|
Lain Iwakura posted:ah no i didn't mention it to her it seems but you have me blocked on twitter and I have no idea why that would be
|
#
?
Sep 9, 2019 23:10
|
|
|
|
| # ? Apr 24, 2024 12:03 |
|
|
yeah pagers being insecure and spamming medical details is certainly a long term thing and it seems like at the end of the day no one cares
|
|
#
?
Sep 9, 2019 23:20
|
|
|
The Fool posted:you have me blocked on twitter and I have no idea why that would be what is your twitter handle? Boiled Water posted:be careful when ducking with people with deep pockets this is the provincial government
|
|
#
?
Sep 9, 2019 23:28
|
|
|
in the US its legal to send unencrypted phi thru pagers. idk how it works in Canada. it appears that pipeda allows unencrypted faxes to contain personal info so I would bet paging is ok too.
|
|
#
?
Sep 9, 2019 23:59
|
|
|
Lain Iwakura posted:this is the provincial government Be careful when ducking with people who can just have you arrested on trumped up "hacking" charges. Sure, they're wrong, but at the end of the day you're in jail and the public is picking up the tab for fighting you tooth and nail.
|
|
#
?
Sep 9, 2019 23:59
|
|
|
Volmarias posted:Be careful when ducking with people who can just have you arrested on trumped up "hacking" charges. Sure, they're wrong, but at the end of the day you're in jail and the public is picking up the tab for fighting you tooth and nail. can i not be patronised here? i know a thing or seventeen about my line of work
|
|
#
?
Sep 10, 2019 00:01
|
|
|
Be careful when ducking with a pig in mud sorry
|
|
#
?
Sep 10, 2019 00:04
|
|
|
also technically in the US I think it would actually be illegal to intentionally intercept/receive PHI that was sent via page or fax to someone else.
|
|
#
?
Sep 10, 2019 00:11
|
|
|
not to diminish your work, but i think i remember reading about this in 2600 or something back in the early 2000s, before the prevalence of SDR. the hardware was more specialized and expensive, but obviously the result were the same.
|
|
#
?
Sep 10, 2019 00:17
|
|
|
pager interception is pretty much as old as pagers. still, its definitely good to show people that its a real threat and that it should be avoided even if the law says its ok. I know of atleast one major health provider that has mostly outlawed faxing for security reasons even though im sure it pissed off a load of doctors and their assistants.
|
|
#
?
Sep 10, 2019 00:19
|
|
|
The fact that Fax machines are still valid in this day and age baffles me.
|
|
#
?
Sep 10, 2019 00:24
|
|
|
yeah i think that since we made snooping pagers illegal in the usa that just means they'll keep using insecure pagers until the technology dies
|
|
#
?
Sep 10, 2019 00:27
|
|
|
there are a billion doctors offices with litterrall loving fax machines. not fax services, but fax machines. you can tell them about the many different secure and reliable transports you have for them to use instead, but they don't want to change the workflow of taking the fax off the machine and sticking it in a cabinet. altho partly CMS is to blame cause they totally hosed up wrt Direct both in the actual design and in how they failed to check validity of EMR implementations.
|
|
#
?
Sep 10, 2019 00:28
|
|
|
Shaggar posted:there are a billion doctors offices with litterrall loving fax machines. not fax services, but fax machines. you can tell them about the many different secure and reliable transports you have for them to use instead, but they don't want to change the workflow of taking the fax off the machine and sticking it in a cabinet. Yeah, I know, and banks still love them too.
|
|
#
?
Sep 10, 2019 00:48
|
|
|
Lain Iwakura posted:what is your twitter handle? yea i noticed i was blocked too and i use the same handle on twitter
|
|
#
?
Sep 10, 2019 00:49
|
|
|
infernal machines posted:not to diminish your work, but i think i remember reading about this in 2600 or something back in the early 2000s, before the prevalence of SDR. the hardware was more specialized and expensive, but obviously the result were the same. yes. this wasn't new. i am not sure what you're trying to get at here. my complaint was this remark which was unnecessary: Volmarias posted:Be careful when ducking with people who can just have you arrested on trumped up "hacking" charges. Sure, they're wrong, but at the end of the day you're in jail and the public is picking up the tab for fighting you tooth and nail.
|
|
#
?
Sep 10, 2019 00:51
|
|
|
fishmech posted:yea i noticed i was blocked too and i use the same handle on twitter you're fixed i use an autoblock to keep my twitter from giving me grief and if someone ends up on it by accident i generally lift it
|
|
#
?
Sep 10, 2019 00:52
|
|
|
Lain Iwakura posted:yes. this wasn't new. i am not sure what you're trying to get at here. er, not particularly trying to get at anything. i guess my intent was just to point out to the person saying "be careful", for whatever reason, that this has been known and discussed and even publicized to some degree in the context of medical PII for 20+ years and no one has cared, so it's unlikely they'll start caring now.
|
|
#
?
Sep 10, 2019 00:55
|
|
|
Volmarias posted:Be careful when ducking with a pig in mud  
|
|
#
?
Sep 10, 2019 01:00
|
|
|
Just spent the morning trying to work out how bad one of our users was owned when responding IP to an internal phishing campaign came from a different continent. Turns out she forwarded it to *old job* helpdesk instead of ours and they detonated it. jesus gently caress.
|
|
#
?
Sep 10, 2019 01:47
|
|
|
influx. posted:Just spent the morning trying to work out how bad one of our users was owned when responding IP to an internal phishing campaign came from a different continent. lmao
|
|
#
?
Sep 10, 2019 01:49
|
|
|
influx. posted:Just spent the morning trying to work out how bad one of our users was owned when responding IP to an internal phishing campaign came from a different continent. so you inadvertently started a corporate espionage campaign?
|
|
#
?
Sep 10, 2019 01:53
|
|
|
influx. posted:Just spent the morning trying to work out how bad one of our users was owned when responding IP to an internal phishing campaign came from a different continent. this is worth at least one act in your IT support musical if you can get a good harmony under it
|
|
#
?
Sep 10, 2019 01:59
|
|
|
also call your legal department
|
|
#
?
Sep 10, 2019 02:01
|
|
|
luckily the 'payload' is some 'how to spot a phishing email' training doco. should bill them for the training
|
|
#
?
Sep 10, 2019 02:23
|
|
|
quote:
lmao this was rolled out to the government agency I work for this summer. The only thing it did was reduce an iphone battery to 0 in record time, spam the phone with warnings about how it wasn't connected to a VPN, and provide a second notification about patch status. Uh...it also has this feature called "danger zone" that just seems to bring up a map that shows me where I am? El Mero Mero fucked around with this message at 04:02 on Sep 10, 2019 |
|
#
?
Sep 10, 2019 04:00
|
|
|
El Mero Mero posted:lmao this was rolled out to the government agency I work for this summer. The only thing it did was reduce an iphone battery to 0 in record time, spam the phone with warnings about how it wasn't connected to a VPN, and provide a second notification about patch status. Uh...it also has this feature called "danger zone" that just seems to bring up a map that shows me where I am? does it show the highway to your location too?
|
|
#
?
Sep 10, 2019 04:31
|
|
|
lmao this was rolled out to the government agency I work for this summer. The only thing it did was reduce an iphone battery to 0 in record time, spam the phone with warnings about how it wasn't connected to a VPN, and provide a second notification about patch status. Uh...it also has this feature called "danger zone" that just seems to bring up a map that shows me where I am? [/quote] i think the best part is the copy admits it does nothing and presents that as a selling point
|
|
#
?
Sep 10, 2019 05:15
|
|
|
lol zimperium is trash
|
|
#
?
Sep 10, 2019 07:52
|
|
|
flakeloaf posted:https://election.ctvnews.ca/potential-health-data-breach-exposing-names-medical-conditions-discovered-by-privacy-researcher-1.4581914 This is literally the first interesting thing I did with my little SDR dongle when I was messing around with gnu radio. It was all of 10 minutes of work and there are well documented tutorials on how to do it. Pager signals are crazy strong so I could still reliably decode them sitting in my basement with a 3' whip antenna. Also wait till they find out about clear police/EMS radio and services like broadcastify where you can just listen to people having bad days all day. Shaggar posted:there are a billion doctors offices with litterrall loving fax machines. not fax services, but fax machines. you can tell them about the many different secure and reliable transports you have for them to use instead, but they don't want to change the workflow of taking the fax off the machine and sticking it in a cabinet. Fax is actually called out in HITECH as insecure so in the US they shouldn't be using it to send PHI.
|
|
#
?
Sep 10, 2019 13:19
|
|
|
ewiley posted:Fax is actually called out in HITECH as insecure so in the US they shouldn't be using it to send PHI. and yet they do because, and this i believe is a direct quote, "i waaaant iiiiiiiiitttttttttttttttt"
|
|
#
?
Sep 10, 2019 13:34
|
|
|
ewiley posted:sitting in my basement with a 3' whip antenna. text me
|
|
#
?
Sep 10, 2019 13:49
|
|
|
Lain Iwakura posted:you're fixed now i'm wondering who fishmech was following that got them on the auto-block list  also is that a new hat in your twitter av, it's a nice hat
|
|
#
?
Sep 10, 2019 14:19
|
|
|
holy lmao our homebrew system for managing "secure" access to database creds logs them in plaintext in an area accessible from all user sessions I'm either gonna get thanked or fired for flagging this lmao
|
|
#
?
Sep 11, 2019 19:33
|
|
|
Powerful Two-Hander posted:holy lmao our homebrew system for managing "secure" access to database creds logs them in plaintext in an area accessible from all user sessions 
|
|
#
?
Sep 11, 2019 19:54
|
|
|
Powerful Two-Hander posted:I'm either gonna get thanked or fired for flagging this lmao why not both?
|
|
#
?
Sep 11, 2019 21:21
|
|
|
https://twitter.com/HackerMovieBot/status/1171903629877342208
|
|
#
?
Sep 11, 2019 22:50
|
|
|
|
|
#
?
Sep 11, 2019 22:52
|
|
|
Some of these are solid gold https://twitter.com/HackerMovieBot/status/1170128420950274048
|
|
#
?
Sep 11, 2019 22:58
|
|
|
|
| # ? Apr 24, 2024 12:03 |
|
|
https://dontduo.com/ homer_drinking_bird.gif
|
|
#
?
Sep 12, 2019 01:12
|
|