JKNReal criminals don't steal a billion dollar$. They steal $2 from a billion people without making the headlines.
Because nobody is going to care that you lost $2. Not even you.
ARGVMI~1.PIFSide note: the whole idea of making devices say “I'm not compromised, pinky promise” and calling that a #security measure is patently absurd. Please stop.
Or at least come up with a solid explanation of why this idea isn't ridiculous. Because, speaking as someone with a pretty good understanding of how computers work, it looks ridiculous.
PeterCatching the story about how MSFT locked out a bunch of legit devs for not uploading government IDs on the same morning I see the story that CPUID is serving up (at least moderately advanced) malware is affecting my brain in a particularly irritating way.
Schneier on Security RSSOn Microsoft’s Lousy Cloud Security
ProPublica has a scoop:
In late 2024, the federal government’s cybersecu... https://www.schneier.com/blog/archives/2026/04/on-microsofts-lousy-cloud-security.html
#nationalsecuritypolicy #securitytheater #cloudcomputing #Uncategorized #cybersecurity #Microsoft
On Microsoft's Lousy Cloud Security - Schneier on Security
ProPublica has a scoop: In late 2024, the federal government’s cybersecurity evaluators rendered a troubling verdict on one of Microsoft’s biggest cloud computing offerings. The tech giant’s “lack of proper detailed security documentation” left reviewers with a “lack of confidence in assessing the system’s overall security posture,” according to an internal government report reviewed by ProPublica. Or, as one member of the team put it: “The package is a pile of shit.” For years, reviewers said, Microsoft had tried and failed to fully explain how it protects sensitive information in the cloud as it hops from server to server across the digital terrain. Given that and other unknowns, government experts couldn’t vouch for the technology’s security...
Old Man Trench
TechdirtICE Airport Deployment Shows Officers Only ‘Need’ Masks When They’re Kidnapping People
steveWorking with a US employer and a US healthcare management company. They cannot send emails to each other because the email contain PHI. The email get caught by DLP and sent to a captive portal. The captive portal is holding the PHI documents in the cloud, who knows where. The captive portal corrupts the message to unreadability. Opportunistic TLS is already available throughout the entire path. And the email is encpypted at each hop. 1/3 #securityTheater #privacyTheater #PHI #email #privacy
Olivier@IzzyOnDroid abysmal and shameful. Nothing more than #securitytheater. They should clean up their house before banning "sideloading" and third party app stores.
Kevin Karhan 
N-gated Hacker NewsOh, look! Microsoft Azure's sign-in logs are being bypassed again...for the third and fourth time. 🎉👏 Congrats, #TrustedSec, for finding yet another way to make security sound like a game of whack-a-mole! 🐱👤 #SecurityTheater
https://trustedsec.com/blog/full-disclosure-a-third-and-fourth-azure-sign-in-log-bypass-found #MicrosoftAzure #SecurityBypass #WhackAMole #InfoSec #HackerNews #ngated
https://trustedsec.com/blog/full-disclosure-a-third-and-fourth-azure-sign-in-log-bypass-found #MicrosoftAzure #SecurityBypass #WhackAMole #InfoSec #HackerNews #ngated
