You really think the US doesn't hack into China, Russia, etc? LOL. Grow up. The US invented the modern world.

Hey guys, do you think this is real or a chinese psy opp? kzbin.info/www/bejne/b4bJqmenbcqGmcksi=T-4lPeFg4I-VHoaq . Can this stuff be debunked?

Have Dan check his emails. I've not received my gum because the package "arrived damaged" per the shipper. Love what you do and your gum.

You should follow cyber security creators if this interests you and you want to comment on it. Some ordinary gamer has good takes and he is highly knowledgeable.

I'm resolutely hopeful to use way less or no extra sugar sweets cakes candy and cookies : )

Reminds of something else I read today; Companies getting access to Chinese market also give access to company secrets whenever required.

can you edit this so we know wtf you are talking about? I'm here for info so I'm not just trolling you

@@ChrisChocol *"The British once used orange prices in Paris to measure the success of their railroad bombings in France during World War II. This shows that with the right information, you can uncover critical insights. Don’t underestimate how small details can lead to serious security breaches."*

@@ChrisChocol It was a typo, "iranges" was supposed to be "oranges".

And today, OSINT people guess at the number of fallen Russians in Ukraine by counting obituaries. Completely obscuring information is very hard, especially in times of the internet.

The less you pay, the less people care.

I'm sure DOGE will do wonders for this problem... 🙄

I think the name implies that one does not require trust, in some instance that the company would cover you for. Do you know what I mean, "Yo sit here on this bench, and please don't take off down Main St. while I pizzle wiz." Says on-foot cop with a perp. That requires trust. Beyond trust does not require trust. Beyond trust would plant a super-powerful magnet into his butt and clack his cheeks against the ATM out front. If you have to rely on a human component, you have to thoroughly vet them (chances are they're fine, as the vast majority of people are not criminally insane) but even the person you trust the most, your own sweet mother, could stab you 1000 times in the face at the Thanksgiving dinner. But Beyond Trust is about not requiring trust. In this case all sharp or blunt objects are removed from the dinner table and you eat turkey with your face like a man.

The workers who survive the hazards this brings never stop telling our stories and experiences.

hehe you might survive but barely

Never be a bidder in an auction the lowest bidder wins.

Maybe you should have actual employees to handle the secrets instead of contractors?

We had to do all kinds of these video trainings about that stuff. Then the video series they had us doing got accused of conveying questionable opinions. They pulled that training, told us it’d be replaced, and two years later we still have nothing. I always thought it was terribly low hanging fruit stuff. How could you not protect your company devices? I must just be weird.

@@EvzenKovar-i5p "questionable opinions"? Like "Don't act stupid & irresponsible"?

@@A_Haunted_Pancake I wish I could point you to it. It was almost like a sit-com format. A story series. Each installment was under 5 minutes. Ultimately I think people complained it was one of the “isms”. Which, ya know now that I think about it, was super strange because it was obviously produced in the U.K. Seems they have even less stomach for that than the U.S.

The problem is at educational level. I remember my CS education. Security is taught as something hard, as an obstacle. Not fun, like programming. I've seen the projections for AI intrusions, they are, mildly put, concerning. The future shouldn't belong to people on the dark web. It should belong to the ordinary man.

its the only thing to buy now theres no competition

1/2 x Cost... 10 x Damage... ( Sweden )

GRC only gets you maybe 80% there. Remember Compliance /= Security. I worked as a GRC analyst/manager for years. You can find stuff in your risk assessments but the push back from IT to fix is a huge hurdle. And you're right, everyone hates us. They take it personally when we find flaws and they hate us because we cause them more work. Most of the time senior management just wants us to get them through the audits, sometimes asking us to lie. I've been fired for not being willing to lie. They just want the certificate to use for marketing. They don't really care as much as they should about security.

Compliance with "zero trust" also means getting compliance for an unsecured network perimeter, which is a disaster waiting to happen, but it's the latest security thing if you ask the crypto bros...

And no one thought it was suspicious.

Hahaha ! Lol .

It's the whole company name, they shill "zero trust" security which is a massive red flag too, zero trust is when you throw hands in the air and give up on securing the network

The company should have been called "We totally won't take money from foreign adversaries to leave the door cracked open"

Infected by the zero trust brain worm maybe, their website if full of that rubbish but the NIST spec for it is basically just 'when you give up on securing the network'

You can get chicken tenders at chic filet with a lot less hassle.

On the other hand, the private sector does everything they can to avoid security regulation and compliance, won't even get a basic port scan done if it costs them.

In the private sector it is far from guaranteed that you will get top notch engineering either. Even in companies that a non-insider might perceive as top notch. Consider Cisco. Large maker of computer network equipment and presumably one of the companies the USA will increasingly use after kicking out Huawei. Yet Cisco has a history of security problems, up to and including hard-coded passwords in their firmware. Some people claim those were back doors that the NSA requested, but I'm more inclined to assume sloppiness in development.

Ehh I mean unless there's some kind of Bluetooth/signal connectable chip in said part, they can't do what your talking about, but with how interconnected things are to read sensors and levels, I wouldn't be all that surprised if this was possible, and they'd be smart to put a kill switch in, kinda like what Israel did with pages and walkie talkies to Hamas.

"smart Meters" made by china to turn off when they want to.

​@@johnbartz1907 but "able to just turn it off" is exactly the kill switch - just make a device failing when a specific series of events happen

Probably. Whether they admit it or not.

@@johnbartz1907 The Western Governments help the Chinese. The British Government has brought in a law requiring fridges, freezers, dishwashers, washing machines, tumble dryers, energy storage system to have a chip enabling power suppliers to turn them all off whenever they want to protect the grid. Imagine being half way through washing clothes and the machine gets turned off, or you have just defrosted your freezer, your food is close to melting, and the freezer won't start because the grid manager has shut it down, so hundreds of pounds of food thaws and is mostly wasted, The relevant section says: 193 Energy smart regulations (1) 5 The Secretary of State may by regulations make provision about energy smart appliances that are- (a) capable of being used in connection with any of the purposes specified in subsection (2), or (b) charge points (for electric vehicles). (2) The specified purposes are- 10(a) refrigeration; (b) cleaning tableware; (c) washing or drying textiles; (d) storing energy that- (i) was converted from electricity, and 15(ii) is stored for the purpose of its future reconversion into electricity; (e) heating; (f) air conditioning or ventilation. (3) 20 In making such regulations, the Secretary of State must, in particular, have regard to the desirability of ensuring that- (a) the energy smart function or compatibility with that function is incorporated into appliances in a manner that is compliant with the regulations, (b) 25 the energy smart function does not undermine the delivery of a consistent and stable supply of electricity, (c) the energy smart function in any energy smart appliance is capable of operating in response to load control signals from any person carrying out load control, and (d) 30 communications, software, systems and personal and other data used in connection with energy smart appliances are secure or otherwise protected, for purposes including the protection of end-users.

We just voted for the end of American superiority by voting for a South African and Rapist.

‘Someone gave out a key’…. That’s quite a statement. They’ve a lot of redesigning of their security setup if that’s the case. RBAC, vault, key rotation & invalidation etc.

35 years in cyber security here. The stories I could tell. Here's one. Remember Hillary's email server hack? I worked at the company that backed up her sever to the cloud. The cloud storage servers were not behind a firewall - fully exposed to the internet with public IPs. A misconfiguration in SAMBA allowed anonymous access. Anyone on the internet could get into these severs. And worse,, it didn't matter of the backups were encrypted because the private key was kept in a plaintext file on the servers and all the servers used the same key. The company did not have a security team at all at the time of the hack. Me and a couple others came on to form a security team about a year afterwards.

If they find they cannot do the work themselves then perhaps they could sub-contract the work to a Chinese company or something? 🙂

I smoke pot and wanna do geospatial intelligence in the air force but dont wanna ruin my chances of joining by testing positive for THC at meps 😢

Problem is that potheads might accidentally zoom out and get too macro a look at the true nature of the U.S. government, can't have that.

This comes down to the workers aptitude at following code procedures according to the task. Anyway can lie and produce a fake resume and fake training especially the cheap ones. You can't assume anything in the hiring process, everything should be verified.

Lowest eligible bidder is still the lowest bidder

@@foobarf8766 Sure... there is no amount of money that will prevent corruption or infiltration. It's not a skill issue it's a corruption issue. There is multiple level of auditing and i'm sure the US treasure do it's due dilligence, it is not your local supermarket.

@@foobarf8766 I'm confident the US treasury has multiple level of audit and security level credential. This is not your local supermarket. Lowest or highest bidder will not change anything to the issue of corruption, spying and infiltration. That's the very nature of warfare. Anyway, this is probably valuable data when you plan to invade Taiwan.

It's whoever has the highest bank balance and least morals.

You may have come up with the quote of this century. U.S. inventors never imagined the use that drones, backup cameras & out dated hard line communications would be put to by "small groups of dedicated individuals in certain parts of the world".

Unfortunately, they are all short busses.

When the greedy get jealous of the thieves.

Huge army and budget yet insanely corrupt politicians who have been proven time and time again they can be bought for whatever purpose you want.

don’t get carried away with the excitement for unencrypted, static, hypertext linked websites with no server-side scripting and the same basic features of the earlier gopher protocol

You know we won't wake up. When Trump gets in then we all wake up😊❤

When China repossesses America

@@sethbrock5232right. The guy who blabbed about our nuke subs to strangers, the asshat who waved Top secret battle plans ? The guy who blabbed about lap tops in Aleppo which resulted in Israel informant getting killed ? The same guy who stole documents and had them in a bathroom with a copier ? And is buddy buddy with a guy who owns EV factories in China and has a buddy buddy friendship with Putin …what are you smoking ?

@@sethbrock5232 we'll wake up to a burning house

@@sethbrock5232Trump is not the Savior. Jesus Christ is the only one who can Save us all. It’s my mission this year to get closer to god and to spread his word.