|
Proud Christian Mom posted:Yes just like any threat you can mitigate a great number of risks but nothing is absolute so your plan better include what to do when you're hit because you will be at some point. Definitely. Automated containment and response (such as issuing an 802.1X change of authorization upon detection for quarantine) is becoming a big selling point right now.
|
#
¿
May 12, 2017 19:42
|
|
|
|
| # ¿ May 12, 2024 22:20 |
|
|
They aren't gonna give them poo poo unless they're subpoenaed.
|
|
#
¿
May 12, 2017 22:30
|
|
|
Oct posted:Companies are spending shitloads on tools like this, without any staff that knows how the gently caress to actually use them (actually, this is true for any infosec budget spending lately). It's completely nuts. Even large, well-funded enterprises I've worked with are prone to it. The EDR tech is super cool (and I really do dig the host isolation features) when it's deployed correctly, but it's still used in a sort of reactive manner by most companies, just struggling to play whack-a-mole with monitoring events. It's nice to not be completely dependent on finding someone from the helldesk in a remote office and tell them to unplug someone's network port asap (and pray they pull the right one) though. So, great solutions but the implementation tends to be lackluster. Kudos to the companies that do it well, though. Pretty much. We sell consulting services to integrate everything, but we aren't a MSP so we aren't leaving people on site or providing remote support unless they pay us a lot. 75% of my customers (most of whom are Federal) are woefully unequipped to maintain an advanced security infrastructure; most of them are normal network engineers or even just systems administrators that had this stuff thrown on them by their management. To be honest, though, this is where the automation piece becomes even more essential, because someone who's worried about pushing out GPOs and updates in SCCM every day probably isn't going to be too focused on looking at PCAPs. I think the Security as a Service model will continue to pick up steam, even in the federal sector, because there's just such a massive shortage of security people and maintaining a full SOC with incident handlers, reverse engineering/forensics specialists, and security engineers is way too expensive. quote:One of the bigger challenges will be moving from a narrower focus on things like AppLocker and other application whitelisting solutions to impair the malware executables' ability to run, and also having to focus on the long-forgotten worm mitigations we stopped thinking about after Conficker mostly died off, and looking at more granular network segmentation, analyzing protocols and services in use, how shares are utilized, etc. Disabling SMBv1 isn't going to be doable for everyone for ~reasons~ but should be considered for most portions of the network, for example (and I'm totally generalizing here). That helps prevent the self-propagation aspect for the most part. After that, you're back to the usual ransomware bullshit: dealing with malicious documents, lovely email gateway configurations, and easily-misled users. Certain products (Cisco AMP, Palo Alto TRAPS) can flat out prevent ransomware from executing once they're on the target machine. These are just now starting to gain mainstream adoption in larger enterprises, though.
|
|
#
¿
May 13, 2017 03:34
|
|
|
Oct posted:Thing is, I've seen all of these products fail on ransomware more times than I can count. They are still awesome for response, and they're not bad by any means, but I don't trust them more than traditional AV for prevention (but I love being able to trace back infection vectors for root cause analysis with these newer solutions). I still see better success in that area by either mitigating the infection vectors, or more extensive endpoint hardening. I suppose I'm a big proponent of using a scalable, manageable solution that is flexible, but backing it up with low- or no-cost mechanisms too. No doubt. It's kind of depressing and has made me somewhat cynical, because at the end of the day it's really just a multimillion dollar game of whackamole at most places. You poked fun at AI and machine learning earlier, but I really do think that's the only possible way we can actually contain this kind of poo poo in the future: products that can look at what's happening in the abstract and then discern what's normal from what's not. Not just a NBAR solution, but a platform that can act like an actual security analyst. We're still a ways of from that as an industry, since we're just getting around to finally mastering basic stuff like speech and facial recognition. psydude fucked around with this message at 04:35 on May 13, 2017 |
|
#
¿
May 13, 2017 04:31
|
|
|
McNally posted:Is there anything in Lynchburg worth visiting? 'Cause goddamn, I think it might almost be worth a drive out there to troll those fucks. No. It's in the corner of Virginia where there's literally nothing of use.
|
|
#
¿
May 13, 2017 21:13
|
|
|
Just think of how much someone has to suck to look at all of the other universities in Virginia and say, "I want to go to Liberty."
|
|
#
¿
May 13, 2017 21:52
|
|
|
Why are defending Liberty University? I'm cool with most other conservative religious universities (I mean they rank just above ITT tech in a throw resume in the trash sense), but gently caress Jerry Falwell
|
|
#
¿
May 14, 2017 03:44
|
|
|
Yeah, I'll wait until I see it on an actual news source.
|
|
#
¿
May 14, 2017 04:58
|
|
|
Hey where are Godholio and IYAAYAS to act all indignant about this.
|
|
#
¿
May 15, 2017 23:27
|
|
|
It looks like they photoshopped Simon Pegg's face over Pooty's head.
|
|
#
¿
May 16, 2017 02:19
|
|
|
Reverand maynard posted:I don't think godholio ever defended trump he just didn't like Hillary IDK I just thought for someone so interested in HER EMAILS he would have been thrice as furious about this.
|
|
#
¿
May 16, 2017 03:56
|
|
|
Godholio posted:I don't know how to explain why Trump gets away with everything, it's utterly baffling. I'm curious because I think you're the voter that Democrats need to reach most: someone who didn't vote for Hillary but who loathes and is confused by Trump. Like, what do people who wanted to Trump That Bitch because of her e-mails think about this? In an objective, retrospective sense (I absolutely do not mean to be condescending), was it worth it?
|
|
#
¿
May 16, 2017 04:17
|
|
|
So once again Trump basically contradicted all of the damage control his communications office did.
|
|
#
¿
May 16, 2017 12:20
|
|
|
BUG JUG posted:i've only interacted with a georgian who drove tanks for the soviets, and then after the cold war -- and some bumming around china i guess? -- came and drove tanks for the US Army. Dude must've just really liked driving tanks.
|
|
#
¿
May 17, 2017 21:37
|
|
|
Holy poo poo.
|
|
#
¿
May 18, 2017 00:13
|
|
|
Two Finger posted:I'm facing a ban if trump gets the boot For the good of the world, I hope to wake up one day (or come back from a run, since literally every insane loving thing over the past week and a half has happened while I've been on a run) to see you banned.
|
|
#
¿
May 18, 2017 03:39
|
|
|
Genocide Tendency posted:Do you eat a ban only in impeachment and conviction? Or if he resigns is it You really think Trump will resign? He can't even let go of having a smaller crowd than Obama and wants to have one more scoop of ice cream than everyone else. The petulant little poo poo will go down in flames, screaming about how horribly he's been mistreated the entire way.
|
|
#
¿
May 18, 2017 04:09
|
|
?
|
Genocide Tendency posted:Both of you are missing something important. Trump has likely committed crimes. Crimes that he would go to jail for a very long time for. So..... It's a no win situation for Republicans in that case. They got curb stomped in the 1976 elections owing partly to Nixon's pardon. Stagflation played into it as well, and we're enduring a similar event of flat wage growth despite economic growth.
|
|
#
¿
May 18, 2017 12:15
|
|
|
tastefully arranged labia posted:This week's news cycle is loving killing my index funds. Investors are mad that Trump isn't going to be able to bring us back to the Gilded Age. I'm mostly in tech stocks, so they're doing fine, but my mutual funds definitely took a hit.
|
|
#
¿
May 18, 2017 21:19
|
|
|
MazelTovCocktail posted:The game deserved a sequel so much. To think they all went on to do The Division. The multiplayer owned so hard. And the single player was narrated by Alec loving Baldwin. I haven't found a game like it since.
|
|
#
¿
May 18, 2017 23:12
|
|
|
joat mon posted:If he wasn't dead, Philip Seymour Hoffman. He could also play Bannon. I almost posted exactly this earlier.
|
|
#
¿
May 19, 2017 00:59
|
|
|
M_Gargantua posted:He's not used to her standing up 
|
|
#
¿
May 19, 2017 03:06
|
|
|
If someone attacked me wearing a suit and tie, I can think of the very first thing I'd grab.
|
|
#
¿
May 19, 2017 03:13
|
|
|
If there was any time for an excessive use of police force, it was definitely then.
|
|
#
¿
May 19, 2017 03:16
|
|
|
not caring here posted:That only works if they fight back for it. Or they aren't wearing those clip on ties. I doubt a Turkish mobster would be caught dead in a clip-on tie, safety be damned.
|
|
#
¿
May 19, 2017 03:26
|
|
|
Net neutrality is only really going to affect residential internet. There's enough competition in the commercial carrier market to keep it at bay through the use of service level agreements. Of course, that won't stop e commerce businesses or anyone who sells a service to residential customers from getting hosed by the tolls those customers have to pay.
|
|
#
¿
May 19, 2017 13:26
|
|
|
It gets better: it's actually an Iranian proxy unit, so no doubt some members of the Quds force got atomized.
|
|
#
¿
May 19, 2017 15:17
|
|
|
Mr. Nice! posted:Rosenstein's prepared remarks given to the House today. He made clear to note that his letter about Comey was not drafted in order to be, nor is it it sufficient for a for-cause dismissal. Lol. Just threw Donnie under the bus.
|
|
#
¿
May 19, 2017 17:13
|
|
|
Comey was a dipshit that deserved to be fired, but not for the reasons that Trump actually fired him.
|
|
#
¿
May 19, 2017 22:08
|
|
|
Godholio posted:Strike variants have been shot down by surface-to-air systems before. The F-15 is undefeated against other airplanes. Ah yes, all of those air to air skirmishes we've gotten in since Vietnam.
|
|
#
¿
May 20, 2017 03:46
|
|
|
Godholio posted:Like Desert Storm, Allied Force, and the dozen or so Israeli engagements? Yeah. Something like 108-0. Shooting down surplus Korean war MiGs while they're taking off doesn't count. Has the F-15 ever gone up against a fighter from the same generation?
|
|
#
¿
May 20, 2017 03:51
|
|
|
TBeats posted:What if Donnie doesn't get impeached but everyone around him goes to jail and he gets stuck with a bunch of people that tell him to gently caress off and he spends the rest of his presidency pouting? Most likely outcome is that this takes up all of his and Republicans' time until the 2018 elections when they lose the house and possibly the Senate (bit less likely looking at the legislative map). Democrats form a select committee to badger and humiliate Donnie more, and then he loses reelection in 2020, along with Republicans potentially losing the Senate. Democrats really need to focus on taking back the house and winning state legislatures.
|
|
#
¿
May 20, 2017 13:29
|
|
|
In theory, arming the Saudis should reduce the need for us to stick our dick in the crazy that is the middle east. In practice, we've gleefully done it anyway, so I'm not really sure what benefit we're getting other than making MIC investors' portfolios tick up a couple of points.
|
|
#
¿
May 20, 2017 15:50
|
|
|
Yeah they're quite heavily involved there and have been taking some pretty substantial losses.
|
|
#
¿
May 20, 2017 16:17
|
|
|
BTW, documents aren't covered under the 5th amendment. The Senate can still vote to hold Flynn in contempt. https://www.washingtonpost.com/news...m=.a5e3b56a4751
|
|
#
¿
May 22, 2017 20:43
|
|
|
Flynn lied on his SF-86. So how many crimes are we up to now? https://mobile.nytimes.com/2017/05/22/us/politics/michael-flynn-fifth-amendment-russia-senate.html?referer=
|
|
#
¿
May 22, 2017 23:59
|
|
|
Yes, they should totally do that. It worked out great for them in 1976.
|
|
#
¿
May 23, 2017 00:17
|
|
|
Trump supporters purportedly discussing the construction of a Great White wall against Radical Islamic Terrorism.
|
|
#
¿
May 23, 2017 01:24
|
|
|
Happiness is eating a soft pretzel the size of a small child and while drinking German beer out of a glass that is also the size of a small child. e: And then getting a donner box for 5 euro later on after you're trashed
|
|
#
¿
May 23, 2017 21:18
|
|
|
|
| # ¿ May 12, 2024 22:20 |
|
|
Reverand maynard posted:I'm pretty sure his lawyers are the only people with reliable pay checks. Hard to stiff people that can actually fight back.
|
|
#
¿
May 24, 2017 04:02
|
|