Bonum Certa Men Certa

Citation/Atlas 'Security' Exam is a Total Farce, But It's Still Good for Entertainment Purposes

Summary: What are people being taught about so-called 'security'? Might that explain so many security breaches? (Poor training, wrong assumptions)

OVER the years I saw criticisms of school or classroom indoctrination about copyrights. They're basically teaching/pushing a bunch of lies to young children in an effort to "educate" them about "copyright law" (sounds reasonable on the surface... until one actually checks what these pupils are being told).



"It's supposed to sound sophisticated, but the net gain for security is laughable."For ISO compliance purposes, sometimes I'm required to take and pass some online "training" courses. Some of these are ridiculously bad, so I end up taking screenshots.

This post is about fake security mindset -- a concept explained here several times earlier this year. It's supposed to sound sophisticated, but the net gain for security is laughable. Complexity does not beget security (usually the opposite is true; simplicity is auditable). Basically, it boils down to what's sometimes known as "security theatre", owing to a 'fake security' cargo cult of "phones" or "apps" and "clown computing" (i.e. giving all your access credentials to some other company, along with highly sensitive data).

During my latest "training" I stumbled upon about 40 examples of amusing errors and silliness (it's all over the place, sometimes with repetition for extra effect or 'good' measure), but to keep things more concise and digestable I took screenshots and annotated them a little, just as I did last year with edX [1, 2], in effect shilling for the Linux Foundation in the guise of "training". Where does one draw the line between courses and marketing, revisionism, and even outright lies?

"Basically, it boils down to what's sometimes known as "security theatre", owing to a 'fake security' cargo cult of "phones" or "apps" and "clown computing" (i.e. giving all your access credentials to some other company, along with highly sensitive data)."Below I present just a small sample. Almost at random I narrowed it down to just a dozen rather unique examples (there are many more similar instances of these). Surely, a more exhaustive list would take a lot of time to prepare while the clock is running. At the end, one is required to lie or say what they expect you to say in order to pass the test (which I did). To be fair, the questions aren't as terrible as the supposed 'training', as they don't mention brand names there or promote outrageous fallacies.

Without further ado, let's begin.

Does that mean what they think it means? Yes! They can! Like, every person? If you already labeled them that, what does that mean? 'Good' ones?

It doesn't take a genius to see what's happening here and why it's shallow. Infantile questions like, ARE CRIMINALS A THREAT? It's like a colouring book quiz with heroes and villains. They present actual adults with such questions. We'll come back to it later when it comes to "exam time".

They don't need to target you, they can target the software you use, e.g. Microsoft Windows

Notice how, just like Microsoft, they're looking to blame computer users or "criminals" (or some nations like China or Russia). Anything to divert liability away from rogue software companies that write shoddy code, hide the defects, and code back doors for the NSA et al.

Let's move on.

Apple or Microsoft

Wait, I'm confused.

You mean Microsoft

As if it's the user's fault that Microsoft cannot secure its own systems...

Surveillance devices with back doors are some of the least secure ways to maintain access to things

Yes, let's all use 'phones' to manage critical servers... with "apps".

Back doors of vendors and governments not even mentioned

Missing part?

With back-doored encryption of the aforementioned brands?

No mention of "weakened" (i.e. fake) encryption.

Microsoft promotion (niche player)

Why are they ignoring bigger players like Facebook and Twitter? Brand promoting? Wait, there's more right after that...

What if I don't use (back-doored) Windows?

It's 2021 and they still think everyone uses Windows. Guess what... Windows market share is less than a third.

But should I use Windows at all?

Windows again.

OK, questions time. First in the test:

The simplistic children's villain narrative

So let me guess... "criminals" are the threat. Who would have guessed?

Did I learn something from this course? Absolutely nothing. But I got some giggles. Many millions of people are constantly subjected to this kind of propaganda, which sometimes seems more like marketing than actual education.

Recent Techrights' Posts

The Best Interface is Outdoors, It's Nature!
Not everything should be replaced by or emulated by digital devices
[Video] Richard Stallman's New Talk in Germany Covers What Free Software Means, Why LLMs are "Bullshit", and Lots More (Web3 Summit 2024 Berlin)
Closing Keynote Day 3 - Dr. Richard Stallman - Web3 Summit 2024 Berlin
On Losing the Job at Google After Talking About Committing Acts of Violence Against Colleagues
We still have a highly toxic element trying to enter and fracture our community
 
Modern spyware and the problems of "Discord newspeak"
The history of modern instant messaging...
Links 09/09/2024: More Trash Balloons and Collapse of Real Estate Market in China
Links for the day
Gemini Links 09/09/2024: ROOPHLOCH and More
Links for the day
Wrong Priorities at IBM
Lavish spendings on a 16-year contract for the most expensive place while firing tens of thousands of staff
Links 09/09/2024: LLMs Manipulated to Lie, More Corruption Found in COVID-19 Contracts
Links for the day
Terms of Service (TOS) Under Scrutiny - Part XVII - A Personal Perspective
The bottom line is, it's possible to reduce (albeit not entirely eliminate) how many things one signs, presses "OK" on and so on
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Sunday, September 08, 2024
IRC logs for Sunday, September 08, 2024
Always Taking Things Up a Notch
Nothing will stop us
[Meme] EPO Keeps Masking Its Corruption With "Diversity and Inclusion" (Hiring the Wife of a Friend of Someone Who Bribed His Way Into EPO Presidency)
chain of nepotism
Very Large EPO Applicants Now Threaten a Boycott of the EPO (the EPO Management is Trying to Bribe Them to Change Their Plans/Minds While Hiding It From Staff)
If corruption prevails to this extent, it will have severe international effect
Gemini Links 09/09/2024: Gemini Application Developer Guide and ROOPHLOCH 2024
Links for the day
Links 09/09/2024: 'Dieselgate' Criminal Trial Starts Late, Mass Layoffs at Volkswagen
Links for the da
[Meme] Patent Monopolies as Bribes at the European Patent Office (EPO)
bloggers who report crime are being threatened with lawsuits by several law firms hired by the EPO to cover up crimes
New EPO Letter Expressing Concerns About EPO Violating Its Charter, Clearly Violating Rules (Possibly Bribing Siemens With Monopolies) and Granting Loads of Fake Patents to Make More Money
Why does the EU tolerate the EPO's crimes and how much longer will this go on for?
NIST is Threatening to Sue You With Patents on Mathematics (That Aren't Even Legal in the First Place) If They Don't Like You
They're asserting monopolies on mathematics
[Meme] EPO 'Hush Money' to Companies That Point Out EPO Breaks the Rules
A bribed doorman: "We have patent examiners, but if you say the right words, we'll bypass them for you"
Gemini Links 08/09/2024: WebDAV, OpenBSD, Pocket Reform, and More
Links for the day
Links 08/09/2024: Super Typhoon and Lots of Climate Journalism
Links for the day
Certificate Authorities (CAs) Are Serving the Authorities, Not You
The centralised CAs "model" is not working
Rage in the Propaganda Machine
There has never been a better time to quit social control media
The Free Software Movement Must Not Assume That Truth and Science Always Win
Sometimes the bad people and the liars get ahead
Peter Eckersley and 'Afterlife'
It's better to look after one's health at present than to pursue all sorts of perceived 'insurance' policies
Terms of Service (TOS) Under Scrutiny - Part XVI - When Radio is No Longer "Read-Only" (Listening Mode) Because Someone Listens and Sells Your Data
Who would want to put up with this?
Terms of Service (TOS) Under Scrutiny - Part XV - "Zoom's terms of service change sparks worries over AI uses" (and More)
Then they wonder why users get all grumpy?
redhat.com is Promoting Revisionism and Lies Regarding the Origin of the Term "Open Source"
debunked many times before
Software Patents Against GNU/Linux Again
Patent extortion against OpenShift and Red Hat Enterprise Linux
IBM is Cutting - Almost in Half - Its Office Space in Austin, So Expect Many Layoffs (RAs)
IBM reduces office space by 187,00 square feet or 37%
IRC Proceedings: Saturday, September 07, 2024
IRC logs for Saturday, September 07, 2024
Over at Tux Machines...
GNU/Linux news for the past day
Gemini Links 07/09/2024: Self Hosting (Not "CLOUD") and Site Reliability Engineering
Links for the day
They Used to Say Avoid Nginx (or NGINX) Because It's Russian. Now You Can Say Avoid It Because It's Microsoft.
Thankfully we quit using NGINX when we shut down our HTTP proxy for Gemini
Instead of Telegram People Should Use Free Software (Telegram Was Always Unsafe for Use)
"Modern" so-called 'smart' 'phones' are compromised at the OS level or baseband side
The Arrest of Pavel Durov is Changing Telegram
Remember that Telegram's founder, who is also French, cannot leave France until he satisfies those who detained him
The Growth of GNU/Linux is Now a Mainstream Topic With Widespread Awareness
We can do less counting (of baskets and eggs) and more advocacy
Techrights is a Demonstrably Popular Site, Reporting Suppressed Facts. Those Vouching for Its 'Unpopularity' Express a Desire Rather Than a Condition or a Fact.
Our 100% source protection record will hold up
John Pilger's Site Relaunches, Wikileaks' Site Has Not Been Updated in Years
We have long hoped that, more so after the release of Assange, Wikileaks will have some kind of "relaunch" or recovery
A Terms of Service (TOS) Notion of "Consent"
We're well past the true notion of real consent
Terms of Service (TOS) Under Scrutiny - Part XIV - Zoom the Beast
breakdown of the Zoom TOS and corresponding privacy statement
Links 07/09/2024: Qualcomm May Buy Parts of Intel, YouTube Deletes Channels for the US Government
Links for the day
No, Mastodon is Not Growing, Social Control Media is Generally Waning
Our sister site pulled the plug on the whole thing over a year ago, seeing it was mostly a source of online abuse
A Loss for Fake Security, a Win for Net Autonomy
Crucifixion of domains has been ramping up this past week; it's a cautionary signal
Links 07/09/2024: UK Police Raid Journalist's Home, Epoch Times Setbacks, and Karma
Links for the day
FSFE: Donate to Us to Co-Fund With Microsoft the Unpaid Underage Labour, YH4F
Latest from FSFE
Links 07/09/2024: China's Financial "Bond" to Africa and Attempts to Postpone Trump Criminal Cases
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, September 06, 2024
IRC logs for Friday, September 06, 2024
linuxsecurity.com is Still Spamming the Web
This is not harmless to Linux and it definitely merits a shun
Gemini Links 07/09/2024: Freedom in Bareness, Reactions in Addictive Social Control Media
Links for the day