526 posts • joined 16 Jan 2013
Re: Don't bother paying the dosh
NHS England is running down the old sharing data with whoever they want, patient access via internet to their records, booking prescriptions and appointments online.
Shiny you said? It's happening very close to home, let's hope they get it right eh?
Re: The Inquiry said it takes data protection "very seriously"
The fine should automatically double if they use this statement at any point in literature made before the breach or in press releases afterwards..
Let's not forget it'd also mean directly competing with Amazons own tablets which are sold through the largest marketplace on the planet, Amazon. Which I'm *sure* won't have any biased selling tactics to minimise your tablet visibility.
Re: Also if anything touches US banks...
It's an estimated salary per year based on what he was getting per week.
Really depends what he was having to do, if it was just tidy up the forum posts and ban users then I'd see that as pretty easy going.. sounds like he was up to his neck in it though.
You do know that every department in the NHS is required to have contingency plans for when systems are down and every trust also has SLAs attached to each of it's systems which includes a degree of "acceptable" downtime e.g. 4/8 hours.
Systems going down isn't unusual, it's actually becoming less of a problem as sysadmins are able to point to Wannacry and say "we've got to do maintenance" now where as before this was damn near impossible.
I don't think many of the opt-in/out menus are legal
They make it too difficult to change options. I had one (on mobile) which required me to de-selected 150 different advertisers individually in a tiny menu as there was no "all" option. That was after going through two other buttons to get there.
It is meant to be clear, transparent and straightforward.
This is why the NHS, particularly in England is constantly spending millions on restructuring because MPs are elected and start fiddling with the existing structure to "make efficiency and rid the NHS of middle managers"
Sadly those middle managers normally remove workload from clinicians, so without them clinicians end up managing. Likewise the restructuring costs a blooming fortune due to redundency payments, building moves, changes to clinical systems (which can take ages) etc.
Then those MPs are voted out and the next lot start it all again.
NHSScotland is marginally better but only because they flip/flop between Labour and the SNP so the ideology isn't that enormously different at least on healthcare.
Atari accuses El Reg of professional trolling and making stuff up. Welp, here's the interview tape for you to decide...
So incredibly satisfying. Such a nice article, at least from my perspective.
They'll never levy a maximum penalty
They seem to think they need to build up to it, that it needs to be REALLY heinous to justify it. They should be counting down FROM the maximum when deciding penalties. What companies did prior, during and after a breach, what efforts to inform were made, justifications and documentation made etc.
If Yahoo isn't a maximum breach given the number of people involved, then what the hell is ICO?
Ah the cloud, AKA "using other peoples servers"
Unfortunately this makes you reliant on "other peoples DR plans".
Re: All the easier for the USA to grab by health records ...
Many clinical systems are moving to browser and have been for a while but there are big ones which will need a lot of work for that to happen - or potentially the NHS developing it's own if the private sector refuses to. Additionally moving to Libre office etc sound easy but discharge letters etc all have to be automated and Libre etc would have to be able to facilitate this.
Additionally Linux would have to up it's game in terms of managing permissions across thousands of PCs, shares etc. There's is no getting away from there and of course arguably the biggest problem - most ICT staff aren't trained in Linux as their entire careers have been spent learning MS OSes of various flavours.
Re: Color me astonished!
I setup a mining PC in our kitchen a couple of years ago to mine Bitcoin/litecoin over Christmas as we'd previously had extreme weather which froze our kitchen carpet (not fun in the morning!).
The mining PC prevented that. I removed it when things got warmer though. Got to love AMD (7950s) cards.
try working in schools
I remember fixing an inkjet printer which was full of rice. Turns out the kids had been making little food related collages and put them on the wall above the printer whilst wet, most of the glue and rice fell into the printer over night and nobody realised.
So I went out, took the printer to bits, cleaned it and printed off a couple of sheets to prove it was fine.
The next day we got an angry call from the headteacher about the "printer not working again, clearly your technician didn't fix it properly" So my boss having no backbone sent me out again to take the grief.
Turns out it was pasta this time.
We're the same, I do listen to the radio - that's the only reason I don't begrudge the TV tax too much.
The TV stations though are mostly garbage. BBC News has become increasingly **** as well.
Re: Bugs? What bugs?
Well they could just deny it seeing as FOI is a teethless beast with no comeback on organisations which essentially ignore it anyway.
Re: Still reeling
The people ruling on this simply don't understand the implications of it and the reasons that it shouldn't be copyrighted.
Re: It's a feature
Yeah "**** them"
Microsoft: You swore! banned!
User: Cool ,that was the whole point *****.
Re: Boats are expensive...
You'd have enough old tyres within a year to recreate Waterworld.
As a parent (and therefor the go-to expert on this)
I'd blame it on one of these factors:
1. Not reading to kids at bed time, or getting them to read to you - instead letting them play their tablet for 10 minutes whilst chilling out on your phone.
2. Too much Roblox and Minecraft, too little homework and practical skills like painting, writing and mathematics.
Actually just lazy parents. I say this as one who's guilty of this on occasion myself. It's got bugger all to do with internet speeds.. as 99.9%* of reasonable people will agree.
*Statistics made up, but so is the reason for the drop in school performance.
Holy **** you can't make this stuff up.
1. Review all Vodafone contracts, find out how many have been subcontracted without notification. Look to end all of those.
2. Find out who was in charge of the Vodafone contract here, sack them for a) not preventing sub contacting as a clause in the contract and b) not making anyone aware of it happening.
3. Tax Vodafone properly on profits made in the UK, seeing as they apparently are cost focused and were saving some pennies by sub contracting work.
4. Start the same investigation into G4S, ATOS etc.
20% is about average
Also the organisation now knows what problems it has and is under pressure to fix them. This is better than a company which is blissfully ignorant.
Yes we can point and laugh at some of the details in the report, but that's my point - they are in a report so the senior management can be held accountable for a change so things will happen. Let's turn that around on the UK organisations, how many of us are confident in our local councils, whitehall etc having all this done?
How many think senior management in those places can/will ever be held to account for the failings when there is an incident?
Re: Sharp Practice
I still remember one of my friends buying an Amiga from Dixons years ago and paying almost half again for an extended warranty I could here him repeatedly saying to the salesperson he didn't want.
It'd be nice to know if the charge PCWorld etc were abusing included any commission for staff.
the Digital arm of the UK's National Health Service
No it's not, it only covers NHS England.
Going to be honest.
In all the years I've met and worked with various Microsoft staff in the UK I don't think any of them (outside of receptionists) have been female.
I'm usually the first to sigh and say "oh women's rights/pay gap/equal pay" but come to think of it compared to most other companies it's rather odd.
Demonstration purposes, basically doing proof of concept and building business cases for whatever it is they have planned in the future.
Very early days essentially.
Who decides if it's copyright-infringing?
Anyone with a Youtube account who uploads videos will likely have had at least one attempt to pull content or screw over monetisation due to "infringing copyright" when it's actually covered under fair use.
ISP are more likely simply to block entire domains than go for a case by case method.
Not a slippery slope, more a great big cliff.
That's what I read into this and so does the market by the looks of it. There's a smell of "covering our backs" here by execs too, I still expect this ship to sink or shrink dramatically in the coming years as we see senior execs opt to retire early or jump ship before it finally goes down.
Re: 95%? dubious..
I get "up to" 34Mbps.
In reality I get 11. Which ironically is under my ISPs cap for their non-super-fast broadband.
Re: Poorly named
Ministers already have a firm grip on this legislation. In fact you could say most of them spend all day toying with it.
Re: OS vs. Directory Service
As a mechanic would say, **** cars keep me in a job.
Isn't that what users are for?
Absolutely going by every game I've seen released on PC in the past couple of years. Ironically the indy games seem to have better support and fewer game breaking bugs than the big studio guff.
Long live Rimworld (Google it, I'm not being rude, much.)
Link for download may have changed since publication, it's now: https://www.acronis.com/en-gb/personal/free-data-protection/
I'd be interested to see if anyone fancies deploying this to their estate.. so I don't have to be the guinea pig obviously
My only concern is that free tools, well they are usually not that brilliant especially when they are part of a promotion for cloud storage. I hope this is one of the few exceptions.
Like a shell company?
Government starts shell company with funds from taxpayer, shell company buys out trusted encryption system and changes the encryption in the background to suit themselves. Job done.
Re: Windows XP Patches - Norwegian Blue
Sounds like they are essentially saying "we give up with XP, we're blaming you if anything happens"..
We have looked at WER in the past, but abandoned it due to lack of usefull info, and quite frankly we have more important things to do, like keeping the medical systems running, and deploying the endless stream of MS patches, and sending responses to useless NHS Digital Alerts ....
Don't forget answering freedom of information requests from companies asking about critical infrastructure, social media etc too! Because they are such a good use of IT resources.
Surely the logical thing is to opt for the next best one "password1" or to think outside of the box and go for "letmein"??
Neither requires holding down the shift button either, bonus.
Choose as many as you fancy:
a) Lessons will be learned
b) We are busy blaming a subcontractor because that totally gets us off the hook
c) We will do everything we can do prevent this from ever happening again
Re: I hope
That all the staff that pulled this off were well rewarded.
Because frankly that's a phenomenal effort that deserves it.
Annoys me that companies don't shout about how well their IT departments recover in situations like this. If they'd had a fire etc they'd be thanking those staff who helped PUBLICLY but IT is seen as a shadow department, we can't possibly talk about those people..
Best De-Link it from the t'internet anyway.
Weak punishment but I expected nothing else.
I mean it's not like he's stolen lots of money or slagged off the judiciary on twitter!
Are you ****ing me?
.As well as paying the fine, VTech agreed to apply privacy and security requirements so that it complied with the Children's Online Privacy Protection Act (COPPA) and the FTC Act
How nice of them, so here again we have an example of a fine being required to get people to AGREE to comply with something they are meant to legally comply with. Clearly our sanctions regime isn't enough, time to consider holding executive directors personally responsible for the actions of the company they manage.
Money isn't always the solution, assigning responsibility to senior management and making them lawfully responsible might be.
Re: Not sure going straight up is safer.
PPE should always be warn.
Hardhat, safety glasses, hi-vis vest at a minimum, I would think.
I doubt it'd be able to take off with all that on it to be honest.
As I've said before we should start ICO related fines at the maximum and look for reasons to lower it, don't find any? Fine at the maximum amount.
Right now we gradually put a few quid onto the fine and start at zero, resulting in us never giving the maximum EVER and a majority being a pittance.
They should have to prove the controls they had in place before, contracts, safeguards, training etc. Then they can show how quickly they reported the incident to both the ICO and those affected, then lastly what they've done since reporting. If all of those are dire they get hit with the maximum.
It's the wrong mentality if you ask me, START at £500,000 and then reduce it to show where good practice was used, where speedy remediation was put into effect, where they notified ICO and those affected quickly.
Don't start at £0 and count up, that's the wrong way. If companies aren't fast at notifying people, don't bother to do anything quickly and didn't in the past then they should always be hit with the maximum.
Re: "blocking ... between 1 and 50 sites a year"
Looking at the action the government is taking I feel like I can say with some certainty that they haven't got a bloody clue what they are doing and this is entirely to grab headlines and allow them to say at their party conference that they are "thinking of the children"
Sadly that last line is probably a little too close to the bone for many of the older party members..
Re: Broken OS
Apple have become far too focused on the iPhone, everything else is falling by the side of the road in varying states of disrepair. The focus is off their PC offerings, has been for years and they are coasting, knowing that some will continue to buy whatever nonsense they release. I say that as someone who was repairing PowerPC logic boards back in the 90s and who hasn't owned a Mac laptop or desktop for over 20 years now but still have plenty of hands on experience of repairing friend's ones.
The iPhone is the cash cow these days.
Re: Smile, it's Tate & Lyle
It's still a negotiation, it can still happen.
Personally I agree, although I hope we're at least able to have some input into it even if it's not voting rights.
I hope they keep going
right into GDPR territory.
I moved to Apple for the SE, long time Android user but the android alternatives back at the time were very limited in number due to the trend of phones getting bigger.
I'm intending to return to Android in a year or so but the iPhone SE has been superb for me personally, just a shame it runs IOS.
Re: Fake views
Not just a google problem but companies in general who do business in the USA. Data protection laws are far more open to interpretation over there than the EU/UK. Which is why it's important we don't pay the slightest bit of attention to what they say on this.