I do have a bias, but it's mostly that lawyers are crafty devils who know just how to skirt the law and make the most of any advantage they can find. They may say that it was so and so's wife, but I don't buy it for a second. Lawyers - the good ones that a company like Samsung can afford - know that courtroom cases are won and lost based on what is known and what is hidden. I honestly can't believe something as obvious as this was missed by everybody.
But for bias? Frankly I figure this lawsuit nonsense is the best thing ever to happen to the patent system. Eventually the kludge will break the system. Like anything else, you don't get money to do it right until doing it wrong proves to be a gigantic clusterf***.
That's not hard to figure out. They knew about it because they were involved in the lawsuit. I'd say they (they being a lawyer at the company, but probably not the lawyers involved - to avoid any potential misconduct) knew about it from the minute he showed up on a list of potential jurors and figured "Hey, ace in the hole right? If we lose we've got a strong case for juror misconduct and a mistrial."
...or does this not seem like the perfect opportunity for the competition to hoist Rogers by their own petard? I mean really - free speech? Then what's to stop me from telling the world about how Rogers phones emit a high powered form of ionizing radiation that causes impotence in males? That Rogers internet service will infect your computer with malware. That Alan Horn (Chairman) is an accused paedophile and that Nadir Mohammed (CEO) is terrorist?
Nope. Last I checked a mouthguard didn't really reduce the amount of pain taken in an impact, just the permanent damage it might cause. The plastic and foam shoulder pads allow a football player to hit and bit hit harder by distributing the point of impact. It's similar to boxing gloves allowing boxers to punch harder.
This. Russia and its antecedents have spent the better part of six hundred years trying to control Poland and her neighbours. Did anyone really think that the collapse of the Soviet Empire would change that?
On the surface it appears to be nothing more than a hassle for my department. To a point that's fine - that's what our department is paid to do. However there is an opportunity cost there - the time we spend cleaning up the mess is time we could have spent elsewhere. There's also cost to the students, staff and alumni involved in the attack (yes, we provide email to all three groups) - students and staff dislike the policy we have of making them prostrate themselves before our department to ask that they be let back in after falling victim to a phishing scheme while alumni actually have to be shuffled between departments trying to find the right people to talk to to get their account unlocked.
Further down the line we suffer some knock on effects. Government, in particular, has some stringent blacklists that we made following the recent spate of spam originating from our server. That's tough for a lot of our researchers who are working with the government on various and sundry projects. Or for students who are waiting to hear back on research grants. Business uses a lot of these lists too, but calling up a business and asking for them to correct their blacklist is fairly straightforward and is usually done within hours. The government is another matter altogether. It's usually faster to just wait until the ban expires rather than actually push to get removed.
So there are costs to phishing besides the nominal cost of bandwidth. And that's ignoring other phishing attacks I've seen scanning through some of our spam filter's archives. One that comes quickly to mind offers job opportunities to new graduates if they submit various pieces of person info (name, birth date, SIN number). Identity theft *is* common, and phishing is a common vector for identity theft.
As for the profitability I imagine it's a lot like most industries. A few guys with high grade organizations are raking it in, a few middle of the road companies are making enough to get by (usually taking contract work for the big guys) and the rest are lame duck orgs who think "get rich quick" and find out its not so.
Most of them go to my spam folder or get filtered into another folder that is not spam but might as well be for the number of times I look there. When one gets past that gauntlet I naturally want to find out how it did so and where my rules might need tuning. Because I thought it was fraud I started collecting info from the email to send to my bank's fraud division (as long as I was reading the email anyway) and it rolled from there.
Over reported? Possibly. Is it still a problem that is a long way from being solved? Yes.
Just last week the university that I work at suffered a significant phishing attack that compromised a large number of email accounts (we don't have a complete count yet - the phisher turned around and used those accounts to send out spam and he didn't use all of them at one time). How did it work? Well, it wasn't very sophisticated - a dupe of our webmail login page (at a different URL) and an email that said "dear {university} account user...blah...account being locked...blah...go to this page {link to copy of page with fugly URL}...blah" from a Yahoo address. And the students (arguably an intelligent bunch, and most young enough to know how computers and phishers work) drank the kool-aid, clicked on the link and, in the end, made quite a mess.
I've actually been in the room when people have said "hey, this Nigerian prince thing looks like a good idea" . I've spoke with people who let a phone caller from "Microsoft" take control of their PC. And it comes from both sides. I've received legitimate emails from my bank that l could've sworn up and down were from a spammer (unsolicited, from someone I've never met, from a branch that I don't go to, poorly formatted and offering me a free credit card) but which were upon further review (checked the email address and the phone number provided in the email with the bank's fraud division) were legit. That irks me the most because it just encourages people to accept stuff that doesn't pass the smell test.
The more press this kind of thing gets the better. I'm not saying it should take headlines and mindspace from other, worthy causes but the fact is that people - including me - are stupid. If you don't hit us over the head every once in awhile to remind us why we ought not to do this than we probably will.
As a parent and a husband I say bullshit. Mom can have all the money to go with the pussy and you know what? Fuck that. My daughter still comes first. And I will sacrifice everything and fight like a wounded animal to do what's best for her. Now there are some hills that aren't worth dying on. I don't truly care if my daughter gets her ears pierced while she's an infant or if we use cloth or disposable diapers. But vaccination? That's a hill worth dying on. That's something worth fighting for. Even if I lose.
Nope - not our fault. Oh we have a wonderfully fun accent (actually - we have a bunch of wonderfully fun accents, you can often tell where someone is from in Newfoundland by the lilt of their speech) but we do not say "a-boot". That's a mainland product pure and simple.
I totally agree, however it would seem that in this case the rule applies to returns of defective merchandise as well (as the subject of the story was returning a defective blu-ray).
FWIW - Costco has an insane return policy. We purchased a crib for my daughter there and my wife (who is far more concerned about such things) was worried about finding a matching dresser. This was fairly early in the pregnancy (we were buying the item because it was heavily discounted) and Costco essentially said that as long as we hadn't damaged the crib in any way we could return it. That kind of system is ripe for abuse (we wound up finding a matching dresser and keeping the crib, and I'm not sure a crib is something you buy for a week and return later anyway) but I'm still not sure how it is legal for a company to sell defective product and deny returns for it.
Easy solution - don't buy product from there for 90 days.
In all seriousness - how is this even legal? I know in Canada any goods sold must be of merchantable quality - which means they must work. If they are defective than the sale is void and the merchant must take them back. Even if I've returned another product within the last 90 days. Is there some kind of American consumer protection loophole they're exploiting here or do the laws not protect consumers at all south of the border?
As are a majority of the people that wind up being arrested. However if the issue is that "it's too easy to put people in jail, where this law allows peace officers to conduct strip search" shouldn't we be up in arms about the laws that allow a police office to drum up charges and throw people in jail at a whim? Once again - it seems to me this law is fairly sound - it's other laws around it that are not.
I'm not seeing the reason for all the umbrage here. Strip searching a prisoner who is being released into the general population of a prison (and not any offence, no matter how minimal, thank you very much submitter sl4shd0rk - but good on you for twisting things so that you could get more of a reaction from the knee-jerks) seems to me to be a valid idea. Protects the guards at the prison. Protects the other inmates. Unlike those of us who aren't in prison, prisoners have no right to privacy (and have never had) so it's not a violation of their rights. Can someone explain to me what the big deal is?
The thing is there are so many better ways to do things right now. For starters, you could force any retailer that wants to accept credit cards to upgrade to a chip and pin setup or lose their ability to accept credit cards. Chip and pin isn't perfect, but it's better than a magnetic stripe and a signature. For card not present transactions allow Visa card holders to create a one time credit card number (with a maximum limit) via the internet or over the phone. Want to buy something on line? Generate your own credit card number to the exact value of what you're buying. That CC # number expires at the end of the day - meaning that even if you gave it a ridiculous limit and then sent it to a shady site they'd have 24 hours to use it.
Of course implementing these fixes would cost more than just paying the scammers, so we'll never see it happen.
(a) That's a single river (well, many rivers really, but certainly not all of the water in Ethiopia). Why hold back on the development of other rivers? For that matter why kowtow to a distant nation? Why not try to secure international backing for your claims (as International Law clearly states that riparian nations are required to share waters in a fair and equitable manner)? There are lots of other options, (b) If it is Egypt (admittedly working through a dated treaty put in place by a European nation) that is forcing Ethiopia's hand, it is hardly the Empire building of European nations that is holding Ethiopia back.
While Western Imperialism did not help Mozambique in any way, to say that the poverty of African nations is a result of Imperialism is misguided. Ethiopia is a good example of this. It was only recently (the mid-20th century) and very briefly (1936-1944) brought under the control of a proper empire. For most of the rest of its history is has been a monarchy and has always had the potential to be fairly affluent - the soils there are quite fertile compared to neighbouring nations and the nation sits high above much of the rest of Africa making it the source for a dozen or so major rivers. However the nation is a poorly organized communist society - so very little of its fertile land is irrigated by its vast water reserves and it is usually one drought away from disaster.
Are there things we could do to make things easier for Ethiopia? Sure. Because of her robust economies anything the west does has significant effects on the rest of the world. However there are many contributing factors to the poor economies of Africa, many of which have more to do with the people and the governments of these nations than anything the western world has done. Compare Ethiopia and Mozambique to Botswana, which gained independence in 1966 and was, at the time, the poorest country in Africa. Now it has a robust economy and the 2nd highest GDP per capita in sub-Saharan Africa (after Seychelles).
Harper is just copying what Martin tried many, many moons ago when the Liberals were still relevant. The current bill is not that different from C-60 which was introduced in 2005 by the Liberals. That failed when government fell, as did C-61 and C-32 (which were introduced by the Conservatives). Harper's not any more evil - he's just better at it because he can lead his party to a majority...
I meant that the police could do it (record the decrypted stream or record the encrypted stream and decrypt it later upon request). As I said there has to be a certain amount of trust in the police which some people might lack, but if it's legislated - if they are allowed to use decryption only with this provisio for the commonweal - then it become an issue of enforcement.
(a) If you think any country in the so-called west is a police state, then you need an introduction to a real police state. Don't get me wrong - I'm sure there are rights violations and the police are heavy handed at times. However, that's what happens when you give people authority over others - some become heroes, some do a good job and some are corrupted. However calling the USA or any western country a police state is an insult to those actually living in a police state.
(b) I didn't say anything about anyone not having a right to listen to police radio. Under my proposed system you could acquire yesterday's police chatter and listen to it to your little heart's content. You can't listen to the live feed, but that's because there are often operational considerations where the safety of law enforcement officers and the general public. Unless you expect the police to stage some kind of coup overnight I don't know if knowing what they are up to right this instant is that important from the viewpoint of protecting one's rights.
Actually 'encrypt everything' is a perfectly fine solution. Even under the "protect our rights" flag (and I'm not sure how being able to follow police radio chatter is a rights issue) it would be trivial to either set up a station which can decrypt the radio traffic and record the traffic to a device somewhere. Hell - just record the encrypted stream and make it possible for people and the media to request access to radio traffic after forty-eight hours have passed.
The issue then becomes forcing the police to record all traffic and respond to requests, but that's a job for the judiciary (and is frankly no different than the situation now - lots of stuff can convienently go missing when it concerns police).
I guess, by your logic, we should bother to try and take down Global Botnets either because there are rapists and murderers out there who have yet to be caught. Obviously we have our priorities mixed up.
Leaving aside the whole "MegaUpload was a legitimate business" argument it's likely a matter of low hanging fruit. Shutting down a botnet is difficult. It's comand and control structures are usually obfuscated and redundant. It's operators are (usually) bright enough to cover their tracks. Innocent people/businesses are likely to get caught in the crossfire as their zombified PC's are often used to host significant portions of the systems. To say nothing of the fact that law enforcement agencies usually do not want to shine a light too directly at botnets - the cockroaches that run them tend to scatter to their hidey-holes rather quickly. Better rather to invest large amounts of time and effort to bring the thing down properly, so that there is a case against it's organizers. MegaUpload, on the other hand, was a business. Its location was known. Its infrastructure was known. Its CEO was known. No innovent bystanders. No way to hide.
Now I'm with you. I think it was wrong to bring down MegaUpload. But don't criticize law enforcement agencies for, upon deciding that MegaUpload was in violation of the law, taking it down swiftly.
Slashdot Mirror
> "When Xbox One is on and you're simply having a conversation in your living room, your conversation is not being recorded or uploaded."
Says the company that jumped on board the PRISM train so happily and willingly....
I do have a bias, but it's mostly that lawyers are crafty devils who know just how to skirt the law and make the most of any advantage they can find. They may say that it was so and so's wife, but I don't buy it for a second. Lawyers - the good ones that a company like Samsung can afford - know that courtroom cases are won and lost based on what is known and what is hidden. I honestly can't believe something as obvious as this was missed by everybody.
But for bias? Frankly I figure this lawsuit nonsense is the best thing ever to happen to the patent system. Eventually the kludge will break the system. Like anything else, you don't get money to do it right until doing it wrong proves to be a gigantic clusterf***.
That's not hard to figure out. They knew about it because they were involved in the lawsuit. I'd say they (they being a lawyer at the company, but probably not the lawyers involved - to avoid any potential misconduct) knew about it from the minute he showed up on a list of potential jurors and figured "Hey, ace in the hole right? If we lose we've got a strong case for juror misconduct and a mistrial."
...or does this not seem like the perfect opportunity for the competition to hoist Rogers by their own petard? I mean really - free speech? Then what's to stop me from telling the world about how Rogers phones emit a high powered form of ionizing radiation that causes impotence in males? That Rogers internet service will infect your computer with malware. That Alan Horn (Chairman) is an accused paedophile and that Nadir Mohammed (CEO) is terrorist?
I mean it's all free speech right?
Nope. Last I checked a mouthguard didn't really reduce the amount of pain taken in an impact, just the permanent damage it might cause. The plastic and foam shoulder pads allow a football player to hit and bit hit harder by distributing the point of impact. It's similar to boxing gloves allowing boxers to punch harder.
This. Russia and its antecedents have spent the better part of six hundred years trying to control Poland and her neighbours. Did anyone really think that the collapse of the Soviet Empire would change that?
On the surface it appears to be nothing more than a hassle for my department. To a point that's fine - that's what our department is paid to do. However there is an opportunity cost there - the time we spend cleaning up the mess is time we could have spent elsewhere. There's also cost to the students, staff and alumni involved in the attack (yes, we provide email to all three groups) - students and staff dislike the policy we have of making them prostrate themselves before our department to ask that they be let back in after falling victim to a phishing scheme while alumni actually have to be shuffled between departments trying to find the right people to talk to to get their account unlocked.
Further down the line we suffer some knock on effects. Government, in particular, has some stringent blacklists that we made following the recent spate of spam originating from our server. That's tough for a lot of our researchers who are working with the government on various and sundry projects. Or for students who are waiting to hear back on research grants. Business uses a lot of these lists too, but calling up a business and asking for them to correct their blacklist is fairly straightforward and is usually done within hours. The government is another matter altogether. It's usually faster to just wait until the ban expires rather than actually push to get removed.
So there are costs to phishing besides the nominal cost of bandwidth. And that's ignoring other phishing attacks I've seen scanning through some of our spam filter's archives. One that comes quickly to mind offers job opportunities to new graduates if they submit various pieces of person info (name, birth date, SIN number). Identity theft *is* common, and phishing is a common vector for identity theft.
As for the profitability I imagine it's a lot like most industries. A few guys with high grade organizations are raking it in, a few middle of the road companies are making enough to get by (usually taking contract work for the big guys) and the rest are lame duck orgs who think "get rich quick" and find out its not so.
Most of them go to my spam folder or get filtered into another folder that is not spam but might as well be for the number of times I look there. When one gets past that gauntlet I naturally want to find out how it did so and where my rules might need tuning. Because I thought it was fraud I started collecting info from the email to send to my bank's fraud division (as long as I was reading the email anyway) and it rolled from there.
Over reported? Possibly. Is it still a problem that is a long way from being solved? Yes.
Just last week the university that I work at suffered a significant phishing attack that compromised a large number of email accounts (we don't have a complete count yet - the phisher turned around and used those accounts to send out spam and he didn't use all of them at one time). How did it work? Well, it wasn't very sophisticated - a dupe of our webmail login page (at a different URL) and an email that said "dear {university} account user...blah...account being locked...blah...go to this page {link to copy of page with fugly URL}...blah" from a Yahoo address. And the students (arguably an intelligent bunch, and most young enough to know how computers and phishers work) drank the kool-aid, clicked on the link and, in the end, made quite a mess.
I've actually been in the room when people have said "hey, this Nigerian prince thing looks like a good idea" . I've spoke with people who let a phone caller from "Microsoft" take control of their PC. And it comes from both sides. I've received legitimate emails from my bank that l could've sworn up and down were from a spammer (unsolicited, from someone I've never met, from a branch that I don't go to, poorly formatted and offering me a free credit card) but which were upon further review (checked the email address and the phone number provided in the email with the bank's fraud division) were legit. That irks me the most because it just encourages people to accept stuff that doesn't pass the smell test.
The more press this kind of thing gets the better. I'm not saying it should take headlines and mindspace from other, worthy causes but the fact is that people - including me - are stupid. If you don't hit us over the head every once in awhile to remind us why we ought not to do this than we probably will.
As a parent and a husband I say bullshit. Mom can have all the money to go with the pussy and you know what? Fuck that. My daughter still comes first. And I will sacrifice everything and fight like a wounded animal to do what's best for her. Now there are some hills that aren't worth dying on. I don't truly care if my daughter gets her ears pierced while she's an infant or if we use cloth or disposable diapers. But vaccination? That's a hill worth dying on. That's something worth fighting for. Even if I lose.
Nope - not our fault. Oh we have a wonderfully fun accent (actually - we have a bunch of wonderfully fun accents, you can often tell where someone is from in Newfoundland by the lilt of their speech) but we do not say "a-boot". That's a mainland product pure and simple.
I totally agree, however it would seem that in this case the rule applies to returns of defective merchandise as well (as the subject of the story was returning a defective blu-ray).
FWIW - Costco has an insane return policy. We purchased a crib for my daughter there and my wife (who is far more concerned about such things) was worried about finding a matching dresser. This was fairly early in the pregnancy (we were buying the item because it was heavily discounted) and Costco essentially said that as long as we hadn't damaged the crib in any way we could return it. That kind of system is ripe for abuse (we wound up finding a matching dresser and keeping the crib, and I'm not sure a crib is something you buy for a week and return later anyway) but I'm still not sure how it is legal for a company to sell defective product and deny returns for it.
Easy solution - don't buy product from there for 90 days.
In all seriousness - how is this even legal? I know in Canada any goods sold must be of merchantable quality - which means they must work. If they are defective than the sale is void and the merchant must take them back. Even if I've returned another product within the last 90 days. Is there some kind of American consumer protection loophole they're exploiting here or do the laws not protect consumers at all south of the border?
As are a majority of the people that wind up being arrested. However if the issue is that "it's too easy to put people in jail, where this law allows peace officers to conduct strip search" shouldn't we be up in arms about the laws that allow a police office to drum up charges and throw people in jail at a whim? Once again - it seems to me this law is fairly sound - it's other laws around it that are not.
I'm not seeing the reason for all the umbrage here. Strip searching a prisoner who is being released into the general population of a prison (and not any offence, no matter how minimal, thank you very much submitter sl4shd0rk - but good on you for twisting things so that you could get more of a reaction from the knee-jerks) seems to me to be a valid idea. Protects the guards at the prison. Protects the other inmates. Unlike those of us who aren't in prison, prisoners have no right to privacy (and have never had) so it's not a violation of their rights. Can someone explain to me what the big deal is?
The thing is there are so many better ways to do things right now. For starters, you could force any retailer that wants to accept credit cards to upgrade to a chip and pin setup or lose their ability to accept credit cards. Chip and pin isn't perfect, but it's better than a magnetic stripe and a signature. For card not present transactions allow Visa card holders to create a one time credit card number (with a maximum limit) via the internet or over the phone. Want to buy something on line? Generate your own credit card number to the exact value of what you're buying. That CC # number expires at the end of the day - meaning that even if you gave it a ridiculous limit and then sent it to a shady site they'd have 24 hours to use it.
Of course implementing these fixes would cost more than just paying the scammers, so we'll never see it happen.
(a) That's a single river (well, many rivers really, but certainly not all of the water in Ethiopia). Why hold back on the development of other rivers? For that matter why kowtow to a distant nation? Why not try to secure international backing for your claims (as International Law clearly states that riparian nations are required to share waters in a fair and equitable manner)? There are lots of other options,
(b) If it is Egypt (admittedly working through a dated treaty put in place by a European nation) that is forcing Ethiopia's hand, it is hardly the Empire building of European nations that is holding Ethiopia back.
While Western Imperialism did not help Mozambique in any way, to say that the poverty of African nations is a result of Imperialism is misguided. Ethiopia is a good example of this. It was only recently (the mid-20th century) and very briefly (1936-1944) brought under the control of a proper empire. For most of the rest of its history is has been a monarchy and has always had the potential to be fairly affluent - the soils there are quite fertile compared to neighbouring nations and the nation sits high above much of the rest of Africa making it the source for a dozen or so major rivers. However the nation is a poorly organized communist society - so very little of its fertile land is irrigated by its vast water reserves and it is usually one drought away from disaster.
Are there things we could do to make things easier for Ethiopia? Sure. Because of her robust economies anything the west does has significant effects on the rest of the world. However there are many contributing factors to the poor economies of Africa, many of which have more to do with the people and the governments of these nations than anything the western world has done. Compare Ethiopia and Mozambique to Botswana, which gained independence in 1966 and was, at the time, the poorest country in Africa. Now it has a robust economy and the 2nd highest GDP per capita in sub-Saharan Africa (after Seychelles).
Harper is just copying what Martin tried many, many moons ago when the Liberals were still relevant. The current bill is not that different from C-60 which was introduced in 2005 by the Liberals. That failed when government fell, as did C-61 and C-32 (which were introduced by the Conservatives). Harper's not any more evil - he's just better at it because he can lead his party to a majority...
And that worked out so well for Nixon didn't it.
I meant that the police could do it (record the decrypted stream or record the encrypted stream and decrypt it later upon request). As I said there has to be a certain amount of trust in the police which some people might lack, but if it's legislated - if they are allowed to use decryption only with this provisio for the commonweal - then it become an issue of enforcement.
(a) If you think any country in the so-called west is a police state, then you need an introduction to a real police state. Don't get me wrong - I'm sure there are rights violations and the police are heavy handed at times. However, that's what happens when you give people authority over others - some become heroes, some do a good job and some are corrupted. However calling the USA or any western country a police state is an insult to those actually living in a police state.
(b) I didn't say anything about anyone not having a right to listen to police radio. Under my proposed system you could acquire yesterday's police chatter and listen to it to your little heart's content. You can't listen to the live feed, but that's because there are often operational considerations where the safety of law enforcement officers and the general public. Unless you expect the police to stage some kind of coup overnight I don't know if knowing what they are up to right this instant is that important from the viewpoint of protecting one's rights.
Actually 'encrypt everything' is a perfectly fine solution. Even under the "protect our rights" flag (and I'm not sure how being able to follow police radio chatter is a rights issue) it would be trivial to either set up a station which can decrypt the radio traffic and record the traffic to a device somewhere. Hell - just record the encrypted stream and make it possible for people and the media to request access to radio traffic after forty-eight hours have passed.
The issue then becomes forcing the police to record all traffic and respond to requests, but that's a job for the judiciary (and is frankly no different than the situation now - lots of stuff can convienently go missing when it concerns police).
I guess, by your logic, we should bother to try and take down Global Botnets either because there are rapists and murderers out there who have yet to be caught. Obviously we have our priorities mixed up.
Leaving aside the whole "MegaUpload was a legitimate business" argument it's likely a matter of low hanging fruit. Shutting down a botnet is difficult. It's comand and control structures are usually obfuscated and redundant. It's operators are (usually) bright enough to cover their tracks. Innocent people/businesses are likely to get caught in the crossfire as their zombified PC's are often used to host significant portions of the systems. To say nothing of the fact that law enforcement agencies usually do not want to shine a light too directly at botnets - the cockroaches that run them tend to scatter to their hidey-holes rather quickly. Better rather to invest large amounts of time and effort to bring the thing down properly, so that there is a case against it's organizers. MegaUpload, on the other hand, was a business. Its location was known. Its infrastructure was known. Its CEO was known. No innovent bystanders. No way to hide.
Now I'm with you. I think it was wrong to bring down MegaUpload. But don't criticize law enforcement agencies for, upon deciding that MegaUpload was in violation of the law, taking it down swiftly.
...it should be something completely different