If victims fail to pay the ransom or infect at least 1,000 other devices, the ransom note threatens to turn off the mining rig's fan and its overheat protection, leading to the device's destruction.
If this happened to one of my devices, the first thing I'd be doing is attaching the fan(s) directly to the power supply. You won't get any fan regulation, and possibly a lot of fan noise, but you won't need to worry about overheating.
Also, people who write ransomware are callous scum.
A journey of a thousand miles begins with a single step. You don't get the debt under control by spending more on something with zero value.
Ah.. So Democrats are now deficit hawks? Oh that's rich.. I seem to recall the ACA being pretty expensive over 10 years and nobody on that side of the isle batting an eyelash about it. In fact, the ACA was projected to cost $1 Trillion over 10 years and established a new entitlement that would continue to suck federal funds FOREVER at an ever increasing cost per year. Building a wall is a ONE TIME expense. After that, you just have to maintain it which is a fraction of the original cost. But a wall is now too expensive? Not to mention that that IF we actually build the wall, we can make the money we spend on patrolling and protecting the border more effective, effectively reducing future costs.
But we all know this isn't about the money. It never was about the money and arguing about it based on cost is not going to work out for those who oppose the wall.
IF you are all upset over Trump trying to come back to congress for more wall funding, fund the whole thing, ONCE. Just offer him $200 Billion for a physical barrier on the border with the stipulation that it won't be repeated. He will take the deal for sure and I'll bet ya that he actually builds a wall with the cash this time.
You're ignoring the statement you're replying to. It's not a complaint about spending. It's a complaint about spending on something with zero value.
I don't see these hyphens as random. They serve to make the meaning more exact.
Consider the difference between "full production aircraft" and "full-production aircraft". The first form could interpreted to mean "a production aircraft that is full (to capacity)". In the second form, there is no ambiguity whether "full" refers to the production or the aircraft.
My parents had a Zenith 19" color tv that lasted almost 25 years, and their 25" Zenith console TV lasted over 20.
Yes, but how much did TV signals change throughout those years? The NTSC standard lasted a very long time. You didn't need a new TV to keep up with new standards like digital / HD / Ultra-HD...
How about a law that mandates that the "smart" part of a Smart TV be a distinctly removable and upgradeable module?
It's not a question of how to disable the spying. It's that if enough people did disable it, the manufacturer could not make as much money on selling their data and would therefore have to increase the sticker price.
Sure, we could go to 3 factors next, like the competition. That seems like the logical thing to do. After all, two worked out pretty well, and three is the next number after two. So let's play it safe. Why innovate when we can follow? Oh, I know why: Because we're a business, that's why!
FWIW, my comment was not based on being "intolerant". I was offering advice based on 12 years of running my own one-man business. That is - an entrepreneur must value his/her own time as much as other tangible costs. In fact, in a low-manpower business, time is the most valuable commodity.
How much time is consumed by researching a bunch of options, then engaging in online discussions, over such a trivial question? How much could the business have earned by spending that time on something more profitable?
As for recommending Linux on a business laptop, I realize this is Slashdot and I'll get flamed for saying it, but you're in serious fringe territory there. Sure, I've heard of many businesses running on Linux, even quite large ones. And for servers, absolutely. But for laptops/desktops? I've worked as a technician and consultant in IT for 35 years. In other words, since before Linux existed. You know how many times I've seen Linux running on a company laptop? Maybe twice. One of those was my own.
Holy Christ man! If you are going to be stymied over a decision as minor as this, you are going to have trouble being a successful entrepreneur. What is the difference in cost between the options you're weighing? A couple of hundred dollars? Make a decision and move on.
This kind of blanket statement show a complete lack of pragmatism. You are clearly an AMD fanboi in the same vein as anti-MS fanbois who would chant "anyone using a Windows operating system today is a complete fool".
The world of computing is not so black and white, and there are myriad reasons why one might choose a particular architecture or OS over another one. Don't presume to know everyone's usage cases better than they know them themselves.
More to the point, however, is the fact that in your entire rant against Intel, you only talk about "lock and key". You don't even mention the topic of speculative execution, which is the basis of these vulnerabilities.
Speculative execution is a class of vulnerabilities, not a specific implementation flaw, which is what makes it difficult to mitigate. If you stop using any speculative execution, you will take performance hit. So it becomes a question of risk vs benefit. Again, it's not simply black and white. The team at Intel is trying to figure out how to retain some of the benefits while mitigating the risks. Nobody wants to throw out the baby with the bathwater.
Perhaps in your world it's as simple as "just use only AMD", but I can assure you if everyone actually followed that advice, it would simply require the bad guys to focus all their attention on new targets, and inevitably, new vulnerabilities would be found. There is no perfect technology that can't be exploited, and probably never will be.
Sorry as pointed out during the recent US elections, using FTP to distribute data is insecure and legacy. HTTPS is superior because it has encryption.
It's not a superior transport mechanism. I'm talking about file transfers that can take hours or even days to complete. In my experience HTTP/HTTPS frequently fails on very large file transfers without any retry functionality. If encryption is a requirement, I can encrypt my files prior to transporting them.
You raise a good point. FTP can be a common protocol when transferring between system like Unix (native NFS file sharing) and Windows (native SMB file sharing).
Who says FTP is a dying technology? It serves a useful purpose. On occasion I need to download virtual machine images around 90GB in size, or larger. Filezilla + FTP is a very robust transport method. Trying to do this over HTTP will frequently run for hours (or days) and require starting over if an error occurs. FTP is also preferable to torrenting for this, since it doesn't require simultaneous uploading and lots of peers downloading the same image.
The evaluation fee is US$185,000. Applicants will be required to pay a US$5,000 deposit fee per requested application slot when registering. The deposit will be credited against the evaluation fee. Other fees may apply depending on the specific application path.
Of course it is expensive. That's the 'wholesale' price, which will be paid by Registry Service Providers, Internet Hosting Services, etc.
It will trickle down, eventually.
If you're thinking that some else (a Registry Service Provider) will bear the brunt of these fees, that's not quite right. Anyone who applies for a dTLD is in effect applying to become a Registry Service Provider. As described in the FAQ:
Please note that applying for a new gTLD is not the same as buying a domain name. An applicant for a new gTLD is, in fact, applying to create and operate a registry business supporting the Internet's domain name system. This involves a number of significant responsibilities, as the operator of a new gTLD is running a piece of visible Internet infrastructure.
The evaluation fee is US$185,000. Applicants will be required to pay a US$5,000 deposit fee per requested application slot when registering. The deposit will be credited against the evaluation fee. Other fees may apply depending on the specific application path.
This version of Shamoon overwrites original files with garbage data. This garbage data might look like encrypted content to an untrained eye, but it's just random bits of information that can't be recovered with an encryption key.
LOL. I'd like to meet the "trained eye" that can discern "random bits of information" from "encrypted content".
As a Unix / OpenBSD fan, I think this is kinda cool, but unless one needs to login to Windows from a Unix box, what would be the advantage of this over RDP? With RDP I can access graphical features, easily map local resources such as drives and printers, connect through a TS gateway, etc.
Someone I know took a 4-year degree in computer science without ever touching a terminal. Holey cards, line printers, and batch processing all of the way. Imagine all of that time and having no concept of interactive software.
My eldest brother completed a CS degree at SFU around 1977. I often saw him carrying around one of his assignments in the form of piles of punch cards held together with rubber bands. His experience would not have been completely without any concept of interactive software, however, since they did have teletypewriters. I recall playing a game of tic-tac-toe on one. Seemed quite amazing at the time.
Slashdot Mirror
It seems to me that human management is not reliable enough to assure that there won't be disastrous consequences with nuclear plants.
It seems to me that human management is not reliable enough to assure that there won't be disastrous consequences with Earth's climate.
but judging by the video, the resolution looks terrible.
If victims fail to pay the ransom or infect at least 1,000 other devices, the ransom note threatens to turn off the mining rig's fan and its overheat protection, leading to the device's destruction.
If this happened to one of my devices, the first thing I'd be doing is attaching the fan(s) directly to the power supply. You won't get any fan regulation, and possibly a lot of fan noise, but you won't need to worry about overheating.
Also, people who write ransomware are callous scum.
It's impossible to paused when browsing their content without some preview automatically launching.
A journey of a thousand miles begins with a single step. You don't get the debt under control by spending more on something with zero value.
Ah.. So Democrats are now deficit hawks? Oh that's rich.. I seem to recall the ACA being pretty expensive over 10 years and nobody on that side of the isle batting an eyelash about it. In fact, the ACA was projected to cost $1 Trillion over 10 years and established a new entitlement that would continue to suck federal funds FOREVER at an ever increasing cost per year. Building a wall is a ONE TIME expense. After that, you just have to maintain it which is a fraction of the original cost. But a wall is now too expensive? Not to mention that that IF we actually build the wall, we can make the money we spend on patrolling and protecting the border more effective, effectively reducing future costs.
But we all know this isn't about the money. It never was about the money and arguing about it based on cost is not going to work out for those who oppose the wall.
IF you are all upset over Trump trying to come back to congress for more wall funding, fund the whole thing, ONCE. Just offer him $200 Billion for a physical barrier on the border with the stipulation that it won't be repeated. He will take the deal for sure and I'll bet ya that he actually builds a wall with the cash this time.
You're ignoring the statement you're replying to. It's not a complaint about spending. It's a complaint about spending on something with zero value.
I don't see these hyphens as random. They serve to make the meaning more exact.
Consider the difference between "full production aircraft" and "full-production aircraft". The first form could interpreted to mean "a production aircraft that is full (to capacity)". In the second form, there is no ambiguity whether "full" refers to the production or the aircraft.
Functional computer maybe. Not sure I would call it a laptop.
My parents had a Zenith 19" color tv that lasted almost 25 years, and their 25" Zenith console TV lasted over 20.
Yes, but how much did TV signals change throughout those years? The NTSC standard lasted a very long time. You didn't need a new TV to keep up with new standards like digital / HD / Ultra-HD...
How about a law that mandates that the "smart" part of a Smart TV be a distinctly removable and upgradeable module?
It's not a question of how to disable the spying. It's that if enough people did disable it, the manufacturer could not make as much money on selling their data and would therefore have to increase the sticker price.
I took if off my network after that, I even blocked the MAC in my router just in case.
Were you concerned it was going to plug itself back in?
Fuck it. We're going to five factors.
Sure, we could go to 3 factors next, like the competition. That seems like the logical thing to do. After all, two worked out pretty well, and three is the next number after two. So let's play it safe. Why innovate when we can follow? Oh, I know why: Because we're a business, that's why!
FWIW, my comment was not based on being "intolerant". I was offering advice based on 12 years of running my own one-man business. That is - an entrepreneur must value his/her own time as much as other tangible costs. In fact, in a low-manpower business, time is the most valuable commodity.
How much time is consumed by researching a bunch of options, then engaging in online discussions, over such a trivial question? How much could the business have earned by spending that time on something more profitable?
As for recommending Linux on a business laptop, I realize this is Slashdot and I'll get flamed for saying it, but you're in serious fringe territory there. Sure, I've heard of many businesses running on Linux, even quite large ones. And for servers, absolutely. But for laptops/desktops? I've worked as a technician and consultant in IT for 35 years. In other words, since before Linux existed. You know how many times I've seen Linux running on a company laptop? Maybe twice. One of those was my own.
Holy Christ man! If you are going to be stymied over a decision as minor as this, you are going to have trouble being a successful entrepreneur. What is the difference in cost between the options you're weighing? A couple of hundred dollars? Make a decision and move on.
Anyone using Intel CPUs today is a complete fool.
This kind of blanket statement show a complete lack of pragmatism. You are clearly an AMD fanboi in the same vein as anti-MS fanbois who would chant "anyone using a Windows operating system today is a complete fool".
The world of computing is not so black and white, and there are myriad reasons why one might choose a particular architecture or OS over another one. Don't presume to know everyone's usage cases better than they know them themselves.
More to the point, however, is the fact that in your entire rant against Intel, you only talk about "lock and key". You don't even mention the topic of speculative execution, which is the basis of these vulnerabilities.
Speculative execution is a class of vulnerabilities, not a specific implementation flaw, which is what makes it difficult to mitigate. If you stop using any speculative execution, you will take performance hit. So it becomes a question of risk vs benefit. Again, it's not simply black and white. The team at Intel is trying to figure out how to retain some of the benefits while mitigating the risks. Nobody wants to throw out the baby with the bathwater.
Perhaps in your world it's as simple as "just use only AMD", but I can assure you if everyone actually followed that advice, it would simply require the bad guys to focus all their attention on new targets, and inevitably, new vulnerabilities would be found. There is no perfect technology that can't be exploited, and probably never will be.
Sorry as pointed out during the recent US elections, using FTP to distribute data is insecure and legacy. HTTPS is superior because it has encryption.
It's not a superior transport mechanism. I'm talking about file transfers that can take hours or even days to complete. In my experience HTTP/HTTPS frequently fails on very large file transfers without any retry functionality. If encryption is a requirement, I can encrypt my files prior to transporting them.
You raise a good point. FTP can be a common protocol when transferring between system like Unix (native NFS file sharing) and Windows (native SMB file sharing).
Why Filezilla, a client for a dying technology?
Who says FTP is a dying technology? It serves a useful purpose. On occasion I need to download virtual machine images around 90GB in size, or larger. Filezilla + FTP is a very robust transport method. Trying to do this over HTTP will frequently run for hours (or days) and require starting over if an error occurs. FTP is also preferable to torrenting for this, since it doesn't require simultaneous uploading and lots of peers downloading the same image.
Seriously? This gets modded +5 insightful?
This "delete Windows to fix problem" trope is old, tired, and predictable as hell on Slashdot.
The evaluation fee is US$185,000. Applicants will be required to pay a US$5,000 deposit fee per requested application slot when registering. The deposit will be credited against the evaluation fee. Other fees may apply depending on the specific application path.
Of course it is expensive. That's the 'wholesale' price, which will be paid by Registry Service Providers, Internet Hosting Services, etc.
It will trickle down, eventually.
If you're thinking that some else (a Registry Service Provider) will bear the brunt of these fees, that's not quite right. Anyone who applies for a dTLD is in effect applying to become a Registry Service Provider. As described in the FAQ:
Please note that applying for a new gTLD is not the same as buying a domain name. An applicant for a new gTLD is, in fact, applying to create and operate a registry business supporting the Internet's domain name system. This involves a number of significant responsibilities, as the operator of a new gTLD is running a piece of visible Internet infrastructure.
The evaluation fee is US$185,000. Applicants will be required to pay a US$5,000 deposit fee per requested application slot when registering. The deposit will be credited against the evaluation fee. Other fees may apply depending on the specific application path.
I took your advice - it hasn't made any difference!
216.105.38.15 slashdot.org
This version of Shamoon overwrites original files with garbage data. This garbage data might look like encrypted content to an untrained eye, but it's just random bits of information that can't be recovered with an encryption key.
LOL. I'd like to meet the "trained eye" that can discern "random bits of information" from "encrypted content".
As a Unix / OpenBSD fan, I think this is kinda cool, but unless one needs to login to Windows from a Unix box, what would be the advantage of this over RDP? With RDP I can access graphical features, easily map local resources such as drives and printers, connect through a TS gateway, etc.
The default shell is cmd.exe, but there is built-in support for Powershell and Bash.
Although I suppose one could just launch whatever other shell they want from the cmd prompt.
Someone I know took a 4-year degree in computer science without ever touching a terminal. Holey cards, line printers, and batch processing all of the way. Imagine all of that time and having no concept of interactive software.
My eldest brother completed a CS degree at SFU around 1977. I often saw him carrying around one of his assignments in the form of piles of punch cards held together with rubber bands. His experience would not have been completely without any concept of interactive software, however, since they did have teletypewriters. I recall playing a game of tic-tac-toe on one. Seemed quite amazing at the time.