 |
Post Ak6LUVRpi90TEGh6BM by [email protected] |
 |
More posts by [email protected] |
|
Post #Ak622HB1HN1bjLeg4m by [email protected] |
|
0 likes, 1 repeats |
|
|
|
So managers are starting to spew the whole "well I didn't do anything … |
|
|
|
Post #Ak622IALbM56nYLefQ by [email protected] |
|
0 likes, 1 repeats |
|
|
|
Eh, reading the wonderful responses to this thread, who am I kidding?Just "… |
|
|
|
Post #Ak62AlcVyVYgSwZ3xY by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@tinker They don’t give you too much of a choice tho. But yeah. |
|
|
|
Post #Ak62FVB2XOGquryGx6 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@krypt3ia - Oh fully agree. But it stands. |
|
|
|
Post #Ak62LMjIrEMmSFnGFs by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@tinker "Just let it auto-update?" Most EDRs (including CrowdStrike)… |
|
|
|
Post #Ak62WkndhrKOI9Fh20 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@Xavier - Indeed. How many folks with budget pushed back before this? How many … |
|
|
|
Post #Ak62yyuYpigSANwvmS by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@tinker *shrug* most orgs are gonna see this, ultimately, as a black swan event… |
|
|
|
Post #Ak6377CNu8PQBcAHXE by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@munin - business psychotherapist.... That's a vCISO right? |
|
|
|
Post #Ak638qAeBXb3xDAuBM by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@tinker No. A vCISO is not capable of debugging the structure of the organizati… |
|
|
|
Post #Ak63JSili7rYPaCRii by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@munin - My joke lies in the idea of vCISOs providing consultant "policies… |
|
|
|
Post #Ak63MqmahrhNuFbSpk by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@Xavier @tinker this wasn't even a 'product update', it was a '… |
|
|
|
Post #Ak63hJDigap3ta32A4 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@tinker right in the unknown unknowns budget |
|
|
|
Post #Ak63lgAZIsKEEHeqNE by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@tinker "only one, but the lightbulb has to want to change" lol |
|
|
|
Post #Ak63rZ3QfcUVtq7nQ8 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@tinker it is easy to "accept the risk" when the person deciding that… |
|
|
|
Post #Ak64EPXWDBvF3D5ouW by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@tinker I used to work for an EDR company. We did allow customers to tweak the… |
|
|
|
Post #Ak65R6Layn2nFI8Blo by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@malanalysis @tinker |
|
|
|
Post #Ak65pEbbvWkfoB86Qi by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@tinker this was pushed to all customers regardless if they had auto-update on |
|
|
|
Post #Ak65pSFRClKm7SraoS by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@tinker This whole situation just shows how cyclic our industry, and the tech i… |
|
|
|
Post #Ak65pSLSqM9eQ9gPCq by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@JohnsNotHere @tinker As an industry, we desperately need to invest in software… |
|
|
|
Post #Ak66cKhC4ZuQsz9XkG by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@djnick - The core part of allowing a third party remote code execution at high… |
|
|
|
Post #Ak68sTNnk2FUN1uFM0 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@munin @tinker And also, half the time the InfoSec industry is like "patch… |
|
|
|
Post #Ak68sTTTOwmmecYmC8 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@munin @tinker 99% of orgs struggle to get stuff patched in anything like a tim… |
|
|
|
Post #Ak68sTZV2XbexJNaaW by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@mmaibaum @tinker Yes, it requires systemic examination of the organization as … |
|
|
|
Post #Ak69EphDSjJdwbeK2a by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@munin @tinker yep, and I have worked with good people like this - tbh this was… |
|
|
|
Post #Ak69Epmt7dqwECIqsi by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@mmaibaum @tinker for context, I've done a lot of work in the past addressi… |
|
|
|
Post #Ak69UQgcDQPT0lnzrE by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@munin @tinker best person I worked with on this persuaded the wider tech funct… |
|
|
|
Post #Ak69UQmdr1ELJScoFc by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@mmaibaum @tinker It is. Security is part of QA and part of Ops generally. The … |
|
|
|
Post #Ak6BWniHlyAKupqSjQ by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@Xavier @tinker tbh it was a risk that we identified when we did our assessment… |
|
|
|
Post #Ak6DR3TaSAxDyTMFl2 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@tinker @munin Just when you thought that there was no such things as "Org… |
|
|
|
Post #Ak6DR3ZG75UWG40mbA by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@tinker @munin Honestly, I keep thinking that much of the modern corporate worl… |
|
|
|
Post #Ak6DR3fHkgJOYkpazY by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@JeffGrigg @tinker Sanity is a societal convention; assuming it has a meaning b… |
|
|
|
Post #Ak6EbLSqWrUIc5TwrQ by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@tinker The best way to avoid problems is to avoid Windows. |
|
|
|
Post #Ak6F1bpqHjDAuqlIjA by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@barunick @Xavier @tinker I dunno… I get it but it feels a bit “fool me onc… |
|
|
|
Post #Ak6F1cGQgsTkFJCXAW by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@tinker @barunick @Xavier Personally, were it my decision (it isn’t), once a … |
|
|
|
Post #Ak6FRPSQvXB83a7CNM by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@djnick @tinker auto update is just for the Driver. Channel updates cannot be… |
|
|
|
Post #Ak6FoXxtSkOx6PrZVA by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@munin @tinker this update can't stop won't stop. Even if you're … |
|
|
|
Post #Ak6FpKOpNuT1Jqpl9E by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@Wifiwits @Xavier @tinker regardless to make changes to take something out are … |
|
|
|
Post #Ak6JkYEcuuZyb82XsO by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@Wifiwits @tinker @barunick Did you stop using Entra ID or Office 365 after Mic… |
|
|
|
Post #Ak6LUVRpi90TEGh6BM by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@tinker don't hold your breath. An occasional disaster is not on the books … |
|
|
|
Post #Ak6LWz0sl6x7VHGkYS by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@Xavier @Wifiwits @barunick - I did personally. But to your point, orgs arent (… |
|
|
|
Post #Ak6PoXqYtwucHG4Usq by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@tinker Even Companies who used the N-1 and N-2 sensor update policies were equ… |
|
|
|
Post #Ak6QZcQxfFqw79Xljs by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@tinker @barunick @Wifiwits @Xavier Profit-oriented proprietary malware publish… |
|
|
|
Post #Ak6QZcWzIqfoPqMa8G by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@tinker @lispi314 @Xavier @barunick boy is today a lesson in that. |
|
|
|
Post #Ak6S0UXXDp3ZP8zoxs by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@tinker One organisation I worked for, the sysadmins would apply Windows update… |
|
|
|
Post #Ak6S0WFAt3YggmQBcm by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@essjayjay @tinker it can become hard to do proper regression sometimes if the … |
|
|
|
Post #Ak6Xq6yKai3x8hxnPM by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@tinker but let’s throw all our money into AI because securing data and makin… |
|
|
|
Post #Ak6Xstbck7h0YNfbX6 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@malfunction54 - i fear you're right :-/ |
|
|
|
Post #Ak6dNPBMPH46wbkjg0 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@tinker This mindset in the infosec industry is getting ridiculous... |
|
|
|
Post #Ak6oF2qudxKqrvP9NY by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@intelgraphy - yeah probably |
