I imagine the number of NSLs has grown high enough for all of them to think twice. When the sheer volume becomes public, all of these companies can now point to this and say they tried to reason with government, had just been following orders, and its not like they WANTED to betray you.
Its a timebomb, and they know it. This is proactive damage control.
It sounds like this is designed to extract money out of the legal system by "backing" lawsuits, like as investments. IANAL, but this sounds so wrong on so many levels.
I might have cheered for this sort of thing, had it been offered as a low cost app or service to individuals seeking redress against big powerful companies with armies of lawyers, but instead, its looks like just another weapon for the army of lawyers.
Start with sharing less data? I know that's kind of the point of the API to begin with, but leaking is leaking, even if its just usernames. Maybe they will decide, like you say, nothing to do with Steam/Valve..... or maybe they obfuscate the usernames in some way? I don't really know, its not my show. At a minimum would I expect some kind of periodic security re-qualification for connected public facing sites.
If it was my show, I'd be looking very carefully at ANY data that leaves my control via ANY interface..... especially data directly related to my customers and clients that can find its way into some other database. Its not my show though, I'm just another armchair heckler watching it burn.
The data stolen from the forum includes full names, usernames, scrambled passwords, email addresses, dates of birth, join dates, avatars, Steam usernames, and user activity data. Facebook access tokens were stolen for those who signed in with their social account.
If it was made easier to steal from your car because Walmarts webAPI connected to the cars insecure messaging system and enabled the thief to steal the keys from your ignition, grab a copy of your drivers license, find your date of birth, dealership username, and daily driving activity, I think its safe to assume some changes are coming.
They DID get away with this. Sometimes its just not about the money. Good practice and massive exposure are a plus, but sometimes you just gotta make something you love.
Can the wider US intelligence community fully trust raw data gathered by the NSA? Could massive budgets sway back to the CIA, FBI for a more secure approach or a massive expansion of other global signals collection efforts be considered? A shift in decades of post Vietnam political patronage..
Will all past product have to be reevaluated? Will other US agencies suggest they can do better and request their own new collection budgets?
Find out next week, in another exciting episode of "Real Government Shinagigans"
That's a damn fine idea. I recall the blackphone does something akin to this as far as alerting the user when the phone detects that a tower has something....amiss in it configuration. Please implement and open source with haste, lest somebody takes this great idea to field and patents the idea from under you.
Look crybaby, the only reason you had been able to claim your "design" warranted specific amounts of money was because other people had been willing to pay for it. This is changing. You want to keep getting paid? Finish the job and manufacture it. Or sell it as a kit. Otherwise, if I can make something just as good myself, I will, and then I'll make another and sell it to my neighbor. I don't care how bent out of shape you get over it when I do. I don't care a rats ass if its similar in design to the one you drafted up on a piece of paper. I don't give fuck-all about your feeling on the matter. If it put sawdust on my shop floor, or used some of my filament, its mine. If my 2 hands built it and it happens looks like some catalog shit, well it must be a great catalog, but that makes my creation no less mine.
I'm looking forward to the slashdot stories regarding the super-legit lawsuits brought against those legions of dishonest craftsmen, by the fine and upstanding companies that will soon control the manufacturing schematics and plans for everything.
Now if you will excuse me, my patent for "flat writing surface on 4 legs" just came back,and my copyright application was just approved for my new song, I call it "whistle'n noises" Now all I need to to is get my trusty lawyer to work extracting money from you guys for hand-writing letters (totes my idea btw) or whistling some noises.
If this is developed in the US, its going to cost the world 200X as much money. Let Europe do it, and just license it to us. Besides, once it is pioneered, we will all just go to Mexico to have our unborn modified anyway, its only 10% of the price, and...... almost as good.
There is a TON of this very sort of thing around the scene. It was the Apple shit that seemed to start the term "jailbreak", before that it was just as you say, "hack", "exploit" and "crack". The worst I've seen them do personally is brick the system, which half the time can be recovered with a little more work. Like any other software, the community is the best source of information regarding specific exploits, and it pays to do a little research before moving forward with any sort of hack/exploit.
Back when the PSP was still shiny and new it was almost at a fever pitch. The cat and mouse game was a daily battle. Following along was lots of fun, but there was a TON of nasty shit mixed in with the real exploits.
This is a great little hobby to get the younger crowd interested in more than the user-space of their devices and exploring the hardware capabilities. The old guard scoffs, but it really get the wheels turning for the up and coming. My boy (11) moved directly to the Raspberry Pi after I showed him how to get one under on the old Wii. Great cure for the "I'm bored" problem on a rainy day.
I don't play it very often, but I enjoy the jailbreak scene. Right now its the only console in my house that's not modded in someway. I'll jailbreak it, backup all my games to an external hd or sd card, figure out that I can ftp around and explore the file-system and flash.... and then never play it again.
Sometimes its more about the journey, not the destination.
We the people are pretty unhappy with what we've been served this time around, and over the past few years there have been quite a few "FIRST blankety blank blank" headlines.
Ol' Bernie managed to make a whole lot of young whipersnappers start paying attention... lots of new voices, very few of them happy with the crazy or the corrupt.
There are mountains of reasons why the use of a bomb strapped to a robot and driven on top of a bad-guy is not even close to a sniper ventilating a bad-guy. Many good examples have been presented in the above comments, and many more will be voiced in the coming weeks.
With any luck, there will be cool thought out debate with all points thoroughly discussed before we roll out the new one-time-use kill bots to our local police forces.
I rail against password sharing on the regular. It's right up there with with the crafty old hidden under the keyboard bullshit. I have taken the time to setup your user, I have granted all the permissions needed for you to do your job. Use the GD tools I have provided, else request more.
When the surveillance guy sees you using somebody's creds, he is not going smile and ignore it. He is going to come to me with a reprimand, and to many of those means his businessmen stop coming and I don't get a raise next year. Then, if for some reason your system leaves the GD building (like I know its going to) and I lose physical control of it, I bet your going to spill all those (other peoples) passwords all over the net cuz your GD eyes gloss over when I explain to you what scary VPN shortcut on your fucking desktop is for, and I will find myself answering for it.
Spiffy little remote, integrated retail streaming services, cheap as dirt and runs Kodi to stream from your personal server. Wife friendly and android based.
My only bitch is a roundabout way I am forced to sideload apps and the way I have to drill way down into the settings to even launch my sideloaded apps.
Slashdot Mirror
I imagine the number of NSLs has grown high enough for all of them to think twice. When the sheer volume becomes public, all of these companies can now point to this and say they tried to reason with government, had just been following orders, and its not like they WANTED to betray you.
Its a timebomb, and they know it. This is proactive damage control.
Voting is no longer safe, we are obviously going to have to suspend elections until we are 100% sure the computers are trustworthy!
It sounds like this is designed to extract money out of the legal system by "backing" lawsuits, like as investments. IANAL, but this sounds so wrong on so many levels.
I might have cheered for this sort of thing, had it been offered as a low cost app or service to individuals seeking redress against big powerful companies with armies of lawyers, but instead, its looks like just another weapon for the army of lawyers.
Patent trolls are smiling.
I guess I'm eating crow on this one. Article read as steam usernames and user activity data. Comma makes all the difference.
So its another case of users sharing PI with a 3rd party site who loses it. Reading is fundamental.
Start with sharing less data? I know that's kind of the point of the API to begin with, but leaking is leaking, even if its just usernames. Maybe they will decide, like you say, nothing to do with Steam/Valve..... or maybe they obfuscate the usernames in some way? I don't really know, its not my show. At a minimum would I expect some kind of periodic security re-qualification for connected public facing sites.
If it was my show, I'd be looking very carefully at ANY data that leaves my control via ANY interface..... especially data directly related to my customers and clients that can find its way into some other database. Its not my show though, I'm just another armchair heckler watching it burn.
The data stolen from the forum includes full names, usernames, scrambled passwords, email addresses, dates of birth, join dates, avatars, Steam usernames, and user activity data. Facebook access tokens were stolen for those who signed in with their social account.
If it was made easier to steal from your car because Walmarts webAPI connected to the cars insecure messaging system and enabled the thief to steal the keys from your ignition, grab a copy of your drivers license, find your date of birth, dealership username, and daily driving activity, I think its safe to assume some changes are coming.
An online community the size of steam is a big target. DLH.net and Steam both should have known better.
The keys though, they are already tied to the account that paid for them right? Are they useful for anything?
I've been expecting something like this for a while. Now expect big changes in the steam API.
Anytime I hear or read Nintendo, its POKEMON related. Been like that for years now.
Since that last game though.... this shit is worse than football season.
They DID get away with this. Sometimes its just not about the money. Good practice and massive exposure are a plus, but sometimes you just gotta make something you love.
Kudos to them.
Can the wider US intelligence community fully trust raw data gathered by the NSA? Could massive budgets sway back to the CIA, FBI for a more secure approach or a massive expansion of other global signals collection efforts be considered? A shift in decades of post Vietnam political patronage..
Will all past product have to be reevaluated? Will other US agencies suggest they can do better and request their own new collection budgets?
Find out next week, in another exciting episode of "Real Government Shinagigans"
That's a damn fine idea. I recall the blackphone does something akin to this as far as alerting the user when the phone detects that a tower has something....amiss in it configuration. Please implement and open source with haste, lest somebody takes this great idea to field and patents the idea from under you.
3) not a single virus infection in over 20 years
ohh and if you want extra protection. Just set your firewall to block any outgoing unless you white list it.
The greatest trick the malware ever pulled was to make you believe it never existed.
Its about fucking time.
Look crybaby, the only reason you had been able to claim your "design" warranted specific amounts of money was because other people had been willing to pay for it. This is changing. You want to keep getting paid? Finish the job and manufacture it. Or sell it as a kit. Otherwise, if I can make something just as good myself, I will, and then I'll make another and sell it to my neighbor. I don't care how bent out of shape you get over it when I do. I don't care a rats ass if its similar in design to the one you drafted up on a piece of paper. I don't give fuck-all about your feeling on the matter. If it put sawdust on my shop floor, or used some of my filament, its mine. If my 2 hands built it and it happens looks like some catalog shit, well it must be a great catalog, but that makes my creation no less mine.
I'm looking forward to the slashdot stories regarding the super-legit lawsuits brought against those legions of dishonest craftsmen, by the fine and upstanding companies that will soon control the manufacturing schematics and plans for everything.
Now if you will excuse me, my patent for "flat writing surface on 4 legs" just came back,and my copyright application was just approved for my new song, I call it "whistle'n noises" Now all I need to to is get my trusty lawyer to work extracting money from you guys for hand-writing letters (totes my idea btw) or whistling some noises.
Back in my day we had to use a catapult to move our explosives. Sometimes the old ways are best. Update this firmware motherfucker!
If this is developed in the US, its going to cost the world 200X as much money. Let Europe do it, and just license it to us. Besides, once it is pioneered, we will all just go to Mexico to have our unborn modified anyway, its only 10% of the price, and ...... almost as good.
Let the kids fap?
There is a TON of this very sort of thing around the scene. It was the Apple shit that seemed to start the term "jailbreak", before that it was just as you say, "hack", "exploit" and "crack". The worst I've seen them do personally is brick the system, which half the time can be recovered with a little more work. Like any other software, the community is the best source of information regarding specific exploits, and it pays to do a little research before moving forward with any sort of hack/exploit.
Back when the PSP was still shiny and new it was almost at a fever pitch. The cat and mouse game was a daily battle. Following along was lots of fun, but there was a TON of nasty shit mixed in with the real exploits.
This is a great little hobby to get the younger crowd interested in more than the user-space of their devices and exploring the hardware capabilities. The old guard scoffs, but it really get the wheels turning for the up and coming. My boy (11) moved directly to the Raspberry Pi after I showed him how to get one under on the old Wii. Great cure for the "I'm bored" problem on a rainy day.
I don't play it very often, but I enjoy the jailbreak scene. Right now its the only console in my house that's not modded in someway. I'll jailbreak it, backup all my games to an external hd or sd card, figure out that I can ftp around and explore the file-system and flash.... and then never play it again.
Sometimes its more about the journey, not the destination.
Sounds good. Do it.
Since neither is getting elected, How Nice.
We the people are pretty unhappy with what we've been served this time around, and over the past few years there have been quite a few "FIRST blankety blank blank" headlines.
Ol' Bernie managed to make a whole lot of young whipersnappers start paying attention... lots of new voices, very few of them happy with the crazy or the corrupt.
There is still hope.
Then hell yes. I've been waiting for this ever since I saw Leeloo Dallas use a microwave. CHEEK-ON!
There actually _ are _ crimes I'd like prosecuted, like tax evasion. I pay mine after all.
It's statements like these that got us where we are today.
Not even close.
There are mountains of reasons why the use of a bomb strapped to a robot and driven on top of a bad-guy is not even close to a sniper ventilating a bad-guy. Many good examples have been presented in the above comments, and many more will be voiced in the coming weeks.
With any luck, there will be cool thought out debate with all points thoroughly discussed before we roll out the new one-time-use kill bots to our local police forces.
Here's hoping.
I rail against password sharing on the regular. It's right up there with with the crafty old hidden under the keyboard bullshit. I have taken the time to setup your user, I have granted all the permissions needed for you to do your job. Use the GD tools I have provided, else request more.
When the surveillance guy sees you using somebody's creds, he is not going smile and ignore it. He is going to come to me with a reprimand, and to many of those means his businessmen stop coming and I don't get a raise next year. Then, if for some reason your system leaves the GD building (like I know its going to) and I lose physical control of it, I bet your going to spill all those (other peoples) passwords all over the net cuz your GD eyes gloss over when I explain to you what scary VPN shortcut on your fucking desktop is for, and I will find myself answering for it.
Spiffy little remote, integrated retail streaming services, cheap as dirt and runs Kodi to stream from your personal server. Wife friendly and android based.
My only bitch is a roundabout way I am forced to sideload apps and the way I have to drill way down into the settings to even launch my sideloaded apps.
We like it, and I may buy another.