Beta
×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Comments

top

RSA: Phish Me If You Can (Video)

Gulthek Re:cracking? (171 comments)

Only if you think that spearphishing is purely social engineering. Sure that's a critical aspect of it but phishing emails can also contain technical exploits...cracking.

about a year and a half ago
top

RSA: Phish Me If You Can (Video)

Gulthek Re:It's not the slashvertisement (171 comments)

You're right. Education in a formal setting simply doesn't convert to practical knowledge. That's a method best left to theoretical subjects.

But you're going to have a tough time arguing that *training* doesn't work: which is what PhishMe is selling. Teach employees to recognize phishing emails by actually sending them inoculated phishing emails. When employees fall for it you let them in on the game immediately and seize that invaluable teachable moment.

about a year and a half ago
top

RSA: Phish Me If You Can (Video)

Gulthek Re:cracking? (171 comments)

Back in the day we were trying to get any exploitative hacking to be called "cracking". Note Jurassic Park's "I prefer to be called a hacker." line.

It didn't take completely. We got "hacking" to be relatively accepted into the mainstream vernacular but "hacker" remains in a kind of grey area and "hacked" is entirely negative.

about a year and a half ago
top

RSA: Phish Me If You Can (Video)

Gulthek Re:This is stupid and useless. (171 comments)

It's not about being dumb, it's about not being aware. If the first phishing email you come across is one that's technically advanced and well written enough to slip through the technological filter: then you as a corporate employee are probably going to fall for it. Especially if it's a true spear-phishing email that's targeting *you*. It'll look like an email from your boss with yet another emailed PDF or DOCX report to review. Bam.

The solution that PhishMe proposes is to safely expose employees to phishing emails on a regular basis and teach everyone to recognize actual phishing emails from those demonstrations. The human reading the email and about to click the link or open the attachment is your last line of defense and shouldn't be neglected as such.

about a year and a half ago
top

RSA: Phish Me If You Can (Video)

Gulthek Re:It's not that simple. (171 comments)

Yes exactly! The sheer number of exploit hooks into even modern/patched operating systems is simply depressing.

about a year and a half ago
top

RSA: Phish Me If You Can (Video)

Gulthek Re:Lost fight (171 comments)

It IS hard to teach common sense, but it's not hard to demonstrate it. That's what PhishMe does. Shows employees how to recognize phishing emails by exposing them to safe phishing emails. Think of it as a vaccine.

about a year and a half ago
top

RSA: Phish Me If You Can (Video)

Gulthek Re:More stupid victim-blaming (171 comments)

This is what passes for +5 insightful these days?

The issue isn't opening an email: but clicking a link in that email or, worse, clicking a link that takes you to a legitimate looking site and entering data, or opening an attachment in a legitimate looking email.

There are all sorts of attack vectors present from an email message. To sweep it all up as "IT's Problem" is a very, very bad idea. It just takes one email fooling the right person to be a security problem.

PhishMe's philosophy is that at some point the technical protection will fail ... so you'd better ensure that your employees know what to look for. The best way to teach them what to look for is to let them actually experience safe emails using the same techniques that would be maliciously used against them.

Spear-phishing isn't an idle threat, it's a widely used attack method that has gotten data out of targets like the New York Times, Defense Department, Facebook, and Apple (http://www.theatlanticwire.com/technology/2013/02/spear-phishing-security-advice/62304/). I'm sure that each of those companies has a very robust and capable IT Department armed with email scanning and sanitizing software. You just can't catch everything with technology.

about a year and a half ago
top

What's your usual coffee-making method?

Gulthek Re:Keurig? (584 comments)

A Keurig maching and a Jura Capresso machine are entirely different beasts. The Keurig is great for quick easy, individual drinks (e.g. one person can have coffee and the next tea). The Capresso is a serious coffee creation device that actually makes crema coffee right at home at the touch of a button. There's a reason a Keurig costs $150 and a Capresso costs $1000+.

I like and own 'em both though, they each have their place.

more than 2 years ago
top

A Plea For Game Devs To Aim Higher

Gulthek Re:Film industry (179 comments)

I played GTA4 in character. I tried to do the right thing, drive by the rules, and not kill anyone. My Niko had already seen enough of war and bloodshed, but it was all he knew. He tried to make a change going to NYC, but did not have the will to break free of the dominating personalities surrounding him.

This style of play made some of the missions where you had to escape the police much more exciting.

more than 3 years ago
top

Wikileaks Cables Say No Bloodshed Inside Tiananmen Square

Gulthek Re:No big secret here (235 comments)

No one was run over by tanks.

Also many forget that this wasn't just a few thousand idle students peacefully hanging out in the square. There were about a *million* disaffected students and unemployed workers camping out wherever they could, demanding free food from vendors, and harassing the general public. This went on for almost a month before the government took action.

Think about how long a million people would be allowed to camp outside the US capitol buildings, especially if they were harassing and looting.

more than 3 years ago
top

Ask Slashdot: Are You Streaming-Only For Home Entertainment?

Gulthek Re:caps (697 comments)

Get ready to pay for it. You'll need at least an 3 Mb/sec for good streaming, so that's a 2xT1. Or about $400/month if you're in a well connected area. If you have Ethernet over Copper available (you probably don't) that would be the way to go.

more than 3 years ago
top

Google Would Beat Bing At Jeopardy, Says Wolfram

Gulthek Re:Google results still much more accurate (138 comments)

If you're looking for a new search engine I've found myself supremely happy with DuckDuckGo (http://duckduckgo.com/). Great results, snappy interface, !bang searches: it's great. The !bang syntax was what really hooked me. I used to spend a lot of time making custom site searches for my browser ("wa query" to search Wolfram|Alpha, etc.). With DDG that's all inherent: "!wa query" sends query straight to W|A.

more than 3 years ago
top

Volkswagen Unveils 313 MPG XL1, Slates Production For 2013

Gulthek Re:I am weary of VW... (417 comments)

Quite complex? You've got to be kidding me. My wife and I have a 2005 VW Jetta TDI Wagon and it has been nothing but simple fixes for six years and 120K miles. We've had oil changes done by everyone from Jiffylube to our local mechanic: no complexity there. The only major service we've had was a belt replacement at 90K and that seemed no more complicated for our mechanic to handle than any other belt replacement I've had done.

more than 3 years ago
top

How Do You Store Your Personal Photos?

Gulthek Re:I'm getting a Drobo (680 comments)

Big big +1 for the Drobo here. I have Drobo first gen that I bought at least a couple of years ago. It has been chugging along like a champ as our main data store. Yes, we aren't protected from accidental deletion, but we are protected from drive failure. I'm actually going to be switching our solution around a bit this weekend: 2TB internal storage and Drobo for time machine backup.

Even though it's from the old n' slow first gen, it's been great for everything from iPhoto to iMovie to iTunes. We have 35,000+ songs, hundreds of movies archived from DVDs, and gigabytes upon gigabytes of HD iMovie video.

We started with 3x750GB disks, and after Christmas I dropped a 1.5TB drive in the last slot. It worked exactly as easily as they claim.

more than 3 years ago
top

PC Gamers Crush Console Brethren

Gulthek Re:Shocking news: (387 comments)

Yes, but as a human not feeling the inner ear effects.

I love to play Unreal on the PC (well Mac) because I can completely justify the enhanced abilities within the context of the game.

Playing as some drafted kid in WWII...not so much. The limitations of the controls hold back my skill as a gamer and highen the realism.

more than 3 years ago
top

Covert Video of Apple IPad 2 Just Released

Gulthek Video interface recognition (190 comments)

Of course the iPad 2 is getting video cameras. The big question for me is: are they going to be smart and use the front camera to provide a simple hand gesture interface?

more than 3 years ago
top

Apple Creating Cloud-Based Mac?

Gulthek For sure (204 comments)

It'll be one data store with your info, email, apps, documents, etc. The iPad will present one interface, the iPhone another, the laptop yet another. All the same "computer" data and settings.

more than 3 years ago
top

PC Gamers Crush Console Brethren

Gulthek Re:Breaking news! PC-spawned genre played more on (387 comments)

The sales numbers don't reflect it at all, because that simply isn't the case. See Halo series sales.

But really we're all one big happy gaming geeky segment of the population.

more than 3 years ago

Submissions

top

Texting Underground Can Save Lives And Caves : NPR

Gulthek Gulthek writes  |  more than 4 years ago

Gulthek (12570) writes "Sixteen-year-old Alexander Kendrick has created a device that allows texting and other data transfer from almost 1000 feet underground. The tech could allow rapid emergency communication with the surface and opens the potential for scientific measurements without the need to continually visit (and disturb) the cave environment."
Link to Original Source

Journals

top

Opening Day

Gulthek Gulthek writes  |  more than 12 years ago

Well I just opened up a livejournal account, so I guess I'll see what I can do with slashdot's as well. I've been a user here for years but have never even checked this out, weird eh?

Slashdot Login

Need an Account?

Forgot your password?