The gaslighting comment really resonates with me. It's one of the reasons why I find the push to paperless everything a little disquieting - sometimes I want to keep records in case my dispute is with the record holder!
I had an issue with a credit card company a few years ago, in which I had to request a new card. Apparently, as part of the new card issuance, they also "helpfully" moved my payment due date -- which I found out about when I received a past-due notification via the mail. Had I not had a paper statement with the correct due date on it, I probably could have been convinced that I had just missed making a payment, especially as the initial customer service representative insisted there was no way a new card could change my payment due date. Only after escalating a couple of times were they able to figure out that I in fact hadn't requested my monthly cycle only be 18 days long.
Now my wife makes fun of me because I still receive and file away paper statements, just in case.
Edit: removing names since it's not relevant to the story.
I’m still a fan of email for this reason. Once someone sends me an email, the copy in my inbox is mine, and the sender can’t later hide it/take it back/etc.
If it's really important to you, you can use one of the companies which receive and scan your post into emails. Then change your bank correspondence address to them.
It's also so much easier to open an envelope than to deal with a passel of poorly-designed web sites and their poorly-designed authentication systems just to open a statement from each financial institution.
Edj is hiring a full-time IT infrastructure position to help us maintain and grow our systems to new and exciting heights. We're a small but growing team providing predictive analytics support to multiple verticals, including healthcare, sports, finance, and education. The ideal candidate has a solid background in systems administration (ideally with some experience in regulated fields) and is interested in helping architect new greenfield applications to serve hundreds of thousands of users, while helping us support and improve our existing systems.
Technologies: Linux / Ubuntu, AWS, Python, Postgresql, Wordpress, Drupal
I'm the hiring manager for this role, so feel free to reach out if you have any questions (email in profile).
The actual paper cites using devices with Thunderbolt 2 ports (iMac, Mac Mini both have Thunderbolt 2 via DisplayPort) to experiment on as well. It sounds like the vulnerability is in the Thunderbolt protocol in general, not just the USB-C implementation of it.
The vulnerability applies to all DMA-capable devices (ie Thunderbolt, PCIe, wifi and NVMe chips on mobiles, on-chip peripherals like mobile basebands). Thunderbolt 3 makes drive-by attacks easier, but in principle the attack could be carried out from any DMA device (subject to practical limitations like reverse engineering of firmware). Our earlier attacks were done with PCIe and Thunderbolt 2.
I know it says updated March 2016, but seems a bit out of date, given the references to Lync and especially Hall (seems to have been acquired by Atlassian in 2015 and rolled into HipChat[0])
I had an issue with a credit card company a few years ago, in which I had to request a new card. Apparently, as part of the new card issuance, they also "helpfully" moved my payment due date -- which I found out about when I received a past-due notification via the mail. Had I not had a paper statement with the correct due date on it, I probably could have been convinced that I had just missed making a payment, especially as the initial customer service representative insisted there was no way a new card could change my payment due date. Only after escalating a couple of times were they able to figure out that I in fact hadn't requested my monthly cycle only be 18 days long.
Now my wife makes fun of me because I still receive and file away paper statements, just in case.
Edit: removing names since it's not relevant to the story.