qz.com

The best part of iMessage is coming to Android phones

Baffled why this is news. The old default, Hangouts, had this option for YEARS. BTW, still does.

I get a kick out of seeing different folks’ reaction to music. A song on the PA here is, to me, formulaic & boring. The guy sitting near me is quietly jamming out to himself in contained rapt joy.

Good for him!

news.avclub.com

Nerdist scrubs Chris Hardwick from its website “pending further investigation”

Not minimizing, yet genuinely surprised Nerdist still exists & Hardwick didn’t retire after atMidnight.

Japanese Whisky Book Review:

by Brian Ashcraft

Tuttle, 2018

ISBN: 978-4-8053-1409-8
Hardback, full colour, 144 pp

In recent years, Japanese whisky has won top international awards, and the impending shortage of Suntory’s flagship Hibiki 17-year-old blend, immortalized in the film Lost in Translation, attests to global demand for its most prestigious offerings. Once again, the Japanese have taken a Western icon and distilled their own excellent versions of it. In the first part of his spirited guide, Brian Ashcraft explores the history of distilling in Japan, beginning with the arrival of the first American whisky on Perry’s black ships in the mid-nineteenth century but focusing on the strong Scottish connection, in particular the role that Masataka Taketsuru (“Massan”) played in establishing Japan’s first distillery, Yamazaki, in Osaka. The second part of the book focuses on six main distilleries out of the sixteen mentioned, beginning of course with Suntory’s Yamazaki complex, which is lavishly illustrated, evoking, for example, the honeyed glow of the thousands of blendings sitting in bottles on the shelves of the ‘whisky library’ in their contact centre, among which one can sample dozens across a wide price range. Evocative yet approachable tasting notes cover the best offerings of each distillery. The highest rated appear to be Nikka’s 34- and 40-year-old limited editions (“a beautiful symphony”), at 98 out of 100 points, equalled only by Suntory’s “sublime” ‘Yamazaki 1999 The Owner’s Cask Mampei Hotel’. At the other end of the scale is Nikka’s ‘Yoichi Single Malt Peaty and Salty 12 Years Old’, 55/100: “It’s so smoky you’ve got to wonder if fumes aren’t wafting out of your nose after each taste”.

Excitement at the current state and future potential of the Japanese whisky industry exudes from every pore of this beautifully presented and meticulously researched guide. This is a book to be savoured rather than downed in one sitting.

Richard Donovan

Buy this book from Amazon USA | UK | Japan

© JapanAllOver.com

(Via Japan All Over)

For those who are enamored. I was gifted an apparently very nice bottle recently. I’m looking forward to the right opportunity with the right collaborators to crack the seal.

Logic, like whiskey, loses its beneficial effect when taken in too large quantities.

LORD DUNSANY: My Ireland, xxx, 1938

What Systems Keep You Effective?, (Sat, Jun 9th):

Previously I discussed What’s On Your Not To Do List as a means to remain focused on priorities. I never fear running out of work in cybersecurity. Instead, I worry that our focus does not always stay on the most critical issues. Today I want to highlight several techniques I use to help remain effective.

Saying no

    Over and over again

    No can be a complete sentence

    Opportunity cost associated with time spent on other items

Calendar Margin

    Create space for unexpected tasks

    Make appointments for what matters most    

Goal tracking system

    As an achiever, I enjoy checking items off my “to do” list

    Evernote as a repository to hold ideas for future research

    Keep from cluttering up my brain

A physical planner

    Found tremendous value in weekly reviews

    Focus on what I accomplished

    And what needs even more focus

Each of these tactics serves to help keep me focused on what matters most. What hacks do you use to stay effective throughout your busy day? Let us know in the comments section!

 

Russell Eubanks

ISC Handler

SANS Instructor

@russelleubanks

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

(Via SANS Internet Storm Center, InfoCON: green)

Other than the use of Evernote (I of course use Emacs & Org mode), I do or intend to do all of this listed here. I like the “Calendar Margin” as something I am accidentally doing and could probably improve. 

Crappy IoT on the high seas: Holes punched in hull of maritime security:

Years-old security issues mostly stamped out in enterprise technology remain in maritime environments, leaving ships vulnerable to hacking, tracking and worse.

A demo at the Infosecurity Europe conference in London by Ken Munro and Iian Lewis of Pen Test Partners (PTP) demonstrated multiple methods to interrupt the shipping industry. Weak default passwords, failure to apply software updates and a lack of encryption enable a variety of attacks.

(Via The Register – Security)

Vulnerable ship systems: Many left exposed to hacking:

 

“Ship security is in its infancy – most of these types of issues were fixed years ago in mainstream IT systems,” Pen Test Partners’ Ken Munro says, and points out that the advent of always-on satellite connections has exposed shipping to hacking attacks.

 

 

(Via Help Net Security)

Maritime navigation hack has potential to wreak havoc in English channel:

 

As reported by the BBC, security researcher Ken Munro from Pen Test Partners has discovered that a ship navigation system called the Electronic Chart Display (Ecdis) can be compromised, potentially to disasterous effect.

 

Ecdis is a system commonly used in the shipping industry by crews to pinpoint their locations through GPS, to set directions, and as a replacement to pen-and-paper charts.

 

The system is also touted as a means to reduce the workload on navigators by automatically dealing with route planning, monitoring, and location updates.

 

However, Munro suggests that a vulnerability in the Ecdis navigation system could cause utter chaos in the English channel should threat actors choose to exploit it.

The vulnerability, when exploited, allows attackers to reconfigure the software to shift the recorded location of a ship’s GPS receiver by up to 300 meters.

 

 

(Via Latest Topic for ZDNet in security)

I’ve been talking with companies in this space about these types of issues. While Munro’s research is telling, this is not shocking.

It does very nicely illustrate the real values in good penetration testing: challenging assumptions, taking nothing for granted, and divorcing motive from threat.

For example, the 300 meter location discrepancy could have nothing to do with the shipping company or the ship itself. It could be used by a crypto mining concern looking to delay the arrival of new GPUs for a rival firm. This type of attack could be part of a larger series of attacks, subtile enough that further investigation would be unlikely (as opposed to the English Channel scenario in the ZDNet article), and could reap substantial benefits for the crypto mining concern.

I believe it to be a war of pretexts, a war in which the true motive is not distinctly avowed, but in which pretenses, after-thoughts, evasions and other methods are employed to put a case before the community which is not the true case.

DANIEL WEBSTER: Speech in Springfield, Mass., Sept. 29, 1847

The First Shinkansen:

 

I am a sucker for vintage industry promotion films, the kind of thing the third grade home room teacher would show as a treat on a dull Thursday afternoon. The soundtrack was warped, the film was scratched and patched and sometimes got stuck, but it was all fun.

Japanese rail fans love to post vintage photos and I came across this tweet with a fascinating video of the very first Shinkansen test car being pushed by a steam engine to the test site. It’s easy to forget how important the Shinkansen project was to Japan leading up to the 1964 Tokyo Olympics. Even if you do not understand Japanese you can sense the importance of it all from the film clip: scrubbed technicians performing their jobs, testing the infrastructure and of course watching that first Shinkansen train whoosh past at full speed.

It’s hard to believe that the Shinkansen project almost didn’t happen. I wonder how happy the project team felt when the first Shinkansen whooshed by. It must have been a great day. The future arrived at 250 km/h.

(Via Ata Distance)

The tweet Joel includes has the video of the train. I love this stuff.