TheD00d's recent activity
-
Comment on Scientists have bred "Woolly Mice" on their journey to bring back the mammoth in ~science
-
Comment on Kroger CEO resigns after probe into his personal conduct in ~finance
TheD00d LinkHaven't said what he did. Probably something stupid/awful. Or the board and shareholders wanted him gone from the failed merger. I know the article states otherwise - but I feel like they would...Haven't said what he did. Probably something stupid/awful. Or the board and shareholders wanted him gone from the failed merger. I know the article states otherwise - but I feel like they would find ANY excuse.
-
Comment on Tildes homepage is down? (2025-02-25 4pm UTC) in ~tildes
TheD00d Link ParentAll in favor? Roberts rules of order suggests that a simple majority should suffice.All in favor?
Roberts rules of order suggests that a simple majority should suffice.
-
Comment on Experience with data protection laws (GDPR, ePD, CCPA, etc..) in ~tech
TheD00d LinkOh man, it's late and I'm on the verge of falling a sleep but I'll give this a shot. I work in health IT so PHI, ePHI and HIPAA is the name of the game. HITRUST and NIST were the two big...Oh man, it's late and I'm on the verge of falling a sleep but I'll give this a shot. I work in health IT so PHI, ePHI and HIPAA is the name of the game. HITRUST and NIST were the two big "frameworks" we dealt with on a routine basis.
Healthcare data is kind of wild IMO. Basically if you are a non-clinical (or a clinical) company/provider as long as you have an active Business Associate Agreement (BAA) with a company and the patient provides "consent", you can get access to a shocking amount of information. Ideally hospitals would conduct Due Diligence and Due Care for each new BAA and on a routine basis to ensure compliance but most of the time that falls to an auditor who sends them a "checklist" that they don't really understand. Makes jt hard to have meaningful questions if the auditor doesn't even understand basic computer encryption.
So essentially your data gets shared with companies that might not have good security in place. That was kind of the purpose of a HITRUST assessment and the like but those auditor/assessors were also kind of ass and the framework had lost some credibility since when it first came out - you could basically pay-to-pass and a lot of the HITRUST alliance accreditted assesors didnt meet internal QA requirements after the fact. Nice folks but did not understand technical controls or anything.
The bigger healthcare systems get the more and more problematic data security and data hygiene becomes. Hospitals grow, merge, die, get acquired and since healthcare systems don't really prioritize IT - you often get patch work systems that are poorly documented and rarely understood well. All held together with glue and hopes and dreams. This means patient data is EVERYWHERE and that shit is hard to control. DLP? Sure. Good idea in theory but you'd need a whole group of folks dedicated to just data discovery alone, not even including tuning, writing rules and responding to alerts of non-compliance. Basically assume, if it's a machine at a healthcare system - it has PHI.
It'll be interesting to see how these next few years shake out. HIPAA is finally being reworked to be MUCH and I mean MUCH more strict about compliance and basic security controls. However our new "Boss"/Daddy RFKJ and Donny Boy might keep it held up in review/in limbo. Who knows.
Plus you have shit heads like Epic and Cerner (Oracle) fighting against data sharing and information blocking. Which makes interoperability more difficult. Oh and getting into hella petty internet blog post fights that read like they were ripped straight out of a highschool/YA novel. All of them suck and continue to make things worse. I welcome a challenge from someone who works with Epic and actually likes it.
Anyways - healthcare and by extension health related data is important for patient care but not really important enough to protect well and until there are big changes from a legal and financial perspective that incentives better stewardship nothing will change.
Thanks for coming to my Shed Talk - please leave a review.
-
Comment on Dystopian book recommendations in ~books
-
Comment on Reddit will lock some content behind a paywall this year, CEO says in ~tech
TheD00d Link ParentI...uh...okay. Yeah. Thats fair. But for the most part I stick with local city subreddit and its not complete dog-ass.Is your experience that the site is not currently bot and ad-filled?
I...uh...okay. Yeah. Thats fair.
But for the most part I stick with local city subreddit and its not complete dog-ass.
-
Comment on Reddit will lock some content behind a paywall this year, CEO says in ~tech
TheD00d LinkI have a feeling Reddit will continue its march of enshittification. The public or free portions will probably just be bot and ad-filled shite.I have a feeling Reddit will continue its march of enshittification. The public or free portions will probably just be bot and ad-filled shite.
-
Reddit will lock some content behind a paywall this year, CEO says
90 votes -
Comment on [SOLVED] What's the scifi book? in ~books
TheD00d Link ParentThat sounds about right. I also remember he ran into another one of his clones who was having a procedure done and the clone was like screaming. Kinda messed 11 year old me up.That sounds about right. I also remember he ran into another one of his clones who was having a procedure done and the clone was like screaming. Kinda messed 11 year old me up.
-
Comment on [SOLVED] What's the scifi book? in ~books
TheD00d Link ParentYeah that sounds about right. IIRC the boy in the book is basically an organ donor for some big drug lord. I'll never forget the scene when he was farming Krill with his "buds" when he ran away.Yeah that sounds about right. IIRC the boy in the book is basically an organ donor for some big drug lord. I'll never forget the scene when he was farming Krill with his "buds" when he ran away.
-
Comment on Looking to get into indycar in ~sports.motorsports
-
Comment on Soldering irons/stations - Buy once, cry once advice needed in ~hobbies
TheD00d Link ParentI have this exact setup, but I use my UGREEN 65W powerbrick and it works flawlessly.I have this exact setup, but I use my UGREEN 65W powerbrick and it works flawlessly.
-
Comment on TikTok makes app unavailable for US users ahead of ban in ~tech
TheD00d LinkI am so sorry I know this is not the best place for this not is it a really productive comment but: who cares. I just want healthcare, food that isn't filled with shit, a nice job and a planet...I am so sorry I know this is not the best place for this not is it a really productive comment but: who cares. I just want healthcare, food that isn't filled with shit, a nice job and a planet that isn't going to burn. Like this is what leadership decides to focus on? A stupid fucking app. Could we please do something productive?
Please don't say anything about national security for the love of God. I work in security I have been getting TLP Green briefing on Rednote all week. I know.
-
Comment on Mark Zuckerberg defends Meta's latest pivot in three-hour Joe Rogan interview in ~tech
TheD00d Link ParentYeah, not sure what kind of content moderation was actually occurring... This is hyper specific and anecdotal but I happen to be in a group for a game about tabletop miniatures that revolves...Yeah, not sure what kind of content moderation was actually occurring...
This is hyper specific and anecdotal but I happen to be in a group for a game about tabletop miniatures that revolves around vikings. It's pretty fun and mostly harmless (a lot of bad viking jokes), dad humor, miniatures being painted and some history. However one post happened to be random selfie from a guy with a bunch of Nazi tattoos that wasn't even related to the game or anything. Just out of the blue.
So naturally I reported it, since it was pretty clearly in violation of the groups rules and also Facebooks stance on hate symbols and speech. It got "reviewed" by eh Facebook content moderation team and found nothing to be wrong with the post. Which I found pretty alarming. But I guess since it was just a guy and his tats, I guess it was okay - who knows, maybe I'm overreacting. It was only when I messaged the groups mods that they took the post down.
So yeah, not really sure what kind of censorship or moderation they were doing.
Honestly - this whole thing seems like a giant PR stunt to get on the good side of Donny-boy before he gets into office and starts swinging hammers.
-
Comment on The Frisch’s private equity deal in ~finance
TheD00d Link ParentAs a fellow Cincinnatian whose post-mass breakfast was the buffet at Frisch's. This whole ordeal breaks my heart. In all fairness I was not helping Frisch's at all. I stopped going when the...As a fellow Cincinnatian whose post-mass breakfast was the buffet at Frisch's. This whole ordeal breaks my heart.
In all fairness I was not helping Frisch's at all. I stopped going when the original owner sold it. The food quality took a nose dive and it simply was not worth it. It sad, the Mainliner was an institution and I'm glad the American Sign Museum will be able to save it.
Thanks for documenting this, I read a similar breakdown on WCPOs site awhile back. Not nearly as detailed but it still gave me the gist. PE, in situations like this is an absolute cancer and it's shameful.
There might be some hope! I read a week or so ago that some of the local owners want to try and buy back a couple of restaurants, the brand and the recipes - I hope they get traction and I want them to succeed.
-
Comment on US Treasury says its computers were hacked by a Chinese 'threat actor' in a 'major incident' in ~finance
TheD00d Link ParentExact same experience. We got notified day of the patch release and was told to push to production ASAP. Glad we did. Kudos to BT/Bomgar for handling this well. I've seen much, much worse...Exact same experience. We got notified day of the patch release and was told to push to production ASAP. Glad we did.
Kudos to BT/Bomgar for handling this well. I've seen much, much worse responses from more "storied" companies.
-
Comment on Three of the biggest US banks are facing a lawsuit for ‘widespread fraud’ on Zelle in ~finance
TheD00d LinkI mean I completely agree and not surprised it hasn't happened sooner. I didn't even have the option to opt-out of Zelle when my bank first brought it online. The amount of scam requests I have...I mean I completely agree and not surprised it hasn't happened sooner. I didn't even have the option to opt-out of Zelle when my bank first brought it online. The amount of scam requests I have gotten has been insane.
It's a good idea in theory but it's initial execution really left the guardrails off.
-
Comment on Is the current war in Palestine the first time the victim wound up being seen as the aggressor? in ~humanities.history
TheD00d Link ParentI know this is going to sound conspiracy theory-is. But as someone who works in "intelligence".And works with a handful of Israeli intelligence companies (Cellubrite, CyberSix and a handful of...I know this is going to sound conspiracy theory-is. But as someone who works in "intelligence".And works with a handful of Israeli intelligence companies (Cellubrite, CyberSix and a handful of others). Israel has some of the best intelligence operations in the world. They know when shit is about to go down. So there is a good chance the higher ups knew they were about to be invaded and just plugged their ears and stuck their heads in tbe sand.
Why?
My guess is so they could use a more aggressive asymmetric response.
-
Comment on Top US senator calls Salt Typhoon ‘worst telecom hack in our nation’s history’ in ~tech
TheD00d LinkAnd this comes on the heels of the new director of Homeland Security wanting to get rid of the US cyber security agencies like CISA and others.. So I see this continuing to be a problem for the...And this comes on the heels of the new director of Homeland Security wanting to get rid of the US cyber security agencies like CISA and others.. So I see this continuing to be a problem for the US.
Related to the article. I'm not surprised. Chinese APTs (advanced persistent threat) groups like targeting both critical and non-critical portions of US companies and networks and will continue to do so. I'm actually part of a civilian IR group who helps small/local infrastructure and other government entities with IR. We have helped a couple of small cities recover from the business end of APTs. Volt Typhoon being one of them and most of IR training relates to how to ID and respond to PRC APTs.
-
Comment on <deleted topic> in ~tech
TheD00d Link ParentAnd I mean, if the binary choice is between Kagi whom as far as I can tells worst sin was getting some Yandex dough and Google. I mean... I think it would be a pretty obvious choice. I could list...- Exemplary
And I mean, if the binary choice is between Kagi whom as far as I can tells worst sin was getting some Yandex dough and Google. I mean... I think it would be a pretty obvious choice.
I could list all of the insanely sketchy/unethical stuff Google has done but we'd be here for a minute. I mean Project Nimbus is one that comes to mind. But so far Google has a much worse track record compared to Kagi.
I guess it depends, but honestly I wouldn't let perfection get in the way of just trying to be better.
This is not the most meaningful comment, but I clicked the link hoping to see a woolly mouse and I was not disappointed. Those mice are adorable. Getting super saiyan-hair vibes.