-
The scheduled forum maintenance has now been completed. If you spot any issues, please report them here in this thread. Thank you!
- Dec 18, 2023
- 531
- 428
- 760
Does this answer your hopes?
No. This is also a good reason not to encode an entire disk with Bitlocker.
vanadiel007
Distinguished
- Oct 21, 2015
- 382
- 378
- 19,060
How secure do you feel if they cannot protect their own software from a programming mistake that causes global mayhem?
This error on their part has caused more money and downtime than any cyber attack would. They already call this the largest IT outage in history...
vanadiel007
Distinguished
- Oct 21, 2015
- 382
- 378
- 19,060
I would not feel "secure" with a solution that crashed my whole network and took down half of the world...
- Dec 18, 2023
- 531
- 428
- 760
That's OK -- it's not you who should feel secure, it's the company's management who has outsourced security to a 3rd party. And they will feel absolutely secure when they get called in front of their shareholders since they "followed best practices" and paid for someone else to take the blame.
It's all a security theater, and other companies trust you based on who you work with, not on how you work.
Thank goodness I don't have to use those anymore because of phones. The Delta app also wasn't working right this morning, but the website was fine.
Edit: 2nd Delta flight cancelled as well. They might have something on Monday, but my return from NY was on Tuesday. About half of their stuff on the board here is cancelled with most of the rest delayed for now.
We didn't have a flight attendant available was the reason.
Last edited:
vanadiel007
Distinguished
- Oct 21, 2015
- 382
- 378
- 19,060
I disagree with that. I should feel secure when my data is stored by a bank or an airline.
Obviously that is not the case here. Case in point is the latest AT&T data security breach.
It's really time we out these companies with poor practices so we know who to stay away from.
- Mar 16, 2013
- 176,000
- 20,169
- 184,590
That list is LONG.
Mercedes, Yahoo, Apple, Prudential, Tesla, just to name a few.
And some 'companies' you have no option to stay away from. Experian and NHS, for instance.
vanadiel007
Distinguished
- Oct 21, 2015
- 382
- 378
- 19,060
Is it not terrible that they are so reliant on security software from a single vendor that does not even secure them from a global outage?
- Mar 16, 2013
- 176,000
- 20,169
- 184,590
Not getting your question.
Not all companies that have had a major data breach rely on the same single source for security.
The causes and reasons behind these breaches are many and varied.
-Fran-
Glorious
- May 3, 2007
- 9,268
- 2,665
- 44,640
No one will disagree that "single points of failure" are terrible by nature and design.
If anyone chooses to implement something while well aware of it, then they have to justify it very well.
In this particular case... Follow the money, I guess.
Regards.
If anyone chooses to implement something while well aware of it, then they have to justify it very well.
In this particular case... Follow the money, I guess.
Regards.
RyzenNoob
Reputable
- Jul 13, 2020
- 404
- 28
- 4,790
Be careful there was a microsoft one that happened almost at the same time.
The big one is the crowdstrike one. I am sure a huge number of servers were affected but it also was a massive number of end client machines. Many companies use crowdstrike to secure the laptops people use to work at home. They partially use crowdstrike to know if the employee installed some software...it seem they can also use this software to track employees usage.
The thing that makes this even a larger issue is many companies also used bitlocker in case the machines were stolen. Many of these laptops have to be physically taken into the office....or worse shipped in.
There were example on tv where they showed the technicians working on thing like airline kiosk. These are not really servers they are client that are used to access the airline network. They need them extremely secure because they are in a open airport where anyone can have physical access. When the machine got corrupted all the extra security greatly increased the recovery time. I suspect this will not be completely resolved for many days if not weeks. Too many device need to be touched.
Has anyone come up with a bootable USB that has admin access to the Windows directory on the boot drive? On all of my machines I had to know the local admin pwd before I could get the CMD to launch in Safe Mode. Many machines were built many years ago before me but thankfully I had the local admin and pwd. If I did not, these machines would be bricked.
I'm disappointed that all of these "simple instruction" posts don't consider that best practice is to not have the main user be the local admin.
I'm guessing that a dos usb boot disk would honor the admin rights imposed on C:\windows ... but maybe a Linux boot USB might be able to wiggle in just to delete the one file you need to get rid of to boot off the HD.
I'm disappointed that all of these "simple instruction" posts don't consider that best practice is to not have the main user be the local admin.
I'm guessing that a dos usb boot disk would honor the admin rights imposed on C:\windows ... but maybe a Linux boot USB might be able to wiggle in just to delete the one file you need to get rid of to boot off the HD.
TRENDING THREADS
-
Review Intel Arc B580 review: The new $249 GPU champion has arrived- Started by Admin
- Replies: 47
-
-
News Intel's interim co-CEO claims retailers are 'concerned' by return rate of Qualcomm powered machines
- Started by Admin
- Replies: 23
-
Discussion What's your favourite video game you've been playing?- Started by amdfangirl
- Replies: 4K
Facebook
Twitter
Instagram