Theoretically, yes. They could run both power and data from the cabinet to the lamp post and put the small cell at the top. The issue is that councils either do not want to allow Telcos to do so or that the council have outsourced the street lamps to a third party with no interest in engaging with 3rd parties.
Posts by Kientha
58 publicly visible posts • joined 17 Jan 2018
Virgin Media sets up 'smart poles' next to cabinets to boost mobile network capacity
Millions of smart meters will brick it when 2G and 3G turns off
Re: 2G is perfect for this
2G also has a ton of security issues and operational overhead. It is a technology that's been in use for over 30 years.
The IoT component of 5G is meant to be the replacement for 2G networks and really is a pre-requisite to any 2G shutdown if we want to avoid the chaos that happened in the states when they shutdown their 2G network. The only operator that's really embraced NB-IoT is Vodafone although the others are playing catchup. Some form of LPWA network was always going to be the ideal technology for smart meters and other elements of smart cities.
Energy efficiency starts to rock telcos' 5G infrastructure choices
Re: Still waiting for 5g at my house
It's because all of the 5G deployments in the UK are still using the 4G core. So you don't get the majority of the 5G benefits since it's just a high bandwidth radio tacked on to the 4G infrastructure.
Once telcos start using 5G standalone, the service you get will be significantly improved especially for jitter and latency. Plus things like network slicing will drastically improve performance. Vodafone is the furthest along with 5G SA, but VMO2 and EE are also progressing with their trials.
Homes in London under threat as datacenters pull in all the power
UK regulator puts NortonLifeLock merger with Avast on ice
Re: Norton is still alive?
Not only is Norton still alive, Symantec decided that Norton was the only part of the business worth keeping! They sold the rest of it off for parts. Their SOC went to Accenture, and their enterprise AV/EDR suite went to Broadcom. Utterly bonkers decision given how wide spread SEP was (and still is)!
UK.gov emits draft IoT and smartphone security law for Parliamentary scrutiny
NHS Digital exposes hundreds of email addresses after BCC blunder copies in entire invite list to 'Let's talk cyber' event
Brits open doors for tech-enabled fraudsters because they 'don't want to seem rude'
BT to phase out 3G in UK by 2023 for EE, Plusnet, BT Mobile subscribers
Gen 1 smart meters run on 2G with whoever the energy provider decided to contract with. In the north of England and in Scotland, Gen 2 smart meters use a separate long range radio wave network built and maintained by Arqiva. In the rest of England and in Wales, Gen 2 smart meters use the Telefonica (O2) 2/3G network
We're not getting back with Galileo, UK govt tells The Reg, as question marks sprout above its BS*
Re: A dumb question but... where does NATO fit into this?
GPS II (the current version) is being replaced with GPS III which should give similar accuracy to Galileo for those allowed to access the M code. The timescales between GPS II reaching EOL and GPS III being operational is tighter than is comfortable! The PNT report if I remember correctly was looking at the impact of what would happen if GPS was not available and Galileo is one viable option for that and like the public channels of GPS, free. What isn't free is the PRS code but it is unlikely that PRS will ever be accessible by a non-European nation because of the rules that the UK insisted on
Please stop hard-wiring AWS credentials in your code. Looking at you, uni COVID-19 track-and-test app makers
You weren't hacked because you lacked space-age network defenses. Nor because cyber-gurus picked on you. It's far simpler than that
National Crime Agency says Brit teen accused of Twitter hack has not been arrested
Doctor, doctor, got some sad news, there's been a bad case of hacking you: UK govt investigates email fail
Re: If the Tories General Election pledge was to NOT sell of the NHS
Well the problem is the entire system is underpinned by the principle that you vote for an individual to represent you at the national level. That individual may belong to a party, or they may be an independent and whoever can form the largest group of MPs is the government. The system isn't designed for the public to vote for a party or for the policies of a party. The disconnect is in how voters treat the system where they vote for a party rather than a person, or in recent years vote for the PM rather than the individual MP or party. Simply making manifesto pledges binding would not address the underlying issue and would itself be contradictory. Instead, you would need a system akin to proportional representation with binding pledges with an independent body to assess this which has it's own downsides.
Digicert will shovel some 50,000 EV HTTPS certificates into the furnace this Saturday after audit bungle
Remember when we warned in February Apple will crack down on long-life HTTPS certs? It's happening: Chrome, Firefox ready to join in, too
Adobe about to pull the plug on Creative Cloud freebie 'at-home' access for students
Re: Are Adobe products the only ones ...
Serif's Affinity suite is an affordable non-subscription alternative to Photoshop. It offers most of the functionality you get out of Photoshop but you then don't have the extensive range of add-ons Photoshop gives you access to and there are a few more niche features not in Affinity Photo
Windows Server to require TPM2.0 and Secure boot by default in future release
Legal complaint lodged with UK data watchdog over claims coronavirus Test and Trace programme flouts GDPR
To test its security mid-pandemic, GitLab tried phishing its own work-from-home staff. 1 in 5 fell for it
Anyone can have a bad day and click on something they shouldn't have especially if under pressure or a phishing email looks like something they were expecting. It also doesn't help that a lot of organisations have legitimate emails that really look like phishing and contain most of the traits you're told to keep an eye out for. One of our vendor partners sent me a meeting invite last week that I was convinced must be phishing but it was legitimate. Bad spelling, suspicious link, not from their usual domain, emotive language.
SAP proves, yet again, that Excel is utterly unkillable
Re: Excel excels
Some of the spreadsheets many of the PMO people I know have to use are insane and take forever to load because a network stored ridiculously sized spreadsheet has grown out of something once thrown together quickly to centrally store data from emails in. Some of them are also so complicated that no one knows how to fix them when they break because the person who made and hotfixed it has since moved on.
Attorney General: We didn't need Apple to crack terrorist's iPhones – tho we still want iGiant to do it in future
Re: "no thanks to Apple"
It's like talking to a brick wall because the key policy makers can often barely use technology let alone understand it. I'm sure most of us have had to deal with similar issues either at work or with family where they can't understand why the magic box can't just do everything they want it to!
Netflix says subscriptions just boomed but tells investors it's no money heist and they should expect stranger things
Google's OpenSK lets you BYOSK – burn your own security key
Not call, dude: UK govt says guaranteed surcharge-free EU roaming will end after Brexit transition period. Brits left at the mercy of networks
Re: 3 ....
That's because they bought the least of the 4G spectrum of any of the providers (there was a lot of controversy about the process and the merger of T-Mobile and Orange giving them a ridiculous amount of the spectrum) but they've bought more of the 5G spectrum than any operator so they'll have much better coverage once the 5G roll out speeds up (and you have a 5G enabled device)
Difficult season: Antivirus-flinger Avast decides to 'wind down' Jumpshot
Unlocking news: We decrypt those cryptic headlines about Scottish cops bypassing smartphone encryption
Re: Let me get this right
When I did my XRY cert (one of the other less worrisome mobile forensic tools since you need the passcode for the device for it to work) it could do an extraction from an iPhone without changing any data (except what is changed by the device itself in the normal operation) but Android devices had to change data on the device to extract data from it.
The legal side of this is done with the documentation of the steps taken and the impact that has on the device. As long as you're following a good process, they'll accept the changing of the device data as a consequence. The way XRY and other tools work prevent investigators from being able to write anything to the device while it was plugged in to the XRY box. The rest of your assurance is from the process with exact time stamps of where the device was etc. The police guidelines are not fit for purpose but they're usable. XRY is also idiot proof whereas the other Mobile Forensic Tools are not. As long as you can follow very simple instructions, you can use XRY.
Google scolded for depriving the poor of privacy as Chinese malware bundled on phones for hard-up Americans
Google could refuse to allow Google Play Services to manufacturers that bundle this software with the phone in an unremovable way. The theory is that this would kill the market viability of these phones forcing them to change it and prevent other manufacturers doing the same thing in future. Just going after the manufacturer allows another one to start doing the same thing and then you're playing whackamole.
Re: I feel fortunate
Those apps aren't actually installed. They're just links to install in your start menu and you can most definitely remove them. It's only when you actually click on them that they are installed on your device. You can even remove them using group policy so that the user never even sees them! I'd rather they were not there at all but it's something completely different than what is happening with Android devices
Hold my Bose, we can do premium: Sennheiser chucks pricey wireless cans at travellers
Having used both, these are significantly better than the HD4.50. The noise cancelling works better, the microphone is actually usable for calls (I have a fairly soft voice and the HD4.50 mic just didn't work for me for business calls), they are a lot more comfortable and one of the features I make use of is that when plugged in via USB, these headphones act as their own sound card which makes work calls a lot simpler
Re: Does the noise-cancelling work without a source?
Yes. Some noise will still get through but they make things significantly quieter without needing to be connected to a source. There's a switch on the back of the cup that can be set to Off, Device Controlled or On for the noise cancelling. Device Controlled will set it to whatever you set the noise cancelling to in software the last time it was connected to a phone and On will just have the noise cancelling on full whenever the headphones are turned on
VMware warning, OpenBSD gimme-root hole again, telco hit with GDPR fine, Ring camera hijackings, and more
Ring is just the latest in a long line...
I do feel a bit bad for Ring here. It seems every few months a company is hurt by widespread media coverage due to credential stuffing that isn't really their fault. Spotify comes to mind as one who regularly gets reported as being "hacked" when really it's just reused leaked passwords. But because the media don't understand security, Ring gets a load of bad press in a period I'm sure they were relying on sales in because of end user error. Yes what these idiots have done is horrible but that doesn't mean Ring is to blame (for once)
Try as they might, ransomware crooks can't hide their tells when playing hands
100% this. If you haven't looked at the changes to Endpoint Protection over the past couple years, it's something I'd seriously recommend. The market has shifted (and is still shifting) quite significantly with the big players changing around and Microsoft ATP really shaking things up. Then you have newer players like Elastic (Previously Endgame) offering very different solutions both in pricing and offering that didn't even exist a couple years ago but have a real chance of knocking the long time players off the top spots in the market!
UK Info Commish quietly urged court to swat away 100k Morrisons data breach sueball
His job was not to analyse it. His job was to prepare it to send onward to the external auditors (KPMG). Their (KPMG mandated) process required the data to be put on a USB. Skelton copying the data to a USB wouldn't have raised alarm bells even if they had detected it because it was a component of his job
Morrisons is to blame for 100k payroll theft and leak, say 9,000 workers
Re: If only...
And would have been able to attempt to reclaim that money from Skelton along with the costs of retrieving the money from him. Legally, the case is really interesting on the second element more than the first. If someone commits a criminal act that has a significant relation to their job role but is clearly not a function of their job, can their employer be held vicariously liable for that act? Does that count as the one continuous act required for vicarious liability?
Morrisons were following the guidelines they were told they had to implement by KPMG. The ICO said the only other thing they could have done was have tools in place that would have alerted them that Skelton had copied the data on to an unencrypted USB which, because of the job he held, would not have raised alarm bells quick enough to prevent the leakage of the data. Skelton's entire job was handling sensitive data. They did not do anything worth being fined for under DPA or GDPR
Re: Resistance is futile
Yep it was Skelton's job to send the financial data to KPMG. He had a business need to process that data. The process that KPMG told Morrisons to use involved putting that data on an encrypted USB. If they are held accountable for the actions of an employee breaking the law entirely out of a want to damage his employer for punishing him when he broke the rules, that has significant negative implications for all UK businesses and is giving Skelton exactly what he wants!
Trend Micro: Our super-duper security software will keep you safe from everyone – except our staff who go rogue
Re: AV and similar software just increases your attack surface...
Also, no matter how well trained or intelligent someone is, they can have an off day where they slip up and click on something they shouldn't. Endpoint software is so much more than just an AV provision so that when someone does slip up, and they will, the right action can be taken and the company protected as well as they can be
Yes, TfL asked people to write down their Oyster passwords – but don't worry, they didn't inhale
Re: Badly designed system
It's the process when you go to a ticket office rather than at an underground top up point. They don't have direct access to the Oyster system as it's managed by TfL so their work around requires a password because they need to log in to the TfL account or create a new TfL account as a part of the process. All the guidance on how to apply the discount to your Oyster says to go to a person at an underground station which doesn't require the password.
Biz forked out $115k to tout 'Time AI' crypto at Black Hat. Now it sues organizers because hackers heckled it
Re: Openly and fairly...
Eh most business people know of Blackhat at least as a vague understanding. I doubt the idea was ever to sell it to anyone at Blackhat but to just be able to say they presented there to some purchasing managers who don't know better to get them to pay up. I doubt they expected the level of backlash hence the suit to try and reclaim the narrative. It's just a grift to pretend they have a cutting edge product to earn quick cash from companies who want to just buy a product rather than do any real work for security
Re: If only...
There really needs to be a federal anti-SLAPP law at this point. You're getting more and more baseless defamation suits fighting to be heard in states without anti-SLAPP legislation like Depp. The fact they're trying this in California is incredibly laughable but you do see it still as a way to silence critics knowing that they can either eat the penalty or that the threat of a lengthy suit is more than most critics are willing to deal with