Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://mastodon.falconk.rocks/users/falcon/statuses/114445742152347508">Falcon Darkstar (falcon@mastodon.falconk.rocks)'s status on Sunday, 04-May-2025 06:57:29 JST</a><a href="https://mastodon.falconk.rocks/@falcon" title="falcon@mastodon.falconk.rocks"><img src="https://gnusocial.jp/avatar/100448-48-20230220163037.webp" width="48" height="48" alt="Falcon Darkstar" style="position: absolute; left: 0; top: 0;">Falcon Darkstar</a><div><a href="https://mastodon.laurenweinstein.org/@lauren/114444947331984813" rel="in-reply-to">in reply to</a><ul><li></ul></div></section><article><p><a href="https://mastodon.laurenweinstein.org/@lauren">@lauren</a> it is pointless.  We can continue to prosecute some of these attackers with varying success, but the more pressing and impactful thing is to compel organizations who hold a public trust (banks, hospitals, etc.) to do more than the bare minimum to defend.</p><p>These attacks are the wages of low-cost software development, a CYA approach to compliance, and an emphasis on generic bolt-on security products that mostly don't work (instead of better software engineering).</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4997938#notice-9796527">In conversation</a><time datetime="2025-05-04T06:57:29+09:00" title="Sunday, 04-May-2025 06:57:29 JST">about a month ago</time> <span>from <span><a href="https://mastodon.falconk.rocks/@falcon/114445742152347508" rel="external" title="Sent from mastodon.falconk.rocks via ActivityPub">mastodon.falconk.rocks</a></span></span><a href="https://mastodon.falconk.rocks/@falcon/114445742152347508">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
Falcon Darkstar (falcon@mastodon.falconk.rocks)'s status on Sunday, 04-May-2025 06:57:29 JSTFalcon Darkstar
in reply to
- Lauren Weinstein
@lauren it is pointless. We can continue to prosecute some of these attackers with varying success, but the more pressing and impactful thing is to compel organizations who hold a public trust (banks, hospitals, etc.) to do more than the bare minimum to defend.
These attacks are the wages of low-cost software development, a CYA approach to compliance, and an emphasis on generic bolt-on security products that mostly don't work (instead of better software engineering).
In conversationabout a month ago from mastodon.falconk.rockspermalink

Public

Embed Notice

HTML Code

Corresponding Notice