|
anthonypants posted:according to this article, the dutch saw the russians phishing the us state department in november (what year?), and they told the nsa, and the nsa and fbi responded within 24 hours? and then the state department took down their email servers "for a whole weekend in order to upgrade the security" Yeah the article kind of sucks (and so does the translation imo) but if this is true then it's pretty awesome imo that they managed to gain such a level of access
|
# ? Jan 25, 2018 23:19 |
|
|
# ? Jun 5, 2024 03:47 |
|
spankmeister posted:Yeah the article kind of sucks (and so does the translation imo) but if this is true then it's pretty awesome imo that they managed to gain such a level of access
|
# ? Jan 25, 2018 23:21 |
|
oops! Tech firms let Russia probe software widely used by U.S. government Reuters posted:Major global technology providers SAP (SAPG.DE), Symantec (SYMC.O) and McAfee have allowed Russian authorities to hunt for vulnerabilities in software deeply embedded across the U.S. government, a Reuters investigation has found. https://www.reuters.com/article/us-usa-cyber-russia/tech-firms-let-russia-probe-software-widely-used-by-u-s-government-idUSKBN1FE1DT
|
# ? Jan 25, 2018 23:22 |
|
fishmech posted:there is such a thing as falling for scammy companies that will you sell you it, probably. yeah and there are also hipaa audits which are various levels of same.
|
# ? Jan 25, 2018 23:23 |
|
Dadbod Apocalypse posted:oops! how is this an oops? if they want to sell software to the russians this is sop
|
# ? Jan 25, 2018 23:25 |
|
AARP LARPer fucked around with this message at 23:29 on Jan 25, 2018 |
# ? Jan 25, 2018 23:26 |
|
welcome to procurement?
|
# ? Jan 25, 2018 23:29 |
|
infernal machines posted:how is this an oops? if they want to sell software to the russians this is sop
|
# ? Jan 25, 2018 23:31 |
|
kaspersky provided or intended to provide source code access to the US govt for the exact same reasons
|
# ? Jan 25, 2018 23:33 |
|
BangersInMyKnickers posted:lol this is literally routine poo poo that we do [...] but now [russia is doing it] and waa-waa-waa
|
# ? Jan 25, 2018 23:37 |
|
oh no the russians might be able to figure out that sep is poo poo
|
# ? Jan 25, 2018 23:39 |
|
Dadbod Apocalypse posted:oops! PCjr sidecar posted:oh no the russians might be able to figure out that sep is poo poo
|
# ? Jan 25, 2018 23:40 |
|
they should put a column for “Linux” up there too
|
# ? Jan 26, 2018 00:00 |
|
PCjr sidecar posted:oh no the russians might be able to figure out that sep is poo poo
|
# ? Jan 26, 2018 00:03 |
|
anthonypants posted:have you looked at the current state of standardized infosec testing and certification I’m not really familiar with them because I don’t make decisions based off someone’s testing and certification. Can you be more explicit about what you’re getting at?
|
# ? Jan 26, 2018 02:33 |
|
they don't mean anything, as you just implied
|
# ? Jan 26, 2018 02:39 |
|
anthonypants posted:have you looked at the current state of standardized infosec testing and certification It gives you a perfect way to "bad culture fit" any applicant you don't like, whether they have a certification (poseur) or they don't (unproven). Certifications are great!
|
# ? Jan 26, 2018 02:53 |
|
The reversers I know can read binary better than source so I’m not sure this matters at all. e: edited this for accuracy Evis fucked around with this message at 04:22 on Jan 26, 2018 |
# ? Jan 26, 2018 04:02 |
|
Hed posted:I’m not really familiar with them because I don’t make decisions based off someone’s testing and certification. Can you be more explicit about what you’re getting at?
|
# ? Jan 26, 2018 04:51 |
|
I was trying to point out that I haven’t seen licensure solve the purported problems in other engineering fields so I don’t see how going down the path in software and infosec would make a difference. In other words, proposals sound great around the dinner table but based on how I believe it would be legislated it would accomplish little positive. State by state licensure and leaving industry exemptions (which industry would demand being in any legislation in the US) would make it completely pointless while raising barriers to entry, a net negative for society. If I really wanted to put a dent in the problem I believe the least worst solution would be to put real penalties behind undesired outcomes, in the vein of HIPPA as discussed previously. As it is I’m skeptical because racking up pointless credit monitoring seems to be the currently anchored “penalty” for poor decisions.
|
# ? Jan 26, 2018 12:46 |
|
|
# ? Jan 26, 2018 13:50 |
|
Evis posted:The reversers I know can read binary better than source so I’m not sure this matters at all. well yeah if you throw code into binja you get a nice flowchart instead of someone else's c
|
# ? Jan 26, 2018 14:01 |
|
SEP endpoint is actually "okay" for an AV product these days (they're all poo poo) but oh boy is the management platform a soft loving target with system/root hooks in to every single system on the network
|
# ? Jan 26, 2018 15:22 |
|
Seems like Cisco AMP and Cisco VPN breaks a lot of things these days, I wouldn't be surprised if its vulnerable as hell.
|
# ? Jan 26, 2018 15:35 |
|
https://twitter.com/fs0c131y/status/956628910308982785
|
# ? Jan 26, 2018 15:46 |
|
i'm poor smelly mezzanine
|
# ? Jan 26, 2018 15:51 |
|
im (?: [Two three four five] (?: son | daughter)) (?: parents)
|
# ? Jan 26, 2018 15:52 |
the rest of that thread is rad but what about the text file itself?
|
|
# ? Jan 26, 2018 16:33 |
|
1+ just can't stop selling phones with exfil and backdoors!
|
# ? Jan 26, 2018 18:27 |
|
Jonny 290 posted:any yosposter has a standing offer to come pet the cats if they visit denver, but im smokin u out and we dont play around im down
|
# ? Jan 26, 2018 21:39 |
|
this guy runs android police dot com https://twitter.com/ArtemR/status/956966193625120768
|
# ? Jan 26, 2018 21:44 |
|
*woop*woop* it’s the android police *woop*woop* it’s a site for the obese
|
# ? Jan 26, 2018 21:47 |
|
Cocoa Crispies posted:*woop*woop* it’s the android police
|
# ? Jan 26, 2018 21:52 |
|
Cocoa Crispies posted:*woop*woop* it’s the android police
|
# ? Jan 26, 2018 22:01 |
|
Cocoa Crispies posted:*woop*woop* it’s the android police
|
# ? Jan 26, 2018 22:02 |
|
Cocoa Crispies posted:*woop*woop* it’s the android police lol
|
# ? Jan 26, 2018 22:03 |
|
Cocoa Crispies posted:*woop*woop* it’s the android police
|
# ? Jan 26, 2018 22:06 |
|
Hed posted:I was trying to point out that I haven’t seen licensure solve the purported problems in other engineering fields so I don’t see how going down the path in software and infosec would make a difference.
|
# ? Jan 26, 2018 22:07 |
|
Cocoa Crispies posted:*woop*woop* it’s the android police
|
# ? Jan 26, 2018 22:12 |
|
|
# ? Jun 5, 2024 03:47 |
|
Cocoa Crispies posted:*woop*woop* it’s the android police
|
# ? Jan 26, 2018 22:12 |