* Posts by Walter Bishop

1424 posts • joined 16 Jan 2016

Page:

Lawyers' secure email network goes down, firm says it'll take 2 weeks to restore

Walter Bishop Silver badge
Big Brother

Criminal Justice Secure eMail messages themselves are neither signed nor encrypted

Secure eMail | Technical Overview: CJSM Version 2.x (Information for IT Teams):

‘The overall CJSM programme is being managed by Criminal Justice IT (CJIT). CJSM does not provide “secure email” in the sense in which that phrase is normally used. The messages themselves are neither signed nor encrypted.’

“In fact, they cannot be signed or encrypted. Modifications made to the message in transit across CJSM mean that the message digests (think of these as checksums or fingerprints of the original message) used to calculate the original keys would not match those of the message received. Signature verification would fail, and decryption of the message would be impossible. This behaviour is understood and it is by design.”

US midterms barely over when Russians came knocking on our servers (again), Democrats claim

Walter Bishop Silver badge
Mushroom

One hundred and eleven mentions of Wikileaks in that document

WikiLeaks And Russian Intelligence discuss a plan to use stolen DNC documents to disrupt The Democratic National Conventionref

Nonsense, my analysis of this and other works of fiction, such as Russia stole the election through FACEBOOK adverts, is that the neocon faction in Washington concocted this in order to explain away how Trump won the election and also as part of it's long term campaign to discredit Wikileaks.

While the lawsuit does not claim that President Trump or his campaign team knew about either hacking attempt, it references the Trump campaign's and the president's repeated denials of links with Russian intelligence figures.”

Yea, Trump is a Russian mole being controlled from the Kremlin cause he's being blackmailed by Putin using the golden-shower video. The same video Putin carelessly passed onto a Christopher Steele of the MI6 :]

Or else what we're witnessing is a palace coup being staged by the deep-state and carried on in full view and with the help of some useful idiots in the media.

EDGAR Wrong: Ukrainians hacked SEC, stole docs for inside trading, says Uncle Sam

Walter Bishop Silver badge

Congress Guts STOCK Act

@Aodhhan: “About 2 years ago. The US Congress passed a law saying they could no longer do this or other things often considered 'insider trading'. They made a big thing about it--and praised themselves for it. Then six months later they very VERY quietly removed the law so they could once again do this.”

Congress Guts STOCK Act

Walter Bishop Silver badge
Mushroom

A series of sophisticated and relentless cyber-attacks?

I recall reading somewhere that: EDGAR used to post the doc to the server and then post the URL at a later date. The hack consisted of guessing the next number in a sequence of predictable URLs. Given the thirty minute window the traders had to act, this would imply they didn't have access to the back-end.

The DevOps Salary Report is in, and is great news for American men

Walter Bishop Silver badge
Facepalm

An Analysis of Reasons for the Disparity in Wages Between Men and Women

“During the past three decades, women have made notable gains in the workplace and in pay equity, including increased labor force participation, substantial gains in educational attainment, employment growth in higher paying occupations, and significant gains in real earnings .. despite these gains the raw wage gap continues to be used in misleading ways to advance public policy agendas without fully explaining the reasons behind the gap. The purpose of this report is to identify the reasons that explain the wage gap in order to more fully inform policymakers and the public” ..

“A greater percentage of women than men tend to work part-time. Part-time work tends to pay less than full-time work.”

“A greater percentage of women than men tend to leave the labor force for child birth, child care and elder care ..”

‘Women, especially working mothers, tend to value “family friendly” workplace policies more than men.’

“.. women may value non-wage benefits more than men do, and as a result prefer to take a greater portion of their compensation in the form of health insurance and other fringe benefits”. ref

No more Windows build strings for you: BuildFeed has turned off the lights

Walter Bishop Silver badge
Boffin

Microsoft did place pressure on BuildFeed

@viscount: “Can someone decode this article because I don't get it. What would MS do to force a site with a list of build numbers to close? What are "internal pressures"? It makes no sense.

BuildFeed posts information on using Microsoft Windows build strings. It seems that BuildFeed posted a Windows build-string referencing ‘rs_shell_foldables’, in the process accidentally leaking the information that Microsoft is working on a Windows version that will run on foldable devices. Shortly after BuildFeed was shut-down. BuildFeed has stated that this has nothing to do with pressure coming from Microsoft. “Were Microsoft not placing any pressure on BuildFeed, I doubt there'd be an issue”. It would be relevant to know exactly the nature of this pressure, who it is coming from and the motivation for such pressure. Was it in retaliation for leaking “s_shell_foldables”.

US Department of Defense to fling $1.76bn at Microsoft

Walter Bishop Silver badge

Political donations between the years 2007 and 2017

01. Goldman Sachs $11.5m

02. Microsoft $7.2m

03. J.P. Morgan $6.2m ref

Lobbying: $15,910,000 (2017-2018) '91 out of 115 Microsoft Corp lobbyists in 2017-2018 have previously held government jobs '

Walter Bishop Silver badge
Mushroom

Lightweight Portable Security Linux LiveCD

Lightweight Portable Security (LPS) is a Linux LiveCD, (or LiveUSB), developed and publicly distributed by the United States Department of Defense’s Software Protection Initiative[2] that is designed to serve as a secure end node. It can run on almost any Intel-based computer (PC or Mac). LPS boots only in RAM, creating a pristine, non-persistent end node. It supports DoD-approved Common Access Card (CAC) readers, as required for authenticating users into PKI-authenticated gateways to access internal DoD networks" ref

Huawei sales director nicked in Poland on suspicion of 'spying'

Walter Bishop Silver badge
Big Brother

Escalating concerns among western governments?

The arrests mark escalating concerns among western governments about the Chinese company's activities.”

Given other actions against Russia and China is this part of a strategy coming out of Washington to restart the Cold War?

The allegations were that Huawei was using its kit to spy on other governments

And that's our sole remit said the NSA ref ref ref

If you wanna learn from the IT security blunders committed by hacked hospital group, here's some weekend reading

Walter Bishop Silver badge
Terminator

Detailed report into the hack

having an extensive command and control network, the capability to develop numerous customised tools, and a wide range of technical expertise

Four hundred and fifty four pages to say someone opened a compromised email attachment, containing a word document, that ran a VB macro, that installed remote control software on a ‘computer’

Zuck's 2019 tech talk tour should tackle the questions Facebook spent 2018 dodging

Walter Bishop Silver badge
Facepalm

Re: The TRUE toxicity of social media revealed

Isn't it amazing that Zuck, one of the planets chief visionaries, still cuts his own hair, reminds me of another visionary, but the name escapes me at the moment?ref ref

Walter Bishop Silver badge
Boffin

The TRUE toxicity of social media revealed

Sam Vaknin: “social media was created by a very well defined profile it was, all social media were invented by men, there was not a single woman involved. All social media were invented by schizoids people who, recluses, people, hermits. people who were socially inept. All social media were invented by nerds. Most of these men later on when we read biographies and so on, we realized that they were asexual or with very low sexual activity.

We so, the profile of the men who invented social media and we are talking about all these men, it is very very very narrowly defined. They created social media in their own image of course, since they were asexual asocial schizoid white men, they created a tool which was geared towards asexual asocial schizoid white men..”

6:03 Sam Vaknin: the TRUE toxicity of social media revealed

Ministry of Justice abandons key plank of £280m IT project

Walter Bishop Silver badge

Re: IT, fostering delusions since 1977

@Milton: IT, fostering delusions since 1977 .. “*¹ Agile: applying faddish, laziness-inspired 'methodology' in deferring the hard work of analysis and understanding of details, and delaying the realisation of disastrous malfunction and wastage—until it's too late.”

This should be printed out and posted on every wall in every IT company in the land, well said sir !!!

Walter Bishop Silver badge
Facepalm

Agile Ministry of Justice and Health?

I would imagine being banged up twenty-three hours a day would be bad for ones mental health. Whenever I see agile in a sentence I reach for my Airsoft HPA inferno :]

Attention all British .eu owners: Buy dotcom domains and prepare to sue, says UK govt

Walter Bishop Silver badge

@anon: This is what it looks like outside the EU.

No, this is what it currently looks like when the EU commission engages in political blackmail, displaying all the ethics of a mafia. Of course this whole thing is designed to scare the British public into a second vote. Where they are expected to vote the way the political class expects them to do.

Walter Bishop Silver badge
Terminator

Brexit just gets better?

It's amusing watching the many ways the Remoaners keep coming up with doomsday senarios. In todays Independent for instance, Brexit will cause a third world doctor and nurse shortage ref ref ref ref ref. Explain like I'm five, how non-EU countries manage to import-export to and from the EU and how, post-Brexit, the United kingdom of GB and parts of N.I will be unable to do the same?

Walter Bishop Silver badge
Facepalm

Dot-EU domains cannot be bought or renewed outside the union?

“In this first step the Registrant must verify whether it meets the General Eligibility Criteria, whereby it must be: (i) an undertaking having its registered office, central administration or principal place of business within the European Union, Norway, Iceland or Liechtenstein” ref

In regards to domain names, why not give the UK the same rights as Norway, Iceland or Liechtenstein, but that's not what this is really about, which is to punish the UK and serve as a deterrent for anyone else having the temerity to go its own way and say sayonara to the European Project.

You were told to clean up our systems, not delete 8,000 crucial files

Walter Bishop Silver badge

Have you ever deleted something crucial?

Regardless of what the natives say, before you upgrade alter or delete anything, you made a full backup.

Dark matter's such a pushover: Baby stars can shove weird stuff around dwarf galaxies

Walter Bishop Silver badge
Mushroom

Re: There is one thing that might explain dark matter

@ma1010: “I know many people think it is a scam, and it may be, but I think Brilliant Light Power merits at least a look.”

‘HydroCatalysis .. "represents a boundless form of new primary energy" ’ ref

OK so produce a generator of electricity, plug it's output back into its input and lets see it run for ever.

Walter Bishop Silver badge
Boffin

Dark matter isn't real?

The evidence for dark matter being that, at the edge, galaxies rotate faster than can be accounted by standard gravity. This effect accounts for the spiral spoke-like shapes and the formation of stars. In an expanding universe matter would tend to clump more than can be accounted for by standard gravity. Dark matter may end up being the phlogiston of the twenty first century.

LA Times knocked out, HackerOne slips up and – amazingly – router security still sucks

Walter Bishop Silver badge
Terminator

Mysterious malware attack

Late last week, a mysterious malware attack crippled key parts of the Times infrastructure

I don't think it is mysterious to the rest of use. What is isn't is the competion of how to talk about malware without mentioning Microsoft Windows.

Once Ryuk gets into a network, it automatically spreads from computer to computer, node to node

The only solution is to ban ‘computer’s on your network.

Detailed: How Russian government's Fancy Bear UEFI rootkit sneaks onto Windows PCs

Walter Bishop Silver badge
Terminator

Re: What I want to know

> Is why the articles are not mentioning the name of the company that makes the LoJack software - Absolute Software ?

Or that if LoJack finds its application missing it download a fresh copy rpcnetp.exe from a generic html server. So basically the GRU hijacked the NSAs rootkit :]

Walter Bishop Silver badge
Terminator

Russian government's rootkit?

Sednit group, also known as APT28, Fancy Bear, Strontium, and Sofacy .. is a state-sponsored hacking group believed to be .. associated with a number of high profile attacks, including the DNC hack just before the U.S. 2016 presidential electionref

The DNC wasn't hacked, according to the time-stamps, the files were copied locally and then uploaded elsewhere to a website, as such it would have to be an inside job. you would think the GRU would be more careful in disguising the source of the Russian malware :]

What happens when a Royal Navy warship sees a NATO task force headed straight for it? A crash course in Morse

Walter Bishop Silver badge
Mushroom

NATO task force can't read Morse code?

I moved outside to the port bridge wing .. and found two signals ratings operating an Aldis signal lamp. One was pressing the key, opening and closing the shutters in front of the lamp to send a Morse code message to the New York

Not a lot of people know that, that's very interesting to know :]

I got the distinct impression that the Royal Navy values Morse code highly as a matter of professional pride.”

I read somewhere the the US had stopped teaching Morse in military school and instead use ship-to-ship texting to signal ship-to-ship, with a modified mobile phone. This would explain the failure of the ‘New York’ to read the Morse signal, they'd had little to no practice. Besides, assuming these devices have a high rate-of-fail they would have nothing to fall back on. Same with the rest of the technology used onboard the modern warship, especially when someone is trying to shoot holes in it.

without the power of technology, the various software suites (yes, even elderly versions of Windows XP) and endpoints .. virtually none of the Navy's work would be possible.”

We're all f**k*d :[

Microsoft's 2018, part 1: Open source, wobbly Windows and everyone's going to the cloud

Walter Bishop Silver badge
Mushroom

The flaws in Intel's silicon?

Flaws in Intel's silicon meant that Microsoft had to scramble to mitigate the vulnerability at the operating system level

Intel and Microsoft Collaboration 04:39: “the significant effort put into virtualization technologies by Intel and Microsoft is clearly visible in the end results

Your two-minute infosec roundup: Drone arrests, Alexa bot hack, Windows zero-day, and more

Walter Bishop Silver badge
Big Brother

What Dan Coats said ..

Ron Wyden: “Can the government use FISA Act Section 702 to collect communications it knows are entirely domestic?

Dan Coats: “■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■” ref

ICO has pumped almost £2.5m and 36 staff into its political data probe – but only 2 are techies

Walter Bishop Silver badge
Facepalm

Re: Hell desk

> The two are just there to reset passwords, reboot servers, and stop people using the Deleted Items folder to store their e-mail.

Or storing the executables in the 'deleted Items folder' to save space on the harddrive. Yes I have seen someone do such a thing with mine own eyes.

Walter Bishop Silver badge
Big Brother

Cambridge Analytica the SCL Group and microtargeting

MoD granted 'List X' status to Cambridge Analytica parent company

“Once we have completed the TAA and matched it to the Experian data we will be in a position to start microtargeting…” Julian Wheatland, COO of SCL Group Ltd

Dev's telnet tinkering lands him on out-of-hour conference call with CEO, CTO, MD

Walter Bishop Silver badge
Facepalm

Technicians dispatched to sites

the CPU would crash and then they had to dispatch the technicians – to four different cities in the UK from just one base. During the night. to dozens of sites.”

What kind of a device requires a site visit if it crashes, shouldn't it reboot after failing to trigger a heartbeat after a set period?

Silent night, social fight: Is Instagram the new Facebook for pro-Trump Russian propagandists?

Walter Bishop Silver badge
Facepalm

Instagram gave Trump the Presidency?

Instagram may have been the most effective social media network for Russian spies in their effort to sway America's 2016 presidential election toward Donald Trump.”

Trump a cross between Howard Beale and Chauncey Gardner. For the umpteemed time, so called Russian Facebook/Instagram adverts didn't hand Trump the election. What did was the acres of free airtime the conventional media game him. Nightly through-out the electon campaign it was Trump Trump Trump. There's a shot of him just after the results looking dazed and confused, even he didn't expect to win. You may ask and I'm sure Trump also asked the same thing, why me? .. because you're on television, dummy!

Scumbag hackers lift $1m from children's charity

Walter Bishop Silver badge
IT Angle

Hackers gained control of employee's email account

"back in April of last year, some total sleezebag was able to get control of an employee's email account"

How?

Better get cramming... Xamarin University due to close early next year

Walter Bishop Silver badge
Terminator

Microsoft Xamarin © ® ™

Is this the same Xamarin that brought dot.NET to the Linux platform, through the use of MONO with the help of Miguel de Icaza. ref

--

one ring to rule them all, one ring to find them, one ring to bring them all and in the darkness bind them

Microsoft to rule the biz chat roost – survey

Walter Bishop Silver badge

Enterprise chat and conferencing

Slack/Teams, a re-implementation of IRC from a hundred years ago - in Internet years, only you have to see and hear 'em at the same time. What I would find useful is the ability to work on the same document, concurrently and at different times, with full auditing and version control. A souped-up version of a revision control system only the end users can included formatted text, images, and graphs lots of graphs :]

Ticketmaster tells customer it's not at fault for site's Magecart malware pwnage

Walter Bishop Silver badge
Facepalm

Re: Offsite scripts GAH!

NoScript detected a potential Cross-Site Scripting attack

from https://sync.rtk.io to https://ads.avocet.io.

Suspicious data:

(URL) https://ads.avocet.io/getuid?url=//x.bidswitch.net/sync?dsp_id=59&user_id={{UUID}}&ssp=rtkio&bsw_param=9edf2f91-6c5c-4248-b768-ca7d39a0076e

Huawei exec out of jail, just as US accuses China of Marriott hack

Walter Bishop Silver badge
Facepalm

Chinese intel hacked Marriott?

US secretary of state Mike Pompeo, who in the midst of a media interview directly named China as being responsible for the hack”.

That's good enough for me, without producing any evidence what so ever, if US secretary of state Mike Pompeo said it, it must be true.

the harvest of detailed information of 500 million of the hotel chain's customers was the work of a Chinese intel-gathering operation

It would be simpler to get a job on the front desk and harvest the records through out the night shift.

Equifax how-it-was-mega-hacked damning dossier lands, in all of its infuriating glory

Walter Bishop Silver badge
Facepalm

Retrospective ass-covering ©

'The report noted some of the previously-disclosed details of the hack, including the expired SSL certificate that had disabled its intrusion detection system for 19 months” ..

Retrospective ass-covering, seeing as there was no one actually tasked with monitoring potential security bugs.

The report states that Equifax's IT team did scan for unpatched Apache Struts code on its network. But it only checked the root directory, not the subdirectory that was home to the unpatched software

This is total pseudo technical sounding BS, what kind of a security scan only checks the root directory. The reality more likely that there was no such IT Team, and nobody was tasked with checking Apache Struts for bugs.

It was only when the certificate was renewed that Equifax saw the massive amounts of data being copied from its servers and realized something was very wrong.”

Enough already, it was only after Equifax customer records was spotted online that Equifax became aware of the hack. And Equifax was being monitored by a respectable security company that shall have to remain nameless.

Equifax blamed its woes on an IT staffer who hadn't installed the Apache patch, and fired the person.”

What was the name of this imaginary IT staffer person?

New Zealand health boards write down losses on Oracle implementation

Walter Bishop Silver badge
Facepalm

Review of the consultants engaged to review the Deloitte review

Deloitte Review of the National Oracle Solution programme and Audit NZ Review of the engagement of consultants for the Deloitte review

“In late 2017 the Ministry commissioned Deloitte to review the National Oracle Solution programme to inform its advice to the Government. In late August 2018 the Health Committee requested the Ministry of Health provide the Audit NZ report the Ministry had commissioned into its engagement of consultants for the Deloitte Review.”

“We have provided the Committee with the Deloitte Review of the National Oracle Solution programme, the Audit NZ Review of the engagement of consultants for that report and our action plan to address Audit NZ’s recommendations.”

'Say hello to my little vacuum cleaner!' US drug squad puts spycams in cleaner's kit

Walter Bishop Silver badge
Facepalm

The War on Drugs

It is patently that the “War on Drugs” is lost, it's only function being to maintain the vast budgets and salaries the various agencies have become accustomed to.

Ecuador says 'yes' to Assange 'freedom' deal, but Julian says 'nyet'

Walter Bishop Silver badge
Facepalm

Re: Assange is a political prisoner, in the United Kingdom, end of

'DougS: “Bullshit. They offered him a deal where he won't face the music in the US” ..

Where did you read that, my reading of the situation is: Moreno would hand Assange over to the British who would extradite Assange to the US with the understanding Assange would not face the death penalty. This has nothing to do with a $400 million loan from the World Bank.

Walter Bishop Silver badge
Big Brother

The deal being essentially worthless

Wikileaks alumni Julian Assange has apparently turned down a proposed deal that would have seen him leave the Ecuadorian embassy he has been camped out in for over six years.”

The deal being essentally worthless .. we'll extradite you but not to face the death penality.

after six and a half years of confinement to the building, Assange is starting to wear on the South American nations nerves.”

Or else the financial bribes and threats are beginning to have an effect.

The road is clear for Mr. Assange to take the decision to leave,” Mr. Moreno said, citing written assurances he said he had received from Britain.”

Wikileaks editor says media is giving the U.S. cover to extradite him

Ecuador-US Security Deal: Is President Lenín Moreno Opening Door for US military presence?

World Bank approves $400 million in new financing for Ecuador ...

Incoming! Microsoft unleashes more fixes for Windows 10 October 2018 Update

Walter Bishop Silver badge
Facepalm

Re: Maybe its time for Microsofties to study programming?

@martinusher “The result is an astonishing pile of spaghetti .. I'd guess that there's a failure of software design methodology somewhere

I suspect Windows is designed using such spaghettilogical methods to make it difficult to clone.

Awkward... Revealed Facebook emails show plans for data slurping, selling access to addicts' info, crafty PR spinning

Walter Bishop Silver badge
Big Brother

Value of friends data

“The idea of linking access to friends data to the financial value of the developers relationship with Facebook is a recurring feature of the documents.”

@Badoo: ‘The friends data we receive from users is integral to our product (and indeed a key reason for building Facebook verification into our apps).’

@Konstantinos Papamiltidas: ‘As promised, please find attached the docs for Hashed Friends API .. we will need to sign an agreement that would allow you access to this API.’

@Sachin Monga: ‘Without the ability to access non-app friends, the Messages API becomes drastically less useful. It will also be impossible to build P2P payments within the RBC app, which would have dire consequences for our partnership with them.’

@Konstantinos Papamiltidas: ‘Removing access to all friends lists seems more like an indirect way to drive NEKO adoption.’

@Mark Zuckerberg: ‘It seems like we need some way to fast app switch to the FB app to show a dialog on our side that lets you select which of your friends you want to invite to an app .. I want to make sure this is explicitly tied to pulling non-app friends out of friends.get (friends information)’.

@Justin Osofksy: “Twitter launched Vine today which lets you shoot multiple short video segments to make one single, 6-second video... Unless anyone raises objections, we will shut down their friends API access today. We've prepared reactive PR, and I will let Jana know our decision.”

@Mark Zuckerberg: “Yup, go for it.”

@Michael LeBeau: ‘As you know all the growth team is planning on shipping a permissions update on Android at the end of this month. They are going to include the 'read call log' permission .. [The danger is] .. journalists dig into what exactly the new update is requesting, then write stories about "Facebook uses new Android update to pry into your private life in ever more terrifying ways".’

@Mark Zuckerberg: “It's not at all clear to me here that we have a model that will actually make us the revenue we want at scale .. I think we leak info to developers but I just can't think of any instances where that data has leaked from developer to developer and caused a real issue for us.”

Note by Damian Collins MP, Chair of the DCMS Committee

It's the wobbly Microsoft service sweepstake! If you have 'Teams', you've won a lifetime Slack sub

Walter Bishop Silver badge
Facepalm

Need a distributed peering model

The wrong model for such a use, what's needed is a peering model that doesn't reply on any single point of failure, once the call is set-up then communication goes directly from client to client, lets call it an inter network of computers.

Sysadmin’s plan to manage system config changes backfires spectacularly

Walter Bishop Silver badge
Linux

Re: Set the clock failed.

@Trixr "If you're in a domain, why on earth would you be setting a different NTP time source on your domain clients via GPO?"

Sometimes in reading Microsoft documentation, I get the feeling I'm reading from the secret scriptures of some obscure cult, that's cult with an ‘ L’ :]

Walter Bishop Silver badge
Linux

Re: My worst config error?

@Chairman of the Bored ".. dd'ing a hard drive image over a live, mission critical volume .."

Yea, if you had stuck with the industry standard Windows, this kind of thing would never happen.

Walter Bishop Silver badge
Facepalm

Re: Automation does have its place

@ Lee D "P.S. He didn't last long."

Going on the number of down votes, at least two people on this forum recognize themselves :]

AWS has a security hub, OpenSSL has a new license, London has a problem with cryptocoins, and more

Walter Bishop Silver badge
Linux

Linux gets its own nasty Bitcoin malware

If the malware gets onto a Linux system it, as the name suggests, attempts to hijack cycles to mine cryptocurrency and also tries to disable any security software.

How exactly does the Linux malware get onto the Linux system in the first place, without the user downloading and running the malware and providing the root password? Oh look this link points to a website for Dr.Web Anti-virus on which resides this quote:

A multicomponent malware program capable of infecting Linux devices and intended to be used for Monero (XMR) mining. It is implemented as a shell script containing over 1,000 lines of code. When launched

Yes, the suspence is killing me, how does the script execute itself, without user action. And while you're at it share with us what Linux techie runs a script without reading it!!!

After booting up, run a full scan of all disk partitions with Dr.Web Anti-virus for Linux.”

Marriott's Starwood hotels mega-hack: Half a BILLION guests' deets exposed over 4 years

Walter Bishop Silver badge

Marriott's Starwood hotels mega-hack:

Any idea as to the technical nature of the hack?

GCHQ opens kimono for infosec world to ogle its vuln disclosure process

Walter Bishop Silver badge
Big Brother

Internal equities vulnerability disclosure process

The spying agency's internal Equities Process is the way by which it decides whether or not to tell tech vendors that its snoopers have discovered a hardware or software vulnerability.”

What about the vulns introduced by the spooks as part of a security audit, such as use our not-random - pseudorandom number generator.

UKFast mulls putting IPO on ice due to six little letters: BREXIT

Walter Bishop Silver badge

Web-hosting and cloud services

The chief of UKFast has said he expects to postpone his web-hosting and cloud services firm's planned flotation on the London Stock Exchange because of – what else? – Brexit.”

There's this thing called the Internet which allows you to site your infrastructure anywhere on the planet. These Brexit scare stories and similar are designed to create a political environment for a second vote, which I predict won't go pro-EU, but they'll be an even bigger exit vote, I'll bet money on it.

Page:

Biting the hand that feeds IT © 1998–2019