I agree even very well intentioned, honest people have just about everything telling them not to look to hard.

Consider you work for MSCRT and get the report from bug bounty. You confirm the issue, and you do the right thing and turn on the klaxons at MS.

After a little background check to confirm the reporter isnt likely a compromised person you look for 'obvious' signs this was exploited. Finding none, you report your initial results up the chain. Now your job is evaluated on closed incidents / reports at least in part. Your manager tells you wrap this one up close it out, because he knows everyone above all the way up to the C-suite, does not want this to be huge black eye.

Would you go on a phishing expedition in search of more tiny, easily disputed IOCs trying to sift back thru logs for a span of a year or more, knowing the really dangerous guys often have very long dwell times, or would you move on? If you found real proof of an issue you might be hero -or- motivated interests might try to discredit and vilify you, if you don't find anything you might be accused of violating instructions or even get into trouble for looking at logs and systems without an official cause..

there just isn't anyone even down to the front line engineers that really would *want* to find a problem if there was one. Just about everyone at levels at least in the near term has a better day if they 'see no evil'

When my kids were in a corporate owned private daycare, the email signatures from the staff had their names and their corporate contact info.

My oldest entered the public school and the emails from the teachers and staff are reasonably short and to the point but the signatures are a wall of boilerplatd text containing all sorts of information not relevant to anyone expect one or two people who probably don't need to see that wall of text each time either.

Translation: the schools are obligated to waste time on things other than teaching. Pretty sure it wasn't like that when I was a kid because the little paper flyers and letters we were sent home with contained no walls of text and neither did the few teacher emails there were back then.

Not really.

If you have a lot of credit, but low utilization the risk to new lenders is higher.

Consider this:

You have five credit cards with limits of 20k, and only about 2k in current balance. That means you can potentially run out tonight and rack up 98k in new debt. You don't have a 'history' of being able to service that much additional debt successfully.

Now lets compare you to another person with 5 cards also with 20k limits, but a normal balance of something like 75k outstanding.. They have been paying on it for years, and never missed a payment or otherwise been in default.

Now both of you are applying for a an auto loan, the monthly minimum payment will be $200. All other things being equal which one of you do I actually know more about you likely being able to pay me?

Its the guy with more credit utilization. He is already showing he make payments on most of his current credit, his current liability situation can't deteriorate significantly - his other lendors will decline payment authorizations. If he seems 'stable and sane' right now he thinks he can handle the additional $200 he can. I don't know you won't get in a fight with the wife tomorow that ends in her running out and replacing all the furniture in your house to vex you, and leave you bills you can't pay, or that you won't develop a serious problem with Draft-kings, etc.

I think anyone saying that the shooter clearly belongs to one party or the other at this point is lying. And I've seen plenty of it on both sides, including you, right now.

If you can't see the shooter is FAR LEFT...then you are either willingly blind or not listening at all.

His notes, his relatives telling his history, FFS he's fucking a gay furry guy trans.....

If it walks like a duck, talks like a duck....

It is easy to not find evidence of something if you don't look to hard.

This is a case where even if there were IOCs and you found them the clean up would be nearly impossible. Think about their 'Shared Responsibility Model' and the implication here. If MS were acknowledge some kind of serious breach occurred in their core Entra-ID IAM platform...they'd either have to be able to be able to conclusively identify all the impacted subscriptions or every single one of their subscribers would have to kick off their own IR process because how could they know they have not been backdoor'ed from inside their subscription.

Microsoft does 'dog food' so if Entra was exploited MS's internal management is possibly compromised so they could not be 'certain' about the impacted customers, at best they might get some sort of 'beyond a reasonable doubt level of certainty but we could never hit the 'yes the sky is blue standard'.

A not insignificant portion of MS clients (even pretty big important ones) likely have pretty deficient IR capabilities, independent of if they know it or not. Even the good ones are not at the 'we can assuredly remove any persistence work a state-level-actor did on our compromised systems' level without resorting to a large scale rollback-restore. Think the Azure infrastructure could handle that level of activity, the amount of storage-I/O to do all the analysis and IOC searches? the compute and I/O to do mass restores, all in small window...doubtful?

There is also the core defect in MS's approach to authentication that go back to the earliest days of NT, Microsoft stuff gratuitously authenticates all-the-time...Even when that isn't being directly exploited to gather authentication assets like hashes etc for attacks, it means the number and often meaningless or outright spurious log events make understanding what an actor malicious or otherwise was doing with an given set of credentials in terms of intent challenging. (Don't attack me for this statement I did not say impossible, IR professionals and good network security admins can, it just isn't simple.) Which adds a lot of cost to cleaning up an incident like this - if one were to be triggered.

So I don't think we should over look the POWERFUL motivations to declare this one contained. I do think we should recognize that Azure and AWS are probably 'TBTF' and really Congress should be taking a hard look at forcing some divestment and perhaps limiting the size of SaaS/PaaS providers in general. It is just to many eggs in one basket, there is a serious National Security and economic risk here. It comes down to a poorly managed or neglected mill pound might flood a few neighboring farms from time to time but if the damn breaks a large hydro electric resivor it might wipe entire towns off the map. The former might happen a lot more often because of who is in charge, and what resources the have to secure and maintain it, but you have to look at costs in terms of impact * probability. At some point the impact factor is just to large, for anything but a zero probability to be tolerable.

about the only case I can think of is interactive recipes.

Think about being able to check off ingredients or steps as you complete them.

Maybe being able to click and ingredient and select "recommend substitutions" - conceivably the smart fridge might know what you actually have to chose from.

The ability to note you are out of something and build up a shopping list, better than on paper because the system can sort the list by category / alphabetical / however later so its ordered sensible for the shopping trip

An easy way to control music playback while you do cooking/cleaning chores in the kitchen..

There are useful things you can do with a vertically mounted, easy cleanup, food/water proof screen in a kitchen for sure. - Now I am not sure building these features into an appliance you might keep for 15 years, is smart, maybe a better feature would just be a removable mount/plate that lets you install the 7 - 13" tablet of your choice on the door and then it might be smarter still integrate that into the cabinetry rather than the fridge but..

The problem is that the volume of dumb people will get it inflicted on the rest of us. Try buying not a smart TV today. You either have to get some sort of commercial offering, that comes with a crazy price premium or you're getting smart tv that spies on your and sprinkles in ads all over the place.

All because to many people decided they'd rather pay 499 instead of 599 because that is just how little they actually value their privacy and user experience.

Sure you can not connect it to the internet, but they can't use any of the useful features, or you can play DNS games and whatnot if you have the technical savvy and the time, but there are still going to be lot of opaque TLS streams that you just can never be sure what contain, at least not with voiding your warranty connecting the JTAG interface... the same will be true of all fridges that are generally availible soon enough..

That is a good post except for one thing. Charlie Kirk's killer isn't "left"

I guess you haven't been watching the news for the days AFTER the shooting.....this guy might have been raised "right", but he left that awhile back, was shacking up with a furry, trans guy....and both had pushed back on their families showing extreme hate for anything remotely conservative....hell the dude wrote shit in his notes, his texts and even on his bullet casings....

The left tried pushing the shooter was maga right off to bat, but that has long since been disproved.

It's gotten so far that some Republicans are trying to back away because they realize that those laws being used to censor "the left" could easily be used to censor them for the exact same reason. The big fun being to see how the Supreme Court will allow the censorship but then twist themselves into knots trying to deny the same rights if a (D) gets to be President.

The LEFT was ALREADY doing this....especially during the Obama and Biden admins....Obama using direct federal power/branches directory, like the IRS.

Biden, with DOJ going after people they didn't like and directly pressuring Social Media to deplatform people and cut banking abilities... Look I don't agree with recent Reps suggesting HARD to have people lose jobs/censored, but it is different than direct federal manipulations with actual branches actively doing things, behind the scenes, etc....those backdoor communications with Twitter and FAcebook are far different than someone on the FCC saying bad things about Kimmel....but they didn't force ABC to can him....

Never mind the other deaths like January 6

Jan 6ths...really?

Let's see....1 person was killed that day at the Capitol...the lady trying to climb in a window show and killed by a guard.

That's your example??

We've had guns freely available in the US for a LONG time.

Remember it's only been since the mid 80s since we had background checks....since I believe 1986 that would could'n't buy a modern NEW full auto machine gun.

Hell, I remember in the 70's, you didn't have to go to a "Gun store" to buy a gun, they sold rifles at places like Western Auto, and your local hardware store.

It wasn't long ago you could order a gun via a catalog and have it mailed to your front door without any kind of background check.

And we didn't have the "mass" shootings like you see today....

There were a few, yes, but FEW and far between...no one was shooting up schools all the time or the like.

We have more gun control today than ever...and the problem seems to be getting worse.

It isn't the guns....it's broken people. What's the coincidence?

More broken and single parent homes. Raising generations to not properly value the human life....

Let's try to figure out what changed in PEOPLE since the 80's and earlier....

A couple hours before my post here Kimmel just got drummed off the air for saying roughly this

No, Kimmel got drummed off the air for lying on air saying that the shooter was a conservative MAGA supporter..."one of their own", long after official statements and evidence have plainly stated the opposite.

He was trying to still promote the leftists lies that came out early on this to confuse the public.