I was pretty excited to find out on August 20 that some criminals apparently skipped the long line of people waiting to hack Uber and instead just decided to work there. I'm talking about Joe Sullivan, Uber's former Chief Security Officer, who we found out was "charged with obstruction of justice and concealment of a felony for his role in the attempted coverup of a 2016 hack that exposed the data of 57 million Uber customers and drivers."
Use of the word "attempted" here is pretty generous. A year after Sullivan was hired at Uber, the company got hacked hard: the October 2016 intrusion exposed personal information of 57 million users and leaked the license numbers of 600,000 drivers. "Uber didn't report the breach to anyone, especially not victims or regulators," I wrote when I summed it up for Engadget. "The company paid $100K to the hackers in hush money (as if that actually works) and concealed the payment in an expense column called bug bounty."
That's right: Sullivan and his team -- with the full knowledge and blessing of Travis Kalanick -- had the bright idea bribing the hackers with Bitcoin and NDAs, pretending it was a bug bounty, and then when Uber's new CEO Dara Khosrowshahi took over, Sullivan and his cohorts repeated the "bug bounty" lie to Khosrowshahi. [...]
What's also fun to think about is that Sullivan use to work with Mat Henley running their previous employer's security ops: Facebook, where Sullivan worked from 2009-2015. I mean, what are a couple (dozen) felonies between friends? [...]
Look, we know that Silicon Valley is an engine powered by white collar crime (emphasis on the white). But it gets even more awkward when we find out that after Sullivan's absolute poo-flinging shitshow at Uber, he was hired by... Cloudflare.
"Uber's former Chief Security Officer competes with Roger Stone for criminal incompetence"
3 CommentsTags: conspiracies, corporations, doomed, security
SOMA Nature Walk: My Only Friends Are Birds Now
I had the window open for about 15 minutes shooting some video of the crows with my phone and my eyes are burning like crazy already.
Dear Lazyweb, seeking a simple networked video camera whose "custom app" isn't going to rootkit me out to a Moldovan bitcoin farm.
I got a Reolink E1 Pro, and it was... almost ok, but mostly not. It's failings included:
- It's way too wide angle, doesn't zoom, and can't focus close-up.
- It's supposed to be able to record only when there's motion, and I couldn't figure out how to make it do that.
- Live preview was in 4K but I couldn't figure out how to make it save any file that wasn't 360p.
Tags: firstperson, lazyweb, mpegs, photography, plague, sf
The date is now Tuesday, March 178th, 2020.
perl -e 'use Date::Parse; use POSIX; my @t = localtime; print strftime ("%a Mar ", @t) . int (1 + 0.5 + ((str2time (strftime ("%Y-%m-%d 3:00", @t)) - str2time ("2020-03-01 3:00")) /(60*60*24))) . strftime (" %X %Z 2020\n", @t);'
Tue Mar 178 10:26:39 PDT 2020
Previously, previously, previously, previously, previously, previously, previously, previously, previously, previously.
Tags: computers, doomed, firstperson, plague, time_t