|
Send a few extra bitcoins to these guys that have caused the problem and ask if they will sort it all out for us? It would make a good buddy cop movie, russian hacker teenager and NHS IT procurement manager getting into japes and such like.
|
#
?
May 13, 2017 01:29
|
|
|
|
| # ? May 17, 2024 04:11 |
|
|
Zephro posted:This bit of ransomware uses a vulnerability first found by the NSA, who sat on it (and possibly used it) for ages until someone hacked them and sprayed a bunch of their secret sauce all over the internet. Only then did they tell Microsoft about it. But ISIS has a web channel about bread knives and so we need to be able to access everyone's WhatsApps by deliberately seeking more vulnerabilities.
|
|
#
?
May 13, 2017 01:46
|
|
|
T-May was home secretary and knows all the levers of clandestine/law enforcement/counterterrorism power doesn't she? She should making dealing brutally with cyberterrorists a signature issue.
|
|
#
?
May 13, 2017 01:51
|
|
|
The Tory policy of harsh punishments that are irrelevant because the police don't have enough resources to catch anyone.
|
|
#
?
May 13, 2017 02:13
|
|
|
hakimashou posted:T-May was home secretary and knows all the levers of clandestine/law enforcement/counterterrorism power doesn't she? Tories don't govern. They raid the pantry till people get fed up of them. At least that's how it used to work. She ain't going to do anything that can't be solved via cancelling, leaving or cutting.
|
|
#
?
May 13, 2017 04:36
|
|
|
https://www.youtube.com/watch?v=xj_Mmzaf-h4
|
|
#
?
May 13, 2017 05:18
|
|
|
forkboy84 posted:Yeah, but on the other hand, how the gently caress am I meant to remember it if it's not a word? I mean I remember my ATM PIN but that's 4 numbers. I don't remember my NI number though. Having started using the internet and computers in general as a wee lad when l33t sp34k was a thing, I have always used that for my passwords. Makes just about any longish word easy to remember and hard to crack. Examples: .80ll0ck5. 4r53.P1r4t3 5m45h.Th3.5t4t3 .Gr4p3fru1t.
|
|
#
?
May 13, 2017 05:19
|
|
|
Zephro posted:This bit of ransomware uses a vulnerability first found by the NSA, who sat on it (and possibly used it) for ages until someone hacked them and sprayed a bunch of their secret sauce all over the internet. Only then did they tell Microsoft about it. It could be more than that. I saw reports from a couple of security experts who were saying it was literally the same code that was stolen from the NSA, its just been attached to a normal malware. That would tie up as the code was originally been sold for $10,000 USD, before they gave the documents to Wikileaks probably to try and spur buyers. I wouldn't be that shocked if this isn't just a normal script kiddie who didn't know the power of what they were doing or understood the power of the code. If it is the exact code, then the other tools could be out in the wild as well, as this was just 1 of many. Guavanaut posted:Yeah, LastPass is good and cool if you're managing your email and amazon logins and stuff. For any critical security at the personal or SME level then you're better with Keepass, which stores a local database encrypted by a single master password. I've not used 1password but I think that's the same. There are a few companies providing corporate wide password programs allowing people to share passwords, as well as having the same functionality as Keepass. For individual/personal use though Keepass is what everyone should be using as it has clients available for all platforms and is very secure. ukle fucked around with this message at 07:37 on May 13, 2017 |
|
#
?
May 13, 2017 07:31
|
|
|
endlessmonotony posted:Unironically this. Modern computers are kind of good at doing this very thing, and we've had this problem repeatedly solved in increasingly "hold my beer" ways for the past forty years, because "how do I keep these systems up to date, secure and reliable so actual work can be done?" is basically the most answered question in IT. These days the problems come more from, say, lacking firmware upgrades for the tools to do this exact kind of poo poo. Switching over 50k networks is the same as switching over one difficulty-wise, you just need more people to coordinate it. You're skipping over a lot of things in that last sentence. You need a comprehensive plan to convert old data to the new format, when it could be stored in dozens of different ways before that. You need to be aware of every system your network will interact with, some of which will be completely outdated, and build compatibility between them all. You need to ensure that every single existing process (some of which are used only in a single office and have never been written down) is reviewed, updated and documented. All of this needs to be tested and fully QAd, and needs to be done without increasing the admin burden on an already overstretched health service. If you're not going to roll it out all at once you need a plan for if someone transfers from an area with the old system to the new one or (more critically) vice versa. If you are rolling it out all at once you need to have an incredibly precise handover plan (can't shut the NHS down for the weekend), make sure you're prepared for exceptional load in the first few days and have cast iron contingency plans for localised or national failure of systems (which will happen). Plus lots of other things that haven't occurred to me including some that likely won't occur to the people implementing the network until they're already past critical milestones. The number of different things your network design and project plan will need to take into account is absolutely colossal, and if one is missed or goes wrong people will probably die.
|
|
#
?
May 13, 2017 07:34
|
|
|
Knowing the tories this will be outsourced to a private contractor which will then spend 5 years and £a fuckton then accomplish nothing but siphoning more money from the state.
|
|
#
?
May 13, 2017 07:38
|
|
|
I have a question, how deep does Corbyn's Eurosceptism go? I was under the impression that it's the soft "We need to do something about austerity and how Germany and Brussels are treating Greece" style, but he seems to be sitting there and going along with Brexit?
|
|
#
?
May 13, 2017 07:44
|
|
|
The US military spent a billion dollars trying to update its pay system and abandoned it because it was so difficult
|
|
#
?
May 13, 2017 07:55
|
|
|
Lightning Lord posted:I have a question, how deep does Corbyn's Eurosceptism go? I was under the impression that it's the soft "We need to do something about austerity and how Germany and Brussels are treating Greece" style, but he seems to be sitting there and going along with Brexit? Dude has voted against every EU treaty since he got into parliament. His opposition goes back much further than the era of austerity and is rooted more in the 'EU rules stop the kind of government intervention in industry I'd like' left wing angle. Honestly no idea whether he's genuinely changed his mind or is going along with the Starmer strategy, but his call post-referendum to maintain freedom of movement but adopt protectionism indicates it hasn't changed much.
|
|
#
?
May 13, 2017 07:59
|
|
|
Party Boat posted:You're skipping over a lot of things in that last sentence. You need a comprehensive plan to convert old data to the new format, when it could be stored in dozens of different ways before that. You need to be aware of every system your network will interact with, some of which will be completely outdated, and build compatibility between them all. You need to ensure that every single existing process (some of which are used only in a single office and have never been written down) is reviewed, updated and documented. All of this needs to be tested and fully QAd, and needs to be done without increasing the admin burden on an already overstretched health service. Y'know, most of that work goes firmly in the category of "why bother". You don't need to transition over the systems or processes, you just need to transition over the data, and that can be done on a per-system basis as long as you have the final system set up and do adequate migration testing. Compatibility belongs in the trash. Trying to integrate old systems instead of migrating everyone's data to the new is a single-step recipe to making it a quagmire. Assign a team to each legacy system for migration when their time comes. Probably in a few cycles if you want to (reasonably) save on the staff costs, first handling new system data handoffs, then migration proper. It's not only doable, it's been done in other systems very close. Obviously you're talking about a scenario where you have to explain the budget items to the Tories, but I already admitted that part of the problem is probably unsolvable.
|
|
#
?
May 13, 2017 08:31
|
|
|
Ludicro posted:Having started using the internet and computers in general as a wee lad when l33t sp34k was a thing, I have always used that for my passwords. Makes just about any longish word easy to remember and hard to crack.
|
|
#
?
May 13, 2017 08:34
|
|
|
|
|
#
?
May 13, 2017 08:36
|
|
|
Alchenar posted:Dude has voted against every EU treaty since he got into parliament. His opposition goes back much further than the era of austerity and is rooted more in the 'EU rules stop the kind of government intervention in industry I'd like' left wing angle.
|
|
#
?
May 13, 2017 08:37
|
|
|
Zephro posted:Any decent dictionary attack will try leetspeak substitutions (and other common substitutions like k for c or z for s) so they're unlikely to help much. And these days dictionary attacks are really really good, rather than just decent. Wouldn't the punctuation throw that off a bit?
|
|
#
?
May 13, 2017 08:38
|
|
|
Zephro posted:Yeah it's worth remembering Labour was anti-EU throughout the 70s and early 80s, led by its left wing. It's a big free trade area, unions worried that migration would suppress wages, it has rules against state aid (at least in some circumstances) and so on. It's almost like general political categories and opinions change over the years with circumstances...
|
|
#
?
May 13, 2017 08:40
|
|
|
By old systems I mean non networked small systems that for whatever reason (required to interface with an old bit of kit, in the hands of a third party etc) can't be integrated into your big network solution. It's a fairly basic problem but you do need to make sure those systems can hand data back and forth in a manner they both understand, which usually boils down to a bit of tedious work with csv files. Ditto for processes. You'll be able to standardise most things people do but in a big enough organisation you'll inevitably find that there's something that comes up once everything two years and only one person knows how to sort it out. Most corporate systems have the luxury of saying conform or die and letting that rub out non standard processes. Public sector doesn't (or shouldn't).
|
|
#
?
May 13, 2017 08:45
|
|
|
I can't tell whether that's a lack of self-awareness or an abundance of it.
|
|
#
?
May 13, 2017 08:45
|
|
|
Zephro posted:Yeah it's worth remembering Labour was anti-EU throughout the 70s and early 80s, led by its left wing. It's a big free trade area, unions worried that migration would suppress wages, it has rules against state aid (at least in some circumstances) and so on. The overlap between anti-immigration/straight up racism and unionisation of the working class is an issue that really has become a "lets try and pretend it doesn't exist nor ever existed and socialism had a free race bend always." The constant comments that Labour parties along the world need to reconnect with the working class when they lose powers to anti-immigrationists doesn't seem to want to confront that problem, and why the reconnections don't work when they plea to socialist ideals.
|
|
#
?
May 13, 2017 08:51
|
|
|
Party Boat posted:Most corporate systems have the luxury of saying conform or die and letting that rub out non standard processes. Public sector doesn't (or shouldn't). Why is this different in the public/private sector?
|
|
#
?
May 13, 2017 08:51
|
|
|
Party Boat posted:By old systems I mean non networked small systems that for whatever reason (required to interface with an old bit of kit, in the hands of a third party etc) can't be integrated into your big network solution. It's a fairly basic problem but you do need to make sure those systems can hand data back and forth in a manner they both understand, which usually boils down to a bit of tedious work with csv files. Medical devices have a lifespan. Conform or die. Figuring them out probably isn't worth the expense in a vast majority of cases. I'm not saying it will happen, I'm just saying other EU countries have solved problems like these and as it turns out the technology is there if the political will is.
|
|
#
?
May 13, 2017 08:52
|
|
|
Do you think they believe this poo poo they're spewing? I find it hard to believe they truly think renationalising the trains and making society a bit fairer is the death of civilisation. As if civilisation is currently only functioning because bankers can give themselves 2000% bonuses.
|
|
#
?
May 13, 2017 08:53
|
|
|
I hope Diane Abbott, a Cambridge Alumnus, is in charge of re-nationalising the trains. 50p to the shithole that is London feels much better to me than the £200 return it is today (I can fly to spain for less than that).
|
|
#
?
May 13, 2017 09:09
|
|
|
To whom do we owe this good and accurate quote
|
|
#
?
May 13, 2017 09:11
|
|
|
That's what Corbyn said when talking about having to use a nuke but inserting his name instead.Lid posted:The overlap between anti-immigration/straight up racism and unionisation of the working class is an issue that really has become a "lets try and pretend it doesn't exist nor ever existed and socialism had a free race bend always." The constant comments that Labour parties along the world need to reconnect with the working class when they lose powers to anti-immigrationists doesn't seem to want to confront that problem, and why the reconnections don't work when they plea to socialist ideals. No, socialism has always acknowledged xenophobia exists, but it is obviously contrary to international solidarity of the working class. Reconnecting with the working class means actively siding with them in the class struggle, not adopting their right wing tendencies and they confront the problem by saying 'foreigners aren't the case of your problems, capitalism is'. The issue is how successful that approach is, not that they don't have one.
|
|
#
?
May 13, 2017 09:34
|
|
|
PIGS BREXIT posted:To whom do we owe this good and accurate quote quote:“I am often asked if as prime minister I would order the use of nuclear weapons. It’s an extraordinary question when you think about it: would you order the indiscriminate killing of millions of people? Would you risk such extensive contamination of the planet that no life could exist across large parts of the world? It would mean world leaders had already triggered a spiral of catastrophe for humankind,” he said.
|
|
#
?
May 13, 2017 09:35
|
|
|
Regarde Aduck posted:The few times i've been to hospital the medical staff were all lovely but the reception staff treated everyone like scum and were always in foul moods. That's my anecdotal story and why I wish for the privatisation of the NHS. Those crones must pay. you're right
|
|
#
?
May 13, 2017 09:36
|
|
|
Regarde Aduck posted:Do you think they believe this poo poo they're spewing? I find it hard to believe they truly think renationalising the trains and making society a bit fairer is the death of civilisation. As if civilisation is currently only functioning because bankers can give themselves 2000% bonuses. The funniest part is that while ukip appeal to the 50s and 60s childhood nostalgia of baby boomers, in actual fact that was the period of massive nationalisation and taxing the rich, yet society seemed to do just fine.
|
|
#
?
May 13, 2017 09:38
|
|
|
Amber Rudd has said she is 'disappointed' the NHS is still using Windows XP because Jeremy Hunt told them not to, and hopefully they will now 'learn their lesson' and upgrade. Because clearly laziness was the only reason they didn't, not a lack of resources. Seriously, where the gently caress are Labour on this? It's such a stupidly easy thing to hit the Tories over its pissing me off that they haven't even released a statement.
|
|
#
?
May 13, 2017 09:44
|
|
|
namesake posted:Corbyn The only way your avatar and redtext could be more 80s British nerd is if it had references to 2000AD and Games Workshop. What's the quote from?
|
|
#
?
May 13, 2017 09:53
|
|
|
jabby posted:Amber Rudd has said she is 'disappointed' the NHS is still using Windows XP because Jeremy Hunt told them not to, and hopefully they will now 'learn their lesson' and upgrade. Because clearly laziness was the only reason they didn't, not a lack of resources. That would require Labour to have anyone with any experience of IT in its ranks so that they could understand the cause, rather than be largely made up of career politicians.
|
|
#
?
May 13, 2017 09:55
|
|
|
Praseodymi posted:Why is this different in the public/private sector? Because the private sector has the luxury of saying "supporting your custom / weird edge case is too much hassle to be worth it". Public sector can't do that, so (for example) even if you're doing 90% of contact with the public online, you have to also support telephone, textphone, written correspondence, physical offices, home visits, translators (don't forget to do everything in Welsh!), BSL interpreters etc This isn't a complaint because universally accessible services are a good thing, but private sector solutions are usually geared to support 99% of issues and the remaining 1% get classed as "too hard to bother with". I've had experience helping people in poverty and with disabilities get bank accounts and similar services and you very quickly find that there are a lot of people whose circumstances haven't been supported or even considered.
|
|
#
?
May 13, 2017 10:06
|
|
|
ukle posted:That would require Labour to have anyone with any experience of IT in its ranks so that they could understand the cause, rather than be largely made up of career politicians. Haha, I can definitely imagine a few spin doctors desperately running down corridors to get to Labour HQ IT before they all gently caress off for the weekend or hauling some evening computer janitor up from the basement and asking them technical questions a la The Thick of It. "Firewalls! Can we talk about Firewalls?" Lightning Lord posted:The only way your avatar and redtext could be more 80s British nerd is if it had references to 2000AD and Games Workshop. What's the quote from? My dream journal obviously. Nah no idea, it was provided to me by the threads mysterious benefactor. Frankly I'm just glad none of the named celebrities have been outed as pedos. namesake fucked around with this message at 10:15 on May 13, 2017 |
|
#
?
May 13, 2017 10:09
|
|
|
ukle posted:That would require Labour to have anyone with any experience of IT in its ranks so that they could understand the cause, rather than be largely made up of career politicians. Honestly it doesn't even matter if what they say is accurate or even true, that poo poo never stopped the Tories. They just need to come out hard blaming the attack on underfunding and the government cancelling the support contract with Microsoft. EDIT: Hell, you can even work in 'this is what happens when governments are determined to have back doors into people's systems'. jabby fucked around with this message at 10:17 on May 13, 2017 |
|
#
?
May 13, 2017 10:10
|
|
|
MikeCrotch posted:The funniest part is that while ukip appeal to the 50s and 60s childhood nostalgia of baby boomers, in actual fact that was the period of massive nationalisation and taxing the rich, yet society seemed to do just fine. Wonder why that is literally actually a fact, genius.
|
|
#
?
May 13, 2017 10:21
|
|
|
Lightning Lord posted:It's almost like general political categories and opinions change over the years with circumstances... Yeah, it's why they turned to poo poo.
|
|
#
?
May 13, 2017 10:27
|
|
|
|
| # ? May 17, 2024 04:11 |
|
|
Ludicro posted:Wouldn't the punctuation throw that off a bit? https://arstechnica.com/security/2013/05/how-crackers-make-minced-meat-out-of-your-passwords/ This is a worst-case scenario of someone with offline access to a password db so they can slam it will billions of tries a second, but it gives a nice overview of how sophisticated all this was half a decade ago. It's presumably even better now.
|
|
#
?
May 13, 2017 10:31
|
|