If you were an alien and you came here in 1991 and you wanted to learn how to develop software, you would learn ten times as much at Microsoft as anywhere else, I think, because I watched these companies kind of flail making mistakes. There were things--really basic things, that companies did not know. Microsoft knew that loading a segment register on the 386 was a very time-consuming operation, and therefore on the 386 architecture you can't use far pointers unless you absolutely have to because it's extremely slow. Borland did not know that. Result: Microsoft Access loaded in 2 or 3 seconds; Borland Paradox for Windows took 90 seconds to get running. Because of something that Microsoft knew that Borland did not know. And that's one of a million examples.
Now Microsoft has forgotten all these things, and they've hired a lot of morons that don't know these things anymore. I think that now Microsoft is kind of a big tar pit where you can barely move forward because there's so much bureaucracy. But I learned a lot.
So I clicked on the URL for the Visualizations and noticed the Creative Commons license. Then I clicked the Download button--one must be a member of Facebook (and/or Scribd) before one can download it--a needless restriction IMHO. So no download for me.
I think every software company should took the test, and every programmer looking for a job, should make the test to any company he could be interested.
It's my understanding that once a merchant receives an authorization number for a given transaction, the issuing credit card company is out the money, not the merchant, in this case (i.e., stolen information).
25. Are there fines associated with non-compliance of the PCI Data Security Standards?
Yes. Visa, MasterCard, and Discover Network may impose fines on their member banking institutions when merchants do not comply with PCI Data Security Standards. You are contractually obligated to indemnify and reimburse us, as your acquirer, for such fines. Please note such fines could be significant.
26. Are there fines if cardholder data is compromised?
Yes. If cardholder data that you are responsible for is compromised, you may be subject to the following liabilities and fines associated with non-compliance:
Potential fines of up to $500,000 (in the discretion of Visa, MasterCard, Discover Network or other card companies).
All fraud losses incurred from the use of the compromised account numbers from the date of compromise forward.
Cost of re-issuing cards associated with the compromise.
Cost of any additional fraud prevention/detection activities required by the card associations (i.e. a forensic audit) or costs incurred by credit card issuers associated with the compromise (i.e. additional monitoring of system for fraudulent activity).
The database contained a variety of customer financial data, including the customer's name, address, e-mail address, credit card number, as well as the expiration date and card verification value (CVV2) data. If true, that would mean that Twin America was in violation of Payment Card Industry (PCI) regulations on data retention, which prohibit retailers from permanently storing the CVV2 data along with other card data, because it makes it far easier to generate fraudulent transactions when combined with the card data.
Twin America said it has filed a complaint with the FBI's Internet Crime Complaint Center and hired Kroll, Inc. to investigate the incident. It has also notified individuals affected by the breach and patch discovered vulnerabilities on its Web server, deployed an application layer firewall, limited access to its Web based administrative panel and changed and hardened administrative passwords throughout its organization.
"A Dutch company has launched what it calls 'the world's simplest phone,' targeting users who are sick of new-generation models. Only capable of making and receiving calls, John's Phone is dubbed the world's simplest mobile phone, specifically designed for anti-smartphones users. It does not provide any hi-tech features. No apps. No Internet. No camera. No text messaging. All you have to do -- in fact, all you can do -- is call, talk and hang up."
Slashdot Mirror
"Printer friendly" URL isn't correctly redirecting; use this URL instead. (Sorry about this.)
I for one could use a good beaver survey, as there are very few at this engineering college.
It looks like they are standing in one of the evaporator ponds for the radioactive waste.
and translate customer speak into something that makes sense
Spoken as a true programmer--well done, sir!
Traitorware (TM), Pat. Pending. Pay up sucker! FTW!
Hookers and cocaine?
If you were an alien and you came here in 1991 and you wanted to learn how to develop software, you would learn ten times as much at Microsoft as anywhere else, I think, because I watched these companies kind of flail making mistakes. There were things--really basic things, that companies did not know. Microsoft knew that loading a segment register on the 386 was a very time-consuming operation, and therefore on the 386 architecture you can't use far pointers unless you absolutely have to because it's extremely slow. Borland did not know that. Result: Microsoft Access loaded in 2 or 3 seconds; Borland Paradox for Windows took 90 seconds to get running. Because of something that Microsoft knew that Borland did not know. And that's one of a million examples.
Now Microsoft has forgotten all these things, and they've hired a lot of morons that don't know these things anymore. I think that now Microsoft is kind of a big tar pit where you can barely move forward because there's so much bureaucracy. But I learned a lot.
Source: http://www.foundersatwork.com/joel-spolksy.html
Thanks for proving Santa does not exist. However by doing so you have also proved Trolls exist.
So I clicked on the URL for the Visualizations and noticed the Creative Commons license. Then I clicked the Download button--one must be a member of Facebook (and/or Scribd) before one can download it--a needless restriction IMHO. So no download for me.
He failed the grammar test:
I think every software company should took the test, and every programmer looking for a job, should make the test to any company he could be interested.
Do your team work in good conditions...
Rant over, I really need to lighten up. Merry Christmas all!
Merry Christmas to all, and to all a good knight.
Thanks for the links. I've bookmarked this site.
Or box cutters. Or shoes.
Sorry, my mistake. You are correct, sir. Thank you.
An authorization number is just that -- the issuer of the credit card has hereby authorized the transaction.
If the issuer knew the credit card was invalid (for whatever reason(s)), it would never have issued the authorization number in the first place.
Furthermore, an authorization number is not retroactive.
So we must agree to disagree.
I didn't click on the link; there's no way I'm going to voluntarily contribute a page hit after the Gawker fiasco.
It's my understanding that once a merchant receives an authorization number for a given transaction, the issuing credit card company is out the money, not the merchant, in this case (i.e., stolen information).
Well, that was cheeky of you, Johnson!
I want the "Ferrari from India" sound.
The credit card merchant services provides a hash value that is subsequently used. You may store the expiration date and last four digits.
Not law but:
Penalties for Non-compliance
25. Are there fines associated with non-compliance of the PCI Data Security Standards?
Yes. Visa, MasterCard, and Discover Network may impose fines on their member banking institutions when merchants do not comply with PCI Data Security Standards. You are contractually obligated to indemnify and reimburse us, as your acquirer, for such fines. Please note such fines could be significant.
26. Are there fines if cardholder data is compromised?
Yes. If cardholder data that you are responsible for is compromised, you may be subject to the following liabilities and fines associated with non-compliance:
Source: https://www.wellsfargo.com/biz/help/merchant/faqs/pci#Q25
Related story: Sightseeing Firm Overlooks Security, 110k Credit Card Numbers Stolen (emphasis added)
The database contained a variety of customer financial data, including the customer's name, address, e-mail address, credit card number, as well as the expiration date and card verification value (CVV2) data. If true, that would mean that Twin America was in violation of Payment Card Industry (PCI) regulations on data retention, which prohibit retailers from permanently storing the CVV2 data along with other card data, because it makes it far easier to generate fraudulent transactions when combined with the card data.
Twin America said it has filed a complaint with the FBI's Internet Crime Complaint Center and hired Kroll, Inc. to investigate the incident. It has also notified individuals affected by the breach and patch discovered vulnerabilities on its Web server, deployed an application layer firewall, limited access to its Web based administrative panel and changed and hardened administrative passwords throughout its organization.
Ice Cube will also serve double duty by studying Black Hos
Anti-Smartphone Phone Launched For Technophobes
"A Dutch company has launched what it calls 'the world's simplest phone,' targeting users who are sick of new-generation models. Only capable of making and receiving calls, John's Phone is dubbed the world's simplest mobile phone, specifically designed for anti-smartphones users. It does not provide any hi-tech features. No apps. No Internet. No camera. No text messaging. All you have to do -- in fact, all you can do -- is call, talk and hang up."
Here, read this--he's clearly referring to you.