Tootfinder

A NATO Pen Tester has identified a flaw in SolarWinds. https://reddit.com/r/cybersecurity/comments/1dajfrs/

Former Microsoft employee Andrew Harris says the company dismissed his warnings about a critical flaw that led to the 2021 SolarWinds hack; Harris left in 2020 (ProPublica)
https://www.propublica.org/article/microsoft-solarwinds-gold…

Microsoft Chose Profit Over Security and Left U.S. Government Vulnerable to Russian Hack, Whistleblower Says
Former employee says software giant dismissed his warnings about a critical flaw because it feared losing government business. Russian hackers later used the weakness to breach the National Nuclear Security Administration, among others.

#Microsoft Refused to Fix Flaw Years Before #SolarWinds Hack
https://www.

Amazing story, illustrates how things with regard to security can go very wrong, in this case with Microsoft.
https://www.propublica.org/article/microsoft-solarwinds-golden-saml-data-breach-russian-hackers

Whistleblower Says Microsoft Dismissed Warnings About a Security Flaw That Russians Later Used to Hack U.S. Government
Former employee says software giant dismissed his warnings about a critical flaw because it feared losing government business. Russian hackers later used the weakness to breach the National Nuclear Security Administration, among others.

«Publicly-traded tech giants “are beholden to the share price, not to doing what’s right for the customer all the time. That’s just a reality of capitalism. You’re never going to change that in a public company because at the end of the day, they want the shareholder value to go up.”»
How can these bad incentives be compensated or eliminated? (Without a 180° turn of the entire society)
#Security

The company that just unleashed a screenlogger without privacy controls says that security is their top priority. Having trouble with some cognitive dissonance here. 🤔
I'm not one of those who hold a grudge for old "Linux is cancer" comments, nor one of those who believed the "Microsoft loves Linux" marketing campaign. I also don't expect a company to act as if it were a single organism with a unified consciousness — when you see that, run screaming in terror. But I do think that "pret…

#Microsoft Chose Profit Over Security and Left U.S. Government Vulnerable to Russian Hack, Whistleblower Says
“Former employee says software giant dismissed his warnings about a critical flaw because it feared losing government business. Russian hackers later used the weakness to breach the National Nuclear Security Administration, among others.”

Whistleblower Says Microsoft Dismissed Warnings About a Security Flaw That Russians Later Used to Hack U.S. Government
Former employee says software giant dismissed his warnings about a critical flaw because it feared losing government business. Russian hackers later used the weakness to breach the National Nuclear Security Administration, among others.