this post was submitted on 08 Aug 2023
143 points (100.0% liked)
Technology
37730 readers
190 users here now
A nice place to discuss rumors, happenings, innovations, and challenges in the technology sphere. We also welcome discussions on the intersections of technology and society. If it’s technological news or discussion of technology, it probably belongs here.
Remember the overriding ethos on Beehaw: Be(e) Nice. Each user you encounter here is a person, and should be treated with kindness (even if they’re wrong, or use a Linux distro you don’t like). Personal attacks will not be tolerated.
Subcommunities on Beehaw:
This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Security in IT here in Japan has largely been an afterthought or security theatre. Passwords stored in plaintext are not uncommon (I've signed up for things and had my password in plaintext sent in email back to me). It seems to be getting better slowly. My current company has a whole security division, which is a nice change.
NDAs prevent me from being too specific, but I worked previously at another company in Japan that refused to hire security staff or even pay for the occasional pen test and audit. I fixed everything I could find on my own, but I highly doubt that there were no other issues left as I'm not a security pro.
Then you have things like https://www.bbc.com/news/technology-46222026 -- the cyber security MP has never used a computer. Even if their job is mostly to appoint the right people and manage that sort of thing, they still are doing a clearly terrible job of it.
Oh jeez, the security nightmares I've seen here keep me up at night. You're doing good work, fixing what you could from the inside of where you worked.