|
AlexDeGruven posted:
If it's the dude I'm thinking of, he started his career as a project manager, and hasn't really gotten any better since. (I sit in front of his office)
|
# ? Jul 31, 2019 00:37 |
|
|
# ? May 25, 2024 18:09 |
|
Our red team sends out periodic fake phishing attempts, and if you get stung by one, you have to go through a training course on basic internet security and have to have your boss sign off on you having learned how not to be a fuckwit. This doesn't stop it from happening, but our userbase is reasonably well educated. (Until we pick up another loosey-goosey M&A...) I think I've shared the story before, but I once got called into an emergency mass password reset meeting because loving Atlassian managed to leak a bunch of Hipchat passwords, and we'd been using it internally. It wasn't tied to our SSO, but there was a concern that passwords may have been reused, so everyone who had a Hipchat account tied to an @yayclod.com email had to get their password rotated immediately. On Superbowl Sunday. The reason why I got pulled in was because no one on the on-call Security team picked up their phones because apparently Superbowl Sunday is a loving holiday now? And I was the only person anyone could think of offhand who would be available AND know how to hack out a bunch of Powershell on short notice. Which was true, except I was in a car on I-5 between Seattle and Portland on the way home from a wedding. I could work just fine on a Mifi connection, except my idiot director (former IBM, and no longer with ) wanted to keep everyone on a GoToMeeting conference bridge, and refused to turn off his video feed I ended up killing the GTM and pretending it was a random crash, and I was just SO BUSY WRITING CODE U GUYZ that I couldn't get back on the bridge. So gently caress Atlassian, and gently caress Security for not picking up their loving phones. At least I got hella overtime and a small spot bonus for not ignoring my phone.
|
# ? Jul 31, 2019 00:48 |
|
Thanatosian posted:Why is his email still in your database?! Because no one in academics or student affairs felt the need to notify me that this happened. I just found out today. Apparently he's been on all the contact lists since then... Creeping...
|
# ? Jul 31, 2019 01:34 |
First of May posted:Do they have scared-straight style classes for password security like they do for drunk divers? Could probably hire someone full time to be their email user by proxy and when the user says to respond with their bank details the proxy gets to put them in time out or the bathroom and requires C-Level approval to be removed.
|
|
# ? Jul 31, 2019 04:58 |
|
dragonshardz posted:I have been doing that, but today I'm onsite so I decided to go and see for myself instead of beating my head against this particular wall. I was hoping it'd be a standard Layer 8 issue, buuut...nope. It's a weird one. PremiumSupport posted:I've had that happen. It's a very very rare office quirk of some kind. I'll bet that no matter what you do she'll never be able to open the original document, but if you "Save As:" the document with a new name it will open just fine. I've seen something similar when the temp folder was full for the user, or too many of the same name existed. Repeating reports etc
|
# ? Jul 31, 2019 07:00 |
|
xsf421 posted:If it's the dude I'm thinking of, he started his career as a project manager, and hasn't really gotten any better since. (I sit in front of his office) AP, specifically. At least DP would loving listen to the engineering teams.
|
# ? Jul 31, 2019 14:23 |
|
AlexDeGruven posted:AP, specifically. That'd be him! I'm coming from the noc, so in already used to useless leadership.
|
# ? Jul 31, 2019 14:33 |
|
xsf421 posted:I'm coming from the noc, so in already used to useless leadership.
|
# ? Jul 31, 2019 14:47 |
|
larchesdanrew posted:I sent an email out to parents with instructions on how to opt-in for emergency alerts.
|
# ? Jul 31, 2019 15:03 |
|
"there's some black stuff that came out of the printer"
|
# ? Jul 31, 2019 15:54 |
|
larchesdanrew posted:
Grab a broom
|
# ? Jul 31, 2019 15:54 |
|
Your nose works too.
|
# ? Jul 31, 2019 16:08 |
|
Renegret posted:Grab a broom Give a vacuum cleaner to the coworker you hate the most.
|
# ? Jul 31, 2019 16:09 |
|
Shut up Meg posted:Give a vacuum cleaner to the coworker you hate the most. I hate that you're making me choose just one, out of a total of...all of them.
|
# ? Jul 31, 2019 16:12 |
|
Leaf blower
|
# ? Jul 31, 2019 16:25 |
|
A toothbrush, and the MSDS for toner to use as a dustpan.
|
# ? Jul 31, 2019 17:33 |
|
Figured I would start here first before I went to GSuite support... maybe someone here has done it before! We have 2 completely separate GSuite accounts using different domains. I would like to take the smaller GSuite account and combine it into the larger account, making the secondary account a secondary domain. Keeping all the users and their data intact... Has anyone here had to do something like this before?
|
# ? Jul 31, 2019 18:49 |
|
larchesdanrew posted:
Larches we went over our toner budget this month, but printing volumes stayed the same. File a complaint against our supplier as P1 and don't go home until they credit us for the maliciously delivered half-full cartridge!
|
# ? Jul 31, 2019 19:03 |
|
I lied. I spilled the toner. It was me. I'm the toner dumper.
|
# ? Jul 31, 2019 19:46 |
|
Did you also put the screw in the tuna?
|
# ? Jul 31, 2019 19:56 |
|
larchesdanrew posted:I lied. A call comes in. Printer is barking about low toner, but our vendor hasn't shown up with new cartridges. Not thinking, I tell the user to gently shake the toner cartridge. A call comes in. There's toner everywhere, help. stevewm posted:Figured I would start here first before I went to GSuite support... maybe someone here has done it before! I haven't, but I know people who have. Where do you want to begin? I can field questions if you've got specifics.
|
# ? Jul 31, 2019 20:30 |
|
Dirt Road Junglist posted:
Well, how do you even begin? Google's documentation doesn't seem to go over this specific scenario that I can see, or the documentation on it is just poor. What I can find starts off saying to delete the existing secondary account and then in the very next paragraph says to migrate the data... but how can you migrate the data from an account that has been deleted?!
|
# ? Jul 31, 2019 20:39 |
|
Exit Strategy posted:I mean, here it's part of the basic security training, and if you use the same password for more than just one account and tell someone about it there's a bounty on that poo poo with our infosec staff. What a strange cat.
|
# ? Jul 31, 2019 21:31 |
|
I've been stuck in this mostly boring week-long firewall training class and today we were talking about phishing. One of the guys in the class chimed in to say his org sends people home for a day the first time they fall for a phishing attempt, a week for their second, and permanently for their third. He confirmed they had sent people home for a week before. I felt awe and jealousy that my org can't also do this.
|
# ? Jul 31, 2019 22:03 |
Sirotan posted:I've been stuck in this mostly boring week-long firewall training class and today we were talking about phishing. One of the guys in the class chimed in to say his org sends people home for a day the first time they fall for a phishing attempt, a week for their second, and permanently for their third. He confirmed they had sent people home for a week before. I felt awe and jealousy that my org can't also do this. But but but how will the company operate and get their profits???? Yeah, I actually like that rule, too.
|
|
# ? Jul 31, 2019 23:24 |
|
Sirotan posted:I've been stuck in this mostly boring week-long firewall training class and today we were talking about phishing. One of the guys in the class chimed in to say his org sends people home for a day the first time they fall for a phishing attempt, a week for their second, and permanently for their third. He confirmed they had sent people home for a week before. I felt awe and jealousy that my org can't also do this. Ugh, my company is too gutless to do that. We had a support analyst give out the master Mac password. THREE TIMES. He didn't get fired. They did refuse to renew his contract when it was up, but they didn't bother to do much more than give him a stern look when he did it. And then again. And then again. The Mac guys on my team were ready to drive up here and Office Space his skull.
|
# ? Jul 31, 2019 23:45 |
|
Sirotan posted:I've been stuck in this mostly boring week-long firewall training class and today we were talking about phishing. One of the guys in the class chimed in to say his org sends people home for a day the first time they fall for a phishing attempt, a week for their second, and permanently for their third. He confirmed they had sent people home for a week before. I felt awe and jealousy that my org can't also do this. Though, one of our C-levels insisted on a special email rule that got rid of the "this email was from an external source" banner at the top of his emails, then was the only person to click on the link in our pen test email and not report it, so... maybe that policy, but it only applies to C-levels.
|
# ? Jul 31, 2019 23:46 |
|
Remember this?Arquinsiel posted:I recently saw a case where users clicked on an email that made it through all the various filters and contained nothing but an image that looked like a PDF attachment that linked to a forms.office.com document. That document just said "Login to continue" and has username and password fields. Approximately one in eight users entered their details He did not. But we enabled MFA for his account, that'll protect him, right? Not if he taps "allow" any time anyone tries to get in! The team is currently mid-audit after someone above the board level decided to blame us for their cousin's idiocy. Family run companies are the best!
|
# ? Aug 1, 2019 02:29 |
|
Thanatosian posted:I I really can't get too angry at people for falling for some of these. The gently caress you can't! In TYOOL 2019 security is everyone's responsibility. The exact same as it was all years past. What I'm getting at is that if there aren't consequences for failing, there's no incentive to improve.
|
# ? Aug 1, 2019 04:17 |
|
nullfunction posted:The gently caress you can't! And if there are consequences for failing, there's no incentive to report. I'm not saying there shouldn't be consequences, just that zero tolerance policies are generally bad. Then again, I come at this from a very lucky place, where my user base is highly security-conscious, and we hear about most phishing attempts almost immediately.
|
# ? Aug 1, 2019 04:24 |
|
Thanatosian posted:And if there are consequences for failing, there's no incentive to report. The consequences of failing and then failing to report should be more than the consequences of "hey I did a dumb and probably shouldn't have" Ideally one is using a spearphishing service to identify folks ahead of a real breach but perfect world, blah blah
|
# ? Aug 1, 2019 04:57 |
Speaking of security, ughh I hate that "cyber" now universally means "security" "Aw drat, our internal app is getting audited by the Cyber Team" etc
|
|
# ? Aug 1, 2019 13:06 |
|
Data Graham posted:Speaking of security, ughh I hate that "cyber" now universally means "security" F/16/FL wanna talk more about my cyber audit?
|
# ? Aug 1, 2019 13:09 |
Data Graham posted:Speaking of security, ughh I hate that "cyber" now universally means "security"
|
|
# ? Aug 1, 2019 13:11 |
|
D. Ebdrup posted:What, you'd prefer when idiots tried to claim that cyber means buttcoin?
|
# ? Aug 1, 2019 13:12 |
|
Arquinsiel posted:Escalate this internally and "suggest" that your boss report it to the cops. It might be nothing, but someday when there's a sad story on the news you'll be glad you saved that email on multiple devices and to multiple cloud accounts. Yeah, that email absolutely needs to find its way into the hands of the police or FBI in the near future.
|
# ? Aug 1, 2019 13:27 |
|
you can ping a router???? - My boss
|
# ? Aug 1, 2019 13:49 |
|
Someone's head (more likely multiple people's heads) are going to roll because of a crypto incident involving multiple clients, lack of 2FA and an unreported breach. Just glad the parent company is at fault and not our company; we're just being brought in to help mitigate and assess. Assessment: poo poo is hosed, backups were wiped out prior to everything getting encrypted, and all of the backups were local so lol
|
# ? Aug 1, 2019 14:40 |
|
Dirt Road Junglist posted:A call comes in. Printer is barking about low toner, but our vendor hasn't shown up with new cartridges. Not thinking, I tell the user to gently shake the toner cartridge.
|
# ? Aug 1, 2019 14:45 |
|
|
# ? May 25, 2024 18:09 |
Renegret posted:you can ping a router???? - My boss InternetPulse doesn't even work anymore, so unless you've got access to RIPE ATLAS probes or a smokeping setup, you're SOL.
|
|
# ? Aug 1, 2019 15:10 |