Leaderboard

Popular Content

Showing content with the highest reputation on 13/05/21 in all areas

  1. Probably more underfunded and understaffed in the name of profits.
    15 points
  2. All cryptocurrency is a waste of energy and damages the environment.
    14 points
  3. Running on outdated software is nothing new it seems. Which is why many businesses are just moving to the cloud, let someone else handle this stuff because they clearly don't care enough to. And people wonder why MS has decided to force updates on Windows Home/Pro. As if massive botnets using peoples home PCs wasn't bad enough. At some point you get tired of others not holding up their part of the job and you getting all the blame.
    13 points
  4. Microsoft is shutting down Azure Blockchain Service in September

    The answer to any problem is almost always never Blockchain.
    7 points
  5. Microsoft doesn't provide automation for patching Exchange with cumulative updates, and only provides security patches for the latest couple CUs via Windows Update. It means that it needs at minimum, some administrative attention around twice per year is needed to keep patched, even when otherwise set to auto updates. That bare minimum level of maintenance would be comparable in annual cost to typical auto maintenance for a single modern vehicle. Maybe 10 hours' labour assuming something goes wrong during patching at least once or the consultant wants to milk the billable hours a little and watch progress bars, much less if it's buttery smooth and is combined with other concurrent maintenance tasks. It's pretty irresponsible to run a public-facing mail server and try to get away with less. And yes, it's not that abnormal to do so. Not everybody has someone to explain the repercussions of bad security, warnings go unheeded, etc. The bar for "good enough" security is constantly on the rise too - what was once adequate is now poor. Mentalities have an impact as well. Some industries that are heavy on procedure and have significant change aversion are often left at odds with the fact that there is no way to reprimand an attacker, and those attackers do not colour within the lines of the defined access controls whenever possible. Picks and bolt cutters to the metaphorical LOTO locks. A system that "has worked great for years" and "is stable, reliable, and well documented" may be "ripe for the taking" in the hands of an experienced operator. TL;DR. It's not normal, but not as rare as it should be either. Old Exchange patches barely scratch the surface of the problem; that's just a symptom of a system left to rot. Effectively keeping up with security does end up rather costly with the necessary combination of tools, labour, and services, but it's not as costly as failing to do so.
    7 points
  6. Colonial Pipeline was using vulnerable, outdated version of Microsoft Exchange

    "Colonial Pipeline was using vulnerable, outdated version of Microsoft Exchange" Probably was also running on Windows XP Service Pack 1.
    4 points
  7. The pipeline controls should be their own private networks within the company with their own dedicated computers with no way for the company wide LAN or internet available to them. The sad thing is that this probably isn't the only company/industry that isn't walled off.
    3 points
  8. Tesla stops taking Bitcoin for vehicle purchases after just 49 days

    Get what you deserve? I've made more money in the last 3 months from Doge and Safemoon than i did in over 20 years of working. I know a lot of people are scared of it but its pretty fun when you get the hang of it. Gambling is still gambling - whichever way you look at it. If you think otherwise, you are deluding yourself.
    3 points
  9. Kind of ironic considering their cars are electric powered. Almost as ironic as those who think electric cars are zero emissions.
    3 points
  10. Tesla stops taking Bitcoin for vehicle purchases after just 49 days

    Clear example of market manipulation. Tesla buys Bitcoin at beginning of year, announces they will accept it, then when prices rise, sell (to help quarterly profits), then announce they will no longer support it. The regulators should get involved... oh wait; crypto currency isn't regulated! You get what you deserve if you dive into the crypto minefield.
    3 points
  11. They're not all as bad as Bitcoin! I think that cryptocurrencies should be taxed according to the environmental damage they cause. BTC would come out particularly badly in my mind.
    3 points
  12. I didn’t get any basil with my MBP. I feel cheated. I hear the battery lasts a long thyme!
    3 points
  13. Colonial Pipeline was using vulnerable, outdated version of Microsoft Exchange

    depends on whether you want to have high profits for shareholders in the short term.
    3 points
  14. Probably more underfunded and understaffed in the name of profits. That is 100% it, they'd rather line their pockets than foot the bill to pay people to fix it.
    3 points
  15. Cool. Then I'll just need to find a PS5 and I'll be set!
    2 points
  16. Source? He did say... //The Department of Energy is working directly with Colonial to get the pipelines back online and operating at full capacity as quickly and safely as possible. The FBI also is engaged to assess the — and address this attack. The agencies across the government have attacked quifly — quickly to mitigate any impact on our fuel supply. And over the weekend, at my direction, the Department of Transportation issued an emergency order to loosen restrictions on truck drivers in order to allow more fuel to be transported via tanker. We’re prepared to take additional steps, depending on how quickly the company is able to bring its pipeline back to full operational capacity. The Federal Bureau of Investigation has determined Colonial’s network was infected by ransomware, and it’s a criminal act, obviously. The FBI released details of the attack so others can take steps to prevent being infected. My administration takes issue — this — takes this very seriously. We have efforts underway with the FBI and DOJ — Department of Justice — to disrupt and — and prosecute ransomware criminals. And my administration will be pursuing a global effort of ransomware attacks by transnational criminals who often use global money-laundering networks to carry them out. My administration is also committed to safeguarding our critical infrastructure, which — much of which is privately owned and managed, like Colonial. Private entities are making their own determination on cybersecurity. So to jumpstart greater private-sector investment in cybersecurity, we launched a new public-private initiative in April. It begins with a 100-day sprint to improve cybersecurity in the electric sector, and we’ll follow that with similar initiatives in natural gas pipelines, water, and other sectors. // I don't see anywhere that the government should not interfere??? https://www.whitehouse.gov/bri...ident-biden-on-the-economy/ The EO fact sheet doesn't state anything contrary to his remarks either... the Colonial Pipeline incident is a reminder that federal action alone is not enough. Much of our domestic critical infrastructure is owned and operated by the private sector, and those private sector companies make their own determination regarding cybersecurity investments. We encourage private sector companies to follow the Federal government’s lead and take ambitious measures to augment and align cybersecurity investments with the goal of minimizing future incidents.
    2 points
  17. Write protected USB drive

    I've had usb flash drives give me write protected issues in the past when they should not have. Turns out the drive went bad.
    2 points
  18. I can't even imagine recovering from a ransomware attack when it goes through and encrypts 1000's of computers in a company.
    2 points
  19. A fake MSI Afterburner download page is spreading malware

    There's your problem.
    2 points
  20. Huawei P50 renders leak showing a unique camera bump

    Until Google services are restored, Hauwei is a non starter for most
    2 points
  21. Microsoft is shutting down Azure Blockchain Service in September

    A buzzword guaranteed to make technically illiterate management wet themselves.
    2 points
  22. Tesla stops taking Bitcoin for vehicle purchases after just 49 days

    yes, start excepting dogecoin
    2 points
  23. I never understand this. Anything relating to critical infrastructure should be separate to the general network and not connected to the internet other than when needed for critical patching etc. As something that would be a high profile target, it doesn't matter how great your security is, as people are more likely to try and find ways around to infuriate you. If it needs access to the internet, then at the least it should be heavily locked down to the specific places and protocols required for its function. I cant imagine a scenario where the core infrastructure making the plant work would need to be connected to the same infrastructure as the exchange!?
    2 points
  24. A lot of companies have zero interest in security until something happens. When a manager has to report to their manager on why this happened then they care. But until that happens security takes a back burner to productivity.
    2 points
  25. They forgot to reject iTunes and Siri
    2 points
  26. Instagram is rolling out pronouns on user profiles

    Yeah, I consider myself fairly open minded but that is just ridiculous. The only one I can guess is vi which I assume is for people who gender identify as an UNIX text editor. LOL
    2 points
  27. I didn’t get any basil with my MBP. I feel cheated.
    2 points
  28. they are idiots for doing that too... never pay a ransom, always have full backups and offline tapes that are at least a monthly backup.... even if they are blackmailed by saying we will release data if you don't pay us, you still don't pay them
    1 point
  29. GitHub introduces video uploading across its platform

    That's a leap forwards for GitHub. Lots better exclamation
    1 point
  30. Which is better?

    hmm wasn't half this thread about not needing an A+ cert.
    1 point
  31. Which is better?

    If I backtrack through the thread, it seems that you're looking to get into software development. Do you have examples of software development that you can use in an interview to show that you know what you are doing? While my advice doesn't apply to all aspects of IT, I started work as an apprentice in IT support and I had no certificates. This evolved into a one year contract. From there I had the experience to get another position which lasted me for about 4 years before my next position. It was only during that position that I was asked to get a certificate while on the contract - it wasn't a prerequisite. That's 5 or 6 years of working without a certificate, all because I could provide previous experience to back myself up with. You don't need a certificate. But if you are going to get a certificate, get it for something related to what you want. I don't know how a Cisco certificate helps you towards software development.
    1 point
  32. Which is better?

    🤨
    1 point
  33. I can't think of any reason for these systems to be on a public accessible network. These pipes can pump oil across the nation ... but can they access TikTok?! Just seems stupid.
    1 point
  34. C64's wouldn't of been on the internet, so they technically would of been more secure Heck a lot of lace making factories still use Apple ]['s to control their looms
    1 point
  35. I would question any news story these days. Every outlet has an agenda.
    1 point
  36. Tesla stops taking Bitcoin for vehicle purchases after just 49 days

    They're not all as bad as Bitcoin! I think that cryptocurrencies should be taxed according to the environmental damage they cause. BTC would come out particularly badly in my mind. If any taxation is added it should only apply to those that aren't using energy efficiency and clean energy to mine. You can't just class everyone in the same boat That way it won't put people off mining or using them in the real world, but it will encourage people to find much more environmental and efficient ways to mine. Around 75% of all Bitcoin mining is currently done in China. Good luck taxing it there. Of course, it won't need to be taxed as I'm sure China will tell us that all their mining is powered by renewables (of course it is) and most idiots will either swallow it without question, refuse to challenge it for fear of being called racist or challenge it, and get called racist by the CCP. And China will happily continue mining using their "renewable" energy from coal-fired power stations.
    1 point
  37. Tesla stops taking Bitcoin for vehicle purchases after just 49 days

    they already did in SpaceX - (ACCEPTING)
    1 point
  38. none of this would of stopped this issue but hey what ever feel good exec orders...... maybe all critical inf has completely white listed IP access only for a start? something that might actually help...... no need for stuff like this to be on the full internet, or heck maybe make a private fiber network for stuff like this?.... and for this "Software developers are even required to share certain security data publicly." why do I feel like if Trump said that with China software there would be major backlash and calls of racism? Not that I'm for Trump, it just seems like hypocrisy though
    1 point
  39. A fake MSI Afterburner download page is spreading malware

    Doesn't start for me either, haha. Chrome without extensions.
    1 point
  40. Tesla stops taking Bitcoin for vehicle purchases after just 49 days

    They're not all as bad as Bitcoin! I think that cryptocurrencies should be taxed according to the environmental damage they cause. BTC would come out particularly badly in my mind. If any taxation is added it should only apply to those that aren't using energy efficiency and clean energy to mine. You can't just class everyone in the same boat That way it won't put people off mining or using them in the real world, but it will encourage people to find much more environmental and efficient ways to mine. Except you don't have separate outlets that carry coal vs nuclear power
    1 point
  41. That's because 2020 never happened and 2019 was (in our minds) only last year!!! 😛
    1 point
  42. Write protected USB drive

    Just to be sure, have you checked to see if there is a hardware switch for write protection on the key?
    1 point
  43. Instagram is rolling out pronouns on user profiles

    Yup, as soon as I saw the headline I knew there would be a lot of ignorant posts here. I'm guessing there are a lot of people who've never met/spoken to someone with gender dysphoria, and what it means to them to be able to use pronouns that they are more comfortable with. The science is currently clear that gender and sex aren't always exactly aligned, and that neither are black/white. Why are so many upset that people are increasingly able to more accurately express who they feel they are?
    1 point
  44. Microsoft Threat and Vulnerability Management now supports Linux

    I'm afraid you misunderstand what's going on here. Binary compatibility isn't the problem. Microsoft runs a support program as part of its software assurance contracts and what-not. This program is one of Microsoft's three main sources of income. Please notice how many times the word "support" appears in the article.
    1 point
  45. Instagram is rolling out pronouns on user profiles

    That is a problem with social media... It's part of the masses. They follow what the masses do even if wrong or stupid. No one can deny when we were teenagers we thought the world span around us and we wanted everything our way. This is a teenager thing...
    1 point
  46. Instagram is rolling out pronouns on user profiles

    I was able to even tolerate "they/them" pronouns but this is getting absolutely ridiculous. Wtf are these made up pronouns... "fae, faer, ze, zir, zie, xe, xem, xyr, co, cos, ve, ver, vis, vi, vir?"
    1 point
  47. I may be on the lower spectrum of this site's opinion, but I like the color scheme.
    1 point
  48. Minecraft Dungeons' Hidden Depths DLC surfaces on May 26

    its a little more dumbed down imo but fun to play
    1 point
  49. A new Hellhound from PowerColor is coming, this time in white

    The tweet is unavailable, just like the card will be. Oh, the irony!
    1 point
  50. Backing up your computer

    I lost 10 year worth of photos - by buying only 1 backup HDD. Now I back it up to 2 WD red drives and I hope that is enough - most important stuff is also on a 500gb flash ssd (not sure really - I think it is SSD - cost an arm and a leg back when I got it and it is extremely fast)
    1 point