Is /g/ following this Equifax crisis? How do you fuck up so

File: Equifucks had some musical bitch running their cyber security.jpg (112KB, 789x1200px) Image search: [Google]

112KB, 789x1200px

TeaMp0isoN fag here.

Like this.

>>62355113
they got sloppy with their security, their it was probably outsourced to pajeets anyway, with so much attack surface breach like this was bound to happen sooner or later.

File: 1382420514334.jpg (79KB, 345x343px) Image search: [Google]

79KB, 345x343px

>>62355151
>CSO has a Master's in Music Composition

This is the woman in charge of guarding hundreds of millions of credit card #'s, SSN's and other highly sensitive information?

God I hate nepotism so much. Like, if you'd holding on to my fucking SSN and CC info, I want you to have a PhD in fucking Data Security or something.

File: 1387694107863.jpg (333KB, 600x600px) Image search: [Google]

333KB, 600x600px

>Baking and credit information for almost half of America is now compromised
>Credit scores, identities, CC #s etc
>People's fucking identities are now compromised
>Banks rely on this information to be reputable in order to issue loans

Okay, be honest with me: What are the ramifications of this? How fucked are we?

>>62355151
I hope they learn their lesson..if not, then i hope they fuck up even more, i don't know how many times Americans are going to hit their heads until they learn that you need to hire someone that knows his field and have skills for the safety of everyone and not because of his gender or that diversity bullshit

>>62355331
Whoever filed with Equifax is fucked
I'm not because I didn't fall for the credit jew.

File: the smiley with the carrot nose.png (40KB, 500x500px) Image search: [Google]

40KB, 500x500px

>>62355151

>BA, Music Composition
>MFA, Music Composition
>Professional
>Professional
>Professional
>Chief Security Officer

an unregulated capitalist market ensures that only qualified people can get the positions they deserve.

File: 1475606566339.png (123KB, 509x889px) Image search: [Google]

123KB, 509x889px

By trusting your security to open sores shitware.

File: wew.jpg (400KB, 1272x1152px) Image search: [Google]

400KB, 1272x1152px

It's like one disaster after another

>PSA: no matter what, Equifax may tell you you’ve been impacted by the hack

https://techcrunch.com/2017/09/08/psa-no-matter-what-you-write-equifax-may-tell-you-youve-been-impacted-by-the-hack/

>TL;DR: No matter what you enter into Equifax's UNSECURE(!!!!!) "have you been compromised" tool, it'll report that you've been compromised.

How soon until we see Equifax board members going anhero?

>>62355113

Industrial espionage by professional criminals.

Again, the internet is not a secured network and has never been one.

Encryption is just a deterrent keeping honest users honest.

>>62356239
> Encryption is just a deterrent
Are you retarded or is this just a meme?

>>62355113
I have a question, is it possible to come back from this? I mean it's like being a compromised certificate company.

>>62355930
> it'll report that you've been compromised.

But that's not true. I entered my data and It said I was fine. My Co-worker did the same and was fine as well.

The talk right now is irma but imo this should be the biggest news. We still don't know much about what happened, and pretty sad that MSM isn't following up much either. There should be riots on the streets but I guess america doesn't give a fuck.

>>62355475

I heard that it doesn't matter whether you had credit or not and that you could still be impacted.

>>62355331
Not fucked at all. Most Americans CCs, SSNs, Names, Addresses, and so forth have been exposed time and time again by other big companies.

There are services in placed to not get fucked when something like this happens. ffs you can even tell the three major credit companies to deny any attempts to open credit lines against your SSN and having your CC info out there is a joke when you can literally get it changed overnight now a days.

Unless you're an idiot and don't pay attention you'll be fine.

File: 1465229986809.gif (833KB, 200x200px) Image search: [Google]

833KB, 200x200px

>>62355113
If you run a dentist office you are legally required to dover and lock the patient records, even if the front door is locked because someone might see them through the goddamned window.

Meanwhile, these faggots can just store shit reachable online. Whne the fuck are baby-boomers going to get the goddamned clue that if it's reachable online it's the same as posting it on a bullitin board in the public square?

Boomers pls go already, while we still have a vague chance at saving the world you shat all over.

>>62356326
A come back implies they've lost something.
You have no choice whether or not they get your data.

>didn't tell the public for over a month

Fucking dumbasses. Had to set up a fraud alert this morning just to be safe.

>>62355487
Nepotism did nothing wrong.

File: 1483936951755.webm (3MB, 960x540px) Image search: [Google]

3MB, 960x540px

big data was a mistake

>>62355113
The reality is that most network security is barely functional and we have no choice but to pray that no one finds some exploit that can be used to do shit like this.

>>62356300

It is a deterrent you idiot like locks on a door/safe.

You can crack encryption with sufficient time, motivation and resources.

The thing is that masses (a.k.a me, you and /g/tards) aren't worth the hassle and bother.

Big targets don't have that luxury. They are hoping that somebody doesn't crack their encryption schemes or find a serious exploit in them.

File: Dumpsterfire.jpg (626KB, 1080x2932px) Image search: [Google]

626KB, 1080x2932px

>>62356339
Read the article you fag
You can enter illegitimate data into it and get told you're being compromised.

Also, I REALLY hope you're not actually putting your real info into that site. It doesn't have its certs configured properly

>>62357562
It only says you MAY have been compromised.

>>62357124
Encryption isn't a fucking safe you brainlet retard. Done correctly modern encryption is like a bank vault and impenetrable in practice.

>>62357962
You think this all works like the movie hackers and mister robot don't you Bobby

>>62357962

It is not impenetrable my friend with sufficient time, resources and motivation.

Bank vaults can get robbed too with sufficient time, resources and motivation.

The key is "are you worth the risk and hassle?"

The overwhelming of users and servers aren't worth the hassle. Smart criminals prefer that their mainstream victims do all of the hard work for them (phishing, trojans, scamware).

Big targets don't have the luxury of being a "nobody" and they have worry about careless employees falling for phishing, trojans and malware.

>>62358415
Show me the crack for properly implemented AES256.

>>62358701

It is being work on already. The parties involved are keeping it low-key.

Encryption has always been an arms race. It is only a matter of time before AES256 is no longer "safe".

The most dangerous thing with security is assuming that your defenses are invulnerable and nothing can break through.

SELECT * FROM credit_scores LIMIT 150000000;

File: the_fool.jpg (117KB, 746x1302px) Image search: [Google]

117KB, 746x1302px

>>62358946
>asks for proof
>"dude it's out there already they are just being lowkey"

>>62358946
Holy shit, are you actually retarded?

>>62359065

It is being worked on you idiot. You think that black-hat crackers are going to just leave AES256 alone and call it quits?

They could have already found an exploit in it and that world doesn't know about it. They are just waiting for the opportunity to use it or sell it to the highest bidder.

Again, nothing is unbreakable in the absolute sense. You think bank vaults are just left unguarded because safecrackers can't easily break the door?

Encryption is simply a deterrent and a very good one if done properly. Pretending that it is unbreakable and renders all other security measures irrelevant is tomfoolery.

File: anco.jpg (26KB, 490x327px) Image search: [Google]

26KB, 490x327px

>>62359172
>Show me the crack for properly implemented AES256.
>it's being worked on you idiot
>they could have already found...
>they are just waiting for the opportunity...
whatever you say lad

European Union doesn't have this problem.

>>62359153

I live in the real world not some fantasy land.

Why do you think the most infamous security leaks happen? Because the victims were too overconfident that nobody will defeat their security measures and they become complacent.

Never assume anything is 100% bullet proof because you will end-up letting your guard down.

>>62359232
>Why do you think the most infamous security leaks happen?
they don't happen from breaking AES256 that is for sure

>>62359188

Keep laughing it up until that exploit comes (assuming one gets discovered in the near-future) around and rapes our collective asses with no lube.

>>62355151
>>62355225
>>62355487
When you work in any industry, you'll soon learn that managers rarely have experience in what they're managing.

She doesn't "do" anything related to information security, but her subordinates do.
They report things to her and she reports the relevant bits to upper management.

>>62357124
>You can crack encryption with sufficient time
Yes, sufficient time like ten times the lifetime of the universe

>>62359232
>Why do you think the most infamous security leaks happen?
Because of music majors running critical infrastructure behind Apache/Wordpress instances.

>>62359172
Nothing is getting by properly implemented AES256 anytime soon, you dumb faggot. Nothing is uncrackable, but no one has been able to beat it for over a decade. As of right now it's completely secure.

>>62355576
>Implying closed source software is better
The vulnerability was discovered by a 3rd party because it's open source, you brainlet
That said struts is an old piece of shit and that parsing code has had more vulnerabilities than you can count on your fingers

>>62359367

That's a dangerous assumption my friend. It is mostly secure not "100% secure". Always assume that somebody will find a fault in within that time frame how unlikely it may appear to be on paper.

>>62359430
Please explain to me how CORRECTLY implemented AES256 is anything but 100% secure.

>>62359449
cold boot attacks

>>62359355

>implying CSO isn't a fancy term for a cushy upper management position a.k.a PHB.

>what is Peter Principle.

All these decisions were born from overconfidence and complacency.

>>62359355
I bet the alarm siren sounded fucking awesome, though.

>>62359301
>When you work in any industry, you'll soon learn that managers rarely have experience in what they're managing.
>the status quo is the optimal operating parameter, and is how everyone should operate

>>62359468
>implying those can't be easily prevented.

>>62355205
They didn't get sloppy. The attackers exploited a 7 year old vulnerability. They were always sloppy, even before this bitch >>62355151
came along. And you guys do realize there's more than one person on the security teams of these giant firms, right? You can't pin it on a single woman, especially when their team is probably male dominated.

>>62359449

Something out of the box perhaps.

Again, never ever assume that anything is "100% secure". Just secure enough that only handful of people would attempt to bother to crack/attack if given the opportunity and the masses can't easily access it.

>>62359497
I'm not saying it's optimal, I'm just saying that you shouldn't be surprised.
Managers need to be a people-person. You need to know how to appropriate delegate tasks, you need to know how to manage groups of people.

>>62359546
/r9k/ BTFO

>>62355113
They did it on purpose

>>62359563
/g/ BTFO

File: 1175770786733.jpg (3KB, 106x126px) Image search: [Google]

3KB, 106x126px

>>62355151
tfw having a vagina is the same as being black and affirmative action

>>62359612
Found the worthless neet virgin.
read
>>62359546
>>62359563

>>62355475
>Whoever filed with Equifax is fucked
Nobody "files" with Equifax

>>62359625
go back to tumblr you bleeding cunt

This is Trump's America and that bitch is taking the fall.

>>62359639
virgin loser lmao

>>62355225
>I want you to have a PhD in fucking Data Security or something.
I'd rather not, my experience is that self taught people are usually superior.

>>62359639
>drumpfts america
So that explains no wall whatsoever, money still being wasted on mudshit wars, products still being outsourced, critical failures everyfuckingwhere

Sad!

>>62359661
I get more pussy than you get dick lmao

>>62359672
Yes! Reminder that Edward Snowden dropped out of high school and was self-taught.

File: 1440616940437.png (139KB, 466x466px) Image search: [Google]

139KB, 466x466px

>>62359672

>>62359683
Hillary called it quits, and so should you.

Can't wait for more IT meltdowns under trump :)

>>62359563
you can't be effective at leading people if you don't even know what you're having them do.
and if you dont understand the projects you're managing, how do you expect to assign the right people to certain tasks based on their skillsets?
managers should have prior experience in the field their working in

>>62359722
His very mention can cause those who are weak to lose their shit it seems.

>>62359731
She does have experience though lmao

>right now our data is being dumped and sold on the darkest parts of the internet

>>62359761
In playing the skinflute lmao

>>62359761
>professional
>professional
>professional
>chief security officer
There's a difference between an engineer who becomes a chief technology officer, and some cunt who's job was so vague and unimportant it didn't have a recognizable title becoming the chief security officer after studying music composition

>>62359774
kek'd n' rekt

You guys aren't seeing the big picture here. Equifax is a billion dollar corporation. Someone at the top of that corporation equipped this woman with her job title, and probably refused candidates with far superior skills and experience. This woman is not to blame, it is those at the top which decided to grant her the title, knowing that it wasn't a good choice.

Even then, to lash out at single employees, while the entire corporation is at fault, is naive; those at the top of Equifax, though, would love for such to happen.

>>62358946
Your sound life one of those people who write on " tech " without having any actual knowledge of it, but try to use real world examples to explain them, while massively fucking up.
The level of your retardness is just amazing

>>62359696
We all should thrive to be paranoid fame whore snitches.

>>62359850
>Your sound life

>>62359901
The point flew over your head, 'sperg.

>>62355113
I don't have a credit card so I'm not sure how much this affects me.

>>62360304
I don't either, but apparently I've been affected. Have you ever had a job? Bills to pay?

>>62359553
Nigger do you even know what encryption is?
My god you're fucking retarded.

There is no possible way to decrypt something that's been properly encrypted unless you have the key. There's no software vulnerabilities to a fucking basic mathematical transformation.

>>62359849
This.
The ones hiring are to be blamed.

>>62359901
>I want my government to spy on me and lie about it
top cuck, now go prep your bull before your wife gets angry at you

File: g1xobpdvmukz.jpg (37KB, 504x767px) Image search: [Google]

37KB, 504x767px

WEW
LAD

>>62361533
HAHAHAHA THAT BITCH GOT LEAKED!!!! XD

I've been laughing my ass off at all the /pol/tards and NEETs on /g/ that think just because they've never paid for anything with a credit card there's no way they could be affected. If you haven't been raised by wolves in the middle of nowhere and have had no contact with civilization, you are safe. If not, you exist in one of the three databases, even if all you've done is opened up a savings account.
>>62355475
Like this fucking retard, top kek. "I outsmarted da joos!". No, kid, if you were born after fucking 1975 and have ever had a job, you are potentially one of the 150 million.

>>62361533
why the fuck they put a musician has a security officer?

File: pepe2.png (174KB, 1228x1150px) Image search: [Google]

174KB, 1228x1150px

>>62361605
>muh /pol/
sure buddy

>>62355475
>Filed with Equifax
Come back in a decade when you've figured out how the world works, this isn't a good place for you to be hanging out.

>>62355151
Meanwhile I have a STEM degree and still jobless. Just kys me bros

>>62359409
The struts vulnerability was around 7 years? Lordy

>>62359639
Go sit on a rake and fuck yourself

>>62359672
no formal training but 16 years in the industry != I like to play the trumpet sometimes

File: watch.jpg (37KB, 300x300px) Image search: [Google]

37KB, 300x300px

Is it getting much coverage in popular media?

I believe it was an orchestrated attack to keep eroding privacy and open the door to a "Mark of the Beast"-style monitoring system.

>>62355151
>female
>phi Kappa Psi
It doesn't add up bros

>>62355113

I've worked in enterprises. I know how this song goes.
>Hey boss, we're vulnerable to an old struts vulnerability

"Oh, and you're volunteering to pay the $600 it'll cost to write up a spec and send to our Indian team and the $45 it'll cost them to do it?"

>No but it's a serious issue

"Remind me again why you passed up for promotion after promotion? Oh right, THIS SHIT"

>>62359546
stop being sexist

>>62356472
Congress doesn't care. Or rather they want anybody to have access to your personal information because it would be unfair to big companies if they didn't.

>>62360721

That's the problem with encryption. You cannot fully secure the key and encryption in itself not completely random either. There's always some kind of pattern.

You are just placing too much blind faith into think that it is utterly unbreakable.

Nothing is truly 100% secured. It just becomes anisotropic as it approaches 100%.

>>62359696
Is that irony?

>>62359661
Wanna know how I know you're a kike?

>>62359850

I'm aware of encryption and how it works. Encryption is fucking old as writing in itself.

Digital encryption doesn't suddenly change the rules and problems of it. Just because you throw massive numbers at it.

It is a fucking deterrent not the "sphere of invulnerability" or "power star".

Always entertain the possibility that somebody can potentially break it or exploit a previously unknown vulnerability in it. How mathematically unlike it may appear on paper.

>>62364482
>It just becomes anisotropic as it approaches 100%.
I bet this sounded smarter in your head

>>62359731
>and if you dont understand the projects you're managing, how do you expect to assign the right people to certain tasks based on their skillsets?

That's what certifications are for.

>>62363718
All I'm hearing about is Florida getting rocked by that hurricane.

File: I+m+confus+srsly_6e2384_3945365[1].jpg (10KB, 205x245px) Image search: [Google]

10KB, 205x245px

I don't understand how this is such a major issue?
I'm not American so I don't know how things are over there, but in my country even if I had someone's full name, DOB, address and social security number there is no way I would be able to take out a loan, credit card or file tax returns using only that.
There is always some other security step involved like a document needing to be mailed to your address directly or a security pin to log into the government's tax portal that can't be reset without some kind of safety question unrelated to those details.
Leaks like these will become increasingly common so it's really up to the government and banks to develop a system where you can't have your entire financial life stolen with info that is honestly quite easy to piece together.
Also, doesn't every employer you ever worked for have that kind of info? If you were a bar tender in your college years at some shitty pub do you honestly expect them to keep that information safe?

File: 0096 - VFoSdNo.png (124KB, 800x778px) Image search: [Google]

124KB, 800x778px

>>62355487

>>Unregulated

That's a silly word ya go there. Maybe you should learn its meaning, as the finance markets are anything but unregulated. When the last recession crisis hit, there was more banking and finance legislation than ever in history in place.

But guess who writes the legislation? The lobbyists on K Street employed by the financial industry. Obama was taking dicks in all his orifices at once from the banking and finance industry.

File: this_is_ok2.jpg (19KB, 512x512px) Image search: [Google]

19KB, 512x512px

>>62365370

Welcome to America - where the security is theater and the laws are written by the banks.

>>62365370
Billing in America uses usually only credit card number.

Also, automate cc applications using the database. Etc.

Even if you have good practices you may get corrupt or disgruntled employees who steal and leak the data. The only way not to have massive leaks is by not having same company hold all that information. Gov databases have the same problem, I don't consider anything stored there safe.

>>62357562
>tfw you can set up a more secure web server in your sleep

:(

These faggots are making billions being total shite.

This is why John McAfee should have won.

>>62365487
>it's another "we're going to pretend that the credit default swap was highly regulated" episode
Regulations monitoring Market A are meaningless when unregulated Market B causes all the problems

>>62365714
That is how they make it. Somebody got huge load of money for "making" that shitshow. Also, calculated risks all of them. Those psycopath motherfuckers know their shit.

>>62355331
Pretty badly. You can get a credit freeze to prevent new lines of credit from being opened in your name, but scammers can attempt to unfreeze your credit with enough information, and this is enough information. The PIN number you get assigned when you freeze your account is a joke, you can just say you forgot it when you unfreeze.

>>62355576
An unverified claim, as no details were given, just fingers pointed. Even if the vulnerability was in Struts, we don't know if it was one that has already had a patch released for it.

Waiting for mandiant report

I already have a 7 year Fraud alert on my shit, So whatever..