I love your work!

But would you be willing to make the sacrifice, if it means we can get autotune and beauty filters made illegal?

You can blame his leadership who did not authorise the additional time and cost for sandbox testing.

That is true. The issue is that because there are so many permission escalation issues in windows, that many anti malware products must run as kernel drivers.

An OS should not have to require a 3rd party driver for security.

Microsoft should be writing that driver as an OS component. Drivers should be restricted for taking to hardware.

Yep, at this point the “security” companies can do with imitating malware development practices.

That’s because cloudstrike likely has significantly worse leadership compared to your company.

They have a massive business development budget though.

It’s likely not an intern’s fault. Likely a C suite not authorizing the testing infrastructures requested by the developers and sysops people.

Way too many. It’s not the 90’s or early 2000s anymore.

It’s outside the primary failure domain.

Because the windows OS is inherently insecure with lots of permission elevation opportunities.

We also backup our bitlocker keys with our RMM solution for this very reason.

What amazes me is that so many big companies still use windows in critical core infrastructure.

Windows endpoints is one thing, but anyone using windows servers and MSSQL for mission critical application stacks need to be hit with the modernization hammer.

And then on top of that, they do not have a test rollout of any changes in a test environment, before rolling it out in the production stack.

Good luck to all the engineers in the trenches, having to fix the mistakes of their leadership.

Valve is an excellent example of a sustainable tech company. It’s not on the growth at any cost, boom and bust cycle

Good bot.

I think this strategy makes sense, if you do an overall push to have all software sources verified. Knowing users, a simple warning that an app is unverified rarely affects their behaviour. You need to hide the app, to encourage app developers to get verified for it to work. Users ideally should be able to trust by default, because we can’t trust them to know any better.

Exactly. Linux mint is one of the few distros that really follow through that their users may not be proficient.

It’s why it’s my business distro of choice.

It’s mainly in the USA it seems. In South Africa, we have had internet banking since 1995. So businesses stopped using checks around that time. Phone banking with DTMF was popular around that time as well. Bank transfers we used more than checks for businesses before then.

For individuals, debit cards became the default around the same time. Same functionality as a credit card, without the credit.

Then Internet banking became mainstream for individuals around the 2000s when everyone got access to the internet on their phones.

Cash remained popular throughout since ATM infrastructure was very good in South Africa.

They do worse than block it, the redirect it to their own servers.

And the data is worth it at volume. They have hundreds of thousands of users, along with the region they are in, as well as data on what websites they visit.

Advertisers have and continue to pay for that data.

It became legal when the Trump administration got rid of net neutrality legislation.

This is why it is so important to get it back, but the current administration is dragging their feet.

They can also redirect that traffic to their own DNS servers, so you think you are using 3rd party DNS, when you are actually still using theirs. This became legal when the Trump administration got rid of net neutrality legislation.

OpenDNS has an article on how to test if your ISP is doing it. https://support.opendns.com/hc/en-us/articles/227988727-How-can-I-tell-if-my-ISP-Allows-Third-Party-DNS-Providers