels come down from the sky, preaching peace and love, then fight godzilla in a glorious and beautiful clash, scored by Pink Floyd. Second year chem, making LSD."
I'm pretty sure that same show got a replay at the Nelson Mandela memorial service by some guy flapping his hands at the front.
Re: "Father of Modern Surgery," William Stewart Halstead, was addicted to cocaine and morphine
The missing conclusion here is that Dr. Halstead wasn't acutely aware of the impact and potential effects, whereas this supposedly intelligent gentleman Jack had the benefit of societal knowledge of the likely outcomes... and chose to ignore them.
If you really want to impress me, sit in your car in an enclosed garage for 30 minutes, then emerge and tell me how unrealistic a threat pollution emissions are.
Re: Resolved? I think not.
All the smart money has been moved to Bitcoins.
Excuse us, Mr. Gosling...
Go home... you're drunk.
Time to move the operation to Venezuela or Ecuador. I hear they might have a soft spot for this sort of dilemma.
Intuitive, these mice are
I remember when we first started rolling out distributed computing devices and mothballing the green screen terminals. We had PC training classes for staff. In my session, as we were covering how to log into the PC, one lady alerted the instructor to the fact her PC wasn't working because her pointer wasn't able to move. I looked up to see the woman holding the mouse about a foot off the desk surface, hovering it in mid air, and just trying a combination of 3D motions with the mouse. The ball of the mouse wasn't in contact with anything, and thus there was no movement of the pointer.
Let me know how that Flash ban goes. I foresee pitchforks and torches-wielding crowds outside someone's cubicle.
BS charge for a BS offense.