Forumi


Povratak   PC Ekspert Forum > Ostalo > Razno
Ime
Lozinka

Odgovori
 
Uređivanje
Staro 20.07.2025., 07:22   #271
tomek@vz
Premium
 
tomek@vz's Avatar
 
Datum registracije: May 2006
Lokacija: München/Varaždin
Postovi: 4,649
Citiraj:
Autor kopija Pregled postova
Secure Boot je najbolja stvar koja se pojavila na security sceni u zadnjem desetljeću.
Možda i jedina vrijedna pomena.
Implicirao sam da je u ono vrijeme implementacija ovakvih pi*darija od strane proizvođača bila , barem po mom sjećanju nemoguća. Ne kažem da je UEFI u kombinaciji sa Secure Boot-om loš već da je nov, moderniji sustav omogućio ovu negativnu stranu koja zapravo otvara nove i sofisticiranije vektore napada - kao što vidimo iz priloženog. Postavlja se pitanje - kako ovakvo sranje trajno eliminirati.
tomek@vz je offline   Reply With Quote
Staro 20.07.2025., 11:45   #272
The Exiled
McG
Moj komp
 
The Exiled's Avatar
 
Datum registracije: Feb 2014
Lokacija: Varaždin
Postovi: 8,073
Nažalost i Secure Boot je veselje samo po sebi.
Citiraj:
Security researchers have disclosed a new Secure Boot bypass tracked as CVE-2025-3052 that can be used to turn off security on PCs and servers and install bootkit malware.
The flaw affects nearly every system that trusts Microsoft's "UEFI CA 2011" certificate, which is pretty much all hardware that supports Secure Boot.
__________________
AMD Ryzen 9 9950X | Noctua NH-U12A chromax.black | MSI MAG B650 Tomahawk Wi-Fi | 128GB Kingston FURY Beast DDR5-5200 | 256GB AData SX8200 Pro NVMe | 2x4TB WD Red Plus | Fractal Define 7 Compact | Seasonic GX-750
AMD Ryzen 5 7600 | Noctua NH-U12A chromax.black | MSI MAG B650 Tomahawk Wi-Fi | 128GB Kingston FURY Beast DDR5-5200 | 256GB AData SX8200 Pro NVMe | 2x12TB WD Red Plus | Fractal Define 7 Compact | eVGA 650 B5
The Exiled je offline   Reply With Quote
Staro 20.07.2025., 16:01   #273
mkey
Premium
Moj komp
 
Datum registracije: Sep 2018
Lokacija: tu
Postovi: 3,298
Citiraj:
Autor Tajl3r Pregled postova
Ma to je mala beba za našeg teslu Ercegovca
Eee, neće da može. Musk je CEO 7 ogromnih i manjih kompanija, ima određenu političku karijeru a uz to je pro gamer koji igra preko deset sati na dan. Mate će ipak morati pojesti još dosta palente da dođe igdje blizu tog nivoa.
__________________
Citiraj:
Autor George Carlin
But there’s a reason. There’s a reason. There’s a reason for this, there’s a reason education sucks, and it’s the same reason that it will never, ever, ever be fixed. It’s never gonna get any better. Don’t look for it. Be happy with what you got. Because the owners of this country don't want that. I'm talking about the real owners now, the real owners, the big wealthy business interests that control things and make all the important decisions. Forget the politicians. The politicians are put there to give you the idea that you have freedom of choice. You don't. You have no choice. You have owners. They own you. They own everything. They own all the important land. They own and control the corporations. They’ve long since bought and paid for the senate, the congress, the state houses, the city halls, they got the judges in their back pockets and they own all the big media companies so they control just about all of the news and information you get to hear. They got you by the balls. They spend billions of dollars every year lobbying, lobbying, to get what they want. Well, we know what they want. They want more for themselves and less for everybody else, but I'll tell you what they don’t want: They don’t want a population of citizens capable of critical thinking. They don’t want well informed, well educated people capable of critical thinking. They’re not interested in that. That doesn’t help them. Thats against their interests. Thats right. They don’t want people who are smart enough to sit around a kitchen table to figure out how badly they’re getting f*cked by a system that threw them overboard 30 f*cking years ago. They don’t want that. You know what they want? They want obedient workers. Obedient workers. People who are just smart enough to run the machines and do the paperwork, and just dumb enough to passively accept all these increasingly shittier jobs with the lower pay, the longer hours, the reduced benefits, the end of overtime and the vanishing pension that disappears the minute you go to collect it, and now they’re coming for your Social Security money. They want your retirement money. They want it back so they can give it to their criminal friends on Wall Street, and you know something? They’ll get it. They’ll get it all from you, sooner or later, 'cause they own this f*cking place. It's a big club, and you ain’t in it. You and I are not in the big club. And by the way, it's the same big club they use to beat you over the head with all day long when they tell you what to believe. All day long beating you over the head in their media telling you what to believe, what to think and what to buy. The table is tilted folks. The game is rigged, and nobody seems to notice, nobody seems to care. Good honest hard-working people -- white collar, blue collar, it doesn’t matter what color shirt you have on -- good honest hard-working people continue -- these are people of modest means -- continue to elect these rich c*cksuckers who don’t give a f*ck about them. They don’t give a f*ck about you. They don’t give a f*ck about you. They don't care about you at all -- at all -- at all. And nobody seems to notice, nobody seems to care. That's what the owners count on; the fact that Americans will probably remain willfully ignorant of the big red, white and blue dick that's being jammed up their assholes everyday. Because the owners of this country know the truth: it's called the American Dream, because you have to be asleep to believe it.
mkey je offline   Reply With Quote
Staro 20.07.2025., 17:37   #274
The Exiled
McG
Moj komp
 
The Exiled's Avatar
 
Datum registracije: Feb 2014
Lokacija: Varaždin
Postovi: 8,073
Musk se s tim pro-gamer pričama sjebal onog trena kad nije skužil s kim točno ima posla, pa nije dugo trebalo da mu cijeli Internet rastavi sve (1 - 2) na sastavne dijelove. Nakon toga su samo nastavili dalje s ostalim poslovnim poduhvatima koje Musk uvijek ponosno ističe i non-stop naglašava, pa je ko bi rekel ispalo da tip laže čim zine. PR bajke o uspješnom geniju i gameru su svih ovih godina bile OK štivo, dokle god se nije upustil u političke vode (1 - 2), samo da bi ga naposljetku potjerali podvijena repa. Obzirom na aktualnu Epstein situaciju dobro bude, ako se Musk jednog dana ne probudi mrtav ili slučajno padne kroz prozor prilikom logiranja na popularnu društvenu mrežu, jer zamjenu su mu već našli.
Citiraj:
Citiraj:
Sam Altman, chief executive of OpenAI, has quickly become a key adviser on artificial intelligence policy for President Trump, stepping into the role recently left vacant by Elon Musk. Less than a month after Musk – formerly a fixture in Trump's inner circle – dramatically split with the president, Altman appeared at Trump's New Jersey golf course. Following a lengthy one-on-one meeting, Trump introduced Altman to a gathering of top donors, calling him "a very brilliant man" and adding, "I hope he's right about AI."
Citiraj:
Troy Jones, Tesla's vice president of sales, service and delivery in North America — its largest market — suddenly packed his bags after 15 years at the company. Jones' exit comes during a particularly tumultuous time for the EV brand, which is suffering faltering sales and a plunging stock price as Musk continues to be a deeply polarizing figure with extreme politics. Tesla CEO Elon Musk has fired the automaker's vice president of manufacturing and operations Omead Afshar amid plummeting sales and public backlash against the company.
Citiraj:
Linda Yaccarino, one of Elon Musk's top deputies as CEO of his X social media site, is exiting the company in a surprise move just months after the platform was acquired by the billionaire's AI startup, xAI. Her departure adds to turbulence in Musk's sprawling business empire, including falling sales at his electric vehicle maker Tesla and AI-related controversies. Musk has been embroiled in a war of words with former ally President Donald Trump.
__________________
AMD Ryzen 9 9950X | Noctua NH-U12A chromax.black | MSI MAG B650 Tomahawk Wi-Fi | 128GB Kingston FURY Beast DDR5-5200 | 256GB AData SX8200 Pro NVMe | 2x4TB WD Red Plus | Fractal Define 7 Compact | Seasonic GX-750
AMD Ryzen 5 7600 | Noctua NH-U12A chromax.black | MSI MAG B650 Tomahawk Wi-Fi | 128GB Kingston FURY Beast DDR5-5200 | 256GB AData SX8200 Pro NVMe | 2x12TB WD Red Plus | Fractal Define 7 Compact | eVGA 650 B5
The Exiled je offline   Reply With Quote
Staro 20.07.2025., 18:31   #275
mkey
Premium
Moj komp
 
Datum registracije: Sep 2018
Lokacija: tu
Postovi: 3,298
On bi možda mogao ispasti iz SpaceX rakete. Ili nastradati u brutalno gorećoj Tesli.
__________________
Citiraj:
Autor George Carlin
But there’s a reason. There’s a reason. There’s a reason for this, there’s a reason education sucks, and it’s the same reason that it will never, ever, ever be fixed. It’s never gonna get any better. Don’t look for it. Be happy with what you got. Because the owners of this country don't want that. I'm talking about the real owners now, the real owners, the big wealthy business interests that control things and make all the important decisions. Forget the politicians. The politicians are put there to give you the idea that you have freedom of choice. You don't. You have no choice. You have owners. They own you. They own everything. They own all the important land. They own and control the corporations. They’ve long since bought and paid for the senate, the congress, the state houses, the city halls, they got the judges in their back pockets and they own all the big media companies so they control just about all of the news and information you get to hear. They got you by the balls. They spend billions of dollars every year lobbying, lobbying, to get what they want. Well, we know what they want. They want more for themselves and less for everybody else, but I'll tell you what they don’t want: They don’t want a population of citizens capable of critical thinking. They don’t want well informed, well educated people capable of critical thinking. They’re not interested in that. That doesn’t help them. Thats against their interests. Thats right. They don’t want people who are smart enough to sit around a kitchen table to figure out how badly they’re getting f*cked by a system that threw them overboard 30 f*cking years ago. They don’t want that. You know what they want? They want obedient workers. Obedient workers. People who are just smart enough to run the machines and do the paperwork, and just dumb enough to passively accept all these increasingly shittier jobs with the lower pay, the longer hours, the reduced benefits, the end of overtime and the vanishing pension that disappears the minute you go to collect it, and now they’re coming for your Social Security money. They want your retirement money. They want it back so they can give it to their criminal friends on Wall Street, and you know something? They’ll get it. They’ll get it all from you, sooner or later, 'cause they own this f*cking place. It's a big club, and you ain’t in it. You and I are not in the big club. And by the way, it's the same big club they use to beat you over the head with all day long when they tell you what to believe. All day long beating you over the head in their media telling you what to believe, what to think and what to buy. The table is tilted folks. The game is rigged, and nobody seems to notice, nobody seems to care. Good honest hard-working people -- white collar, blue collar, it doesn’t matter what color shirt you have on -- good honest hard-working people continue -- these are people of modest means -- continue to elect these rich c*cksuckers who don’t give a f*ck about them. They don’t give a f*ck about you. They don’t give a f*ck about you. They don't care about you at all -- at all -- at all. And nobody seems to notice, nobody seems to care. That's what the owners count on; the fact that Americans will probably remain willfully ignorant of the big red, white and blue dick that's being jammed up their assholes everyday. Because the owners of this country know the truth: it's called the American Dream, because you have to be asleep to believe it.
mkey je offline   Reply With Quote
Staro 20.07.2025., 18:40   #276
The Exiled
McG
Moj komp
 
The Exiled's Avatar
 
Datum registracije: Feb 2014
Lokacija: Varaždin
Postovi: 8,073
Ništa čudno ne bi bilo.
__________________
AMD Ryzen 9 9950X | Noctua NH-U12A chromax.black | MSI MAG B650 Tomahawk Wi-Fi | 128GB Kingston FURY Beast DDR5-5200 | 256GB AData SX8200 Pro NVMe | 2x4TB WD Red Plus | Fractal Define 7 Compact | Seasonic GX-750
AMD Ryzen 5 7600 | Noctua NH-U12A chromax.black | MSI MAG B650 Tomahawk Wi-Fi | 128GB Kingston FURY Beast DDR5-5200 | 256GB AData SX8200 Pro NVMe | 2x12TB WD Red Plus | Fractal Define 7 Compact | eVGA 650 B5
The Exiled je offline   Reply With Quote
Staro 21.07.2025., 07:04   #277
tomek@vz
Premium
 
tomek@vz's Avatar
 
Datum registracije: May 2006
Lokacija: München/Varaždin
Postovi: 4,649
Citiraj:
"Anybody who's got a hosted SharePoint server has got a problem," the senior VP of cybersecurity firm CrowdStrike told the Washington Post. "It's a significant vulnerability."

And it's led to a new "global attack on government agencies and businesses" in the last few days, according to the article, "breaching U.S. federal and state agencies, universities, energy companies and an Asian telecommunications company, according to state officials and private researchers..."

"Tens of thousands of such servers are at risk, experts said, and Microsoft has issued no patch for the flaw, leaving victims around the world scrambling to respond." (Microsoft says they are "working on" security updates "for supported versions of SharePoint 2019 and SharePoint 2016," offering various mitigation suggestions, and CISA has released their own recommendations.)

From the Washington Post's article Sunday:
Microsoft has suggested that users make modifications to SharePoint server programs or simply unplug them from the internet to stanch the breach. Microsoft issued an alert to customers but declined to comment further... "We are seeing attempts to exploit thousands of SharePoint servers globally before a patch is available," said Pete Renals, a senior manager with Palo Alto Networks' Unit 42. "We have identified dozens of compromised organizations spanning both commercial and government sectors.''

With access to these servers, which often connect to Outlook email, Teams and other core services, a breach can lead to theft of sensitive data as well as password harvesting, Netherlands-based research company Eye Security noted. What's also alarming, researchers said, is that the hackers have gained access to keys that may allow them to regain entry even after a system is patched. "So pushing out a patch on Monday or Tuesday doesn't help anybody who's been compromised in the past 72 hours," said one researcher, who spoke on the condition of anonymity because a federal investigation is ongoing.

The breaches occurred after Microsoft fixed a security flaw this month. The attackers realized they could use a similar vulnerability, according to the Department of Homeland Security's Cybersecurity and Infrastructure Security Agency. CISA spokeswoman Marci McCarthy said the agency was alerted to the issue Friday by a cyber research firm and immediately contacted Microsoft... The nonprofit Center for Internet Security, which staffs an information-sharing group for state and local governments, notified about 100 organizations that they were vulnerable and potentially compromised, said Randy Rose, the organization's vice president. Those warned included public schools and universities. Others that were breached included a government agency in Spain, a local agency in Albuquerque and a university in Brazil, security researchers said.

But there's many more breaches, according to the article:
"Eye Security said it has tracked more than 50 breaches, including at an energy company in a large state and several European government agencies."
"At least two U.S. federal agencies have seen their servers breached, according to researchers."
"One state official in the eastern U.S. said the attackers had 'hijacked' a repository of documents provided to the public to help residents understand how their government works. The agency involved can no longer access the material..."
"It was not immediately clear who is behind the hacking of global reach or what its ultimate goal is. One private research company found the hackers targeting servers in China..."
> Slashdot
tomek@vz je offline   Reply With Quote
Staro 21.07.2025., 07:23   #278
medo
#erase startup-config
Moj komp
 
medo's Avatar
 
Datum registracije: Nov 2001
Lokacija: Zagreb
Postovi: 3,630
Privatnost i sigurnost podataka i korisnika

[QUOTE=The Exiled;3813501]Nažalost i Secure Boot je veselje samo po sebi.
Citiraj:
Security researchers have disclosed a new Secure Boot bypass tracked as CVE-2025-3052 that can be used to turn off security on PCs and servers and install bootkit malware.
The flaw affects nearly every system that trusts Microsoft's "UEFI CA 2011" certificate, which is pretty much all hardware that supports Secure Boot.
To je upravo ono o čemu sam već pričao. Dokle god ne budemo mogli potpisivati certove sa našima CA-ovima to je banana.
__________________
"It's not a bug, it's a feature!"
1N6pJsvusP7afu23qs1uBscK16wfcG7C8m
medo je offline   Reply With Quote
Staro 21.07.2025., 09:47   #279
strikoo
Premium
 
strikoo's Avatar
 
Datum registracije: Nov 2004
Lokacija: HR
Postovi: 945
Citiraj:
Autor tomek@vz Pregled postova
nocas izdan patch

https://msrc.microsoft.com/blog/2025...ve-2025-53770/
strikoo je offline   Reply With Quote
Staro 21.07.2025., 10:08   #280
Night
Premium
 
Datum registracije: Oct 2008
Lokacija: Dbk
Postovi: 1,240
Citiraj:
Autor Ivo_Strojnica Pregled postova
kažeš "hakiraju nas, ali nismo skroz sigurni, jer ne ostavljaju tragove"

No ono šta mi je super je kako oni ne hakiraju kineze.
Stvarno benigni narod.

Amerika : Kina nas hakira, kmeee.
Također Amerika : How the NSA Hacked Huawei: Operation Shotgiant - https://www.youtube.com/watch?v=aQNgelm7JeE
Night je offline   Reply With Quote
Staro 21.07.2025., 21:37   #281
tomek@vz
Premium
 
tomek@vz's Avatar
 
Datum registracije: May 2006
Lokacija: München/Varaždin
Postovi: 4,649
Citiraj:
Hackers are hiding malware inside DNS records, allowing malicious code to bypass security defenses that typically monitor web and email traffic. DomainTools researchers discovered the technique being used to host Joke Screenmate malware, with binary files converted to hexadecimal format and broken into chunks stored in TXT records across subdomains of whitetreecollective[.]com.

Attackers retrieve the chunks through DNS requests and reassemble them into executable malware. The method exploits a blind spot in security monitoring, as DNS traffic often goes unscrutinized compared to other network activity.
tomek@vz je offline   Reply With Quote
Staro Jučer, 11:51   #282
domy_os
EMP moderator
 
domy_os's Avatar
 
Datum registracije: Apr 2005
Lokacija: Osijek
Postovi: 18,812
Citiraj:
AGENCIJA za zaštitu osobnih podataka (AZOP) izrekla je HEP-Toplinarstvu kaznu od 320.000 eura zbog toga što su lozinke korisnika portala „Moj račun" bile pohranjene u čitljivom obliku, čime su korisnici izloženi ozbiljnom riziku neovlaštenog pristupa i moguće zloporabe.
https://www.index.hr/vijesti/clanak/...a/2692565.aspx

Možemo očekivati porast cijena grijanja, pogotovo što zaštićene cijene traju do 30.09.2025. i onda pred zimu ide udar.
__________________
"Kako su krojači novog svjetskog poretka uspjeli u tako kratko vrijeme slomiti intelektualne sposobnosti društva, uništiti kritičku svijest i ljudima nametnuti izvrnutu logiku?"

Nisu slomili u kratko vrijeme. Slamali su godinama, desetljećima pa i stoljećima. Svaka odgledana epizoda Big Brothera, svaki dečko koji ne zna niti promijeniti žarulju, a kamoli uzeti sjekiru i pocijepati drva, svaka cura koja misli da je briga za vlastitu obitelj robija, ali rad za par tisuća kuna u korporaciji 12 sati dnevno blagodat, svako promicanje terora političke korektnosti, svaka podrška promociji svih oblika poremećenosti… Sve to nas je dovelo do ovdje. Korona je samo zakucavanje lopte u gol nakon što je obrana već izigrana i golman odletio u prazno.




Lenovo ThinkPad T14 Gen 2 + Lenovo ThinkPad Universal Thunderbolt 4 Dock

CPU: Intel Core i7-1165G7 @ 2.8 GHz
RAM: 2 x 16 GB DDR4-3200
SSD: Samsung 970 EVO Plus 2 TB NVMe M.2
LCD: 14" FHD IPS 400nits Low Power
WLAN: Intel Wi-Fi 6 AX201
WWAN: Quectel EM120R-GL 4G LTE CAT12
OS: Windows 11 Pro

LCD monitor: AOC AG493UCX
Keyboard: Razer Huntsman V2 Analog
Mice: Logitech G502 Proteus Spectrum
SB: Mackie Onyx Producer 2x2
Speakers: 2 x JBL LSR305
MFP: Canon Pixma MP240
NAS: Synology DS420+ with 4 x WD Red Pro 8 TB
HDD Dock: LC Power LC-DOCK-U3-CR + 12 x Hitachi/Samsung/Seagate/WD 1/2 TB

domy_os je offline   Reply With Quote
Staro Jučer, 16:15   #283
tomek@vz
Premium
 
tomek@vz's Avatar
 
Datum registracije: May 2006
Lokacija: München/Varaždin
Postovi: 4,649
Citiraj:
Autor domy_os Pregled postova
https://www.index.hr/vijesti/clanak/...a/2692565.aspx

Možemo očekivati porast cijena grijanja, pogotovo što zaštićene cijene traju do 30.09.2025. i onda pred zimu ide udar.
Postavlja se pitanje dali je do neznanja/nemara IT odjela ili Managementa.

Hovewer...

Citiraj:
Google has announced OSS Rebuild, a new project designed to detect supply chain attacks in open source software by independently reproducing and verifying package builds across major repositories. The initiative, unveiled by the company's Open Source Security Team, targets PyPI (Python), npm (JavaScript/TypeScript), and Crates.io (Rust) packages.

The system, the company said, automatically creates standardized build environments to rebuild packages and compare them against published versions. OSS Rebuild generates SLSA Provenance attestations for thousands of packages, meeting SLSA Build Level 3 requirements without requiring publisher intervention. The project can identify three classes of compromise: unsubmitted source code not present in public repositories, build environment tampering, and sophisticated backdoors that exhibit unusual execution patterns during builds.

Google cited recent real-world attacks including solana/webjs (2024), tj-actions/changed-files (2025), and xz-utils (2024) as examples of threats the system addresses. Open source components now account for 77% of modern applications with an estimated value exceeding $12 trillion. The project builds on Google's hosted infrastructure model previously used for OSS Fuzz memory issue detection.
tomek@vz je offline   Reply With Quote
Staro Jučer, 17:03   #284
Bubba
E Pluribus UNIX
Moj komp
 
Bubba's Avatar
 
Datum registracije: Oct 2002
Lokacija: M82
Postovi: 6,734
Citiraj:
Autor domy_os Pregled postova
Možemo očekivati porast cijena grijanja, pogotovo što zaštićene cijene traju do 30.09.2025. i onda pred zimu ide udar.
Ja nisam pravnik pa mozda nemam dobar uvid u (pravni) slijed, ali:

a) pajdo ih je prijavio jer su mu poslali lozinku u tekstu
b) Agencija za maglu i patente je kaznila stetnika, koji je radnju (ili nedostatak iste) napravio protiv ostecenog, direktno
c1) naknada za prouzrocenu stetu pajdi i ostalima na HEP toplinarstvu - 0
c2) primitak u drzavni proracun - 320k
c3) predpostavka - nitko u HEP Toplinarstvu nece snositi posljedice

Nastavno na tvoj stos kojeg sam citirao - pajdo je zavio u crno sve korisnike HEP Toplinarstva jer imaju 320k manje u kasi pa sad to mogu prebiti jednio preko onih kojima su zapravo nastetili.
__________________
https://2.71828182845904523536028747...966967627.com/

Programer
Rok od dva mjeseca u stvari znači četiri, ali nikako ispod šest.
Bubba je offline   Reply With Quote
Staro Jučer, 18:17   #285
medo
#erase startup-config
Moj komp
 
medo's Avatar
 
Datum registracije: Nov 2001
Lokacija: Zagreb
Postovi: 3,630
Privatnost i sigurnost podataka i korisnika

Citiraj:
Autor domy_os Pregled postova
https://www.index.hr/vijesti/clanak/...a/2692565.aspx

Možemo očekivati porast cijena grijanja, pogotovo što zaštićene cijene traju do 30.09.2025. i onda pred zimu ide udar.

Falilo je njima po nekoliko redova veličine više između prihoda i rashoda. Ovo neće ni primjetiti da im fali

Ali da, nitko neće odgovarati imenom i prezimenom.
__________________
"It's not a bug, it's a feature!"
1N6pJsvusP7afu23qs1uBscK16wfcG7C8m
medo je offline   Reply With Quote
Staro Jučer, 18:54   #286
kopija
DIY DILETANT
 
kopija's Avatar
 
Datum registracije: Jan 2009
Lokacija: Čistilište
Postovi: 3,460
Želim znati, volim čitati.
Svi ste u krivu i u pravu, donekle.
A mislite da ste u pravu.
kopija je offline   Reply With Quote
Staro Jučer, 19:20   #287
tomek@vz
Premium
 
tomek@vz's Avatar
 
Datum registracije: May 2006
Lokacija: München/Varaždin
Postovi: 4,649
Citiraj:
Autor kopija Pregled postova
Želim znati, volim čitati.
Svi ste u krivu i u pravu, donekle.
A mislite da ste u pravu.
Citiraj:
Informacijsko komunikacijska tvrtka kažnjena s 50.000,00 eura
Znači externa firma. Dobro da piše u tekstu koja.
tomek@vz je offline   Reply With Quote
Staro Jučer, 20:16   #288
kopija
DIY DILETANT
 
kopija's Avatar
 
Datum registracije: Jan 2009
Lokacija: Čistilište
Postovi: 3,460
Pa da firma propadne i ljudi izgube posao?
kopija je offline   Reply With Quote
Staro Jučer, 20:41   #289
tomek@vz
Premium
 
tomek@vz's Avatar
 
Datum registracije: May 2006
Lokacija: München/Varaždin
Postovi: 4,649
Citiraj:
Autor kopija Pregled postova
Pa da firma propadne i ljudi izgube posao?
Ha gle - možda ne da firma propadne ali da ostali znaju sa kime imaju posla. Jer iskreno ako rade tako loš posao onda ga ne zaslužuju. Ovaj put su samo dobili po prstima jer nije bilo eksploatacije baze podataka i ništa loše se nije dogodilo. Ali takve stvari se mogu okrenuti u jako lošem smjeru vrlo brzo...

Citiraj:
One password is believed to have been all it took for a ransomware gang to destroy a 158-year-old company and put 700 people out of work. KNP -- a Northamptonshire transport company -- is just one of tens of thousands of UK businesses that have been hit by such attacks. Big names such as M&S, Co-op and Harrods have all been attacked in recent months. The chief executive of Co-op confirmed last week that all 6.5 million of its members had had their data stolen. In KNP's case, it's thought the hackers managed to gain entry to the computer system by guessing an employee's password, after which they encrypted the company's data and locked its internal systems. KNP director Paul Abbott says he hasn't told the employee that their compromised password most likely led to the destruction of the company. "Would you want to know if it was you?" he asks. "We need organizations to take steps to secure their systems, to secure their businesses," says Richard Horne CEO of the National Cyber Security Centre (NCSC) -- where Panorama has been given exclusive access to the team battling international ransomware gangs.
A gang of hackers, known as Akira, broke into the company's system and demanded a payment to restore the data. "The hackers didn't name a price, but a specialist ransomware negotiation firm estimated the sum could be as much as 5 million pounds," reports the BBC. "KNP didn't have that kind of money. In the end all the data was lost, and the company went under."
Ja gledam sa svog stajališta kao IT-evca koji nema veze sa sigurnosnim odjelom ali baš zato što sam svjestan opasnosti za sustave koje administriram gledam da sve što implementiram bude bar kolko tolko sigurno nakon informiranja po netu i konzultacije sa dečkima kojima je to dnevni kruh i uvijek upozoravam klijenta na moguće posljedice ako idemo linijom manjeg otpora i "just do it". Ovak nekaj je ta firma trebala skužiti i barem pismeno prezentirati Termoplinu zajedno sa prezentacijim potencijalno sigurnijeg riješenja. Ako bi onda to Termoplinov Management odbio, imaju barem opravdanje i čist obraz. Na ovaj način ili nisu skužili ili im je bilo svejedno. A to su najgori Informatičari i ne zaslužuju taj posao.
tomek@vz je offline   Reply With Quote
Staro Jučer, 21:01   #290
Bubba
E Pluribus UNIX
Moj komp
 
Bubba's Avatar
 
Datum registracije: Oct 2002
Lokacija: M82
Postovi: 6,734
Citiraj:
Autor kopija Pregled postova
Želim znati, volim čitati.
Svi ste u krivu i u pravu, donekle.
A mislite da ste u pravu.
Opet ponavljam - osteceni su *korisnici* usluge, koji nisu dobili nikakvu naknadu za stetne radnje, nego ju je u dzep potrpao HNB-ov IBAN? Daklem, država je kaznila društvo kojeg ima u 100% vlasništvu na način da je sama sebi isplatila novac.

Romaneskno.

Citiraj:
Autor kopija Pregled postova
Pa da firma propadne i ljudi izgube posao?
LOL

Stvarno nije tesko doci do te informacije; a s obzirom da su prethodne dvije godine imali vise poreza na dobit nego sto im je iskazana kazna, mislim da ih to nece tako jako zaboljeti. A core business im je ionako jedino drzavni aparat. O tempora, o mores...
__________________
https://2.71828182845904523536028747...966967627.com/

Programer
Rok od dva mjeseca u stvari znači četiri, ali nikako ispod šest.
Bubba je offline   Reply With Quote
Odgovori


Uređivanje

Pravila postanja
Vi ne možete otvarati nove teme
Vi ne možete pisati odgovore
Vi ne možete uploadati priloge
Vi ne možete uređivati svoje poruke

BB code je Uključeno
Smajlići su Uključeno
[IMG] kod je Uključeno
HTML je Uključeno

Idi na