OnPoint: The Source
217 Responses
First ←Older Page 1 2 3 4 5 … 9 Newer→ Last
-
Russell Clarke, in reply to
your intellect is sort of on the level of a paua
Hey don't hate on the poor pauas!
-
As Ira's and MSD's version of events is somewhat different, it's lucky they record all phone calls. All they need to do is release the recording in question.
Keith can probably tell them what folder it's in.
-
Islander, in reply to
I luuurve paua!
Please, do not get me wrong- I cherish my family paua colonies – right up to the moment of inclusion into us-(and seriously, te whanau does a lot of work ensuring paua live happy lives right up unto-
seriously, I put real paua in a high place - waaay above fuckwits---
-
Ian Dalziel, in reply to
... hoping nobody asks what it is they do again
or why we’re paying for it.But surely the minister in charge would have all those answers ...
<coat>.
</door> -
This poor guy does everything he can to help and THIS is how he is treated by MSD?!
Clearly they have a follow the leader type approach. In the same way Paula Bennett attacked beneficiaries who were critical of her policy, her staff have set up this guy for attack via media.
I am disgusted with MSD.
Thank goodness it was taken to Kevin Ng or WHO KNOWS HOW LONG THIS WOULD HAVE PERSISTED? I'd donate to this other dude if I had a way. He has been set up to take the fall when MSD failed to act - they could have closed the Kiosks last week. God knows they would have if each Kiosk were an atm machine with WINZ money spewing out.
-
Ian Dalziel, in reply to
I luuurve paua!
I put real paua in a high place......one could almost describe the action
as, well, 'foot in mouth'...
yum!
:- ) -
nzlemming, in reply to
The New Zealand National Cyber Security Centre is an actual thing
Which is here and is hosted inside the GCSB...
-
Hilary Stace, in reply to
Wonderful, how farcically cyclic.
-
However exactly it went down with Ira, here's what they should be called on:
When told Keith was printing a story they shut the kiosks down instantly ...
But when told about it last week by some bloke asking were they interested in knowing (or, sure, paying for that knowledge) they did nothing! Why not?
-
I wrote lots more words about all there on my very own bloggy thing...
Dealing with #WTFMSD -
Dylan Reeve, in reply to
But when told about it last week by some bloke asking were they interested in knowing (or, sure, paying for that knowledge) they did nothing! Why not?
Presumably the details that Ira disclosed in those conversations weren't specific enough.
-
Joe Wylie, in reply to
farcically cyclic
++++1!
-
nzlemming, in reply to
I wrote lots more words about all there on my very own bloggy thing...
Dealing with #WTFMSDGood post, Dylan. I can't see them doing it but it's a good suggestion, in my view.
-
It seems like the right approach, especially as we move more toward Open Government and all that. But it is also hard to imagine some people (politicians) seeing the bigger picture.
-
Hebe, in reply to
Paua brain: I can hear it catching on. I will seed it with the teens.
BTW I haven’t seen any mention of EQC’s documentation being compromised. That's a pity; I would like to see the costings for my house. Ironic isn't it: I own a house, pay insurance, yet I am not allowed to know details of the insurance repair process. Yet children are taken by the government to live in a safe house where the address is publicly available on government computers throughout New Zealand. A lot is very wrong with both situations.
-
Presumably the details that Ira disclosed in those conversations weren't specific enough.
What's likely is that the details were quite specific; if you're pointing out a bug or security hole you tend to do so. It's how people who work with computers work, in my experience.
What's even more likely is that those dealing with it had insufficient incentive in the form of either positive or negative consequences to do anything about it. The mere existence of a massive opening to tens of thousands of people's lives was not enough.
-
Russell Brown, in reply to
How bitter do you have to be, when finding a breach in “national security”, that, upon realizing you weren’t going to be paid for your “troubles” you felt the need to go behind the back of MSD and break this story.
I'm puzzled as to how telling MSD he would be bringing the problem to the attention of his journalist friend is "going behind the back of MSD".
-
Don't feed the trolls, Russell. They'll be asking for USB access next.
-
Sacha, in reply to
it's the vibe of the thing, your honour
-
I see Claire Trevett's story is up on the Herald site.
Could someone please remind Brendan Boyle exactly who lays criminal charges in a democracy?
Mr Boyle said there were no plans to lay charges against Mr Ng for revealing the breach publicly but it was too early to say whether Mr Bailey would be charged.
-
Craig Ranapia, in reply to
Could someone please remind Brendan Boyle exactly who lays criminal charges in a democracy?
Of course, the MSD can dedicate time and resources to laying a complaint with the Police and the subsequent investigation. But one would think Mr Boyle and his staff have something else rather complicated and time-consuming that should have their undivided attention first. Don’t you think?
-
Lucy Stewart, in reply to
You’ll laugh (or cry, or both), but we actually already have one. The New Zealand National Cyber Security Centre is an actual thing. It’s got strategy documents and forms and an info security manual that runs to 297 pages. You’ll be shocked, shocked!, to learn that they are ignoring this and hoping nobody asks what it is they do again or why we’re paying for it.
To be fair, their remit runs more to "stop antagonistic powers shutting down our power grid from afar" than "manage every government department's IT security". An organization the size of MSD should really have permanent IT security staff. But, hey, that's probably one of those unimportant "backroom" jobs taking limited resources away from frontline staff.
-
Good luck to "the source" in seeking "reward".The govt were warned as far back as 2005 they have security problems & bugs in there "system",but ignored it to the extent of Key's office staff sending rather silly emails & making a big joke of it.Bennett needs to be a bit smarter,her CEO should not trust anything thrust down his gullett by Winz staffers either as it may appear as though he's a bit thick.
-
insider
to the end
Oh you mean this bit.
Since he called MSD and left his name and number, it was always likely that they’d out him as a diversion. We had hoped that it wouldn’t get to that, but it has, which is why I’m writing this now.
Should he have reported the vulnerability, free of charge? Yeah, that would have been the selfless thing to do for the public good. But asking to be compensated for his troubles is not unreasonable, either. After all, it’s not as if the people MSD ended up relying on – KPMG – did it for free.
Oh look what I spy
The word that has caught thine eye.Now far be it from me to question Keith’s choice of vocabulary. The words I would have used would have been ‘honesty and diligence’. Yes these are qualities that should be rewarded when they are encountered in any sphere of life by anyone who encounters them He wasnt looking for trouble, which he obviously has enough of in his life. He was at WINZ looking for work. Such qualities do get one into a lot of trouble especially when there is a gummit and Peeyem who think they can do no wrong. Led by a man who treats the words that come out of his mouth with total disinterest. ‘Oh my mouth is moving, making sounds…listen everyone! Lo I am Peeyem.’ And yes they do present as arrogant as a whole. As if they know the future what is in all our best interest to desire, to aspire to. And treat anyone pointing out a possible flaw as TROUBLE.
Well I happen to disagree with them and their way of dealing with people and matters of public affair.. Despite their protestations they are doing evil and damage to many parts of life in NZ -
MSD CEO Brendan Boyle in happier times:
“He [John Key] saw the advantages of a modern ICT environment and is a great believer in what ICT can do in terms of productivity. Rather than benchmark against other government departments, people now benchmark against online services such as those provided by banks,” Boyle told Computerworld back then.
Post your response…
This topic is closed.