Slashdot Mirror

← Back to Stories (view on slashdot.org)

NBC News Confuses the World About Cyber-Security

Posted by samzenpus on from the think-of-the-athletes dept.

Nerval's Lobster writes "In a video report posted Feb. 4, NBC News reporter Richard Engel, with the help of a security analyst, two fresh laptops, a new cell phone, and a fake identity, pretended to go online with the technical naiveté of a Neanderthal housepet. (Engel's video blog is here.) Almost as soon as he turned on the phone in the Sochi airport, Engel reported hackers snooping around, testing the security of the machines. Engel's story didn't explain whether 'snooping around' meant someone was port-scanning his device in particular with the intention of cracking its security and prying out its secrets, no matter how much effort it took, or if the 'snooping' was other WiFi devices looking for access points and trying automatically to connect with those that were unprotected. Judging from the rest of his story, it was more likely the latter. Engel also reported hackers snooping around a honeypot set up by his security consultant which, as Gartner analyst Paul Proctor also pointed out in a blog posting, is like leaving the honey open and complaining when it attracts flies. When you try to communicate with anything, it also tries to communicate with you; that's how networked computers work: They communicate with each other. None of the 'hacks' or intrusions Engel created or sought out for himself have anything to do with Russia or Sochi, however; those 'hacks' he experienced could have happened in any Starbucks in the country, and does almost every day, Proctor wrote. That's why there is antivirus software for phones and laptops. It's why every expert, document, video, audio clip or even game that has anything at all to do with cybersecurity makes sure to mention you should never open attachments from spam email, or in email from people you don't know, and you should set up your browser to keep random web sites from downloading and installing anything they want on your computer. But keep up the fear-mongering."

144 comments

  1. blah blah, topic here. by girlintraining · · Score: 0, Offtopic

    Dice Holdings Shows Internet How to Royally Screw Up Website Without Being Hacked

    FTFY

    --
    #fuckbeta #iamslashdot #dicemustdie
  2. I think the Beta by o_ferguson · · Score: 0, Offtopic

    is just a marketing ploy, like New Coke.

    --
    - In Soviet Korea, only old people loose all their bases to Natalie Portman's petrified hot grits overlords.
    1. Re:I think the Beta by pitchpipe · · Score: 0

      Right!? This could be their marketing poster.

      --
      Look where all this talking got us, baby.
    2. Re:I think the Beta by Anonymous Coward · · Score: 1

      Right!? This could be their marketing poster.

      Fuck New Slashdot. The good old /. would have used Natalie Portman!

  3. It's almost too easy by Drew617 · · Score: 0

    "You should set up your browser to keep random web sites from downloading and installing anything they want on your computer."

    Yes, we should.

    Also: olives and feta.

    1. Re:It's almost too easy by game+kid · · Score: 1, Insightful

      I'll admit Slashdot has serious balls to link to a news site that just got its own redesign, with the exact response that this site's beta got (and deserved just as much).

      --
      You can hold down the "B" button for continuous firing.
    2. Re:It's almost too easy by Guy+Harris · · Score: 4, Interesting

      I'll admit Slashdot has serious balls to link to a news site that just got its own redesign, with the exact response that this site's beta got (and deserved just as much).

      No, it deserved it more. Next to nbcnews.com, beta.slashdot.org is a masterpiece of clean Web design. (Hell, the new nbcnews.com makes buzzfeed.com look not too bad.)

  4. Beta by Oh+Gawwd+Peak+Oil · · Score: 0, Offtopic

    Slashdot Beta confuses the world.

  5. I Am Confused About Cyber-Security by dcollins · · Score: 0, Offtopic

    I mean, how could Slashdot Beta be such a steaming pile of shit for half a year and still be expected to be rolled out? Was Dice hacked by Russian malware? Are the pipes not like trucks? Is Natalie Portman planning to blow up the House of Lords?

    --
    We know where leadership by an anti-intellectual "strongman" who scapegoats minorities and likes boisterous rallies goes
  6. Hit those hackers with beta by Daniel+Dvorkin · · Score: 0, Offtopic

    They'll swear off computers forever.

    --
    The correlation between ignorance of statistics and using "correlation is not causation" as an argument is close to 1.
  7. And these are supposed to be professional media by SuperKendall · · Score: 4, Interesting

    This NBC thing is why I treat blogs and traditional media with equal amounts of respect and skepticism. The "real" media is actually far more prone to making things up wholesale than any blogger, who lives and dies by reputation, ever did.

    --
    "There is more worth loving than we have strength to love." - Brian Jay Stanley
    1. Re:And these are supposed to be professional media by Anonymous Coward · · Score: 0, Offtopic

      To be fair, they're less shit than beta.

    2. Re:And these are supposed to be professional media by Yaur · · Score: 0, Offtopic

      idk, hijacking the back button is pretty low even compared to beta.

  8. Not Watching by Anonymous Coward · · Score: 2, Informative

    FYI, the world doesn't watch NBC.

    1. Re:Not Watching by Anonymous Coward · · Score: 0

      I think this was posted by one of the subset of North Americans who think that North America (or even just the USA) is the world. See also: World Series.

    2. Re:Not Watching by jmac_the_man · · Score: 2

      The World Series is so-named because the best baseball players in the world come to the United States to play because US teams will pay them more money than teams in their country.

    3. Re:Not Watching by Anonymous Coward · · Score: 0

      Also because nobody else in the world (except Fidel Castro) gives two fucks about baseball.

      Let me explain it this way: the US is Dice. Beta is baseball. Dice loves Beta just like US loves Beta. Everyone else hates baseball, much like everybody hates Beta.

    4. Re:Not Watching by Pope · · Score: 1

      Nope.

      --
      It doesn't mean much now, it's built for the future.
    5. Re:Not Watching by Jane+Q.+Public · · Score: 1

      I could be mistaken, but I think the World Series was so-named because at the time, pretty much nobody else in the world played Baseball.

  9. CNN, too by Anonymous Coward · · Score: 0

    They recently confused the URL for a website with the website itself.

  10. Classic Slashdot by dknj · · Score: 0, Offtopic

    This is off topic, but I was getting a warning at the top of Slashdot that classic is going to be going away soon (looks like in 2 months).

    How many readers are going to leave if the overlords cut off slashdot classic completely?

    1. Re:Classic Slashdot by Adult+film+producer · · Score: 0

      Many people will and we're trying to stop it. Although my ID is quite high I've been here since '01 and will leave for good if that BETA junk is the new face of slashdot.

      It's bad.. bad, bad. Let's stop it before it happens!

    2. Re:Classic Slashdot by amn108 · · Score: 3, Interesting

      I thought people come here for content, not stylesheets?

    3. Re:Classic Slashdot by Man+Eating+Duck · · Score: 1

      I thought people come here for content, not stylesheets?

      Yeah, they come for the comments. Comment posting and -reading have many, many problems in the beta, some of them strongly degrading functionality.

      --
      Are you a grammar Nazi? I'm trying to improve my English; please correct my errors! :)
    4. Re:Classic Slashdot by amn108 · · Score: 1

      Well, that's different. It's moronic to redesign things all the time, just to supposedly keep audience interest. Moronic. They could just change the stylesheets, if they knew their stylesheets from their content, of course. Instead they played dice with their entire userbase.

    5. Re:Classic Slashdot by Rakarra · · Score: 1

      People come here for user-generated content, and the beta eviscerates that function pretty cleanly. Even the official dev feedback notes that the user comment feature is an afterthought.

  11. Thinly veiled attack on Russian security by Anonymous Coward · · Score: 1

    They have publicly stated they plan on monitoring every internet connection originating from Sochi. Cellular or wired. Big surprise.

  12. The word "cyber" is so 1999. by j_presper_eckert · · Score: 4, Insightful

    No one here gives a shit about that lame "o noes hax0rz in mah cup of coffee" NBC article.

    The real news is that, after having read tonight's even *more* lame, unhelpful, patronizing and disappointing Slashdot Beta feedback thread, it's now clearer than ever that this ship of ours is sinking. At long last, I think that Netcraft really HAS confirmed it. :/

    Soulskill and the other Dice weasels may indeed be "listening" to us, but they've still got a righteous hard-on for destroying this website regardless of how many times we've rubbed their noses in the beta's odiferous offal. I don't believe their calculated, faux-caring, used-car-salesmen spiel for one moment.

    The question now is: Exactly when do we take to the lifeboats, and to what safe harbor do we start rowing towards?

    ~JPE

    --
    Can't stop the Beta? Time to evacuate to ##altslashdot at webchat.freenode.net - Slashcott in effect.
    1. Re:The word "cyber" is so 1999. by Anonymous Coward · · Score: 0

      I think technocrat is coming back. Go there.

    2. Re:The word "cyber" is so 1999. by Tom · · Score: 1

      after having read tonight's even *more* lame, unhelpful, patronizing and disappointing Slashdot Beta feedback thread

      Strange, that must've fallen through my filters somehow. Where is it?

      --
      Assorted stuff I do sometimes: Lemuria.org
    3. Re:The word "cyber" is so 1999. by Anonymous Coward · · Score: 0

      http://www.altslashdot.org/wiki/index.php?title=AltSlashdot

  13. Yay! Beta moderation at last by hmckee · · Score: 0, Offtopic

    I've now got some moderator points to burn. I've checked out the Beta and I agree it's mostly BAD, but it does have a few interesting features. If they can fix the many problems I could deal with it. So, I'll be moderating all posts with constructive criticism. Or not. Who knows.

    1. Re:Yay! Beta moderation at last by phantomfive · · Score: 2, Insightful

      but it does have a few interesting features.

      Like what?

      --
      "First they came for the slanderers and i said nothing."
    2. Re:Yay! Beta moderation at last by Racemaniac · · Score: 1

      "appealing to a wider audience"

    3. Re:Yay! Beta moderation at last by hmckee · · Score: 2

      How did I get marked as a troll? Probably should have turned off the karma bonus. Oh, well.

      The redesign is less cluttered. I like the static (always at the top) header. The comment widget is nice.

      I only said there are a few things I like, there's a lot more I don't.

    4. Re:Yay! Beta moderation at last by arth1 · · Score: 1

      "appealing to a wider audience"

      Why would they want to appeal to CowboyNeal? He's busy with his new site!

    5. Re:Yay! Beta moderation at last by phantomfive · · Score: 1

      You got marked as troll for saying you disagree with everyone without giving specifics. Don't take it personally.

      --
      "First they came for the slanderers and i said nothing."
    6. Re:Yay! Beta moderation at last by hmckee · · Score: 1

      OK, I guess I didn't fully understand how a revolt at Slashdot works and I've been here a long time. :) It's funny that my post gets marked down for being slightly positive yet others get modded up for saying only "Beta sucks!"

      I tried modding in the big Timothy response article but most of the good comments were already visible. I'd really be happy with a site that just has article summaries and comments. I don't care so much about redesign, just fix the current issues.

    7. Re:Yay! Beta moderation at last by VortexCortex · · Score: 1

      "appealing to a wider audience"

      Fuck Beta! My weight does not dictate my web design preference! I don't need them insinuating that we're getting fatter. It's called a CALORIC RESERVE. When the beta destroys the basement kingdoms, you'll be starving and wishing you were a wider visitor too!

    8. Re:Yay! Beta moderation at last by phantomfive · · Score: 1

      Yeap. If you want to go against the group think, your writing must be more clear, and all-around better writing. It's just an artifact of the human tendency to not understand easily what they disagree with.

      --
      "First they came for the slanderers and i said nothing."
  14. An idea, by Anonymous Coward · · Score: 0

    Why not develop secure systems and applications?

  15. But we can still trust everything else, right? by mc6809e · · Score: 1

    I wonder what experts in other areas are complaining about.

    It can't be just this one area they get wrong.

  16. Sochi by Anonymous Coward · · Score: 4, Insightful

    It's not hard to believe there might be a lot of attacks on wireless devices in Sochi. The place is pretty fucked up. Whether these reporters and their consultants know their ass from a wifi antenna or not.

    From a story I've linked below:

    Dmitry Kozak, a Russian deputy prime minister in charge of preparations for the Olympics, complained about water being wasted by hotel guests when said; "We have surveillance video from the hotels that shows people turn on the shower, direct the nozzle at the wall and then leave the room for the whole day,"

    It didn't occur to Kozak that someone might have a problem with being surveilled in the shower until after he blurted this interesting bit of knowledge.

    You just have to wonder what sort of pay-offs went into this Sochi Olympics deal. Russia is a deeply fucked up place to begin with and Sochi is a special level of fucked up within that.

    1. Re:Sochi by Anonymous Coward · · Score: 0

      Without ShowerCams, how are they gonna make sure no "illegal gay activities" are taking place?

    2. Re:Sochi by swb · · Score: 1

      Didn't the State Department issue some kind of data security warning, too?

      Given the shadowy nexus of Russian organized crime and the intelligence services coupled with the security applied against the "terrorist" threat and the the opportunity to eavesdrop on a large amount of visiting dignitaries, it doesn't seem at all surprising that there would be a high threat environment.

      I would think that you would expect your data connections to be sniffed at a minimum and probably attempts to intercept SSL which would be largely effective against most ordinary users. Even HTTP proxying and malware injection doesn't seem unlikely.

      I'd be less inclined to think that every machine would be subject to full-scale port scans and intrusion attempts, just from a resource perspective.

    3. Re:Sochi by PRMan · · Score: 1

      Why do you think they won't give out shower curtains? Because they block the camera of course.

      --
      Peter predicted that you would "deliberately forget" creation 2000 years ago...
    4. Re:Sochi by ckedge · · Score: 1

      Are you sure he said "video"?

      Running a shower against a wall is something I might do to defeat laser reflector and conduction audio taps.

      They might just have an audio tape with nothing but the thunder of water on it, and be really pissed :)

  17. ALSO CONFUSING - BETA by Anonymous Coward · · Score: 1

    Also very confusing is the existence of Slashbeta. It reflects badly on humans as a species for bringing such garbage into this world.

    I'm confident when the sun dies and explodes into super nova whatever the fuck - Humans will look back on their entire history and regret most the creation of Slashbeta.

  18. I use a better tactic by SuperKendall · · Score: 4, Funny

    My computer is password protected, and I simply don't give the password to NBC reporters. So far, no viruses yet! :-)

    --
    "There is more worth loving than we have strength to love." - Brian Jay Stanley
  19. comp.misc on Usenet is the new Slashdot by RocketRabbit · · Score: 2, Funny

    Comp.misc on Usenet is the new Slashdot. It is a totally abandoned group, and I have already inaugurated it. Nobody even uses it, so we won't be offending anybody.

    Come one come all, join the Slashdot exodus on usenet! Eternal September is a free Usenet provider, and you can read news with Seamonkey, MS Outlook, Opera, Unison (pay product), or the classic Unix programs such as tin, rn, slrn and so forth.

    Usenet is free, distributed, uncensored, and allows you to shit-can offensive posters. While it doesn't have moderation per se, the number of replies a topic gets can indicate how interesting the topic is. Additionally, a conversation can go on for months or years (or decades as some have) so you can keep that flamewar going, and with the handy killfile feature you don't have to worry about spamming other people!

    Join me there!

    1. Re:comp.misc on Usenet is the new Slashdot by Anonymous Coward · · Score: 0

      Usenet was a little bit before my time, so I'm unsure of proper eitquette here—Eternal September wants my real name to rgister an account. On the web you never give out your real name. It it the same on Usenet, or will I be viewed as a troll or coward for hiding behind my email?

      Trying to get off on the right foot and all that.

    2. Re:comp.misc on Usenet is the new Slashdot by RocketRabbit · · Score: 0

      They collect your real name but you can post under any persona with any email address you choose, valid or not. The real name never makes it off the eternal september servers, I think it is there so they can comply with legal requests and scare off child pornographers.

    3. Re:comp.misc on Usenet is the new Slashdot by Teun · · Score: 1
      I've been and am using my real name and mail address on usenet since the 1990's, it has never caused me grief.

      But there's a difference between registering with your real name and posting with it, the last is not what Eternal September enforces.

      --
      "The likes of Facebook and WhatsApp are free to those whose privacy is of zero value."
  20. Confessions Of an Ex-SLASHDOT BETA user by Anonymous Coward · · Score: 1

    Day 1: It wouldn't stop, the redirecting. At first I thought it was malware. Had my first drink in a long time.

    Day 2: Barely had the strength to carry on as the BETA REDIRECTIONS continue.. trying not to talk to hallucinations at the bar and in the bathroom which laugh at me about these redirections.

    Day 3: Discovered the BETA redirections were random, and while at first they looked somewhat usable, when I looked at me and my monitor screen in the mirror, a horrible woman with flesh hanging off of her body looked back, trying to lead me into a dance as the word BETA appeared across her rancid breasts.

    Day 4: These BETA corridors go on FOREVER! On the plus side, I've taken up disassembling vehicles to corner this BETA beast and sacrifice myself rather than lead others to discovering it. I ate some red snow.

    Day 5: Finding it harder to concentrate. I've ate some more of the red snow. The taste is starting to grow on me.

    Day 6: This typewriter is the only entertainment I have, apart from throwing things at the walls, trying to get some response from the BETA which is now taking over my mind.

    Day 7: Hahahahahha! Would you believe it? I'M STILL BEING REDIRECTED TO SLASHDOT BETA PAGES! AHAHhahahaah! Type, type, ding, ding! Wooo!

    Day 8: The hallucinations are actually real! Would you believe it? They have offered to help me if I agree to work for them. I'm thinking about patenting this delicious red snow, the taste is unreal!

    Day 9: Having black out sessions where I cannot remember large passings of time. Found some makeup, thought I'd paint a joker smile on my face to amuse the people only I can see!

    Day 10: Productive today, part of what I wrote for my new screenplay:

    I cannot opt out of Slashdot BETA!
    I cannot opt out of Slashdot BETA!
    I cannot opt out of Slashdot BETA!
    I cannot opt out of Slashdot BETA!
    I cannot opt out of Slashdot BETA!
    I cannot opt out of Slashdot BETA!
    I cannot opt out of Slashdot BETA!
    I cannot opt out of Slashdot BETA!
    I cannot opt out of Slas

    (drops of blood on paper)

    1. Re:Confessions Of an Ex-SLASHDOT BETA user by Anonymous Coward · · Score: 0

      WHERE can I GET some MORE of this RED SNOW?!?! It's DYNOMITE!

  21. The users have spoken. by Adult+film+producer · · Score: 0, Offtopic

    It's time to renounce slashdot beta and promise it will not be back. No more doublespeak.

  22. Re:beta.slashdot.org by hcs_$reboot · · Score: 3, Insightful

    I don't know where all of this (beta) thing is going. But this is currently impossible to read a story at /. Not only everyone digresses into "beta", but also no relevant "mod" is performed. I just hope it all gets fixed quickly - whatever the solution is - that starts to be annoying.

    --
    Slashdot, fix the reply notifications... You won't get away with it...
  23. not even in Sotchi by tero · · Score: 2

    ..they were in Moscow..

  24. Funny.. by Adult+film+producer · · Score: 4, Interesting

    How all of the comments about Beta are being moderated to ZERO or worse since that recent story.

    Stay strong people... uprate slashbeta comments despite this blatant attack on the userbase.

    1. Re:Funny.. by Thanosius · · Score: 4, Insightful

      Shit, you're right. There's no way the entire Slashdot community has immediately decided to down-mod fuck beta posts so quickly after the official discussion topic.

      It's amazing DICE and associated fuckers honestly think we wouldn't notice this. They REALLY think we're dumb fucks.

      --
      Account abandoned. I can't fucking spell for shit and Slashdot doesn't even allow time-limited edits of posts. Plus you'
    2. Re:Funny.. by Anachragnome · · Score: 2

      "Stay strong people..."

      Can I be in your next movie? I want to be as FUCKed as BETA. /.

      Since I cannot add this much to my signature, and the fact that signature isn't visible unless you are a logged-in user, this will have to do...

      US5722418
      +
      US5644363
      +
      GoogleGlass
      +
      Acceptance
      =
      ????

      If history is any sort of an indicator, any rights we sell today, our children must buy back with blood tomorrow.

    3. Re:Funny.. by Anonymous Coward · · Score: 3, Insightful

      The off-topic posts about beta annoyed me before there was a story about them, but I understood their reason. While there's a story on the front page where they're on-topic, I'd like to be able to find the on-topic comments on other stories.

    4. Re:Funny.. by VortexCortex · · Score: 3, Insightful

      Well then go bitch about it to the beta overlords. Seems you need a USEFUL FEATURE: A filter option with boolean logic. It could run in JS so as not to consume server cycles.

      In other words: FUCK BETA. If it was useful YOU WOULDN'T BE SEEING THESE COMMENTS.

    5. Re:Funny.. by Vitriol+Angst · · Score: 1

      Well, I'm not on either side of this F@ck Beta debate -- because I haven't even investigated it yet.

      But it seems to me that -- just by random chance, that if there are more posts saying "F#ck Beta!" and they are all getting modded down, and yet, there are a few "gosh, you guys are immature" pro Beta comments, and they reach 5 -- all ten of them. Well it seems to me that other than saying something is a conspiracy theory because we all know there are NEVER ANY conspiracies, that it seems like the Pro Beta crowd is somehow getting mod points but all the pro Beta people are modding and not commenting.

      Just curious, that's all.

      --
      >>"ad space available -- low rates!!!"
    6. Re:Funny.. by Vitriol+Angst · · Score: 1

      Oh, and I haven't actually counted the pro beta vs. anti beta comments. I just brought a can of gas to this candle vigil.

      --
      >>"ad space available -- low rates!!!"
  25. Re: beta.slashdot.org by Anonymous Coward · · Score: 2, Insightful

    Hi, it's called a "boycott."
    Think of the "f beta" posts as picketing.
    Also, this is pretty much a non-story.
    Clueless reporter doesn't know what he's talking about - news at all damn day long on every news channel.

  26. Dice, are you listening? by Gordo_1 · · Score: 1, Funny

    What I really want in the new design, is easier access to SlashDataCenter and SlashCareers.... oooooh and SlashBI. I really can't get enough 'Business Intelligence' news formatted as a two paragraph article with a large stock image and zero comments!

    1. Re:Dice, are you listening? by thegarbz · · Score: 2

      Who gets their business intelligence from a site that has managed to set off a new record in pissing off the largest number of people in one go?

      Seriously though this has got to be a world record. They say they inflicted 25% of users to this? Well this is a website which cripples servers all over the internet just by linking to them. 25% of that bandwidth is a metric fukton of pissed off users.

  27. Yeah, yeah, we get it now... by captainpanic · · Score: 1, Informative

    There is a discussion topic about the Beta. It is only about 5 items down from this one. We all get it: you don't want the Beta (and I share your feelings, btw). But can we please just keep on enjoying Slashdot too?

    1. Re:Yeah, yeah, we get it now... by Anonymous Coward · · Score: 0, Insightful

      There is a discussion topic about the Beta. It is only about 5 items down from this one. We all get it: you don't want the Beta (and I share your feelings, btw). But can we please just keep on enjoying Slashdot too?

      No. Fuck beta!

    2. Re:Yeah, yeah, we get it now... by pitchpipe · · Score: 5, Insightful

      But can we please just keep on enjoying Slashdot too?

      But that's the point isn't it? I want to keep enjoying Slashdot as I have for years, but that is most likely going to change, and well, there isn't a really good alternative out there. So I'm trying to communicate that in the one way that will make them reconsider: fucking up the comments. For some reason the Dice clones think that this site is very similar to a tech section from HuffingtonPost.com, and that all they need to do is tweak the UI to drive up traffic. If they can see that the fucked up comments are actually hurting traffic maybe they'll get the message that Slashdot really wasn't what they thought, and that it really is all about the moderation system and comments like everyone has been trying to tell them.

      I'm not hopeful though. The sheer arrogance in corporate board rooms today is breathtaking. Look at the Xbone. They had lots of people shouting at them that they were headed for disaster, people who really cared. They told those people that maybe they ought to get with the times. Those people did: they bought PS4s.

      --
      Look where all this talking got us, baby.
    3. Re:Yeah, yeah, we get it now... by PGC · · Score: 1

      Interesting how suddenly all Fuck Beta posts are modded away. PS. Fuck Beta.

      --
      The Dutch will inherit the earth. If not, we'll settle for a bit of ocean. Beta delenda est!
    4. Re:Yeah, yeah, we get it now... by PGC · · Score: 1

      The discussion about Beta is 5 items down, 6 items down, 4 items down, 3 items down, 2 items down, 1 item down, 0 items down and 1 items up ,,,,

      --
      The Dutch will inherit the earth. If not, we'll settle for a bit of ocean. Beta delenda est!
  28. Wow, what a circus! by jones_supa · · Score: 2

    I don't like the beta either but I didn't expect this kind of chaos to ensue. No proper discussion can be had in any article as they are filled only with beta comments. Interesting situation indeed. I'm grabbing the popcorn.

    1. Re:Wow, what a circus! by thegarbz · · Score: 1

      Did you expect a proper discussion could be had about an article which describes a dumb clueless internet user thinking the entire world is trying to hack him because he doesn't understand how it works?

    2. Re:Wow, what a circus! by PGC · · Score: 1

      Not a proper one, but the discussions at Slashdot are usually informative and/or entertaining to read. But back to more important matters: Fuck Beta.

      --
      The Dutch will inherit the earth. If not, we'll settle for a bit of ocean. Beta delenda est!
  29. Same everywhere by Tom · · Score: 4, Insightful

    It's the same everywhere you look. The current state of IT security is horrible, utter and total crap, and the main reason is that most of the people who work in the sector have no clue, starting from journalists like those and consultants and... well... almost everyone else.

    The reason is that much like cryptography, real security is hard. It's not something you pick up in a week course when your boss decides someone in the team needs to specialize on security. There are a great number of actual experts and over the years I've had the pleasure of meeting or working with many of them, but it's a small world and the total number of experts available world-wide is far smaller than the demand for manpower in the security "industry".

    Plus it's a bikeshed problem. Lots of people know a little bit about security, so focus is given to the parts that people believe they understand, instead of the real problems. When I do consulting (I don't very much, I dislike it, but I occasional take jobs because I enjoy the problem, or the company) my metaphor for that is that in IT security, it is very easy to find someone who will sell and install you a 3-inch solid steel door with military level security locks for your front door, but very difficult to find someone who will walk around the house with you and point out the easily broken windows and the open basement door.

    Here's a free business hint: When you hire a security consultant, ask them for a quick suggestion for a password policy. If you get the two decades old "at least x letters, at least 1 special character, at least 1 number", don't hire them. That bullshit was adequate on Multics systems in the 70s. Today, it will weaken your password security if you programmatically enforce it. (and yes, I have the data to back that up, but that's a short presentation and not a comment field).

    So yes, these journalists are spreading bullshit. They are like the power users in a company - the nightmare of IT support. They probably know a little about security, just enough to get it wrong.

    --
    Assorted stuff I do sometimes: Lemuria.org
    1. Re:Same everywhere by Anonymous Coward · · Score: 0

      It's the same everywhere you look. The current state of IT security is horrible, utter and total crap, and the main reason is that most of the people who work in the sector have no clue, starting from journalists like those and consultants and... well... almost everyone else.

      That explains olives and feta

    2. Re:Same everywhere by magamiako1 · · Score: 2

      I disagree with you on the "most people who work in the sector have no clue" statement. People have long known about IT security issues. It's not like things like "sub7", "winnuke", "nimda", "code red", etc. weren't issues.

      We've long known about NTLMv1 issues and it was strongly recommended as a hardening practice as early as 2001/2002 when Microsoft implemented it.

      The issue has never been "nobody having a clue", but more like, "Management not giving a shit". Yes, the state of information security is atrocious. But that doesn't stem from the IT guy so much as it comes from having to approach management, "Hey; we need to upgrade to this system to improve our security and reduce our risk."

      Blame IT for not being able to put it well, or blame them for not being able to play the social game well enough to get the boss to want to listen to them over their friends. But in some cases, you really don't have much leg to stand on. Even if you were logically correct, even if you were on the boss' good side; the reality is the guy who says "NO DON'T UPGRADE JUST STICK WITH WHAT YOU GOT AND THROW THIS LITTLE BOX IN FRONT OF EVERYTHING!" is going to win--all of the time, for the simple fact that he appeals to the boss' wallet.

      Telling business leaders they need to not only spend money in IT, but spend it repeatedly and regularly, is something that is almost never going to go over well. And it's something that's needed to keep up. The "bar" itself is constantly moving.

    3. Re:Same everywhere by aaarrrgggh · · Score: 2

      A very low percentage of IT people understand security issues to a sufficient degree to be able to act on them in the abstract. Talking to the director of IT at a very large defense contractor a few years back about a new proposed SCADA network, I showed him the plan for our isolated network, and the proxy/firewall connection to his corporate network, and asked him how they wanted to treat it. He was prompt to ask who needed access, how much throughput would it need, and if we needed more than one IP address.

      I then went into my laundry list of bigger issues, so he suggested they just get a dedicated DSL line for it so it didn't need to be connected to the corporate network, and just make the SCADA vendor responsible for security!

      People want to put security issues into buckets. The problem is that issues today are substantially more complicated than that.

      Just look at slashdot beta... That is what "news for nerds" is trying to be now. Lowest common denominator only, please.

    4. Re:Same everywhere by Tom · · Score: 2

      I disagree with you on the "most people who work in the sector have no clue" statement. People have long known about IT security issues. It's not like things like "sub7", "winnuke", "nimda", "code red", etc. weren't issues.

      I should've been more clear:

      There are security experts, and there is the security industry. The two occasional meet to compare notes, most of which are beyond the understanding of the later.

      The security "industry" is exactly the snake-oil job you describe, for most parts. Business people with just enough understanding of security to fuck it up really well, and well-meaning techies who know just enough to complete the mess. They package security into nice products... sorry, "solutions" and sell it at incredibly inflated prices to PHBs who want nothing more than putting something with a nice name on the expense sheet and reporting to their bosses that the security problems are all solved.

      Real security is a lot dirtier, less sexy, more work and more complicated than that.

      Also, it includes a lot of fields that are not very technical, like cognitive sciences to understand why users act the way they do.

      --
      Assorted stuff I do sometimes: Lemuria.org
    5. Re:Same everywhere by Anonymous Coward · · Score: 0

      A good password policy is a simple policy. At least 9 characters, not in John the Ripper's dictionary, not the same as your last password.

  30. phone av? by Necroloth · · Score: 1

    there's antivirus software for phones?! I've never seen anyone use such a thing or hear it advertised. Perhaps it's because I'm safe... I use a Blackberry Z10...

    1. Re:phone av? by Anonymous Coward · · Score: 0

      Yea, you are safe... and the other 6 people using Blackberry are safe too. Wait.. new tally... 5. The other 5 using BB are safe... wait wait...

  31. Welcome to our world by Lord+Kano · · Score: 5, Informative

    You know that angry "What the fuck?" bubbling up in the back of your mind?

    That's how gun enthusiasts feel when news people start making nonsensical claims about guns.

    When some dumb ass says "military style" or "assault magazine clip" or someone ridiculous nonsense, we feel the way you do watching this story.

    LK

    --
    "Hi. This is my friend, Jack Shit, and you don't know him." - Lord Kano
    1. Re:Welcome to our world by Vitriol+Angst · · Score: 1

      So like, when someone says "Bushmasters and AR 15 Assault weapons" and you grit your teeth because they are the same thing and that idiot commenting about guns are dangerous doesn't even know how much grain to pack in a good sniper bullet.

      Personally, I'm really bored by guns -- so I can imagine someone NOT knowing all these details when they complain about a mass shooting totally destroys any credibility for you but not for me.

      --
      >>"ad space available -- low rates!!!"
    2. Re:Welcome to our world by Lord+Kano · · Score: 1

      Almost.

      When someone uses "assault weapon", I roll my eyes and when someone uses "assault weapon" and "assault rifle" interchangeably, I grit my teeth.

      I want to pull my hair out when some idiot says something like "You don't need an AR-15 or AK-47 to hunt deer, they are high powered killing machines unlike grandpa's deer rifle." but is blissfully unaware they these are unarguably less powerful than a hunting rifle. When some dumb ass uses the term "magazine clip" or prefixes any legitimate term with "assault" to make it sound scary, it makes me want to slap him or her.

      LK

      --
      "Hi. This is my friend, Jack Shit, and you don't know him." - Lord Kano
  32. The Mass Migration Has BEGUN! by Anonymous Coward · · Score: 0

    See you on the other sites!

    1. Re:The Mass Migration Has BEGUN! by Notlupus · · Score: 1

      Flappy butts

  33. Privacy vs. Shows by Anonymous Coward · · Score: 0

    What worries people is their pathetic privacy. But what really matters is if the professional behind the scenes are prepared and competent to achieve their duty. So, what is this duty about security? Enjoy the pleasure of looking others necessity, or focus on what matters, which is keep the system on pace so everybody into it can achieve their duties also?

  34. Re:Nice analogy here! by Anonymous Coward · · Score: 0

    ...or like voting for Obama's second term and complaining when you lose your job.

  35. So the reporter is a moron by Anonymous Coward · · Score: 0

    So its okay for the US spying agencies, to get away with this of years and NBC [the media/press] didn't care [and I'm sure the US spying agencies made there collecting of data look like hackers] now this shit stain is shocked to find out the Russian Government does the same?

    Great work!!!! Ohhh boy I'm I relieved..

  36. Re: beta.slashdot.org by Anonymous Coward · · Score: 1, Insightful

    If you think it's bad with all these 'fuck beta' posts, try reading them on Beta!

    Dice shit the bed. They are ruining /. and we're trying to show them our disdain for their poorly thought out actions. Their email address for us to send beta feedback to was full and rarely accepted messages (probably a metaphor for their position on the matter). So we went public with our frustrations.

    I can't wait for a tech website to report on the /. revolt of 2014. I also expect a few MBAs to do their thesis on how not to ignore your content providers and ad targets when they provide unmistakable signs of disappointment and resistance.

  37. Slashdot by Anonymous Coward · · Score: 0

    FUCK THE BETA!

  38. All the Slashbeta comments moderated to -1 by Anonymous Coward · · Score: 1

    Fuck you DICE, fuck YOU VERY MUCH!

    And fuck Slashdot Beta!

  39. FUCK BETA by Anonymous Coward · · Score: 1

    Fuck beta.

  40. Re: beta.slashdot.org by hcs_$reboot · · Score: 0

    I didn't say these beta posts are bad. I said Fix it! because it is annoying - whatever the solution is: improve || remove beta. /. is a very particular site with no equivalence. Some people want to create a new site, why not. But, as we say, you know what you have, you don't know what you'll get. So, I'd prefer to go for a mediation-solution, where everyone agrees on a strategy to have slashdot back on rails.

    --
    Slashdot, fix the reply notifications... You won't get away with it...
  41. Re: beta.slashdot.org by dreamchaser · · Score: 2, Insightful

    A boycott would be people not using /. at all. At best all the complaining and 'fuck beta' posts are unproductive protests.

  42. IRL DDOS DICE 888-321-DICE (3423) by Halapchik · · Score: 0

    So since the Dice corporate overlords seem to be oblivious to the desires of the "audience", and seem to only care about the $$, it would follow that the way to get the attention of said corporate overlords is to impact their business at Dice.com. I propose an IRL DDOS of their phone lines. Emails can be deleted by the million, but phone calls on the other hand take up valuable time from their limited support staff. Please feel free to contact Dice support and keep their reps on the line for a few minutes. Talk POLITELY (hey they work for a living too) about how their bosses own a website called Slashdot which is an integral institution of the internets, and how Dice is destroying it.

    Even if only 10% of us make one phone call once a day, thats over 40,000 phone calls. Once their customer service department becomes too overwhelmed by calls to function, and if we can make it persist for a few days, you can bet that the higher ups will take notice.

    Here is their customer service line: 888-321-DICE (3423)

    If you have more phone numbers for Dice, please post them as well.

    Oh ya, BETA can suck an unwashed shit covered cock after an all night ass rape orgy.

  43. Re: beta.slashdot.org by Anonymous Coward · · Score: 1

    A boycott would be people not using /. at all.

    OK, call it a strike then. Or civil disobedience.

    At best all the complaining and 'fuck beta' posts are unproductive protests.

    It's disruptive, yes. Unproductive, no -- if it leads to the assholes pushing beta down our throats to reconsider.

  44. Re: beta.slashdot.org by runeghost · · Score: 2, Insightful

    A boycott would be people not using /. at all. At best all the complaining and 'fuck beta' posts are unproductive protests.

    That's coming. The complete boycott is Feb. 10th to Feb 17th. In the mean time, keep up the good work with the Beta comments everyone!

  45. 2% of USA watches NBC news by raymorris · · Score: 1

    Beyond that, about 7 million people, or 2% of the US, watches NBC news on a given night. 98% of Americans didn't watch that broadcast.

    NBC News Confuses a Few Senior Citizens About Cybersecurity
    Ftfy

    1. Re: 2% of USA watches NBC news by Anonymous Coward · · Score: 0

      So you are saying Rachel Maddog's audience is mostly senior citizens?

    2. Re: 2% of USA watches NBC news by R3d+M3rcury · · Score: 1

      NBC News vs. MSNBC.

      Not the same thing.

  46. Watched the video by sh00z · · Score: 1

    Bonehead reporter couldn't even open the Macbook Air box! It shows him *tearing* one end open like it's a mailer. I would venture to say that every Apple product made in this century has pretty elegant "Frustration Free" (TM-Amazon) packaging. What an idiot.

    1. Re: Watched the video by Anonymous Coward · · Score: 0

      3000 Apple enthusiasts who have "unboxing" videos on YouTube probably broke down and cried.

      And a Packaging Engineer at Apple was sent back to the Industrial Design death camp for reeducation.

  47. lolol by Anonymous Coward · · Score: 0

    this website is uglier than the backside of a refrigerator!

  48. Supervisors at the London Olympics monitored nobod by pigsycyberbully · · Score: 2

    Hi, I was one of many supervisors at the London Olympics. All the Routers that were put in every single athletes room had backdoors they were specially designed for the Olympic village. After the games they were destroyed. All mobile phone messages was monitored from a temporary prefabricated building which monitored mobile telephones, and any form of wireless communication. The reason given for monitoring everybody was in case somebody from within the village used a computer, or so on to communicate with somebody outside the village to get them inside the village to kill Olympic athletes. These stupid U.S. propaganda stories are just ridiculous. after the Olympic Games are finished and have been successful the U.S. will forget all about homosexuals and spying. The U.S. doesn't give a dam about homosexuals, it is just using them for propaganda purposes that and this spying nonsense. For security reasons all Olympic Games, are heavily monitored nobody wants to see athletes being murdered by any political groups it has happened before that is why the Olympics is heavily monitored when ever the Olympic Games is held. Being paid to spread anti-Russian propaganda: Benjamin Cohen.. https://en.wikipedia.org/wiki/...

  49. Re: beta.slashdot.org by Anonymous Coward · · Score: 0

    ../

  50. what's going on? by Anonymous Coward · · Score: 0

    Why is US media hell bent on making Sochi seem like a disaster?

  51. fgfdgdg by Anonymous Coward · · Score: 0

    fggdsgdsss

  52. slashdot beta is dying by Anonymous Coward · · Score: 1

    It is now official. Netcraft has confirmed: slashdot beta is dying

            One more crippling bombshell hit the already beleaguered slashdot beta community when IDC confirmed that slashdot beta market share has dropped yet again, now down to less than a fraction of 1 percent of all servers. Coming on the heels of a recent Netcraft survey which plainly states that slashdot beta has lost more market share, this news serves to reinforce what we've known all along. slashdot beta is collapsing in complete disarray, as fittingly exemplified by failing dead last [samag.com] in the recent Sys Admin comprehensive networking test.

            You don't need to be the Amazing Kreskin [amazingkreskin.com] to predict slashdot beta's future. The hand writing is on the wall: slashdot beta faces a bleak future. In fact there won't be any future at all for slashdot beta because slashdot beta is dying. Things are looking very bad for slashdot beta. As many of us are already aware, slashdot beta continues to lose market share. Red ink flows like a river of blood.

            Dice.com is the most endangered of them all, having lost 93% of its core developers. The sudden and unpleasant departures of long time Dice.com developers Jordan Hubbard and Mike Smith only serve to underscore the point more clearly. There can no longer be any doubt: Dice.com is dying.

            Let's keep to the facts and look at the numbers.

            Slashdot beta leader Theo states that there are 7000 users of slashdot beta. How many users of Dice.com are there? Let's see. The number of Dice.com versus slashdot beta posts on Usenet is roughly in ratio of 5 to 1. Therefore there are about 7000/5 = 1400 Dice.com users. Slashdot beta on Usenet are about half of the volume of Dice.com posts. Therefore there are about 700 users of Dice.com. A recent article put Dice.com at about 80 percent of the slashdot beta market. Therefore there are (7000+1400+700)*4 = 36400 Dice.com users. This is consistent with the number of Dice.com Usenet posts.

            Due to the troubles of Walnut Creek, abysmal sales and so on, Dice.com went out of business and was taken over by Reddit who sell another troubled OS. Now Dice.com is also dead, its corpse turned over to yet another charnel house.

            All major surveys show that slashdot beta has steadily declined in market share. slashdot beta is very sick and its long term survival prospects are very dim. If slashdot beta is to survive at all it will be among OS dilettante dabblers. slashdot beta continues to decay. Nothing short of a miracle could save it at this point in time. For all practical purposes, slashdot beta is dead.

  53. A problem with fearmongering by Rambo+Tribble · · Score: 1

    Reports like this tend to leave the non-technical user overwhelmed and befuddled. What does someone who is ovewhelmed and befuddled do? They freeze up and do nothing, think "deer in the headlights". In other words, these things often exacerbate the problem. But, then, exacerbating problems to boost ratings is nothing new for the media.

  54. Small world by flyingfsck · · Score: 1

    Confuses the world? A small world, even in the American sense of the world - which ends just a few hundred meters beyond its borders...

    --
    Excuse me, but please get off my Pennisetum Clandestinum, eh!
    1. Re:Small world by xianzombie · · Score: 1

      Of course there's meters outside the borders, that's how we charge Canada and Mexico. I'd venture to say there's maybe even a thousand of them to cover both borders

  55. Not so much that it is hard by DarthVain · · Score: 1

    More so that it takes effort, involves more complexity, and costs more. Management doesn't want to pay for it, doesn't want projects to take longer because of it, and doesn't want to be inconvenienced by it.

    That said, I have seen it swing the other way as well, heightened security being applied to everything regardless of risk due to silly policy. I had a project delayed by about a year to deploy an application because the security goons wanted to lock it down so much as to make it useless (making network communication with it either so difficult, or simply not allowed). This is a database involved contains no sensitive information and the only security really needed is for data integrity. Anyway took them a year of arguing with us about security policy to figure out that this is not an isolated issue and that their idea of security would case a big problem for a lot of business groups. Not to mention legacy applications, which while not ideal, are too expensive to replace all at once, and are business critical. There are levels of acceptable risk, and appropriate security. Risk assessment and security analysis need to be done and several levels of security options available. Categorize your system into one of the options being aware of each's limitations, and plunk it in. However I think many don't want to even do the analysis in a hear no evil see no evil kind of attitude. If we find out that it needs better security we will have to pay more and it will take longer which we don't want. Also typical management BS, where they can get the kudos and translate the project "success" into their next management job, and when it does get pwned somewhere in the future, it will not longer be their problem.

    1. Re:Not so much that it is hard by Tom · · Score: 1

      It goes all ways. I've seen many security problems caused by tech people with little security understanding who didn't want to be inconvenienced. The sub-net that the developers set up for themselves because the corporate network is too restricted is often the one that is easiest to break into.

      As I said: The most dangerous users are not the ones with no clue at all, but the "power users".

      --
      Assorted stuff I do sometimes: Lemuria.org
  56. Re: beta.slashdot.org by Anonymous Coward · · Score: 0

    I currently don't understand the "impossible to read a story comment". I keep hearing this kind of comment but it all sounds like bitching and moaning when I certainly don't seem to have any problems reading the stories. Exactly what is preventing folks from reading the stories in the new beta format?

  57. Re: beta.slashdot.org by Stan92057 · · Score: 0

    I disagree its definitely had an effect on my following story's all the comment say Fuck the beta....

    --
    Jack of all trades,master of none
  58. I don't believe DIGG by Stan92057 · · Score: 0

    I don't believe DIGG ever cam back from changing its site has it? Maybe that's what they want a different audience that they have control over. We are not an audience "we Are Slashdot".

    --
    Jack of all trades,master of none
  59. Phone Antivirus by giantism_strikes · · Score: 1

    I was under the impression that antivirus for phones was pretty much useless. The reasoning behind it was that it requires admin/root privileges in order to detect viruses, and most phones only let you operate in an app/user sandbox. The only time antivirus would have these type of permissions is during the install. Have I missed some step forward in phone antivirus applications?

  60. Not Watching by Anonymous Coward · · Score: 0

    I don't care for that example. A lot of the US doesn't like Baseball. It is a boring sport. I think its like getting kicked in the nuts. A very small subset of the population likes torturing the male anatomy. Similarly a very small subset may actually like beta.

  61. Re: beta.slashdot.org by Anonymous Coward · · Score: 0

    Fuckin idiots these days.

    Well, they are pushing the beta.

  62. Re: beta.slashdot.org by Anonymous Coward · · Score: 0

    Srsly. Anyone fickle enough to seriously complain needs to just fucking go already.

    Wahhh change! THANKS OBAMA

  63. Re: Funny .. by tqk · · Score: 1

    How all of the comments about Beta are being moderated to ZERO or worse since that recent story.

    Stay strong people... uprate slashbeta comments despite this blatant attack on the userbase.

    How you managed to pull off +4 Interesting for that, I can't imagine.

    --
    "Tongue tied and twisted, just an Earth bound misfit ..." -- Pink Floyd.
  64. and by that you mean... by Anonymous Coward · · Score: 0

    ...the steaming pile of shit they call beta?

  65. So... by Anonymous Coward · · Score: 0

    how do Japan and Canada fit into this metaphor?

  66. NBC's tech 'expert' has come clean by derekw · · Score: 1

    NBC's tech expert finally confesses in his blog three days after the TV broadcast: "Compromises can occur in Russia just as quickly as in any other country ... All the attacks required some kind of user interaction." This contrasts to Tuesday's news broadcast: "Visitors to Russia can expect to be hacked ... it's not a matter of if but when." NBC fabricated the story to mislead their viewers.

  67. Re: The sucky beta by BigLonn · · Score: 1

    It hate to be negative, what was wrong with the old /. ? The main priority of any website is that it works, the old one did. The new one looks sadly to be a buddy job, ya know, a job you give your buddy a job to keep them employed, and not really care what the consequences are. Ya know don't have to fix the old one, just go back to it and ditch the beta.