...essentially did that when Microsoft had Chinese contract engineers IN China working on US government infrastructure a little while back. But don't worry, American supervisors were monitoring them.

- The B2 bomber plans was when a lead designer/engineer on the project defected with a drive full of data
- The F-22 and F-35 programs though were severely compromised and TB's of data exfiltrated.... ...don't worry though... the US and China have a mutual understanding to not do cyber espionage on each other ;) ;)

that OPM hack was a complete shit show... setting back human intel gathering operations by decades and compromising countless people... those OPM records had photos, biometric data, sensitive lie detector and security clearance info... including data that can be used to blackmail the people

In fairness to CISA - this was a contractor... and i doubt CISA encourages anyone sync CISA stuff to their personal GitHub.

I've worked at many places where leadership did everything right, had the correct policies and DLP, etc... yet still... some jackass will have creds in plaintext somewhere it shouldn't be... chats, photos, screen shots, coppy/paste buffer, notepad, stickypad, email, browsers, etc... Not gonna blame the entire org for some dipshit that thinks they're above the rules and thinks their shit don't stink.

At some point, we do need to hold people accountable that were actually responsible for the data leak, and those that were supposed to and failed to detect this stuff. Wouldn't be surprised if this guy broke multiple internal policies, and laws by doing this. To work with fed computer systems, there are security practices you're supposed to follow. Publicly posting keys and creds to a 3rd party and disabling protection to that data making it public is definitely a NO NO. I also doubt CISA is allowed to scan GitHub or most other services for possible leaked keys/creds as it's against nearly everyone's TOS to do such a scan.

they've been receiving money from the governments (at multiple levels), and tax breaks, plus preferential access rights to certain land.... this was all for "public good"... so sure... cut people off from electricity... but also... refund the funds you ever received from governments (with interest and adjusted for inflation)... they were so eager to get those funds so they can "service" those areas and operate there... have them pay to remove every inch and piece of infrastructure, and have them restore the areas to their natural state.
F'it... be petty... bar them from operating in your jurisdictions or don't license them (new or renewal). Send the inspectors and fine them for every infraction. Send the tax cronies to audit the shit out of them.

no, was next on the night stand... right after i finish reading the source code to angry birds, I will be sure to definitely "read the chromium source code" next... :/

the drives you and i buy are consumer grade bs that is still produced at same rates as in previous years... there is no real "shortage" or supply crunch of consumer grade drives... not as if they re-fabbed their production lines to build enterprise drives... as for memory costs going up, yeah... it's a small portion of the actual cost of the drives... so even if that doubles... the impact on the cost of the drive is a rounding error.

This is another bullshit price gouge of consumers...

was going to ask this same question... edge is chromium based.. would have assumed it was baked into the security architecture...

Only thing that makes some sense to me is they disabled the memory protection because widows is supposed to randomize memory addresses... (ASLR).... so a layer of security through obscurity for marginal performance gain. :/ grasping at straws here...

But after all is said and done... there are multiple ways to dump a readable password list from chrome and edge, and most browsers.... that it being encrypted is a non obstacle... this just lowers the bar to what is already easily done in the wild.

didn't know my side view mirrors can see through my car and behind, guess i do need those "better" ones... or maybe i should stick them on a stick 5 feet out on either side for a better angle...
side view mirrors don't catch everything when driving, reversing... ESPECIALLY BEHIND YOU... it's why that mirror exists... that is the blind spot it tries to provide a solution for
sometimes seeing the cop/ambulance/person/tree, etc behind you helps...
checking in on passengers behind you in the car without turning 180 also is a thing...
keeping an eye and 360 situational awareness while operating your vechicle is a plus
-fun scenario... how often do you have dipshits speeding way above your speed, coming up to your ass before swerving to the side lane to over take you (rarely indicating which way)? With your side mirrors... good luck seeing that shmuck... with a rear view... you can see them and adjust your driving and maybe you know... use defensive driving to avoid a costly accident and time in a hospital, recovery, etc... especially if you need to change lanes and see that shmuck coming up.

Some trucks don't have them because they literally CAN'T... they don't a line of sight... not out of an esthetic choice or some magical driving ability with spiddy sense... the moment the technology became available, they started putting in cameras to provide said capability.

if you can eliminate flare and complete blindness from a light or some rain/mud on the lens.. sure...

But from what i have experienced... nothing beats the old school mirror at actually providing visibility in most conditions when a camera would be useless. I know it's been in use for a while on some cars/makes for years now... there should be enough data to asses how much of a benefit this is at increasing safety.

Add human nature to the mix and how much more eye time is spent watching the screen versus the road and a decreased awareness.

so, who gets sued for misdiagnosis? As long as liability remains with them- the CEO for making the decision.

But also... let me look at crystal ball...
-Costs go up, not down
-premium tier charge for human review
-waivers of liability
and of course- worse patient care outcomes

AI is not am effin replacement for life and death decision making - it is to inform and assist. Not Make them. Let me hallucinate lack of cancer... or better yet.. yet me hallucinate a cancer...

that's one way to get users to signup for added storage

Multiple addresses- same storage quota

curious how they solve the "from"...

didn't take 4.4 million hours to calculate the charges to begin with...

This reminds me of stores- purchase- split second to process and money is gone from your account... refund... can take 5-10 business days to show... :/

The amount of things "Made in the USA" that are "assembled" in the US, and not even from individual pieces, just the last step of assembly, or sometimes simply repackaged... and that's fine... consumers don't need to know about deception from/by US companies... :/

Or the new one replacing "Made In the USA" with "Designed In the USA"

Difference between the US and EU-
US-
Employee (100) + AI (4) =104%
this means we can do 100% with 96 employees! yay.. we saved on paying 4 employees! stocks rise. Employees are left with more work b/c AI isn't a direct replacement for a human in most cases, but a tool to help... are then are stuck doing more, so real productivity drops)

EU-
Employee (100) + AI (4) = 104%
this means company has grown productivity by 4% and use that productivity gain into profit, better work life balance, more time, better quality, any number of things that those gains can be applied to.

slightly different priorities... short vs long

plus the focus on implementation is different as are the employment laws-
EU-
develop AI to enhance employees and in a lot of cases, it is because countries have regulations about firing people that make it more difficult to simply fire a chunk of your workforce for no reason... it's almost as if the workers have some protections.

US-
to replace employees/head count

Just think about the phrasing common in the US- "head count" - that used to relate to animals on a ranch... not people. (i.e. X amount of heads of cattle).. dehumanizing your employees makes it easier to do this crap.

so the label of confidential is THE protection mechanism... not actually blocking access, but relying on the external tool to READ and ADHERE to the label?

This is akin to writing a book with classified info, putting classified on the page and trusting who ever reads the book skips the pages that say confidential.

There once was a time the search of a journalists phone would have been a non-starter. Protected. Appears we're in a timeline where this is now a norm, and the press has no protection anymore. Just a technical hurdle to be overcome.

Freedom of the press had a purpose...
The press had a purpose...

On a parallel thought.. anyone know how to get back onto the old time line? will be happy with going back in time 30 years too... (much more sane.. and those were the 90's... )