nav search
Data Center Software Security DevOps Business Personal Tech Science Emergent Tech Bootnotes
BOFH
Lectures

* Posts by Halfmad

526 posts • joined 16 Jan 2013

Page:

Will this biz be poutine up the cash? Hackers demand dosh to not leak stolen patient records

Halfmad

Re: Don't bother paying the dosh

NHS England is running down the old sharing data with whoever they want, patient access via internet to their records, booking prescriptions and appointments online.

Shiny you said? It's happening very close to home, let's hope they get it right eh?

0
0

Brit watchdog fines child sex abuse inquiry £200k over mass email blunder

Halfmad

Re: The Inquiry said it takes data protection "very seriously"

The fine should automatically double if they use this statement at any point in literature made before the breach or in press releases afterwards..

13
1

Fork it! Google fined €4.34bn over Android, has 90 days to behave

Halfmad

Let's not forget it'd also mean directly competing with Amazons own tablets which are sold through the largest marketplace on the planet, Amazon. Which I'm *sure* won't have any biased selling tactics to minimise your tablet visibility.

25
2

Irish fella accused of being Silk Road admin 'Libertas' hauled to US

Halfmad

Re: Also if anything touches US banks...

It's an estimated salary per year based on what he was getting per week.

Really depends what he was having to do, if it was just tidy up the forum posts and ban users then I'd see that as pretty easy going.. sounds like he was up to his neck in it though.

3
0

NHS systems fell offline for 1,300+ hours over 36 months, cyber-nasties fingered – FoI study

Halfmad

You do know that every department in the NHS is required to have contingency plans for when systems are down and every trust also has SLAs attached to each of it's systems which includes a degree of "acceptable" downtime e.g. 4/8 hours.

Systems going down isn't unusual, it's actually becoming less of a problem as sysadmins are able to point to Wannacry and say "we've got to do maintenance" now where as before this was damn near impossible.

0
0

GDPR forgive us, it's been one month since you were enforced…

Halfmad

I don't think many of the opt-in/out menus are legal

They make it too difficult to change options. I had one (on mobile) which required me to de-selected 150 different advertisers individually in a tiny menu as there was no "all" option. That was after going through two other buttons to get there.

It is meant to be clear, transparent and straightforward.

68
0

Do UK.gov wonks understand sci-tech skills gap? MPs dish out Parliamentary kicking

Halfmad

Re: Long-term?

This is why the NHS, particularly in England is constantly spending millions on restructuring because MPs are elected and start fiddling with the existing structure to "make efficiency and rid the NHS of middle managers"

Sadly those middle managers normally remove workload from clinicians, so without them clinicians end up managing. Likewise the restructuring costs a blooming fortune due to redundency payments, building moves, changes to clinical systems (which can take ages) etc.

Then those MPs are voted out and the next lot start it all again.

NHSScotland is marginally better but only because they flip/flop between Labour and the SNP so the ideology isn't that enormously different at least on healthcare.

18
0

Atari accuses El Reg of professional trolling and making stuff up. Welp, here's the interview tape for you to decide...

Halfmad

Re: Hahashahahahahahaahah!

So incredibly satisfying. Such a nice article, at least from my perspective.

75
0

UK! watchdog! slaps! Yahoo! with! £250k! fine! for! 2014! data! breach!

Halfmad

They'll never levy a maximum penalty

They seem to think they need to build up to it, that it needs to be REALLY heinous to justify it. They should be counting down FROM the maximum when deciding penalties. What companies did prior, during and after a breach, what efforts to inform were made, justifications and documentation made etc.

If Yahoo isn't a maximum breach given the number of people involved, then what the hell is ICO?

5
0

HostingUK drops offline after losing Farmer vs Fibre competition

Halfmad

Re: DR

Ah the cloud, AKA "using other peoples servers"

Unfortunately this makes you reliant on "other peoples DR plans".

30
3

Brit healthcare system inks Windows 10 install pact with Microsoft

Halfmad

Re: All the easier for the USA to grab by health records ...

Many clinical systems are moving to browser and have been for a while but there are big ones which will need a lot of work for that to happen - or potentially the NHS developing it's own if the private sector refuses to. Additionally moving to Libre office etc sound easy but discharge letters etc all have to be automated and Libre etc would have to be able to facilitate this.

Additionally Linux would have to up it's game in terms of managing permissions across thousands of PCs, shares etc. There's is no getting away from there and of course arguably the biggest problem - most ICT staff aren't trained in Linux as their entire careers have been spent learning MS OSes of various flavours.

1
1

Power spike leads Chinese police to 600-machine mining rig

Halfmad

Re: Color me astonished!

I setup a mining PC in our kitchen a couple of years ago to mine Bitcoin/litecoin over Christmas as we'd previously had extreme weather which froze our kitchen carpet (not fun in the morning!).

The mining PC prevented that. I removed it when things got warmer though. Got to love AMD (7950s) cards.

0
0

Boss sent overpaid IT know-nothings home – until an ON switch proved elusive

Halfmad

try working in schools

I remember fixing an inkjet printer which was full of rice. Turns out the kids had been making little food related collages and put them on the wall above the printer whilst wet, most of the glue and rice fell into the printer over night and nobody realised.

So I went out, took the printer to bits, cleaned it and printed off a couple of sheets to prove it was fine.

The next day we got an angry call from the headteacher about the "printer not working again, clearly your technician didn't fix it properly" So my boss having no backbone sent me out again to take the grief.

Turns out it was pasta this time.

55
0

BBC extends Capita Audience Services contract to 25 years

Halfmad

We're the same, I do listen to the radio - that's the only reason I don't begrudge the TV tax too much.

The TV stations though are mostly garbage. BBC News has become increasingly **** as well.

39
1

Accenture, Capgemini, Deloitte creating app to register 3m EU nationals living in Brexit Britain

Halfmad

Re: Bugs? What bugs?

Well they could just deny it seeing as FOI is a teethless beast with no comeback on organisations which essentially ignore it anyway.

3
0

Java-aaaargh! Google faces $9bn copyright bill after Oracle scores 'fair use' court appeal win

Halfmad

Re: Still reeling

The people ruling on this simply don't understand the implications of it and the reasons that it shouldn't be copyrighted.

1
0

What the @#$%&!? Microsoft bans nudity, swearing in Skype, emails, Office 365 docs

Halfmad

Re: It's a feature

Yeah "**** them"

Microsoft: You swore! banned!

User: Cool ,that was the whole point *****.

23
1

Skip-wrecked! Boat full o' rubbish scuppered in Brit residential street

Halfmad

Re: Boats are expensive...

You'd have enough old tyres within a year to recreate Waterworld.

6
0

Parents blame brats' slipping school grades on crap internet speeds

Halfmad

As a parent (and therefor the go-to expert on this)

I'd blame it on one of these factors:

1. Not reading to kids at bed time, or getting them to read to you - instead letting them play their tablet for 10 minutes whilst chilling out on your phone.

2. Too much Roblox and Minecraft, too little homework and practical skills like painting, writing and mathematics.

3. ...

Actually just lazy parents. I say this as one who's guilty of this on occasion myself. It's got bugger all to do with internet speeds.. as 99.9%* of reasonable people will agree.

*Statistics made up, but so is the reason for the drop in school performance.

11
2

Manchester Arena attack: National Mutual Aid Telephony system failed

Halfmad
Facepalm

Holy **** you can't make this stuff up.

OK firstly.

1. Review all Vodafone contracts, find out how many have been subcontracted without notification. Look to end all of those.

2. Find out who was in charge of the Vodafone contract here, sack them for a) not preventing sub contacting as a clause in the contract and b) not making anyone aware of it happening.

3. Tax Vodafone properly on profits made in the UK, seeing as they apparently are cost focused and were saving some pennies by sub contracting work.

4. Start the same investigation into G4S, ATOS etc.

34
0

1 in 5 Michigan state staffers fail phishing test but that's OK apparently

Halfmad

20% is about average

Also the organisation now knows what problems it has and is under pressure to fix them. This is better than a company which is blissfully ignorant.

Yes we can point and laugh at some of the details in the report, but that's my point - they are in a report so the senior management can be held accountable for a change so things will happen. Let's turn that around on the UK organisations, how many of us are confident in our local councils, whitehall etc having all this done?

How many think senior management in those places can/will ever be held to account for the failings when there is an incident?

1
0

Brit retailer Currys PC World says sorry for Know How scam

Halfmad

Re: Sharp Practice

I still remember one of my friends buying an Amiga from Dixons years ago and paying almost half again for an extended warranty I could here him repeatedly saying to the salesperson he didn't want.

It'd be nice to know if the charge PCWorld etc were abusing included any commission for staff.

41
3

NHS Digital heads accused of being 'suppliers', not 'custodians' of UK patient data

Halfmad

the Digital arm of the UK's National Health Service

No it's not, it only covers NHS England.

18
0

Ex-staffers slam Microsoft's 'lackluster' response to stacks of internal complaints

Halfmad

Going to be honest.

In all the years I've met and worked with various Microsoft staff in the UK I don't think any of them (outside of receptionists) have been female.

I'm usually the first to sigh and say "oh women's rights/pay gap/equal pay" but come to think of it compared to most other companies it's rather odd.

1
3

Brit military boffins buy airtime on HD eye-in-the-sky video satellite

Halfmad

Demonstration purposes, basically doing proof of concept and building business cases for whatever it is they have planned in the future.

Very early days essentially.

0
0

Should ISPs pay to block pirate websites? Supreme Court to decide

Halfmad

Who decides if it's copyright-infringing?

Anyone with a Youtube account who uploads videos will likely have had at least one attempt to pull content or screw over monetisation due to "infringing copyright" when it's actually covered under fair use.

ISP are more likely simply to block entire domains than go for a case by case method.

Not a slippery slope, more a great big cliff.

26
0

Just can't catch a break, can ya, Capita? Shares tumble 40% amid yet another profit warning

Halfmad

Panic stations!

That's what I read into this and so does the market by the looks of it. There's a smell of "covering our backs" here by execs too, I still expect this ship to sink or shrink dramatically in the coming years as we see senior execs opt to retire early or jump ship before it finally goes down.

3
0

Well done, UK.gov. You hit superfast broadband target (by handing almost the entire project to BT)

Halfmad

Re: 95%? dubious..

I get "up to" 34Mbps.

In reality I get 11. Which ironically is under my ISPs cap for their non-super-fast broadband.

0
0

UK infrastructure firms to face £17m fine if their cybersecurity sucks

Halfmad
Trollface

Re: Poorly named

Ministers already have a firm grip on this legislation. In fact you could say most of them spend all day toying with it.

2
0

Maybe you should've stuck with NetWare: Hijackers can bypass Active Directory controls

Halfmad

Re: OS vs. Directory Service

As a mechanic would say, **** cars keep me in a job.

9
0

Ever wondered why tech products fail so frequently? No, me neither

Halfmad

Isn't that what users are for?

Absolutely going by every game I've seen released on PC in the past couple of years. Ironically the indy games seem to have better support and fewer game breaking bugs than the big studio guff.

Long live Rimworld (Google it, I'm not being rude, much.)

6
0

Acronis: Ransomware protection! Get yer free ransomware protection!

Halfmad
Windows

Link for download may have changed since publication, it's now: https://www.acronis.com/en-gb/personal/free-data-protection/

I'd be interested to see if anyone fancies deploying this to their estate.. so I don't have to be the guinea pig obviously

My only concern is that free tools, well they are usually not that brilliant especially when they are part of a promotion for cloud storage. I hope this is one of the few exceptions.

6
0

Here we go again... UK Prime Minister urges nerds to come up with magic crypto backdoors

Halfmad

Like a shell company?

Government starts shell company with funds from taxpayer, shell company buys out trusted encryption system and changes the encryption in the background to suit themselves. Job done.

2
1

NHS deploys Microsoft threat detection service on just 30,000 devices

Halfmad

Re: Windows XP Patches - Norwegian Blue

Sounds like they are essentially saying "we give up with XP, we're blaming you if anything happens"..

1
0
Halfmad

We have looked at WER in the past, but abandoned it due to lack of usefull info, and quite frankly we have more important things to do, like keeping the medical systems running, and deploying the endless stream of MS patches, and sending responses to useless NHS Digital Alerts ....

Don't forget answering freedom of information requests from companies asking about critical infrastructure, social media etc too! Because they are such a good use of IT resources.

0
0

Bell Canada Canucks it up again: Second hack in just eight months

Halfmad

p@$$w0rd. ???

Surely the logical thing is to opt for the next best one "password1" or to think outside of the box and go for "letmein"??

Neither requires holding down the shift button either, bonus.

1
0
Halfmad

Pop quiz!

Choose as many as you fancy:

a) Lessons will be learned

b) We are busy blaming a subcontractor because that totally gets us off the hook

c) We will do everything we can do prevent this from ever happening again

1
0

IT 'heroes' saved Maersk from NotPetya with ten-day reinstallation bliz

Halfmad

Re: I hope

That all the staff that pulled this off were well rewarded.

Because frankly that's a phenomenal effort that deserves it.

Annoys me that companies don't shout about how well their IT departments recover in situations like this. If they'd had a fire etc they'd be thanking those staff who helped PUBLICLY but IT is seen as a shadow department, we can't possibly talk about those people..

33
1

Fresh botnet recruiting routers with weak credentials

Halfmad

Re: D-Link

Best De-Link it from the t'internet anyway.

3
0

Scumbag who tweeted vulnerable adults' details is hauled into court

Halfmad
Mushroom

Weak punishment but I expected nothing else.

I mean it's not like he's stolen lots of money or slagged off the judiciary on twitter!

10
0

VTech fondleslabs for kids 'still vulnerable' despite sanctions

Halfmad

Are you ****ing me?

.As well as paying the fine, VTech agreed to apply privacy and security requirements so that it complied with the Children's Online Privacy Protection Act (COPPA) and the FTC Act

How nice of them, so here again we have an example of a fine being required to get people to AGREE to comply with something they are meant to legally comply with. Clearly our sanctions regime isn't enough, time to consider holding executive directors personally responsible for the actions of the company they manage.

Money isn't always the solution, assigning responsibility to senior management and making them lawfully responsible might be.

7
0

Drone crashes after operator failed to spot extra building site crane

Halfmad
Trollface

Re: Not sure going straight up is safer.

PPE should always be warn.

Hardhat, safety glasses, hi-vis vest at a minimum, I would think.

I doubt it'd be able to take off with all that on it to be honest.

4
0

UK watchdog dishes out fines totaling £600k to four spam-spewers

Halfmad

Re: Good

As I've said before we should start ICO related fines at the maximum and look for reasons to lower it, don't find any? Fine at the maximum amount.

Right now we gradually put a few quid onto the fine and start at zero, resulting in us never giving the maximum EVER and a majority being a pittance.

They should have to prove the controls they had in place before, contracts, safeguards, training etc. Then they can show how quickly they reported the incident to both the ICO and those affected, then lastly what they've done since reporting. If all of those are dire they get hit with the maximum.

19
0

Carphone Warehouse cops £400k fine after hack exposed 3 MEEELLION folks’ data

Halfmad

Re: GDPR

It's the wrong mentality if you ask me, START at £500,000 and then reduce it to show where good practice was used, where speedy remediation was put into effect, where they notified ICO and those affected quickly.

Don't start at £0 and count up, that's the wrong way. If companies aren't fast at notifying people, don't bother to do anything quickly and didn't in the past then they should always be hit with the maximum.

12
0

UK.gov admits porn age checks could harm small ISPs and encourage risky online behaviour

Halfmad
Trollface

Re: "blocking ... between 1 and 50 sites a year"

Looking at the action the government is taking I feel like I can say with some certainty that they haven't got a bloody clue what they are doing and this is entirely to grab headlines and allow them to say at their party conference that they are "thinking of the children"

Sadly that last line is probably a little too close to the bone for many of the older party members..

49
2

Apple macOS so secure some apps can't be easily deleted

Halfmad

Re: Broken OS

Apple have become far too focused on the iPhone, everything else is falling by the side of the road in varying states of disrepair. The focus is off their PC offerings, has been for years and they are coasting, knowing that some will continue to buy whatever nonsense they release. I say that as someone who was repairing PowerPC logic boards back in the 90s and who hasn't owned a Mac laptop or desktop for over 20 years now but still have plenty of hands on experience of repairing friend's ones.

The iPhone is the cash cow these days.

11
0

Big tech wants the ICO on EU data protection board in Brexit fallout

Halfmad

Re: Smile, it's Tate & Lyle

It's still a negotiation, it can still happen.

Personally I agree, although I hope we're at least able to have some input into it even if it's not voting rights.

0
1

156K spam text-sending firm to ICO: It wasn't us, Commissioner

Halfmad

I hope they keep going

right into GDPR territory.

8
1

Remember the 'budget' iPhone SE? Apple plans an update – reports

Halfmad

I moved to Apple for the SE, long time Android user but the android alternatives back at the time were very limited in number due to the trend of phones getting bigger.

I'm intending to return to Android in a year or so but the iPhone SE has been superb for me personally, just a shame it runs IOS.

2
4

Google says broader right to be forgotten is 'serious assault' on freedom

Halfmad

Re: Fake views

Not just a google problem but companies in general who do business in the USA. Data protection laws are far more open to interpretation over there than the EU/UK. Which is why it's important we don't pay the slightest bit of attention to what they say on this.

6
1

Page:

The Register - Independent news and views for the tech community. Part of Situation Publishing