TL;DR pranking unlocked computers undermines security by providing cover for real breaches and creating a culture of shame that discourages open reporting of security issues. It's a common rule in companies that employees must lock their device when it is unattended, to prevent people from using your access in unauthorised...
TL;DR: Less sensitive celiacs can probably have trace amounts of gluten cross contamination with low risk of health problems, since celiacs who deliberately eat non-trivial amounts of gluten are mostly ok. Celiac disease is an autoimmune condition where your immune system becomes triggered by gluten. This leads to a variety...
TL;DR pranking unlocked computers undermines security by providing cover for real breaches and creating a culture of shame that discourages open reporting of security issues.
It's a common rule in companies that employees must lock their device when it is unattended, to prevent people from using your access in unauthorised ways. Screen locking is a common compliance requirement, and a good security practice.
People new to these company environments can take a while to learn the locking behaviour. It's not an intuitive reaction. There was no ancestral selection process. Most people don't take that level of security precautions with their personal laptop. Seasoned people sometimes forget.
Doughnutting is the practice of seeing that a colleague... (read 276 more words →)
I agree that these are good areas to deploy AI but I don't see these being fairly easy to implement or result in a radical reduction in security risk on their own. Mainly because a lot of security is non-technical, and security involves tightening up a lot of little things that take time and effort.
AI could give us a huge leg up in monitoring - because as you point out, it's labour-intensive, and some false positives are OK. But it's a huge investment to get all of the right logs and continuously deepen your visibility. For example, many organisations do not monitor DNS traffic due to the high volume of logs generated.... (read more)
Ouch, I hope your intestine has recovered since your diagnosis.
To be clear, when I say sensitivity I mean "how reactive is your immune system to gluten" rather than "do you feel gastrointestinal symptoms when you eat gluten". The correlation between the severity of symtoms (both obvious and non-obvious symptoms) is weaker than you would expect but it seem to me there still is one.
In your comment you describe 3 scenarios:
(1) Risk of cross contamination (Chipotle)
(2) Known cross contamination (fryer and pizza prep)
(3) Accidental medium dose of gluten
You are happy to accept (1), but you say celiacs "should not take" (2). I agree the risk is higher in (2), but the heart of... (read more)
TL;DR: Less sensitive celiacs can probably have trace amounts of gluten cross contamination with low risk of health problems, since celiacs who deliberately eat non-trivial amounts of gluten are mostly ok.
Celiac disease is an autoimmune condition where your immune system becomes triggered by gluten. This leads to a variety of strange effects on your body. Gastrointestinal distress symptoms (diarrhea, flatulence, irritable bowels) are the most obviously connected, but a large proportion (my guess is 30-50% [1] ) of celiac sufferers don't get these. Other common symptoms are weight loss, iron deficiency, weak bones (density loss), psoriasis (itchy skin patches) and damage to your small... (read 1406 more words →)
I think your conclusion is reasonable that the investment of effort in security improvements is not justified by the risk of it being exploited, but I want to pull out a tiny part of your post and suggest refining:
"There is no point in pursuing a security mindset if you are virtually certain that the thing you would be investing resources into would not be your weakest attack point."
Different attackers will target different points depending on their capability and what they care about, and which attacker will go after you depends on their motivations. Your weakest point may be lower real risk than others simply because the type of attackers who would exploit... (read more)
Another consideration about schemers is you might not be able to "fire" them or fix them easily, even if you can reliably trigger the behavior.