* Posts by Gnosis_Carmot

69 posts • joined 1 Sep 2015


GDPR USA? 'A year ago, hell no ... More people are open to it now' – House Rep says EU-like law may be mulled


The real problem is

most of the worst offenders have based their entire business on doing the exact opposite of GDPR. This would kill them.

WhatsApp security snafu allows sneaky 'message manipulation'


How long?

So how long have the NSA, FBI, and CIA been using this one?

Crappy IoT on the high seas: Holes punched in hull of maritime security


Not just open sea navigation...

I just watched a show which was looking at the world's biggest container freight ship and part of it's maiden voyage was through the Suez Canal. It had only a couple of feet to spare across the canal width. Imagine tampering with a ship like that as it's going through the canal - the canal would have damage and would have to be closed.

Sure, Face ID is neat, but it cannot replace a good old fashioned passcode


At least in the USA

At least in the USA I will stick to a passcode. Law enforcement can force you to unlock your device if it is secured using biometrics like facial and fingerprint. At least with a passcode you can make them at least get a warrant first.

IRS tax bods tell Americans to chill out about Equifax


Misleading headline is misleading

And the article body didn't bother to clear it up.

What the IRS actually said is [1] that they've already taken steps on their own and [2]that people should assume their information is already in the hands of criminals and act accordingly.

Number two is actually common sense. People should be monitoring their own data directly or through a monitoring company. The days where people could go for years without bothering to check their credit reporting data are over, and not just because criminals might get/have it.

Docs ran a simulation of what would happen if really nasty malware hit a city's hospitals. RIP :(


Not surprising given the user base at hospitals

Overheard a call once where a doctor was calling wanting the mouse calibrated. To the mouse pad. So when the mouse was in the center of the pad the pointer was in the center of the monitor,

44m UK consumers on Equifax's books. How many pwned? Blighty eagerly awaits spex on the breach


Re: Crucifed

"I didn't think it worth the risk of giving them more personal information than they already had."

They probably had every bit of that information anyway. You'd be amazed at how much they know about you. It's probably up there with what the NSA has.

NSA here : Not quite, but close.

Dolphins inspire ultrasonic attacks that pwn smartphones, cars and digital assistants


Wouldn't a group of teenage girls be able to do the same?

Wouldn't a group of teenage girls be able to do the same?

Microsoft won't patch Edge browser content security bypass


Welcome to the Windows Open A Security Hole Wizard.

Using this wizard you may open all ports, shut off firewall software, terminate anti-virus protection, install any malware desired. Simply click "Next" to begin. Or do nothing - this is Windows after all.

Please, pleeeease let me ban Kaspersky Lab from US govt PCs – senator



Sen McCarthy looks on and smiles.....

Logitech's security cams allegedly suck so bad, this US bloke is suing it



Enough for the lawyers to get rich while the people who bought the defective stuff get coupons to buy more stuff from the manufacturer.

Adware API sends smartmobe data home to Chinese company


Re: Malicious software removal

Or even better, remove the app completely and leave only a placeholder that pops up a message saying it was removed for malware.

Salesforce sacks two top security engineers for their DEF CON talk



Sounds like a porn name rather than security tool.

US Homeland Security CIO hits ctrl-alt-delete after just three months


Running the operation like a hedge fund...

... is not a good thing.

Blighty's first aircraft carrier in six years is set to take to the seas


And it runs on XP

Old power plant, old OS, "new" carrier?

Latest Windows 10 Insider build pulls the trigger on crappy SMB1


Re: "Home and Professional editions strips out the SMB1 server software exploited by the NSA."

I wonder if MS has made some way of stripping out the SMB1 client on Home and Pro as well?


Re: Someone please take out all the plebs infesting MS and shoot them.

WinME would be a better torment.

Homeland Security: Putin’s hackers tried to crack electoral networks in 21 US states


And no mention of....

...DHS's documented and unauthorized attempts to hack into the Georgia, West Virginia, and Kentucky voting networks.

US voter info stored on wide-open cloud box, thanks to bungling Republican contractor


Re: Data mining?

"The best way to swing an election in the US is to simply remove people from the voting rolls based on ethnicity and voting history"

Conversely you can leave names on the rolls of the deceased and people who moved away. The first election after my father died I found out, since we shared the same name, that someone had voted as him. I notified the poll workers that ballot should be voided as my father was deceased.


Re: Data mining?

It was common when I was in college in the 90s for both the Democrat and the Republican party people to tell to college students they could vote at both their home address and at their college address.

What they always left out was that only applied to local elections. National level the students had to pick one.


Re: 200 million people in the DB?

I'm sure the Democrats have it too. It would be naive to think otherwise.

Worried about election hacking? There's a technology fix – Helios


Re: No! No! No!

Actually the reason it can't be used is because a whole bunch of people with government connections won't be able to make tons of money off it they way they can off closed-source software.

Banking websites are 'littered with trackers' ogling your credit risk


No link to the study?


WannaCrypt: Roots, reasons and why scramble patching won't save you now


Re: The real solution is always ignored...

You are way too optimistic about users actually paying attention, much less heeding you.

Several years ago I had the (dis)pleasure of fixing a machine where the user admitted he deliberately opened an emailed virus because he was curious to see what it would do and didn't want to mess up his personal PC to find out.

Why Microsoft's Windows game plan makes us WannaCry


Re: It is the apps tied to ActiveX that cause the problems

Not just browser based apps.

A metric ton of vendors deliberately wrote, and continue to write, code using undocumented APIs and such. When MS or someone else (cough Java cough) comes along and patches/updates removing those undocumented APIs the code vendors refuse to update it because it would mean either degrading or removing functionality the customers have come to expect.

Trump signs executive order on cybersecurity, White House now runs the show


Re: Two quite separate things

Unless, the merge-and-secure is done by moving to a new system?

FBI boss James Comey was probing Trump's team for Russia links. You're fired, says Donald


Dear Reg Team,

Dear Reg Team,

Please keep your politics out of a site that is meant to be about IT. If you are going to get all butt-hurt over it realize that people have been calling for Comey's firing for a LOOOOOOONG time.

here is a tweet with many of the clips edited together:


This is Schumer talking about how scared he is and "Muh Russians" etc:


This is MSNBC upset about it 10 days before the election:


Bernie Says he should step down:


Democrats lash out at Comey from Fox News:


Harry Reid saying Comey should be investigated:


James Carville saying Comey worked for the republicans:


Tim Kaine compares Comey to Hoover taping MLK:


FOX, Dems change tune on Comey:




occupy democrats "news" :


OBAMA talking shit:






Red alert! Intel patches remote execution hole that's been hidden in chips since 2010



Wonder if this was something exposed with Vault7.

Facebook decides fake news isn't crazy after all. It's now a real problem


"I would trust Mark on this," de Alfaro said in an email to The Register.

He's about the only one to trust Zuckerberg on anything. This is the same MZ that called his company's users "dumb f**ks" ( http://www.theregister.co.uk/2010/05/14/facebook_trust_dumb/ )

That apple.com link you clicked on? Yeah, it's actually Russian


Vivaldi and Brave (Chromium based) didn't show apple and epic

They showed the gobbledegook domain names. Chrome went ahead and showed the bogus names.

FBI boss: 'Memories are not absolutely private in America'


"and any of your memories are up for grabs should a court order it."

Good luck with that! I'm famous among people I know for having CRS issues with my memory. Half the time I can barely remember what I had for supper the day before, and past 24 hours you better expect a blank stare.

As Microsoft touts Windows Insider for biz, let's take a look at W10's broken 2FA logins


" kicked February's Patch Tuesday into next month"?

"Meanwhile, Redmond has kicked February's Patch Tuesday into next month: any bug fixes due to be released and installed this week will be rolled into patches released on March 14."

Mine for Win10 home got auto-stuffed onto my machine along with the auto-lose-everything-you're-working-on-reboot early morning yesterday.

New Windows 10 privacy controls: Just a little snooping – or the max


"the Feds, who are about to be under the control of a remorseless bully who loves to hold a grudge."

What the reporter, who was desperate to insert his own political views, misses is that statement is just as true of Clinton. The US lost no matter which was elected.

D-Link sucks so much at Internet of Suckage security – US watchdog


Re: D-Link?

"How is this company still in business?"

The complete cluelessness of the general public.

Pre-Trump FCC – get a grip on mobe data caps, racist Stingray spying, urge Dem senators


Re: Common Carrier not a stretch

You forget the days of Compuspend, America Offline, Stodgity, etc, where yes, you could get *most* content over the interwebs but some was reserved exclusively for a single provider. UPN when it first appeared was only available on AOL. Didn't have AOL? You were told sign up for AOL or shut up.

These carriers are wanting to return to that level of gouging. Net Neutrality, in theory, prevents that. In practice, maybe not so much, but it would be better than nothing....

The UK's Investigatory Powers Act allows the State to tell lies in court


Welcome to 1984

War is Peace, Freedom is Slavery, and Ignorance is Strength.

Big Brother is watching.

Verizon!'s top! lawyer! ponders! walking! away! from! Yahoo! gobble!


Re: business

Cheaper, yes. However, that would open them up to a major class-action sue-grenade from any lawyer looking to get rich quick.

IBM: Yes, it's true. We leaned on researchers to censor exploit info


Apparently some people at IBM....

Have not yet learned that once published on the interwebs it will be out there FOREVER. Maybe not on the wayback site, but it's out there somewhere.

FBI wants to unlock another jihadist’s iPhone


Re: From his cold dead hands...

Don't know about iPhones but the Android ones I've seen with the finger print scanner allow the choice of finger print or code. Given the courts have previously decided a person cannot be forced to divulge a code, and the more recent one of a person can be forced to supply a finger print, I personally would opt solely for the code.

Worst case - Now what was my code? Was it my birthday? My cat's name? My other cat's name? My dog's length and height? .......


Re: AC Ahem!

AC also doesn't understand that as a part-time officer Falconer would have been trained to aim for the largest mass instead of trying to pull Roy Rogers trick shots aiming at knees.

Yahoo! spymasters! patent! biometric! online! ad! tracking! IRL!


Wonder if they'll measure...

...people saying "F___ that s___" or giving the advert boards the finger?


I emailed my local legislative critters about a year ago. Some jerkwad had come up with the idea of placing full window-sized LCD panels in the rear windows of vehicles to show rotating adverts. Hyper distracting as it was BRIGHT and directly in the traffic lane field of vision. Long and short - the business got shut down by the DOT for making devices that created a safety hazard

Side note : The most amusing advert running on the jerkwad's display did make me contact State Farm Insurance - to point out how stupid one of their auto insurance agents was for advertising in a way that was dangerously distracting and how it was likely to result in increased claims.


Yes, that's why they've partnered with Adblock Plus to let certain ads on through despite the user's wishes.

Google's Chrome cloaks Pirate Bay in red screen of malware death


Re: Will they flag Google Play also?

Simple - they don't own TPB.

ISP GMX attempts the nigh impossible: PGP for the masses


If you aren't doing the encryption yourself.....

... you should have no expectation that it will remain encrypted. If you really have to encrypt it's safer to assume there's a flaw/backdoor in place than to trust a provider to do encrypt for you.

Our pacemakers are totally secure, says short-sold St Jude


Relevant US law

Section 9(a)(2)[1] of the Securities Exchange Act of 1934

Three times as bad as malware: Google shines light on pay-per-install


It's not just "free" stuff

"In short, if you are trying to download something for free that you know you should really be buying, chances are it will come with some unwanted extras that your system will not notice."

What about Oracle Java and it's bundling? Or any of the other free "tools" that some twit somewhere decides you need in order to view their webpage?

And it's starting to crop up in things you pay for too. If I buy X, I bought X, not X plus what ever bundled up crapware your "partners" paid you to load onto MY kit. I've seen commercial software in the past, typically a game, where in order to run the game you have to have the vendor's ad network installed. The moment I see that sort of thing is the moment I refuse to have it on my kit.

Bloke faces years in the clink for using hacker-leaked press releases in $30m trading scam


If you ain't cheating, you ain't trading right.

Troll seeks toll because iPhones work


Paging Mr. Alexander Graham Bell...

Butler : Sir, there is a patent troll here to see you.

AGB : A what?

B : A patent troll.

AGB : What the devil is a patent troll.

B : Unknown sir, but he claims to have invented your telephony device.

'Bring back xHamster', North Carolina smut watchers grumble


Re: Detail?

No, the LGBTQ community has declared it to be 100% anti-LGBTQ. It's not 100%. Some of it is but definitely not 100%.

The reality is that NC's state constitution gives -the state- ALL rights not delegated to local municipalities. Charlotte NC tried to usurp the state's authority over discrimination ordinances so the state passed a law EXPLICITLY denying local municipalities the right to create any anti-discrimination law, thereby preventing a situation where every city in NC has its own goofiness. BUT that section does NOT prevent any business from putting in a unisex toilet room.

The stupid part of that section is the "must use the bathroom of biological identity" - sorry, but if looks and acts like a woman it belongs in the women's room.

Unfortunately the idiotic goons allowed an anti-employee measure to be slipped in removing state-level court for discrimination suits. That got virtually no opposition from the loonie lefty REgressive crowd.

As for PayPal - they're happy doing business in countries openly hostile to the LGBTQ community. Bryan Adams cancelled a concert in NC over the law but is willing to perform in Saudi Arabia where being LGBTQ is life-threatening. Most of the celebrities/businesses coming out against the law are hypocrites.


Biting the hand that feeds IT © 1998–2018