In my latest Geekwire article “How the SolarWinds hackers are targeting cloud services in unprecedented cyberattack, I continue looking at the SolarWinds event, this time digging into the SAML token angle that’s not been covered very well. Others have either ignored it entirely or touched on it in a light, technically unclear/inaccurate way all leading to confusion and a lack of appreciation for how serious this angle is.
I get some grief from some friends about why I still prefer books and DVDs to subscription and streaming services.
In my inbox I got another reminder why this is the case.
I bought a movie through Target’s streaming service a couple of years ago, to try them out. And now I have a notification that they’re canceling the service.
They’re semi-helpfully providing the option of migrating your purchases to another service when they’re available. But it’s not guaranteed that they’ll have what you bought. In which case, you’ll get a credit (for the full amount you paid, I wonder?).
This highlights why I like books over e-books in particular. E-anything can go away for good. And unless you have your own copy (like I do my digital music library), you’re at the mercy of someone else who may, or may not be there tomorrow.
It’s why I have my own copies of all my digital pictures too.
This relates to security and privacy because this is really about trust and control if your information. And being a good security person I have low levels of trust.
Vint Cert recently highlighted another very real concern with e-everything. The real possibility of a dark age where all information and knowledge is lost in one fell swoop. Likely? Not necessarily. But not impossible. And security is always about thinking in worst case scenarios.
Someone put out what amounts to a handbook on how to rebuild civilization recently: The Knowledge: How to Rebuild Our World from Scratch. Ironically, though, there’s a Kindle version of the book, which would seem to totally defeat the purpose.