WTF Bites
-
Pandora has been doing this to me this afternoon:
-
(moving from Bad Ideas to here, because, well, you'll see...)
@dcon said in THE BAD IDEAS THREAD:
For a job listing, this seems like a bad idea to include as a bullet point
Work within a fast-paced environment with constantly shifting priorities
(no idea what industry as this is a recruiter's posting)
LOL! So I figured WTF and submitted my resume. The recruiter actually called me back within about 5 min. We got to chatting (I'm actually a good match on most of the items) [still don't know anything about the industry other than they're a startup].
- He mentioned "oh, they don't offer medical benefits"
- Me: "Whoa, we can stop right there - that's a deal breaker"
He said he had just pushed thru another candidate (who declined the offer) and even pushed thru much higher salary/bonus/options to make up for that (me thinks: ok, that's going to have to be a significant bump over my current salaray!).
- him:"How much are you looking for?"
- "Well I'm currently making XXXXXX, so..."
- "oh, they're [ed: the startup] not going to be able to match that"
That has to be the quickest I've refused something that looks halfway interesting...
-
My Honeywell industrial thing is broken, the distributer is long gone. But Honeywell have an RMA portal, note you can select 'customer':
And we're....Oh:
Thisis a 10 page PDF quiz, so I got Accounts to complete it. Send it off....and:
Arrg, more waiting. I need this thing fixed quick. One day later:
You dirty rat-fuckers!
Edit: I sent a complaint, and actually got a response:
Oh, well that's fine then. It's not like websites can show dynamic text of, say, a notice about access in your selected region. That problem has sadly never been solved.
-
@boomzilla said in WTF Bites:
Pandora has been doing this to me this afternoon:
And today, in chrome:
react-dom.production.min.js:188 DOMException: Failed to execute 'createElement' on 'Document': The tag name provided ('i°_°i') is not a valid name.
-
@boomzilla said in WTF Bites:
@boomzilla said in WTF Bites:
Pandora has been doing this to me this afternoon:
And today, in chrome:
react-dom.production.min.js:188 DOMException: Failed to execute 'createElement' on 'Document': The tag name provided ('i°_°i') is not a valid name.April Fools in React gone wrong?
-
https://www.youtube.com/watch?v=7Uje4pxfSlI
A lock that you can bypass by....
unscrewing the screws on the outside.
-
@Tsaukpaetra said in WTF Bites:
https://www.youtube.com/watch?v=7Uje4pxfSlI
A lock that you can bypass by....
unscrewing the screws on the outside.
We had an entire thread for that: Your $100 smart lock is actually a $0.50 paperweight
The author of your video also contacted the lock's manufacturer, with funny results.
-
@Tsaukpaetra said in WTF Bites:
https://www.youtube.com/watch?v=7Uje4pxfSlI
A lock that you can bypass by....
unscrewing the screws on the outside.
We had an entire thread for that: Your $100 smart lock is actually a $0.50 paperweight
The author of your video also contacted the lock's manufacturer, with funny results.
Well damn, apparently my memory is less than a year for things like this.
-
https://twitter.com/ChinaAvReview/status/1114802018919411712
Hey, don't blame the Boeing software d00dz! The date was only known since about the seventies!
-
Some aircrafts have to be grounded
I've already made that joke, so I won't repeat it.
-
@LaoC Actually, it is the second rollover of that value. Failing to account for it in software for something that has a projected life of 30 years is certainly a
.
-
@LaoC Actually, it is the second rollover of that value. Failing to account for it in software for something that has a projected life of 30 years is certainly a
.They were counting on the safety system failing and destroying the plane before the rollover happened.
-
I get pestered by recruiters on LinkedIn. While not 100% in the spam category, I do tend to ignore most of them. This one however...
: Rather than the usual wall of text, I recorded a quick 60-second video for you:To summarise it's a C++ Software Engineer role, some highlights:
- Cutting-edge Medical Software 💻
- Assisting life-saving medical procedures and improving clinical safety 🏥
- Core hours 10am-4pm with flexi-time options 🕙
- Company share scheme 💰
Based just off the A1 in Sedgefield. What do you think?
:
> What do you think?I think using video, rather than text, is a superbly bad idea. Please don't do it again.
<snip doubts about it being out of the way, salary notable by its absence, and what it would take to shift me from my current job>
-
@PJH I've listened to the first checks again 9 seconds of this video and it already sounds like those annoying kids who make 15 minute YouTube video "tutorials" (of things which can easily be explained in 2 paragraphs of text) by randomly clicking stuff and writing text in a notepad window. Including typos.
EDIT: Aaaaand he videos a wall of text with the actual info he should have sent you in the first place. On point.
-
-
@Tsaukpaetra said in WTF Bites:
Check out those tabs and bookmarks though!
I was more distracted by the taskbar, or whatever the Fruitarians call it, at the bottom of the screen.
-
@Tsaukpaetra said in WTF Bites:
Check out those tabs and bookmarks though!
I was more distracted by the taskbar, or whatever the Fruitarians call it, at the bottom of the screen.
"The Dock"
Although all that crap in there is pretty normal.
-
EDIT: Aaaaand he videos a wall of text with the actual info he should have sent you in the first place. On point.
I love those videos, especially on YouTube. Headline says: "Summary of the important part of patch XYZ for game FOO", video then contains a guy reading off the actual patch notes from the official website.
How useful!
-
Although all that crap in there is pretty normal.
Yeah most of it is what's there out of the box but still.
Also while we're in this topic...
Thanks, Chrome.
-
@Tsaukpaetra said in WTF Bites:
Check out those tabs and bookmarks though!
I was more distracted by the taskbar, or whatever the Fruitarians call it, at the bottom of the screen.
I am amazed by how fruitarians (and Apple themselves) seems to love keeping every single program that adds itself to it for quicklaunching (works like pinning apps to the Windows taskbar). I remove them all and just keep web browser and mail client pretty much. As I can use Launchpad (macOS version of the iOS launcher) to keep any app a swipe and a couple clicks away anyway.
-
I remove them all and just keep web browser and mail client pretty much
I remove most of the stock dock entries and add in the stuff I use regularly. Not just because of launching in a single click but because adding the icon to the dock means it's in the same place.
-
I think using video, rather than text, is a superbly bad idea. Please don't do it again.
Seems your
is showing. From Loom.com:Send a Video, Not a Thousand Words.
A new kind of work communication tool that helps you get your message across through instantly shareable videos.
What's not to like?
-
A new kind of work communication tool that helps you get your message across through instantly shareable videos.
What's not to like?
While sharing may be instant, consumption most certainly isn't.
-
A new kind of work communication tool that helps you get your message across through instantly shareable videos.
What's not to like?
While sharing may be instant, consumption most certainly isn't.
But see, it gets you to listen!
-
@LaoC Actually, it is the second rollover of that value. Failing to account for it in software for something that has a projected life of 30 years is certainly a
.They were counting on the safety system failing and destroying the plane before the rollover happened.
You mean they were counting on the plane rolling over (and over...)
-
I love those videos, especially on YouTube. Headline says: "Summary of the important part of patch XYZ for game FOO", video then contains a guy reading off the actual patch notes from the official website.
How useful!
Google tends to place it high in the search results and lazy people who don't look beyond the first couple click on it. That way it generates income for Google and the creator and is therefore, according to common economic doctrine, more useful than the official website
-
I get pestered by recruiters on LinkedIn. While not 100% in the spam category, I do tend to ignore most of them. This one however...
:What do you think?
I think using video, rather than text, is a superbly bad idea. Please don't do it again.
<snip doubts about it being out of the way, salary notable by its absence, and what it would take to shift me from my current job>I sometimes get replies...
: Fair enough PJH, I won't send any more videos.This role can't offer that much, I'll let you know if anything comes up around that level.
-
-
‘She lies to everyone’: Feds say Mar-a-Lago intruder had hidden-camera detector in hotel
A federal prosecutor argued in court Monday that Yujing Zhang, the Chinese woman arrested trying to enter President Donald Trump’s private Mar-a-Lago club in Palm Beach, “lies to everyone she encounters,” adding that a search of her hotel room uncovered more than $8,000 in cash, as well as a...
Secret Service agent Samuel Ivanovich, who interviewed Zhang on the day of her arrest, testified at the hearing. He stated that when another agent put Zhang’s thumb drive into his computer, it immediately began to install files, a “very out-of-the-ordinary” event that he had never seen happen before during this kind of analysis. The agent had to immediately stop the analysis to halt any further corruption of his computer, Ivanovich testified. The analysis is ongoing but still inconclusive, he said.
Of course, when you confiscate a thumb drive from a suspicious person, the first thing anyone would do is stick it into a Windows computer. But hey, when it starts to "install files" (Autoplay turned on on your analysis machine, eh?), you just have to be quick enough with your cognitus interruptus to avoid having to reinstall your system!
Special™ agents
-
-
Autoplay turned on on your analysis machine, eh?
Here's the thing. It's very possible it started installing files EVEN THOUGH AUTOPLAY WAS OFF (as you might or might not be aware, all Windows versions from 7 onward require you to click "OK" before running any sort of autoplay - so even if it was left on, which is highly unlikely, it would still do nothing on its own). The drive likely had an exploit in its firmware that bypassed Windows's normal protections and executed arbitrary code. Look at it this way - do you think someone too stupid to disable autoplay would notice a virus copying hidden files in hidden places on disk? Or are you assuming the malware author was just as incompetent as the security researcher and dumped all suspicious files on desktop?
-
Autoplay turned on on your analysis machine
It seems you don't give enough credit to U3 'firmware' or other USB shenanigans.
The least inconspicuous but most potentially effective automatic hack I know of is an USB device which simulates a keyboard and starts triggering shortcuts and commands. At that point you're obviously running stuff as the user, and AFAIK even UAC prompts can be dismissed using the keyboard using Alt + Y...
-
Here's the thing.
Here's the Real
thing:He shouldn't connect the key to a Windows computer.
Linux doesn't have autostart and can't fall victim of a Windows exploit or virus.
-
-
Autoplay turned on on your analysis machine, eh?
Here's the thing. It's very possible it started installing files EVEN THOUGH AUTOPLAY WAS OFF (as you might or might not be aware, all Windows versions from 7 onward require you to click "OK" before running any sort of autoplay - so even if it was left on, which is highly unlikely, it would still do nothing on its own).
I wouldn't put it past people dumb enough to stick suspect USB hardware in vulnerable orifices to still run XP.
The drive likely had an exploit in its firmware that bypassed Windows's normal protections and executed arbitrary code. Look at it this way - do you think someone too stupid to disable autoplay would notice a virus copying hidden files in hidden places on disk? Or are you assuming the malware author was just as incompetent as the security researcher and dumped all suspicious files on desktop?
If it was a virus that got there by accident, it would probably do that in an inconspicuous way. If it was some kind of intentional malware installer (something they should have expected), it would probably give some visual feedback.
-
Autoplay turned on on your analysis machine, eh?
Here's the thing. It's very possible it started installing files EVEN THOUGH AUTOPLAY WAS OFF (as you might or might not be aware, all Windows versions from 7 onward require you to click "OK" before running any sort of autoplay - so even if it was left on, which is highly unlikely, it would still do nothing on its own).
I wouldn't put it past people dumb enough to stick suspect USB hardware in vulnerable orifices to still run XP.
Always so quick to jump to conclusions. Have you ever thought of the possibility that they might have special, useless, away-from-internet laptops specifically for the purpose of plugging suspect USB hardware into it and let the viruses grow there, specifically so it doesn't infect any computers that actually matter? How are they even supposed to test suspicious flash drives without connecting them anywhere? Laser cutters and electron microscopes every time?
The drive likely had an exploit in its firmware that bypassed Windows's normal protections and executed arbitrary code. Look at it this way - do you think someone too stupid to disable autoplay would notice a virus copying hidden files in hidden places on disk? Or are you assuming the malware author was just as incompetent as the security researcher and dumped all suspicious files on desktop?
If it was a virus that got there by accident, it would probably do that in an inconspicuous way. If it was some kind of intentional malware installer (something they should have expected), it would probably give some visual feedback.
You're watching too many movies. And it wasn't a storage for hacker tools to be invoked directly by operator. It wouldn't have autoplay then. It was a drop-off that was supposed to be intentionally lost in the crowd with the intention of some random person finding it, getting curious and plugging it into their machine. There's zero reasons for any visual feedback during "installation".
-
Have you ever thought of the possibility that they might have special, useless, away-from-internet laptops specifically for the purpose of plugging suspect USB hardware into it and let the viruses grow there, specifically so it doesn't infect any computers that actually matter?
If it was an isolated machine dedicated to this purpose, why did the agent try to stop the malware once it started running? And why was he surprised? Getting pwned by merely plugging in a USB device is not new, several different vectors are publicly known.
How are they even supposed to test suspicious flash drives without connecting them anywhere? Laser cutters and electron microscopes every time?
Analysis machines (or at the very least, a virtual machine) running a custom USB stack which doesn't actually let the device interact with the real OS.
When specialist do data forensics on a hard disk, they don't use Windows Explorer to browse the contents, either.
-
@Zerosquare said in WTF Bites:
Analysis machines (or at the very least, a virtual machine) running a custom USB stack which doesn't actually let the device interact with the real OS.
When specialist do data forensics on a hard disk, they don't use Windows Explorer to browse the contents, either.He's the guy on the scene trying to evaluate what he confiscated. Probably at least lightly trained on what to do but not to do serious forensics. It's difficult to figure out what really happened from the minimal details provided but it's not obvious to me that he did anything necessarily stupid or negligent (though it's not obvious that he didn't, either).
-
@boomzilla said in WTF Bites:
It's difficult to figure out what really happened from the minimal details provided but it's not obvious to me that he did anything necessarily stupid or negligent (though it's not obvious that he didn't, either).
Even if were obvious, what are the chances the media would report it accurately enough to determine one way or the other? Not high.
-
@boomzilla: Oh, I didn't expect him to do the actual forensics himself ; merely to know that plugging a suspicious USB device into anything is a no-no, and instead forward it to someone competent.
It's a pretty basic IT security principle, and some (large) companies do train their employees about it. I'd expect a special agent, whose job makes it even more likely to encounter such booby-trapped things, to know this.
I mean, imagine an investigator arresting someone for being suspected of poisoning. If he found a bottle of some unknown liquid at the scene, would he open it and taste it, or get it analyzed instead?
-
@Zerosquare said in WTF Bites:
It's a pretty basic IT security principle, and some (large) companies do train their employees about it. I'd expect a special agent, whose job makes it even more likely to encounter such booby-trapped things, to know this.
Sure. I'm just saying that it's not obvious that he didn't know this and that he didn't follow standard procedures. It makes sense that agents out "in the field" would test things at a certain level to investigate them on the spot. He might have some standard tools for scanning removable media.
-
I like people like that. I like making their head explode with one command:
heterodox@ahlctuwbn:~# isecav --version McAfee Endpoint Security for Linux Threat Prevention Version : 10.6.0.153 License : Full DAT Version : 9186.0 DAT Date : 05-03-2019 Engine Version : 6000.8403 Copyright (C) 2016-2019 McAfee, LLC. All rights reserved.
-
@heterodox said in WTF Bites:
I like people like that. I like making their head explode with one command:
heterodox@ahlctuwbn:~# isecav --version McAfee Endpoint Security for Linux Threat Prevention Version : 10.6.0.153 License : Full DAT Version : 9186.0 DAT Date : 05-03-2019 Engine Version : 6000.8403 Copyright (C) 2016-2019 McAfee, LLC. All rights reserved.But how do you uninstall it?
-
But how do you uninstall it?
Isn't that pretty much the sole reason for
--no-preserve-rootexisting?
-
@heterodox said in WTF Bites:
I like people like that. I like making their head explode with one command:
heterodox@ahlctuwbn:~# isecav --version McAfee Endpoint Security for Linux Threat Prevention Version : 10.6.0.153 License : Full DAT Version : 9186.0 DAT Date : 05-03-2019 Engine Version : 6000.8403 Copyright (C) 2016-2019 McAfee, LLC. All rights reserved.Ah, so your employer also makes you sacrifice half your CPU cores to 90s style security?
-
A perpetual WTF; Microsoft continually breaking their own KB links:
Feedback? Don't mind if I do!
-
@heterodox said in WTF Bites:
I like people like that. I like making their head explode with one command:
heterodox@ahlctuwbn:~# isecav --version McAfee Endpoint Security for Linux Threat Prevention Version : 10.6.0.153 License : Full DAT Version : 9186.0 DAT Date : 05-03-2019 Engine Version : 6000.8403 Copyright (C) 2016-2019 McAfee, LLC. All rights reserved.Ah, so your employer also makes you sacrifice half your CPU cores to 90s style security?
On a semi related note, I recently was fixing a laptop for my friend, it had:
- avast antivirus
- avast web protect
- mcafee antivirus
- mcafee web protext
- windows defender (all modules)
All of it running simultanously. On 5400rpm hdd.
"I don't care that much if you manage to fix it, it's kind of sluggish" .
You don't say.
-
@MrL the two shadiest antiviruses, and one that has lowest detection rates in the market. Beautiful.
-
@MrL the two shadiest antiviruses, and one that has lowest detection rates in the market. Beautiful.
I did fix the laptop (broken screen, nothing to do with antiviruses or performance), but in the end my friend decided that she actually wants a new one.
So it stayed with me. Works very well after swapping drive for ssd.
-
Ah, so your employer also makes you sacrifice half your CPU cores to 90s style security?
And it probably also reduces the actual security of the system. AV products have a long history of being very highly privileged and at the same time poorly written in terms of security practices (such as downloading updates from unsecured sites and not validating the result).
