|
yeah, teens found about it, mayhem 
There is also the story of a professor doing a security project. We wondered about ATMs. Doing a quick google, he came across the operating manuals of several ATM makers that dominated the market. In the manual was the default maintenance password. Out he went, followed instructions, and he was in maintenance mode for 10 of 10 test atms. Reading further, he redefined the value of each bin of bills to $1. Whereupon he withdrew "$500" dollars - in 20s. He took the 10k into the branch and asked to see the manager....
About 2 days later, you could not find the manual online unless you knew where to look.
Charlie Gilley
“They who can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety.” BF, 1759
Has never been more appropriate.
|
|
|
|
|
charlieg wrote: About 2 days later, you could not find the manual online unless you knew where to look.
And probably they thought it was enough done to fix it.
M.D.V. 
If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about?
Help me to understand what I'm saying, and I'll explain it better to you
Rating helpful answers is nice, but saying thanks can be even nicer.
|
|
|
|
|
|
“Where to look…”
The Internet Way Back Machine?
|
|
|
|
|
charlieg wrote: He took the 10k into the branch and asked to see the manager....
...and I'm better he got himself in trouble for pointing out the flaw. Happens all the time. Happened to me when I was a kid in high school (although nothing as high-stake as this)
|
|
|
|
|
Also reminds me of someone trying to remove some copyrighted material from a github repo… just go back in the history!
|
|
|
|
|
Yes but it's their data we are not their mothers
In a closed society where everybody's guilty, the only crime is getting caught. In a world of thieves, the only final sin is stupidity. - Hunter S Thompson - RIP
|
|
|
|
|
Sure.
And that's exactly how those big hosting companies get away with it, time and again. It's never their fault.
|
|
|
|
|
Cp-Coder wrote: I will never get in a position where cloud failures can harm me.
If you have any amount of money in a bank, I'm afraid I have bad news for ya...
|
|
|
|
|
One of the reasons I'm no longer working for a bank is because "someone up there" had the bright idea of putting all of our stuff in a cloud. I got out a year ago. Security concerns aside, I tried to warn my management that performance would be even worse -- our daily processing was already taking fifteen hours to complete, on physical servers in our datacenter.
The inmates are running the asylum.
|
|
|
|
|
There are many more reasons, like prop trading, that can get you into trouble if you have a lot of your money in a bank. You're an unsecured creditor of the bank, and many countries have passed legislation saying that your money can be used to bail it out if it gets into trouble. Even if you use a responsible bank, you'll end up paying, in the form of either taxes or money printing, to bail out the banks that are "too big to fail".
|
|
|
|
|
It does the soul good to see you guys talk about how crooked banking is. 1,000% agree btw... Fractional reserve lending is the bane of our economies.
Jeremy Falcon
|
|
|
|
|
It was former Swiss law that the principals of a bank were liable, to the full extent of their personal wealth, for making depositors whole if the bank got into trouble. That law needs to return. So does the US Coin Act of 1793, under which the penalty for debauching the currency was death.
|
|
|
|
|
Amen. There are more banksters that deserve stringing up than muderers. Most murders are "spur of the moment" things, while the bankksters do it deliberately, year after year.
Freedom is the freedom to say that two plus two make four. If that is granted, all else follows.
-- 6079 Smith W.
|
|
|
|
|
theft is the loss of time and even loss of life. I agree.
Charlie Gilley
“They who can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety.” BF, 1759
Has never been more appropriate.
|
|
|
|
|
Jeremy Falcon wrote: how crooked banking is. 1,000% agree
I remember a discussion between me and one of my workers over two decades back.
When he was looking at his investment returns, and compared with his bank's yearly profits, he went to his bank manager and said "I want to invest in what you're investing in"...
|
|
|
|
|
I haven't and don't. Probably won't.
Trouble is that it's your data, and you are handing it over to people you don't know who almost certainly pay their staff as little as possible to manage it. What is their security really like? How often do they really backup your data? What are the chances they will still be in business in five years? Or still in the Cloud hosting business, at least?
What happens if ransomware gets into the cloud storage? Just the thought of that should send chills down your spine ...
Just look at stuff that has been trawled out of cloud storage already and you have to wonder why anyone would trust it ... we aren't talking small companies who might not understand the risks: Yahoo, Microsoft, Target, Twatter / X, Farcebook / Meta, LinkedIn, Dropbox, Uber, Marriott International, Equifax, Capital One, iCloud ...
"I have no idea what I did, but I'm taking full credit for it." - ThisOldTony
"Common sense is so rare these days, it should be classified as a super power" - Random T-shirt
AntiTwitter: @DalekDave is now a follower!
|
|
|
|
|
u cant do much the now a days.. but this is the worse thing ever IT people need to stop pushing such crap into production...
Caveat Emptor.
"Progress doesn't come from early risers – progress is made by lazy men looking for easier ways to do things." Lazarus Long
|
|
|
|
|
Have heard that solutions to some nonlinear differential equations are extremely sensitive to initial conditions. A small delta in the initial conditions causes a drastic change in response.
Never thought that this could happen in code. A small (?) update in a third-party software causes massive outage.
The term SOUP (Software of Unknown Provenance) usually used in medical software, now perhaps applies to the suite of Microsoft products.
|
|
|
|
|
xkcd: Dependency[^]
Nothing else to add.
M.D.V.
If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about?
Help me to understand what I'm saying, and I'll explain it better to you
Rating helpful answers is nice, but saying thanks can be even nicer.
|
|
|
|
|
I had this exact thought both when the cloudstike issue happened last week and while reading this discussion.
To err is human to really elephant it up you need a computer
|
|
|
|
|
First, let me repeat a mantra I’ve heard many years ago: “there is no frigging cloud; it’s someone’s else computer”.
Second, from the superficial reading of news (I’m traveling now), the recent outage was not an issue with the “cloud” but with an antivirus update that went south. It affected equally physical and virtual machines, so let’s not get all worked up about the big bad “cloud”.
Mircea
|
|
|
|
|
you are very generous. I hope you aren't on an airplane.
"It affected equally physical and virtual machines"
Are you serious? Don't get worked up about "the big bad cloud."
I don't know much about azure (other than it's just another more modern system of spinning up a virtual server). Can someone tell me if the core Azure server is running Cloudstink? Ponder that.
Charlie Gilley
“They who can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety.” BF, 1759
Has never been more appropriate.
|
|
|
|
|
Let me assure you that no plane will fall out of the sky due to this bug. Some may not takeoff because passengers couldn’t check in but I’m not due to fly for a week or so.
Mircea
|
|
|
|
|
I'm certain they won't fall out of the sky, but here in the United States the FAA was having issues communicating with a/c in the air due to this issue. It boggles my mind. Of course, these days, the level of information from journalists is borderline cow dung but... I would not put it past our federal government to have put something like this in place. I have experience in this area...
Charlie Gilley
“They who can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety.” BF, 1759
Has never been more appropriate.
|
|
|
|
General 
News 
Suggestion 
Question 
Bug 
Answer 
Joke 
Praise 
Rant 
Admin 
Submit an article or tip
