Miscellaneous Tech News
-
@scottalanmiller said in Miscellaneous Tech News:
@obsolesce said in Miscellaneous Tech News:
They why post an article that has absolutely zero credit in every aspect? One that is just completely unknown? Troll post?
There is a lot of credit in it, you are just reading it backwards. You are looking for the credit to be with McAfee, but he isn't the kind of guy to get credit. The point is that the journalist uncovered him trying to scam people.
I thought the point was to hack in and take the coins. Not provide a theory that it's possible.
I still don't see anything solid on either side. The coins are still there, so we're told, and we have nothing solid showing PoC, except someone saying there may be evidence someone could have. -
@obsolesce said in Miscellaneous Tech News:
@scottalanmiller said in Miscellaneous Tech News:
@obsolesce said in Miscellaneous Tech News:
They why post an article that has absolutely zero credit in every aspect? One that is just completely unknown? Troll post?
There is a lot of credit in it, you are just reading it backwards. You are looking for the credit to be with McAfee, but he isn't the kind of guy to get credit. The point is that the journalist uncovered him trying to scam people.
I thought the point was to hack in and take the coins.
That's what John's trying to sell, yes. But that's smoke and mirrors. He can't define what the point of proving a vulnerability is. The point of security research is protection, not to take money. He made some contest so that he could make crazy claims and have some seemingly plausible excuse for the crazy things that he says. That he made up some potentially fake contest and uses it to discredit normal vulnerability reports in no way negates those reports.
Imagine if every vulnerability report from Microsoft or Linux that was found was discredited because they made up some requirement of their own for it to be real. "It's not a REAL hack if you don't put poetry on my outgoing emails and send it to my mom." As the person being hacked, making up a requirement doesn't change that you were hacked. That is what Mcafee is trying to do, make normal vulnerability reports be discredited under false pretenses.
-
@obsolesce said in Miscellaneous Tech News:
The coins are still there, so we're told...
Right. And? That there are coins there or not is totally irrelevant. No one is trying to claim John's prize. They are vulnerability researchers releasing vulnerability reports. They are white hats, not black hats. John's trying to claim that since they didn't act as black hats, there is no vulnerability. His "you have to TAKE the coins, not just break in" claim is attempting to make it that true white hats can't report him as vulnerable. And obviously, true black hats, won't.
No amount of the coins being there or not is meaningful. The things he's trying to discredit have nothing to do with the coins.
-
Think of it like a house.
I make a house. I claim that it is impossible to break into. Some security researchers come into my house and show that it's vulnerable. I then claim that clearly they can't have broken into my house because if they had, they would have murdered me in my sleep. Since I'm alive, they didn't demonstrate that my house is vulnerable.
Not solid logic. Not even loose logic. Just, insanity.
-
In case it wasn't obvious, don't use random things not meant to be secure as identifiers.
-
@scottalanmiller said in Miscellaneous Tech News:
McAfee thinks his wallet product is unhackable. If there is one thing thing guy knows nothing about, it's security.
Am I the only one seeing another LifeAlert CEO parallel here?
-
@travisdh1 said in Miscellaneous Tech News:
@scottalanmiller said in Miscellaneous Tech News:
McAfee thinks his wallet product is unhackable. If there is one thing thing guy knows nothing about, it's security.
Am I the only one seeing another LifeAlert CEO parallel here?
I had thought of exactly that.
-
LifeLock.
-
-
-
Bitfi turns to threats to try to silence demonstrations of the devices being hacked.
https://securityaffairs.co/wordpress/75821/hacking/bitfi-wallet-hacked.html
Pretty serious when they are talking about a company fronted by a man in the news constantly, suspected of murder, drug trafficking, and illegal arms possession. Things never seem to stick, but his constant run from the authorities and continuous run ins with the law suggest something pretty nefarious. When Bitfi threatens people, they mean it to be scary.
-
This article really shows why I don't like Intel and how Intel treats their customers, and highlights why closed source vendors, like Intel, are extremely dangerous - because they can force people who know about vulnerabilities to not talk about them, or worse, intentionally block fixes! Intel chips weren't just vulnerable, they were vulnerable intentionally.
https://www.fudzilla.com/news/47098-intel-blocked-kernel-fixes-on-meltdown-and-spectre
-
-
Canonical has no problem holding back features but has no hesitation about giving there software center a facelift.
-
@black3dynamite said in Miscellaneous Tech News:
Canonical has no problem holding back features but has no hesitation about giving there software center a facelift.
Yeah, they also have a LivePatch thing going on too...
-
@dbeato said in Miscellaneous Tech News:
@black3dynamite said in Miscellaneous Tech News:
Canonical has no problem holding back features but has no hesitation about giving there software center a facelift.
Yeah, they also have a LivePatch thing going on too...
Have you used the LivePatch? Isn't it only useful when it comes updating the kernel and not needing to reboot?
-
@black3dynamite said in Miscellaneous Tech News:
Canonical has no problem holding back features but has no hesitation about giving there software center a facelift.
Certain lack of focus.
-
@black3dynamite said in Miscellaneous Tech News:
@dbeato said in Miscellaneous Tech News:
@black3dynamite said in Miscellaneous Tech News:
Canonical has no problem holding back features but has no hesitation about giving there software center a facelift.
Yeah, they also have a LivePatch thing going on too...
Have you used the LivePatch? Isn't it only useful when it comes updating the kernel and not needing to reboot?
I don't use it, the idea is neat but... we need to reboot anyway.
-
@black3dynamite said in Miscellaneous Tech News:
@dbeato said in Miscellaneous Tech News:
@black3dynamite said in Miscellaneous Tech News:
Canonical has no problem holding back features but has no hesitation about giving there software center a facelift.
Yeah, they also have a LivePatch thing going on too...
Have you used the LivePatch? Isn't it only useful when it comes updating the kernel and not needing to reboot?
I have not, but you need to have an account for that. So I just update and reboot.
-