Security First? Not a Chance!

Dr. Roy Schestowitz

2022-12-10 15:00:05 UTC
Modified: 2022-12-10 15:04:31 UTC

Video download link | md5sum ac3236ee212e511a0874c1eecac90893 Insecure About Security Status Creative Commons Attribution-No Derivative Works 4.0

Summary: At Sirius ‘Open Source’, which we left 8 days ago, security had been neglected for years; at the moment the company brags about "ISO" and other three- (or four-) letter acronyms, but many of the basic practices are conveniently ignored

THE sad reality is that when it comes to security many people and corporations prey on perception rather than reality. They indulge in what they can tell the public (or clients). For instance, Microsoft uses media "plugs" to pretend Microsoft is some sort of security expert with many security gurus whilst actively pursuing back doors for the NSA and others. In my latest job (almost 12 years) I witnesses customers suffering security breaches; we're not meant to tell people about clientele covering up such incidents because it might result in fines or erosion of confidence.

"...in healthy workplaces the problem would be security lapses, not the people who talk about them."Worse yet, highlighting that some company is failing when it comes to security (as happened at Twitter earlier this year; their security chief had become a whistleblower) is seen as the real problem; in healthy workplaces the problem would be security lapses, not the people who talk about them.

Aside from the above video I still have plenty to say and to show (without infringing the privacy or people or naming any companies). ⬆

Recent Techrights' Posts

France: Apple and Microsoft Down, GNU/Linux Up to New Record Levels: How will tariffs against France impact things in the coming months?
Open Source Initiative (OSI) Privacy Fiasco in Detail: What Was Reported to the California Privacy Protection Agency (CPPA): We hope to finish this whole lot within a week, then move on to election, lobbying etc.
Techrights Will Spend the Next Few Years Writing a Lot About Strategic Lawsuits Against Public Participation (SLAPPs): It's a growing problem
The State of EPO Staff's Health in Rijswijk or The Hague: We're going to cover the EPO some more later in the month
NVIDIA Corp Lost 36% of Its "Value" Since Cheeto Inauguration, But "Gen Hey Hi" (GenAI) is Totally Not a Bubble: Selling loads of unneeded hardware based on hysterical hype; like selling shovels during a Gold Rush
Taking a Moral Stand Against Strategic Lawsuits Against Public Participation (SLAPPs) and the Worst Offenders/Facilitators: Any other stance would sidle with moral depravity or moral hazard
Links 06/04/2025: Many New Acts of Repression and Elements of Financial Depression: Links for the day
In Qatar GNU/Linux Rose From Under 1% to Over 4% in Two Years (or Over 5% If Counting ChromeOS): It's a big improvement compared to what we saw last year
LLM Scrapers Are a Nuisance, But They're Also a Reminder It's Time to Make Your Site Static: Perhaps the best protection is the ability to endure surges
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Saturday, April 05, 2025: IRC logs for Saturday, April 05, 2025
Links 06/04/2025: Attacks on Education, Fake Patents, and Fake (Illegal) Patent Courts: Links for the day
Links 05/04/2025: Tariffs Backfiring, YouTuber Arrested, X/Twitter Set to be Fined: Links for the day
Gemini Links 05/04/2025: Offline is For Everyone, Copyright Colonialism, and More: Links for the day
Links 05/04/2025: TikTok Unsold (Still), Royal Society is Dead: Links for the day
GNU/Linux Growing in East Asia, Windows by Default No More?: GNU/Linux is now on the shelf
Slopwatch: Anti-Linux 'Articles' From Linux-Hostile LLMs: It is almost always negative things and nobody can be held responsible for it except the charlatans prompting the LLMs
Links 05/04/2025: Fentanylware (TikTok) "Sale Looks Highly Imminent" (US), Stock Market Drowning in Panic: Links for the day
Gemini Links 05/04/2025: Moving Plants, No to Smartwatches, RAID Hygiene: Links for the day
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Friday, April 04, 2025: IRC logs for Friday, April 04, 2025
Techrights Has Dealt With More Potent SLAPPs Than Violent Microsofters Begging to Hide What They Did to Women: I became accustomed to SLAPPs
Links 04/04/2025: Fury in South Korea, Flight MH370 Remains Mystery: Links for the day
Gemini Links 04/04/2025: Anger and Raspberry Pi CM4: Links for the day
Links 04/04/2025: LLM Slop Bubble Bursting and Korea Music Copyright Association Bans Slop 'Music': Links for the day
Traf-O-Data, the Company That Jeffrey Epstein's BFF (Bill Gates) (Co)Founded 53 Years and Went Out of Business Due to Heavy Losses: Who will die first, Bill or Microsoft?
Why Microsoft's Shares Sank Almost 20% in Recent Months (the Bubble is Imploding): verified press reports from the past 24 hours
A Note on SimilarWeb: Or why SimilarWeb is meaningless for more than 99% of the sites on the Web
GNU/Linux Rises to Almost 5% in Algeria While Windows Sinks to All-Time Low: GNU/Linux grew tenfold
Where to Get More Gags: A valued reader recommended that to us
Links 04/04/2025: Tech Stock (Inc. GAFAM) Fall, Google Pretends to Do End-to-End Encrypted Emails (With Google in Control): Links for the day
IBM Said to be Shutting Down Offices or Sites in the United States: the press can no longer avoid admitting that IBM moves many jobs to India
To Participate in Fedora Diversity You Must Use Proprietary Software: Not for the first time either
LLM Slop as Attack Vector on the Reputation of Linux: The attacks on Linux have escalated to information warfare
Yandex About to Be Three Times Bigger Than Microsoft (Bing) in Asia: That's about 60% of the world's population
Gemini Links 04/04/2025: Decoupling Updates, Elaho as Gemini Client: Links for the day
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Thursday, April 03, 2025: IRC logs for Thursday, April 03, 2025