this post was submitted on 12 Jul 2024
201 points (99.5% liked)

Technology

59347 readers
5099 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 3 points 4 months ago (1 children)

Historically, how many of these days breaches have been linked to an inside person? The answer is almost none. Your first point is correct that someone (s) was likely was negligent, but your second point is tin foil bullshit. Maybe if there was any indication of foul play, the accusation has merit, but there's been none. Like almost all other breaches, it was likely a third party.

[–] [email protected] -1 points 4 months ago* (last edited 4 months ago) (2 children)

It would be nearly impossible to prove without inside knowledge...

However the fact that these breaches happen so often, would make one wonder how everybody is this "negligent" all the time.

There is a large economic incentive here BTW

But hey at least we can train AI with this data. Thank you for your service peasants.

Execs dindu nuffin mate just getting paid big bucks for "negligece"

[–] [email protected] 4 points 4 months ago

Cyber security is a very complicated field. There are an infinite number of ways that someone could have breached security. It could have been and statistically was a social engineering attack.

There are software vulnerabilities all of the time that can be exploited for access. Recently SSH was discovered to be vulnerable across all Linux machines running at least a certain version of SSH. It didn't require the victim to do anything but be online.

Microsoft had a zero day that required no interaction that could give kernel level access to a users computer with them knowing.

Neither of those are likely the culprit, but ATT is a large company that has valuable data that hackers wouldn't mind putting extra effort into getting. At my current company that works with healthcare information, the number of attempts on us this year, that we are aware of, has more than tripled from all of last year.

Point being, some was probably negligent in that they clicked a bad link in an email, gave away something sensitive of a phishing call, or some other social engineering attack, because humans are often the weakest point in cyber security.

[–] [email protected] 1 points 4 months ago (1 children)

Hahahahahahahahhahuahahahha. Get a job for an ISP. Then try to get in contact with ATT about your companies carrier lines with them. ATT is a fucking joke. Your commentary is so hilariously out of touch. Half the employees with access to these databases work in India.

[–] [email protected] -2 points 4 months ago

ATT leaks everybody's info but I am out of touch... Sure buddy