Please create an account to participate in the Slashdot moderation system

 



Forgot your password?
typodupeerror

Comment: Re:Prediction: (Score 4, Insightful) 196

by daveschroeder (#48680051) Attached to: N. Korea Blames US For Internet Outage, Compares Obama to "a Monkey"

First of all, you say, "North Korea didn't hack Sony," as if it is an indisputable, known fact. It is not -- by any stretch of the imagination.

The fact is, it cannot be proven either way in a public forum, or without having independent access to evidence which proves -- from a social, not technical, standpoint -- how the attack originated. Since neither of those are possible, the MOST that can be accurate stated is that no one, in a public context, can definitively demonstrate for certain who hacked Sony.

Blameless in your scenario is the only entity actually responsible, which is that entity that attacked Sony in the first place.

Whether that is the DPRK, someone directed by the DPRK, someone else entirely, or a combination of the above, your larger point appears to be that somehow the US is to blame for a US subsidiary of a Japanese corporation getting hacked -- or perhaps simply for existing.

As a bonus, you could blame Sony for saying its security controls weren't strong enough, while still reserving enough blame for the US as the only "jackass".

Bravo.

Comment: Prediction: (Score 5, Insightful) 196

by daveschroeder (#48679895) Attached to: N. Korea Blames US For Internet Outage, Compares Obama to "a Monkey"

Many of the same slashdotters who accept "experts" who claim NK didn't hack Sony will readily accept as truth that it was "obviously" the US that attacked NK, even though there is even less objective proof of that, and could just as easily be some Anonymous offshoot, or any number of other organizations, or even North Korea itself.

See the logical disconnect, here?

For those now jumping on the "North Korea didn't hack Sony" bandwagon that some security "experts" are leading for their own political or ideological reasons, including using rationales as puzzling and pedestrian as source IP addresses of the attacks being elsewhere, some comments:

Attribution in cyber is hard, and the general public is never going to know the classified intelligence that went into making an attribution determination, and experts -- actual and self-appointed -- will make claims about what they think occurred.

With cyber, you could have nation-states, terrorists organizations, or even activist hacking groups attacking other nation-states, companies, or organizations, for any number of motives, and making it appear, from a social and technical standpoint, that the attack originated from and/or was ordered by another entity entirely.

That's a HUGE problem, but there are ways to mitigate it. A Sony "insider" may indeed -- wittingly or unwittingly -- have been key in pulling off this hack. That doesn't mean that DPRK wasn't involved. I am not making a formal statement one way or the other; just saying that the public won't be privy to the specific attribution rationale.

Also, any offensive cyber action that isn't totally worthless is going to attempt to mask or completely divert attention from its true origins (unless part of the strategic intent is to make it clear who did it), or at a minimum maintain some semblance of deniability.

At some point you have to apply Occam's razor and ask who benefits.

And for those riding the kooky "This is all a big marketing scam by Sony" train:

So, you're saying that Sony leaked thousands of extremely embarrassing and in some cases damaging internal documents and emails that will probably result in the CEO of Sony Pictures Entertainment being ousted, including private and statutorily-protected personal health information of employees, and issued terroristic messages threatening 9/11-style attacks at US movie theaters, committing dozens to hundreds of federal felonies, while derailing any hopes for a mass release and instead having it end up on YouTube for rental, all to promote one of hundreds of second-rate movies?

Yeah...no.

Comment: What Paul Graham doesn't get... (Score 5, Insightful) 514

by MikeRT (#48676911) Attached to: Paul Graham: Let the Other 95% of Great Programmers In

Is that most of us firmly get now that the H1B is about cheapening the value of the good and decent developers, not bringing in developers who are productive wunderkinden. That's why the anti-immigration tone in this country is going through the roof. Good for productivity? Why the fuck should the average American across the spectrum care about that if it doesn't translate into a better standard of living for them?

Comment: Re:lol sure (Score 2) 162

I just can't help but imagine a bunch of Norks gathered around a Tandy 1000 hooked up to an acoustic modem with an egg timer. Every 10 minutes they switch off. "Ok, now you a hacker."

Smug sense of superiority. Are you an American by any chance?

Yes N. Korea is poor, but do not underestimate your enemies. Look at what they've actually done instead of making fun blindly.

Training people in C and Linux and Windows exploits is not all that hard or expensive compared to, say, building your own nuclear warheads and ICBMs. Former can be done for a few million bucks. The latter costs billions and the engineering is orders of magnitude harder than teaching coding.

In case you didn't know, the Norks managed to build their own nukes and also put a satellite in orbit using their own rocket recently.

Comment: Re:Races are different (Score 2, Insightful) 53

by Spy Handler (#48671645) Attached to: Russian Hackers Stole Millions From Banks, ATMs

Blacks from stable middle class homes seem to do about as well as their white counterparts.

Exactly. Blacks with 100 IQ do about as well as whites with 100 IQ. I've known a black colleague whose IQ I'd estimate to be around 120. He was definitely one of the better workers at the company.

Now the elephant in the room is, do all the races have exactly the same IQ distribution amongst their population? Test results say no. Need citation? Just look up anything, SAT, GRE, MCAT, police dept entrance exams, fireman exams, military exams, straight IQ tests, anything. The body of evidence is overwhelming.

Comment: Re:Occam's Razor (Score 2) 281

by Spy Handler (#48670175) Attached to: Did North Korea Really Attack Sony?

I do not think you know what Occam's razor is. It does not mean you need conclusive evidence to believe in something. It means the simplest explanation tends to be the best one, other things being equal.

In order to say CIA hacked Sony, you would have to invent all sorts of motives and cover-up to explain it. The simpler explanation is that N. Korea did it, because the circumstances and evidence so far all point to it.

Comment: No, and the people suggesting this are retarded (Score 1) 232

by Spy Handler (#48668741) Attached to: Should Video Games Be In the Olympics?

You can look back at the 1950 olympic games and see people running and jumping and doing other things that we still do today.

Now imagine that video games were included, and you look back at the 1980 olympic games. Overweight geeks with mullets and bowl cuts competing intensely over.... Pong and Breakout.

50 years from now, watching old footage of overweight geeks with lip piercings competing in Counter Strike and Call of Duty will seem just as lame and outdated.

Comment: Hyperbole (Score 1) 234

by Spy Handler (#48662719) Attached to: The Slow Death of Voice Mail

Wasn't too long ago... 1990's... that everyone still bought a cassette tape based answering machine for their homes. (and if you had a dual cassette one with a separate tape for the greeting and the voicemail recording, that was da bomb)

Well into the 2000's, people still bought flash memory-based answering machines for their homes.

You'd have to be awfully young to not have used voicemail. Maybe the kids just starting college today.

Comment: Re:more NOS and less lense flare (Score 5, Insightful) 328

No one will think of Wrath of Khan or First Contact when they hear the word "shit". These two were the best Trek movies period. They are classics in any sci-fi library and (IMHO) rank among the best sci-fi movies ever.

Into Darkness on the other hand, is shit. JJ Abrams is shit. Therefore, whoever's replacing him has a low bar to overcome.

Comment: Re:Huh? (Score 2) 39

The plant's control systems may indeed be air gapped. However there are still access vectors. For instance some internet connected switch that sits on a dedicated SCADA network might be exploited and then use the private SCADA network (which isn't necessarily TCP/IP) to access the otherwise air gaped systems. Even exploiting non-critical or seemingly non-critical machines might affect the operation of secure isolated systems.

Then there's always the USB infection route. An unwitting user inserts a USB stick and you end up with a Stuxnet style infection. I'd much rather a nuclear power plant take a belt and suspenders approach to security rather than just assume an air gap is sufficient.

Comment: Re:I saw this reboot, but... (Score 1) 106

by Spy Handler (#48644941) Attached to: Behind the Scenes With the Star Trek Fan Reboot

Agreed. Acting is a lot like coding. A lot of people think they can do it, but if you compare the typical amateur production vs. a professional one, it's like night and day.

btw I dunno where people get the idea that Shatner was a bad actor. Yes he sounds wooden in some of the 60's TOS episodes, but it was mostly the lame script/dialogue. Give Shatner a decent script (e.g. Wrath of Khan) and he shines.

Hell even Natalie Portman -- award-winning first rate actress by anyone's estimation -- sounds bad when given a script full of lame stilted dialogue (as in, Star Wars prequels).

"Life sucks, but it's better than the alternative." -- Peter da Silva

Working...