* Posts by FrogsAndChips

246 posts • joined 7 Jan 2015


Earth's noggin took quite a clockin' back in the day: Now a second meteorite crater spotted under Greenland ice

FrogsAndChips Bronze badge

Re: And yet, there is still life on earth ...

What about the mice and the dolphins?

Lovely website you got there. Would be a shame if we, er, someone were to sink it: Google warns EU link tax will magnify media monetary misery

FrogsAndChips Bronze badge

Re: have you noticed

Yes, I've noticed that every time I change my default search engine to DuckDuckGo or Qwant, it's not long before I revert to Google. Old habits die hard I guess, and I always have that uncomfortable feeling that i'm missing some results, so I switch back to Google just to compare and don't bother to change back.

Maybe next time I'll try harder (famous last words).

Mumsnet data leak: Moaning parents could see other users' privates after cloud migration

FrogsAndChips Bronze badge

Re: not quite a financial institution or communications provider.

Credentials apparently weren't exposed

Not this time, but I was following up on a comment about the Heartbleed attack that hit them in 2014. Even the site's founder got her credentials publicly exposed.

FrogsAndChips Bronze badge

Re: not quite a financial institution or communications provider.

But their users are typically those that would reuse their passwords, so any credentials that were stolen during this breach could have been used to break into more sensitive services.

Google: All your leaked passwords are belong to us – here's a Chrome extension to find them

FrogsAndChips Bronze badge

Re: Keepass - with Tusk - stored in Sync

it's way over the heads of "normal" users

I tend to disagree. Yes, it's highly configurable and extendable, and has advanced features that require some RTFM, but for a standard user all it takes is a few clicks to create a new entry and generate a unique secure password that will be accepted by most sites, which is all they need.

FrogsAndChips Bronze badge

Re: Which password manager to plump for?

Also available on Android as KeePass2Android.

Trakt app users' personal data exposed: We were hit by a 'PHP exploit'... back in 2014

FrogsAndChips Bronze badge

Platform change in Jan 2015

and the data breach would have occurred just one month before the change? Sounds more likely to me that it could have happened anytime up to December 2014.

Also, moving to a "more secure algorithm for storing passwords", probably means the previous algorithm was MD5 hash, so all leaked passwords have been pwned for 4 years.

European Commission orders mass recall of creepy, leaky child-tracking smartwatch

FrogsAndChips Bronze badge

Re: Same test results, different conclusion?

Well, at least they spared us the usual "We take security very seriously" press release.

Worried about Brexit food shortages? North Korean haute couture has just the thing

FrogsAndChips Bronze badge

"We contacted the UK's Brexit planners for their thoughts"

Haven't the last 2 years convinced you that they have none?

Q. China just landed on its far side, the US woz there 50 years ago – now Europe wants to mine it? A. It's the Moon

FrogsAndChips Bronze badge

Re: Deal with two problems with one solution (no puns intended).

Sounds like a crossover between this and that.

FrogsAndChips Bronze badge

Re: Facing us?

At new moon, the side that faces the Earth is in the dark, hence "dark side".

You must be confusing with the "far side" of the moon.

Edit: Patched Out beat me to it.

Colour us shocked: Google in €50m GDPR fine appeal bombshell

FrogsAndChips Bronze badge

Re: Can the fine be increased?

Yes, appeals can increase or decrease the sanctions.

Look out, kids. Your Tinder account is about to be swamped by old people... probably

FrogsAndChips Bronze badge

Re: 2 years ago, haven't used it since...

That's no way to talk about your girlfriend!

Office 365 enjoys good old-fashioned Thursday wobble as email teeters over in Europe

FrogsAndChips Bronze badge

users lacking the usual “checking my email” work avoidance excuse

Well, they do have the "can't work as I can't access email" excuse instead.

French data watchdog dishes out largest GDPR fine yet: Google ordered to hand over €50m

FrogsAndChips Bronze badge

Re: Apple Turnover

Do you mean Tarte Tatin?

FrogsAndChips Bronze badge

Re: When will this hit Apple?

If you want to fine Apple under GDPR, you'll need to find something else than forbidden jailbreaking and unrepairable devices.

Three quarters of US Facebook users unaware their online behavior gets tracked

FrogsAndChips Bronze badge

Re: No kidding

To paraphrase one of my former maths teachers "Any sufficiently large group of individuals will always contain the same proportion of morons".

FrogsAndChips Bronze badge

Re: FB is a boil on the bum of mankind!

Hey, I make $2303.58 per month on FB just worknig from my home 2 huors per day. It's easy and anyone cna do it!!! If you want to find the same, just click hear -> []

Sorry, couldn't resist!

Happy Thursday! 770 MEEELLLION email addresses and passwords found in yuge data breach

FrogsAndChips Bronze badge

If your offline password manager gets hacked, you have bigger problems.

HSBC suggests it might have found a... use for blockchain?

FrogsAndChips Bronze badge

Re: Truth

That sounds exactly like how Kerviel managed to engage 50 billions in DAX futures - knowing how to bypass weak controls and convincing people to ignore red flags. Granted, that was 12 years ago and banks have learnt from this, but we all know how history is doomed to repeat itself...

FrogsAndChips Bronze badge

Re: Risk Averse?

IB are more and more risk averse. They now prefer the safe and steady revenue streams of sales and arbitrage to the risks of trading for their own. Plus the regulatory constraints make it more and more costly to perform their activities. A lot of IB have been shutting down or reducing their prop trading activities in the last years.

German competition watchdog toys with ban on some Facebook data-slurps

FrogsAndChips Bronze badge

Re: Wow...

I still don't read it as FB admitting that they've breached DP laws - maybe I'm just too thick to read between the lines. Even if we all know they're constantly doing it, that would be PR suicide.

FrogsAndChips Bronze badge

Re: Wow...

Sorry, I must have missed something, where in the article does it say that FB incriminates itself?

Sticking with one mobile provider gets you... Oh. Price rises, big exit fees, and lovely, lovely lock-in

FrogsAndChips Bronze badge

Re: Data Portability

@Gordon 10

You can imagine a use case where your current telco provides your consumption data to your new one so that they can offer you a relevant plan if you can't do the math by yourself.

But generally agree with you, see my previous post.

FrogsAndChips Bronze badge

Re: Data Portability

Sure, but I'm not convinced this is the main obstable to switching mobile providers as the article suggests. Number portability could be a blocking point, although from personal experience I found it to work quite well (PAC number easy to obtain, switch scheduled within a few days, happens on the given date with minor loss of service), but YMMV.

The Palm Palm: The Derringer of smartphones

FrogsAndChips Bronze badge

Re: Not a shadow phone unless you manage to clone your SIM

Not if done by your operator, that's the initial business model for this phone and why it's locked to a provider. This was explained in the previous article when Verizon launched it in the US:

Inside is a non-removable nano SIM that mirrors your primary SIM, much like an eSIM-enabled Apple Watch mirrors your iPhone.

But from this article it sounds that Vodafone is not offering this feature yet.

Brexit-dodging SCISYS Brits find Galileo joy in Dublin

FrogsAndChips Bronze badge

Re: they haven't left

But the jobs have gone to Germany.

ZipRecruiter has been flying low: User email addresses exposed to unauthorised accounts

FrogsAndChips Bronze badge

Re: October? That's a while

The 72 hours are to notify the supervisory authority (ICO), and it's not actually a 'must', but a 'where feasible'. On this occasion, the incident was discovered on Friday 5th and notified to the ICO on Tuesday 9th, so a bit more than 72 hours but this could be justified by the time to check if the bug had actually been exploited.

For communications to the individuals, it's 'without undue delay'.

US bitcoin bomb threat ransom scam looks like a hoax say FBI, cops

FrogsAndChips Bronze badge

Re: While in the UK

The one I received last week didn't mention my sexual exploits, but rather suggested that I had quite embarrassing browsing habits. He knew that because, you see, he had hacked into my mailbox (sent me an email with my address as From:, actually).

FrogsAndChips Bronze badge

No transactions have been recorded yet

Hardly surprising, is it? If you receive such an email, what are you most likely to do?

a) Pay the ransom

b) a), but first, circulate a basket to put your colleagues to contribution

c) Forward to your Security team just in case

d) Evacuate the building

e) Continue as if nothing had happened and post snarky comments on El Reg

FrogsAndChips Bronze badge

Re: Wandering totally offtopic

To me it's WFH. First time I've seen WAH is in the post I'm replying to.

Astroboffins spy a rare exoplanet evaporating before their eyes

FrogsAndChips Bronze badge


SI unit for mass is kilogram, so shouldn't that be 10 Mega kg, however weird that sounds?

FrogsAndChips Bronze badge

Re: unanswered questions, or unread article?

In a few billion years left [sic], there may be nothing left except the rocky core of GJ3470b.

UK spam-texting tax consultancy slapped with £200k fine

FrogsAndChips Bronze badge

Not according to the ICO. See sections 31-36 of the ruling (link in the article).

FrogsAndChips Bronze badge

Re: max fine

That happened between July 2016 and October 2017, so pre-GDPR.

For anything that happened since May 2018, ICO could now enforce max fines of € 20M or 4% of turnover, whichever is *larger*, so it will be possible to hurt those scammers much harder.

Supernovae may explain mass extinctions of marine animals 2.6 million years ago

FrogsAndChips Bronze badge

Re: surfing on the stars

See https://what-if.xkcd.com/73/ for the reference on lethal dose of neutrinos from supernovas.

Total Inability To Support User Phones: O2 fries, burning data for 32 million Brits

FrogsAndChips Bronze badge

Re: Do people really need reminding buses are still running?

This morning the ETA signs showed a message along the lines of "traffic information unavailable, please check at tfl.gov.uk", so it was quite obvious that buses were still running.

Little FYI: Wi-Fi calling services on AT&T, T-Mobile US, Verizon are insecure, say boffins

FrogsAndChips Bronze badge

Re: Been that way for years

They need full volume because these days they hold the mic to their ears...


Domain name 'admin' role eyed up as latest victim of Whois system's GDPRmeggdon

FrogsAndChips Bronze badge

Re: how many form submissions?

The same as the number of unanswered emails sent to whichever false contact address a spammer would give the registrar in the first place.

Your point was?

FrogsAndChips Bronze badge

Re: "The DPA is the UK implementation of GDPR"

DPA 2018 is the UK implementation of GDPR.

Data minimization was already one of the principles of DPA 1998.

NASA's Mars probe InSight really has Mars in sight: It beams back first pic after touchdown

FrogsAndChips Bronze badge

Oh, I wish it could be Black Friday every day-aayyy, when the wallets start jingling but it's still a week till we're paiii-iid

FrogsAndChips Bronze badge

Re: Meanwhile in western France...

reduced from 12 euros to 12 euros

That's not what I call a bargain.

Talk in Trump's tweets tells whether tale is true: Code can mostly spot Prez lies from wording

FrogsAndChips Bronze badge

Re: @ nagyeger

The Ecole Normale Supérieure is actually the golden highway for future politicians and high-level functionaries.

Its primary mission still is to train high-level academics (teachers, researchers), hence the large number of Nobel Prize recipients for the science-oriented ENS. The training of high-level civil servants is more recent.

Ecole Normale just used to be a generic name for the institutions in charge of forming teachers.

FrogsAndChips Bronze badge

"anyone could use this approach to construct a lie detector for a specific person"

I'm not worried, all my public statements are lies anyway.

Infosec's Thanksgiving turkey triumvirate: Tesla, Tumblr, Trump (as in Ivanka)... and tons more

FrogsAndChips Bronze badge

Re: The Washington Post called them "Ivanka Trump’s personal emails"

From the WP article:

Trump sent hundreds of emails last year to White House aides, Cabinet officials and her assistants using a personal account, many of them in violation of federal records rules [...]

she often discussed or relayed official White House business using a private email account.[...]

Trump used her personal account to discuss government policies and official business fewer than 100 times — often replying to other administration officials who contacted her through her private email, according to people familiar with the review.

Another category of less-substantive emails may have also violated the records law: hundreds of messages related to her official work schedule and travel details that she sent herself and personal assistants who cared for her children and house,[...]

Trump continued to occasionally use her personal email in her official capacity [...]

Trump had used her personal email for official business far more frequently than known, according to people familiar with the administration’s review.[...] “She was the worst offender in the White House,”

FrogsAndChips Bronze badge

Re: Slow decline ?

If you look at the charts for the last year, you will actually see both: a free fall at the start of 2018 THEN a slow decline since March...

When selling security awareness training by email, probably a good shout not to hit 'reply all'

FrogsAndChips Bronze badge

That's true for O365 webmail (and can be changed in a single click). In Outlook the Reply and Reply-All buttons are the same size, Ctrl-R is just Reply, you need Ctrl-Shift-R for Reply-All.

Actually 95% or so of my replies are Reply-All, so I wouldn't mind it being the default. I just happen to know when I'd better do a simple Reply and when I should put recipients in Bcc (rarely, as part of my job).

But sure, let's blame the tool rather than the users who still can't grasp a few simple concepts 20+ years after the email entered our daily lives.

FrogsAndChips Bronze badge

Re: Holland was clearly making a point..

If sending to more than three people (or more than 1 domain) then any decent client should default to BCC

In my organization we frequently have triparty exchanges where everyone could contribute. BCC-ing everyone would just make it impossible for people to know who they need to reply to. But I agree there should be a soft or hard cap on the number of recipients, above 10 you can be almost sure that some people don't belong in a discussion.

FrogsAndChips Bronze badge

Re: Holland was clearly making a point..

He could (and maybe he did?) have replied all but moved everyone except the original sender to Bcc, thus doing his best to avoid reply-to-all-geddon. That's how you make a point and show how it's done.

Scumbags cram Make-A-Wish website with coin-mining malware

FrogsAndChips Bronze badge

It may not be a "think of the children" article, but it still appears naive from the author to suggest that a scumbag who makes a living planting malware on misconfigured websites would think twice before infecting a charity site. Do we really expect these guys to have any moral sense at all?


Biting the hand that feeds IT © 1998–2019