A directory traversal bug has been found in a Miele dishwasher. This allows access to arbitrary files on the dishwasher's Web server from unauthenticated users. It has been questioned whether appliance makers should be the ones connecting things to networks, since their lack of experience means there isn't even an official channel to report or fix security bugs. Miele are yet to comment.
(Score: 3, Insightful) by Justin Case on Wednesday March 29 2017, @01:47PM (5 children)
How long before we can get it legalized to line up the developers of this garbage and smack them upside the head with cluebats?
Really, it is as if nothing whatsoever is being learned since about the time of Netscape Navigator 1.0. We still have the same stupid mistakes being made over and over and over and over and over and ...
Very Bad Ideas are called out right at the initial design phase and yet the idiots plow ahead, willfully(?) oblivious. It is past time for some major attention-getting consequences.
(Score: 0) by Anonymous Coward on Wednesday March 29 2017, @02:48PM
It's institutionalized. Really.
In my company, a well known Technology company (but not one of the A-list like Amazon, Google, etc.), we have leaders who just don't understand technology. They have technology backgrounds, but when it comes to making technology-based decisions, they are clueless. This leads to them hiring/promoting other leaders who are equally clueless. And on down the line to developers who can code, but don't think about why/how they are coding. All the good people give up and leave (or vest in peace). Trying to get people to think about security is hard. Trying to get them to understand scale and complexity is hard. It's depressing how many people don't know what Big-O is...
If you want to fix a company, start at the top. The developers are not the root cause of the problem. They may need to go eventually as well, but not first.
(Score: 2) by JoeMerchant on Wednesday March 29 2017, @03:21PM
There's an ISO standard, or ten, in development for that.
🌻🌻 [google.com]
(Score: 1, Insightful) by Anonymous Coward on Wednesday March 29 2017, @07:08PM (2 children)
there seems to be some confusion by you techies. making money is the primary goal. not wise use of technology. not security. when you finally accept the reality, you'll find your career in IT is as pointless as chasing the american dream.
(Score: 0) by Anonymous Coward on Thursday March 30 2017, @05:07AM
There is no pride in your product these days--only net profit matters.
In the race to the bottom that is late stage, global capitalism, only by making ever shoddier goods (no corner to cheap to cut) can you keep profits growing.
(Score: 2) by kaszz on Thursday March 30 2017, @02:20PM
That's why products like cars and medicine is guarded by laws. Such that reckless entities get whipped by the law. Making a profit is alright, externalizing costs ain't.