this post was submitted on 11 Mar 2024
232 points (98.3% liked)

Cybersecurity

5766 readers
29 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Community Rules

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected]

Notable mention to [email protected]

founded 2 years ago
MODERATORS
 

Interesting view on this situation.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 26 points 8 months ago (6 children)

I wonder what's making it so hard. Probably scope of the breach.

Sounds like MS has their heads up their asses if execs got compromised and baddies are running rampant all over their network. I guess I'm kinda spoiled where I work.

I'd love to be a fly on the wall and see what's going on. Or, actually, cyber$ec con$ultant >:)

Maybe that's what I should do as my final gig before retirement. Hmm. I just need to find someone with actual charisma that can schmooze and find customers (since I'd sooner jump off a bridge). Get a handful of top notch cyber incident response and reverse engineering folks, few more engineers. I know I am going off topic but I need to dream if I am to survive Monday after the time change ok?? Let's see... I would do 32 hour work weeks. Idk how that would play out working an incident, I guess shitloads of comp time and some way to keep from overloading people. Good bennies. 6 weeks of vacation a year. Hell, make it employee owned. WFH when and where possible (can't really do an incident response 100% remotely, usually). Whaddya say, who's in? Let's make enough money to retire early. Fuck work.

[–] [email protected] 21 points 8 months ago (1 children)

I used to be paid money to be “someone with actual charisma”. It’s not worth it. It’s a Catch 22 - the people you need to validate your charisma in order to buy things are exactly the kind of people you became charismatic to avoid.

Turns out it’s smarter to learn a skill that makes you indispensable, because there are only so many charismatic ways to say “fuck you” before the boss decides you’re a bad influence.

[–] sugar_in_your_tea 7 points 8 months ago

Yup, my last boss was annoyed with me because I kept asking for 2 days remote/week so I could focus. I had moved my desk across the building to avoid interruptions, and one day I left "early" (before the rest of the team, but I had already been working 10 hours and finished my work) when there was a deadline and someone was stuck in a bug. I remoted in, fixed the problem quickly, and then the next day he called me into his office and "fired" me, with an offer to switch to a full-remote contractor with a small pay increase.

So yeah, I was indispensable, otherwise he would've just fired me. It was a win-win because I didn't like him or his wife (main reason I wanted to work remote) but liked the product, and he wanted to force everyone to work in the office because he and his wife were control freaks. The funny part is they "replaced" me with a full remote contractor (I was the manager until "fired").

Now I'm in a better spot with my current company (I like my boss, I manage a good team, company is more stable). But the only reason I got that special offer was because I was indispensable, at least for 2-3 years.

[–] [email protected] 15 points 8 months ago (1 children)

I wonder what’s making it so hard. Probably scope of the breach.

My guess would be Microsoft's apparent unwillingness to nuke their Internet connection from orbit and suffer extensive downtime while they clean out the compromised accounts. I mean, I get that that would be catastrophically bad for their business, but isn't being thoroughly pwn3d by the Russians also catastrophically bad already?

[–] timbuck2themoon 2 points 8 months ago

They're so engrained i feel like it's not. There are far better solutions than Microsoft (just like the same in the network world and Cisco) but most won't even entertain the idea.

[–] [email protected] 5 points 8 months ago

I suppose one of the issues might well be the nature of software development careers for the last 15 years. Where its weird if you spend more than a few years at a place.

One of the downsides is that you don't get experts in systems and you lose a lot of that expert knowledge base that has traditionally existed when someone spends a decade at a company.

[–] verity_kindle 4 points 8 months ago (1 children)

Give the company a memorable name, please. Like "Leverage Indispensables" or "Main Engineering, Mayn!" Or "Detach The Saucer".

[–] [email protected] 3 points 8 months ago (2 children)

I like how you think. Ok, you're in charge of marketing.

[–] [email protected] 2 points 8 months ago

And the monkey's paw curls.

[–] verity_kindle 2 points 8 months ago

Thank you. No coffee machines in my department, please. Everyone drinks real tea or GTFO. This is Main Leverage, not Glengarry Glen Ross.

[–] [email protected] 4 points 8 months ago

Tell me what I need to learn boss, and I'm all in 🫡