* Posts by diodesign

1643 posts • joined 21 Sep 2011

Trump's self-imposed cybersecurity deadline is up: What we got?

diodesign
(Written by Reg staff) Silver badge

Re: Re: STOP THE PRESSES!!!

We call him Pres Snowflake because he can't take a single word of criticism or humor without a meltdown or throwing a strop.

It's ironic that Team Trump refer to liberals as snowflakes when it's Donald blowing up on Twitter whenever he doesn't get his own way.

C.

30
2

'We should have done better' – the feeble words of a CEO caught using real hospital IT in infosec product demos

diodesign
(Written by Reg staff) Silver badge

Deleted comments

Just wanna stress that, as the article says, no patient data was exposed, according to Tanium and the hospital. So any speculation about fines and privacy invasions and all that is not great.

We've tweaked the story to make it as crystal clear as possible. Apologies for any confusion.

C.

3
1
diodesign
(Written by Reg staff) Silver badge

Re: JimC

I wish it could be clearer but the problem is that it's a murky situation. It seems what Tanium calls a demo environment was actually a hospital's network. That meant when sales ppl zoomed in on systems to show off the tool's features, it was zooming on real machines. This happened without permission from the hospital.

From the WSJ, which got the scoop:

"For years, cybersecurity startup Tanium Inc. pitched its software by showing it working in the network of a hospital it said was a client ... But Tanium never had permission to present the demos, the hospital said."

So it demo'd the gear using a hospital's IT system without the hospital's permission. I hope that's clear in our story.

And as the hospital and Tanium say, no patient data was exposed - just internal IT info.

C.

4
0

So few use Windows Phone, Microsoft can't be bothered: Security app is iOS, Android only

diodesign
(Written by Reg staff) Silver badge

Non-comment

"the Windows 10 Mobile version of the Authenticator app has had this, for like, forever."

Hey mate - dunno if you noticed but this article is about Windows Phone and all the people who backed Microsoft by buying into WP and now getting their loyalty repaid by being screwed over.

To the apologists: you can argue that this is a minor feature but the message is loud and clear from Microsoft - thanks for believing in Windows Phone, we don't care about you. Don't expect any more support.

Why should anyone buy into Windows 10 Mobile after this shabby treatment.

C.

12
1
diodesign
(Written by Reg staff) Silver badge

Re: The latest version on Windows Phone 10...

The latest Android and iOS versions don't require a password. From the Microsoft blog post:

'Here in the identity division at Microsoft, we don’t like passwords any more than you do! So we’ve been hard at work creating a modern way to sign in that doesn’t require upper and lowercase letters, numbers, a special character, and your favorite emoji. And after a soft launch last month, we’re excited to announce the GA our newest sign-in feature: phone sign-in for Microsoft accounts!

With phone sign-in, we’re shifting the security burden from your memory to your device. Just add your account to the Android or iOS Microsoft Authenticator app, then enter your username as usual when signing in somewhere new. Instead of entering your password, you’ll get a notification on your phone. Unlock your phone, tap “Approve”, and you’re in.'

C.

4
1
diodesign
(Written by Reg staff) Silver badge

Re: No Windows Phone Version?

Did you have to type in a password? This latest version (for iOS and Android) skips the password part.

In any case, kiss goodbye to further app updates. Microsoft doesn't care.

C.

9
3

That apple.com link you clicked on? Yeah, it's actually Russian

diodesign
(Written by Reg staff) Silver badge

Re: Re: an easy fix for firefox

Thanks - updated the article with the fix info.

C.

0
0

Boffins fabricate the 'most complex bendy microprocessor yet'

diodesign
Silver badge

Most El Reg readers are in the US now. We will love the UK, tho.

C.

0
2

Prisoners built two PCs from parts, hid them in ceiling, connected to the state's network and did cybershenanigans

diodesign
(Written by Reg staff) Silver badge

Re: Re: The Shawshank Connection

* Escape From Alcatel

* Jailhouse NoC

* Man In The Iron Subnet Mask

* Con Air Gap

* O Brother Printer, Where Art Tho?

C.

28
0

Take that! FCC will hand net neut to FTC – reports

diodesign
(Written by Reg staff) Silver badge

Re: Dave 126

FCC = US comms regulator. FTC = US trade regulator.

(Federal Communications Commission v Federal Trade Commission).

C.

2
0

Overcharge customers, underpay the serfs. Who else but Uber (allegedly)

diodesign
(Written by Reg staff) Silver badge

Re: Vince

I don't really understand where you're coming from. It seems pretty straightforward. From the lawsuit:

"The Uber Defendants often transmit or provide the driver with a fee based on a reduced fare amount. The Uber Defendants retain the difference in the fare charged to the User and the fare reported to the driver, in addition to the service fee and booking fee disclosed to drivers."

So, yeah, the lawsuit claims Uber is overcharging passengers and underpaying drivers.

C.

16
0

Twitter's motto: If at first you screwed developers over, try, try again, eh?

diodesign
(Written by Reg staff) Silver badge

Re: How do we pay for it? THIS.

Cool analysis, thanks. Re: the Reg numbers... we have a staff of ~50 not 150. About 25 staff journos plus ad sales, tech and admin. Our operating costs are about $5-6m.

C.

1
0

Your machine used to crunch numbers. Now it can chew over what they mean, too

diodesign
(Written by Reg staff) Silver badge

Re: a b

Well, y'know, we've labelled it as such, it pays the bills for the rest of our journalism. This snark does not come cheap.

C.

2
0

Apple fans, Android world scramble to patch Broadcom's nasty drive-by Wi-Fi security hole

diodesign
(Written by Reg staff) Silver badge

Re: Drive-by or not drive-by?

"an attacker and victim have to be associated with the same access point"

For this particular firmware bug, yes. So if you can't get on the same network as the victim, set up a free access point and lure them on. Bingo.

C.

PS: If you spot any errors, email corrections@theregister.co.uk.

0
0

Put down your coffee and admire the sheer amount of data Windows 10 Creators Update will slurp from your PC

diodesign
(Written by Reg staff) Silver badge

Re: BongoJoe

"Where does the owner of the document fit into this process?"

Make sure you don't put Windows 10 into Full telemetry mode.

C.

13
0

Datrium gets on the rack and heads cloudward

diodesign
(Written by Reg staff) Silver badge

Re: What I'd say

FYI Brian is a Datrium employee.

C.

0
0

Everything's fine, says Cylance, as 'one in five' workers given the boot

diodesign
(Written by Reg staff) Silver badge

Re: Bromium then Cylance

"So Bromium's workforce has been significantly cut down"

We heard a while back that people on the Mac team were cut. If you have any more details, get in touch - news@theregister.com or anonymously via Ricochet - ricochet:m3bnxucau5ishl2h

Cheers,

C.

0
0

Is this a solution to Trump signing away your digital privacy? We give Invizbox Go a go

diodesign
(Written by Reg staff) Silver badge

Re: It might be good, but...

"does not quote sources"

Mate, it's a hands-on review. It's... what our man Kieren thought of it after using it. It's not even a glowing review - we point out all the limitations and caveats as well as the potential benefits.

C.

27
0

Recruiters considered really harmful: Devs on GitHub hit with booby-trapped fake job emails

diodesign
(Written by Reg staff) Silver badge

Re: If you disconnect from the internet...

Your Qs can be answered by reading the linked-to blog post.

1. You have to enable macros or run the macro. If you think this is a major hurdle, you haven't worked with people. The payload runs covertly out of sight. It waits (blocks) until the download is complete - google WebClient.DownloadFile().

2. Yes.

3. margin2601_onechat_word.exe

C.

3
0

As a shock to absolutely no one, Uber is mostly pasty, male at the top

diodesign
(Written by Reg staff) Silver badge

Re: Shockingly, the numbers were presented without context.

Yeah, now look at the leadership gender/race figures.

C.

5
5

Amazing new WikiLeaks CIA bombshell: Agents can install software on Apple Macs, iPhones right in front of them

diodesign
(Written by Reg staff) Silver badge

Re: Airports

Yeah - that sort of thing, not a supply chain.

C.

8
0

US Senate votes to let broadband ISPs sell your browser histories

diodesign
(Written by Reg staff) Silver badge

Re: Roger B

But today's article wasn't written by Andrew and has little to do with net neutrality. Just seems off topic.

C.

26
0
diodesign
(Written by Reg staff) Silver badge

Re: Roger B

"I'll just post this article again."

Why though?

C.

10
1

That 'Trump lawyers threaten teen over kitten website' yarn is Fakey Fakey McFake Fakeface

diodesign
(Written by Reg staff) Silver badge

Re: It's fake news folks.

It does look too good to be true, however: The Hollywood Reporter and the New York Observer both say they have been in contact with Lucy, a kid who is learning basic web dev skills in a coding bootcamp, apparently. THR and NYO aren't really the sort of publications to make up quotes separately and independently about the same person. I'll be very disappointed in THR if this turns out to be fake.

Crucially, NYO says it has seen the C&D letter. The WHOIS records also suggest TrumpScratch.com predates kittenfeed.com. I've added a link to the NYO story and some more info about the domains.

If there is a PR viral marketing thing behind this, it's not clear who the beneficiary is - it's a long-winded way of touting a porno website, which we spotted and isn't mentioned in the THR and NYO reports.

One odd thing is that NYO is owned by the family trust of Trump's son-in-law Jared Kushner, also an advisor to the president. You'd have thought that may have put off NYO from running anti-Trump news, but OTOH perhaps the title has proper independence (which is a good thing). It did publicly back Donald as the Republican candidate, though.

Very odd, and a bit of pre-Friday fun. It's not exactly Watergate. Take it with a pinch of salt if you wish.

Update: We've seen the DNS records - the domain was registered on March 22, weeks after "Lucy" claimed to have received the C+D demand so it's pretty much Fakey McFake Fakeface. Sorry. Lessons learned.

C.

25
0

Sources: Liberty Global, Vodafone take seats at negotiating table AGAIN

diodesign
(Written by Reg staff) Silver badge

Re: Dumb Question

"Virgin Media runs on EE's network"

Bingo.

C.

3
0

Russian! spies! 'brains! behind!' Yahoo! mega-hack! – four! charged!

diodesign
(Written by Reg staff) Silver badge

Re: "Russian Federal Security Service"

Nope – Federal Security Service, from the horse's mouth.

Pedantry – Близо́к локото́к, да не уку́сишь.

C.

11
0

Can you ethically suggest a woman pursue a career in tech?

diodesign
(Written by Reg staff) Silver badge

Re: I don't know what company Mark Pesce works for, but he should quit.

"What he is talking about, I've worked as an employee and contractor for just over 30 companies. And NONE of those companies is on the same planet as Mark Pesce. I'm an extroverted guy, I like to get in on scuttlebutt, and I've never heard anything like what he is talking about."

I've never had cancer so why are we spending millions and millions tackling it?

C.

3
3
diodesign
(Written by Reg staff) Silver badge

Re: Another female

Mark (and El Reg) want more women in IT/tech. The problem is, there's no point recommending it as a career if they're going to run into toxic workplaces.

C.

3
6
diodesign
(Written by Reg staff) Silver badge

Re: Steven Guenther

"when you do run across a woman in a high position, you know she is just there because of her ovaries."

Or when you do run across a woman in a high position, you know she is there despite not having a dick, and without people with dicks keeping her down the ladder.

C.

4
9

Microsoft nicks one more Apple idea: An ad-supported OS

diodesign
(Written by Reg staff) Silver badge

Re: Wait...

Yes.

C.

16
0

Microsoft to close its social network on a week's notice – and SIX people complain

diodesign
(Written by Reg staff) Silver badge

Re: Who can you believe nowadays?

Well, both. Wikipedia is talking about full-year users (170m) and Statista is talking about monthly users (about 50m). If you follow the link in the Wikipedia page, you'll get to a South Korean financial news article that says:

"KakaoTalk ... had 170 million subscribers at the end of last year and 48 million monthly active users (MAU)."

C.

17
0

Oh, 3PAR. One moment you're gliding along. The next, you're in the rain as HPE woos Nimble

diodesign
(Written by Reg staff) Silver badge

Re: "Oh goodness here come the meatheads..."

Chris is welcome to his opinion.

C.

0
0

Microsoft: Can't wait for ARM to power MOST of our cloud data centers! Take that, Intel! Ha! Ha!

diodesign
(Written by Reg staff) Silver badge

Re: Question

"Surely hardware needs a driver"

In this case, a generic ACPI driver that accesses the hardware in a uniform and standard way - via ACPI and the ARM server and boot standard (Register passim) - rather than specific Qualcomm and Cavium chipset driver code.

C.

3
0

That CIA exploit list in full: The good, the bad, and the very ugly

diodesign
(Written by Reg staff) Silver badge

Re: Re: Dear el Reg,

"The Register would focus on the technical details"

There are very few technical details in the WL dump - and we've linked to the most interesting stuff for you to read yourself. There is basically not much of worth in the leak, relative to the hype, which makes us wonder why St Jules went to the trouble of going ballistic over it...

"The CIA is paying contractors to develop zero day vulnerabilities, does not inform the vendors and then the malware leaks"

We've written pages and pages and pages about the IC hoarding vulns. And no malware nor exploits leaked in this WL dump.

C.

3
0
diodesign
(Written by Reg staff) Silver badge

Re: Dear el Reg,

Haha, no. We'll write what we want.

C.

6
0

Lacklustre reporting.

diodesign
(Written by Reg staff) Silver badge

Re: Ryzen

I know, I know. I've been really busy, I'm completely stressed out, give me time. I'm at OCP Summit on Wednesday and cleared Thursday to focus on AMD. In the meantime, a colleague in the UK is covering the Zen server chips for this week.

At El Reg, bad news is a priority: crashes, hacks, cockups, scandals and crime come first. And lots of that has been happening.

PS: We're seeking a full-time semiconductor news reporter to take chips off my hands. If you, a friend or anyone else reading thinks they can cover CPUs, GPUs, ucontrollers and ASICs and FPGAs for The Reg, email me: cwilliams at theregister dot com.

C.

3
0
diodesign
(Written by Reg staff) Silver badge

Re: Lacklustre reporting.

Well, I'm sad you don't believe me, but it's the truth. I wrote about Zen last year. When Ryzen was announced at the end of 2016, all that was revealed was the name, and then later on, the on-sale date was announced, and tomorrow it's coming out.

At El Reg, we don't really do the whole trickle-feed of hype. I'd rather wait for the thing to arrive and do one decent story on it rather than act as an external marketing wing for AMD.

We've written about Hololens and the S8 and so on, but we also wrote about and mentioned Zen last year - in August, September, April, and October. Where I've written about Hololens, it was either in passing about Windows 10 or was an exclusive on the headset's DSP chipset.

I can tell you're a massive fan of AMD, and I'm pleased for you. But I'm not going to act as the advertising wing of a multibillion-dollar corp, especially when other sites are tripping over themselves to say nice things about the CPU.

C.

1
2
diodesign
(Written by Reg staff) Silver badge

Re: Lacklustre reporting.

It doesn't launch until March 2. When it actually arrives, we'll write about it.

C.

0
2

BONG! Lasers crack Big Ben frequency riddle BONG! No idea what to do with this info BONG!

diodesign
(Written by Reg staff) Silver badge

Re: No spectrum analyser?

Too easy.

C.

11
0

Amazon S3-izure cause: Half the web vanished because an AWS bod fat-fingered a command

diodesign
(Written by Reg staff) Silver badge

Re: Availability Zones

We didn't mention AZs because S3 doesn't use availability zones. That's for EC2.

C.

15
1

Net neutrality? Bye bye, says American Pai

diodesign
(Written by Reg staff) Silver badge

Re: Roger B

The comment's back.

C.

1
0

LG, Huawei unwrap 'Samsung Galaxy-killers'

diodesign
(Written by Reg staff) Silver badge

Re: You could be a touch more sceptical, please

Um, well, you can use spare cycles to perform ML *inference* to optimize the system. Inference is very cheap. You're probably thinking of training, which is intensive. Modern ARM cores are beefy enough to do inference.

Basically, ideally, you train the system offline to optimize memory allocation, deallocation and organization based on loads of different scenarios (which types of apps are running, for how long, with how much charge, etc), build that model and code into your firmware. Then the phone can make better decisions on how to save power or provide performance, all through cheap inference.

More operating systems should do this. Forget the AI/ML hype, this is useful stuff for letting devices cope with a large range of users and their demands, without an ugly codebase of heuristics, if-elsif, and switch() blocks.

C.

0
0
diodesign
(Written by Reg staff) Silver badge

Re: please start every phone review with:

Hearing you loud and clear - updated the article with links to specs + battery info + storage slots + more.

C.

2
0

People built AI bots to improve Wikipedia. Then they started squabbling in petty edit wars, sigh

diodesign
(Written by Reg staff) Silver badge

Re: Eddy

Great memory. Well, this time round the paper's been officially published, and we've got more details and quotes - such as the pages most argued over. Enjoy!

C.

5
0

Boffins exfiltrate data by blinking hard drives' LEDs

diodesign
(Written by Reg staff) Silver badge

Re: Root access

It's not always about root access. You might be able to game the OS to blink the light when you want as a user-mode process. But anyway, it's not about that. It's about getting information out of an infected air-gapped system. In theory. It's literally an academic exercise ;)

C.

8
0

Neuromorphic progress: And we for one welcome our new single artificial synapse overlords

diodesign
(Written by Reg staff) Silver badge

Re: Kinda

Nah, I kinda like the word. if you want boring lifeless mechanical prose, VentureBeat is that way ---->

C.

1
0

Meet the chap open-sourcing US govt code – Paul, an ex-Microsoft anti-piracy engineer

diodesign
(Written by Reg staff) Silver badge

Re: What license is he going for?

MOOSE is GPL 2.1 and the build system (Civet) is Apache 2.0 - both linked in the article.

C.

6
0

UK Snoopers' Charter gagging order drafted for London Internet Exchange directors

diodesign
(Written by Reg staff) Silver badge

LINX is lying

We disagree with LINX's incorrect claim that there is no gag clause. There is a clear update to the constitution that means information will be withheld from members if legally necessary. Within the context of the IP Act, that means secrecy orders attached to surveillance demands.

LINX was also obviously, from consultation documents, considering the impact of the IP Act when it was drawing up this constitution tweak. We also ran this article's claims by LINX prior to publication, and the result is the official quote at the end of the story. It is disappointing to see LINX fail to accept the findings and criticism presented by The Register.

Here's the relevant text from the amended constitution highlighted.

C.

19
2

FAKE BREWS: America rocked by 'craft beer' scandal allegations

diodesign
(Written by Reg staff) Silver badge

Re: This story only got written for the headline

:) We really want to do a podcast or some kind of recording of our headline writing, if only we had time. It's mainly us shouting puns at each other across the office.

C.

29
0

Google yanks workers from ISP outfit, it's THE FIBER COUNTDOWN

diodesign
(Written by Reg staff) Silver badge

Re: "it's not totally giving up"

Yeah, I think our sarcasm was a little too subtle, there.

C.

3
0

Forums

Biting the hand that feeds IT © 1998–2017