Re: @RM Myers - "We decided on a global fallback"
I don't think they care, browsers are increasingly aiming at home users now IMHO.
881 publicly visible posts • joined 16 Jan 2013
Linux has it's own problem, underlying issues here are a culture of not funding and/or caring about information and cyber security.
If they did at most they'd be back up and running already and saying "we lost X amount of data, sorry ICO".
Instead they are still down, still clutching at straws and in PR damage limitation mode.
Almost guaranteed to have no patching, no contingencies, poor backups (or limited) and potentially outsourced chunk of IT.
The fact their external points were unpatched and poorly configured is a massive red flag, basically they don't test their own stuff, so that means realistically they now need to pay over the odds for someone to do all that for them, to tell them what they don't know - that they don't manage their systems or understand the risks they are running.
Watch as Senior Management don't get sacked or resign over this.
On 100% of the paper?
It's something the El'Reg readers are totally inconsistent on. They may be experts on database tech, auditing etc but the basics - go right over their heads.
They didn't even list an estimate for the number of people, that means it was all binned prior to ICO investigation, or the ICO completely failed to push them on it. Either of these is bad for the data subjects.
I 100% guarantee the average punter off the street would have been able to get some identifiable information from that pile of papers, it's not as if it was submerged in a swirling swimming pool.
and in the 90s the engineering firm I was an apprentice at didn't realise the one A0 plotter we had was business critical despite everyone using it day in, day out. Until of course it packed in during a large print run.
The solution? Should at the lowly engineering apprentice who's somehow ended up doing all of the IT for the company..
Some things never change!
That's the thing I don't get, if they just said "we're going back to paper for elections" it'd be far more secure straight away. Only issue is training staff, having premises available etc but that should be relatively easy as those machines had to be placed somewhere for the vote anyway.
US elections always seem to have issued caused by technology..
OK we need to clear this up folks.
EU directive = instructs member states to implement a law.
UK regulation (e.g. GDPR) = it is now UK law.
GDPR is a regulation, hence the name. GDPR is about UK Citizens as well as EU citizens. It applies within the UK and we have to stick with it irrespective of Brexit and until the law itself is changed.
There's no fighting off required, by law NHS England and the UK nor Scottish, Welsh etc parliaments can compel NHS Scotland, NHS Wales nor NHS NI to sell it.
Oddly enough much of these protections are in place because of the UK parliament. This is another case of NHS England taking it upon themselves, nobody is forcing them to do it.
Sometimes I open up reddit links in browser rather than on an app, I do this on purpose (cos the app doesn't display it correctly etc) and will get a prompt about opening it in the app anyway.
Thing is it's my choice to open it in browser, all they are doing here potentially is reducing that choice and tbh, I'd be more likely to uninstall the app than stop using browser occassionally.
Just move over to Windows 10. I mean the 'nix fanboys invade every Windows based article bashing it - might as well return the favour here.
Come on Billy Gates fans, get the cardigan buttoned up and get in here to bash 'nix for some bug that wil affect a tiny percentage of the user base.
My thoughts too essentially they have gained access to customer bank accounts by fraud, levied charges which were never agreed to by the other party and gathered information on people without consent.
In which way does this warrant a £30K fine? They should be shut down and the directors personally liable for compensation. What's the point in having a watchdog with no teeth?
That's my problem with VPNs being touted as a catch all "it's just more secure" particularly as one VPN vendor varies hugely from another and the end user has little if any visibility or understanding of it. They just read "VPN GOOD" and assume they are doing the right thing.
VPNs can be very helpful but it's entirely use case related. I can't remember the last time I used one since the web more or less moved to HTTPS tbh.
Corbyn wouldn't have any companies operating here worth taxing, some would be make public and the rest would leave so they didn't have to give away 1% of their shares a year for the first 10 years of a Labour government.
UK political parties (all of) are complete bonkers these days.
I think you've nailed it to be honest. If you have your patching organised already this alert won't really have made any real impact as those patches would have been applied or be applied short anyway. If you don't though, nothing short of a breach is likely to make you take notice at this point. We've been bombarded with "patch now!" alerts over recent years, if it's not sorted by now, it never will be.