the API surface will be smaller, the module will be better sandboxed, there will be real security and work to ensure users privacy (Andreas CTO at Mozilla promised this in his blog post on the topic).
Real security from Adobe? Bwahahah! Name an Adobe security success in the past decade!
And we'll get user privacy from the zombie tracking cookie company? Adobe actively opposes privacy as a business! Either your not too bright, or your a shill taking us for morons.
Swerve in front of the Apple patent lawyer, clip and deflect his car into the Justin Bieber fans knocking them into the telephone pole. Apple's car will doctor dash cam video to clearly show the accident was caused by stolen 'rounded corner' tech Samsung thieves included in 'telephone pole' - which also clearly incorporates Apple mobile telephone IP including the use of 'wire' and 'copper' to complete a phone call.
Because it's the only way to get the message across to corporate fucktards that we are in the internet era and updating your software is FUCKING MANDATORY.
Not enough of you are signing up for MS Live and MS Store. That's like stealing. Some corps have even blocked MS Store. That's why we've blocked offline updates to 8.1, made it mandatory and available via MS Store only. YOU WILL AGREE TO THE MS STORE Ts & Cs! In short, you will comply with whatever poison pill we care to server or we'll throw you to the malware thieves. Oh, and have a nice day!
The issue isn't the scanning, it is the abuse (potential) of humans inserting themselves into the process to data mine on SPECIFIC users, without any other controls in place. I don't care about my data being aggregated, I care about my data being mined to be used against me. Given enough data, all of us are vulnerable.
Technology isn't the problem. It never was. The problem is humans, and always will be.
How much are the emails of your competitor's best salesmen worth to you? What if they were scanned to forward only those between him and his customers? What if you got alerts when a new prospect emailed? There is so much profitable data in email if only you fully monetize it! (and resell it through a Business Intelligence '3rd party' so you can claim to be the victim when caught!)
Thus they'll have the pictures from drivers license photos. They'll make it mandatory for exercising your constitutionally guaranteed rights(* exclusions apply, complaints accepted in 'free speech' zones only) - so press passes, licenses of all types (esp. for guns) will require it.
The problem is the management structure leading to internal billing sounding like a good idea! Flat rate the costs unless they're really significant and you can't gauge who the users are. Make the flat rate based on 'reserved' units. i.e. a portion of the resources have 'priority' access for a dept. based on the amount the dept. allocated to the budget. They are still shared, but the sponsoring dept. has priority access. Infrequent users use the 'free' equipment or any 'reserved' unit not currently in use. Frequent users can fund additional 'sponsored' units if they need more. While imperfect, it's better than treating each bit of equipment like a rent-way rental.
The AC's idea of an RFID timeclock in the room is great if you must internally bill. A crude measure of usage should work if your office politics aren't toxic. If you really have problems with equipment abuse, you can use a webcam and review it only if there is unreported damage. Review the footage only with a managers approval with public knowledge every time it happens (with penalties for snooping) and you'll make junior NSA drama less likely.
Still, internal billing is very expensive operationally.
The one the governmental actors target? We know they want to discredit bitcoin. Why not make the effort profitable too? Stealing bitcoin discredits bitcoin while providing 'clean' funds for covert operations. Win-Win!
The folks who created Stuxnet could do this without a doubt. Why is anyone assuming this is being done by 'criminals'?
The defeat was more a matter of organization and tactics.
Exactly. The French were terribly led. Command was not granted based on ability, and they are a post child for the terrible consequences of doing that.
Add to that all the bloatware that Sony installed as standard and I really can't find an advantage.
At work a secretary played a Celine Deon CD on her PC, infecting it with one of the Sony root-kits just as I was making purchasing decision. I'm sure you're shocked to learn I placed Sony in the 'Hell No!' list.
Should the Sony Vaio division use their severance pay to hire hits on the Sony media division execs? They excluded Sony from consideration from a bit more than $100k of purchases I made...
Its time to put this experiment to bed. Like prohibition, which lasted 13 years, the Patriot act (now 13 years old), and damage it has caused needs to be rolled back. Not just Section 215, but other major portions of the act as well.
Like Cointelpro, they'll just rename and reshuffle the programs while still doing exactly what they want. You can't reveal they're back at it without committing a felony after all...
Please. We're talking about firmware here. It's pretty well tied to a clock. They don't have to release jack shit. All they have to do is code the time-released bug in the firmware before it even leaves the factory. Wow, your RAID controller failed suddenly 3 months out of warranty? Imagine that...
Nope, my HP server used a different trick. The raid array reports a discharged ram battery after a certain date, forcing the array to stop write back caching. Swapping array controllers and batteries showed that the motherboard firmware not the raid controller is the source of the problem.
A friend had one of those HP laptops. The wireless NIC failed first. HP support lied and said it was a Windows issue and she'd have to pay. They played the 'Windows problem' card again when it started locking up with video corruption. Once it failed completely just as the warranty expired they stalled for a few weeks then told her it's out of warranty so sorry!
I found reports showing that her failure was characteristic of HP's Nvidia problem, and that HP had instructed its support folks to lie. We called back and didn't get results without demonstrating a willingness to sue for fraud. HP of course, sent a replacement with the same hardware defect.
As for the current actions, I've not got full purchasing authority for our IT department in the server room. We've got 7 HP servers now. There won't be another. I can go with Supermicro or another white box.
You have a creative mind, but this has already been solved by non-persistent disks.
If your files and backups have been transparently encrypted for 6 months to a year that will not help you one bit. The key was on a malware server, and only copied to ram so your backup has no copy of the key. Your backups and off line disks newer than a year (or as long as the ransom folks care to wait) are all encrypted.
installing a low level driver. It will encrypt files, and backup programs will back up the encrypted stuff (a la Microsoft's EFS), but the user won't know because the driver will allow reading/writing for a period of time.
In the enterprise, incremental datastore backups as with PHDvirtual would save pre-infection data as long as your backup retention is long enough but the damage would still be severe. Using a transparent driver is really deadly. Hot spares and such would just be hit along with the primary systems.
So what if the ransomware targets existing encrypted backups? Target companies that must encrypt for secure off site backups (HIPAA), swap out the key and hold it for ransom when they need to do disaster recovery. (Say, because your malware wiped the production servers...)
Back in 1980s some do-gooders who want to punish those that frequent pron stores would note the license numbers of their cars, go to DMV to get address. Then send a letter with idea it is the wife that will open and read the letter about where their husband was at.
Today they'll use location data to see if you're part of anything those in political power oppose. If you are you'll be on the IRS audit list, the 'pull out of line' TSA list (if not on the no-fly list), and the 'pre-approval always denied' healthcare list. Why should anyone worry if you have nothing to hide?
Why yes I did look it up. I looked up a number of different systems in use. BMW's site has some ad-copy type information regarding the light turning as you do.
Not quite the same systems I assume since the Motorcycle has a banking system. But okay.
My 2001 SLK320's xenon headlights auto level every time I turn them on. You can visibly see them adjust each time. While I've never put a load in the trunk while the headlights are on to test to see whether they adjust continuously, just filling the trunk while the car is off will not result in oncoming drivers being blinded. Crappy aftermarket lights do that.
Facebook even creates "ghost profiles" for people who don't even sign up for an account, so without you ever giving consent, any interaction you have with those who do have account is logged. The site is a privacy nightmare.
Facebook takes your name, address, phone number and email address from your friends phones using the FB app. Your co-workers too -- you did give HR your 'emergency contact number' right? You can bet those are programmed into a phone contact list so HR can send a group message.
I'm sure you could be jobless and friendless living in a cave, but that's about the only way to avoid it now.
I suggest poisoning the database. Add false contacts to your phone, use one to sign up for store discount cards and fake Gmail/FB accounts. Just one per person is enough to screw up everything they're doing.
And when they say they dont do domestic data gathering you shouldn't trust them. NSA was already caught wiht its hand in the cookie jar.
Semantics; Assuming it's not a baldfaced lie, they can 'partner' with the NSA then 'share resources' and they've got their hands on the results of domestic spying while only having encouraged and facilitated it themselves.
In the US, courts have ruled that corporate spying on individuals is legal so 'privatizing' the actual data gathering launders it into legality under this time honored principle: 'What are you gonna do about it, you're powerless'.
Most car fires are the result of defective or worn wiring. Gasoline catches fires as the result of a collision. Diesel generally won't catch fire since it's the same as home heating oil, which only burns when sprayed as an aerosol. When a new expensive electric vehicle catches fire, it is news.
I've witnessed two that happened for other reasons.
80s Chrysler with an engine block made of such poor steel that the valve cover bolts (which are under very little stress) pulled from the block, dripping oil down the back of the block onto the exhaust manifold catching the car on fire. The hood release cable was carefully placed so that it's casing melted, the hood couldn't be opened to extinguish the flames and the car was totaled.
Autozone sold a hose fitting for fuel line use that actually melted in gasoline.
This is nice to, say, stop Comcast from spying on the details of what you view for resale to behavioral trackers and marketers. Given the compromise of the SSL cert authorities, governmental entities can transparently man-in-the-middle the SSL session anyway so we only get part of what we'd like to achieve.
They now have cameras, character recognition and databases that can track you pretty much anywhere.
What we NEED is a court to rule that data-mining constitutes an ersatz search and is protected.
Any Onstar like system tracks you too, as well as being a bug (the mike can be remotely turned on) and a remote car control. Modern cell phones are all remote tracking, logging, bug devices. Several states are moving to make vehicle registration require location tracking, with permanent warrant-less tracking. (You can trust us! Really! Not like every other time this time, we promise Charlie Brown!)
Slashdot Mirror
the API surface will be smaller, the module will be better sandboxed, there will be real security and work to ensure users privacy (Andreas CTO at Mozilla promised this in his blog post on the topic).
Real security from Adobe? Bwahahah! Name an Adobe security success in the past decade!
And we'll get user privacy from the zombie tracking cookie company? Adobe actively opposes privacy as a business! Either your not too bright, or your a shill taking us for morons.
Swerve in front of the Apple patent lawyer, clip and deflect his car into the Justin Bieber fans knocking them into the telephone pole. Apple's car will doctor dash cam video to clearly show the accident was caused by stolen 'rounded corner' tech Samsung thieves included in 'telephone pole' - which also clearly incorporates Apple mobile telephone IP including the use of 'wire' and 'copper' to complete a phone call.
Because it's the only way to get the message across to corporate fucktards that we are in the internet era and updating your software is FUCKING MANDATORY.
Not enough of you are signing up for MS Live and MS Store. That's like stealing. Some corps have even blocked MS Store. That's why we've blocked offline updates to 8.1, made it mandatory and available via MS Store only. YOU WILL AGREE TO THE MS STORE Ts & Cs! In short, you will comply with whatever poison pill we care to server or we'll throw you to the malware thieves. Oh, and have a nice day!
The issue isn't the scanning, it is the abuse (potential) of humans inserting themselves into the process to data mine on SPECIFIC users, without any other controls in place. I don't care about my data being aggregated, I care about my data being mined to be used against me. Given enough data, all of us are vulnerable.
Technology isn't the problem. It never was. The problem is humans, and always will be.
How much are the emails of your competitor's best salesmen worth to you? What if they were scanned to forward only those between him and his customers? What if you got alerts when a new prospect emailed? There is so much profitable data in email if only you fully monetize it! (and resell it through a Business Intelligence '3rd party' so you can claim to be the victim when caught!)
The summary should read
. The Google blog post does not mention other types of scanning (neither to confirm or deny their existence, nor to announce that they will cease).
Facilitating scanning for any purpose by '3rd parties' is still on the table too.
Thus they'll have the pictures from drivers license photos. They'll make it mandatory for exercising your constitutionally guaranteed rights(* exclusions apply, complaints accepted in 'free speech' zones only) - so press passes, licenses of all types (esp. for guns) will require it.
When somebody can attach a headband on you against your will, you are already enslaved.
Paying for it is a problem too. That's why we had design the Occulus -- so nerds would pay us to put that headband on.
The problem is the management structure leading to internal billing sounding like a good idea! Flat rate the costs unless they're really significant and you can't gauge who the users are. Make the flat rate based on 'reserved' units. i.e. a portion of the resources have 'priority' access for a dept. based on the amount the dept. allocated to the budget. They are still shared, but the sponsoring dept. has priority access. Infrequent users use the 'free' equipment or any 'reserved' unit not currently in use. Frequent users can fund additional 'sponsored' units if they need more. While imperfect, it's better than treating each bit of equipment like a rent-way rental.
The AC's idea of an RFID timeclock in the room is great if you must internally bill. A crude measure of usage should work if your office politics aren't toxic. If you really have problems with equipment abuse, you can use a webcam and review it only if there is unreported damage. Review the footage only with a managers approval with public knowledge every time it happens (with penalties for snooping) and you'll make junior NSA drama less likely.
Still, internal billing is very expensive operationally.
Which one is next?
The one the governmental actors target? We know they want to discredit bitcoin. Why not make the effort profitable too? Stealing bitcoin discredits bitcoin while providing 'clean' funds for covert operations. Win-Win!
The folks who created Stuxnet could do this without a doubt. Why is anyone assuming this is being done by 'criminals'?
The defeat was more a matter of organization and tactics.
Exactly. The French were terribly led. Command was not granted based on ability, and they are a post child for the terrible consequences of doing that.
Add to that all the bloatware that Sony installed as standard and I really can't find an advantage.
At work a secretary played a Celine Deon CD on her PC, infecting it with one of the Sony root-kits just as I was making purchasing decision. I'm sure you're shocked to learn I placed Sony in the 'Hell No!' list.
Should the Sony Vaio division use their severance pay to hire hits on the Sony media division execs? They excluded Sony from consideration from a bit more than $100k of purchases I made...
Its time to put this experiment to bed. Like prohibition, which lasted 13 years, the Patriot act (now 13 years old), and damage it has caused needs to be rolled back. Not just Section 215, but other major portions of the act as well.
Like Cointelpro, they'll just rename and reshuffle the programs while still doing exactly what they want. You can't reveal they're back at it without committing a felony after all...
When Oracle started doing this, they lost a massive load of goodwill.
How? They didn't have any to lose.
Please. We're talking about firmware here. It's pretty well tied to a clock. They don't have to release jack shit. All they have to do is code the time-released bug in the firmware before it even leaves the factory. Wow, your RAID controller failed suddenly 3 months out of warranty? Imagine that...
Nope, my HP server used a different trick. The raid array reports a discharged ram battery after a certain date, forcing the array to stop write back caching. Swapping array controllers and batteries showed that the motherboard firmware not the raid controller is the source of the problem.
A friend had one of those HP laptops. The wireless NIC failed first. HP support lied and said it was a Windows issue and she'd have to pay. They played the 'Windows problem' card again when it started locking up with video corruption. Once it failed completely just as the warranty expired they stalled for a few weeks then told her it's out of warranty so sorry!
I found reports showing that her failure was characteristic of HP's Nvidia problem, and that HP had instructed its support folks to lie. We called back and didn't get results without demonstrating a willingness to sue for fraud. HP of course, sent a replacement with the same hardware defect.
As for the current actions, I've not got full purchasing authority for our IT department in the server room. We've got 7 HP servers now. There won't be another. I can go with Supermicro or another white box.
It seems perfectly reasonable to me that the United States not share its knowledge and higher education with its enemies.
Why? A good general education program in Iran/Afghanistan would do a lot more to help fight the Taliban then the $4,000,000,000,000 they just wasted.
I meant "Iraq", obviously. The USA hasn't started on Iran and Syria yet.
Could that be why Iraq and Afghanistan aren't on this list of banned countries? Outrage!
You have a creative mind, but this has already been solved by non-persistent disks.
If your files and backups have been transparently encrypted for 6 months to a year that will not help you one bit. The key was on a malware server, and only copied to ram so your backup has no copy of the key. Your backups and off line disks newer than a year (or as long as the ransom folks care to wait) are all encrypted.
installing a low level driver. It will encrypt files, and backup programs will back up the encrypted stuff (a la Microsoft's EFS), but the user won't know because the driver will allow reading/writing for a period of time.
In the enterprise, incremental datastore backups as with PHDvirtual would save pre-infection data as long as your backup retention is long enough but the damage would still be severe. Using a transparent driver is really deadly. Hot spares and such would just be hit along with the primary systems.
So what if the ransomware targets existing encrypted backups? Target companies that must encrypt for secure off site backups (HIPAA), swap out the key and hold it for ransom when they need to do disaster recovery. (Say, because your malware wiped the production servers...)
Back in 1980s some do-gooders who want to punish those that frequent pron stores would note the license numbers of their cars, go to DMV to get address. Then send a letter with idea it is the wife that will open and read the letter about where their husband was at.
Today they'll use location data to see if you're part of anything those in political power oppose. If you are you'll be on the IRS audit list, the 'pull out of line' TSA list (if not on the no-fly list), and the 'pre-approval always denied' healthcare list. Why should anyone worry if you have nothing to hide?
Why yes I did look it up. I looked up a number of different systems in use. BMW's site has some ad-copy type information regarding the light turning as you do.
Not quite the same systems I assume since the Motorcycle has a banking system. But okay.
My 2001 SLK320's xenon headlights auto level every time I turn them on. You can visibly see them adjust each time. While I've never put a load in the trunk while the headlights are on to test to see whether they adjust continuously, just filling the trunk while the car is off will not result in oncoming drivers being blinded. Crappy aftermarket lights do that.
While I applaud the move, it is about competitive advantage for Google.
Facebook even creates "ghost profiles" for people who don't even sign up for an account, so without you ever giving consent, any interaction you have with those who do have account is logged. The site is a privacy nightmare.
Facebook takes your name, address, phone number and email address from your friends phones using the FB app. Your co-workers too -- you did give HR your 'emergency contact number' right? You can bet those are programmed into a phone contact list so HR can send a group message.
I'm sure you could be jobless and friendless living in a cave, but that's about the only way to avoid it now.
I suggest poisoning the database. Add false contacts to your phone, use one to sign up for store discount cards and fake Gmail/FB accounts. Just one per person is enough to screw up everything they're doing.
And when they say they dont do domestic data gathering you shouldn't trust them. NSA was already caught wiht its hand in the cookie jar.
Semantics; Assuming it's not a baldfaced lie, they can 'partner' with the NSA then 'share resources' and they've got their hands on the results of domestic spying while only having encouraged and facilitated it themselves.
In the US, courts have ruled that corporate spying on individuals is legal so 'privatizing' the actual data gathering launders it into legality under this time honored principle: 'What are you gonna do about it, you're powerless'.
Most car fires are the result of defective or worn wiring. Gasoline catches fires as the result of a collision. Diesel generally won't catch fire since it's the same as home heating oil, which only burns when sprayed as an aerosol. When a new expensive electric vehicle catches fire, it is news.
I've witnessed two that happened for other reasons.
80s Chrysler with an engine block made of such poor steel that the valve cover bolts (which are under very little stress) pulled from the block, dripping oil down the back of the block onto the exhaust manifold catching the car on fire. The hood release cable was carefully placed so that it's casing melted, the hood couldn't be opened to extinguish the flames and the car was totaled.
Autozone sold a hose fitting for fuel line use that actually melted in gasoline.
This is nice to, say, stop Comcast from spying on the details of what you view for resale to behavioral trackers and marketers. Given the compromise of the SSL cert authorities, governmental entities can transparently man-in-the-middle the SSL session anyway so we only get part of what we'd like to achieve.
They now have cameras, character recognition and databases that can track you pretty much anywhere.
What we NEED is a court to rule that data-mining constitutes an ersatz search and is protected.
Any Onstar like system tracks you too, as well as being a bug (the mike can be remotely turned on) and a remote car control. Modern cell phones are all remote tracking, logging, bug devices. Several states are moving to make vehicle registration require location tracking, with permanent warrant-less tracking. (You can trust us! Really! Not like every other time this time, we promise Charlie Brown!)