* Posts by sanmigueelbeer

328 posts • joined 5 Oct 2016

Page:

Lawyers' secure email network goes down, firm says it'll take 2 weeks to restore

sanmigueelbeer Silver badge
FAIL

I would imagine they are scrubbing the stored mail but still - two weeks?

That's because they need to get some body shop, like Capita or IBM, to come in and fix it. They don't appear out of thin air, y'know. Not without drawing a pentagram on the floor and chanting "I summon thee" three times.

In all seriousness, I hope this is not a computer attack because it sure would make me wonder if the UK government have any idea of IT security/operations or is all just "lip service"?

Iran satellite fails: ICBM test drive or microsat test? Opinion is divided...

sanmigueelbeer Silver badge
Alert

I remembered North Korea did the same thing: Pretend to launch a "satellite" when the intention was to test the rocket and instruments.

Peak Apple: This time it's SERIOUS, Tim

sanmigueelbeer Silver badge
Joke

Did you hear? The new iPhone will have THREE (not two but THREE) cameras.

Let me guess, the basic version will probably cost US$1800 (128 Gb), US$1950 (256 Gb) and US$2150 for the 512 Gb. Mid-level version up will be US$2000

(128 Gb), US$2150 (256 Gb) and $2400 (512 Gb).

And then the premium version. Same size as the iPhone XS Max but starting at US$2100 (128 Gb), US$2250 (256 Gb) and US$2500 (512 Gb).

Of course, if you trade an iPhone X in, you'll get a $100 iTunes gift card!

Hoot!

sanmigueelbeer Silver badge

Call it whatever Cook wants. "Rebate", "Discount", etc. There is no way (price) but up. To say that the next model will be, say, $300 cheaper would mean Apple has admitted that the "benchmark" prices have hit consumer's "price pain point".

`tis true that instead of updating/upgrading the phone from two years to three/four, it will hit the sales target.

One way of forcing the acceleration of the upgrade cycle is to be brutal: iPhone 6, 7 and 8, for instance, won't be supported in iOS 13.X.X (and later).

Tim, instead of going to all these TV and radio talk shows explaining why iPhone sales unit are going down, why don't you go back to where you came from and talk listen to your engineers. Challenge them to come up with something new.

What Apple needs is a visionary. (Tim, you're no visionary and you're no sales person.) The current lineup of iPhones don't really have anything "significant" to raise an eyebrow (or two). Sure, new CPU, more memory, bigger batter ... What else?

Let me try: How about 3D/Hologram?

Where's me coat?

Huawei's horror show 2019 continues as Taiwanese research institute joins banhammer club

sanmigueelbeer Silver badge
Joke

Re: Truth to be told...

That falls under the "Be careful what you wish for" clause.

And needs to be signed in blood and the signatory must be standing in the middle of an inverted pentagram ("around five black candles" is Hollywood).

This must be some kind of mistake. IT managers axed, CEO and others' wallets lightened in patient hack aftermath

sanmigueelbeer Silver badge
Thumb Up

Earn the trust of the citizens

I hope the Australian government will take notice of what the Singaporean government did in order to regain the trust of their citizens.

sanmigueelbeer Silver badge

Re: Seems legit

Cutting off Internet access is all benefits

I worked in a place that had this policy in place. It was a fun place (sarcasm intended).

Staff wanted internet access, and because upper management refused, each business unit had a DSL installed. Nearly each business unit had a DSL modem, with WiFi turned on (and with default username/password). Staff reasoned that the DSL lines were "operational necessity".

But here's the kicker: Some enterprising fellow then CONNECTED the said DSL modems to the corporate LAN.

When we tried to shut down the port, we were told (angrily) to turn it back on because it was "operational necessity".

Fun times that was. I didn't last long. I left a few months later.

Recently, we had a client who had Corporate and Guest SSID (open authentication) enabled. The client kept asking "why are staff using the Guest SSID". Same thing as above. Corporate SSID had internet restrictions while Guest SSID wasn't. So guess what the staff preferred to use?

sanmigueelbeer Silver badge
Thumb Up

but were given letters of commendation for “diligence in handling the incident beyond their job scope and responsibilities.”

It may not be much but that is a big deal. Singaporeans (particularly management) don't hand out commendation unless one really, really, really deserves it.

The problem may now be that of the two managers that were fired: They may not be able to find jobs in Singapore and may have to go elsewhere.

Huawei sales director nicked in Poland on suspicion of 'spying'

sanmigueelbeer Silver badge
Flame

Huawei sacks employee arrested in Poland on spying charges

This is a weird turn of events: Huawei sacks employee arrested in Poland on spying charges from Reuters, BBC.

China’s Foreign Ministry has expressed concern over the case and is urging Poland to handle the case “justly.”

Uh-huh, sure.

sanmigueelbeer Silver badge

Re: 24 Hours to Go

Depending on how "well connected" this Chinese national is, I'd expect a tit-for-tat from China. Expect a Polish national (or a few) to be barred from leaving the country. (Two can play this game.)

However, is this person happens to be a Chinese Intelligence pretending to work for the company, then things are really going to heat up very nicely.

Dozens of .gov HTTPS certs expire, webpages offline, FBI on ice, IT security slows... Yup, it's day 20 of Trump's govt shutdown

sanmigueelbeer Silver badge
Joke

I don't see how any country can operate where one man can basically shut the place down based on his own whim.

And that is the power of "democracy", American-style democracy.

I wonder if that businessman still thinks the same today.

That businessman still thinks Obama should've been fired.

NOTE: I/We know who this "intelligent" businessman is.

It will be just a few more minutes before this will be the longest shutdown. Making America Great Again, one record at a time

And henceforth that day will be known as the "Great American Shutdown" (aka God Help US).

sanmigueelbeer Silver badge

Re: Oh God

Hello, FBI?

My name is John and I am calling from Microsoft. I am calling because we received report that your computer is not working.

Cyber-insurance shock: Zurich refuses to foot NotPetya ransomware clean-up bill – and claims it's 'an act of war'

sanmigueelbeer Silver badge
Pint

It's nothing "personal". It's just all about the money.

Insurance company make (more) money by NOT paying claims.

Zurich has probably done the maths. To pay the claims is $100 mil. To go to court is between $5 mil and $10 mil. If Zurich lose, there's always an appeal and then drag this for another, say, 10 or so years. During that time Zurich will "reach out" and offer an out-of-court settlement for $25 mil. Still a win-win for Zurich.

If you wanna learn from the IT security blunders committed by hacked hospital group, here's some weekend reading

sanmigueelbeer Silver badge

And here's the good news

There's a silver lining to this: The vulnerable system wasn't managed by Capita or IBM.

IBM insists it's not deliberately axing older staff. Internal secret docs state otherwise...

sanmigueelbeer Silver badge
Pint

Re: I hope IBM gets crucified

IBM has no excuse.

And neither has anyone. Has anyone seen the CEO of a multi-million dollar get thrown in jail for corporate crimes? In America?

Remember the Union Carbide accident in Bhopal, India?

Maybe not? How about GFC? How many CEOs have been thrown in jail for their company's role in GFC? One? Two? None got to see the inside of a jail, however, they did get a fat paycheck for it! Thanks, y'all!

Ginni is going to get away with this. She just might even get to keep that blue helicopter of hers.

Off to get me coat, thanks.

sanmigueelbeer Silver badge
Joke

So Ginni should watch out.

She could be next?

DXC Technology bids $2bn for Swiss big cheese Luxoft

sanmigueelbeer Silver badge

Re: 134k employees and falling

133k employees worldwide.

Y'forgot that it's starts with the phrase "At it's peak".

sanmigueelbeer Silver badge

Tell me if y'all have heard this before: Start polishing up your CV. Before the end of this month (of January 2019) all of you will be out of the job, DXC style.

Aussie Emergency Warning Network hacked by rank amateurs

sanmigueelbeer Silver badge

However, managing director Kerry Plowright said personal data wasn't breached.

Amateurs!

(A bit premature with the announcement that "personal data wasn't breached", do you think?)

NHS England claims it will be all-digital within the decade

sanmigueelbeer Silver badge

This entire exercise will cost an arm-and-a-leg.

Who will NHS going to have to kill to get this working?

LA Times knocked out, HackerOne slips up and – amazingly – router security still sucks

sanmigueelbeer Silver badge
Mushroom

I don't know which is worse

the issue was traced back to a ransomware infection that had managed to bork the systems that link the papers editorial office with those of the printing plants.

I don't know which is worst: This or the one that affected the South Korean government which discovered the "list" of North Korean defectors and their new identities have been lifted without anyone knowing until it was (long) gone.

sanmigueelbeer Silver badge
Happy

Re: Something's fishy

Fortunately, she survived.

Who survived? Your wife or sister?

I will get me coat, thanks.

Nobody in China wants Apple's eye-wateringly priced iPhones, sighs CEO Tim Cook

sanmigueelbeer Silver badge
Facepalm

Re: Overpriced kit

There are significantly cheaper options, especially in China.

I'd like to agree but even Huawei prefers iPhone over their own.

Whoopsie!

sanmigueelbeer Silver badge
Pint

Re: There's disposable income then there's

Dumb is pricing the iPhone way above everyone's reach. Foolish is making a new model and it's priced >20% MORE than the previous ones without any major improvements.

Oz cops investigating screams of 'why don't you die?' find bloke in battle with spider

sanmigueelbeer Silver badge

Australian Spider EATS Snake

Australian Spider EATS Snake. Hors d'oeuvre, anyone?

London Gatwick Airport reopens but drone chaos perps still not found

sanmigueelbeer Silver badge
Happy

Re: Proof of concept

"SAM-6's" are 6 metres long, weigh 600kg and require a heavy launcher vehicle. I think you mean SA7, SA14, or SA16

I think he meant THIS (VIDEO).

I get me coat, thanks.

German cybersecurity chief: Anyone have any evidence of Huawei naughtiness?

sanmigueelbeer Silver badge

The Germans are terrified if they follow the Americans.

Just a few weeks ago, BMW and Mercedes have released their sales report which reflects a drop in 30% sales in China, their largest market.

If PRoC was capable of "arresting" two Canadians in retaliation, then what would happen if the Germans followed the Americans?

Scumbag hackers lift $1m from children's charity

sanmigueelbeer Silver badge
Facepalm

Re: More to this than meets the eye

How can someone at STC authorise a transfer of near $1m without there being an existing project or programme that the charity has previously done its due diligence on and agreed to fund?

Hello, my name is Carl and I'm calling from Microsoft Helpdesk. Apparently, your computer has a virus ..."

The fastest, most secure browser? Microsoft Edge apparently

sanmigueelbeer Silver badge

*cough*bullshit*cough

Equifax how-it-was-mega-hacked damning dossier lands, in all of its infuriating glory

sanmigueelbeer Silver badge

I am not so confident that the shyster in robes cares about justice and is capable of understanding how this really occurred.

We're talking about a justice system where the (unofficial) national pastime is to sue someone. There are more lawyers than accountants out there. Even a half-cooked, half-stoned/drunk ilk can make his/her mark by just suing something this big.

`tis too easy to win. Imagine this: Staff wrongfully blamed for breaches. Independent report shows the breach was caused by a certificate issue which no one wants to take ownership to update. Blame-game is the topic of the day. Oh wait, I don't like your tie. You're "it"!

Equitrax will do anything just to get this sorted quickly. Out-of-court-settlement is bound to happen.

sanmigueelbeer Silver badge
Happy

Equifax blamed its woes on an IT staffer who hadn't installed the Apache patch, and fired the person. The report makes it clear that there were many more people involved in Equifax's failings than this one scapegoat.

I can smell a wrongful dismissal lawsuit in the making. That IT staffer is going to have a very, very big paycheck soon.

Fire the torpedoes!

25% of NHS trusts have zilch, zip, zero staff who are versed in security

sanmigueelbeer Silver badge
Trollface

Re: I wish this was a unique situation

Sadly, at the moment I can't think of a single organisation that has anything like in-house IT security-aware staff.

Don't worry. That is why they have this role/job outsourced to the likes of Capita or IBM.

Where is me coat again?

sanmigueelbeer Silver badge
Happy

Re: Hacking made easier.

Hacker 2 : Yeah, we'll do it Friday afternoon when no-ones about.

Between the dates of 22 to 24 December 2018 (and follow-up attack from 30 December 2018 to 01 January 2019) is best time to launch an attack. The effects would be astounding.

NHS may not have enough staff trained in IT Security but what if there is no staff with IT Security knowledge on-shift, on-duty or even rostered during this period and then a hack happened.

WannaCry(pt) and (not) Petya attacks all happened on a late Friday afternoon. Imagine what would happen when a successful attack happened on the dates mentioned above.

China on its way to becoming the first nation to land on the far side of the Moon

sanmigueelbeer Silver badge
Happy

China on its way to becoming the first second nation to land on the far side of the Moon

FTFY.

Sentinel Prime was there first.

Expired cert... Really? #O2down meltdown shows we should fear bungles and bugs more than hackers

sanmigueelbeer Silver badge
Trollface

Could've been worst.

O2 could've been managed by either IBM or Capita.

Pencil manufacturers rejoice: Oz government doesn't like e-voting

sanmigueelbeer Silver badge
FAIL

who really cares

who really cares

Would you if, say, Clive Palmer returns?

Adobe Flash zero-day exploit... leveraging ActiveX… embedded in Office Doc... BINGO!

sanmigueelbeer Silver badge
Trollface

Flash quiz, genius: The answer to the riddle resides in this DOCX file. (Plus the location of the pot of gold.)

C'mon, what's the worst that can happen? Don't hesitate. This offer won't last long.

Boeing 737 pilots battled confused safety system that plunged aircraft to their deaths – black box

sanmigueelbeer Silver badge

Re: Question

Why didn't they just disable MCAS?

1. Lion Air pilots (all of them) didn't know anything about the MCAS. Boeing is under fire for not telling anyone. Call it an "undocumented feature".

2. Because Lion Air pilots didn't know, they also didn't what it "feels" like with the MCAS takes over.

3. The flight crew from the previous flight "blindly" disabled MCAS. They didn't do this on purpose. They misdiagnosed the issue and turned off the trim which resulted in gaining control of the a/c.

sanmigueelbeer Silver badge

Re: Hey software, get the fuck out of the way!

It was the designer who allowed a single faulty sensor to put the software into a dangerous state.

Go HERE.

Look at the two lines for the Angle of Attack (AoA) sensors. One is for the left and one is for the right. Notice that the lines are separated? At any given time, the AoA sensors should never be separate. They're meant to be redundant so the readings are meant to be the same.

There are actually two faults to this unfortunate events, they are:

1. One of the Angle of Attack sensor was faulty. The AoA sensor feeds information to the FMS and one of the systems, MCAS, reads from this.

2. The MCAS was an "undocumented feature" introduced by Boeing which a lot of airlines were not familiar of.

For unknown reason, after take-off the MCAS was reading to input from the AoA sensor and immediately took action for the one that had the worst reading. For the next few minutes, the both pilots were battling with the MCAS to keep the plane from crashing until it was no longer possible.

It's a very bad idea to have software making decisions based on the output of a single sensor.

Imagine you flying at night across ocean and into a thunderstorm. It is very hard to determine which way is up or down or what angle is the plane's nose pointed. This is what the MCAS, with the help of the AoA, is meant to do.

But the root cause to the crash was a faulty AoA sensor. The fault of the two pilots was that they were unaware of the MCAS and they were unable to disable it. With previous flight, one of the flight crew disabled the MCAS and was able to gain control of the a/c.

Bedroom design outfit slapped with £160k fine for 1.6 million spam calls

sanmigueelbeer Silver badge
Pint

Re: The traffic wardens literally just hand the ticket to the driver EVERY DAY,

How else are you supposed to deliver beer barrels? Deliveroo? Morons.

During WW II, the British Army deployed PLUTO (Pipe Line Under The Ocean) to pump fuel to Normandy.

I'm just saying ...

Off to get me coat, thanks.

Lush scrubs its card-processing servers squeaky clean

sanmigueelbeer Silver badge
Pint

..and providing me with the inability to breathe unless I hold my breath when walking past the always-open Lush door..

Amen, bro. Amen.

(Here, have a beer.)

Merry Christmas, you filthy directors: ICO granted powers to fine bosses for spam calls

sanmigueelbeer Silver badge
Happy

Re: Could I get charged with assult ...

My asterisk dial plan has an extension which plays a FN P90 firing on automatic at maximum volume.

My Asterisk got Lenny.

I win.

£500,000 - per call?

Issued through a bank cheque from BCCI.

sanmigueelbeer Silver badge

will grant the ICO the powers to fine directors and senior officers of a company up to £500,000.

And that's where the "start of the crack" is. "UP TO" is not as terrifying as "a minimum of".

Any hack of an accountant and lawyer can just declare bankrupt, go to an eastern European country and restart the business.

between 2010 and April 2018, the ICO recouped just £9.7m of the £17.8m fines it handed down for PECR violations.

It only proves to show that the method of handing out "fines" is not really working. In 8 years, the ICO only got £9.7m. How about a little more "teeth" than bad breath? Seize the asset of the directors & senior officers, freeze the assets of each of their spouses and children, and jail time.

Big Falcon Namechange for Musk's rocket: BFR becomes Starship

sanmigueelbeer Silver badge
Mushroom

I vote for "BBB": Big, Bang, Boom

And on the side of the booster is the line: Get a BLAST out of this!

Health secretary Matt Hancock assembles brains trust: OK, guys. Let's cure NHS IT

sanmigueelbeer Silver badge

when vendors realise they are part of a rich, competitive ecosystem, where competitors can step in and replace modules with newer, better options

And that's the key. Vendors COMPETING.

If this is just a one-horse-race then it's of no use.

Did you by chance hack OPM back in 2015? Good news, your password probably still works!

sanmigueelbeer Silver badge
Facepalm

Really?

C'mon, people! Let's be realistic. Who'd be stupid enough to hack OPM? Again.

Oh, wait ...

Want to hack a hole-in-the-wall cash machine for free dosh? It's as easy as Windows XP

sanmigueelbeer Silver badge
Happy

at night a card swipe lets you into a small foyer where the atm is accessible.

A few years ago the big banks (Australia) were caught out when it was exposed that the swipe access works with ANYTHING. Swiping a hotel room key, for instance, or a train/bus ticket and the door opens just like Aladdin's cave. Fun times that was.

'My entire company is without comms': Gamma's Horizon cloud PBX goes DOWN

sanmigueelbeer Silver badge
Happy

Re: Phones, where we're going we don't need phones, apparently

Did the person responsible for the DR plan ever test it?

No, but he did get a promotion!

New appliances from Cisco aim to make branch SD-WAN easier

sanmigueelbeer Silver badge

In the meantime, Cisco has released the 9800 WLC and the 9200

Page:

Biting the hand that feeds IT © 1998–2019