I could spend an extra 5 minutes doing it "right" or I can get what I need done and have a 0.001% chance of there ever being a problem (since there are other security measure in place, like firewalls, api key rotation, etc.)
Even when security gaps are exploited, the fallout tends to be minimal. Companies that had their entire database of very sensitive information leaked are still growing users and at worst paid a tiny fine.
Bankrupt? I didn't read about any financial penalties in that article. The board fired him back in 2020 when they found out, and then he blamed 2 IT people. Instead, he got 3 months suspended sentence (in a Finnish jail, which is not exactly like a US jail). The company still exists btw.
It got bankrupt in 2021 in an aftermath of the breach. I think they sold some of their operations forward before that.
The actual breach wasn’t that advanced hacking. They had copied their production data with all the patient information to test database which was publicly available and had default credentials.
I just had a 12hr outage due to flyio's quick and easy postgres minor patch update cooking my database.
I ended up downloading the entire volume, setting up my own docker container locally, exporting it, creating a new cluster (on the latest major patch).
I work at Grab (SEA rideshare and licensed bank, but not licensed in VN).
A significant amount of fraud comes from scammers convincing victims to installed malicious apps. They fake being a customer service provider.
Banks don't want their customer's to lose their money and they don't have the tools to protect them from themselves. For all the privacy reasons, app stores don't even banks enough tools to identify and block this fraud.
Tricking someone into installing a malicious app usually doesn't involve them having a third-party or modified operating system on their phone. I'm asking about that because I believe it's a hypothetical risk rather than a problem in practice and I'm curious about any evidence to the contrary.
Drivers buy modified versions of our mobile app, because they think it will give them advantages over other drivers. These apps are side-loaded (not published in the app store).
Thanks for the additional detail. Do those apps actually give them advantages, or are they scams/malware?
I wasn't asking about sideloading apps though. I was asking about modified operating systems like LineageOS and GrapheneOS, or root via OS modifications like Magisk and KernelSU.
At the start, getting users is the first problem. No one is going to bother scamming your app if there is no one there.
Then once people exploit the app, that doesn't mean they wont add value (e.g. contribute positive content). Maybe they are just a high school kid that wants to talk to his friends in his last town?
Once you have users, then there will be other easy signals to detect: Is the person teleporting? Do they hit rate limits freq? Is their GPS location the exact 'center' of the city? Is there GPS a nice pretty number? Does their GPS location never move?
It’s much lighter than most other metal cards while being much sturdier too! A real shame it’s completely useless (bad cashback, no printed number making it useless for e.g. hotel or airline card number confirmations at checkin).
That only makes sense if they don't charge extra for paying with CC. Most places I've seen would charge you 3-4% fee for CC payment, which makes the whole thing pointless - except if you need a big spend e.g. for a sign-up bonus.
I paid my son's tuition yesterday at a 2.90% charge. Since the cashback of 2.625 is also on the charge, my net cost for about 10.6K tuition was about $15. I keep the money invested in SGOV (state tax exempt), for a month, I make that $15 anyways, and it helps me follow lessons from corporations - pay only at the latest due date without any charges.
So in this case there was no saving, just a deferment of payment, but if the charge was 2.5%, 2.2% or 1.9% (like I did for something else), you absolutely saved some money besides deferment.
I am not starving for pennies, but using the card to get 2.62% back has become a habit and until recently the highest I had paid was 2.75%, the 2.9% was just yesterday for the first time and rather than think more about the impact, I just paid it.
reply