Maintaining Cybersecurity Insurance is a big deal in the US, I don't know about Europe. So vulnerability disclosure is problematic for data controllers because it threatens their insurance and premiums. Today much of enterprise security is attestation based and vulnerability disclosure potentially exposes companies to insurance fraud. If they stated that they maintained certain levels of security, and a disclosure demonstratively proves they do not, that is grounds for dropping a policy or even a lawsuit to reclaim paid funds.
So it sort of makes sense that companies would go on the attack because there's a risk that their insurance company will catch wind and they'll be on the hook.
It's not generally good financial advice to pay the overhead of an insurance company for costs you can easily pay yourself (also things like phone insurance, appliance warranty extensions, etc. won't make your device last longer and the insurer knows better than you what premium covers the average repair costs plus a profit margin). If you have a decent understanding of where the line is between vulnerability disclosure and criminal activities, fronting any court fees and a little bit of lawyer time (iff you can afford these out of pocket) until you're acquitted should be the better route, assuming anyone even ever takes you to court
> It's not generally good financial advice to pay the overhead of an insurance company for costs you can easily pay yourself
For a lot of companies, a lawsuit would be the end of them even if it's not financial ruin. Often times the decision to purchase insurance isn't made by the CEO but rather by the board of directors.
Board directives are often why you see companies adopting or trending towards certain activities that don't necessarily make sense. They might be at the benefit of a member of the board or one of the other companies they chair.
I wonder what that might reveal. Often decisions are made at the direction of the board of directors. I have to imagine they would be opposed to such disclosures as it might shine poorly on them.
Part of the motivation of reporting is clout and reputation. That sounds harsh or critical but for some folks their reputation directly impacts their livelihood. Sure the data controller doesn't care, but if you want to get hired or invited to conferences then the clout matters.
I have Night Light perpetually on with all of my devices because I find it softens everything and makes viewing displays less harsh, less garish, less vivid, and less intense. I don't need eye searing HDR constantly cooking my retinas.
Glue and seals weaken with exposure to temperature extremes in both directions. I found this out the hard way too.
I spent all day out in below freezing temps, when I got back to my hotel room and my smartband (not pebble) started to warm up, the screen just fell off. Everything still worked and the screen was lit up. Fortunately I discovered it before I ripped the screen off on something. When I got home I was able to glue the screen back on and it's been operating just fine, of course it's probably no longer waterproof.
Hoping this thing holds out until I get my Pebble.
Glue and seals weaken with exposure to temperature extremes in both directions. I found this out the hard way too.
Yeah, the stuff everyone uses in consumer electronics is crap.
I learned a lot about this after I got a used boat and started working on it myself. I wish manufacturers would take a page from the marine industry and use better quality materials like Stainless 316 for metal frames and fasteners (much more rust-resistant than common 304 Stainless), Santoprene for gaskets (a UV-resistant EDPM blend with a working temperature from -81°F to 275°F / -60°C to 135°C), higher quality adhesives, etc. I noticed SCUBA (diving) and SCBA (firefighting) hardware tends to be built somewhat better (though still not perfect), presumably because it's life-safety. And NASA and others pioneered incredible materials and assembly methods for aviation and spaceflight back in the day. We have the means to build for longevity, it just costs 3X+.
Don't even get me started about commodity vulcanized rubber coatings that become a sticky mess after a few years.
Were the wrong graphics used in the two examples shown? I overlayed them in Paint (yeah that's right Windows), and aside from the numbers in the top left they appear identical.
* Nevermind... Firefox wasn't showing the animation on the first one so all I was seeing was the first frame.
Given that not every device has built in GPS, it sounds like the Network Team is going to have to provide the locations of APs for that to work.
Curious how Teams will resolve that. If you're on your phone using a VPN back to your home network will it know or show you as at home? What happens if you have multiple APs at home?
There are public databases of APs. Google reportedly used their Android users to sniff APs (?), and used StreetView vehicles to wardrive. MS can surely pin many APs to user's PII and locations just on the data they already have?
Assuming this is how it functions, the network team would export the list of BSSIDs (I.e. AP+SSID+Band specific wireless MAC used) by location and then there's really nothing about being VPNed in or even having a remote work device which advertises the work Wi-Fi that would create some problem needing to be resolved.
Perhaps it can be derived indirectly, if you have all global positions in the area and can calculate back, with some uncertainty, who is where and when and how.
It's like in Minority Report. Though with not perfect accuracy yet.
You'd probably want to clone the BSSID of one of the APs, the SSID is unlikely to be used as it gives zero context to which office it's at most of the time.
Neo Deco is growing in popularity. There's a few youtube channels dedicated to art deco restoration and influencers showing off art deco motifs in their homes that have spurred the trend.
It's just the slow swing of the pendulum away from the AirSpace aesthetic that was the modern interpretation of mid-century modern that came out of the early 2000s.
It's so weird, Art Deco was in vogue for a while in the early 90s (see Batman '89, The Rocketeer), and the nostalgia cycle is just coming around again. I'll take Victorian or Art Nouveau instead, please.
So it sort of makes sense that companies would go on the attack because there's a risk that their insurance company will catch wind and they'll be on the hook.
reply