When your firewall manufacturer can’t figure out firewalls
It’s alright if you’re part of the 99% - this only affected less than 1%…
2 Likes
LOL oops
I’m tempted to start just one thread called ‘Do Your Due Diligence’
But it would never end, and people would get cynical…
We’ve entered a phase where humans are a much higher data risk than the machines.
It mentions a third party cloud service - could have been G-Drive or Dropbox, or yet another Snowflake incident.
Between different data breaches literally all my information has been leaked at one point or another, including SSN, DOB, address, DL, email, phone, etc.
Time to rethink data breaches. We have entered a time where we have to flip the script. Treat all data as suspicious unless you can verify authenticity through reliable means. The concept that only the physical person would know these things and this mere access to the data is sufficient is no longer sustainable.
While we want to minimize them, action and focus has to shift to how to live with leaked data safely. Meaning anyone using these data to make decisions has to change their ways. Tall order, I know. But the only way forward.
Which by the way would kill most leaks, as it removes the incentive for hacking the data. They become less valuable if you can no longer abuse them.
Unfortunately I don’t think corporate leaders care enough and people are to set jn their ways.
And let’s not turn this into another subscription service, the little person has to pay for. Enough with pushing all responsibility down the stack. This cost should be born by the companies.
Unfortunately we’re already down that path where you need 2-3 monthly subscriptions with the credit bureaus to lock your file to protect yourself. Good old America, make a buck creating a problem, then make another buck with the fix.
2 Likes
@allklier - as always you’re so right brother.
Reading between the lines and amplifying what we know to be mostly true:
Corporate leaders are beholden to shareholders and not to science.
Also, they are clueless dipshits.
Engineering departments have absolutely no path to create or validate authenticity, because their efforts in corporation land are eclipsed by what-about-ism, mission-creep and pushing stuff off into the future (something about cans and kicking).
Once on a summery whiskey-filled evening in northern california, I asked these kinds of questions of Bailey Whitfield Diffie (who for a short time was my mate’s mum’s boyfriend).
We soon stopped talking and watched the sun set.
1 Like
In short: you need responsible capitalism.
At Amazon (in the old days, it’s gone to shit since), there was the saying that the customer had a seat at the table (figuratively) in every meeting.
You want companies to chase the moon. But everyone impacted by it’s action (shareholder, customer, vendor, society at large, the environment, our kid’s generation ) needs at least one seat at the table to represent their risk and rewards.
@allklier - and you’re so right about subscriptions…
Half of my ancestry are Scottish mercenaries sent to Hong Kong to establish opium addiction.
The other half of my family sold land rights to the Hong Kong jockey club to finance their opium addiction.
Ironically, my wife’s ancestors were also involved - it’s a long story.
Subscription is the curse that keeps on giving…
1 Like
@allklier - so funny - the statement about chasing the moon - see: Jeff Bezos / Blue Origin, and project Kuiper, blah blah blah
Onwards
Education will fix all of our problems, unless we try to fix education by eliminating the Department of Education, destroying public schools, and establishing education through coloring books, Pearson Certificates, and cognitive tests:
Person, Woman, Man, Camera, TV…
Last thing on the topic:
The data breach notification emails have now become routine. But you rarely see any meaningful action or fewer of them.
It feels like the ‘thoughts & prayer’ press tour routine after a mass shooting.
We said we were sorry, what else do you want???
Thoughts & prayer that the dark web doesn’t exploit the leaked data, and you spend more than your credit bureau subscription fees cleaning up the mess.
It does take a lot of focus and energy to stay calm these days.
@allklier - it’s no secret that I would like people to accept responsibility for their fuck ups - me included.
If I’m getting paid half a rock or I’m getting paid 5 rocks to do this electronic information security thing - then that should be my sole area of focus and expertise.
I’ve worked at too many places where the chief security person used to be the beautiful receptionist.
1 Like
2 Likes
wait until quantum compute is viable. all of the security we currently have will be rubbish. prob not our problem as quantum hackers will be pillaging the banks but still…
Just landed in my inbox. Yeah. Thank you to all the complacent data collectors and lazy IT security folks…
But I already knew that, since I had checked the big April data breach…
Nice oxymoron…