Is there a kinect or similar motion sensing based applicaton for this? That's kind of the obvious way to do it instead of accelerometers on the wrist when what you really want to track is the torso - especially if people already have a kinect.
I wouldn't be surprised if that 20 something year old security researcher wasn't tipped off
I hate to extinguish your fantasy but script-kiddie shit is invariably shit so it's quite likely that the first person with a clue to take a really good look at the malware could find a hole. If your fantasy was correct somebody "connected" would be the one tipped off to claim the glory.
A bit odd calling NTFS "modern" when the filesystem on VMS had that feature. ZFS is a much better and more user friendly example in the way it handles snapshots.
That's a bit naive of you. Scammers work on the assumption that "there's a sucker born every minute". Word gets out, but then they just move onto someone that hasn't listened to the word or thinks "others got stung but I'll be ok".
Have you considered that the message "there are no winners here not even the criminals" would be written in exactly the same way? I think your shoot the messenger attitude is from not considering the context.
Here's an interesting but very fictional approach from an anime version of Manhatten - overpass the lot and put an overpass on the overpass! http://vignette1.wikia.nocooki...
Re: your sig and the Honeywell Lion ad: They had dozens of different ones like that on the back (I think) of many issues of Scientific American spanning a few years. Those and the Martin Gardner articles are the two things I remember most from those magazines.
Correct me if I'm wrong, but isn't this describing what actually happened in Detroit? Areas torn down for freeways that never recovered, despite a gimmick railway, a gimmick "building of the future" and the desperate attempt to get enough cash to save things via a casino.
Like I said, it certainly wouldn't happen in the initial phases
The initial phases were the discussion, not your unannounced goalpost shift, however this leads into other things that are still incorrect...
Plus I just told you already the fuel processing isn't that energy intensive with gas centrifuge tech
There is even a wikipedia page that will help, which leads into you next comment about a process that certainly does not happen for free:
The main issue would likely be the production of Uranium Hexafluoride
Rather an enormous issue without an on-planet industrial base bigger than Iran has now (for example) and kind of fundamental to the isotope separation process.
Getting the energy in place to boostrap the process is not particularly hard
I very strongly disagree and a reason is in your words:
The major issue is transporting all the industrial machinery and transplant the industrial processes required to manufacture the fuel and maintain the machinery in working condition
Perhaps you should consider how major an issue it is and you'll get an understanding of some of the posts above.
The pioneers going to California didn't bring blast furnaces in their covered wagons. Your suggestion is comparable to that. How about getting back on topic and considering what could be used to set up a colony and not a point to aim for after a few decades while generating electricity some other way. I've got nothing against nuke fanboys but it would help if you know a bit about the subject matter.
"Lazy admins" don't get to set policy, as you should know with a userid that low. Then again you should have known better than the advice to pay bitcoin to criminals and continue to encourage them.
to the Enterprise today
It's MS Windows. The only bit where it looks like an "Enterprise" is software falling over like disposable redshirts.
If a Windows computer running SMB was exposed to the internet
Maybe read something a little more credible and try again. There were dozens of ways anything like that would have got "owned" in minutes years before this new thing surfaced.
Certainly they should have blocked SMB shares from the internet.
That's not how it it gets on a network, even a large one like that. Somebody gets tricked into installing the malware from an email attachment or link via a vunerablity in IE or MS Office (Outlook not so good) and then it spreads across a local network via a weakness in an SMB implementation. Multiple levels of "fail" but not at the firewall, and not a lot that Microsoft's customers can do about it especially in a tight budget situation with IT as a very low priority.
Your suggestion (while a good one that would have already been done since it's so obvious) would not have helped.
I am waiting for the generation of ransomware which installs a shim driver that transparantly encrypts documents, but allows the user to access them for a certain period time (so all backups in 30-90 days are useless
You are waiting for criminals who will wait around for a long time, risking discovery by various traces and backtracking, instead of demanding money now. I think you'll be waiting for a while. It sounds like a really cool plot but I think we are still in "take the money and run" territory here instead of the TV master criminal zone.
If an enterprise has locked themselves into applications that run only on Windows, they are stupid
Maybe, but it happens A LOT. Also due to the moving target nature of MS Windows that means you get some of these applications that only work on specific versions as these vital applications. I have two users still on MS Windows XP - one to run an electronic testing application and another for a label printing program. They can still run MS Office 201*, firefox, thunderbird etc and don't need a lot of memory so they are feeling no pain about being on MS Windows XP - but it's vunerable as anything so it's lucky they only use those things for a few tasks.
But then again, my workplace also has nearly a dozen machines stuck on Solaris 6 due to vendor support demands with some software that was going to be migrated to another platform ten+ years ago but the new stuff still isn't ready - just as well those things have never connected to a network.
2) Simply saving to network/cloud drive won't save you from ransomware; They'll simply encrypt every NAS/cloud storage the user has access to.
It allows an economy of scale approach to dealing with the problem. More capable systems with different features now have access to the files, so now you can have snapshotting and access to external storage, such as tape, which is not going to all be online at once if the whole thing gets compromised. Doing that on a PC level is a bit of messing about, but on a shared filesystem level it's almost trivial. I agree with you on the "cloud" bit since you can't always trust a third party to have decent backups. An offsite copy that you have control over is ideal but requires resources. At the low end there are things like "owncloud" which has a versioning system so that if all the files are unusable you can roll back almost as if it's a snapshot on a real fileserver or a real backup onto tape/usb disk/something else that can be disconnected.
Luckily the script kiddies deploying the malware so far haven't been trying very hard to hide. Having a copy to a remote site fail due to running out of space because all the filenames are different in the encrypted version of the files was a day one warning in one case I heard about. Also there was a file in every changed directory with instructions on where to send the money - plus the web browser on the original infected host had it's home page changed to a message about where to send the money. These malware script kiddies want the money ASAP so your spy novel plot above doesn't sound very likely.
keep in mind some of the ransomware running around is sneaky, running transparently for weeks or months
Above poster, have you actually heard of such stealth malware in actual existence or are you just speculating about how you would do it without actually considering the motivations of these criminals at all? I've heard the above used as a flimsy excuse for why someone didn't have real backups but nothing about malware script kiddies actually being patient for months.
Libreoffice in a rare exception. It keeps some of it's settings (eg. allowing or disallowing read/write access to network drives) in a script that gets replaced with every update instead of somewhere sensible.
But this isn't a zero-day. "Microsoft issued a patch for this vulnerability last March, but there are already 36,000 Wana Decrypt0r victims all over the globe, due to the fact they failed to install it."
Since there were so many people that turned off updates to avoid getting MS Windows 10 unasked I don't think blaming the victims is a useful approach.
Yes, just like coding. Any ten year old can do it (it's called sarcasm used to defeat cluelessness). Have I laid it on thick enough yet to intersect with something you are aware of?
I suggest you consider what has been in the news about Iran for more than the last decade to get an idea of how simple it is not.
I really don't get how people can get that idea that a tiny initial colony is going to immediately be able to make fuel rods when currently only a few nations on the planet can do it and require a lot of infrastructure to do so. In the meantime, where are they going to get all of that energy to do all the mining and that incredibly energy intensive fuel processing? Sure, you get a lot more out that you put in but you need to get started somehow.
I think you mean "liquid fluoride". A bit of a difference.
Don't let one little typo when I decided to quickly expand the acronym distract you. The research from that now ancient thing has been built on and improved so it can be filed with Tesla's broadcast power as what looked like a good idea at the time that we now know better than to try to use.
Obvious really - when a vendor uses a client for advertising purposes without warning it puts extra unwanted pressure on the client. That's why ethical companies don't do that sort of thing to their customers.
Yes - 3kW. A lot of the people here look after servers that draw about half that each. Not much for all that weight is it? You can have an RTG that produces a lot more than that but it doesn't last anywhere near as long.
Slashdot Mirror
Is there a kinect or similar motion sensing based applicaton for this? That's kind of the obvious way to do it instead of accelerometers on the wrist when what you really want to track is the torso - especially if people already have a kinect.
Because steampunk is fantasy.
I hate to extinguish your fantasy but script-kiddie shit is invariably shit so it's quite likely that the first person with a clue to take a really good look at the malware could find a hole.
If your fantasy was correct somebody "connected" would be the one tipped off to claim the glory.
A bit odd calling NTFS "modern" when the filesystem on VMS had that feature.
ZFS is a much better and more user friendly example in the way it handles snapshots.
That's a bit naive of you.
Scammers work on the assumption that "there's a sucker born every minute".
Word gets out, but then they just move onto someone that hasn't listened to the word or thinks "others got stung but I'll be ok".
Have you considered that the message "there are no winners here not even the criminals" would be written in exactly the same way?
I think your shoot the messenger attitude is from not considering the context.
Here's an interesting but very fictional approach from an anime version of Manhatten - overpass the lot and put an overpass on the overpass!
http://vignette1.wikia.nocooki...
Re: your sig and the Honeywell Lion ad: They had dozens of different ones like that on the back (I think) of many issues of Scientific American spanning a few years. Those and the Martin Gardner articles are the two things I remember most from those magazines.
The source material was written decades ago.
Correct me if I'm wrong, but isn't this describing what actually happened in Detroit?
Areas torn down for freeways that never recovered, despite a gimmick railway, a gimmick "building of the future" and the desperate attempt to get enough cash to save things via a casino.
The initial phases were the discussion, not your unannounced goalpost shift, however this leads into other things that are still incorrect ...
There is even a wikipedia page that will help, which leads into you next comment about a process that certainly does not happen for free:
Rather an enormous issue without an on-planet industrial base bigger than Iran has now (for example) and kind of fundamental to the isotope separation process.
I very strongly disagree and a reason is in your words:
Perhaps you should consider how major an issue it is and you'll get an understanding of some of the posts above.
The pioneers going to California didn't bring blast furnaces in their covered wagons. Your suggestion is comparable to that.
How about getting back on topic and considering what could be used to set up a colony and not a point to aim for after a few decades while generating electricity some other way.
I've got nothing against nuke fanboys but it would help if you know a bit about the subject matter.
Then again you should have known better than the advice to pay bitcoin to criminals and continue to encourage them.
It's MS Windows. The only bit where it looks like an "Enterprise" is software falling over like disposable redshirts.
Maybe read something a little more credible and try again. There were dozens of ways anything like that would have got "owned" in minutes years before this new thing surfaced.
That's not how it it gets on a network, even a large one like that. Somebody gets tricked into installing the malware from an email attachment or link via a vunerablity in IE or MS Office (Outlook not so good) and then it spreads across a local network via a weakness in an SMB implementation. Multiple levels of "fail" but not at the firewall, and not a lot that Microsoft's customers can do about it especially in a tight budget situation with IT as a very low priority.
Your suggestion (while a good one that would have already been done since it's so obvious) would not have helped.
It's normally a fairly safe assumption since the rare mac or *nix security problems get a label applied.
You are waiting for criminals who will wait around for a long time, risking discovery by various traces and backtracking, instead of demanding money now. I think you'll be waiting for a while.
It sounds like a really cool plot but I think we are still in "take the money and run" territory here instead of the TV master criminal zone.
Maybe, but it happens A LOT.
Also due to the moving target nature of MS Windows that means you get some of these applications that only work on specific versions as these vital applications. I have two users still on MS Windows XP - one to run an electronic testing application and another for a label printing program. They can still run MS Office 201*, firefox, thunderbird etc and don't need a lot of memory so they are feeling no pain about being on MS Windows XP - but it's vunerable as anything so it's lucky they only use those things for a few tasks.
But then again, my workplace also has nearly a dozen machines stuck on Solaris 6 due to vendor support demands with some software that was going to be migrated to another platform ten+ years ago but the new stuff still isn't ready - just as well those things have never connected to a network.
It allows an economy of scale approach to dealing with the problem.
More capable systems with different features now have access to the files, so now you can have snapshotting and access to external storage, such as tape, which is not going to all be online at once if the whole thing gets compromised. Doing that on a PC level is a bit of messing about, but on a shared filesystem level it's almost trivial.
I agree with you on the "cloud" bit since you can't always trust a third party to have decent backups. An offsite copy that you have control over is ideal but requires resources. At the low end there are things like "owncloud" which has a versioning system so that if all the files are unusable you can roll back almost as if it's a snapshot on a real fileserver or a real backup onto tape/usb disk/something else that can be disconnected.
These malware script kiddies want the money ASAP so your spy novel plot above doesn't sound very likely.
Above poster, have you actually heard of such stealth malware in actual existence or are you just speculating about how you would do it without actually considering the motivations of these criminals at all? I've heard the above used as a flimsy excuse for why someone didn't have real backups but nothing about malware script kiddies actually being patient for months.
Libreoffice in a rare exception.
It keeps some of it's settings (eg. allowing or disallowing read/write access to network drives) in a script that gets replaced with every update instead of somewhere sensible.
Since there were so many people that turned off updates to avoid getting MS Windows 10 unasked I don't think blaming the victims is a useful approach.
Yes, just like coding.
Any ten year old can do it (it's called sarcasm used to defeat cluelessness).
Have I laid it on thick enough yet to intersect with something you are aware of?
I suggest you consider what has been in the news about Iran for more than the last decade to get an idea of how simple it is not.
I really don't get how people can get that idea that a tiny initial colony is going to immediately be able to make fuel rods when currently only a few nations on the planet can do it and require a lot of infrastructure to do so.
In the meantime, where are they going to get all of that energy to do all the mining and that incredibly energy intensive fuel processing? Sure, you get a lot more out that you put in but you need to get started somehow.
Don't let one little typo when I decided to quickly expand the acronym distract you.
The research from that now ancient thing has been built on and improved so it can be filed with Tesla's broadcast power as what looked like a good idea at the time that we now know better than to try to use.
Obvious really - when a vendor uses a client for advertising purposes without warning it puts extra unwanted pressure on the client.
That's why ethical companies don't do that sort of thing to their customers.
Yes - 3kW.
A lot of the people here look after servers that draw about half that each.
Not much for all that weight is it?
You can have an RTG that produces a lot more than that but it doesn't last anywhere near as long.